PhpMyAdmin Exploit (Hack Website using database Directly)

Hey Foks,

There is a new Google dork by using it  you can bypass username and password and edit the database information_schema. and offcoarse steal useful information such as Admin password ;) ..

so here it is ..

Google Dork:

"allinurl:index.php?db=information_schema"

U'll get too many results.. so start now and keep hacking :D

Note: m not gonna responsible for any Illegal activity. do it at ur own risk .this post is just for Spread Knowledge.. :)

Upgrading PostgreSQL 9.1.3, 9.0.7, 8.4.11 and 8.3.18 with the elimination of vulnerabilities..

Hey frenzzz....

Available planned corrective updates for all supported branches of PostgreSQL: 9.1.3 (45 patches), 9.0.7, 8.4.11 and 8.3.18. Issue updates for the 8.2.x branch terminated, users are encouraged to upgrade to the newest branches. Support for PostgreSQL 8.3 will run until February 2013, 8.4 - July 2014, 9.0 - September 2015, 9.1 - September 2016In addition to affecting the stability correction of errors, a new release noted the elimination of the three vulnerabilities:* Lack of verification of access rights to the function when it is called from a trigger. Through the creation of a trigger, users can call the functions in the implementation of which they have no authority (right EXECUTE).* When checking the SSL-certificate, the certificate name truncated to 32 characters.* The names of objects to be placed in the comments box when you create a dump using pg_dump utility does not satisfy the screening of the characters carriage return and line feed, which could be used to initiate the implementation structures of the attacker while loading the dump.

Dont forget to share it... :)

Identified a worm that attacks a vulnerability in the hosting control panel "Parallels Plesk"..

Hey Frenzz...Members hosting control panel Parallels Plesk facts point to the emergence of malicious servers coming

through uyavzimost in web-interface, file manager that comes with the panel. After the exploitation of this vulnerability in the directory / var / www / vhosts / DOMAINNAME / cgi-bin / hosts script language Perl (the name is chosen at random), which is prescribed in cron. The problem podverzhdeny version of Plesk 9.5 and below. Correction to the elimination of vulnerability has not yet released. To resolve this problem, it is recommended to restrict access to web-panel.

Script code can be found at pastebin, judging by the comments in Russian it is designed by our countrymen. The script connects to a botnet server of the victim network used for DDoS-attacks. It works as a proxy, and several modes of attack for the team are accepted from multiple management servers. Check for malicious script can be assessed in the presence of the directory / var / www / vhosts / [az] * / cgi-bin / weird filenames with the extension ". Pl" and the recent date of modification.

The network detected a new Trojan horse for Mac....

Network detected a new Trojan Horse in Mac os....

Researchers in the field of information security company Intego warns Mac OS fans about a new Trojan horse aimed at the authentication data used in the on-line payment, banking and many other systems.
According to them, a new version of the Trojan Flashback-G can get into your system in several ways. First he tries to exploit two vulnerabilities are available in Java. However, in case of failure, it shows a fake certificate supposedly issued by Apple. Many users do not know what this information means and allow the installation.
After installing the malware tries to intercept the user authentication data used for logging into online services of banks, payment systems and other resources.
Experts note that most users are at risk for the latest operating system, Snow Leopard, since it is already preinstalled platform Java. And the first symptoms of infection in the system may be the failure of the browser and web-based applications, such as Safari and Skype.
Intego specialists conducted a study of the threat, details of which are described in the company's blog.

( XSS in Skype) .....the resources found dangerous vulnerability..

Hi frenzz...

worlds knwn messenger site Skype is in XSS vulnerability..

A researcher from Georgia found that belonging to the Internet communications service Skype network resources - shop.skype.com and api.skype.com - exposed flaws that allows a potential attacker to use cross-site scripting execution (XSS).As follows from the above address, the dangers are especially numerous customers shop the official Skype, where you can buy as logical products (various additions to the software) and physical (headphones, microphones, webcams, etc.). For the site of application programming interfaces (API) such incidents and not particularly desirable. Due to the high attendance and notoriety is a fragile resource base identified a flaw classified as representing a high degree of risk.The purpose of a possible XSS-attack in this case may be the browser's cookies - cookie. If an attacker can somehow force the user to click on specially crafted link, and successfully exploit the vulnerability, the attacker can gain unauthorized access to the current session of the site and steal authentication information, account, thereby acquiring full control over someone else's account.It is reported that information about the flaw was transferred to the staff Skype, which, in turn, redirect the notification to the facility to counter security threats Microsoft. It is this division is now responsible for solving problems related to the popular communication service. At the moment the resource api.skype.com does not work (visitors are greeted by a 404 to be exact), while the Skype Shop Shop operates in normal mode. Perhaps, the site of application programming interfaces just being technical work to eliminate the vulnerability.Skype is one of the most popular instant messaging, audio and video calls. The size of his audience in the hundreds of thousands of users, of course, such a customer base is of interest to cybercriminals (even taking into account the fact that not all participants are ancillary services such as the official magazine).

