Lucene search
K

575 matches found

threatpost
threatpost
added 2012/02/08 12:48 p.m.12 views

Attackers Using Fake Google Analytics Code to Redirect Users to Black Hole Exploit Kit

Injecting malicious code into the HTML used on legitimate Web sites is a key part of the infection lifecycle for many attack crews, and they often disguise and obfuscate their code to make it more difficult to analyze or so it appears to be legitimate code. The latest instance of this technique h...

7.2AI score
Exploits0References5
thn
thn
added 2011/10/18 6:59 p.m.2 views

Google Enable SSL-based searches, Will impact Google Analytic !

Google Enable SSL-based searches, Will impact Google Analytic ! According to a blog post by Google, the company is taking steps towards making search more secure for its users. Users will be redirected to https:// instead of https:// when going to do a Google search. By forcing SSL on...

7.1AI score
Exploits0
thn
thn
added 2011/09/19 5:33 p.m.2 views

NetworkMiner 1.1 - Network Forensic Analysis Tool (NFAT) Released

NetworkMiner 1.1 - Network Forensic Analysis Tool NFAT Released NetworkMiner is a Network Forensic Analysis Tool NFAT for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting...

7.1AI score
Exploits0
thn
thn
added 2011/09/19 5:33 p.m.14 views

NetworkMiner 1.1 - Network Forensic Analysis Tool (NFAT) Released

NetworkMiner 1.1 - Network Forensic Analysis Tool NFAT Released NetworkMiner is a Network Forensic Analysis Tool NFAT for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting...

6.9AI score
Exploits0
nmap
nmap
added 2011/03/31 8:32 p.m.89 views

http-affiliate-id NSE Script

Grabs affiliate network IDs e.g. Google AdSense or Analytics, Amazon Associates, etc. from a web page. These can be used to identify pages with the same owner. If there is more than one target using an ID, the postrule of this script shows the ID along with a list of the targets using it. Support...

10CVSS0.3AI score0.99448EPSS
Exploits33
n0where
n0where
added 2010/11/07 8:41 p.m.48 views

Injecting Fake Updates: Evilgrade

Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates. It comes with pre-made binaries agents, a working default configuration for fast pentests, and has it’s own WebServer and DNSServer modules. Easy to set up new...

0.8AI score
Exploits0References1
packetstorm
packetstorm
added 2009/12/05 12:0 a.m.34 views

Yoast Google Analytics Cross Site Scripting

Yoast GA Plugin for WP - Cross Site Scripting Vulnerability Version Affected: 3.2.4 newest Info: The Google Analytics for WordPress plugin automatically tracks and segments all outbound links from within posts, comment author links, links within comments, blogroll links and downloads. It also...

Exploits0
exploitpack
exploitpack
added 2009/12/04 12:0 a.m.25 views

WordPress Plugin Yoast Google Analytics 3.2.4 - 404 Error Page Cross-Site Scripting

WordPress Plugin Yoast Google Analytics 3.2.4 - 404 Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/37209/info Yoast Google Analytics for WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An...

Exploits0
zdt
zdt
added 2009/12/04 12:0 a.m.39 views

WordPress Yoast GA 3.2.4 Plugin XSS

Exploit for unknown platform in category web applications ================================ Yoast GA 3.2.4 Plugin for WP XSS ================================ Info: The Google Analytics for WordPress plugin automatically tracks and segments all outbound links from within posts, comment author links...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2009/12/04 12:0 a.m.143 views

[InterN0T] Google Analytics plugin for Wordpress - XSS Vulnerability

Yoast GA Plugin for WP - Cross Site Scripting Vulnerability Version Affected: 3.2.4 newest Info: The Google Analytics for WordPress plugin automatically tracks and segments all outbound links from within posts, comment author links, links within comments, blogroll links and downloads. It also...

5.9AI score
Exploits0
patchstack
patchstack
added 2009/12/04 12:0 a.m.8 views

WordPress Google Analytics Plugin 3.2.4 - 404 Error Page Cross-Site Scripting Vulnerability

This Google Analytics plugin is prone to a cross-site scripting vulnerability. Application fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal cookie-based...

2.8AI score
Exploits0References1Affected Software1
exploitdb
exploitdb
added 2009/12/04 12:0 a.m.32 views

WordPress Plugin Yoast Google Analytics 3.2.4 - 404 Error Page Cross-Site Scripting

source: https://www.securityfocus.com/bid/37209/info Yoast Google Analytics for WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
nessus
nessus
added 2009/08/21 12:0 a.m.18 views

Google Analytics on An Internal Web Server Detection

A link to urchin.js from Google Analytics has been found on this internal web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid40668; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate",...

5.3AI score
Exploits0References1
myhack58
myhack58
added 2009/04/24 12:0 a.m.16 views

Use GOOGLE Analyzer do server limit dos-vulnerability warning-the black bar safety net

This article is purely YY, and finally did not practice success, but does not exclude other sites have similar possible. Many sites are using google's statistics. When we from a website, A link to a google statistics Site B, google will record the referer URI, and stored into the B COOKIE. If we...

Exploits0
packetstorm
packetstorm
added 2008/12/09 12:0 a.m.41 views

Google Analytics Stored Cross Site Scripting

====================================================== ================= = Google Analytics - Stored Cross Site Scripting Vulnerability = = Vendor Website: = http://www.google.com = = Affected Version: = -- http://www.google.com/analytics/ = = Public disclosure on 8th December 2008 =...

7.4AI score
Exploits0
Rows per page
Query Builder