Waraxe IT Security Portal
Login or Register
October 24, 2024
Menu
Home
Logout
Discussions
Forums
Members List
IRC chat
Tools
Base64 coder
MD5 hash
CRC32 checksum
ROT13 coder
SHA-1 hash
URL-decoder
Sql Char Encoder
Affiliates
y3dips ITsec
Md5 Cracker
User Manuals
AlbumNow
Content
Content
Sections
FAQ
Top
Info
Feedback
Recommend Us
Search
Journal
Your Account
User Info
Welcome, Anonymous
Nickname
Password
(Register)
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 113
Members: 0
Total: 113
Full disclosure
SEC Consult SA-20241015-0 :: Multiple Vulnerabilities in Rittal IoT Interface & CMC III Processing Unit (CVE-2024-47943, CVE-2024-47944, CVE-2024-47945)
CVE-2024-48939: Unauthorized enabling of API in Paxton Net2software
SEC Consult SA-20241009-0 :: Local Privilege Escalation via MSI installer in Palo Alto Networks GlobalProtect (CVE-2024-9473)
APPLE-SA-10-03-2024-1 iOS 18.0.1 and iPadOS 18.0.1
Some SIM / USIM card security (and ecosystem) info
SEC Consult SA-20240930-0 :: Local Privilege Escalation via MSI Installer in Nitro PDF Pro (CVE-2024-35288)
Backdoor.Win32.Benju.a / Unauthenticated Remote CommandExecution
Backdoor.Win32.Prorat.jz / Remote Stack Buffer Overflow (SEH)
Backdoor.Win32.Amatu.a / Remote Arbitrary File Write (RCE)
Backdoor.Win32.Agent.pw / Remote Stack Buffer Overflow (SEH)
Backdoor.Win32.Boiling / Remote Command Execution
Defense in depth -- the Microsoft way (part 88): a SINGLEcommand line shows about 20, 000 instances of CWE-73
SEC Consult SA-20240925-0 :: Uninstall Password Bypass in BlackBerry CylanceOPTICS Windows Installer Package (CVE-2024-35214)
Apple iOS 17.2.1 - Screen Time Passcode Retrieval (MitigationBypass)
CyberDanube Security Research 20240919-0 | Multiple Vulnerabilities in Netman204
Waraxe IT Security Portal: Content Pages List

List of available content in Waraxe IT Security Portal:


· [waraxe-2004-SA#001] - Script injection in GBook for Php-Nuke ver. 1.0
· [waraxe-2004-SA#002] - Cross-Site Scripting (XSS) in Php-Nuke 7.1.0
· [waraxe-2004-SA#003] - SQL injection in Php-Nuke 7.1.0
· [waraxe-2004-SA#004] - Multiple vulnerabilities in XMB 1.8 Partagium Final SP2
· [waraxe-2004-SA#005] - XSS in Php-Nuke 7.1.0 - part 2
· [waraxe-2004-SA#006] - Multiple vulnerabilities in 4nalbum module for PhpNuke
· [waraxe-2004-SA#007] - XSS and SQL injection bugs in 4nguestbook module for PhpNuke
· [waraxe-2004-SA#008] - Easy way to get superadmin rights in PhpNuke 6.x-7.1.0
· [waraxe-2004-SA#009] - Non-critical Sql injection and XSS bug in PhpBB 2.0.6c
· [waraxe-2004-SA#010] - Multiple vulnerabilities in Error Manager v2.1 for PhpNuke
· [waraxe-2004-SA#011] - Multiple vulnerabilities in MS Analysis v2.0 module for PhpNuke
· [waraxe-2004-SA#012] - Multiple vulnerabilities in XMB 1.8 Partagium SP3 and 1.9 Nexus Beta
· [waraxe-2004-SA#013] - Critical sql injection bug in PhpBB 2.0.8 and in older versions
· [waraxe-2004-SA#014] - Cross-Site Scripting aka XSS in AzDGDatingLite
· [waraxe-2004-SA#015] - Multiple vulnerabilities in NukeCalendar v1.1.a
· [waraxe-2004-SA#016] - Cross-Site Scripting aka XSS in phpnuke 6.x-7.2 part 3
· [waraxe-2004-SA#017] - User-level authentication bypass in phpnuke 6.x-7.2
· [waraxe-2004-SA#018] - Admin-level authentication bypass in phpnuke 6.x-7.2
· [waraxe-2004-SA#019] - Critical sql injection bug in Phorum 3.4.7
