1491 matches found
CVE-2010-4827
The CVE-2010-4827 entry affects Snitz Forums 2000, version 3.4.07. It describes a Cross-site Scripting (XSS) vulnerability in the members.asp page, exploitable via the M_NAME parameter. The issue enables remote attackers to inject arbitrary web script or HTML. The NVD entry notes reliance on thir...
CVE-2010-4827
Cross-site scripting XSS vulnerability in members.asp in Snitz Forums 2000 3.4.07 allows remote attackers to inject arbitrary web script or HTML via the MNAME parameter. NOTE: some of these details are obtained from third party information...
CVE-2010-4826
Snitz Forums 2000 (version 3.4.07) is affected by a SQL injection in members.asp exploitable through the M_NAME parameter, allowing remote execution of arbitrary SQL commands. Root cause is improper handling of user input in the M_NAME field. The connected OpenVAS entry confirms the SQL injection...
Fofou Forums Cross Site Scripting
Exploit Title: Permanent XSS and Html Code Injection in the Fofou Forums Google Dork: intext:Powered by fofou Date: 15.08.2011 Author: Sony Software Link: http://blog.kowalczyk.info/software/fofou/index.html Version: all version...
Godly Forums - id SQL Injection
Godly Forums - id SQL Injection source: https://www.securityfocus.com/bid/48872/info Godly Forums is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...
Godly Forums - 'id' SQL Injection
source: https://www.securityfocus.com/bid/48872/info Godly Forums is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...
Godly Forums SQL Injection
x Exploit Title : Godly Forums mainforum.php Sql Injection Vulnerability x Date : 20/07/2011 x Author : 3spi0n x HomePage : Http://Www.3spi0n.NET | Http://Twitter.Com/RigidusCO x E-Mail : 3spi0natgmaildotcom x Software Link: Http://www.godlyforums.co.cc/index.php x Category : WebApps x Google Dor...
Security Alert : vBulletin 4.X Security SQL Injection & CSRF/XSRF Exploits available !
Security Alert : vBulletin 4.X - SQL Injection & CSRF/XSRF Exploits available ! Two Serious Security Flaws are detected in vBulletin 4.X Versions and also their Security SQL Injection & CSRF/XSRF Exploits are now also available. Impact of these Flaws: Lots of big Forums are on vBulletin 4.X...
Vanilla Forum p Parameter Local File Inclusion
The remote web server hosts Vanilla Forums, an open source forum software written in PHP. The installed version of Vanilla Forums uses a '/' character in the 'AnalyzeRequest' method in 'library/core/class.dispatcher.php' to separate input passed via the 'p' parameter of the 'index.php' script int...
Underground Security Forums : Poisonhack.info & Team-xpc.com Hacked by 0p3nH4x !
Underground Security Forums : Poisonhack.info & Team-xpc.com Hacked by 0p3nH4x ! 0p3nH4x Team of Hackers , Hack two big Underground Security websites : Poisonhack.info & Team-xpc.com , who call them self as "Security Expert". 0p3nH4x hack them and provide all Hack details at . Submitted By : 0p3n...
Complete ZeuS source code has been leaked !
Complete ZeuS source code has been leaked On the 23rd of March 2011 we posted a blog about the source code for the infamous crime kit ZeuS Wsnpoem/Zbot being sold on at least two dark market forums see: https://www.csis.dk/en/csis/blog/3176/. This weekend we found the complete source code for thi...
Zeus Source Code Leaked
The source code to the infamous Zeus crimeware kit, which has been sold on underground forums for years, has been leaked and is now available for anyone to see if they know where to look. Security researchers over the weekend noticed that files that appeared to contain the source code for the Zeu...
Parnian Opendata CMS SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title : Parnian Opendata CMS SQL Injection Vulnerability Date : 2011-04-15 Author : Alexander Software Link : http://www.parniansoft.com/ Test On : php CVE : Web Applications Google Dork : inurl:mpfn=pdview Exploit :...
Famous Israeli company websites Hacked by OldChildz (Turkish Hackers)
Famous Israeli company websites Hacked by OldChildz Turkish Hackers Hacked Sites and Mirrors : https://be10.co.il https://www.zero-h.com/mirror/id/66321 https://gagotreafim.com An Israeli Construction Company https://www.zero-h.com/mirror/id/66320 https://kasafot.com A manufacturing company in th...
Hacker Pleads Guilty To Theft of 600K Credit Cards, Could Get 10 Years
A 26 year-old Georgia man pleaded guilty in federal court in Virginia to the theft of hundreds of thousands of credit cards and a years-long fraud scheme that netted him more than $100,000 in illicit profits – money he used to buy himself a BMW and luxury clothing. Rogelio Hackett of Lithonia,...
France official football websites,forums & Zapak Gaming Portals hacked by ZHC
France official football websites,forums & Zapak Gaming Portals hacked by ZHC High profile france official football websites and forums owned by zhc Hawk with a message of protest against france for banning hijab for muslim women Hacked By ZHC Hawk - ZCompany Hacking Crew - ZHC...
Web Wiz Forums SQL Injection
Title : Web Wiz Forum Injection Vulnerability Author: eXeSoul Home : www.indishell.in or www.andhrahackers.com Email : [email protected] date : 23/3/2011 D0rk : i Powered by Web Wiz Forums category : Web Apps SQli .-" "-. / \ | eXeSoul | |, .-. .-. ,| | o/ \o | |/ /\ | @ ^^ \|IIIIII|/ @8@8 / \ /...
Web Wiz Forums 9.5 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/46131/info Web Wiz Forums is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application...
Web Wiz Forums 9.5 - Multiple SQL Injections
Web Wiz Forums 9.5 - Multiple SQL Injections source: https://www.securityfocus.com/bid/46131/info Web Wiz Forums is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could...
SourceForge open sources its own source !
SourceForge, the popular project hosting site, has released Allura, the software that powers its service, as Apache 2.0 licensed open source. The project to develop Allura began in 2009 and currently an instance of the software, which has also been known as "New Forge" or "Forge 2.0" during...