qEngine CMS 6.0.0 - Multiple Vulnerabilities

$total return; ifempty$starttime $starttime=time; $now = time; $perc=double$done...

Kemana Directory 1.5.6 - Database Backup Disclosure

$total return; ifempty$starttime $starttime=time; $now...

ThinkSAAS逻辑漏洞可致拖库

简要描述： ThinkSAAS的一个逻辑漏洞导致可以实时备份网站数据库，同时可以获取备份数据库文件名。 下载实时备份的数据库实现脱裤。漏洞影响所有版本。 详细说明： thinksaas系统使用常量INTS来控制页面的访问，然后在每个功能模块用一句代码： defined'INTS' or die'Access Denied.'; 来限制访问，这样设计带来的问题是，一个文件包含可以通杀，越权访问执行任意功能模块。 看到/app/user/action/plugin.php代码： fetchallassoc"SHOW TABLES"; foreach$arrTables as $key=$it...

WordPress Better WP Security 3.6.3 XSS / Disclosure

Exploit Title: Wordpress Plugin - Better WP Security multiple vulnerability Date: 2014 11 Fabruary Exploit Author: Yashar shahinzadeh Special thanks to Mormoroth Credit goes for: http://y-shahinzadeh.ir & ha.cker.ir Vendor Homepage: https://wordpress.org/plugins/better-wp-security/ Tested on: Lin...

CVE-2014-1637

Command School Student Management System 1.06.01 does not properly restrict access to sw/backup/backupray2.php, which allows remote attackers to download a database backup via a direct request...

CVE-2014-1637

Command School Student Management System 1.06.01 does not properly restrict access to sw/backup/backupray2.php, which allows remote attackers to download a database backup via a direct request...

CVE-2014-1637

CVE-2014-1637 affects Command School Student Management System 1.06.01. The issue is an improper access restriction on sw/backup/backup_ray2.php, allowing remote attackers to download a database backup via a direct request. Public exposure is indicated by referenced exploit information (Exploit-D...

Dredge School Administration System - DSMBackupprocessbackup.php Database Backup Information Disclosure

Dredge School Administration System - DSMBackupprocessbackup.php Database Backup Information Disclosure source: https://www.securityfocus.com/bid/64720/info Dredge School Administration System is prone to the following security vulnerabilities: 1. An SQL-injection vulnerability 2. A cross-site...

Dredge School Administration System - '/DSM/Backup/processbackup.php' Database Backup Information Disclosure

source: https://www.securityfocus.com/bid/64720/info Dredge School Administration System is prone to the following security vulnerabilities: 1. An SQL-injection vulnerability 2. A cross-site request forgery vulnerability 3. A cross-site scripting vulnerability 4. An information-disclosure...

Zen Cart <= 1.5.1 Information Disclosure Vulnerability

Zen Cart is prone to an information disclosure vulnerability. Copyright C 2013 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

Zen-Cart Database Backup Disclosure

Zen-cart Database Backup Disclosure Vulnerability /+/ Exploit title : Zen-cart Database Backup Disclosure Vulnerability /+/ Script : Zen-cart /+/ Version : 1.5.1 /+/ Author : JoKeRStEx /+/ Date : 22/07/2013 /+/ Category : Webapps /+/ Google Dork : inurl:"/zcinstall/sql/" First You can Donwload...

Ecshop后台getshell-2

简要描述： Ecshop后台getshell-2 详细说明： admin/database.php if $REQUEST'act' == 'dumpsql' 省略若干 if empty$REQUEST'sqlfilename' $sqlfilename = $dump-getrandomname; else 省略若干 $sqlfilename = strreplace"0xa", '', trim$REQUEST'sqlfilename'; // 过滤 0xa 非法字符 $pos = strpos$sqlfilename, '.sql'; if $pos !== false...

How to Migrate Veeam ONE Deployment

Purpose This article documents the procedure for migrating Veeam ONE to a different machine. This can be useful if: The machine where Veeam ONE is currently installed runs an OS that is no longer supported by the version of Veeam ONE you plan to upgrade to. Your existing Veeam ONE deployment shar...

Hoteldruid 1.3.2 LFI/SQLi/Add and Remove Users/Backup Download

Hoteldruid suffers from a number of vulnerabilities including, LFI/SQLi/Add and Remove Users/Backup Download +-- LFI --+ Vuln Links: ------------ http://localhost/hotel/mostrasorgente.php?filesorgente=/ +-- SQli --+ Vuln Links: ----------- http://localhost/hoteldruid/creaprezzi.php?anno=2012'...

亿中邮（亿邮）信息技术官方网站沦陷,已成功进入后台

简要描述： 今天本身没事。为了不让他买叫我盲打王。 所以就打算随便找一个厂商 进行一次 脚本入侵。然后就找到了“亿中邮信息技术” 我大概说一下。没拿下webshell 后台设置了禁止写入。包括数据库备份 根本不可能。另外上传页面直接删除掉了。 但是你们网站的问题很大。 整个入侵过程一共是 20分钟。你们后台就沦陷了！·下面我大概讲一下入侵的整个思路 详细说明： 首先是网站主站有个意见反馈。然后我就很随意的 插入代码了。但是。返回的提交成功 一看就知道 dedecms页面。 然后我就知道。肯定是 失败的。 然后打开data/admin/ver.txt 发现版本很老啊。...

Glossword 1.8.12 XSS / CSRF / Shell Upload / Database Disclosure

Glossword version 1.8.12 suffers from database backup disclosure, cross site request forgery, cross site scripting, and remote shell upload vulnerabilities. =================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download:...

glossword 1.8.12 - Multiple Vulnerabilities

glossword 1.8.12 - Multiple Vulnerabilities =================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.12/ Vulns: XSS && Database Backup Disclosure && CSRF &&...

glossword 1.8.12 - Multiple Vulnerabilities

=================================================== Vulnerable Software: Glossword 1.8.12 Tested version: Glossword 1.8.12 Download: http://sourceforge.net/projects/glossword/files/glossword/1.8.12/ Vulns: XSS && Database Backup Disclosure && CSRF && Shell upload. Dork: Powered by Glossword 1.8.1...

tipask the background to get shell-vulnerability warning-the black bar safety net

Recently seen is tipask system shows a vulnerability, it is said that only the root to get a shell, but looking at the background function is so rich, side dish, or try in addition to take the shell method, saying that although not pass to kill, but also can barely use with tipask background not...

Open Upload <== Full DataBase Buckup Vulnerability

Exploit for php platform in category web applications Exploit Title: Open Upload == Full Multiple Vulnerabilites Author: email protected Vendor or Software Link: http://openupload.sourceforge.net/ Google dork: "Open Upload - Created by Alessandro Briosi 2009" Tested on: Xp SP 2 Poc : 1 -...