jetlib.sec » Tags » admin

Feeds

266993 items (231 unread) in 27 feeds

• 0day.today (was: 1337day, Inj3ct0r, 1337db) (230 unread)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines (1 unread)
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

161 items tagged "admin"

Related tags: php [+], login [+], sql [+], django [+], shop [+], panel [+], cms [+], wordpress [+], web [+], moku [+], information disclosure vulnerability [+], ibm [+], admin panel [+], vulnerabilities [+], sony pc [+], sony [+], script [+], querystring [+], pc companion [+], open [+], msa [+], index [+], homepages [+], csrf [+], contrib [+], admin tool [+], admin index [+], vulnerability [+], webapps [+], tool version [+], tool 2 [+], splunk [+], site [+], shell [+], removedirectory [+], remote [+], python script [+], python code [+], python [+], php shell [+], page finder [+], networks [+], modems [+], modem [+], malaysia [+], list [+], information disclosure [+], iframe [+], httpd [+], filter data [+], file upload [+], fast [+], easy [+], disclosure [+], data extraction [+], command execution [+], code execution [+], bot [+], based buffer overflow [+], backdoor [+], attacker [+], advanced [+], admin account [+], win32 [+], win [+], script code [+], remote file include vulnerability [+], php script [+], password [+], onarcade [+], nqcontent [+], ninkobb [+], keyword parameter [+], kamads [+], joomla [+], finder [+], d link [+], cross site scripting [+], change [+], bugtraq [+], authentication [+], arbitrary html [+], administrative panels [+], admin login [+], account [+], zeros [+], zenphoto [+], xp sp3 [+], xataface [+], wp admin [+], wojciech bojdol [+], windows [+], webmail [+], web interface [+], web control center [+], weather [+], vnc server [+], visualcreators [+], user [+], upload [+], unauthorized access [+], unauthorized [+], thai [+], technologie [+], tcexam [+], suite [+], storageworks [+], spy secrets [+], sphider [+], sp3 [+], softman [+], social engineering [+], smf [+], smartysolution [+], skalinks [+], setup [+], server [+], seotoaster [+], selling [+], saurus cms [+], retired [+], renasa [+], remote script [+], remote buffer overflow vulnerability [+], remote buffer overflow [+], reinstall [+], proxy support [+], proxy [+], primekey [+], postfix admin [+], postfix [+], policy [+], poc [+], plz [+], plume cms [+], pixie [+], pixelpost [+], phpbazar [+], php sql [+], perfectxp pc [+], pc1 [+], pass [+], page n5 [+], page 6 [+], pa [+], null [+], nimda [+], news articles [+], nbsp [+], mysql oracle [+], mysql [+], mybb [+], multiple [+], monarch [+], merchant v2 [+], merchant [+], mediaadmin [+], manager plugin [+], mambohelpdesk [+], malicious script [+], majorsecurity [+], lindy hop [+], lindy [+], lightneasy [+], kubelance [+], krakow [+], kora [+], jailed [+], infotech [+], information [+], hyperactive pc [+], hyperactive [+], human brain [+], hp storageworks [+], hop [+], hidden [+], help [+], hck [+], hashes [+], group [+], graugon [+], gotchas [+], good resources [+], goldmp [+], gameroom [+], ftp [+], freepbx [+], found [+], forum admin [+], forum [+], former [+], exploit [+], ejbca [+], editor php [+], ecocms [+], dr. web [+], dowgroup [+], dont [+], don [+], domain admin [+], design extensions [+], design [+], datawatch monarch [+], datawatch [+], darkmarket [+], cpanel [+], coupons [+], control [+], contenidos [+], comdev [+], com [+], cognos [+], code [+], cmsqlite [+], classifieds [+], change admin password [+], cgi script [+], cgi [+], center [+], cdr [+], can [+], call comp [+], buffer overflow vulnerability [+], bsides [+], brain [+], bogorcyberpark [+], behavior [+], azimut [+], auth [+], atmail [+], atlanta [+], anyone [+], administration side [+], administrador [+], admin version [+], admin section [+], admin code [+], access [+], Pentesting [+], General [+], Discussion [+], Area [+], day [+], page [+], sql injection [+]

• December 22, 2012
• 7:39

  Sony PC Companion 2.1 Admin_RemoveDirectory() Unicode Buffer Overflow

   » ‎ Packet Storm Security Exploits
  Sony PC Companion version 2.1 suffers from a boundary error in PluginManager.dll when handling the value assigned to the 'Path' item in the Admin_RemoveDirectory function and can be exploited to cause a stack-based buffer overflow via an overly long string which may lead to execution of arbitrary code on the affected machine.

  Tags:  admin removedirectory sony pc-companion based-buffer-overflow sony-pc  

• 7:39

  Sony PC Companion 2.1 Admin_RemoveDirectory() Unicode Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  Sony PC Companion version 2.1 suffers from a boundary error in PluginManager.dll when handling the value assigned to the 'Path' item in the Admin_RemoveDirectory function and can be exploited to cause a stack-based buffer overflow via an overly long string which may lead to execution of arbitrary code on the affected machine.

  Tags:  admin removedirectory sony pc-companion based-buffer-overflow sony-pc  

• 7:39

  Sony PC Companion 2.1 Admin_RemoveDirectory() Unicode Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  Sony PC Companion version 2.1 suffers from a boundary error in PluginManager.dll when handling the value assigned to the 'Path' item in the Admin_RemoveDirectory function and can be exploited to cause a stack-based buffer overflow via an overly long string which may lead to execution of arbitrary code on the affected machine.

  Tags:  admin removedirectory sony pc-companion based-buffer-overflow sony-pc  

• December 21, 2012
• 7:10

  [dos / poc] - Sony PC Companion 2.1 (Admin_RemoveDirectory()) Stack-based BOF

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [dos / poc] - Sony PC Companion 2.1 (Admin_RemoveDirectory()) Stack-based BOF

  Tags:  admin poc sony pc-companion sony-pc  

• October 31, 2012
• 17:00

  Zenphoto 'admin-News-Articles.php' Cross Site Scripting Vulnerability

   » ‎ SecuriTeam
  Zenphoto is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input.

