Detik News- Exploit DB
- [webapps] Online Ordering System 1.0 - Arbitrary File Upload to Remote Code Execution March 4, 2021Online Ordering System 1.0 - Arbitrary File Upload to Remote Code Execution
- [webapps] e107 CMS 2.3.0 - CSRF March 4, 2021e107 CMS 2.3.0 - CSRF
- [webapps] Textpattern CMS 4.8.4 - 'Comments' Persistent Cross-Site Scripting (XSS) March 4, 2021Textpattern CMS 4.8.4 - 'Comments' Persistent Cross-Site Scripting (XSS)
- [webapps] Textpattern CMS 4.9.0-dev - 'Excerpt' Persistent Cross-Site Scripting (XSS) March 4, 2021Textpattern CMS 4.9.0-dev - 'Excerpt' Persistent Cross-Site Scripting (XSS)
- [webapps] Online Ordering System 1.0 - Blind SQL Injection (Unauthenticated) March 4, 2021Online Ordering System 1.0 - Blind SQL Injection (Unauthenticated)
- [webapps] Web Based Quiz System 1.0 - 'eid' Union Based Sql Injection (Authenticated) March 4, 2021Web Based Quiz System 1.0 - 'eid' Union Based Sql Injection (Authenticated)
- [webapps] Textpattern 4.8.3 - Remote code execution (Authenticated) (2) March 4, 2021Textpattern 4.8.3 - Remote code execution (Authenticated) (2)
- [webapps] Local Services Search Engine Management System (LSSMES) 1.0 - Blind & Error based SQL injection (Authenticated) March 3, 2021Local Services Search Engine Management System (LSSMES) 1.0 - Blind & Error based SQL injection (Authenticated)
- [remote] AnyDesk 5.5.2 - Remote Code Execution March 3, 2021AnyDesk 5.5.2 - Remote Code Execution
- [webapps] Local Services Search Engine Management System (LSSMES) 1.0 - 'name' Persistent Cross-Site Scripting (XSS) March 3, 2021Local Services Search Engine Management System (LSSMES) 1.0 - 'name' Persistent Cross-Site Scripting (XSS)
- [webapps] Web Based Quiz System 1.0 - 'MCQ options' Persistent/Stored Cross-Site Scripting March 2, 2021Web Based Quiz System 1.0 - 'MCQ options' Persistent/Stored Cross-Site Scripting
- [webapps] Tiny Tiny RSS - Remote Code Execution March 2, 2021Tiny Tiny RSS - Remote Code Execution
- [webapps] Web Based Quiz System 1.0 - 'name' Persistent/Stored Cross-Site Scripting March 2, 2021Web Based Quiz System 1.0 - 'name' Persistent/Stored Cross-Site Scripting
- [webapps] Zen Cart 1.5.7b - Remote Code Execution (Authenticated) March 2, 2021Zen Cart 1.5.7b - Remote Code Execution (Authenticated)
- [remote] WiFi Mouse 1.7.8.5 - Remote Code Execution March 1, 2021WiFi Mouse 1.7.8.5 - Remote Code Execution
- [webapps] Online Ordering System 1.0 - Arbitrary File Upload to Remote Code Execution March 4, 2021
Category Archives: IT
Menonaktifkan Open DNS Server BIND
Beberapa waktu lalu, tim abuse dari salah satu penyedia VPS (Virtual Private Server) yang saya gunakan meneruskan email komplain ke saya terkait dengan digunakannya server VPS saya sebagai reflektor serangan DDoS ke server di Eropa. Setelah saya cek, ternyata ada … Continue reading
Posted in IT, Security, Tips and Tricks
Leave a comment
[Update] WordPress 0day XSS Vulnerability
Buat teman-teman yang mempunyai website/blog menggunakan wordpress, diharapkan segera melakukan update ke wordpress terbaru 4.2.1 berhubung adanya vulnerability 0day XSS dimana penyerang bisa membuat komentar di post/page manapun dan menyisipkan script XSS yang bisa mendapatkan/eksekusi perintah di server. Referensi bisa … Continue reading
NAWALA Block Yahoo Email MX
Hari ini saya menerima laporan dari teman saya bahwa server emailnya tidak bisa mengirim email ke Yahoo (yang di coba yahoo.com, yang top level domain atau country level domain seperti yahoo.co.id, belum dicoba) sementara ke email server tujuan lain misalnya … Continue reading
Missing DNS kalpin.us di CloudFlare
Pagi ini mendapatkan alert dari google bahwa situs blog pribadi saya http://www.kalpin.us gagal diakses dengan rate diatas 85% dengan error code DNS Not Found. Setelah saya lakukan pengecekan melalui intodns.com, sepertinya ada 2 DNS cloudflare yang diassign ke domain saya … Continue reading
Ngeblog mobile
Mengingat jarang di depan pc untuk update blog, maka diputuskan menginstall wordpress for blackberry. Happy blogging.