I'm sorry for posting this topic in this section, cause i didn't find any proper section to post it. http://207.56.111.185/ This URL seems to me mysterious, here you'll be able to upload a file which will directly reflect a publicly viewable webpage content may be. The problem is, i've tried at least 20 types of file to upload. All the times it says, 'Failed uploading file'. You can get s
Forum: SQL and Code Injection

Etomite 0.6.1 and prior are vulnerable to this issue. The latest version of etomite is 0.6.1.3 The proof of concept is available: http://milw0rm.com/exploits/2071 here.
Forum: SQL and Code Injection

Yes, they have used etomite & the following code for handling special chars: $username = preg_replace("/[^\w\.@-]/", "", htmlspecialchars($_POST['username'])); $givenPassword = preg_replace("/[^\w\.@-]/", "", htmlspecialchars($_POST['password'])); Now, is it possible to inject? Probably not!
Forum: SQL and Code Injection

I'm a big fan of ha||sla.ckers.org. This is my first post. In one of the biggest cellphone site of my country have this problem: 1. I simply put a single quote in URL (index.php?id=') 2. It returns me the following result: -------------------------------------------------------------------------------- Etomite encountered the following error while attempting to parse the requested resource:
Forum: SQL and Code Injection