Archives for

Vulnerability

Sify.com vulnerable to SQL Injection

Indian Ethical Hackers found a SQL injection flaw at Sify( sify.com). SQLi Vulnerability still exist in the site. Ethical Hackers from India found a SQL Injection vulnerability at the high profile website sify.com. According to Ethical Hackers, they reported bug to site administration but they didnot respond to the vulnerability. Website: http://www.sify.com Vulnerable link: http://www.sify.com/imagegallery/gallery/img_view_sentcard.php?card_number=ss […] Continue reading →

Adobe Vulnerable to XSS flaw

One of the subdomain (http://groups.adobe.com) of Abode site is vulnerable to XSS. The vulnerability is still not fixed by Adobe. Ethical hackers reported vulnerability a few days ago but they failed to respond. We got email from Ethical Indians. Since the Bug Bounty Program started by companies, hackers are continually hunting different types of vulnerabilities of different […] Continue reading →

W3Schools XSS vulnerability Found by the youngest Security Researcher

A Pakistani Student “Ali Hasan Ghauri” (AHPT) who is 14 years old, The Youngest Security Researcher has discovered XSS (Cross-Site Scripting) Vulnerability on http://www.w3schools.com main site. Below is the Screen Shot of XSS. The Youngest Pakistani Security Researcher “Ali Hasan Ghauri” (AHPT) also Found Vulnerabilities on Big Tech Sites on Skype , Adobe, Asia Cnet, […] Continue reading →

Java Zero Day sells on Black market for $5000

It is recommended that users should disable the Java program in their Web browsers, because it remains vulnerable to attacks that could result in identity theft and other cyber crimes. Some browsers by default have disabled the JAVA Program. On Sunday, Oracle released a security update that addresses two critical zero-day vulnerabilities in Java that […] Continue reading →

Facebook password reset vulnerability found by a security researcher

An independent vulnerability researcher, Sow Ching Shiong, found a way to change the password of any facebook username without knowing his last password. Facebook have fixed this very critical vulnerability. This flaw allow an attacker to change any facebook user’s password easily. Facebook have a recovery page for compromised accounts “https://www.facebook.com/hacked”. when clicked, it redirected to another page“https://www.facebook.com/checkpoint/checkpointme?f=[userid]&r=web_hacked”the […] Continue reading →

Symantec PGP Desktop Zero Day Vulnerability

Symantec product PGP Whole Disk Encryption which is used to encrypt all the contents on the disk on a block-by-block basis having Zero-Day Vulnerability, Exploitation of this issue allows an attacker to execute arbitrary code within the kernel. An attacker would need local access to a vulnerable computer to exploit this vulnerability.according to a pastebin note. Note […] Continue reading →

Page 3 of 3
«
1
2
3