  Tags:  zenphoto vulnerability admin news-articles  

• October 15, 2012
• 3:11

  P1 Networks Modem Backdoor

   » ‎ Packet Storm Security Exploits
  P1 Networks provided modems to users in Malaysia with httpd exposed to the Internet and admin/admin123 left in as a login. Whoops.

  Tags:  networks admin modem malaysia modems httpd  

• 3:11

  P1 Networks Modem Backdoor

   » ‎ Packet Storm Security Recent Files
  P1 Networks provided modems to users in Malaysia with httpd exposed to the Internet and admin/admin123 left in as a login. Whoops.

  Tags:  networks admin modem malaysia modems httpd  

• 3:11

  P1 Networks Modem Backdoor

   » ‎ Packet Storm Security Misc. Files
  P1 Networks provided modems to users in Malaysia with httpd exposed to the Internet and admin/admin123 left in as a login. Whoops.

  Tags:  networks admin modem malaysia modems httpd  

• October 08, 2012
• 3:11

  Easy Fast Admin SQL Injection

   » ‎ Packet Storm Security Exploits
  Easy Fast Admin suffers from a remote SQL injection vulnerability.

  Tags:  admin easy fast vulnerability  

• 3:11

  Easy Fast Admin SQL Injection

   » ‎ Packet Storm Security Recent Files
  Easy Fast Admin suffers from a remote SQL injection vulnerability.

  Tags:  admin easy fast vulnerability  

• 3:11

  Easy Fast Admin SQL Injection

   » ‎ Packet Storm Security Misc. Files
  Easy Fast Admin suffers from a remote SQL injection vulnerability.

  Tags:  admin easy fast vulnerability  

• August 12, 2012
• 17:00

  Kamads Classifieds 'admin.php' Multiple Information Disclosure Vulnerabilities

   » ‎ SecuriTeam
  Kamads Classifieds is prone to multiple information-disclosure vulnerabilities.

  Tags:  classifieds kamads admin information-disclosure  

• August 09, 2012
• 14:00

  [webapps / 0day] - Kamads classifieds V2 admin Disclosure / AuthBypass exploit

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - Kamads classifieds V2 admin Disclosure / AuthBypass exploit

  Tags:  day kamads admin disclosure  

• July 30, 2012
• 14:00

  Bugtraq: Dr. Web Control Center Admin UI Remote Script Code Injection

   » ‎ SecurityFocus Vulnerabilities
  Dr. Web Control Center Admin UI Remote Script Code Injection

  Tags:  control admin center dr.-web web-control-center remote-script bugtraq  

• 14:00

  Bugtraq: DataWatch Monarch BI v5.1 admin section reflected cross-site scripting

   » ‎ SecurityFocus Vulnerabilities
  DataWatch Monarch BI v5.1 admin section reflected cross-site scripting

  Tags:  datawatch admin monarch datawatch-monarch admin-section  

• July 28, 2012
• 12:22

  Joomla Admin Panel Bruteforcer

   » ‎ Packet Storm Security Recent Files
  This is a php script that takes a list of sites and password possibilities and runs as a cracker against Joomla administrative panels.

  Tags:  admin panel joomla administrative-panels admin-panel php-script  

• 12:22

  Joomla Admin Panel Bruteforcer

   » ‎ Packet Storm Security Misc. Files
  This is a php script that takes a list of sites and password possibilities and runs as a cracker against Joomla administrative panels.

  Tags:  admin panel joomla administrative-panels admin-panel php-script  

• June 27, 2012
• 0:00

  Vuln: IBM Cognos TM1 Admin Server Remote Buffer Overflow Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  IBM Cognos TM1 Admin Server Remote Buffer Overflow Vulnerability

  Tags:  admin cognos ibm buffer-overflow-vulnerability remote-buffer-overflow-vulnerability remote-buffer-overflow  

• June 13, 2012
• 17:42

  Advanced Admin Page Finder

   » ‎ Packet Storm Security Recent Files
  Advanced Admin Page Finder searches a site for over 800 possible administrative interfaces. Written in Python.

  Tags:  admin page advanced python page-finder  

• 17:42

  Advanced Admin Page Finder

   » ‎ Packet Storm Security Tools
  Advanced Admin Page Finder searches a site for over 800 possible administrative interfaces. Written in Python.

  Tags:  admin page advanced python page-finder  

• 17:42

  Advanced Admin Page Finder

   » ‎ Packet Storm Security Misc. Files
  Advanced Admin Page Finder searches a site for over 800 possible administrative interfaces. Written in Python.

  Tags:  admin page advanced python page-finder  

• May 18, 2012
• 7:29

  Admin Page Finder Script

   » ‎ Packet Storm Security Recent Files
  This python script looks for a large amount of possible administrative interfaces on a given site.

  Tags:  admin page script python-script  

• 7:29

  Admin Page Finder Script

   » ‎ Packet Storm Security Tools
  This python script looks for a large amount of possible administrative interfaces on a given site.

  Tags:  admin page script python-script  

• 7:29

  Admin Page Finder Script

   » ‎ Packet Storm Security Misc. Files
  This python script looks for a large amount of possible administrative interfaces on a given site.

  Tags:  admin page script python-script  

• May 14, 2012
• 19:52

  WordPress iFrame Admin Pages 0.1 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  WordPress iFrame Admin Pages plugin version 0.1 suffers from a cross site scripting vulnerability.

  Tags:  admin iframe wordpress vulnerability  

• 19:52

  WordPress iFrame Admin Pages 0.1 Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  WordPress iFrame Admin Pages plugin version 0.1 suffers from a cross site scripting vulnerability.

  Tags:  admin iframe wordpress vulnerability  

• 19:52

  WordPress iFrame Admin Pages 0.1 Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  WordPress iFrame Admin Pages plugin version 0.1 suffers from a cross site scripting vulnerability.

  Tags:  admin iframe wordpress vulnerability  

• April 20, 2012
• 5:00

  From LOW to PWNED [1] Exposed Services and Admin Interfaces

   » ‎ Carnal0wnage
  
  Several (tm) months back I did my talk on "From LOW to PWNED" at hashdays and BSides Atlanta.
  
