Mes: julio 2011

Apple.com, vulnerable a blind SQL e Iframe Injection

Un hacker libanés «Idahc» que asegura no pertenecer al grupo Anonymous o Lulzsec expuso unas vulnerabilidades pertenecientes a la manzana. Iframe Injection https://consultants.apple.com/au/locator_results.php?sl=%22%3E%3Ciframe%2520src%3dhttp%3a%2f%2fblog.puchunguis.com%3E SQL Injection http://consultants-locator.apple.com/companySearch.php?PHPSESSID=778153fc1a5a58ff32322a8fd24f0ff6&fuseaction=home.directory&offset=0&rppg=8&q=’&cf=hu& DATABASE = APPLE …