719 matches found
Safety warning: JBoss application platform, the back door leads to about 3 2 0 million Server threats with detection and the use of tools-vulnerability warning-the black bar safety net
The cause of the incident is that the recent ransomware event a large number of diffusion caused by Cisco security researchers noted that, after its security researchers survey analysis found that, among a large number of cases because the attacker uses the JBoss Java application platform...
ILASIII 数字化图书管理系统 RdrRInforDetail.aspx 参数Name SQL注入漏洞
No description provided by source...
某图书检索系统Oracle注射漏洞
简要描述: 详细说明: 北京清大新洋科技有限公司是高新技术企业,公司主要从事图书信息行业应用软件、水利信息化软件、政府信息化管理系统、网络系统集成、工程设计咨询软件等专业行业。 清大新洋人坚信:专业化创新是软件公司发展的基础。凭借在图书馆行业十多年的专业经验和强大的技术积累,每年不断推出通用图书馆集成管理系统GLIS的最新产品。针对中小型用户推出的SQL版6.X和7.X系列以通用性、稳定性、标准性、智能化赢得1600多家各类中小型用户的广泛认可,仅北京西城区就有100多家图书馆选用。 官网部分用户列表展示: SQL Injection: /opac/xskp.jsp?kzh=...
ILAS II Library Management System SQL Injection Vulnerability
Integrated Library Automation System ILAS is the Ministry of Culture in 1988 as a national key scientific and technological projects issued by the Shenzhen Library to undertake and organize the development of a set of libraries at home and abroad to adapt to different levels, a variety of scales,...
Ex Libris Patron Directory Services 2.1 Cross Site Scripting
CVE-2014-7293 Ex Libris Patron Directory Services PDS XSS Cross-Site Scripting Security Vulnerability Exploit Title: Ex Libris Patron Directory Services PDS Logon Page url Parameter XSS Product: Ex Libris Patron Directory Services PDS Vendor: Ex Libris Vulnerable Versions: 2.1 and probability pri...
PMB 4.1.3 Post-Auth SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: PMB = 4.1.3 Post-Auth SQL Injection Vulnerability Google Dork: inurl:opaccss Date: 25-12-2014 Exploit Author: XD4rker Ismail Belkacim Email: xd4rkeratgmail.com Twitter: @xd4rker Vendor Homepage: http://www.sigb.net Software Link...
PMB 4.1.3 SQL Injection
Exploit Title: PMB = 4.1.3 Post-Auth SQL Injection Vulnerability Google Dork: inurl:opaccss Date: 25-12-2014 Exploit Author: XD4rker Ismail Belkacim Email: xd4rkeratgmail.com Twitter: @xd4rker Vendor Homepage: http://www.sigb.net Software Link: http://forge.sigb.net/redmine/projects/pmb/files...
VTLS Virtua InfoStation.cgi - SQL Injection
No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register class TestPOCPOCBase: vulID = '87206' ssvid version = '1.0' author = 'feng' vulDate = '2014-10-20' createDate =...
Amlibweb NetOpacs webquery.dll Stack Buffer Overflow
No description provided by source. $Id: amlibwebwebquerydllapp.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
Aleph 500 Cross Site Scripting
Greetings: a ALEPH500 Integrated library management system Cross Site Scripting£»CVE-ID is CVE-2014-3718. Aleph 500, fully meet the industry standard, is an art class perfect librarysolution, the Ex Libris to pursue the essence of philosophy is flexible and easy to use. Ex Libris is the world...
PMB Services 3.4.3 - SQL Injection
888 888 888 888 888 888 888 888 888 888 888 888 .d8888b 88888b. 8888b. .d88888 .d88b. 888d888 888 888 888 d88P" 888 "88b "88b d88" 888 d88""88b 888P" 888 888 888 888 888 888 .d888888 888 888 888 888 888 888 Y88b 888 Y88b. 888 888 888 888 Y88b 888 Y88..88P 888 88888888 "Y88888 "Y8888P 888 888...
Milion star library management system to upload 0DAY-vulnerability warning-the black bar safety net
Yesterday help a friend test the system of the time to find out! Use of this system it seems like not a lot! Website after /emlib4/system/sevice/upload/Photo. aspx? type=&uppath=&attruid=&newid=&dirname=1 2 3 Will In website/emlib4/portal/directory under the build 1 2 3 in the folder, you upload...
Amlibweb NetOpacs webquery.dll Stack Overflow
$Id: amlibwebwebquerydllapp.rb 9953 2010-08-03 16:17:43Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Amlibweb NetOpacs webquery.dll Stack Buffer Overflow
This module exploits a stack buffer overflow in Amlib's Amlibweb Library Management System NetOpacs. The webquery.dll API is available through IIS requests. By specifying an overly long string to the 'app' parameter, SeH can be reliably overwritten allowing for arbitrary remote code execution. In...
olms-xss.txt
BACKGROUND ========== "Oliver is the web-based Library Management System for Schools. Softlink has built on the understanding of thousands of school clients, over many years, and has designed a new system for school libraries and learning resource centres in the 21st century" -- from...
CVE-2007-3569
Multiple cross-site scripting XSS vulnerabilities in Oliver Library Management System allow remote attackers to inject arbitrary web script or HTML via the 1 updateform and 2 displayform parameter to a gateway/gateway.exe; the 3 TERMS, 4 database, 5 srchad, 6 SuggestedSearch, and 7 searchform...
CVE-2007-3569
Affected product : Oliver Library Management System. Vulnerable vectors : XSS via the parameters (updateform, displayform) to gateway/gateway.exe and via (TERMS, database, srchad, SuggestedSearch, searchform) on the Basic Search page; and (8) username during login. Root cause : likely improper in...
Cross Site Scripting in Oliver Library Management System
BACKGROUND ========== "Oliver is the web-based Library Management System for Schools. Softlink has built on the understanding of thousands of school clients, over many years, and has designed a new system for school libraries and learning resource centres in the 21st century" -- from...
PMB Services 3.0.13 - Multiple Remote File Inclusions
PMB Services 3.0.13 - Multiple Remote File Inclusions \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV68$2007 ----------------------------------------------------------------------------------------- ECHOADV68$2007 PMB Services = 3.0.13 Multiple Remote File...