  The slides were published here and the video from hashdays is here, no video for BSides ATL.
  
  I consistently violate presentation zen and I try to make my slides usable after the talk but I decided to do a few blog posts covering the topics I put in the talk anyway.
  
  Post [1] Exposed Services and Admin Interfaces
  
  Exposed Services:
  
  An example of exposed services and making sure you check for default and common passwords. so first example is a VNC server with  no password. This gives us a HIGH severity finding
  
   The following is a VNC server with a password of "password"
  
  see the problem? Same thing goes for SSH, Telnet, FTP, etc.  Don't forget about databases as well, MS SQL, MySQL, Oracle, Postgres listening out to the Internet at large.
  
  
  
  Admin Interfaces:
  
  Admin interfaces can be gold. the problem is 1) you have to find them on the random ass port they are running on and 2) you have to get eyes on them. this can be a hassle/problem/hard to do.
  
  So to bring the "low" to it.  some random HTTP server gets you this in Nessus
  
  Now, to be fair this could be totally accurate, but the point is you need to look at what is being served on this HTTP server, could be something could be nothing, no way to know unless you look.  Finding useful HTTP pages on all the random ports can be challenging.
  
  Here is a possible methodology for doing it:
  
  
  

  1. Nmap your range
  2. Import your nmap results into metasploit
  3. Use the db_ searches to pull out a list of hosts & ports
  4. With the magic of scripting languages make that list into an html page(s)
  5. Use linky to open all those links

  Kinda goes like this:
  after you have imported your nmap results, uses the services option.
  If its populated you'll get a list or results like the below
  Output that stuff to a CSV
  
  msf > services -o /tmp/demo.csv
  
  Take that CSV and run some ruby on it
  
  
  The above code will output an html file that you can open with linky
  linky will open each link in a new tab allowing you a way to get eyes on each of those random HTTP(S) services.
  
  You can now start intelligently trying default passwords or viewing exposed content.
  
  Thoughts?
  
  -CG
  
  

  Tags:  nbsp admin server don atlanta bsides mysql-oracle vnc-server  

• April 09, 2012
• 14:00

  [webapps / 0day] - PHPWPOS Change Admin User And Password ( All Version )

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - PHPWPOS Change Admin User And Password ( All Version )

  Tags:  admin day webapps  

• 14:00

  [webapps / 0day] - PHPWPOS Change Admin User And Password ( All Version )

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - PHPWPOS Change Admin User And Password ( All Version )

  Tags:  admin day webapps  

• January 30, 2012
• 0:00

  Vuln: Postfix Admin Multiple SQL Injection and Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Postfix Admin Multiple SQL Injection and Cross Site Scripting Vulnerabilities

  Tags:  admin postfix multiple postfix-admin sql-injection  

• January 08, 2012
• 5:33

  ATMAIL WebMail Admin 6.3.4 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  ATMAIL WebMail Admin version 6.3.4 suffers from multiple cross site scripting / malicious script insertion vulnerabilities.

  Tags:  admin atmail webmail admin-version malicious-script  

• December 22, 2011
• 20:54

  Splunk Search Remote Code Execution

   » ‎ Packet Storm Security Exploits
  This Metasploit module abuses a command execution vulnerability within the web based interface of Splunk 4.2 to 4.2.4. The vulnerability exists within the 'mappy' search command which allows to run python code. To exploit this vulnerability a valid Splunk user with the admin role is required. Unfortunately, Splunk uses a default credential of 'admin:changeme' for admin access, which is used to leverage our attack. The Splunk Web interface runs as SYSTEM on Windows and as root on Linux by default.

  Tags:  vulnerability splunk admin python-code command-execution code-execution  

• 20:54

  Splunk Search Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  This Metasploit module abuses a command execution vulnerability within the web based interface of Splunk 4.2 to 4.2.4. The vulnerability exists within the 'mappy' search command which allows to run python code. To exploit this vulnerability a valid Splunk user with the admin role is required. Unfortunately, Splunk uses a default credential of 'admin:changeme' for admin access, which is used to leverage our attack. The Splunk Web interface runs as SYSTEM on Windows and as root on Linux by default.

  Tags:  vulnerability splunk admin python-code command-execution code-execution  

• 20:54

  Splunk Search Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  This Metasploit module abuses a command execution vulnerability within the web based interface of Splunk 4.2 to 4.2.4. The vulnerability exists within the 'mappy' search command which allows to run python code. To exploit this vulnerability a valid Splunk user with the admin role is required. Unfortunately, Splunk uses a default credential of 'admin:changeme' for admin access, which is used to leverage our attack. The Splunk Web interface runs as SYSTEM on Windows and as root on Linux by default.

  Tags:  vulnerability splunk admin python-code command-execution code-execution  

• December 15, 2011
• 13:00

  Bugtraq: Seotoaster SQL-Injection Admin Login Bypass

   » ‎ SecurityFocus Vulnerabilities
  Seotoaster SQL-Injection Admin Login Bypass

  Tags:  admin seotoaster sql-injection  

• November 24, 2011
• 0:00

  Vuln: ecoCMS 'admin.php' Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ecoCMS 'admin.php' Cross Site Scripting Vulnerability

  Tags:  ecocms php admin vulnerability  

• November 06, 2011
• 3:11

  Admin Bot SQL Injection

   » ‎ Packet Storm Security Exploits
  Admin Bot suffers from a remote SQL injection vulnerability.

  Tags:  admin bot sql sql-injection vulnerability  

• 3:11

  Admin Bot SQL Injection

   » ‎ Packet Storm Security Recent Files
  Admin Bot suffers from a remote SQL injection vulnerability.

  Tags:  admin bot sql sql-injection vulnerability  

• 3:11

  Admin Bot SQL Injection

   » ‎ Packet Storm Security Misc. Files
  Admin Bot suffers from a remote SQL injection vulnerability.

