[KAPDA::#37] - CoMoblog XSS

2006-03-23 Thread farhadkey
-- -- Orginal Advisory : http://www.kapda.ir/advisory-301.html Credit : FarhadKey {AT} kapda [d0t] ir KAPDA - Security Science Researchers Institute http://www.kapda.ir

Re: Zix Forum <= 1.12 (layid) SQL Injection Vulnerability

2006-05-22 Thread farhadkey
You said : "By PHP Emperor" but this was a small advisory/exploit from KAPDA by me : http://www.milw0rm.com/exploits/1807 http://www.securityfocus.com/bid/18043 and also orginal advisory : http://www.kapda.ir/advisory-327.html

[KAPDA::#44] - NewsCMSLite Login ByPass by Cookie

2006-05-25 Thread farhadkey
tch`s released yet by vendor. Original Advisory: http://www.kapda.ir/advisory-332.html Credit : ---- FarhadKey of KAPDA farhadkey [at} kapda net Kapda - Security Science Researchers Insitute of Iran http://www.KAPDA.ir

[KAPDA::#46] - Nukedit Unauthorized Admin Add

2006-05-29 Thread farhadkey
unt . Then login with your email ! + your password . Solution: Update to new version of nukedit . Original Advisory: http://www.kapda.ir/advisory-337.html Credit : ---- FarhadKey of KAPDA farhadkey [at} kapda net Kapda - Secur

[KAPDA::#47] - myNewsletter 1.1.2 SQL_Injection

2006-06-05 Thread farhadkey
t;''") sqlString = "Select Password from Newsletter_Admin Where UserName = '" &theUserName& "'" Original Advisory: http://www.kapda.ir/advisory-340.html Credit : FarhadKey of KAPDA farhadkey [at} kapda {d0t} net Kapda - Security Science Researchers Insitute of Iran http://www.KAPDA.ir

[KAPDA::#47] - Snitz Forum <= 3.4.05 SQL-Injection Vulnerability

2006-06-10 Thread farhadkey
okieURL & "GROUP") to this: Group = cLng(Request.Cookies(strCookieURL & "GROUP")) Thanks to "vendor" for their supporting . http://forum.snitz.com/forum/topic.asp?TOPIC_ID=62049 Original Advisory: http://www.kapda.ir/advisory-343.html Credit : FarhadKey of KAPDA farhadkey [at} kapda net Kapda - Security Science Researchers Insitute of Iran http://www.KAPDA.ir Grtz to : CVH , Pi3cH , Black_Death , DevilBox , Trueend5

[KAPDA::#52] - PHP-Post 1.0 Cookie Modification Privilege Escalation Vulnerability

2006-07-18 Thread farhadkey
Original Advisory: http://www.kapda.ir/advisory-380.html Credit: ---- FarhadKey of KAPDA farhadkey [at} kapda net Kapda - Security Science Researchers Insitute of Iran http://www.KAPDA.ir

[KAPDA::#56] - FREEKOT SQL Injection Vulnerability

2006-08-30 Thread farhadkey
dvisory-410.html Credit : -------- FarhadKey of KAPDA farhadkey [at} kapda ir Kapda - Security Science Researchers Insitute of Iran http://www.KAPDA.ir

[KAPDA::#61] - PacPoll <= 4.0 Multiple Vulnerabilities

2006-10-25 Thread farhadkey
- No patch`s released yet by vendor. Original Advisory: ---- http://www.kapda.ir/advisory-445.html Credit : FarhadKey of KAPDA farhadkey [at} kapda ir Kapda - Security Science Researchers Insitute of Iran http://www.KAPDA.ir