[Full-disclosure] Batch File Creator (A batch file that can create a program (exe, bat, mp3, etc..) and execute it without downloading anything)

2007-02-05 Thread SirDarckCat
#x27;]['tmp_name']); $xx=strlen($m)/65000; $z=(isset($_REQUEST['autostart']))?"start \"\" \"$rn\"":"EXIT"; echo "@echo off REM BatchFileCreator 0.1 REM By SirDarckCat from elhacke

Re: [Full-disclosure] JavaScript inLine Debugger - The fastest web sites debugger (technique, not a tool)

2007-02-03 Thread SirDarckCat
hen transcribing the document from my notes :P Greetz!! On 2/3/07, Ben Bucksch <[EMAIL PROTECTED]> wrote: SirDarckCat wrote: > JaSiLDBG > JavaScript inLine Debugger Are you selling us the "javascript:" URL as "JaSiLDBG JavaScript inLine Debugger"? From all I c

[Full-disclosure] PHP-Revista Multiple Vulnerabilities

2006-09-01 Thread SirDarckCat
Discovered by Sirdarckcat from elhacker.netRevista 1.1.2 http://php-revista.sourceforge.orgRevista is a simple spanish PHP

[Full-disclosure] ssLinks v1.22 Multiple SQL Injection Vulnerabilities

2006-09-01 Thread SirDarckCat
Discovered by Sirdarckcat from elhacker.netssLinks v1.22 Multiple SQL Injection Vulnerabilities http://scripts.incutio.com/sslinks

[Full-disclosure] Autentificator v2.01 SQL Injection Vulnerabilty

2006-09-01 Thread SirDarckCat
Discovered by Sirdarckcat from elhacker.netAutentificator v2.01 SQL Injection http://www.hotscripts.com/Detailed/15291.html

[Full-disclosure] X-Statics 1.20 SQL Injection Vulnerability

2006-07-29 Thread SirDarckCat
Discovered by Sirdarckcat from elhacker.net X-Statics 1.20http://members.lycos.co.uk/xscripts03/== X-Statics is a simple script for makingstatics of a web site. There is an SQL injection vulnerability == POC

[Full-disclosure] X-Protection 1.10 SQL Injection Vulnerability

2006-07-29 Thread SirDarckCat
Discovered by Sirdarckcat from elhacker.net X-Protection 1.10http://members.lycos.co.uk/xscripts03/== X-Protection is a simple script made for protectiong files with a simple file inclusion. There is a SQL injection vulnerability

[Full-disclosure] X-Poll SQL Injection Vulnerability

2006-07-29 Thread SirDarckCat
Discovered by Sirdarckcat from elhacker.net X-Poll 1.10http://members.lycos.co.uk/xscripts03/== X-Poll is a simple poll maker for simple PHPweb sites. This has a SQL Injection vulnerability. == PoC:http

[Full-disclosure] TinyPHPForum Multiple Vulnerabilities

2006-07-29 Thread SirDarckCat
== Admin Maker xD Code:PoC:NOM:MAIL: -- A working exploit is anexed. Att. Sirdarckcatwww.elhacker.net-- Att.[EMAIL PROTECTED] http://www.google.com/search?q=sirdarckcat TinyPHPForum 3.6 Admin Maker By SirDarckCat from elhacker.net Existing User:

[Full-disclosure] SQLiteWebAdmin multiple Vulnerabilities

2006-07-29 Thread SirDarckCat
Discovered by Sirdarckcat from elhacker.net SQLiteWebAdminhttp://sourceforge.net/projects/sqlitewebadmin== SQLiteWebAdmin is a simple script for managing aDataBase. It has several security bugs. ==Remote File

[Full-disclosure] Banex Multiple Vulnerabilities

2006-07-29 Thread SirDarckCat
Discovered by Sirdarckcat from elhacker.net Banex 2.21http://sourceforge.net/projects/banex== Banex is a simple script for sharing Bannersthrough multiple webs. Anyway it has multiple vulnerabilities. ==1

[Full-disclosure] Ajax Chat Multiple Vulnerabilities

2006-07-29 Thread SirDarckCat
Discovered by Sirdarckcat from elhacker.net Ajax Chathttp://www.pcdiscs.co.uk/chat/== Ajax Chat is a web script for making an onlinechat based on PHP and AJAX. This has a Remote File Disclosure and a XSS bug

[Full-disclosure] Teagames cheating

2006-06-28 Thread SirDarckCat
kcat.googlepages.com/teagamescheating   Original advisory: http://foro.elhacker.net/index.php/topic,128534.0.html     Greetings! -- Att.[EMAIL PROTECTED]http://www.google.com/search?q=sirdarckcat http://sirdarckcat.googlepages.com/   ___ Full-Disclosure - We believe