· [waraxe-2004-SA#020] - Multiple vulnerabilities in PostNuke 0.726 Phoenix
· [waraxe-2004-SA#021] - Multiple vulnerabilities in phprofession 2.5 module for PostNuke
· [waraxe-2004-SA#022] - Multiple vulnerabilities in PostNuke 0.726 Phoenix - part 2
· [waraxe-2004-SA#023] - XSS and full path disclosure in PhpNuke 7.2
· [waraxe-2004-SA#024] - XSS and full path disclosure in Network Query Tool 1.6
· [waraxe-2004-SA#025] - Multiple vulnerabilities in Protector System 1.15b1 for PhpNuke
· [waraxe-2004-SA#026] - Multiple vulnerabilities in Coppermine Photo Gallery for PhpNuke
· [waraxe-2004-SA#027] - Once again - critical vulnerabilities in PhpNuke 6.x - 7.2
· [waraxe-2004-SA#028] - Multiple vulnerabilities in NukeJokes module for PhpNuke
· [waraxe-2004-SA#029] - Possible remote file inclusion in PhpNuke 6.x - 7.3
· [waraxe-2004-SA#030] - Multiple vulnerabilities in PhpNuke 6.x - 7.3
· [waraxe-2004-SA#031] - Multiple vulnerabilities in e107 version 0.615
· [waraxe-2004-SA#032] - Multiple security flaws in PhpNuke 6.x - 7.3
· [waraxe-2004-SA#033] - Multiple security holes in PhpNuke 6.x - 7.3
· [waraxe-2004-SA#034] - XSS and full path disclosure in PhpBB 2.0.8
· [waraxe-2004-SA#035] - Multiple security holes in PhpNuke - part 2
· [waraxe-2004-SA#036] - Multiple security holes in PhpNuke - part 3
· [waraxe-2004-SA#037] - Sql injection bug in Phorum 5.0.12
· [waraxe-2004-SA#038] - Multiple vulnerabilities in Event Calendar module for PhpNuke
· [waraxe-2005-SA#039] - Critical Sql Injection in Sgallery module for PhpNuke
· [waraxe-2005-SA#040] - Full path disclosure and XSS in PhpNuke 6.x-7.6
· [waraxe-2005-SA#041] - Critical Sql Injection in PhpNuke 6.x-7.6 Top module
· [waraxe-2005-SA#042] - Multiple vulnerabilities in Coppermine Photo Gallery 1.3.2
· [waraxe-2005-SA#043] - Sql injection in Phorum 5.0.20 and earlier
· [waraxe-2006-SA#044] - XSS in phpNuke 7.8 and older versions
· [waraxe-2006-SA#045] - Bypassing CAPTCHA in phpNuke 6.x-7.9
· [waraxe-2006-SA#046] - Critical sql injection in phpNuke 7.5-7.8
· [waraxe-2006-SA#047] - Evading sql-injection filters in phpNuke 7.8
· [waraxe-2007-SA#048] - Multiple vulnerabilities in Virtual War 1.5 module for PhpNuke
· [waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20
· [waraxe-2007-SA#050] - Sql Injection in WordPress 2.1.3
· [waraxe-2007-SA#051] - Sql Injection in 2z Project 0.9.5
· [waraxe-2007-SA#052] - dBlog CMS Open Source database retrieval
· [waraxe-2007-SA#053] - Critical Sql Injection in NukeSentinel 2.5.11
· [waraxe-2007-SA#054] - Local File Inclusion in Dance Music module for phpNuke
· [waraxe-2007-SA#055] - Sql Injection in SiteX CMS 0.7.3 Beta
· [waraxe-2007-SA#056] - Another Sql Injection in NukeSentinel 2.5.11
· [waraxe-2007-SA#057] - Unauthorized File Upload in SiteX CMS
· [waraxe-2007-SA#058] - Critical Sql Injection in NukeSentinel 2.5.12
· [waraxe-2007-SA#059] - XSS in WordPress 2.3
· [waraxe-2007-SA#060] - Sensitive info disclosure in CuteNews <= 1.4.5
· [waraxe-2008-SA#061] - Remote Code Execution in MyBB 1.2.10
· [waraxe-2008-SA#062] - Multiple Sql Injections in MyBB 1.2.10
· [waraxe-2008-SA#063] - Information Leakage in Kayako SupportSuite 3.11.01
· [waraxe-2008-SA#064] - Sql Injection in MyBB 1.2.11
· [waraxe-2008-SA#065] - Remote Shell Command Execution in Coppermine 1.4.14
· [waraxe-2008-SA#066] - Multiple Vulnerabilities in Coppermine 1.4.14
