|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 71
Members: 0
Total: 71
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Ranking1.cgi Remote Command |
|
Posted: Thu Jun 16, 2005 1:08 am |
|
|
any2000 |
Active user |
|
|
Joined: Dec 02, 2004 |
Posts: 26 |
|
|
|
|
|
|
|
|
|
|
|
Posted: Thu Jun 16, 2005 4:09 am |
|
|
LINUX |
Moderator |
|
|
Joined: May 24, 2004 |
Posts: 404 |
Location: Caiman |
|
|
|
|
|
|
not is XSS, and not add real domains name .
read the rules |
|
|
|
|
Posted: Sat Jun 18, 2005 5:52 am |
|
|
y3dips |
Valuable expert |
|
|
Joined: Feb 25, 2005 |
Posts: 281 |
Location: Indonesia |
|
|
|
|
|
|
no , i think its not an XSS ,
it is Remote command execution , but off course with different interface
the result will be display in the table form
i find many server with this "jump" application and has this vuln
many of them was FREEbsd n from japan
..
ps : i think he doesnt know that blah.com its real , i think he just mention a random name without meaning something, u can see that blah.com was using IIS |
|
_________________ IO::y3dips->new(http://clog.ammar.web.id); |
|
|
|
Posted: Sat Jun 18, 2005 9:45 pm |
|
|
any2000 |
Active user |
|
|
Joined: Dec 02, 2004 |
Posts: 26 |
|
|
|
|
|
|
|
|
|
|
|
|
Re: Ranking1.cgi Remote Command |
|
Posted: Sat Sep 24, 2005 11:37 am |
|
|
GeniusPrick |
Beginner |
|
|
Joined: Sep 24, 2005 |
Posts: 4 |
|
|
|
|
|
|
|
how did you find this error ? I really need to now .. thanks |
|
|
|
|
www.waraxe.us Forum Index -> Cross-site scripting aka XSS
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|