10 matches found
sphpblog-csrf.txt
SimplePHPBlog Cross Site Request Forgeries Tested on v0.4.9 Discovered by: Demential Web: http://hackish.altervista.org E-mail: deme at hackish dot eu SimplePHPBlog website: http://www.simplephpblog.com/ - posting img=addblock.php?action=delete&blockid= in a comment where is an ID of a block, whe...
Multiple CSRF in SimplePHPBlog
SimplePHPBlog Cross Site Request Forgeries Tested on v0.4.9 Discovered by: Demential Web: http://hackish.altervista.org E-mail: deme at hackish dot eu SimplePHPBlog website: http://www.simplephpblog.com/ - posting img=addblock.php?action=delete&blockid= in a comment where is an ID of a block, whe...
SimplePHPBlog Hacking
How to hack a server with Simple PHP Blog uploading an htacess file from imguploadcgi.php page. Tested on v0.4.9 by Demential http://www.hackish.eu mailto: [email protected] video here: http://hackish.eu/video/phpblog.avi vlc download: http://www.videolan.org/vlc/...
MKPortal Full Path Disclosure
MkPortal Full Path Disclosure Vulnerability discovered by: Demential Web: http://headburn.altervista.org E-mail: infoatburnheaddotit Mkportal website: http://www.mkportal.it Tested on MKPortal M1.1 RC1 with PhpBB other versions may also be affected. http://www.victim.com/mkportal/admin.php?MKPATH...
MkPortal "All Guests are Admin" Exploit
MkPortal "All Guests are Admin" Exploit Vulnerability discovered and exploited by: Demential Web: http://headburn.altervista.org E-mail: infoatburnheaddotit Mkportal website: http://www.mkportal.it Start Macromedia Flash and create an swf file with this code: var idg:Number = 9; var p13:Number = ...
mkportalfun.txt
MkPortal "All Guests are Admin" Exploit Vulnerability discovered and exploited by: Demential Web: http://headburn.altervista.org E-mail: infoatburnheaddotit Mkportal website: http://www.mkportal.it Start Macromedia Flash and create an swf file with this code: var idg:Number = 9; var p13:Number = ...
MKPortal M1.1.1 - 'Urlobox' Cross-Site Request Forgery
MkPortal Urlobox Cross Site Request Forgery Discovered by: Demential Web: http://www.burnhead.it E-mail: [email protected] Mkportal website: http://www.mkportal.it posting img?ind=urlobox&op=delete&idurlo=X/img in MkPortal urlobox where X is an ID of a message, when administrator opens urlobox pag...
MKPortal M1.1.1 - Urlobox Cross-Site Request Forgery
MKPortal M1.1.1 - Urlobox Cross-Site Request Forgery MkPortal Urlobox Cross Site Request Forgery Discovered by: Demential Web: http://www.burnhead.it E-mail: [email protected] Mkportal website: http://www.mkportal.it posting img?ind=urlobox&op=delete&idurlo=X/img in MkPortal urlobox where X is an ...
MKPortal M1.1.1 (Urlobox) Cross Site Request Forgery Vulnerability
No description provided by source. MkPortal Urlobox Cross Site Request Forgery Discovered by: Demential Web: http://www.burnhead.it E-mail: [email protected] Mkportal website: http://www.mkportal.it posting img?ind=urlobox&op=delete&idurlo=X/img in MkPortal urlobox where X is an ID of a message,...
MKPortal M1.1.1 (Urlobox) Cross Site Request Forgery Vulnerability
Exploit for unknown platform in category web applications ================================================================== MKPortal M1.1.1 Urlobox Cross Site Request Forgery Vulnerability ================================================================== MkPortal Urlobox Cross Site Request...