1300 matches found
phpmywind sql注入二
简要描述: 这套程序一个月前读过,发现了一些问题,厂商来注册了,就一并提交给厂商修复吧!希望厂商不要回复我说某创某宇已经联系过你们报告过该漏洞,我想说的是请尊重作者! 详细说明: 这个漏洞我之前在t00ls发过(请不要怀疑我抄袭),因为当时厂商没来乌云,现在厂商终于来了,就提交一下,希望尽快修补。 之前提交的注射一需要登录,这个地方不需要登录 shoppingcart.php //初始化参数 $a = isset$a ? $a : ''; //添加购物车 if$a == 'addshopingcart' //构成选中属性 ifisset$typeid//同样未做过滤 //获取商品属性...
Han Edition through JCMS content management system SQL injection vulnerability-vulnerability warning-the black bar safety net
Brief description: Han Edition through JCMS content management system somewhere in the parameter without processing the database query resulting in SQL injection vulnerability generated, you can use to login to the backend, etc., the current test the vulnerability exists in the version for JCMS20...
CVE-2013-6417
actionpack/lib/actiondispatch/http/request.rb in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query...
Design/Logic Flaw
actionpack/lib/actiondispatch/http/request.rb in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query...
CVE-2013-6417
actionpack/lib/actiondispatch/http/request.rb in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query...
CVE-2013-6417
actionpack/lib/actiondispatch/http/request.rb in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query...
CVE-2013-6417
actionpack/lib/actiondispatch/http/request.rb in Ruby on Rails before 3.2.16 and 4.x before 4.0.2 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query...
Elite Graphix ElitCMS Cross Site Scripting and SQL Injection Vulnerabilities
Elite Graphix ElitCMS is prone to xss and sql injection vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
XYCMS装修设计公司源码系统1.5多处注入漏洞
简要描述: XYCMS装修设计公司源码系统1.5 多处注入漏洞及反射型xss 详细说明: common.asp,fwxmdetail.asp未进行任何过滤就直接带入数据库查询 没有相关信息!" response.End end if % news.asp也是未进行任何过滤就带入数据库查询 漏洞证明: img src="https://images.seebug.org/upload/201309/250204389...
Network fun online shopping system eshop_v6. 7)SQL injection vulnerability-vulnerability warning-the black bar safety net
Brief description: Parameters without any filtered directly into a database query, a malicious attacker can get the admin login username and password Detailed description: ! the web root directory under the price. asp, anid without any filter, the digital-type injection Address:...
BigTree CMS index.php SQL Injection
The BigTree CMS install hosted on the remote web server fails to sanitize user-supplied input to the application's 'site/index.php' script before using it in a database query. An unauthenticated attacker may be able to exploit this issue to manipulate database queries, leading to disclosure of...
易 想 购物 link.php sql injection vulnerability-vulnerability warning-the black bar safety net
Easy to want to buy the system link. php within the page code if$REQUEST'act'=='go' //link tag go $url = $REQUEST'url'; //directly fetch the url VALUE into the sql query statement. $linkitem = $GLOBALS'db'-getRowCached"select from ". DBPREFIX."link where url = '".$ url."' or url = 'http://".$...
MetInfo(m topology) v5. 1. 3 arbitrary file upload vulnerability analysis attached to the use of the EXP-bug warning-the black bar safety net
The display is not full click the full screen reading MetInfo 2 No. 3 released a new version 5. 1. 5, the prosthesis of this article mentioned the vulnerability, of course, strictly speaking, should be the arbitrary variable overwrite vulnerability.... ps: welcome various forms to reprint 首发...
CVE-2013-0233
Devise gem 2.2.x before 2.2.3, 2.1.x before 2.1.3, 2.0.x before 2.0.5, and 1.5.x before 1.5.4 for Ruby, when using certain databases, does not properly perform type conversion when performing database queries, which might allow remote attackers to cause incorrect results to be returned and bypass...
CVE-2013-0233
Devise gem 2.2.x before 2.2.3, 2.1.x before 2.1.3, 2.0.x before 2.0.5, and 1.5.x before 1.5.4 for Ruby, when using certain databases, does not properly perform type conversion when performing database queries, which might allow remote attackers to cause incorrect results to be returned and bypass...
A lightweight php framework full-Station injection-vulnerability warning-the black bar safety net
http://www.cephp.com/ Baidu search lightweight php framework, the first one is this CEPHP, hand cheap under test actually exists injection, download the source code and actually found the whole Station involved in the database operation of all the presence of injection, the variable is completely...
CVE-2013-0155
Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query restrictions and perform NU...
CVE-2013-0155
Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query restrictions and perform NU...
DEBIAN-CVE-2013-0155
Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query restrictions and perform NU...
Design/Logic Flaw
Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query restrictions and perform NU...