· [waraxe-2008-SA#067] - Easy way to 0wn nulled vBulletin installations
· [waraxe-2008-SA#068] - Sql Injection in vBulletin 3.7.3.pl1
· [waraxe-2008-SA#069] - Multiple Sql Injection in vBulletin 3.7.4
· [waraxe-2009-SA#070] - Multiple Vulnerabilities in MKPortal <= 1.2.1
· [waraxe-2009-SA#071] - Multiple Vulnerabilities in VirtueMart 1.1.2
· [waraxe-2009-SA#072] - Multiple Vulnerabilities in RavenNuke 2.3.0
· [waraxe-2009-SA#073] - Arbitrary File Deletion in Orbit Downloader <= 2.8.7
· [waraxe-2009-SA#074] - Multiple Vulnerabilities in TorrentTrader Classic 1.09
· [waraxe-2009-SA#075] - Remote File Disclosure in Vivvo CMS 4.1.5.1
· [waraxe-2009-SA#076] - Multiple Vulnerabilities in SugarCRM <= 5.2.0j
· [waraxe-2010-SA#077] - Multiple Vulnerabilities in Calibre 0.7.34
· [waraxe-2010-SA#078] - Multiple Vulnerabilities in CruxCMS 3.0.0
· [waraxe-2010-SA#079] - Reflected XSS in Coppermine 1.5.10
· [waraxe-2012-SA#080] - Multiple Vulnerabilities in NextBBS 0.6.0
· [waraxe-2012-SA#081] - Multiple Vulnerabilities in Coppermine 1.5.18
· [waraxe-2012-SA#082] - File Existence Disclosure in Uploadify 3.0.0
· [waraxe-2012-SA#083] - Multiple Vulnerabilities in Uploadify 2.1.4
· [waraxe-2012-SA#084] - Multiple Vulnerabilities in OpenCart 1.5.2.1
· [waraxe-2012-SA#085] - Reflected XSS in Uploadify Integration Wordpress plugin
· [waraxe-2012-SA#086] - Local File Inclusion in Invision Power Board 3.3.0
· [waraxe-2012-SA#087] - Reflected XSS in Joomla 1.5.26 "ja_purity" template
· [waraxe-2012-SA#088] - Reflected XSS in Joomla 2.5.4 admin sysinfo page
· [waraxe-2012-SA#089] - Multiple Vulnerabilities in TorrentTrader 2.08
· [waraxe-2012-SA#090] - Insecure SSL Connection in Thomson SpeedTouch ST780
· [waraxe-2012-SA#091] - Multiple Vulnerabilities in phpMyBitTorrent 2.04
· [waraxe-2012-SA#092] - Multiple Vulnerabilities in Wordpress Slideshow Plugin
· [waraxe-2012-SA#093] - Multiple Vulnerabilities in Wordpress Social Discussions Plugin
· [waraxe-2012-SA#094] - Multiple Vulnerabilities in Wordpress GRAND Flash Album Gallery Plugin
· [waraxe-2012-SA#095] - Multiple Vulnerabilities in Wordpress FoxyPress Plugin
· [waraxe-2012-SA#096] - Multiple Vulnerabilities in Zenphoto 1.4.3.3
· [waraxe-2013-SA#097] - Multiple Vulnerabilities in PHP-Fusion 7.02.05
· [waraxe-2013-SA#098] - Directory Traversal Vulnerabilities in OpenCart 1.5.5.1
· [waraxe-2013-SA#099] - Update Spoofing Vulnerability in LibreOffice 4.0.1.2
· [waraxe-2013-SA#100] - Update Spoofing Vulnerability in mRemote 1.50
· [waraxe-2013-SA#101] - Update Spoofing Vulnerability in Royal TS 2.1.5
· [waraxe-2013-SA#102] - Reflected XSS in phpMyAdmin 3.5.7
· [waraxe-2013-SA#103] - Multiple Vulnerabilities in phpMyAdmin
· [waraxe-2013-SA#104] - Multiple Vulnerabilities in Spider Event Calendar Wordpress Plugin
· [waraxe-2013-SA#105] - Multiple Vulnerabilities in Spider Catalog Wordpress Plugin
· [waraxe-2013-SA#106] - Multiple Vulnerabilities in Saurus CMS 4.7.1
· [waraxe-2018-SA#107] - Reflected XSS in FV Flowplayer Wordpress plugin
· [waraxe-2018-SA#108] - Username Disclosure in Breadcrumb NavXT Wordpress plugin
· [waraxe-2018-SA#109] - Multiple vulnerabilities in Wordfence Wordpress plugin
· [waraxe-2019-SA#110] - Reflected XSS in MapProxy 1.11.0
[ Go Back ]
Top members by posts
waraxe  waraxe - 2407
vince213333  vince213333 - 737
pexli  pexli - 665
