Soroush Dalili – Computer Security Is My Interest!

Soroush Dalili's blog – بلاگ سروش دلیلی
icon
  • Home
  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

Drag and Drop XSS in Firefox by HTML5 (Cross Domain in frames)

On December 31, 2011, in My Advisories, Security Articles, by Soroush Dalili
6 Comments
Leave A Response

Tagged with: drag and drop XSS • Drag Drop HTML5 XSS • Firefox Javascript Protocol Bypass • XSS by Feed Protocol 

IIS5.1 Directory Authentication Bypass by using “:$I30:$Index_Allocation”

On July 1, 2010, in My Advisories, Security Posts, by Soroush Dalili
7 Comments
Leave A Response

Tagged with: IIS5.1 Authentication Bypass 

Crowzers or Carzy Browsers:

On June 30, 2010, in My Advisories, Security Posts, by Soroush Dalili
0 Comments
Leave A Response

Tagged with: browser address bar lock • browser crash • fix iframe src 

Opera Browser – Scroll Information Leakage

On June 30, 2010, in My Advisories, by Soroush Dalili
0 Comments
Leave A Response

Tagged with: Opera Browser Scroll Information Leakage 

Cross Site URL Hijacking by using Error Object in Mozilla Firefox

On May 27, 2010, in My Advisories, Security Articles, Security Posts, by Soroush Dalili
3 Comments
Leave A Response

Tagged with: Cross Site URL Hijacking • Cross Site URL Hijacking by Error Object • XSUH by error object • XSUH in Mozilla Firefox 
Previous Entries

Categories 

  • My Advisories (8)
  • Normal Posts (22)
  • Security Articles (17)
  • Security Posts (31)
 

Recent Posts 

  • Drag and Drop XSS in Firefox by HTML5 (Cross Domain in frames)
  • “Advisories” has been updated
  • Flash ExternalInterface.call() JavaScript Injection – can make the websites vulnerable to XSS
  • Travian Game Patch – Finally!
  • Unrestricted File Download V1.0 – Windows Server
 

Tags 

All Facebook Application Walls block ip block isp Blog Template by using iMacros close advertisment computer science vulnerabilities credit card algorithm credit card algorithm is equal to IMEI algorithm Critical vulnerabilities CSRF Attacks educational bug finding Facebook Add Friend Facebook Automatic Friend Add Facebook Automation Friend Facebook Game Cheat FaceBook MobWars Cheat final project article free web hosting ftp vulnerabilities hacking videos IMEI algorithm javascript to close advertisements java vulnerabilities logical flaw Microsoft IIS Vulnerability National ID Code Algorithm National ID Code JavaScript Phishing attacks Privacy soroush dalili sql injection tutorial travian game travian hack travian online game university of birmingham vulnerabilities Web application security in ASP Web application security in ASP - (simple) JSP Web application security in JSP weblogs website vulnerability XSS XSS Vulnerability الگوریتم کد ملی کد ملی
 

RSS OWASP Feeds 

  • New Entry at No 4: Cyber Attacks January 14, 2012
  • Bilateral Authentication January 13, 2012
  • Google shares Chrome browser security principles January 13, 2012
  • "Sanitize Input" January 13, 2012
  • Essential Attack Surface Management January 12, 2012
 

RSS Symantec Security News 

 

RSS New Vulnerabilities 

  • Vuln: JBoss Cache 'NonManagedConnectionFactory.java' Local Information Disclosure Vulnerability December 30, 2012
  • Vuln: Pligg CMS 'status' Parameter SQL Injection Vulnerability December 29, 2012
  • Vuln: Advanced Digital Broadcast Digital Satellite TV Platform Multiple Unspecified Vulnerabilities January 13, 2012
  • Vuln: Atmail Webmail Multiple HTML Injection Vulnerabilities January 13, 2012
  • Bugtraq: ME020567: MailEnable webmail cross-site scripting vulnerability CVE-2012-0389
  • Bugtraq: ZDI-12-016 : (0Day) HP Diagnostics Server magentservice.exe Remote Code Execution Vulnerability
  • Bugtraq: ZDI-12-015 : (0Day) HP StorageWorks P2000 G3 Directory Traversal and Default Account Vulnerabilities
  • Bugtraq: ZDI-12-014 : HP Easy Printer Care XMLSimpleAccessor Class ActiveX Control Remote Code Execution Vulnerability
  • More rss feeds from SecurityFocus
 

Soroush Dalili – Computer Security Is My Interest!

Pages

  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

Stay In Touch

  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

More

Thanks for dropping by! Feel free to join the discussion by leaving comments, and stay updated by subscribing to the RSS feed.
© Soroush Dalili blog
iBlog by PageLines
Twitter Twitter LinkedIn LinkedIn