Search This Blog

Powered by Blogger.

Blog Archive

Labels

Showing posts with label Zer0Pwn. Show all posts

Airport of Sydney Hacked and Data Leaked by Zer0Pwn


The Hacker known as 'Zer0Pwn' claimed to have unauthorized access to the Airport of Sydney website(sydneyairport.com.au).

Hacker dumped the compromised data in pastebin along with database details. The dump contains username and password(plain text). Hackers also post the admin login page details.

"We have gained access to the FIDS (Flight Information Display System) of your airport, and we are leaking the data. We're proving that literally, NOTHING is secure. " Hacker said in the leak.


The official website of the State of Louisiana hacked by Zer0Pwn

The Hacker known as Zer0Pwn have managed to gain unauthorized access to the official website of the State of Louisiana(Louisiana.gov).

Hacker dumped the compromised database in pastebin. The dump includes emails, passwords, root users, and administrator credentials.

http://pastebin.com/Ubg8GnKG

He also claimed that he found xss vulnerability in SubjectPlus, a web-application software used by mostly educational websites. He posted the proof-of-concept in pastebin.

University of Iowa hacked by Zer0Pwn


The Hacker named as "Zer0Pwn" have breached the official website belong to University of Iowa.

Hackers leaked admin username and password details in pastebin.  Hacker claimed that the site is vulnerable to Integer Based SQL Injection.

In order to prove the vulnerability , the hacker also include the link to the vulnerable page.  As it contains high risk data, we are not including the pastebin link here.


University of Washington & Philadelphia sites hacked by Zer0Pwn

The Hacker group known as "Zer0Pwn" breached two university websites and leaked database details in pastebin. The site belong to University of Washington (www.washington.edu) & The University Philadelphia(www.philau.edu) has been hacked.

Hacker break into the University of Washington by exploiting the simple SQL Injection vulnerability. The leak(pastebin.com/A8p6d3k9) contains username, password and a poc for the vulnerability.


Hackers leaked(pastebin.com/9eivn85U) the database details belong to The University Philadelphia(www.philau.edu), it contains name,school,education,office_email and other details.

SQLi and XSS vulnerability found in Yale University by Zer0Pwn



The GreyHat hacker 'Zer0Pwn ‏' has discovered Cross site scripting as well as Sql injection vulnerability in the Yale University website.  We are not providing the SQL injection vulnerable link for security issue. 

The POC for xss vulnerability:
http://bioinfo.mbb.yale.edu/genome/worm/search.cgi?orf=B0244.9%3Cscript%3Ealert%28%22Zer0Pwn%22%29%3C/script%3E