Mullog  Mullog - 540
demon  demon - 485
shai-tan  shai-tan - 477
LINUX  LINUX - 404
Cyko  Cyko - 375
tsabitah  tsabitah - 328
y3dips  y3dips - 281
Cybercrime news
Detective Charged With Purchasing Stolen Credentials
Nidec Confirms Data Stolen In Ransomware Attack
Cisco Confirms Security Incident After Hacker Offers To Sell Data
Cicada3301 Ransomware Affiliate Program Infiltrated By Security Researchers
Alleged Bitcoin Hacker Searched 'Signs The FBI Is After You'
Anonymous Sudan DDoS Service Disrupted, Members Charged By US
Cisco Investigating Breach And Sale Of Data
Firm Hacked After Accidentally Hiring North Korean Cyber Criminal
North Korean Hackers Use Newly Discovered Linux Malware To Raid ATMs
Lynx Ransomware Analyses Reveal Similarities To INC Ransom
Recent Veeam Vulnerability Exploited In Ransomware Attacks
FBI Created A Cryptocurrency So It Could Watch It Being Abused
Ransomware Double-Extortion Group Listings Peaked In 2024
Ukrainian Malware Operator Pleads Guilty In US Court
Healthcare Orgs Warned Of Trinity Ransomware Attacks
About A Quarter Million Comcast Subscribers Had Their Data Stolen From Debt Collector
Apple Couldn't Tell Fake iPhones From Real Ones, Lost $2.5M In Scam
Ransomware Hits Critical Infrastructure Hard, Costs Adding Up
Ransowmare Crew Infects 100+ Orgs Monthly With New MedusaLocker Variant
Evil Corp/REvil Malware Crime Group Outed As Family Affair
More LockBit Hackers Arrested, Unmasked As Servers Siezed
Ransomware Forces Hospital To Turn Away Ambulances
Ransomware Gang Using Stolen MS Entra ID Creds To Bust Into Cloud
RansomHub Genius Tries To Put The Squeeze On Delaware Libraries
US Indicts Two Over Socially Engineered $230M+ Crypto Heist
Hacker news
FortiGate Admins Report Active Exploitation 0-Day. Vendor Isn't Talking.
White Hat Hackers Earn $500,000 On First Day Of Pwn2Own Ireland 2024
Russia Hit By DDoS During BRICS Summit
Data Storage In Spotlight Of Italian Security Committee After Intesa Breach
Pixel Perfect Ghostpulse Malware Loader Hides Inside PNG Image Files
Researchers Discover Flaws In 5 End-To-End Encrypted Cloud Services
Google Warns Of Samsung Zero Day Exploited In The Wild
Nidec Confirms Data Stolen In Ransomware Attack
Cisco Confirms Security Incident After Hacker Offers To Sell Data
Internet Archive Exposed Again – This Time Through Zendesk
Microsoft: macOS Vulnerability Potentially Exploited In Adware Attacks
Threat Actors Exploit Zero Days Within 5 Days, Says Mandiant
Cicada3301 Ransomware Affiliate Program Infiltrated By Security Researchers
Alleged Bitcoin Hacker Searched 'Signs The FBI Is After You'
Anonymous Sudan DDoS Service Disrupted, Members Charged By US
Varsity Brands Data Breach Impacts 65,000 People
Cisco Investigating Breach And Sale Of Data
Firm Hacked After Accidentally Hiring North Korean Cyber Criminal
North Korean Hackers Use Newly Discovered Linux Malware To Raid ATMs
Internet Archive Wobbles Back Online, With Limited Functionality
Iranian Cyberspies Exploiting Recent Windows Kernel Vuln
Log4j Still Being Exploited Nearly 3 Years Later
Thousands Of Fortinet Instances Vulnerable To Actively Exploited Flaw
Hacked Robot Vacuums Across The U.S. Started Yelling Slurs
Recent Veeam Vulnerability Exploited In Ransomware Attacks
Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
 Page Generation: 0.031 Seconds