  Tags:  admin bot sql sql-injection vulnerability  

• September 07, 2011
• 21:00

  [webapps / 0day] - AM4SS 1.2 CSRF add admin Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - AM4SS 1.2 CSRF add admin Vulnerability

  Tags:  day admin csrf vulnerability  

• August 31, 2011
• 0:00

  Vuln: IBM Open Admin Tool Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  IBM Open Admin Tool Multiple Cross Site Scripting Vulnerabilities

  Tags:  admin ibm open admin-tool vulnerabilities  

• August 30, 2011
• 18:46

  IBM Open Admin Tool 2.27 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  IBM Open Admin Tool version 2.27 suffers from a cross site scripting vulnerability.

  Tags:  admin ibm open admin-tool tool-version tool-2  

• 18:46

  IBM Open Admin Tool 2.27 Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  IBM Open Admin Tool version 2.27 suffers from a cross site scripting vulnerability.

  Tags:  admin ibm open admin-tool tool-version tool-2  

• 18:46

  IBM Open Admin Tool 2.27 Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  IBM Open Admin Tool version 2.27 suffers from a cross site scripting vulnerability.

  Tags:  admin ibm open admin-tool tool-version tool-2  

• July 17, 2011
• 21:00

  [win32] - win32/PerfectXp-pc1/sp3 (Tr) Add Admin Shellcode 112 bytes

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [win32] - win32/PerfectXp-pc1/sp3 (Tr) Add Admin Shellcode 112 bytes

  Tags:  admin win perfectxp-pc pc1 sp3 win32  

• June 16, 2011
• 21:00

  [webapps / 0day] - Hyperactive PC Admin Auth Bypass

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - Hyperactive PC Admin Auth Bypass

  Tags:  admin hyperactive day hyperactive-pc  

• June 15, 2011
• 21:00

  [webapps / 0day] - VisualCreators Admin Auth ByPass

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - VisualCreators Admin Auth ByPass

  Tags:  admin day visualcreators  

• June 13, 2011
• 0:00

  Vuln: WordPress Events Manager Plugin 'admin.php' SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  WordPress Events Manager Plugin 'admin.php' SQL Injection Vulnerability

  Tags:  wordpress php admin manager-plugin php-sql vulnerability  

• June 06, 2011
• 21:00

  [webapps / 0day] - AR Infotech Admin Auth ByPass

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - AR Infotech Admin Auth ByPass

  Tags:  admin day infotech  

• June 05, 2011
• 21:00

  [webapps / 0day] - SmartySolution Admin Auth ByPass

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - SmartySolution Admin Auth ByPass

  Tags:  admin day smartysolution  

• May 25, 2011
• 21:00

  [webapps / 0day] - Design Extensions (Admin) Auth Bypass/File Upload

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - Design Extensions (Admin) Auth Bypass/File Upload

  Tags:  design admin day design-extensions file-upload  

• May 23, 2011
• 7:25

  Homepages Admin SQL Injection

   » ‎ Packet Storm Security Exploits
  Homepages Admin suffers from a remote SQL injection vulnerability that allows for authentication bypass. An attacker can then upload a php shell.

  Tags:  admin homepages sql php-shell sql-injection attacker  

• 7:25

  Homepages Admin SQL Injection

   » ‎ Packet Storm Security Recent Files
  Homepages Admin suffers from a remote SQL injection vulnerability that allows for authentication bypass. An attacker can then upload a php shell.

  Tags:  admin homepages sql php-shell sql-injection attacker  

• 7:25

  Homepages Admin SQL Injection

   » ‎ Packet Storm Security Misc. Files
  Homepages Admin suffers from a remote SQL injection vulnerability that allows for authentication bypass. An attacker can then upload a php shell.

  Tags:  admin homepages sql php-shell sql-injection attacker  

• May 22, 2011
• 21:00

  [webapps / 0day] - Homepages Admin (index.php) => Auth Bypass Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - Homepages Admin (index.php) => Auth Bypass Vulnerability

  Tags:  admin day homepages vulnerability  

• May 10, 2011
• 0:00

  Vuln: Pixie CMS 'admin/index.php' SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Pixie CMS 'admin/index.php' SQL Injection Vulnerability

  Tags:  pixie admin cms admin-index vulnerability  

• May 03, 2011
• 21:00

  [webapps / 0day] - SkaLinks (Admin) Auth Bypass Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - SkaLinks (Admin) Auth Bypass Vulnerability

  Tags:  skalinks admin day vulnerability  

• April 06, 2011
• 0:00

  Vuln: Graugon Forum 'admin.php' SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Graugon Forum 'admin.php' SQL Injection Vulnerability

  Tags:  forum admin graugon sql-injection forum-admin vulnerability  

• March 07, 2011
• 14:00

  [webapps / 0day] - SOFTMAN Admin (Auth Bypass) SQl Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - SOFTMAN Admin (Auth Bypass) SQl Injection Vulnerability

  Tags:  admin day softman vulnerability  

• February 21, 2011
• 0:00

  Vuln: JAKCMS 'admin/index.php' Multiple SQL Injection Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  JAKCMS 'admin/index.php' Multiple SQL Injection Vulnerabilities

  Tags:  php admin index admin-index sql-injection  

• February 14, 2011
• 0:00

  Vuln: Django 'django.contrib.admin' Querystring Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Django 'django.contrib.admin' Querystring Information Disclosure Vulnerability

  Tags:  django contrib admin information-disclosure-vulnerability querystring  

• January 13, 2011
• 0:00

  Vuln: Django 'django.contrib.admin' Querystring Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Django 'django.contrib.admin' Querystring Information Disclosure Vulnerability

  Tags:  django contrib admin information-disclosure-vulnerability querystring  

• January 07, 2011
• 0:00

  Vuln: Django 'django.contrib.admin' Querystring Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Django 'django.contrib.admin' Querystring Information Disclosure Vulnerability

  Tags:  django contrib admin information-disclosure-vulnerability querystring  

• December 27, 2010
• 8:02

  Web@All 1.1 Remote Admin Settings Change Exploit

   » ‎ Packet Storm Security Exploits
  Web@All versions 1.1 and below remote administrative settings changing exploit.

