Bejtlich on the APT1 Report: No Hack Back

Before reading the rest of this post, I suggest reading Mandiant/FireEye's statement Doing Our Part -- Without Hacking Back. I would like to add my own color to this situation. First, at no time when I worked for Mandiant or FireEye, or afterwards, was there ever a notion that we would hack into...

Liquid-Silver CMS 0.1 (update) Local File Inclusion Vulnerability

No description provided by source. Liquid-Silver CMS Local File Inclusion Vulnerabilities http://sourceforge.net/project/showfiles.php?groupid=171166 author : Stack-Terrorist v40 foor read a php file ?update=name of file iwthout php for execute exploit does not write extention of file exploit :...

Liquid-Silver CMS 0.1 - 'update' Local File Inclusion

Liquid-Silver CMS Local File Inclusion Vulnerabilities http://sourceforge.net/project/showfiles.php?groupid=171166 author : Stack-Terrorist v40 foor read a php file ?update=name of file iwthout php for execute exploit does not write extention of file exploit : /Script/update/index.php?update=/nam...

TUTOS 1.3 - cmd.php Remote Command Execution

TUTOS 1.3 - cmd.php Remote Command Execution AUTHOR : H-T TeaM HouSSaMix ToXiC350 HOME : http://no-hack.net Script : TUTOS Tested in version 1.3 other versions may also be affected. Download : http://www.tutos.org/homepage/index.html BUG : Command Execution Vulnerability | 3xpl0it4t10n -1- :...