e, which will finally increase the PR of "Page A" with the repeat of this process with different pages that contains css flaws.
All this information is theoretic, and I never had time to spend for trying this.You can find the original version of this advisory on: http://www.hoccam.
I found a sql injection vulnerability, which leads to password disclosure in 30gigs.com email service.
The vulnerability exists in http://www.30gigs.com/getpassword/ page due to lack of validation of user submitted data.
Proof of Concept:
enter http://www.30gigs.com/getpassword/
and copy & paster t
ulnerability can lead to serious issues.
regards,
cumhur onat
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
I'm looking an out-of-the-box remote root exploit for www.bankofamerica.com
Payment will be transfered by my account in Bank of America.
Best
Regards.
Cumhur Onat :D
On 6/18/05, Ivaylo Zashev <[EMAIL PROTECTED]> wrote:
We'll double what the others are paying and send you free lo
how cant authorities do anything about this servers?
On 5/2/05, Julio Cesar Fort <[EMAIL PROTECTED]> wrote:
Today I received a fake message pretending to be from PayPal SecurityCenter. The most intersting thing is that I don't even have a PayPalaccount.The fake PayPal link points to a possibly comp