The Ethical Hacker Network - Latest posts of: somebot

Latest Additions

Who's Online

EH-Net News Feeds

Latest Additions

Show Posts
Pages: [1]

1	Ethical Hacking Discussions and Related Certifications / Other / XSS and SQL Injection exploit still not patched	on: January 04, 2008, 08:59:49 AM
The XSS and SQL injection exploit revealed in this thread for this forum is still not patched or mitigated. If I can be of assistance, let me know (privately).

2	Ethical Hacking Discussions and Related Certifications / Other / Re: regardin XSS	on: December 29, 2007, 03:54:18 PM
Quote from: ChrisG on December 29, 2007, 09:04:08 AM yup i am following on that. do you think its because there arent as many people running drupal as opposed to joomla that is resulting in what you are seeing? or something else? if something is secure only because people arent targeting it (yet) that seems like you may be in either the 1) just wait the hacks will come category or 2) the user and development population is low and dont expect patches or new updates. Yeah, I don't buy the Microsoft-ish argument about "popularity==vulnerability". Anyway, Drupal may or may not be popular. Don't know. Quote oh and since we are talking about CMSs, do any of them have a update management system that would tell you that moduleX or ModuleY are outdated and should be upgraded? mos_* refer to major [platform-]components of Mambo/Joomla, I believe, and not [add-on] components. The best resource for finding the security vulnerabilities seems to be SecurityFocus and Milw0rm, and not those two packages. They seem more focused on promotion than information (last I looked). For fun and profit: http://www.milw0rm.com/search.php?dong=joomla&Submit=Submit http://www.milw0rm.com/search.php?dong=mambo&Submit=Submit http://www.milw0rm.com/search.php?dong=drupal&Submit=Submit

3	Ethical Hacking Discussions and Related Certifications / Other / Re: regardin XSS	on: December 28, 2007, 08:28:50 PM
Chris, You asked what I recommend, not what is "recommended". There isn't a page that I based that info off of -- it's from personal experience. I have yet to see a major drupal installation that has been routinely hacked, cracked and used to host child porn, IRC (eggbot anyone?), phishing scams, etc., or provide a way to test privilege escalation attacks after gaining shell access as the Apache system account user. As for Mambo/Joomla, I see these literally every night I am at work. Many times it is the same sites again and again. A number of sysadmins I know from work or from other associations use Drupal. That's how I learned of it, myself. Perhaps I should put up a page. But then it would be drowned out by pages with expertise like "Why chmod 777 is NOT a security risk". Ya know?

4	Ethical Hacking Discussions and Related Certifications / Other / Re: regardin XSS	on: December 28, 2007, 04:43:28 PM
Drupal, if one must use a PHP CMS.

5	Ethical Hacking Discussions and Related Certifications / Other / Re: regardin XSS	on: December 28, 2007, 10:08:12 AM
You're all welcome. As a Linux System Admin for a managed hosting company, I see many of these vulnerabilities nightly (I'm a late-night shift worker). Sadly, many of these vulnerabilities exist with Mambo/Joomla sites. I usually recommend against using those packages, myself.

6	Ethical Hacking Discussions and Related Certifications / Other / Re: regardin XSS	on: December 28, 2007, 09:38:10 AM
This page is being used as an example of XSS vulnerabilities over from sla.ckers.org. http://www.ethicalhacker.net/component/option,com_smf/Itemid,54'%22%3E%3Cscript%08%3Ealert(%22xss%22)%3C/script%08%3E/script%3E,666/topic,1584.0/ This URL also discloses an SQL injection vulnerability on this very site. Aha. "mos_menu"... Mambo/Jooma in use == vulnerable. Sad to see, really.

Pages: [1]

SANS Deals 4 EH-Netters

$150 OFF Any SANS Course in Any Format!
Coupon Code: Refer_EHN
Including SANS Phoenix 2012, SANS 2012

Recent Forum Topics