  Tags:  admin remote web  

• 8:02

  Web@All 1.1 Remote Admin Settings Change Exploit

   » ‎ Packet Storm Security Recent Files
  Web@All versions 1.1 and below remote administrative settings changing exploit.

  Tags:  admin remote web  

• 8:02

  Web@All 1.1 Remote Admin Settings Change Exploit

   » ‎ Packet Storm Security Misc. Files
  Web@All versions 1.1 and below remote administrative settings changing exploit.

  Tags:  admin remote web  

• December 25, 2010
• 9:25

  Django Admin List Filter Data Extraction

   » ‎ Packet Storm Security Exploits
  Django suffers from an admin list filter data extraction vulnerability.

  Tags:  admin list django filter-data data-extraction  

• 9:25

  Django Admin List Filter Data Extraction

   » ‎ Packet Storm Security Recent Files
  Django suffers from an admin list filter data extraction vulnerability.

  Tags:  admin list django filter-data data-extraction  

• 9:25

  Django Admin List Filter Data Extraction

   » ‎ Packet Storm Security Misc. Files
  Django suffers from an admin list filter data extraction vulnerability.

  Tags:  admin list django filter-data data-extraction  

• December 23, 2010
• 0:00

  Vuln: D-Link WBR-1310 'tools_admin.cgi' CGI Script Authentication Bypass Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  D-Link WBR-1310 'tools_admin.cgi' CGI Script Authentication Bypass Vulnerability

  Tags:  d-link admin cgi cgi-script vulnerability authentication  

• 0:00

  Vuln: Django 'django.contrib.admin' Querystring Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Django 'django.contrib.admin' Querystring Information Disclosure Vulnerability

  Tags:  django contrib admin information-disclosure-vulnerability querystring  

• December 15, 2010
• 11:00

  Bugtraq: Re: hidden admin user on every HP MSA2000 G3

   » ‎ SecurityFocus Vulnerabilities
  Re: hidden admin user on every HP MSA2000 G3

  Tags:  user msa admin  

• 0:00

  Vuln: HP StorageWorks Hidden Admin User Unauthorized Access Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  HP StorageWorks Hidden Admin User Unauthorized Access Vulnerability

  Tags:  admin storageworks hidden hp-storageworks unauthorized-access vulnerability  

• December 13, 2010
• 7:08

  HP MSA2000 G3 Backdoor

   » ‎ Packet Storm Security Exploits
  It appears that the HP MSA2000 G3 may have a hardcoded admin account backdoor.

  Tags:  msa admin backdoor admin-account  

• 7:08

  HP MSA2000 G3 Backdoor

   » ‎ Packet Storm Security Recent Files
  It appears that the HP MSA2000 G3 may have a hardcoded admin account backdoor.

  Tags:  msa admin backdoor admin-account  

• 7:08

  HP MSA2000 G3 Backdoor

   » ‎ Packet Storm Security Misc. Files
  It appears that the HP MSA2000 G3 may have a hardcoded admin account backdoor.

  Tags:  msa admin backdoor admin-account  

• December 01, 2010
• 0:00

  Vuln: D-Link DIR-300 'tools_admin.php' Security Bypass Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  D-Link DIR-300 'tools_admin.php' Security Bypass Vulnerability

  Tags:  d-link php admin vulnerability  

• October 26, 2010
• 0:00

  Vuln: VICIDIAL Call Center Suite 'admin.php' Multiple SQL Injection Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  VICIDIAL Call Center Suite 'admin.php' Multiple SQL Injection Vulnerabilities

  Tags:  suite php admin sql-injection  

• October 25, 2010
• 14:00

  [webapps / 0day] - onArcade 2.3 Add Admin Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - onArcade 2.3 Add Admin Vulnerability

  Tags:  admin day onarcade webapps vulnerability  

• 14:00

  [webapps / 0day] - onArcade 2.2.0 Add Admin Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - onArcade 2.2.0 Add Admin Vulnerability

  Tags:  admin day onarcade vulnerability  

• October 15, 2010
• 0:00

  Vuln: RETIRED: Joomla! 'com_admin' Component Remote File Include Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  RETIRED: Joomla! 'com_admin' Component Remote File Include Vulnerability

  Tags:  admin com retired remote-file-include-vulnerability  

• October 13, 2010
• 0:00

  Vuln: A6MamboHelpDesk Admin.a6mambohelpdesk.PHP Remote File Include Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  A6MamboHelpDesk Admin.a6mambohelpdesk.PHP Remote File Include Vulnerability

  Tags:  admin php mambohelpdesk remote-file-include-vulnerability  

• October 06, 2010
• 21:02

  [Slides] Well known vulnerabilities in human brain and behavior – common admin mistakes

   » ‎ SecDocs
  Authors: Wojciech Bojdol
  Tags: vulnerability social engineering
  Event: Confidence 2010 Krakow
  

  Tags:  brain admin behavior wojciech-bojdol krakow human-brain social-engineering vulnerabilities  

• October 01, 2010
• 0:00

  Vuln: FreePBX 'admin/cdr/call-comp.php' Multiple SQL Injection Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  FreePBX 'admin/cdr/call-comp.php' Multiple SQL Injection Vulnerabilities

  Tags:  call-comp cdr admin sql-injection freepbx  

• September 18, 2010
• 14:00

  [win32] - win32/xp sp3 (Tr) Add Admin Account Shellcode 127 bytes

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [win32] - win32/xp sp3 (Tr) Add Admin Account Shellcode 127 bytes

  Tags:  admin win account xp-sp3 win32  

• September 04, 2010
• 0:00

  IT Admin Jailed For Selling Spy Secrets

   » ‎ Packet Storm Security Headlines
  IT Admin Jailed For Selling Spy Secrets

  Tags:  selling admin jailed spy-secrets  

• August 23, 2010
• 16:08

  GoldMp3 - Unauthorized Admin Add Exploit

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  GoldMp3 - Unauthorized Admin Add Exploit

  Tags:  admin goldmp unauthorized  

• August 16, 2010
• 0:00

  Vuln: CMSQLite 'admin/mediaAdmin.php' Arbitrary File Upload Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  CMSQLite 'admin/mediaAdmin.php' Arbitrary File Upload Vulnerability

