09so Cross Site Scripting

Exploit Title: 09so Cross Site Scripting Author: Th4 MasK Contact to ; th4maskatwindowslive.com Software Link: http://www.09so.com Date : 02.03.2012 Platform : Php Demos Site : http://www.09so.com/s.php?key="alert"DarkDevilZ.iN / Th4 MasK" Virüslerden Önce Akil Var. Ne Kadar Efendi Olursan Ol Hay...

RSSLounge Cross Site Scripting

Exploit Title: RSSLounge XSS Date: 25.01.2011 - 21.05 Author: Mr.PaPaRoSSe Tested On: BackTrack Platform: Php ------------------------------------------------------------- Post Search Box "alert"DarkDevilZ" ------------------------------------------------------------- Mr.PaPaRoSSe / 3spi0n...

Panasonic China website hacked and Redirected

Panasonic China website hacked and Redirected Latest notification by DarkDevilz Crew to THN , They hack Panasonic's China websites and Redirect users to a Black color Deface Page as shown. "3spi0n" named Hacker from team take responsibility to perform this Hack. Hacker compromise the URL : , and...

INNA - Romanian singer's Site Defaced by DARKDevilz Crew

INNA - Romanian singer's Site Defaced by DARKDevilz Crew After Hack of Official Website www.innaofficial.com and www.inna.ro of INNA by DARKDevilz Crew Hackers., Million of her Fans Redirected to another defaced page at as shown above. Below we upload a screenshot of Source code of URL : . Here y...

D-Zayn Web Design Access SQL Injection

Exploit Title: D-Zayn Web Design Access SQL Injecti0n Vulnerability Date: 25/12/2011 Author: 3spi0n Software Website: http://www.d-zayn.com/ Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Dorks: "created by d-zayn.com" Vulnerable File : " All Files " $ Demo Sites:...

Maks Publication And Media Services Cross Site Scripting / SQL Injection

Exploit Title: Maks Publications & Media Services Multiple Vulnerability Date: 06.12.2011 - 17:55 Author: 3spi0n Software Website: Not Sites - Not E-mail Because Working With Ghana Assembly : Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Dorks: "Maks Publications & media services"...

Whois.com Cross Site Scripting

Exploit Title: whois.com XSS Date: 26.11.2011 - 19.23 Author: Mr.PaPaRoSSe Tested On: Win7 Platform: Php ------------------------------------------------------------- http://domains.whois.com/hosting.php?type= "alert"DarkDevilZ / Mr.PaPaRoSSe"...

YSD Web Design SQL Injection

Exploit Title: Ysd Web Design Sql Injection Vulnerability Date: 20/11/2011 - 03:18 Author: 3spi0n Software Website: http://www.ysd.hk/ Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Vulnerable File: Changer $ Dorks: "Designed by YSD" $ Demo Sites:...

iCloudCenter.net Cross Site Scripting

Exploit Title: Icdomains XSS Date: 11.11.2011 - 18.20 Author: Mr.PaPaRoSSe Tested On: BackTrack 5 - Win7 Platform: Php ------------------------------------------------------------- Searchbox alertdocument.cookie http://icloudcenter.net/demos/icdomains/searchresults.php Search...

SmartJobBoard Cross Site Scripting

Exploit Title: SmartJobBoard XSS Date: 05.11.2011 - 18.14 Author: Mr.PaPaRoSSe Tested On: BackTrack 5 - Win7 Platform: Php ------------------------------------------------------------- alert"DDz Mr.PaPaRoSSe" DEMO: http://www.smartjobboard.com/demo/search-resumes/ Keywords : alert"DDz Mr.PaPaRoSS...

Domain Shop Cross Site Scripting

Exploit Title: Domain Shop XSS Date: 30.10.2011 - 19.05 Author: Mr.PaPaRoSSe Tested On: BackTrack 5 - Win7 Platform: Php ------------------------------------------------------------- http://www.domainshopscript.com/demo/index.php Search Box "alertdocument.domain © Copyright 2006 Domain Shop Scrip...

Mevin Productions SQL Injection

Exploit Title: mevin productions Sql Injection Vulnerability Date: 30/10/2011 - 23:00 Author: 3spi0n Software Website: http://www.mevin.com/ Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Vulnerable File: Event.php $ Dorks: "Powered by: mevin productions" inurl:/event.php?id= $ Demo Sites...

360ideas SQL Injection

Exploit Title: 360ideas Sql Injection Vulnerability Date: 30/10/2011 - 22:40 Author: 3spi0n Software Website: http://www.360ideas.com/ Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Vulnerable File: Event.php and other .php files. $ Dorks: "Site by 360ideas.com" $ Demo Sites:...

Smbwebdemo SQL Injection

Exploit Title: Smbwebdemo Sql Injection Vulnerability Date: 30/10/2011 - 00:57 Author: 3spi0n Software Website: http://www.smbwebdemo.com/ Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Vulnerable File: Changer $ Dorks: "Designed by : Smbwebdemo" $ Demo Sites:...

Simple Balance 2.0 Cross Site Scripting

Exploit Title: Simple Balance 2.0 XSS Date: 28.10.2011 - 20.44 Author: Mr.PaPaRoSSe Tested On: BackTrack 5 - Win7 Platform: Php ------------------------------------------------------------- http://demo/tags/?s=XSS alert"DDz Mr.PaPaRoSSe" http://www.jennyandians.com/?s=alert"DDz Mr.PaPaRoSSe"...

Art Dimension SQL Injection

Exploit Title: Art Dimension Sql Injection Vulnerability Date: 25.10.2011 - 01:03 Author: 3spi0n Software Website: http://www.artdimension.ca/ Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Vulnerable File: Page.php / Pages.php $ Dorks: "Designed by Art Dimension" $ Demo Sites:...

Rinkya Cross Site Scripting

Exploit Title: Rinkya Cross Site Scripting Date: 22.10.2011 - 17.52 Author: Mr.PaPaRoSSe Tested On: BackTrack 5 - Windows xp sp3 Platform: Php ------------------------------------------------------------- search.php http://www.rinkya.com/membership/search.php "alert"DDz Mr.PaPaRoSSe"...

Unfixed XSS vulnerability at www.yesimm.in

Security researcher DarkDevilz, has submitted on 16/08/2009 a cross-site-scripting XSS vulnerability affecting www.yesimm.in, which at the time of submission ranked 288448 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/07/2010. It is...