Waraxe IT Security Portal  
  Login or Register
::  Home  ::  Search  ::  Your Account  ::  Forums  ::   Waraxe Advisories  ::  Tools  ::
March 29, 2024
Menu
 Home
 Logout
 Discussions
 Forums
 Members List
 IRC chat
 Tools
 Base64 coder
 MD5 hash
 CRC32 checksum
 ROT13 coder
 SHA-1 hash
 URL-decoder
 Sql Char Encoder
 Affiliates
 y3dips ITsec
 Md5 Cracker
 User Manuals
 AlbumNow
 Content
 Content
 Sections
 FAQ
 Top
 Info
 Feedback
 Recommend Us
 Search
 Journal
 Your Account



User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9145

People Online:
Visitors: 743
Members: 0
Total: 743
PacketStorm News
·301 Moved Permanently

read more...
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index
Search found 17 matches
phpmyadmin exploit
PostForum: Php   Posted: Wed Jul 13, 2005 12:05 pm   Subject: phpmyadmin exploit
migo79
 
Replies: 2
Views: 13349




Hello Guys

today when i was searching for old explits to test i stopped at this old bug in phpMyAdmin which the referenced Remote File Inclusion in PhpMyAdmin

i successfully able to use th XSS b ...
What does this look like?
PostForum: Sql injection   Posted: Wed Aug 04, 2004 4:29 pm   Subject: What does this look like?
migo79
 
Replies: 1
Views: 7994




wt u have now is the MD5 hash of the adminstrator

this is the wt u need to completely take over this site
i suggest you read waraxe very handy tutorial about how to use this info
take a look her ...
waraxe-2004-SA#034 - how to utilize?
PostForum: PhpBB   Posted: Tue Jul 27, 2004 10:49 am   Subject: waraxe-2004-SA#034 - how to utilize?
migo79
 
Replies: 1
Views: 7921




hi
take alook at

http://www.waraxe.us/forum/viewtopic.php?t=224

http://www.waraxe.us/forum/viewtopic.php?t=243
many SQL vuln without exploits!
PostForum: PhpBB   Posted: Fri Jul 23, 2004 5:45 pm   Subject: many SQL vuln without exploits!
migo79
 
Replies: 1
Views: 7672




there is many phpbb bugs are discovered and some of them are SQL injection cases, take a look at those links

http://securityfocus.com/bid/10722
http://securityfocus.com/bid/10740

can our hero w ...
deleting forums in phpbb directly
PostForum: PhpBB   Posted: Fri Jul 23, 2004 4:44 pm   Subject: deleting forums in phpbb directly
migo79
 
Replies: 2
Views: 9376




good waraxe , you understand what i want to do exactly Wink
so what do u think is the best way to use this exploit other than deleting posts or logging out users ?

thanx ya Basha Wink
deleting forums in phpbb directly
PostForum: PhpBB   Posted: Tue Jul 20, 2004 5:14 pm   Subject: deleting forums in phpbb directly
migo79
 
Replies: 2
Views: 9376




hello

when i try to put this input directly into the browser to delete forum from phpbb using this url
http://localhost/phpBB2/admin/admin_forums.php?mode=deleteforum&f=1

it gives me t ...
multiple unspecified SQL injection in phpbb
PostForum: PhpBB   Posted: Tue Jul 20, 2004 2:55 pm   Subject: multiple unspecified SQL injection in phpbb
migo79
 
Replies: 3
Views: 9327




sorry it's me posting the wrong url

here is the url for what i mean

http://www.securityfocus.com/bid/10722

Wink
multiple unspecified SQL injection in phpbb
PostForum: PhpBB   Posted: Tue Jul 20, 2004 10:36 am   Subject: multiple unspecified SQL injection in phpbb
migo79
 
Replies: 3
Views: 9327




anybody saw that on security focus

http://www.securityfocus.com/bid/10741

i guess waraxe involved on that Wink
aproblem with /**/
PostForum: PhpNuke   Posted: Mon Jul 19, 2004 9:52 am   Subject: aproblem with /**/
migo79
 
Replies: 4
Views: 10060




/**/ is essential to evade the protector system because if use normal injection the protector will ban u.
and also it will not affect the query because as u can see it's jst a comment so it will be i ...
cookie stealing
PostForum: Cross-site scripting aka XSS   Posted: Thu Jul 15, 2004 11:20 am   Subject: cookie stealing
migo79
 
Replies: 7
Views: 14983




and here is a well detailed tutorial too
you have to register for free to view it but it well worth

http://www.idefense.com/application/poi/researchreports/display?id=9
cookie stealing
PostForum: Cross-site scripting aka XSS   Posted: Thu Jul 15, 2004 11:18 am   Subject: cookie stealing
migo79
 
Replies: 7
Views: 14983




that's a well clarified reply
thanks too much
cookie stealing
PostForum: Cross-site scripting aka XSS   Posted: Wed Jul 14, 2004 3:47 pm   Subject: cookie stealing
migo79
 
Replies: 7
Views: 14983




hello guys

can you waraxe give a tutorial on how send a cookie file to a form and then to be mailed to anyone

i mean by discovering a cross site scripting vuln in any script
how can i write the ...
config.php
PostForum: PhpNuke   Posted: Wed Jun 02, 2004 1:29 pm   Subject: config.php
migo79
 
Replies: 0
Views: 6266




hey
i tried to activate web mail module and tried to send attacment to store it on the server
this attachment is a php file that read the config.php from the server
the problem that phpnuke blocked ...
advanced phpbb exploit techniques
PostForum: PhpBB   Posted: Sun May 23, 2004 11:08 am   Subject: advanced phpbb exploit techniques
migo79
 
Replies: 3
Views: 9553




yes waraxe
exactly what u say, but instead of the integrated phpbb
i wanna use the image tag to promote my userid in another installation of phpbb
advanced phpbb exploit techniques
PostForum: PhpBB   Posted: Sat May 22, 2004 12:49 pm   Subject: advanced phpbb exploit techniques
migo79
 
Replies: 3
Views: 9553




hey waraxe
you are always overhelming me with your answers , this time when i was reading an old advisory written by you about getting easy admin right in phpnuke using BBcodes in phpbb

now by the ...
Page 1 of 2 Goto page 1, 2  Next
All times are GMT
  




Powered by phpBB © 2001-2008 phpBB Group






Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2020 Janek Vind "waraxe"
Page Generation: 0.191 Seconds