Bug no Status do orkut aprenda fazer.

If you like this post, you may subscribe to my RSS feed or email alerts to receive automatic updates in future! Thanks for reading... :-)

A bug in orkut let you add custom images to Orkuts status update feature as shown below…

As you can see OrkutFeeds logo in above screenshot is not a standard smiley which orkut users can add as part of their status updates messages.

Here are steps to to use this bug…

1. Go to your orkut profile and find status update field. Click on edit button…

2. Next put code shown below in it and click update.

<img
src="http://img4.orkut.com/img/smiley/../../images/medium/607105044/71300207/pt.jpg">

Above will add OrkutFeeds logo. Now to add image of your choice…

• It must be on orkut.


• It must be on orkuts image server ex: img4.orkut.com, img3.orkut.com

Now here is the simplest way to put an image on orkuts image server. Upload any image as your profile display-pic or community pic and it will go on orkuts image server of our interest. (Note: Uploading to community is recommended)

Once you find image you are looking for on say orkut community, get its URL. Firefox users can simply right-click on an image and select Copy Image Location option from context menu. [Note: this will not work on profile pictures.]

Now once you have URL where host name is like img4.orkut.com copy entire path from first slash (/) onwards.

Ex.

For URL:

http://img2.orkut.com/images/mittel/1203938171/19587001.jpg

Copy only:

images/mittel/1203938171/19587001.jpg

Now paste copied part between :

<img src=”http://img4.orkut.com/img/smiley/../../   and   ”>

So final code will be:

<img src=”http://img4.orkut.com/img/smiley/../../images/mittel/1203938171/19587001.jpg”>

You can put anything before and after final codes. Those who know HTML can easily recognize this img tag.

Copying profile picture requires opening HTML source code or using Backgroundimage Saver addon (firefox only).

Technical Details…

Some of you have noticed strange /../.. in URL. This is a standard hacking technique known as Directory Traversal attack. The goal of this attack is to order an application to access a computer file that is not intended to be accessible. More details about this technique are here.

Now although directory traversal is not so sever thing, its presence may catch eyes of hacker community. As always in past, this may lead to a new XSS hole on orkut. Strangely in my analysis I have found many HTML tags are allowed in status update filed than desired from security point of view!

Curso Web Designer

|| DREAMWEAVER || FIREWORKS || CSS ||


DOWNLOAD

→ FireWorks - Parte 1
→ Download - http://w17.easy-share.com/1700624635.html

→ FireWorks - Parte 2
→ Download - http://w17.easy-share.com/1700632238.html


→ DreamWeaver - Parte 1
→ Download - http://w17.easy-share.com/1700650612.html

→ DreamWeaver - Parte 2
→ Download - http://w17.easy-share.com/1700662239.html


→ CSS - Parte 1
→ Download - http://w17.easy-share.com/1700561154.html

→ CSS - Parte 2
→ Download - http://w17.easy-share.com/1700636596.html


→ Arquivos Usados
→ Download - http://w17.easy-share.com/1700555787.html

• Se não conseguir assistir as aulas Baixe esse Flash Player
→ Download - http://w15.easy-share.com/1700633017.html

• Descompacte com o Winrar
→ Download - http://w13.easy-share.com/1700632383.html

Fonte : www.mxmasters.com.br

Super Bluetooth Hack 1.08 - Última Versão

O Super Bluetooth Hack serve para você conseguir dados de outros celulares via bluetooth sem que a outra pessoa saiba Uma vez conectado a um outro telefone através de Bluetooth você pode:

- Ler as mensagens
- Ver a lista de contatos
- Mudar o perfil
- Fazer o telefone tocar mesmo estando em modo silencioso
- Fazer downloads dos ringtones (para o seu celular)
- Reiniciar o telefone
- Desligar o telefone
- Restaurar os valores de origem
- Mudança de toque Volume
- E aqui vem a melhor "Fazer Ligações dos outro celular" Entre outros

Estilo: Hacker
Tamanho: 100 Kb
Idioma: Inglês
Formato: Rar

Hacker para CS - Fighter FX Special Edition

Descrição: Esse Xiter Você Vê Através Das Paredes Tem Mira Automatica E Ele Sai Correndo. Isso Tudo E Muito Mais

Tipo: Xiter Games
Fabricante: Fighter FX
Idioma: Inglês

Tamanho: Insignificante

Hackers - Segredos e Confissões

Informações:

Tamanho: 6MB

Capa: Truques, macetes, dicas e todos os segredos dos H4CK3RS
Formato: .pdf

50 Apostilas hacker

Conteudo:

Ataque a provedor via browser
Ataques por monitoraçao
Cavalo de troia
Ciberkit
Como advinhar uma senha
Como conseguir senhas de sites pagos
Como fica anonimo
Como hackear uma home page
Como remover server
Como se torna um hacker
Curso avancado de tecnologia anti cracker
Derrubar alguem na net
Endereços ip
Enganando programas
Engenharia reversa
Engenharia social
Estrategia de segurança
Etica hacker
Hackeando geocities
Hackeando lantastic
Hackeando provedor com login hack
Hackers famosos
Hacking google
Hackeando WindowsNT
Invasao pela porta 666
Invasao por ftp
Invasao por ip
Languard scanner
Nuke
Perfil tipico de um hacker
Entre outras


Tamanho: 437KB
Licença: Gratuito
Idioma: Português