Waraxe IT Security Portal
Login or Register
July 3, 2025
Menu
Home
Logout
Discussions
Forums
Members List
IRC chat
Tools
Base64 coder
MD5 hash
CRC32 checksum
ROT13 coder
SHA-1 hash
URL-decoder
Sql Char Encoder
Affiliates
y3dips ITsec
Md5 Cracker
User Manuals
AlbumNow
Content
Content
Sections
FAQ
Top
Info
Feedback
Recommend Us
Search
Journal
Your Account
User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144

People Online:
Visitors: 205
Members: 0
Total: 205
Full disclosure
iOS Activation Flaw Enables Pre-User Device Compromise andIdentity Exposure (iOS 18.5)
Remote DoS in httpx 1.7.0 – Out-of-Bounds Read via Malformed <title> Tag
CVE-2025-32978 - Quest KACE SMA Unauthenticated LicenseReplacement
CVE-2025-32977 - Quest KACE Unauthenticated Backup Upload
CVE-2025-32976 - Quest KACE SMA 2FA Bypass
CVE-2025-32975 - Quest KACE SMA Authentication Bypass
RansomLord (NG v1.0) anti-ransomware exploit tool
Disclosure Yealink Cloud vulnerabilities
: "Glass Cage" – Zero-Click iMessage ? Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885)
SEC Consult SA-20250612-0 :: Reflected Cross-Site Scripting in ONLYOFFICE Docs (DocumentServer)
SEC Consult SA-20250611-0 :: Undocumented Root Shell Access on SIMCom SIM7600G Modem
Call for Applications: ERCIM STM WG 2025 Award for the Best Ph.D. Thesis on Security and Trust Management (July 31, 2025)
SEC Consult SA-20250604-0 :: Local Privilege Escalation and Default Credentials in INDAMED - MEDICAL OFFICE (Medical practice management) Demo version
Full Disclosure: CVE-2025-31200 & CVE-2025-31201 – 0-Click iMessage Chain ? Secure Enclave Key Theft, Wormable RCE, Crypto Theft
Defense in depth -- the Microsoft way (part 89): user grouppolicies don't deserve tamper protection
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index
Search found 10 matches
Smartcard Hex display/reader/writer
PostForum:Newbies corner Posted: Sat Aug 26, 2006 12:54 pm Subject: Smartcard Hex display/reader/writer
piglet
Replies: 0
Views: 6547




Hi,
I'm sorry to post this here but I've searched the net & cannot find anything. Does anyone know of some freeware for XP that will read/write & hex display smart-cards (like the SLE 441 ...
What is Full path disclosure
PostForum:Full path disclosure Posted: Sun Jun 25, 2006 5:58 pm Subject: What is Full path disclosure
piglet
Replies: 3
Views: 15071




I asked this some time ago, is their any tool that produces a table of links within a website? It just goes to the homepage & follows all links. Holes might appear that give insights into possible ...
stopping name & passwords being remembered by browsers.
PostForum:Suggestions Posted: Sun Jun 25, 2006 5:54 pm Subject: stopping name & passwords being remembered by browsers.
piglet
Replies: 3
Views: 11607




I was not aware of this form action. Thanks for the information. Does this ensure that the browser doesn't cache it? I mean, do I have to check non-caching for all browsers & platforms or is it wr ...
stopping name & passwords being remembered by browsers.
PostForum:Suggestions Posted: Sun Jun 25, 2006 9:53 am Subject: stopping name & passwords being remembered by browsers.
piglet
Replies: 3
Views: 11607




Hi,
Almost all sites on the internet which use a name & password field are liable to be remembered by the browser (unless you specify not to). With PHP, it should be possible to generate a di ...
MSSQL now uninjectable?
PostForum:Sql injection Posted: Fri Jan 27, 2006 3:57 pm Subject: MSSQL now uninjectable?
piglet
Replies: 4
Views: 13677




Well, I applied the discound and was told that I owed the grand total of $0.00. Of course, I mailed them and told them about the weakness so that's 1 less hole. Hidden fields for discounts cannot be u ...
MSSQL now uninjectable?
PostForum:Sql injection Posted: Fri Jan 27, 2006 2:49 pm Subject: MSSQL now uninjectable?
piglet
Replies: 4
Views: 13677




I've found the appropriate utility to modify hidden fields with Firefox. A useful user script called 'form help' which allows one to twiddle with all the values in hidden fields. I'm wondering if anyo ...
MSSQL now uninjectable?
PostForum:Sql injection Posted: Thu Jan 26, 2006 3:15 pm Subject: MSSQL now uninjectable?
piglet
Replies: 4
Views: 13677




The only place on the site I can find to inject possibly 'interesting' data is into the order-form in checkout.asp. The form POSTs order details to hidden.asp. There are quite a number of fields. Look ...
MSSQL now uninjectable?
PostForum:Sql injection Posted: Tue Jan 24, 2006 3:56 pm Subject: MSSQL now uninjectable?
piglet
Replies: 4
Views: 13677




I'm also looking into the email addresses connected to the site. Is there any way other than brute-force to get the list of mailboxes connected to a server?
MSSQL now uninjectable?
PostForum:Sql injection Posted: Tue Jan 24, 2006 3:13 pm Subject: MSSQL now uninjectable?
piglet
Replies: 4
Views: 13677




I've been messing with SQL lately & have noticed that all the MSSQL sites seem to have SQL locked down tight. They take only 1 imput field & no outpuf fields. All I can get is.

I put this i ...
Boots.com microsites (JSP)
PostForum:Newbies corner Posted: Tue Jan 17, 2006 2:36 pm Subject: Boots.com microsites (JSP)
piglet
Replies: 0
Views: 6930




Hi,
I've been trying to map out the contents of the boots.com site. Links from their homepage either go to

/shop/category_new_template.jsp?classificationid=xxxxx

one or two are

/shop/pro ...
Page 1 of 1
All times are GMT


Powered by phpBB © 2001-2008 phpBB Group



PCWizardHub - Helping you fix, build, and optimize your PC life
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.027 Seconds