5500 matches found
SA-CONTRIB-2010-064 - Ubercart MIGS Payment Gateway - Web Parameter Tampering
The Ubercart MIGS Payment Gateway module provides support for the MIGS 3rd-party payment gateway used by ANZ, Commonwealth Bank, Bendigo Bank, and various other banks worldwide for payment processing. This module was susceptible to web parameter tampering which allowed users to bypass paying the...
SAS Hotel Management System SQL Vulnerability
Exploit for asp platform in category web applications ============================================= SAS Hotel Management System SQL Vulnerability ============================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, ...
PHP Property Rental Script XSS/ SQL Injection Vulnerability
Exploit for php platform in category web applications =========================================================== PHP Property Rental Script XSS/ SQL Injection Vulnerability =========================================================== Author: L0rd CrusAd3r aka VSN email protected Exploit Title:PHP...
PHP Property Rental Script - SQL Injection Cross-Site Scripting
PHP Property Rental Script - SQL Injection Cross-Site Scripting Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title:PHP Property Rental Script SQLi & XSS Vulnerability Version:3.0 Price:600$ Vendor url:http://www.zincksoft.com/ Published: 2010-06-09 Greetz to:Sid3^effects, MaYur,...
PHP Property Rental Script - SQL Injection / Cross-Site Scripting
Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title:PHP Property Rental Script SQLi & XSS Vulnerability Version:3.0 Price:600$ Vendor url:http://www.zincksoft.com/ Published: 2010-06-09 Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue™®, S1ayer,d3c0d3r and to all ICW members PHP...
iScripts eSwap 2.0 Cross Site Scripting / SQL Injection
Title:iScripts eSwap v2.0 sqli and xss vulnerability Author: Sid3^effects Published: 2010-06-05 price:$99.95 email:[email protected] vendor: iScripts url : http://www.iscripts.com/eswap/ google dork : Powered by iScripts eSwap. ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 88...
Heartland Settles with MasterCard
Heartland Payment Systems has made a third settlement deal, this time with MasterCard, related to a massive data breach two years ago at the card payments processor. As part of the deal, Heartland has agreed to pay as much as $41.1 million to MasterCard issuers that lost money. Read the full...
Joomla JE Property Finder Shell Upload
Exploit Title: Upload Vulnerability in JE Property Finder component Version: Web Application Date: 28 apr,2010 Author:Sid3^effects Code : -------------------------------------------------------------------------------------- Sid3^effects aKa HaRi Greetz to all Andhra Hackers and ICW MemebersIndia...
Joomla! Component com_jesectionfinder - Arbitrary File Upload
Joomla! Component comjesectionfinder - Arbitrary File Upload -------------------------------------------------------------------------------------- Sid3^effects aKa HaRi Greetz to all Andhra Hackers and ICW MemebersIndian Cyber Warriors Thanks:L0rd ÇrusAdêr,d4rk-blu™®,R45C4L idi0th4ck3r,CR4C|...
Joomla! Component com_jesectionfinder - Arbitrary File Upload
-------------------------------------------------------------------------------------- Sid3^effects aKa HaRi Greetz to all Andhra Hackers and ICW MemebersIndian Cyber Warriors Thanks:L0rd ÇrusAdêr,d4rk-blu™®,R45C4L idi0th4ck3r,CR4C| 008,M4n0j,MaYuR ShouTZ:kedar,dec0d3r Catch us at...
EPay Enterprise 4.13 SQL Injection
/ / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID ----------------------------------------------------------------------- EPay...
EPay Enterprise v4.13 (cid) SQL Injection Vulnerability
Exploit for php platform in category web applications ======================================================= EPay Enterprise v4.13 cid SQL Injection Vulnerability ======================================================= ----------------------------------------------------------------------- EPay...
EPay Enterprise 4.13 - cid SQL Injection
EPay Enterprise 4.13 - cid SQL Injection / / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID...
EPay Enterprise 4.13 - 'cid' SQL Injection
/ / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID ----------------------------------------------------------------------- EPay...
Multi-Vendor E-Commerce SQL injection Vulnerability
Exploit for unknown platform in category web applications =================================================== Multi-Vendor E-Commerce SQL injection Vulnerability =================================================== / Software Information Vendor : http://www.commodityrentals.com/ Download : n/a...
Malware Open Season on Taxpayers
As any reader of this site knows, cybercriminals can steal your money not just by putting malware on your machine, but by phishing attacks too. Phishing attacks don’t just target online banking and e-payment systems, but almost any site which asks the user to input sensitive data. Sites run by...
Heartland to Pay Visa $60 Million for Breach
Heartland Payment Systems on Jan. 8 announced that it has agreed to pay up to $60 million to Visa to cover losses to credit and debit cardholders affected by the massive data breach Heartland suffered in 2008. Read the full article. eWEEK...
Financial Industry Group Plans Cyber Attack Simulation
A financial services industry group is planning to simulate a series of cyber attacks to test how well banks, payment processors and retailers deal with online threats. Participants will be expected to activate their incident response procedures in accordance with the scenario presented and to...
Sql injection
Multiple SQL injection vulnerabilities in index.php in PhpShop 0.8.1 allow remote attackers to execute arbitrary SQL commands via the 1 moduleid parameter in an admin/functionlist action, the 2 vendorid parameter in a vendor/vendorform action, the 3 moduleid parameter in an admin/moduleform actio...
Hacker Gonzalez Pleads Guilty to More Breaches
Notorious hacker Albert Gonzalez pleaded guilty Dec. 29 to conspiracy to hack into the computer networks of Heartland Payment Systems, 7-11 and Hannaford Brothers and faces sentencing between 17 and 25 years on top of his previous guilty plea for the TJX breach and others. Read the full article...