|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  World Laboratory of Bugtraq Database |
||||||||||
SecurityAlert : None
Credit : Ashiyane Digital Security Members (Cair3x) Added by : Cair3x SecurityRisk : Low  (About) Remote : Yes Local : No Status : Bug
Text : ################################################################# [+] Exploit Title: Simple Machines Forums [+] Date: 2010-01-14 [+] Author: Ashiyane Digital Security Members (Cair3x) [+] Software Link: http://www.simplemachines.org/ [+] Version: 1.1.11 And All Version [+] Tested on: ALL [+] Dork: Powered by SMF 1.1.11 ################################################################# [ Exploit ] [ Code ] <Script>Alert('Xss By Ashiyane (Cair3x)')</Script> [ End Code ] Write Code In Txt File And Save (Secipt.jpg) Make a Post new poll ! And Enter Ashiyane Digital Security Team In In text Post ! Click Additional Options... ! And Browse For Attach A File ! Select [ Code ] Secipt.jpg And Then Attach In Post ! End Then You Can Run Scripts In Server Victime ! url Test : http://127.0.0.1/Smf/attachments/Number attach_Script_jpg_Hash(script.jpg) Url : http://127.0.0.1/Smf/attachments/1_script_jpg_7ad716b07dc5a11adfcbc5072acb9 493 And See Alert The ('Xss By Ashiyane (Cair3x)') You Can Snifing Cookie And Replace For Login the Admin User ! #### BY : Cair3x [Cair3x.Support@Gmail.com] Web Site : Ashiyane.org Forum : Http://Ashiyane.org/forums/ [+] Greetz to All Ashiyane Digital Security Member #### Audyt bezpieczeństwaSecurity AuditAnaliza powłamaniowaIf you want change this note, please use UCP
|
||||||||||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |