Categories Tree

Tags

Recent Posts

Recent Comments

August 28, 2010

What’s New in Thesis 1.8?

Posted by: Joy  :  Category: Web Development
Wordpress LogoRecently the great, seo-friendly theme, thesis, has upgraded their version to 1.8. You’re absolutely going to love the new features in Thesis 1.8. It’s just plain easier, smarter, more powerful, and accessible!

Thesis 1.8 not only incorporates WordPress nonce field protection, but it also boasts a refined data-handling system that will help keep your sites both safe and stable!

Read more…

Comments (2)  :  Add Comment
August 15, 2010

Friendster XSS Through FBML

Posted by: Joy  :  Category: Linker, Vulnerability
Friendster FBML Hole Status : Active
Released : August, 2010
Author : no_one
Greetings : Angell de Ville & The Friendster Team

MyFeeling Widget Linker

The last shoutout linker has been filtered already about a month after being released. Now i’m trying to share again another persistent xss on friendster that can be used to add layouts to our profile. Here, we’re gonna use the old FBML platform on friendster applications. as you might already know, actually this platform was already removed from their developer page about a year ago, but some of the old ones are still intact.

OK, let’s just go straight to the steps. Follow these instructions carefully :
Read more…

Comments (5)  :  Add Comment
August 07, 2010

WP Plugins - PHPMailer Contact Form

Posted by: Joy  :  Category: Web Development
WP-Contact-Form PHPMailer is a PHP email transport class featuring file attachments, SMTP servers, CCs, BCCs, HTML messages, word wrap, and more. we can use it for sending email via sendmail, PHP mail(), QMail, or with SMTP. You can read more about it on their official website here…. With this class, i tried to make another simple wp plugin called WP PHPMailer contact form. This plugin will create a simple contact form for your wordpress powered blog. captcha code is also added to the form to prevent spamming.
Read more…

Comments (2)  :  Add Comment
July 18, 2010

XSS on Twitter

Posted by: Joy  :  Category: Vulnerability
Twitter XSS Searching for XSS hole on social networking websites is really fun indeed. It feels like you have your own satisfaction whenever you find it by yourself. the XSS vulnerability on Tagged, Multiply, Friendster or even Facebook have been posted here before and some has not been patched.. lolz..

About a month a go, when i was too busy with my daily activites on the real life, i didnt realize that one of our mods on Forum Balikita named H4×0r-x0x found one again on twitter, i’m amazed, good job dude. If i’m not mistaken the vulnerability left on twitter oauth application module, especially on application name

Read more…

Comments (2)  :  Add Comment
  1. Pages:
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. 6
  8. 7
  9. 8
  10. 9
  11. 10
  12. 11

Narsis Corner

    skull

    SEO Monitor
    SEO Stats
    :: Special Links ::
    Komunitas BSI
    :: Link Me Back ::
    = With Image =
    !CrazyDavinci!

    = Link Only =

Media-Box

Chat-Box

Archives