Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
If you have some interesting news or want to throw up a link to discuss it, here's the place. Anything is okay, even shameless vendor launches (since that is often applicable to what we work on). 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
bugtraq - all vulerable site
Posted by: diamond
Date: September 13, 2009 04:48AM

some top vulnerable site in :(bugtraq)

calbank[sql]:
http://bugtraq.byethost22.com/log.php?id=14

microsoft[lfi]:
http://bugtraq.byethost22.com/log.php?id=2

yahoo[lfi]:
http://bugtraq.byethost22.com/log.php?id=3

altavista[xss]:
http://bugtraq.byethost22.com/log.php?id=12

bank.md[sql]:
http://bugtraq.byethost22.com/log.php?id=42

nasa[xss]:
http://bugtraq.byethost22.com/log.php?id=11

nasa[lfi]
http://bugtraq.byethost22.com/log.php?id=19

debian[sql]:
http://bugtraq.byethost22.com/log.php?id=59

irooniblog.com[shell]
http://bugtraq.byethost22.com/log.php?id=58

www.beijing2008conference.com[sql]:
http://bugtraq.byethost22.com/log.php?id=56

uaa.de[shell]:
http://bugtraq.byethost22.com/log.php?id=55

winchesterva.gov[sql]
http://bugtraq.byethost22.com/log.php?id=45

other report in bugtraq.tk
you can report your vulnerable site with your name for ever.
good luck
www.bugtraq.tk

Options: ReplyQuote
Re: bugtraq - all vulerable site
Posted by: sirdarckcat
Date: September 13, 2009 09:21AM

Actually, besides the horrible design and spelling/grammar mistakes, it's a rather interesting concept.. You could work out some sort of pricing based on demand/supply since I can just register thousands of accounts and checkout all your reports (+the 2 vulns you have on the site, that would probably allow me to dump all the vulns for myself)..

Also, you could monetize the website (if someone doesn't have credits, allow them to buy credits), and user-to-user communication via a secure/anonymous channel using the website (and then you could transform it into a vuln-market).

Anyway.. :P so far the idea of a web 2.0 / SNS / whatever bugtrack sounds fun, I'm not sure if there's somethng similar to this public (some private comunities have something simillar to this at some point)..

Greetz!!

--------------------------------
http://sirdarckcat.blogspot.com/ http://www.sirdarckcat.net/ http://foro.elhacker.net/ http://twitter.com/sirdarckcat

Options: ReplyQuote
Re: bugtraq - all vulerable site
Posted by: diamond
Date: October 08, 2009 12:47PM

hi
thank you
i solve some problem.
is it good now?
thanks

Options: ReplyQuote
Re: bugtraq - all vulerable site
Posted by: sirdarckcat
Date: October 08, 2009 01:37PM

Still terrible design IMHO (it's not you, I just hate green small text over black background).. and lots of typos.

Anyway, I still like the concept very much, I recommend you to make the browsing free (allow visitors to checkout the vulnerable websites), and make the vulns public when they are fixed (only require points if they are not fixed, and if someone access a site when it was fixed, then give the points back).


Greetings!!

--------------------------------
http://sirdarckcat.blogspot.com/ http://www.sirdarckcat.net/ http://foro.elhacker.net/ http://twitter.com/sirdarckcat



Edited 1 time(s). Last edit at 10/08/2009 06:39PM by sirdarckcat.

Options: ReplyQuote


Sorry, only registered users may post in this forum.