8694 matches found
In Application Security, Good Enough Isn't
SAN FRANCISCO–There’s the old joke about two hunters running from a lion, and the one runner says to the other: we can’t outrun the lion. And his buddy replied, “I don’t have to outrun the lion, I only have to outrun you.” Many, over the years, have applied the same logic to application security:...
Critical: Red Hat Security Advisory: java-1.6.0-sun security update
Updated java-1.6.0-sun packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring...
sightFACTORY Sql Injection Vulnerability
Exploit for php platform in category web applications + Exploit Title :sightFACTORY web development Firm Sql Injection Vulnerability + Author : eXeSoul + Contact : email protected + Date : 16-02-2011 + category: Web Apps SQli + HomePage : www.indishell.in + Version : all + Tested on : windows/lin...
Century Marketing Inc SQL Injection Vunerability
Exploit for php platform in category web applications + Exploit Title :Century Marketing Inc web development Firm Sql Injection Vulnerability Author : eXeSoul Contact : email protected Date : 16-02-2011 HomePage : www.indishell.in Version : all Tested on : windows/linux Vulnerability Style : PHP...
sightFACTORY SQL Injection
Exploit Title :sightFACTORY web development Firm Sql Injection Vulnerability + Author : eXeSoul + Contact : [email protected] + Date : 16-02-2011 + category: Web Apps SQli + HomePage : www.indishell.in + Version : all + Tested on : windows/linux + Vulnerability Style : PHP Sql Injection...
Century Marketing Inc SQL Injection
Exploit Title :Century Marketing Inc web development Firm Sql Injection Vulnerability Author : eXeSoul Contact : [email protected] Date : 16-02-2011 HomePage : www.indishell.in Version : all Tested on : windows/linux Vulnerability Style : PHP Sql Injection Vunerability Vendor:...
Debian DSA-2163-1 : python-django - multiple vulnerabilities
Several vulnerabilities were discovered in the Django web development framework : - CVE-2011-0696 For several reasons the internal CSRF protection was not used to validate AJAX requests in the past. However, it was discovered that this exception can be exploited with a combination of browser...
[SECURITY] [DSA 2163-1] python-django security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2163-1 [email protected] http://www.debian.org/security/ Nico Golde February 14, 2011 http://www.debian.org/security/faq -...
Metasploit Framework v3.5.2 latest version download !
Our favourite exploitation framework – The Metasploit Framework has been updated! We now have Metasploit Framework version 3.5.2! "The Metasploit Framework is a penetration testing toolkit, exploit development platform, and research tool. The framework includes hundreds of working remote exploits...
Moderate: Red Hat Security Advisory: java-1.6.0-openjdk security update
Updated java-1.6.0-openjdk packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
I-COM 1.0 Local File Inclusion
Exploit Title : I-COM web Development LFI Vulnerability Author : ThunDEr HeaD Contact : [email protected] Date : 10-01-2011 HomePage : www.indishell.in Verstion : 1.0 Tested on : Sites By I-com Vulnerability Style : local file inclusion Vulnerability Dir : Directory traversal Greetz To...
AoA DVD Creator 2.5 ActiveX Stack Overflow
Exploit Title: AoA DVD Creator V2.5 Activex Date: Febrary 07 2011 Author: Carlos Mario Penagos Hollmann Software Link: http://www.aoamedia.com/aoadvdcreator.exe Version: v2.5 Tested on: Windows xp sp3 running on VMware Fusion 3.1 and VirtualBox 3.2.8 mail---- shogilord^gmail.com spams are...
Google Funds Web Anti Malware Startup Dasient
Google Ventures, the venture capital arm of Google Inc., has invested in anti malware firm Dasient, according to a statement from the company on Monday. Based in Sunnyvale, California, Dasient sells a Web anti malware technology and has deep ties to Google. Co-founders Neil Daswani and Shariq Riz...
Qcodo Development Framework 0.3.3 Full Info Disclosure
Exploit for php platform in category web applications Exploit Title: Qcodo Development Framework 0.3.3 Full Info Disclosure Google Dork: allintext: /qcodo/devtools/codegen.php Date: 5/02/2011 Author: Daniel Godoy Author Mail: DanielGodoyatGobiernoFederaldotcom Author Web:...
Qcodo Development Framework 0.3.3 - Full Information Disclosure
Exploit Title: Qcodo Development Framework 0.3.3 Full Info Disclosure Google Dork: allintext: /qcodo/devtools/codegen.php Date: 5/02/2011 Author: Daniel Godoy Author Mail: DanielGodoyatGobiernoFederaldotcom Author Web: www.delincuentedigital.com.ar Software Link: http://www.qcodo.com/ Version: Al...
Qcodo Development Framework 0.3.3 - Full Information Disclosure
Qcodo Development Framework 0.3.3 - Full Information Disclosure Exploit Title: Qcodo Development Framework 0.3.3 Full Info Disclosure Google Dork: allintext: /qcodo/devtools/codegen.php Date: 5/02/2011 Author: Daniel Godoy Author Mail: DanielGodoyatGobiernoFederaldotcom Author Web:...
Qcodo Development Framework 0.3.3 Information Disclosure
Exploit Title: Qcodo Development Framework 0.3.3 Full Info Disclosure Google Dork: allintext: /qcodo/devtools/codegen.php Date: 5/02/2011 Author: Daniel Godoy Author Mail: DanielGodoyatGobiernoFederaldotcom Author Web: www.delincuentedigital.com.ar Software Link: http://www.qcodo.com/ Version: Al...
SAUSAGE Con Delves into IT Security's 'Human Problem'
‘Why is security so hard?’ That’s the question that a new conference focused on “useable security” will attempt to answer by bringing together experts on security, software development and human-computer interaction. DEK: ‘Why is security so hard?’ That’s the question that a new conference will...
libuser security update
CentOS Errata and Security Advisory CESA-2011:0170 Updated libuser packages that fix one security issue are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CV...
Google Hacking Diggity Project, Advance Search Engine Hacking Tool !
The Google Hacking Diggity Activity is a analysis and development action committed to investigating the best recent techniques that advantage chase engines, such as Google and Bing, to bound analyze accessible systems and acute abstracts in accumulated networks. The activity folio contains...