Search
1.
(Code/Joomla!)
Since the CompojoomComment Hacking Contest is now over, and I was the only winner, I figured I'd go ahead and share my winning entries. These vulnerabilities are present in CompojoomComment 4.1.5, and ...
2.
(Code/Joomla!)
Compojoom, developers of CompojoomComment, opened up a contest to hack their comment component. After being alerted to the contest by my good friend Lafrance, I took a peek and had a working XSS exploit ...
3.
(Code/Joomla!)
... matters into my own hands and patch this. And, in the spirit of open source, I thought I'd share the fix with everyone.
The exploit in question uses the URL parameter "author" to inject SQL commands, ...
4.
(Code/Joomla!)
... interaction, displays indications of malware, but still technically exploitable.
[url]http://google.com?[url] onmousemove=javascript:alert(String.fromCharCode(88,83,83));//[/url][/url]
CSRF: [img] ...
5.
(Code/Joomla!)
webee 1.1.1, a Joomla commenting plugin, suffers from multiple vulnerabilities.
SQL Injection
The 'articleId' is not sanitized.
index2.php?option=com_webeecomment&task=default&articleId=999 union ...
6.
(Code/Joomla!)
Joomla Commentator 1.1b3, a Joomla commenting plugin, suffers from an XSS vulnerability in its "title" field that enables attackers to possibly run scripts as an administrator.
title"/onmouseover="alert(/xss/.source)
Timeline ...
7.
(Comments/All)
... you have pointed it out, I have gotten the updated version from the author to fix it. And thank you for going above and beyond in identifying a similar exploit in another component I was using and FIXING ...
8.
(Comments/All)
It's one thing to say, hey, there's a vulnerability here, I should let the developer know so they can fix it. It's another thing entirely to just post a step-by-step manual on how to exploit the vulnerability, ...
9.
(Code/Joomla!)
The Joomla component AWD Wall 1.5 suffers from an SQL Injection vulnerability in its handling of the 'cbuser' parameter.
?option=com_awdwall&view=awdwall&cbuser=62 and 1=1 limit 1 -- '
?option=com_awdwall&view=awdwall&cbuser=62 ...
10.
(Other/Other)
I figured I'd do a little blog posting about finding and exploiting XSS vulnerabilities in BBCode implementations. Not many sources exist for this type of information, and certainly none exist that I am ...
11.
(Code/Joomla!)
The Joomla component EasyBook 2.0.0rc4 suffers from multiple persistent XSS vulnerabilities. One seems fairly critical, while the others would take some incredible creativity to actively exploit.
BBCode ...
12.
(Code/Joomla!)
The Joomla component F!BB 1.5.96 RC suffers from multiple persistent XSS vulnerabilities, as well SQL Injection in its user search feature.
ICQ, MSN Profile Fields XSS
The MSN field will be rendered ...
13.
(Code/Joomla!)
The Joomla component Rapid Forum suffers from a persistent XSS vulnerability.
This vulnerability is pretty easy to exploit, as Rapid Forum does absolutely no validation or encoding whatsoever.
<script>alert(document.cookie)</script>
Timeline ...
14.
(Code/Joomla!)
The Simplest Forum BBCode Plugin 1.0.0 Beta 2 for Joomla suffers from a persistent XSS vulnerability that allows arbitrary injections of CSS rules.
[color=#FF0000;font-size:100px]XSS[/color]
Timeline ...
15.
(Code/Joomla!)
The Joomla component Testimonial Ku 2.0 is vulnerable to persistent XSS in the administrator panel. A malicious user can submit a testimonial containing <script> tags with absolutely no quotes and ...
16.
(Code/Joomla!)
... go as follows:
exploit vulnerable extension and extract the username and email of a Super Administrator
submit the reset form on the victim site using the extracted email, generating a token
exploit ...
17.
(Code/PHP)
Textpattern 4.0.8, a PHP based CMS, has a unique approach to allowing user styled input: Textile. This BBCode-type markup allows users to easily style comments. It is also vulnerable to XSS.
A few ...
18.
(Code/Joomla!)
The Joomla component Joo!BB 0.9.1 suffers from multiple persistent XSS vulnerabilities in its BBCode implementation, as well as Blind SQL Injection in its search feature.
Nested [img] XSS
[img]http://foo.com/fake.png ...
19.
(Code/Joomla!)
The Joomla component Agora 3.0.0 RC1 Rev.4 suffers from a Persistent XSS vulnerability. This can be exploited by uploading a malicious SWF file as an attachment then embedding it using the [swf] BBCode ...
20.
(Other/Other)
... for milw0rm. I wish I had the time I did in the past to post exploits, I just don't :(. For the past 3 months I have actually done a pretty crappy job of getting peoples work out fast enough to be proud ...
Latest Articles
Jeff ChannellCart
Your Cart is currently empty.
Keywords
Template Info
-
Name
Circles -
Creation Date
06/28/09 -
Author
Jeff Channell -
Author Email
me@jeffchannell.com -
Author URL
http://jeffchannell.com -
Version
0.0.2 -
Description
Circles