Categories
- 0Day
- Ancient
- Articles
- Bugtraq
- Computer Security
- Computer Technology
- Computer Vulnerability
- Computing
- Covert Redirect Vulnerability
- CSDN
- CSRF Vulnerability
- CVE
- CXSecurity
- Directory Traversal
- DOS Vulnerability
- Essay
- FPD
- Health
- home
- HTML Injection
- HTTP Response Splitting (CRLF)
- Information Leakage Vulneability
- IT News
- Life
- Love
- Mathematics
- Musics
- online-course
- Open Redirect Vulnerability
- OSVDB
- Phishing
- Poems
- Privilege Escalation
- Spam
- SQL Vulnerability
- Weak Encryption
- Web Application
- Web Security
- Web Technology
- Web Vulnerability
- Website Testing
- Work
- XFS Vulnerability
- XSS Vulnerability
-
Recent Posts
Archives
- July 2022
- January 2022
- March 2021
- February 2021
- January 2021
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- December 2019
- November 2019
- October 2019
- September 2019
- July 2019
- May 2019
- April 2019
- September 2016
- November 2015
- September 2015
- August 2015
- June 2015
- May 2015
- April 2015
- March 2015
- February 2015
- January 2015
- December 2014
- November 2014
- October 2014
- September 2014
- August 2014
- July 2014
- June 2014
- May 2014
- March 2014
- February 2014
- September 2013
- August 2013
- July 2013
- May 2013
- April 2013
- March 2013
- February 2013
- November 2012
- October 2012
- August 2012
- July 2012
- June 2012
- March 2012
- October 2011
- August 2011
- June 2011
- May 2011
- April 2011
- November 2010
- October 2010
- July 2010
- March 2010
- February 2010
- December 2009
- November 2009
- August 2009
- July 2009
- June 2009
- March 2009
- February 2009
- October 2008
- July 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- August 2007
- July 2007
- April 2007
- February 2007
- April 2006
- March 2006
- February 2006
- January 2006
- August 2005
- June 2005
- April 2005
- March 2005
- September 2004
- June 2004
- April 2004
- June 2003
- April 2003
- March 2003
- February 2003
- January 2003
- April 2002
- February 2002
- January 2002
- October 2001
- January 2001
- March 2000
Meta
Recent Comments
Category Archives: 0Day
KnowledgeTree OSS 3.0.3b Reflected XSS (Cross-site Scripting) Web Application 0-Day Security Bug
KnowledgeTree OSS 3.0.3b Reflected XSS (Cross-site Scripting) Web Application 0-Day Security Bug Exploit Title: KnowledgeTree login.php &errorMessage parameter Reflected XSS Web Security Vulnerability Product: Knowledge Tree Document Management System Vendor: Knowledge Inc Vulnerable Versions: OSS 3.0.3b Tested Version: OSS … Continue reading
Posted in 0Day, XSS Vulnerability
Tagged 0-day, KnowledgeTree, OSS 3.0.3b, Security Bug, web application, whitehat
Leave a comment
eBay Covert Redirect Web Security Bugs Based on Googleads.g.doubleclick.net
eBay Covert Redirect Vulnerability Based on Googleads.g.doubleclick.net (1) WebSite: ebay.com “eBay Inc. (stylized as ebay, formerly eBay) is an American multinational corporation and e-commerce company, providing consumer to consumer & business to consumer sales services via Internet. It is headquartered … Continue reading
Google Covert Redirect Web Security Bugs Based on Googleads.g.doubleclick.net
Bypass Google Open Redirect Filter Based on Googleads.g.doubleclick.net — Google Covert Redirect Vulnerability Based on Googleads.g.doubleclick.net (1) WebSite: google.com “Google is an American multinational technology company specializing in Internet-related services and products. These include online … Continue reading
OSVDB 119342, 119323 NetCat CMS Multiple HTTP Response Splitting (CRLF) Web Security Vulnerabilities