News Partner

Secday

Dont forget to share...

SimogeoFilemanager Upload File Vulnerability ...( Upload Your Shell )

Hey frenzz,
Today i ws lookin 4 a new vulnerability n find out this vulnerability. original advisory for this post is 1337day.
Auther of this Exploit is RoxSecurityTeam.

I brought this post for EDUCATIONAL purpose not for misuse or illegal ways of Hacking...


WARNING: I am not reponsible of any harm with this methods. ....Do it at your own risk..

Google Dorks: 

inurl:/filemanager/userfiles/ 

filetype:pdf 

inurl:/filemanager/index.html

Steps:

1.Search site that contains the vulnnerable file /filemanager/index.html
2.Upload Backdoor Shell.php
3.Move to the folder where files are stored /UserFiles/ Exemple: http://site.com/filemanager/UserFiles/Shell.php
4.you can have full access to your shell
Demonstration : 

http://www.comune.gattinara.vc.it/newSys/ckeditor/filemanager/index.html
ftp://193.9.21.135/riba.si/wwwroot/cms/controls/ckeditor/filemanager/index.html
njoy ;)

Vulnerability Detection.....

New Vulnerability Detection

Attribute-Based Cross-Site Scripting is one of the hardest types of Cross-Site Scripting to find in an automated fashion. Today, no desktop scanner does a good job at this; most don't even attempt it because false-positives skyrocket – except for the WhiteHat Sentinel Service. Naturally.

WhiteHat Sentinel implemented our second-generation attribute injections last week. Many of you have seen new XSS attack vectors being pushed on your sites, and for quite a few it is a result of these tests. The example we most often push is sourcing in JavaScript via an injected STYLE tag (attack vector for Internet Explorer).

Attribute injection is when user-controlled data lands inside of an HTML tag, or specifically a value inside of an HTML tag, where notorious characters like “<” and “>” may not be required for XSS exploitation. For example:

HTTP GET request (not actual Sentinel test - this is an example for exploitation):

http://www.domain.site/search/partner/index.cfm?sessionid=12345678901
&hid=%22+STYLE%3D%22background-image%3A+expression%28alert
%28%27Is_XSS_HERE%3F%29%29

Will result in this example tag in the HTTP Response:

<* td>
<* a href="/index.cfm?sessionid=12345678901&hid="" STYLE="background-image: expression(alert('Is_XSS_HERE?))">
<* img src="http://www.domain.site/images/topnav/logo.gif" width="274" height="83" border="0">
<* /a>
<* /td>

This is a perfect example of an XSS vulnerability in which the attacker wouldn't need HTML tags or meta characters like <>. All you need in this case is a double-quote, a colon, and some parenthetics to begin your attack. From here the exploit can be carried out in many ways (e.g.-malicious Javascript). The ability to detect these issues accurately will grow exponentially with the advanced conditional logic currently being implemented into the Sentinel Service.

WhiteHat Website Vulnerability Management Practice Tips

Q. How do I stop an XSS attack that lands in an HTML tag?

A. For most attribute-based attacks to work, the attacker needs at least single or double-quotes. Double-quotes are what is most often needed – from what we see at WhiteHat. You could try escaping, removing, or substituting single and double-quotes on input.

Alternately you could encode any user-supplied data safely on output. This is the safest approach. Barring international-language sites – there are a minimum of four alternate encoding types for all Latin-ASCII code page characters: being Unicode, Decimal, Hexadecimal, and Named. This can jump to 18 variants for something as simple as double-quote, if you factor in international-language code pages.

Q. How do I encode my output safely?

A. If you encode double-quotes as their named-entity references, you will remove most of your attribute XSS issues. If you encode single-quotes using Decimal (works across the most browsers) or named-entity reference, this should solve the problem, as well (by breaking the initial escape sequence the attacker needs to take over the tag and begin scripting).

A nice reference page for more on entity-encoding values can be found here:
http://www.crosswinds-cadre.net/?page=character_entities

Q. What is this Unicode craziness you speak of?

A. A great place to start is here:
http://www.joelonsoftware.com/articles/Unicode.html

~~~posted by~~~

Mr. Jeremiah Grossman