Nytro Posted September 3, 2011 Report Posted September 3, 2011 Facebook Blind Sql Injectionfacebook.com account settings update a postdata _user not filtered have sql injection vulnerabilities.Using a Tamper data and watch post and get request server and update request have vulnerable."Jester, GHoST61, MadHunTeR,SuSKuN, LifeSteaLeR, Prens, Vp"Email: turksistemguvenligi@gmail.comTwitter : @TurkAslanlariFacebook: Türk AslanlarFriendfeed: Türk AslanlarFriendfeed: SQL Injection - FriendFeed[Close]Video:http://www.securitytube.net/video/2204Da... Quote
totti93 Posted September 3, 2011 Report Posted September 3, 2011 Bravo lui! Poi eu in locul lui nu l-as fi facut public...Mai persista vulnerabilitatea, ca nu mi-am dat seama unde a intrat (Nu prea sunt cu FB)? Quote
symboss Posted September 3, 2011 Report Posted September 3, 2011 Se mai intimpla si la case mari Intrase la "Set?ri de confiden?ialitate" daca nu ma gresesc.FB-ul insa deja a facut ceva schimbari si acele setari acuma arata altfel deci nu cred sa mai persiste vulnerabilitatea. Quote
Wav3 Posted September 3, 2011 Report Posted September 3, 2011 (edited) Poate pe asta se bazau Anonymous aia.EDIT : Comment-ul uploader-ului pe youtube :Not anonymous We are Turkish Hackers: "Jester, GHoST61, MadHunTeR, SuSKuN, LifeSteaLeR, Prens, Vp" u search google "anonymous hacked? jester the_bekir" Hacked Anonymous OFF : Cum se numeste melodia din fundal ? Edited September 3, 2011 by Wav3 Quote
Paul4games Posted September 3, 2011 Report Posted September 3, 2011 Pacat ca a fost facut public, dar era multa bataie de cap ca era blind dar cred ca se putea folosi o tehnica de optimizare pentru blind sqli ca sa se reduca numarul de requesturi sis a se scrie un tool pentru a face dump dar era un pic de bataie de cap.@Wav3Evanescence-Bring Me To Life Quote
