Google has fixed a security flaw in its desktop search software that created a means for hackers to rifle through personal files on users’ PCs. A failure in Google Desktop to “properly encode output containing malicious or unexpected characters” created a means for hackers to cross from the web environment to the desktop application environment. […]
This was a while ago, but once again unsurprising..The amount of security holes that have been discovered in MySpace (to say they hold some pretty confidential info and are a preying ground for paedos..it’s a scary thought). Once again an XSS flaw shows up in MySpace. digi7al64 found yet another hole in myspace using non-alpha-non-digit […]
Tags: cross-site-scripting, hacking-myspace, myspace, myspace-hacking, myspace-xss, XSS, xss-vulnerability
Posted in: Exploits/Vulnerabilities, Web Hacking | Add a CommentXSS Shell is a powerful XSS backdoor which allows interactively getting control over a Cross-site Scripting (XSS) vulnerability in a web application. Demonstrates the real power and damage of Cross-site Scripting attacks. WHAT IS XSS SHELL ? XSS Shell is powerful a XSS backdoor and zombie manager. This concept first presented by XSS-Proxy (http://xss-proxy.sourceforge.net/). Normally […]
Tags: cross-site-scripting, darknet, ferruh, hacking, Hacking Tools, Web Hacking, XSS, xss-shell, XSSSHell
Posted in: Hacking Tools, Web Hacking | Add a CommentAh another flaw in Myspace, this time it’s quite dangerous exposing the details of teenagers. A security hole in the popular MySpace social networking site allowed users to view entries marked “private”, a crucial protection for users aged under 16, according to weekend reports. Though the site is said to have fixed the problem, it […]
Tags: css, darknet, myspace, myspace-hacking, teen-myspace, Web Hacking, web-application-security, XSS
Posted in: General Hacking, Web Hacking | Add a CommentNetscape.com has been hacked via a persistent Cross Site Scripting (XSS) vulnerability in their newly launched Digg-like news service. It seems the attacker did report the flaw to them repeatedly but they didn’t heed and ignored it, so he performed the XSS all over the site. eplawless stated the following: It was me. I did […]
Tags: cross-site-scripting, hacking, netscape-hack, netscape-hacked, Web Hacking, web-application-security, XSS
Posted in: General Hacking, Web Hacking | Add a CommentCross Site Scripting, or know as XSS, is the most common basic web hacking technique… and harmless, as many would say… but on this matter I don’t really agree, that’s why I wrote this article. About XSS as I knew it is a very abstract definition for JavaScript injection, or at least this is what […]
Tags: backbone, cookie, firefox, html, IE, internet-explorer, Javascript, Opera, XSS
Posted in: General Hacking, Web Hacking | Add a Comment
