Xss permanent in api.trafic.ro |

Most Commented

Loading....

Apocalipsa dupa Nemessis in (103 Visits)
Ce servicii de mail folositi? in (42 Visits)
This is the end in (28 Visits)
Hackersblog.org is now blog.rstcenter.com in (27 Visits)
Short news in (22 Visits)
La multi ani România, la multi ani românilor in (22 Visits)
Azi este ziua userilor hackersblog.org in (15 Visits)
Raportare vulnerabilitati in (14 Visits)
Inca o pierdere de timp in (14 Visits)
Update in (11 Visits)
Mi s-a furat id-ul de messenger/adresa e-mail. Ce sa fac? in (313 Visits)
Hi5.com coders read this in (37 Visits)
SMS scam (1) in (28 Visits)
Phishing Bancpost in (12 Visits)
Dezinformare sau proasta informare? in (10 Visits)
Si tentativele de phishing pot fi amuzante in (9 Visits)
Phishing Raiffeisen cu atasament html in (6 Visits)
Cum sa iti protejezi adresa e-mail si datele confidentiale din aceasta in (96 Visits)
[Utilitare] Suna gratis de pe internet sau de pe iPhone in (54 Visits)
Ce nu se invata la scoala - Tipuri si tehnici spam/Hi5 (4) in (49 Visits)
Despre CSRF, hi5.com, cum sa trisezi la concursuri s.a.m.d. in (42 Visits)
Ce nu se invata la scoala - (D)DOS (5) in (34 Visits)
Virusi in clipuri video [how to] in (32 Visits)
Ce nu se invata la scoala - Tipuri si tehnici spam/mail (2) in (29 Visits)
Ce nu se invata la scoala - Tipuri si tehnici spam (1) in (24 Visits)
Yahoo! redirects - a big issue (with video) in (14 Visits)
Ca musca in... in (12 Visits)
usa.kaspersky.com hacked ... full database acces , sql injection in (173 Visits)
Simpatie.ro, matrimoniale3x.ro, apetisant.ro, deliciu.ro , etc Sql injection in (113 Visits)
Yahoo! epic fail - permanent xss unleashed in (90 Visits)
Telegraph.co.uk hacked, sql injection in (66 Visits)
RedTube.com ... The Free Sex Video Community in (59 Visits)
Kaspersky Thailand hacked by TinKode in (48 Visits)
Conquiztador Hacked Again in (48 Visits)
Telegraph.co.uk hacked - when will they learn? in (43 Visits)
Simona Sensual si profilul ei de hi5 in (40 Visits)
F-Secure.com - SQL Injection + Cross Site Scripting in (39 Visits)
Wannabe Hackers [2] - cum sa faci un virus by sppy_hacker in (33 Visits)
Wannabe Hackers [1] - Cum sa hack-uiesti RapidShare-ul in (29 Visits)
Digital Photocopiers Loaded With Secrets in (26 Visits)
Hacker Uses XSS and Google Street View Data to Determine Physical Location in (16 Visits)
Oldies but goodies - Freedom Downtime - The Story of Kevin Mitnick in (11 Visits)
[Video] The History Of Hacking in (9 Visits)
OWASP Phishing demo in (9 Visits)
Christopher "moot" Poole: The case for anonymity online in (9 Visits)
Hope 2603 – Kevin Mitnick - Life a Computer Hacker – Revealed in (8 Visits)
Owasp5005 Part1 - New zero-day browser exploits - ClickJacking in (8 Visits)
Se poate sparge parola de Yahoo? in (344 Visits)
phpBB.ro hacked in (105 Visits)
Experiment social in (70 Visits)
Cand dorinta de afirmare depaseste granitele bunului simt - PaxNwo un leecher ordinar in (61 Visits)
Oare cum e pana la urma? in (57 Visits)
"Hot" de id-uri messenger in (52 Visits)
Concurs fara premii in (51 Visits)
Forumul Andreei Balan spart in (47 Visits)
Ce nu se invata la scoala – Vendetta (6) in (45 Visits)
Experiment social II - andimoisescu.ro in (44 Visits)

Top Users

7 Responses to “Xss permanent in api.trafic.ro”

Bogdan Aron Says:
October 16th, 2009 at 3:26 pm
Rezolvam. “Multumim” si noi pentru atentionare.

“In marea majoritate a cazurilor vom anunta adminii de vulnerabilitatile existente in sistemele lor.” Sa inteleg ca acest caz nu s-a incadrat in “marea majoritate a cazurilor”.

Toate cele bune.

PS: In cazul in care veti gasi si pe viitor anumite vulnerabilitati, ne puteti anunta pe email, inainte de a face public?
2fingers Says:
October 16th, 2009 at 3:29 pm
Nu o sa ma ascund dupa deget. A fost just for fun. Daca era vorba de o vulnerabilitate critica ati fi primit cu siguranta mail cu cateva zile inainte de publicarea pe blog. In cazul de fata a fost vorba doar de un xss.
Bogdan Aron Says:
October 16th, 2009 at 3:39 pm
Just for fun se putea face un print screen Oricum, bine ca s-a rezolvat repede.

Din nou,

Toate cele bune.
2fingers Says:
October 16th, 2009 at 3:40 pm
Numai bine
Shocker Says:
October 16th, 2009 at 4:06 pm
Ca tot veni vorba de XSS-urile din trafic.ro, stiu ca mai sunt cel putin 2, unul dintre ele imi amintesc ca e aici:
http://www.trafic.ro/script/?rid=
Celelalte nu mai stiu, nu le-am mai notat
Bogdan Aron Says:
October 16th, 2009 at 4:14 pm
@Shocker

Am notat. Multumesc

In cazul in care mai descoperi ceva trimite-mi, te rog, un email la bogdan punct aron la trafic punct ro.
Avadanei Andrei Says:
October 17th, 2009 at 5:34 pm
Si gTOP are XSS, si parca avea si Blind SQLI.

Subscribe to our Feed

N/A Subscribers (Feedburner)

Entries RSS

Comments RSS

Related Posts

7 Responses to “Xss permanent in api.trafic.ro”

Leave a Reply