  Tags:  cmsqlite admin mediaadmin file-upload vulnerability  

• August 15, 2010
• 5:46

  MYBB 1.6 (admin/index.php) XSS Vulnerabilities

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  MYBB 1.6 (admin/index.php) XSS Vulnerabilities

  Tags:  mybb admin index vulnerabilities  

• August 14, 2010
• 4:06

  Saurus CMS Admin Panel Multiple CSRF Vulnerabilities

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Saurus CMS Admin Panel Multiple CSRF Vulnerabilities

  Tags:  admin panel cms saurus-cms csrf admin-panel  

• August 12, 2010
• 0:00

  Vuln: PrimeKey EJBCA Admin GUI Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  PrimeKey EJBCA Admin GUI Cross Site Scripting Vulnerability

  Tags:  primekey admin ejbca vulnerability  

• August 11, 2010
• 17:00

  Comdev One Admin SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Comdev One Admin SQL Injection Vulnerability

  Tags:  admin comdev sql vulnerability  

• July 30, 2010
• 1:00

  LightNEasy 3.2 admin account hijacking csrf vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  LightNEasy 3.2 admin account hijacking csrf vulnerability

  Tags:  account lightneasy admin vulnerability  

• July 22, 2010
• 1:00

  phpBazar admin Information Disclosure Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  phpBazar admin Information Disclosure Vulnerability

  Tags:  phpbazar admin information information-disclosure-vulnerability  

• 0:00

  Vuln: NQcontent CMS 'admin/index.cfm' Cross Site Scripting and Information Disclosure Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  NQcontent CMS 'admin/index.cfm' Cross Site Scripting and Information Disclosure Vulnerabilities

  Tags:  nqcontent admin cms cross-site-scripting information-disclosure admin-index  

• July 20, 2010
• 0:00

  Vuln: NQcontent CMS 'admin/index.cfm' Cross Site Scripting and Information Disclosure Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  NQcontent CMS 'admin/index.cfm' Cross Site Scripting and Information Disclosure Vulnerabilities

  Tags:  nqcontent admin cms cross-site-scripting information-disclosure admin-index  

• July 16, 2010
• 1:00

  NinkoBB (Setup Admin Account) Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  NinkoBB (Setup Admin Account) Vulnerability

  Tags:  admin ninkobb setup vulnerability  

• July 05, 2010
• 1:00

  bbPress 1.0.2 [CSRF ] change admin password

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  bbPress 1.0.2 [CSRF ] change admin password

  Tags:  admin change csrf  

• July 04, 2010
• 1:00

  Sphider admin panel path disclosure authentication by pass

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Sphider admin panel path disclosure authentication by pass

  Tags:  sphider admin panel admin-panel authentication disclosure  

• July 01, 2010
• 9:56

  Revisiting HALFLM Stuff

   » ‎ Carnal0wnage
  I covered some of the halflm challenge sniffing stuff in a previous post.
  
  but I had to revisit it the other day for work and couldn't find the actually tables and program from the post.
  
  so here are some updated links.
  
  where to grab the tables:
  
  http://freerainbowtables.mirror.garr.it/mirrors/freerainbowtables/halflmchall/
  
  where to grab the program:
  
  http://sourceforge.net/projects/rcracki/
  
  Some gotchas I ran into on the last PT was some reason getting odd hashes in the SMB and NTLM sniffing modules.
  
  in some cases the hashes were not the same for the same username and hostname, these were unusable, I also had some that had a bunch of zeros in them, those were also not crackable.
  
  Windows 2000 2195:Windows 2000 5.0:1122334455667788:4c4d5353500003000000010001004600000000000000470000000000000040000000000000004000000006000600400000001000100047000000158a88e048004f0044000081196a7af2e4491c28af3025741067535700:00000000000000000000000000000000
  
  But I did get smb_login scanned, that was fun:
  
  ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:59de5d885e583167c3a9a92ac42c0ae52f85252cc731bb25:5ada49d539bd174e7049805dc1004925e25130c33dbe892a ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:40305b22075d6000d0508d9ad1f7beb02f85252cc731bb25:337c939e66480243d1833309b8afe49a81fe4c5e646bf00a ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:daf3570c10ed2817c3d8a05d69f9ef292f85252cc731bb25:d3fb390bac5d152f7a394466fbef686e275d05b99c0a115e ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:76365e2d142b5612980c67d057eb9efeee5ef6eb6ff6e04d:727b4e35f947129ea52b9cdedae86934bb23ef89f50fc595 ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:d737aa8f95ce38359cab5d8a2519c4b92f85252cc731bb25:0624a3f7d457c54b163c641dbf4b7963548ef1c5d0397cbf ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:0e89a68d07e315c6035e82b757b955882f85252cc731bb25:58f2d720179b4a38a0523e02aef0d41dacccd6577eaa943c ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:aa9436c1d40cb53f3e7a20091c4b931c2f85252cc731bb25:8ac45acdbd60f2fad3081ecf005536efa6009c21ca5faf36 ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:dce867f0cb638db2dbcc3576a52dc4612f85252cc731bb25:8990b33dac65c5ef75073829894b911a983c1e260fbd1097 ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:6f9d851d74c8a095c9df672a1554bebc2f85252cc731bb25:89953de6f957b7db5fe664d23af3de41dd38f5ec0a4a6eb0 ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:cc96cc93b4dc9b7582273227fd61a5952f85252cc731bb25:76d3c3deb0bb8ef1a1e41ab6a3f6c686a321ce016c624567 ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:cc96cc93b4dc9b754db66776827758d30b7892eef2e3f2bc:df58ae0f786becc11be11034dc53b21bdf1d73579af868d1 ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:de5d1d85daf6593d0a09ff32049013ab2f85252cc731bb25:526471d8c4a0ecc8af05851804ea8fdd26848fa3ccc63152 ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:b8489edee1058b43f3ce0f0abe5a16872f85252cc731bb25:57b9c47a75335692f60e787e41cd16a292a21bc667b3fd02 ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:2b6b134af8d48f2a972bff5660420d582f85252cc731bb25:5018402148e15a8d77cb22dd46f1449a2791416b73ee9c3d ADMIN Windows 2000 2195Windows 2000 5.0:NULL:1122334455667788:bb49aefd51ed0dccd5be291bd33be3052f85252cc731bb25:c9b255750bd88ac72e03adafda261e62618c943f7d59daf5

