7053 matches found
JobHut 1.2 Remote Password Change/Delete/Activate User Vulnerability
Exploit for unknown platform in category web applications ==================================================================== JobHut 1.2 Remote Password Change/Delete/Activate User Vulnerability ====================================================================...
Ken "Skywing" Johnson joins Microsoft security team
Microsoft has hired yet another well-known security researcher to join its ever-growing team of exploit and defense experts. This time it’s Ken Johnson, known in the hacker world as Skywing. Johnson is known as an expert on debugging and reverse engineering, and has done a tremendous amount of wo...
Facebook doesn't believe it's really Kevin Mitnick
In an ironic twist, Kevin Mitnick, a social engineering master who went to jail for impersonating others to get information to access computer networks without authorization, couldn’t access his own Facebook account for weeks because administrators at the social networking site didn’t believe he...
GMail, GTalk phishing scam underway
Attention GMail and GTalk users: There’s a major spam run underway with social engineering lures to steal your login cretentials. This image shows a GMail message that purports to be an account termination warning from Google but, if a user is tricked into clicking on the link, he/she is redirect...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Applications Platform Engineering component in Oracle E-Business Suite 11.5.10 CU2 and 12.0.6 allows local users to affect confidentiality via unknown vectors...
PHPmotion 2.1 Cross Site Request Forgery
PHPmotion Source of pwned.html file: Once your victim has visited your evil page, You may now be able to log...
PHPmotion <= 2.1 CSRF Vulnerability
No description provided by source. PHPmotion = 2.1 CSRF vulnerability Author: Ausome1 Email: [email protected] Website: http://www.enigmagroup.org Description: Change a member's password and/or email...
PHPmotion 2.1 - Cross-Site Request Forgery
PHPmotion 2.1 - Cross-Site Request Forgery PHPmotion Source of pwned.html file: Once your victim has visited your evil page, You may now be able to log into their PHP...
PHPmotion <= 2.1 CSRF Vulnerability
Exploit for unknown platform in category web applications =================================== PHPmotion Source of pwned.html file: input type="submit" value="Update settings"...
Social engineering the use of three steps-vulnerability warning-the black bar safety net
This should be the x-Files made on the article Everyone must know the super-hacker Kevin Mitnick, right, deep for his social engineering impressed by, the United States Department of Defense, the Pentagon, the CIA, the North American air defense system...... Is he a stroll of the place, no one...
GSC Privilege Escalation Exploit
Name: Michael Gray Website: www.ownerarium.net Contact: [email protected] Discovered Exploit: 06-05-2008 Vulnerable Software Title: GSC Vulnerable Version: = 2067 Severity: CRITICAL Website: http://www.getgsc.com Reported to vendor: Yes Actively exploited: Yes Exploit Discovery...
gsc-kick.txt
Name: Michael Gray Website: www.ownerarium.net Contact: [email protected] Discovered Exploit: 06-05-2008 Vulnerable Software Title: GSC Vulnerable Version: = 2067 Severity: CRITICAL Website: http://www.getgsc.com Reported to vendor: Yes Actively exploited: Yes Exploit Discovery...
Cisco Building Broadband Service Manager Cross-Site Scripting Vulnerability
Cisco Building Broadband Service Manager BBSM 5.3 SP2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability exists due to an input validation error in certain web pages associated with the BBSM web...
Hackers social engineering attacks new technologies:opportunities and-attack-vulnerability warning-the black bar safety net
Opportunities type of attack refers to a specific time, place, event, environmental conditions, take special tools for the invasion and destruction of the means, it belongs to social engineering attacks, and in 2 0 0 8 years will frequently appear. Trendy attacks As social engineering attacks,...
Xitami Web Server v2.5c2 LRWP Processing Format String PoC
Exploit for unknown platform in category dos / poc ========================================================== Xitami Web Server v2.5c2 LRWP Processing Format String PoC ========================================================== / PoC exploit for Xitami Web Server v2.5c2 LRWP processing format...
Xitami Web Server 2.5c2 - LRWP Processing Format String (PoC)
/ PoC exploit for Xitami Web Server v2.5c2 LRWP processing format string bug Advisory is available at: http://www.bratax.be/advisories/b013.html multiple vulnerabilities! check it out! @author: bratax @url: http://www.bratax.be/ @email: [email protected] Thanks to BuzzDee for learning me how to us...
Invision Power Board 2.x - 'Signature' iFrame Security
source: https://www.securityfocus.com/bid/28466/info Invision Power Board IP.Board is prone to a security vulnerability that can aid attackers in social-engineering attacks. Attacker-supplied script code could exploit vulnerabilities in the user's browser or give the user a false sense of securit...
Invision Power Board 2.x - Signature iFrame Security
Invision Power Board 2.x - Signature iFrame Security source: https://www.securityfocus.com/bid/28466/info Invision Power Board IP.Board is prone to a security vulnerability that can aid attackers in social-engineering attacks. Attacker-supplied script code could exploit vulnerabilities in the...
ACROS Security: HTML Injection in BEA WebLogic Server Console (ASPR #2008-03-11-1)
=====BEGIN-ACROS-REPORT===== PUBLIC ========================================================================= ACROS Security Problem Report 2008-03-11-1 ------------------------------------------------------------------------- ASPR 2008-03-11-1: HTML Injection in BEA WebLogic Server Console...
engineering Neoteric UK LTD S@L İNJECTİON
web design search engineering Neoteric UK LTD AUTHOR : S@BUN HOME : http://www.hackturkiye.com MAL : [email protected] DORK 1 : "web design search engineering Neoteric UK LTD" DORK 2 allinurl: "index.php?option=categories" DORK 3 : allinurl: "index.php?option=categories categoryid...