2005 matches found
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Dumb math captcha: protection bypass backdoor...
Vulnerabilities in Dumb math captcha for WordPress
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Insufficient Anti-automation и Full path disclosure уязвимостях в плагине Dumb math captcha для WordPress. Insufficient Anti-automation: Капча на страницах записей уязвима к Constant values bypass method, который я описал в проекте Month of Bugs i...
D-Link - Captcha Bypass
D-Link - Captcha Bypass D-Link Captcha Bypass ------------------------------------- D-Link released new firmware designed to protect against malware that alters DNS settings by logging in to the router using default administrative credentials. There is a flaw in the captcha authentication system...
Joomla ArtForms 2.1b7 Remote File Inclusion
ArtForms 2.1b7 remote file includes From Turkey iskorpitx O bir dünya markası Asla Taklit Edilemez // swfmovie.php - swf output and config / output captcha image / / output captcha mp3 / ----------------------------------------------------------------------------------...
Joomla! Component ArtForms 2.1 b7 - Remote File Inclusion
Joomla! Component ArtForms 2.1 b7 - Remote File Inclusion ArtForms 2.1b7 remote file includes From Turkey iskorpitx O bir dünya markası Asla Taklit Edilemez // swfmovie.php - swf output and config / output captcha image / / output captcha mp3 /...
Joomla Component ArtForms 2.1 b7 Remote File Inclusion Vulnerabilities
No description provided by source. ArtForms 2.1b7 remote file includes From Turkey iskorpitx O bir dünya markası Asla Taklit Edilemez // swfmovie.php - swf output and config / output captcha image / / output captcha mp3 /...
D-Link Products Captcha Bypass Vulnerability
Exploit for hardware platform in category remote exploits ============================================ D-Link Products Captcha Bypass Vulnerability ============================================ D-Link Captcha Bypass ------------------------------------- D-Link released new firmware designed to...
Joomla Component ArtForms 2.1 b7 Remote File Inclusion Vulnerabilities
Exploit for unknown platform in category web applications ====================================================================== Joomla Component ArtForms 2.1 b7 Remote File Inclusion Vulnerabilities ====================================================================== ArtForms 2.1b7 remote file...
Joomla! Component ArtForms 2.1 b7 - Remote File Inclusion
ArtForms 2.1b7 remote file includes From Turkey iskorpitx O bir dünya markası Asla Taklit Edilemez // swfmovie.php - swf output and config / output captcha image / / output captcha mp3 / ----------------------------------------------------------------------------------...
D-Link - Captcha Bypass
D-Link Captcha Bypass ------------------------------------- D-Link released new firmware designed to protect against malware that alters DNS settings by logging in to the router using default administrative credentials. There is a flaw in the captcha authentication system that allows an attacker ...
D-Link CAPTCHA Bypass
D-Link Captcha Partially Broken May 12th, 2009 Hack-A-Day reported on D-Link’s new captcha system designed to protect against malware that alters DNS settings by logging in to the router using default administrative credentials. I downloaded the new firmware onto our DIR-628 to take a look, and...
Formshield Captcha - Older Version vulnerable to replay attacks
Replay attack on CAPTCHA Libraries Summary A CAPTCHA implementation that we tested were found to be vulnerable to replay attacks. The attack is explained in detail for Formshield – A popular DOT NET CAPTCHA implementation. NOTE: We discovered this during a Black Box engagement with one of our...
The use of injection techniques to attack the mail server and defenses and(II)-vulnerability warning-the black bar safety net
IIIinformation leaks Use of the technique: IMAP injection User Authentication Required: No The use of IMAP injection can be obtained using other methods can not get IMAP server information. If the user can the command“CAPABILITY”is injected into the parameter“mailbox”: |...
Directory traversal
Directory traversal vulnerability in captcha/captchaimage.php in the RWCards comrwcards 3.0.11 component for Joomla!, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the img parameter...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. E107: обход CAPTCHA, межсайтовый скриптинг...
Pligg 9.9.5 Cross Site Request Forgery
Written By Michael Brooks Special thanks to str0ke! Pligg - XSRF Protection Bypass and Captcha Bypass affects 9.9.5 XSRF Protection Bypass ' width="0%" height="0%" var pliggstorytovotefor="/story.php?title=pliggxss"; function r var Z=false; ifwindow.XMLHttpRequest try Z=new XMLHttpRequest...
Pligg CMS 9.9.5 - Cross-Site Request Forgery Protection Bypass Captcha Bypass
Pligg CMS 9.9.5 - Cross-Site Request Forgery Protection Bypass Captcha Bypass Written By Michael Brooks Special thanks to str0ke! Pligg - XSRF Protection Bypass and Captcha Bypass affects 9.9.5 XSRF Protection Bypass ' width="0%" height="0%" var pliggstorytovotefor="/story.php?title=pliggxss";...
Pligg 9.9.5 XSRF Protection Bypass and Captcha Bypass
No description provided by source. Written By Michael Brooks Special thanks to str0ke! Pligg - XSRF Protection Bypass and Captcha Bypass affects 9.9.5 XSRF Protection Bypass html !-- Remove this iframe from this file and place it on a site that you want to force people to vote for. Change these...
Pligg 9.9.5 XSRF Protection Bypass and Captcha Bypass
Exploit for unknown platform in category web applications ===================================================== Pligg 9.9.5 XSRF Protection Bypass and Captcha Bypass ===================================================== Written By Michael Brooks Pligg - XSRF Protection Bypass and Captcha Bypass...
Pligg CMS 9.9.5 - Cross-Site Request Forgery / Protection Bypass / Captcha Bypass
Written By Michael Brooks Special thanks to str0ke! Pligg - XSRF Protection Bypass and Captcha Bypass affects 9.9.5 XSRF Protection Bypass ' width="0%" height="0%" var pliggstorytovotefor="/story.php?title=pliggxss"; function r var Z=false; ifwindow.XMLHttpRequest try Z=new XMLHttpRequest...