Monday, 22 June 2015

http://www.timmymobile.com | SQL Injection, data leakage


 
E:\My work\Myprobject\天米\Meters\
   DAL.AllSelect.GetList(String tableName, String where)
E:\My work\Myprobject\天米\Meters\DAL\AllSelect.cs
 
A generic error returns if we try simple (possible?) sql injections.
 
The scripts are really simple to circumvent. 

Sunday, 21 June 2015

Sitemap xml url rewrite rule


An example could be something like that, where our script is sitemap.php.
RewriteRule ^sitemap\.xml$ /sitemap.php [L]

Sunday, 14 June 2015

http://www.luiginegri.it | XSS

http://www.luiginegri.it/default.asp?ui=c&id=413&ricerca=negri+%22%3E%3Cscript%3Ealert%281%29%3B%3C%2Fscript%3E%3C%22&pagina=2

Saturday, 13 June 2015

Alternative IRC Clients for Windows


HexChat
HexChat is an IRC client based on XChat, but unlike XChat it’s completely free for both Windows and Unix-like systems. Since XChat is open source, it’s perfectly legal

https://hexchat.github.io/


ADIIRC
http://www.adiirc.com/


Hydrairc
http://www.hydrairc.com/


XChat
XChat is an IRC chat program for both Linux and Windows. It allows you to join multiple IRC channels (chat rooms) at the same time, talk publicly, private one-on-one conversations etc. Even file transfers are possible.
http://xchat.org/


Kvirc
KVIrc is a free portable IRC client based on the excellent Qt GUI toolkit. KVirc is being written by Szymon Stefanek and the KVIrc Development Team with the contribution of many IRC addicted developers around the world.
http://www.kvirc.net/


ThrashIRC
ThrashIRC is the easiest IRC client to connect to IRC. It has the best IRC client features while using little system resources. It connects to multiple networks. It has built-in spell check. This chat client has strong connection stability and dcc file resume. No adware or spyware. It supports quick control+tab window switching and nick+tab auto-completion. ThrashIRC has the best smileys. For the best IRC experience use ThrashIRC!
http://www.thrashirc.com/


Quassel
http://quassel-irc.org/

Nettalk
http://www.ntalk.de/Nettalk/

Tuesday, 2 June 2015

leganord.org | joomla sql injection, xss, system compromise



web folder: /home/ced/www/
leganord.org
passwd