  Tags:  null admin windows gotchas hashes zeros Pentesting  

• June 27, 2010
• 1:00

  dowgroup change Password Admin

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  dowgroup change Password Admin

  Tags:  dowgroup admin password  

• June 25, 2010
• 1:00

  SMF 1.1.11 change Password Admin Vulnerabilities

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  SMF 1.1.11 change Password Admin Vulnerabilities

  Tags:  admin smf password vulnerabilities  

• June 15, 2010
• 0:00

  Vuln: TCExam 'admin/code/tce_functions_tcecode_editor.php' Arbitrary File Upload Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  TCExam 'admin/code/tce_functions_tcecode_editor.php' Arbitrary File Upload Vulnerability

  Tags:  code tcexam admin editor-php admin-code file-upload  

• June 09, 2010
• 11:00

  Bugtraq: [MajorSecurity SA-070]Plume CMS - change Admin Password via Cross-site Request Forgery

   » ‎ SecurityFocus Vulnerabilities
  [MajorSecurity SA-070]Plume CMS - change Admin Password via Cross-site Request Forgery

  Tags:  admin majorsecurity cms plume-cms change-admin-password bugtraq  

• June 06, 2010
• 1:00

  Pixelpost Add Admin Exploit (html)

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Pixelpost Add Admin Exploit (html)

  Tags:  admin pixelpost exploit  

• June 03, 2010
• 22:00

  secunia-tomatocmseight.txt

   » ‎ Packet Storm Security Recent Files
  Secunia Research has discovered some vulnerabilities in TomatoCMS, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the keyword and article-id parameters to index.php/admin/news/article/list, the keyword parameter to index.php/admin/multimedia/set/list, the keyword and fileId parameters to index.php/admin/multimedia/file/list, and the name , email , and address parameters to index.php/admin/ad/client/list is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in the users browser in context of the affected site.

  Tags:  php admin index keyword-parameter arbitrary-html script-code  

• 22:00

  secunia-tomatocmseight.txt

   » ‎ Packet Storm Security Advisories
  Secunia Research has discovered some vulnerabilities in TomatoCMS, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the keyword and article-id parameters to index.php/admin/news/article/list, the keyword parameter to index.php/admin/multimedia/set/list, the keyword and fileId parameters to index.php/admin/multimedia/file/list, and the name , email , and address parameters to index.php/admin/ad/client/list is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in the users browser in context of the affected site.

  Tags:  php admin index keyword-parameter arbitrary-html script-code  

• May 30, 2010
• 1:00

  Oscommerce Online Merchant v2.2 File Disclosure / Admin ByPass

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Oscommerce Online Merchant v2.2 File Disclosure / Admin ByPass

  Tags:  admin merchant merchant-v2 disclosure  

• May 22, 2010
• 1:00

  Azimut Technologie Admin Login Bypass vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Azimut Technologie Admin Login Bypass vulnerability

  Tags:  admin azimut technologie vulnerability  

• May 07, 2010
• 1:00

  Administrador de Contenidos Admin Login Bypass vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Administrador de Contenidos Admin Login Bypass vulnerability

  Tags:  admin administrador contenidos vulnerability  

• March 30, 2010
• 1:00

  kora Reinstall Admin Information Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  kora Reinstall Admin Information Vulnerability

  Tags:  admin kora reinstall vulnerability  

• March 25, 2010
• 15:34

  Surge-FTP Admin Web interface XSS Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Surge-FTP Admin Web interface XSS Vulnerability

  Tags:  admin web ftp web-interface vulnerability  

• March 23, 2010
• 14:00

  Xataface Admin Auth Bypass Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Xataface Admin Auth Bypass Vulnerability

  Tags:  auth admin xataface vulnerability  

• March 17, 2010
• 17:00

  NinkoBB 1.3RC4 Change Admin and Add New Admin CSRF Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  NinkoBB 1.3RC4 Change Admin and Add New Admin CSRF Vulnerability

  Tags:  admin ninkobb change vulnerability  

• March 13, 2010
• 9:00

  Dont Found Admin Page

   » ‎ darkc0de
  Dont Found Admin Page

  Tags:  admin found page  

• 8:00

  2admin page :O

   » ‎ darkc0de
  2admin page :O

  Tags:  admin page  

• 5:00

  admin finder plz

   » ‎ darkc0de
  admin finder plz

  Tags:  finder plz admin  

• March 11, 2010
• 18:00

  Dont found admin panel

   » ‎ darkc0de
  Dont found admin panel

  Tags:  dont admin panel  

• 7:00

  (help) caN ANYone help to get this admin page

   » ‎ darkc0de
  (help) caN ANYone help to get this admin page

  Tags:  admin anyone can  

• 6:00

  how to upload shell from admin cpanel

   » ‎ darkc0de
  how to upload shell from admin cpanel

  Tags:  upload admin shell cpanel  

• March 09, 2010
• 8:00

  Shop admin2

   » ‎ darkc0de
  Shop admin2

  Tags:  shop admin  

• 6:00

  Shop Admin

   » ‎ darkc0de
  Shop Admin

  Tags:  admin shop  

• March 08, 2010
• 1:00

  renasa.co.za admin login

   » ‎ darkc0de
  renasa.co.za admin login

  Tags:  login admin renasa admin-login  

• March 07, 2010
• 11:00

  weather site hacked - admin login

   » ‎ darkc0de
  weather site hacked - admin login

  Tags:  weather admin site  

• March 03, 2010
• 23:01

  admin access

   » ‎ darkc0de
  admin access

  Tags:  access admin  

• 16:00

  (help) can't get admin page

   » ‎ darkc0de
  (help) can't get admin page

  Tags:  admin page  

• February 28, 2010
• 17:00

  admin panel shell upload

   » ‎ darkc0de
  admin panel shell upload

  Tags:  admin shell panel  

• 11:00

  shop admin

   » ‎ darkc0de
  shop admin

  Tags:  admin shop  

• February 27, 2010
• 14:00

  admin login help

   » ‎ darkc0de
  admin login help

  Tags:  login admin help  

• 12:00

  Admin HCK !