OSVDB 119342, 119323 NetCat CMS Multiple HTTP Response Splitting (CRLF) Web Security Vulnerabilities Exploit Title: NetCat CMS Multiple CRLF Security Vulnerabilities Product: NetCat CMS (Content Management System) Vendor: NetCat Vulnerable Versions: 5.01 3.12 3.0 2.4 2.3 2.2 2.1 … Continue reading
Posted in 0Day, HTTP Response Splitting (CRLF), Web Application
Tagged 0day Bug, Code Flaw, Computer Science, crime prevention, CRLF, cyber-intelligence, exploit, Hacking Attack, HTTP Response Splitting, Internet Testing, IT-news, NetCat CMS, OSVDB 119342, OSVDB 119343, Vulnerabilities, Web Security, whitehat
Leave a comment
Bugtraq ID 75176 – 6kbbs v8.0 Weak Encryption Cryptography Security Vulnerabilities
Bugtraq ID 75176 – 6kbbs v8.0 Weak Encryption Cryptography Security Vulnerabilities Exploit Title: 6kbbs Weak Encryption Web Security Vulnerabilities Vendor: 6kbbs Product: 6kbbs Vulnerable Versions: v7.1 v8.0 Tested Version: v7.1 v8.0 Advisory Publication: June 08, 2015 Latest Update: June 10, … Continue reading
The Weather Channel weather.com Almost All Links Vulnerable to XSS Attacks
The Weather Channel at Least 76.3% Links Vulnerable to XSS Attacks Domain Description: http://www.weather.com/ “The Weather Channel is an American basic cable and satellite television channel which broadcasts weather forecasts and weather-related news and … Continue reading
Covert Redirect – Knowledge
Covert Redirect is a class of security bugs disclosed in May 2014. It is an application that takes a parameter and redirects a user to the parameter value without sufficient validation. Covert Redirect is also related to single … Continue reading
Posted in 0Day, Computer Security
Tagged Bugtraq, Bugtraq 67196, OSVDB, OSVDB 106567, SCIP, scipID i13185, X-Force 93031
Leave a comment
New York Times nytimes.com Page Design XSS Vulnerability (Almost all Article Pages Before 2013 are Affected)
Domain: http://www.nytimes.com/ “The New York Times (NYT) is an American daily newspaper, founded and continuously published in New York City since September 18, 1851, by the New York Times Company. It has won 114 Pulitzer Prizes, … Continue reading
Odnoklassniki.ru (OK.RU) Online Website Covert Redirect Web Security Bugs Based on Google.com
Odnoklassniki.ru (OK.RU) Online Website Covert Redirect Web Security Bugs Based on Google.com (1) Domain: Odnoklassniki.ru “Odnoklassniki, OK.ru (Russian: Одноклассники -Classmates) is a social network service for classmates and old friends. It is popular in Russia and former … Continue reading
Posted in 0Day, Covert Redirect Vulnerability, Website Testing
Tagged 0-days, computer, Covert Redirect, crime prevention, Cyber Research, Google.com, hacker, Hacker-exploit, IT-news, Odnoklassniki.ru, OK.RU, Online Website, Open Redirect, Phishing Attack, Spam Usage, web bugs, Website Exploit, whitehat
Leave a comment
优酷 (Youku) 网站 隐蔽重定向(Covert Redirect) 网路安全漏洞 基于 百度 (Baidu.com)
优酷 (Youku) 网站 隐蔽重定向 (Covert Redirect) 网络安全漏洞 基于 百度 (Baidu.com) (1) 域名: youku.com ” 优酷是中国领先的视频分享网站,由古永锵在2006年6月21日创立,优酷网以 “快者为王”为产品理念,注重用户体验,不断完善服务策略,其卓尔不群的“快速播放,快速发布,快速搜索”的产品特性,充分满足用户日益增长的多元化互动 需求,使之成为中国视频网站中的领军势力。优酷网现已成为互联网拍客聚集的阵营。美国东部时间2010年12月8日,优酷网成功在纽约证券交易所挂牌上 市。2014年4月28日,优酷土豆集团宣布与阿里巴巴(滚动资讯)集团建立战略投资与合作伙伴关系。2014年,优酷正式宣布多屏日视频播放量(VV) 突破6亿,截至2014年6月,中国网络视频用户规模达4.39亿。” (百度百科) (2) 漏洞描述: 优酷网站有有一个计算机安全问题,黑客可以对它用隐蔽重定向 (Covert Redirect) 网络攻击。 这 个漏洞不需要用户登录,测试是基于微软 Windows 8 … Continue reading
Posted in 0Day, Covert Redirect Vulnerability, Website Testing
Tagged 0-day, Covert Redirect, 白帽子信息, 程序利用, 网站攻击, 网站测试, PHP, 优酷
Leave a comment