Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
This group should mostly be dealing with how web applications enable networking security issues that are otherwise not there. Everything is being tunneled over port 80 now so what does that enable and how do we fix it? 

Current Page: 1 of 1
Results 1 - 9 of 9
5 years ago
Jorginhu
I play a lot of online games.. And I've already found a lot of "cracks" for them online.. but then I saw myself in front of 2 problems: 1. None of them work on LINUX plataforms (and I hate Windows); 2. None of them are "perfect". So, I'd like to build one by myself. I know that these kind of games run on an client-server system. And, when I click, for exemple, on the
Forum: Networking
6 years ago
Jorginhu
Thx for answering GaSmo.. But the point is: If I do this.. the user will be redirected to the main search page.. Do you know any way to trap the values the user enters? Because the page I need to redirect him would be like: document.location.href='searchpage.php?user=Person_Name' and the "Person_Name" was input before redirection to the fake logger.. Thx
Forum: XSS Info
6 years ago
Jorginhu
Does any one knows if it's possible to inject SQL on this login form?? http://75.126.234.48/site/account/login_account.php I've tried a lot if injections, including %2527 to avoid magic quotes.. and nothing... If anyone knows any way to inject or brute force it.. I'd aprecciate.. Thanks in advance..
Forum: SQL and Code Injection
6 years ago
Jorginhu
I've Found an XSS vulnerability on a website... ("comment" area). Then.. When people go to the search engine at this website and search for my profile... They run my script... The idea was redirect to another home page (fake logger) with the same appearence of the orignal website, but displaying "Session Expired! Please Log in to Continue" Then data would be sent to my
Forum: XSS Info
6 years ago
Jorginhu
IT WORKS!!!! Thanks a lot tx =)
Forum: XSS Info
6 years ago
Jorginhu
I'm injecting ecxactly this string.. I just had to change it to: <script>document.location=String.fromCharCode(39,104,.......,39)</script> to avoid magic_quotes filter... Do you think that this change is causing the wrong web redirection? How can I fix it? Thanks a lot...
Forum: XSS Info
6 years ago
Jorginhu
Im Exploiting a comment post.. When you post... your comment is automatically updated on your profile.. so.. when people click on you profile.. or search your name... they can see your comment there.. The comment text box is XSS vulnerable.. I've injected an alert.. then when I opened my profile I saw the alert... The comment page is ".php" I think I'm injecting into HTML.. T
Forum: XSS Info
6 years ago
Jorginhu
Almost that.. When I tried that.. and opened the page I got an error msg.. because the webpage is outside the website... like URL NOT FOUND: <http:// vunerablesite.com /site/'http://www.some-other-webpage.com' Any ideas? Thx tx =)
Forum: XSS Info
6 years ago
Jorginhu
I've found an website with xss vulnerability and I'm trying to exploit it... Is it possible to use javascript to close the webpage that should be targeted and redirect the user to another home page? I know its a newb question =$ , but I've just started studying XSS. Thanks in advance =)
Forum: XSS Info
Current Page: 1 of 1