GHDB « Hackers For Charity

GHDB

Google Search: intitle:”EMUMAIL – Login” “Powered by EMU Webmail”

klouw rates this entry 6 out of 10.
Submitted: 2004-10-12 00:00:00
Added by: klouw
Hits: 2051
Score: 6

The failure to strip script tags in emumail.cgi allows for XSS type of attack. Vulnerable systems: * EMU Webmail version 5.0 * EMU Webmail version 5.1.0 Depending on what functions you throw in there, you get certain contents of the emumail.cgi file. The vulnerability was discovered in an obsolete script named userstat.pl shipped with Open Webmail. The script doesn’t properly filter out shell characters from the loginname parameter. http://www.securityfocus.com/bid/9861

Comments:

5 Responses to “GHDB”

Jack says:

October 26, 2011 at 9:12 pm

Does GHDB still updates for now?
Johnny says:

October 27, 2011 at 3:31 am

The GHDB is alive and well, updated through the ExploitDB: http://www.exploit-db.com/google-dorks.
The Artist says:

April 20, 2013 at 7:10 am

Hi Johnny,been a while since I’ve came last. Aren’t you gonna update this website anymore???
Johnny says:

April 27, 2013 at 5:10 am

The GHDB is not updated and lives with the exploitdb: http://http://www.exploit-db.com. Please check out the awesome folks at Offensive Security as well: http://www.offensive-security.com!
Velmurugan says:

May 7, 2013 at 7:38 am

Is any offline view-able resources is available of this product ?

M	T	W	T	F	S	S
« Apr
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31

GHDB « Hackers For Charity

Donations

Recent Posts:

GHDB

5 Responses to “GHDB”

Leave a Reply

Recent Posts

Recent Comments

Posts by Month

Random HFC Photos