 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 93
 Members: 0
 Total: 93
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
| bima |
|
| Replies: 6 |
| Views: 17347 |
|
|
 |
|
 |
|
| I forgot to talk about magic_quotes_gpc... the critical bug is the sql injection protection bypass... the encyclopedia module bug is a stupid one, there are some more sql injection vulnerabilities on ... |
|
|
|
| bima |
|
| Replies: 4 |
| Views: 12718 |
|
|
|
|
|
|
| Hmm, there is need for original file. So please upload it to somewhere and then post here url. And before upload pach that php file with zip archiver, so that it will be exactly byte-by-byte as origin ... |
|
|
|
| bima |
|
| Replies: 8 |
| Views: 15070 |
|
|
|
|
|
|
Thats exploits can only add or del admin account..
We are talking about user account..
plz read carefully, do u ???
 |
|
|
|
| bima |
|
| Replies: 8 |
| Views: 15070 |
|
|
|
|
|
|
see :
http://www.securityfocus.com/archive/1/374110/2004-09-03/2004-09-09/0
the POST method more nice to check the HTTP respons of the target.
the GET method more difficult to parsing the HTT ... |
|
|
 Forum:Perl Posted: Thu Sep 02, 2004 1:31 am Subject: okay |
|
|
| bima |
|
| Replies: 2 |
| Views: 30867 |
|
|
|
|
|
|
thanx bro...
|
|
|
|
| bima |
|
| Replies: 7 |
| Views: 15773 |
|
|
|
|
|
|
let see the output snipped :
870. http://www.ppp-kepri.or.id
Processing http://www.ppp-kepri.or.id.....
Proses GET sedang berlangsung...
http://www.ppp-kepri.or.id/modules.php?name=Search& ... |
|
|
|
| bima |
|
| Replies: 2 |
| Views: 30867 |
|
|
|
|
|
|
ok, let me introduce my new script :
WebAPP newest bug mass scanner
it wrote in perl.
ucan see it at
http://www.neoteker.or.id/modules.php?op=modload&name=News&file=article&sid=13 ... |
|
|
| Forum:PhpNuke Posted: Tue Aug 31, 2004 7:47 am Subject: news |
|
|
| bima |
|
| Replies: 7 |
| Views: 15773 |
|
|
|
|
|
|
right now, i tested new script that do mass scanning of
phpnuke Search modul bug.
see http://www.waraxe.us/?modname=sa&id=036
then i found that many vulnerable site did not patch (yet).
... |
|
|
| Forum:PhpNuke Posted: Tue Aug 31, 2004 7:17 am Subject: news |
|
|
| bima |
|
| Replies: 3 |
| Views: 11949 |
|
|
|
|
|
|
u can obtain it at :
http://packetstormsecurity.org/Crackers/md5_cracker.pl
|
|
|
|
| bima |
|
| Replies: 3 |
| Views: 12578 |
|
|
|
|
|
|
u see the date of posting ?
19/6/2003
SQL Inject in ProFTPD Login against PostgreSQL Using mod_sql
that's too old 
r u sure that u test that script to the right version of proftpd ?
:r ... |
|
|
| Forum:PhpNuke Posted: Mon Aug 23, 2004 10:31 am Subject: sorry |
|
|
| bima |
|
| Replies: 7 |
| Views: 15773 |
|
|
|
|
|
|
sorry, next time maybe i have time to translate it...
 |
|
|
| Forum:PhpNuke Posted: Mon Aug 23, 2004 10:11 am Subject: thx |
|
|
| bima |
|
| Replies: 3 |
| Views: 11949 |
|
|
|
|
|
|
thx bro...
next time i'll be make it more great...
 |
|
|
|
| bima |
|
| Replies: 6 |
| Views: 15568 |
|
|
|
|
|
|
And one more thing - mysql does not support multiple sql queries through php scripts, so forget about "... ; DROP TABLE ..." 
u right , maybe the next mysql version have this feature,
so ... |
|
|
|
| bima |
|
| Replies: 3 |
| Views: 11949 |
|
|
|
|
|
|
Again, let me introduce our perl script :
simple md5 hash cracker (dictionary attack) against phpnuke hash password.
u can see at :
http://www.neoteker.or.id/modules.php?op=modload&name=News& ... |
|
|
|
| bima |
|
| Replies: 7 |
| Views: 15773 |
|
|
|
|
|
|
sorry, that's indonesian languange.
thx bro.
 |
|
|
| Page 1 of 2 |
Goto page 1, 2Next
All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
