Infosechacker

Hello friends, In this post we going to learn how to exploit jquery vulnerability which will allow you to upload webshell to respective webserver using CSRF. Step-1 (Identification of target) We have two way to identifiy target first with google dork and other is manual analysis of target webpage source code. I. (Google Dork) Dork : /assets/global/plugins/jquery-file-upload/ Simply search on google for this Dork. [ 110 more words ]

Jquery File Upload Vulnerability Hello friends, In this post we going to learn how to exploit jquery vulnerability which will allow you to upload webshell to respective webserver using CSRF. Step-1 (Identification of target) We ha…

Since iOS 10 was released we haven’t seen a jailbreak nor have we heard from any of the regular jailbreak teams. Whether it is because they have stepped back or because Apple genuinely has made it harder to produce a jailbreak is anyone’s guess and, with iOS 10.2.1 being the latest iOS update, it seems that the gap is widening. Or it was until Italian hacker Luca Todesco came to the rescue. [ 375 more words ]

http://infosechacker.com/blog/2017/07/02/how-to-ios-10-2-1-jailbreak-yalu-jailbreak/

How To iOS 10.2.1 Jailbreak (Yalu Jailbreak) Since iOS 10 was released we haven’t seen a jailbreak nor have we heard from any of the regular jailbreak teams. Whether it is because they have stepped back or because Apple genuinely has made it …

What is XSS? Cross-site scripting (XSS) is a code injection attack that allows an attacker to execute malicious JavaScript in another user's browser. The attacker does not directly target his victim. Instead, he exploits a vulnerability in a website that the victim visits, in order to get the website to deliver the malicious JavaScript for him. To the victim's browser, the malicious JavaScript appears to be a legitimate part of the website, and the website has thus acted as an unintentional accomplice to the attacker. [ 658 more words ]

http://infosechacker.com/blog/2017/03/26/an-introduction-to-cross-site-scripting/

An Introduction to Cross-Site Scripting What is XSS? Cross-site scripting (XSS) is a code injection attack that allows an attacker to execute malicious JavaScript in another user’s browser. The attacker does not directly target his…