BlogPHP v2 Persistent XSS Vulnerability

No description provided by source. Exploit Title: BlogPHP v2 - XSS Google Dork: "Copyright ©2006 Powered by www.blogphp.net" Date: 09/08/2011 Author: Paul Maaouchy Paulzz Software Link: http://sourceforge.net/projects/blogphpscript/files/blogphpscript/2.0/BlogPHPv2.zip/download Version: v2 Tested...

Fastmail 2 Shell Upload

. \ \ | | | / | \ | | / | \ \ / | |/ / / / \ | | \ |/ \ | | / /\ | \ | /\ / / / / / /// .ORG + Info================================================================= - Title : Fastmail V.2 Script Arbitrary File Upload Vulnerability - Author: Net.Edit0r - Home : Black-HG.Org h4ckcity.org -...

CentOS Update for systemtap CESA-2009:0373 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

#DefCon 19 : Android Network Toolkit for Penetration Testing and Hacking

DefCon 19 : Android Network Toolkit for Penetration Testing and Hacking Have an Android and wanna start pwning people, networks and machines like penetration testers do? Defcon 2011 is in full hacking swing, and Itzhak Avraham -- "Zuk" for short -- and his company Zimperium have unveiled the...

#DefCon 19 : Android Network Toolkit for Penetration Testing and Hacking

DefCon 19 : Android Network Toolkit for Penetration Testing and Hacking Have an Android and wanna start pwning people, networks and machines like penetration testers do? Defcon 2011 is in full hacking swing, and Itzhak Avraham -- "Zuk" for short -- and his company Zimperium have unveiled the...

BlackBuntu V0.3 Released

BlackBuntu V0.3 Released For Blackbuntu 0.3 we are supporting both x86 and x8664 architectures.Security and Penetration Testing tools available in Blackbuntu : Information Gathering Network Mapping Vulnerability Identification Penetration Privilege Escalation Maintaining Access Radio Network...

BlackBuntu V0.3 Released

BlackBuntu V0.3 Released For Blackbuntu 0.3 we are supporting both x86 and x8664 architectures.Security and Penetration Testing tools available in Blackbuntu : Information Gathering Network Mapping Vulnerability Identification Penetration Privilege Escalation Maintaining Access Radio Network...

The Social-Engineer Toolkit v2.0 Released

The Social-Engineer Toolkit v2.0 Released The Social Engineering Toolkit SET is a python-driven suite of custom tools which solely focuses on attacking the human element of penetration testing. It's main purpose is to augment and simulate social-engineering attacks and allow the tester to...

The Social-Engineer Toolkit v2.0 Released

The Social-Engineer Toolkit v2.0 Released The Social Engineering Toolkit SET is a python-driven suite of custom tools which solely focuses on attacking the human element of penetration testing. It's main purpose is to augment and simulate social-engineering attacks and allow the tester to...

PythonLOIC - Python Low Orbit Ion Cannon Ddos Tool Released

PythonLOIC - Python Low Orbit Ion Cannon Ddos Tool Released Low Orbit Ion Cannon for all platforms to test the resistance of the server or ddos servers. Presentation of pythonloic running on iphone os: Download PythonLOIC...

Debian Security Advisory DSA 2272-1 (bind9)

The remote host is missing an update to bind9 announced via advisory DSA 2272-1. OpenVAS Vulnerability Test $Id: deb22721.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2272-1 bind9 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

SAP NetWeaver servlet JavaDumpService - Multiple XSS

Application: SAP NetWeaver JavaDumpService Versions Affected: SAP NetWeaver JavaDumpService Vendor URL: Bugs: XSS Exploits: YES Reported: 30.07.2011 Vendor response: 02.08.2011 Date of Public Advisory: 30.10.2013 Reference: SAP Security Note 1828801 CVSS: AV:N/AC:M/AU:N/C:N/I:P/A:N 4.3 Author:...

Apache Log Extractor tool

Apache Log Extractor tool Apache Log Extractor is a quick script to export URL information from Apache access logs. The thought behind this script was to provide a list of known URL's on a remote server by analysing the logs. This list could then be used as the input for further testing tools e.g...

Metasploit Pro 4.0 released - Enterprise Integration, Cloud Deployment & Automation

Metasploit Pro 4.0 released - Enterprise Integration, Cloud Deployment & Automation Rapid7 launched Metasploit Pro 4.0, a penetration testing solution that provides security professionals with a better view of their threat landscape by integrating with more than a dozen vulnerability management...

Metasploit Pro 4.0 released - Enterprise Integration, Cloud Deployment & Automation

Metasploit Pro 4.0 released - Enterprise Integration, Cloud Deployment & Automation Rapid7 launched Metasploit Pro 4.0, a penetration testing solution that provides security professionals with a better view of their threat landscape by integrating with more than a dozen vulnerability management...

DSA-2279-1 libapache2-mod-authnz-external - SQL injection

Bulletin has no description...

[SECURITY] [DSA 2275-1] openoffice.org security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2275-1 [email protected] http://www.debian.org/security/ Nico Golde July 7, 2011 http://www.debian.org/security/faq -...

TCExam <=11.2.011 Multiple Cross-Site Scripting Vulnerabilities

Summary TCExam is a FLOSS system for electronic exams also know as CBA - Computer-Based Assessment, CBT - Computer-Based Testing or e-exam that enables educators and trainers to author, schedule, deliver, and report on quizzes, tests and exams. Description TCExam suffers from multiple pre and pos...

[SECURITY] Fedora 15 Update: rubygem-actionpack-3.0.5-3.fc15

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

SAP NetWeaver PMI Agent Configuration - XML External Entity

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs: XML External Entity Exploits: YES Reported: 07.12.2011 Vendor response: 08.12.2011 Date of Public Advisory: 22.10.2012 Reference: SAP Security Note 1721309 Author: Dmitry Chastukhin ERPScan Descriptio...