Shuttle Tech ADSL Wireless 920 WM XSS / Directory Traversal

Exploit Title : Shuttle Tech ADSL WIRELESS 920 WM - Cross Site Scripting Version: Gan9.8U6X-B-TW-R1B0201T1RP Exploit Author : Persian Hack Team Tested on Win Date 2016/12/05 PoC : First We Need To login To Panel And page Parameter Vulnerable to Cross Site Scripting...

Anonymous Hacktivist 'Barrett Brown' Released From Prison

Barrett Brown, a journalist, formerly served as an unofficial spokesman for the hacktivist collective Anonymous, finally walked free from prison on Tuesday morning after serving more than four years behind bars. The Dallas-born investigative journalist was arrested in 2012 from his home while he...

Antivirus Firm Kaspersky launches Its Own Secure Operating System

The popular cyber security and antivirus company Kaspersky has unveiled its new hack-proof operating system: Kaspersky OS. The new operating system has been in development for last 14 years and has chosen to design from scratch rather than relying on Linux. Kaspersky OS makes its debut on a...

DoD Publishes Vulnerability Disclosure Policy

The Department of Defense promised upon the inception of the Hack the Pentagon bug bounty program that it would continue to engage white-hats. Hack the Pentagon set the tone with more than 1,400 participants and 138 vulnerabilities resolved during the 24-day trial during the spring. Two weeks ago...

Clever Gmail Hack Let Attackers Take Over Accounts

Google patched a hole in its Gmail verification system last week that allowed an attacker to hijack a targeted Google Gmail account. The discovery was made by Ahmed Mehtab, a security researcher and founder of Security Fuse. The hack is simple to execute and requires less than dozen steps to pull...

Websites of Indian Embassy in 7 Countries Hacked; Database Leaked Online

Indian embassy websites in seven different countries have been hacked, and attackers have leaked personal data, including full name, residential address, email address, passport number and phone number, of Indian citizens living abroad. This incident is extremely worrying because it involves...

Android development APP end common security vulnerability interpretation-sensitive information disclosure vulnerability-vulnerability warning-the black bar safety net

As is known, Android system because of its open-source, open, flexible feature allows the smartphone industry with the rapid progress, the cut-off 2 0 1 5 in the fourth quarter, Android smartphone market share reached 8 0. 7%, but at the same time, Android Open, Open Source advantage from another...

Chinese Hackers won $215,000 for Hacking iPhone and Google Nexus at Mobile Pwn2Own

The Tencent Keen Security Lab Team from China has won a total prize money of $215,000 in the 2016 Mobile Pwn2Own contest run by Trend Micro's Zero Day Initiative ZDI in Tokyo, Japan. Despite the implementation of high-security measures in current devices, the famous Chinese hackers crew has...

Election Leaks Failed to Move Needle on Polls

The barrage of information leaks, state-sponsored espionage and hacktivism related to the U.S. presidential election has had a mixed bag of effects on the race and voter confidence. For the most part, attacks against organizations supporting both major political parties, extensive email leaks and...

Russian Hacker Behind LinkedIn Breach also Charged with Hacking Dropbox and Formspring

The alleged Russian hacker, who was arrested by the FBI in collaboration with the Czech police, was believed to be the one responsible for massive 2012 data breach at LinkedIn, according to a statement released by LinkedIn. Now, United States authorities have officially indicted Yevgeniy...

WP Security Audit Log - The Ultimate WordPress Audit Trail Plugin

The WP Security Audit Log plugin is a WordPress plugin that keeps an audit trail of everything that happens on your WordPress and WordPress multisite network. There are several WordPress audit trail / log plugins available, tough we chose to review WP Security Audit Log because it is has the most...

FBI is Investigating Theft of $1.3 Million in Bitcoin from a Massachusetts Man

Over two months ago, the world's third largest Bitcoin Exchange Bitfinex lost around $72 Million worth of Bitcoins in a major hack. Shortly after the company encountered a $72,000,000 Bitcoin theft, an unnamed Bitfinex user from Cambridge, Massachusetts, filed a police report in September, allegi...

2 0 1 6 vulnerability Bounty hack report-vulnerability warning-the black bar safety net

! /Article/UploadPic/2016-10/2016108154237845.jpg Introduction Today, we are very pleased to be able to share with everyone from the HackerOne 2 0 1 6 vulnerability Bounty hack report. The current vulnerability Bounty programs are booming, of course, behind the rapid development is inseparable fr...

Joomla DVFolderContent 1.0.2 Local File Disclosure Vulnerability

Exploit for php platform in category web applications Exploit Title : Joomla DVFolderContent V1.0.2 Module - Local File Disclosure Exploit Author : Persian Hack Team Vendor Homepage : http://www.dvextensions.de/en/extensions/dvfoldercontent Category Webapps Tested on Win Version : V1.0.2 Date...

Joomla DVFolderContent 1.0.2 Local File Disclosure

Exploit Title : Joomla DVFolderContent V1.0.2 Module - Local File Disclosure Exploit Author : Persian Hack Team Vendor Homepage : http://www.dvextensions.de/en/extensions/dvfoldercontent Category Webapps Tested on Win Version : V1.0.2 Date 2016/10/01 PoC The Vulnerable page is...

WordPress KBoard 2.7 Plugin - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title : WordPress Plugin KBoard 2.7 - SQL Injection Exploit Author : Persian Hack Team Homepage : http://persian-team.ir Google Dork : intitle:"KBoard 2.7" Vendor Homepage : http://www.cosmosfarm.com/products/kboard Category Webapps...

WordPress KBoard Cross Site Scripting

Exploit Title : WordPress Plugin KBoard - Cross Site Scripting Exploit Author : Persian Hack Team Vendor Homepage : http://www.cosmosfarm.com/products/kboard Category Webapps Tested on Win Version : Before 4.4 Date 2016/09/26 PoC =Cross Site Scripting : Payload : 1" onmouseover=prompt"Persian"...

WordPress KBoard 2.7 SQL Injection

Exploit Title : WordPress Plugin KBoard 2.7 - SQL Injection Exploit Author : Persian Hack Team Homepage : http://persian-team.ir Google Dork : intitle:"KBoard 2.7" Vendor Homepage : http://www.cosmosfarm.com/products/kboard Category Webapps Tested on Win Version : 2.7 Date 2016/09/26 PoC = Sql...

Joomla! Component Event Booking 2.10.1 - SQL Injection

Joomla! Component Event Booking 2.10.1 - SQL Injection Exploit Title : Joomla Event Booking Component - SQL Injection Exploit Author : Persian Hack Team Homepage : http://persian-team.ir Vendor Homepage : http://extensions.joomla.org/extension/event-booking Category Webapps Tested on Win Version ...

Joomla Event Booking 2.10.1 Component - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title : Joomla Event Booking Component - SQL Injection Exploit Author : Persian Hack Team Homepage : http://persian-team.ir Vendor Homepage : http://extensions.joomla.org/extension/event-booking Category Webapps Tested on Win Version :...