Login or Register :: Home :: Search :: Your Account :: Forums :: Waraxe Advisories :: Tools :: January 13, 2026 Menu Home Logout Discussions Forums Members List IRC chat Tools Base64 coder MD5 hash CRC32 checksum ROT13 coder SHA-1 hash URL-decoder Sql Char Encoder Affiliates y3dips ITsec Md5 Cracker User Manuals AlbumNow Content Content Sections FAQ Top Info Feedback Recommend Us Search Journal Your Account User Info Welcome, Anonymous Nickname Password (Register) Membership: Latest: MichaelSnaRe New Today: 0 New Yesterday: 0 Overall: 9144 People Online: Visitors: 81 Members: 0 Total: 81 Full disclosure Defense in depth -- the Microsoft way (part 95): the (shared)"Start Menu" is dispensable Re: Multiple Security Misconfigurations and CustomerEnumeration Exposure in Convercent Whistleblowing Platform(EQS Group) RIOT OS 2026.01-devel-317 Stack-Based Buffer Overflow in RIOT ethos Serial Frame Parser RIOT OS 2026.01-devel-317 Stack-Based Buffer Overflow in tapslip6 Utility via Unbounded Device Path Construction TinyOS 2.1.2 Stack-Based Buffer Overflow in mcp2200gpio TinyOS 2.1.2 printfUART Global Buffer Overflow via UnboundedFormat Expansion KL-001-2026-01: yintibao Fun Print Mobile Unauthorized Access via Context Hijacking Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group) Panda3d v1.10.16 Uncontrolled Format String in Panda3D egg-mkfont Allows Stack Memory Disclosure Panda3d v1.10.16 egg-mkfont Stack Buffer Overflow Panda3d v1.10.16 deploy-stub Unbounded Stack Allocation Leading to Uninitialized Memory MongoDB v8.3.0 Integer Underflow in LMDB mdb_load Bioformats v8.3.0 Untrusted Deserialization of Bio-Formats Memoizer Cache Files Bioformats v8.3.0 Improper Restriction of XML External Entity Reference in Bio-Formats Leica Microsystems XML Parser MongoDB v8.3.0 Heap Buffer Underflow in OpenLDAP LMDB mdb_load IT Security and Insecurity Portal www.waraxe.us Forum Index Search found 25 matches Flash tag Forum:PhpBB Posted: Sun May 04, 2008 10:00 am Subject: Flash tag shmk Replies: 2 Views: 8279 No reply means that is it quite secure? Flash tag Forum:PhpBB Posted: Sun Apr 27, 2008 9:24 am Subject: Flash tag shmk Replies: 2 Views: 8279 I'm thinking to add a TAG that allow to insert swf in posts. I'm not a flash expert so... swf files can cause serious security holes in a php system? (retrive cookies, inject something bad, get an ... DOM XSS Forum:Cross-site scripting aka XSS Posted: Sat Jan 19, 2008 9:13 pm Subject: DOM XSS shmk Replies: 1 Views: 12288 I heard people talking about DOM XSS that instead of inserting jscript in the page code use hole in the javascript using DOM inserted in the page. Is it possible? How does it function? What kind ... Link in forum Forum:Php Posted: Mon Jan 14, 2008 9:51 pm Subject: Link in forum shmk Replies: 6 Views: 13864 Attacker can first place normal picture to remote server and then post img link to it. This will pass all security tests and posting will be allowed. After that attacker just changes original image on ... Link in forum Forum:Php Posted: Sun Jan 13, 2008 3:02 pm Subject: Link in forum shmk Replies: 6 Views: 13864 Anti-CSRF measures with random token or even with CAPTCHA (for critical requests) are very effective by my personal experience. So if you have securely written code with no potential CSRF threats, the ... Link in forum Forum:Php Posted: Sun Jan 13, 2008 1:42 pm Subject: Link in forum shmk Replies: 6 Views: 13864 It's always possible to fool the security filters. Attacker can first place normal picture to remote server and then post img link to it. This will pass all security tests and posting will be allowed. ... Link in forum Forum:Php Posted: Sun Jan 13, 2008 9:54 am Subject: Link in forum shmk Replies: 6 Views: 13864 What's the most secure PHP filter that allow users to insert links to sites or images in a forum without flaws in security? (regarding xss and csrf overall) WYSIWYG are secure ? Forum:PhpNuke Posted: Tue Sep 14, 2004 4:49 pm Subject: WYSIWYG are secure ? shmk Replies: 4 Views: 14522 So I can install it without fear ? WYSIWYG are secure ? Forum:PhpNuke Posted: Thu Sep 09, 2004 9:10 am Subject: WYSIWYG are secure ? shmk Replies: 4 Views: 14522 I have heard on net that use a WYSIWYG make big holes in security... is all true ? I have found this 2: http://www.phpnuker.de/ (using FCKEditor) http://www.kodetech.com/nuke70/ (using Spaw) C ... Who is JackFromWales4u2? Forum:PhpNuke Posted: Thu Sep 09, 2004 8:59 am Subject: Re: Who is JackFromWales4u2? shmk Replies: 8 Views: 16113 I then ran a JackFromWales4u218600 Now the sites are 44300 Protect varchar(255) Forum:Php Posted: Wed Sep 01, 2004 10:02 am Subject: Protect varchar(255) shmk Replies: 16 Views: 36040 I'm back ! Is possible echo smiles without make some security holes ? To echo smiles i made this piece of code but I think is not so secure $sqlsm = "SELECT code, smile_ ... Really Nice Drop-Down Menu Forum:Javascript Posted: Tue Aug 10, 2004 1:20 pm Subject: Really Nice Drop-Down Menu shmk Replies: 1 Views: 10772 I have found a nice dropdown menu here http://www.destroydrop.com/javascripts/tree/ I'm not a specialist in Java security, so if someone will find some security hole in this script please warnin ... Protect varchar(255) Forum:Php Posted: Tue Aug 03, 2004 9:32 pm Subject: Protect varchar(255) shmk Replies: 16 Views: 36040 Thx again... saturday i'll leave for a 2 weeks holiday so I don't disturbe you no more Good Holiday Protect varchar(255) Forum:Php Posted: Tue Aug 03, 2004 9:27 am Subject: Protect varchar(255) shmk Replies: 16 Views: 36040 after all this I have a REALLY stupid question (come in my mind after see some PHPNuke module)... Variable taked from database but not used later for sql INSERT or SELECT (only "echo" on pa ... -=LOGO COMPETITION!=- Forum:General discussion Posted: Mon Aug 02, 2004 9:49 pm Subject: -=LOGO COMPETITION!=- shmk Replies: 21 Views: 43046 too late the competition is over Doh ! Page 1 of 2 Goto page 1, 2Next All times are GMT Select a forumSecurity Research by waraxe----------------General discussionHow to fixMetasploit relatedHash cracking requests----------------MD5 hashesAll other hashesHash related informationhttp://www.waraxe.us portal----------------SuggestionsCooperation proposalsSecurity bugs and issues in general----------------Newbies cornerSql injectionCross-site scripting aka XSSRemote file inclusionFull path disclosureShell commands injectionPhishing and Social EngineeringAll other security holesVarious software----------------PhpNukePostNukePhpBBXMB forumvBulletin BoardInvision Power Boarde107MamboJoomlaXOOPSM$ WindowsLinux worldAll other softwareCoppermine Photo GalleryProgramming languages----------------PhpMySqlPerlJavaJavascriptC and C++Visual BasicBorland Delphi and PascalPythonHTML and XMLAssemblerReverse engineering----------------Newbies cornerDisassemblingPHP script decode requestsMiscellaneous stuff----------------Future of the ITNanotechnologyFun cornerLinksTry2hack sitesProxy databaseDirect Downloads----------------ToolsTutorialsWordlistsRecycle Bin----------------Removed messagesOutdated posts Powered by phpBB © 2001-2008 phpBB Group

PCWizardHub - Helping you fix, build, and optimize your PC life
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.053 Seconds