4486 matches found
Joomla Aclassfb Shell Upload
Title : Joomla comaclassfb File Upload Vulnerability Author : DevilScreaM Date : 10 January 2014 Category : Web Applications Vendor : http://www.almondsoft.com Type : PHP Greetz : 0day-id.com | newbie-security.or.id | Borneo Security | Indonesian Security Indonesian Hacker | Indonesian Exploiter ...
[Twitter Password Dump] Command-line Tool to Recover Twitter Password from Web Browsers
Twitter Password Dump is the command-line tool to instantly recover your lost Twitter password from all the popular web browsers. Currently it can recover your Twitter password from following applications, Firefox Internet Explorer v6.x - v10.x Google Chrome Chrome Canary/SXS CoolNovo Browser Ope...
Breach incident
News Breach incident Share December 11th, 2013 At Opera, we strive to be open, and we want to continue this tradition, by sharing with you what happens here. High profile companies like Opera are under continuous attack by hackers trying to break into their systems, and we want to tell you about ...
Certificate update
Security Certificate update Share December 9th, 2013 Last week we became aware of the existence of several unauthorized security certificates, issued in violation of rules for creation of such certificates. The certificates chained back to a French certificate authority, ANSSI, and had been signe...
Security changes and features of Opera 18
News Security changes and features of Opera 18 Share December 4th, 2013 Opera 18 is now out on the stable channel, so we wanted to take a moment to go through some of the new features from a security perspective. Media Access One of the new features is media access. That is; camera and microphone...
Joomla Alphauserpoints phpThumb.php Shell Upload
Title : Joomla comalpahuserpoints Remote Code Execution Author : DevilScreaM Date : 1 Desember 2013 Category : Web Applications Type : PHP Vendor : http://alphaplug.com/ Greetz : 0day-id.com | newbie-security.or.id | Borneo Security | Indonesian Security Indonesian Hacker | Indonesian Exploiter |...
Opera < 18.0 Multiple Vulnerabilities
Binary data 8056.prm...
Opera < 18.0 Multiple Unspecified Vulnerabilities
Binary data 801614.prm...
WordPress Theme Amplus - Cross-Site Request Forgery
Title : Wordpress Amplus Themes CSRF File Upload Vulnerability Author : DevilScreaM Date : 11/17/2013 - 17 November 2013 Category : Web Applications Type : PHP Vendor : http://themeforest.net Download : http://themeforest.net/item/amplus-responsive-multilingual-wordpress-theme/ Greetz : 0day-id.c...
WordPress Amplus Cross Site Request Forgery
Title : Wordpress Amplus Themes CSRF File Upload Vulnerability Author : DevilScreaM Date : 11/17/2013 - 17 November 2013 Category : Web Applications Type : PHP Vendor : http://themeforest.net Download : http://themeforest.net/item/amplus-responsive-multilingual-wordpress-theme/ Greetz : 0day-id.c...
DDoS attack from Browser-based Botnets that lasted for 150 hours
Browser-based botnets are the T-1000s of the DDoS world. Just like the iconic villain of the old Judgment Day movie, they too are designed for adaptive infiltration. This is what makes them so dangerous. Where other more primitive bots would try to brute-force your defenses, these bots can simply...
New home for the Security Group blog
News New home for the Security Group blog Share October 31st, 2013 Welcome to the new home of the Opera Security Group. We have changed our blogging platform. For more more information regarding the switch, please see this post. If you received this blog post in your feed reader, you do not need ...
Opera < 17 Multiple Vulnerabilities
The version of Opera installed on the remote host is a version prior to version 17. It is, therefore, reportedly affected by multiple unspecified vulnerabilities. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid70532; scriptversion"1.4";...
Opera Cross-Site Scripting (XSS) Vulnerability - Mac OS X
Opera is prone to XSS attack. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:opera:operabrowser"; ifdescription...
Opera Cross-Site Scripting (XSS) Vulnerability - Windows
Opera is prone to XSS attack. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:opera:operabrowser"; ifdescription...
Opera < 15 UTF-8 Encoding XSS
The version of Opera installed on the remote host is a version prior to version 15. It is, therefore, vulnerable to cross-site scripting attacks due to improper validation of UTF-8 page encoding settings. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid70217;...
Opera < 15.0 Cross-site Scripting Vulnerability
Binary data 8009.prm...
Opera < 15.0 Cross-site Scripting Vulnerability
Binary data 801573.prm...
CVE-2013-4705
Cross-site scripting XSS vulnerability in Opera before 15.00 allows remote attackers to inject arbitrary web script or HTML by leveraging UTF-8 encoding...
Cross site scripting
Cross-site scripting XSS vulnerability in Opera before 15.00 allows remote attackers to inject arbitrary web script or HTML by leveraging UTF-8 encoding...