noobofall Posted July 3, 2007 Share Posted July 3, 2007 It's up now for a couple of weeks. Some people did register allready. http://www.gimmas.nl If you wanna test it as "member" just sign up by clicking on "registreer je hier" (site + me are dutch) Hope you guys can find something Link to comment Share on other sites More sharing options...
agentsteal Posted July 3, 2007 Share Posted July 3, 2007 Array: http://www.gimmas.nl/?searchquery[] Cross Site Scripting: There is Cross Site Scripting if the Expect header contains code. Carriage Return Line Feed Injection: http://www.gimmas.nl/?searchquery=%0d%0aSet-Cookie%3A%20PHPSESSID%3Dvulnerable Directory Transversal: http://www.gimmas.nl/?searchquery=../../ User Enumeration: http://www.gimmas.nl/~root Link to comment Share on other sites More sharing options...
Daniel0 Posted July 4, 2007 Share Posted July 4, 2007 Your search button looks a bit misplaced in Firefox. Link to comment Share on other sites More sharing options...
noobofall Posted July 4, 2007 Author Share Posted July 4, 2007 thanks agentsteal! fixing the first problem now, really thanks for finding it. The 2 other problems aren't that dangerous right? Link to comment Share on other sites More sharing options...
Recommended Posts