   » ‎ darkc0de
  Admin HCK !

  Tags:  admin hck  

• February 20, 2010
• 12:59

  Coupons By Pass Admin Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Coupons By Pass Admin Vulnerability

  Tags:  admin pass vulnerability coupons  

• February 19, 2010
• 14:02

  shop shell or shop admin panel

   » ‎ darkc0de
  shop shell or shop admin panel

  Tags:  admin shell shop admin-panel  

• February 17, 2010
• 20:00

  admin finder with proxy support

   » ‎ darkc0de
  admin finder with proxy support

  Tags:  finder proxy admin proxy-support  

• February 16, 2010
• 15:01

  i am lindy hop admin

   » ‎ darkc0de
  i am lindy hop admin

  Tags:  hop admin lindy lindy-hop  

• February 15, 2010
• 10:00

  admin - nimda :D

   » ‎ darkc0de
  admin - nimda :D

  Tags:  admin nimda  

• 9:00

  CoffieNet CMS By Pass Admin Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  CoffieNet CMS By Pass Admin Vulnerability

  Tags:  admin pa cms vulnerability  

• February 14, 2010
• 9:00

  ...:::: [MoKu23] Admin Login Page ::::.... n5

   » ‎ darkc0de
  ...:::: [MoKu23] Admin Login Page ::::.... n5

  Tags:  admin moku login page-n5  

• 7:00

  ...:::: [MoKu23] Admin Login Page ::::.... 4

   » ‎ darkc0de
  ...:::: [MoKu23] Admin Login Page ::::.... 4

  Tags:  admin moku login admin-login  

• 6:00

  ...:::: [MoKu23] Admin Login Page ::::....

   » ‎ darkc0de
  ...:::: [MoKu23] Admin Login Page ::::....

  Tags:  admin moku login  

• 5:00

  ...:::: [MoKu23] Admin Login Page ::::....

   » ‎ darkc0de
  ...:::: [MoKu23] Admin Login Page ::::....

  Tags:  admin moku login  

• 4:00

  ...:::: [MoKu23] Admin Login Page ::::....

   » ‎ darkc0de
  ...:::: [MoKu23] Admin Login Page ::::....

  Tags:  admin moku login  

• February 13, 2010
• 14:00

  let there be admin

   » ‎ darkc0de
  let there be admin

  Tags:  admin  

• February 11, 2010
• 11:00

  bogorcyberpark Admin

   » ‎ darkc0de
  bogorcyberpark Admin

  Tags:  bogorcyberpark admin  

• 10:00

  GameRoom Script Admin Bypass and File Upload Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  GameRoom Script Admin Bypass and File Upload Vulnerability

  Tags:  admin gameroom script vulnerability  

• 0:00

  help please.... i can't found admin area

   » ‎ darkc0de
  help please.... i can't found admin area

  Tags:  admin Area  

• February 09, 2010
• 11:00

  Web site admin login

   » ‎ darkc0de
  Web site admin login

  Tags:  admin web site  

• February 07, 2010
• 13:00

  KubeLance 1.7.6 (Add Admin) CSRF Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  KubeLance 1.7.6 (Add Admin) CSRF Vulnerability

  Tags:  admin kubelance csrf vulnerability  

• 1:00

  Admin Login by gramos

   » ‎ darkc0de
  Admin Login by gramos

  Tags:  admin login  

• February 05, 2010
• 7:00

  Site admin

   » ‎ darkc0de
  Site admin

  Tags:  admin site  

• January 30, 2010
• 22:00

  explore mysql admin

   » ‎ darkc0de
  explore mysql admin

  Tags:  mysql admin  

• January 28, 2010
• 0:00

  Vuln: WordPress 'wp-admin/admin.php' Module Configuration Security Bypass Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  WordPress 'wp-admin/admin.php' Module Configuration Security Bypass Vulnerability

  Tags:  wp-admin php admin vulnerability wordpress  

• January 24, 2010
• 19:00

  more admin 8

   » ‎ darkc0de
  more admin 8

  Tags:  admin  

• 8:00

  other admin page 6

   » ‎ darkc0de
  other admin page 6

  Tags:  admin page page-6  

• 7:00

  Former DarkMarket Admin Faces 10 Year Jail

   » ‎ darkc0de
  Former DarkMarket Admin Faces 10 Year Jail

  Tags:  admin former darkmarket  

• 7:00

  other admin page

   » ‎ darkc0de
  other admin page

  Tags:  admin page  

• 7:00

  other admin page 4

   » ‎ darkc0de
  other admin page 4

  Tags:  admin page  

• 5:00

  other admin page

   » ‎ darkc0de
  other admin page

  Tags:  admin page  

• January 23, 2010
• 11:00

  admin shop g00d fr

   » ‎ darkc0de
  admin shop g00d fr

  Tags:  admin shop  

• January 22, 2010
• 7:00

  shop thai admin

   » ‎ darkc0de
  shop thai admin

  Tags:  thai admin shop  

• January 19, 2010
• 14:10

  need good resources to learn about group policy domain, admin

   » ‎ remote-exploit & backtrack
  A few years ago i did the A+ and recently i took the MCDST as i managed to get it free as we setup a micorsoft testing centre. i am now working as a desktop support technician in a hospital and am learning alot. i am however becoming frustrated as i really want to learn more about group policy and the server/administration side of things which comes into play alot.
  
  A few years ago i got a complete set of books which is windows 2000 MCSE i was just going to dig them out however is it woth my while reading them or have things changed too much now since server 2003.
  
  I have no more training resource available so i guess im looking for pointers from someone with systems experience to learn about domains, workgroup enviroments and admin/group policy.

  Tags:  group policy admin administration-side domain-admin good-resources General Discussion