1491 matches found
CVE-2011-0909
Vanilla Forums is affected by CVE-2011-0909 (before 2.0.17.6). The vulnerability is a Cross-site Scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via the p parameter to an unspecified component. Connected Red Hat CVE entries corroborate the same description...
CVE-2011-0908
CVE-2011-0908 concerns Vanilla Forums before 2.0.17.6, with an open redirect vulnerability that can send users to arbitrary sites via a URL in the Target parameter to an unspecified component (open redirect, not CVE-2011-0526). Red Hat entries corroborate the same description. The sources do not ...
CVE-2011-0526
Cross-site scripting XSS vulnerability in index.php in Vanilla Forums before 2.0.17 allows remote attackers to inject arbitrary web script or HTML via the Target parameter in a /entry/signin action...
CVE-2011-0908
Open redirect vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the Target parameter to an unspecified component, a different vulnerability than CVE-2011-0526...
r00tsecurity.org & uNknown.eu servers hacked by TeaMp0isoN !!
r00tsecurity.org & uNknown.eu servers hacked by TeaMp0isoN !! Intro to TeaMp0isoN TeaMp0isoN was established in mid-2009, the team consists of blackhats & hacktivists. Reason for Hacking uNk: They claim to be the best hacking/security forum in the scene, they also claim to be "underground" - you...
Vanilla Forums 2.0.16 <= Cross Site Scripting Vulnerability
============================================================================== Vanilla Forums 2.0.16 = Cross Site Scripting Vulnerability ============================================================================== 1. OVERVIEW The Vanilla Forums 2.0.16 and lower versions were vulnerable to Cros...
Government Sites, Military And Educational For Sale By Hackers !!
A hacker has a number of sites belonging to government agencies, military and educational for sale on internet forums. The discovery was made by Noa Bar-Yosef, a senior security strategist at security vendor Imperva. Bar-Yosef, wrote about it in the company's blog last Friday, noting that prices...
Vanilla Forums 2.0.16 Cross Site Scripting
============================================================================== Vanilla Forums 2.0.16 = Cross Site Scripting Vulnerability ============================================================================== 1. OVERVIEW The Vanilla Forums 2.0.16 and lower versions were vulnerable to Cros...
Vanilla Forums 2.0.16 - Target Cross-Site Scripting
Vanilla Forums 2.0.16 - Target Cross-Site Scripting source: https://www.securityfocus.com/bid/46039/info Vanilla Forums is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...
Vanilla Forums 2.0.16 - 'Target' Cross-Site Scripting
source: https://www.securityfocus.com/bid/46039/info Vanilla Forums is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...
Details PandaLabs Cyber-criminal Black Market Report !
PandaLabs researchers published an investigative look at the growing online crime, cyber black market where it sold the stolen credit card information and other data stolen more than 50 shops, mostly online. PandaLabs clues about how the black market of cybercrime has diversified and now sells a...
Zeus/SpyEye Merger Promises More Sophisticated Bots
The recent merger of the Zeus and SpyEye botnets has created a mega-botnet that promises to increase the effectiveness, complexity, and prevalence of malware across the Web, according to a blog post by Francois Paget of McAfee Labs. The SpyEye/ZS Toolkit v1.4.1, the first evidence of a long-rumor...
70% offences in UAE are cyber crimes !
Of all criminal offences committed in the United Arab Emirates UAE, a whopping 70 percent are cyber crimes, a top official has said. Cyber criminals are keeping up with new developments in information technology, and make the maximum use of any new software or system that comes with any security...
Hackers Shut Down Six Websites, Including Credit-Card Sharing Forums
A group of hackers recently attacked and took offline several websites belonging to credit-card sharing groups, security experts, and other hacking communities that had neglected basic security practices. On Christmas morning, the administrators of six websites discovered their sites had been...
Chipmunk Board 1.3 SQL Injection
Exploit Title: Chipmunk Board index.php?forumID Remote SQL Injection Vulnerability Date: October, 01 st 2010 Author: Shamus Software Link: http://www.chipmunk-scripts.com/board/board.zip Version: Chipmunk Forums Version 1.3 Tested on: windows CVE : -...
Chipmunk Board 1.3 - index.php?forumID SQL Injection
Chipmunk Board 1.3 - index.php?forumID SQL Injection Exploit Title: Chipmunk Board index.php?forumID Remote SQL Injection Vulnerability Date: October, 01 st 2010 Author: Shamus Software Link: http://www.chipmunk-scripts.com/board/board.zip Version: Chipmunk Forums Version 1.3 Tested on: windows C...
Discuz7. 2 of my vest plug-injection vulnerability-a vulnerability warning-the black bar safety net
Discuz! A common set of community forums software system, the user can not require any programming on the basis of, through the simple setup and installation, on the Internet build up with perfect function, strong load capacity, and highly customizable Forum service Vulnerability plug-in:...
SnitzTM Forums 2000 Version 3.4.07 (Data Base Dump) Vulnerability
Exploit for php platform in category web applications ================================================================= SnitzTM Forums 2000 Version 3.4.07 Data Base Dump Vulnerability =================================================================...
Snowcade 3 SQL Injection
/ - SnowCade v3 SQL Injection Vulnerability - ---Date : 2010-06-19 ---Author : ahwak2000 ---Email : z.u5athotmail.com - Script Info - ---Home : http://www.arcadecreate.com/ ---Demo : http://www.arcadecreate.com/demo/v3/snowcade/index.php - Vulnerability -...
2daybiz Network Community Script SQL Injection / Cross Site Scripting
=========================================================== 2daybiz Network Community Script SQLi AND XSS Vulnerability =========================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ ...