Lucene search
K

719 matches found

myhack58
myhack58
added 2016/04/20 12:0 a.m.34 views

Safety warning: JBoss application platform, the back door leads to about 3 2 0 million Server threats with detection and the use of tools-vulnerability warning-the black bar safety net

The cause of the incident is that the recent ransomware event a large number of diffusion caused by Cisco security researchers noted that, after its security researchers survey analysis found that, among a large number of cases because the attacker uses the JBoss Java application platform...

0.4AI score
Exploits0
seebug.org
seebug.org
added 2016/03/19 12:0 a.m.17 views

ILASIII 数字化图书管理系统 RdrRInforDetail.aspx 参数Name SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/07/26 12:0 a.m.23 views

某图书检索系统Oracle注射漏洞

简要描述: 详细说明: 北京清大新洋科技有限公司是高新技术企业,公司主要从事图书信息行业应用软件、水利信息化软件、政府信息化管理系统、网络系统集成、工程设计咨询软件等专业行业。 清大新洋人坚信:专业化创新是软件公司发展的基础。凭借在图书馆行业十多年的专业经验和强大的技术积累,每年不断推出通用图书馆集成管理系统GLIS的最新产品。针对中小型用户推出的SQL版6.X和7.X系列以通用性、稳定性、标准性、智能化赢得1600多家各类中小型用户的广泛认可,仅北京西城区就有100多家图书馆选用。 官网部分用户列表展示: SQL Injection: /opac/xskp.jsp?kzh=...

7.1AI score
Exploits0
CNVD
CNVD
added 2015/02/26 12:0 a.m.1 views

ILAS II Library Management System SQL Injection Vulnerability

Integrated Library Automation System ILAS is the Ministry of Culture in 1988 as a national key scientific and technological projects issued by the Shenzhen Library to undertake and organize the development of a set of libraries at home and abroad to adapt to different levels, a variety of scales,...

7.7AI score
Exploits0
Packet Storm
Packet Storm
added 2014/12/29 12:0 a.m.46 views

Ex Libris Patron Directory Services 2.1 Cross Site Scripting

CVE-2014-7293 Ex Libris Patron Directory Services PDS XSS Cross-Site Scripting Security Vulnerability Exploit Title: Ex Libris Patron Directory Services PDS Logon Page url Parameter XSS Product: Ex Libris Patron Directory Services PDS Vendor: Ex Libris Vulnerable Versions: 2.1 and probability pri...

4.3CVSS0.00931EPSS
Exploits1
0day.today
0day.today
added 2014/12/26 12:0 a.m.34 views

PMB 4.1.3 Post-Auth SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: PMB = 4.1.3 Post-Auth SQL Injection Vulnerability Google Dork: inurl:opaccss Date: 25-12-2014 Exploit Author: XD4rker Ismail Belkacim Email: xd4rkeratgmail.com Twitter: @xd4rker Vendor Homepage: http://www.sigb.net Software Link...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2014/12/26 12:0 a.m.35 views

PMB 4.1.3 SQL Injection

Exploit Title: PMB = 4.1.3 Post-Auth SQL Injection Vulnerability Google Dork: inurl:opaccss Date: 25-12-2014 Exploit Author: XD4rker Ismail Belkacim Email: xd4rkeratgmail.com Twitter: @xd4rker Vendor Homepage: http://www.sigb.net Software Link: http://forge.sigb.net/redmine/projects/pmb/files...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2014/09/04 12:0 a.m.39 views

VTLS Virtua InfoStation.cgi - SQL Injection

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register class TestPOCPOCBase: vulID = '87206' ssvid version = '1.0' author = 'feng' vulDate = '2014-10-20' createDate =...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

Amlibweb NetOpacs webquery.dll Stack Buffer Overflow

No description provided by source. $Id: amlibwebwebquerydllapp.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2014/05/15 12:0 a.m.66 views

Aleph 500 Cross Site Scripting

Greetings: a ALEPH500 Integrated library management system Cross Site Scripting£»CVE-ID is CVE-2014-3718. Aleph 500, fully meet the industry standard, is an art class perfect librarysolution, the Ex Libris to pursue the essence of philosophy is flexible and easy to use. Ex Libris is the world...

6.4AI score0.00968EPSS
Exploits2
Exploit DB
Exploit DB
added 2011/02/01 12:0 a.m.28 views

PMB Services 3.4.3 - SQL Injection

888 888 888 888 888 888 888 888 888 888 888 888 .d8888b 88888b. 8888b. .d88888 .d88b. 888d888 888 888 888 d88P" 888 "88b "88b d88" 888 d88""88b 888P" 888 888 888 888 888 888 .d888888 888 888 888 888 888 888 Y88b 888 Y88b. 888 888 888 888 Y88b 888 Y88..88P 888 88888888 "Y88888 "Y8888P 888 888...

7.4AI score
Exploits0
myhack58
myhack58
added 2010/12/07 12:0 a.m.20 views

Milion star library management system to upload 0DAY-vulnerability warning-the black bar safety net

Yesterday help a friend test the system of the time to find out! Use of this system it seems like not a lot! Website after /emlib4/system/sevice/upload/Photo. aspx? type=&uppath=&attruid=&newid=&dirname=1 2 3 Will In website/emlib4/portal/directory under the build 1 2 3 in the folder, you upload...

0.6AI score
Exploits0
Packet Storm
Packet Storm
added 2010/08/05 12:0 a.m.36 views

Amlibweb NetOpacs webquery.dll Stack Overflow

$Id: amlibwebwebquerydllapp.rb 9953 2010-08-03 16:17:43Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

1.1AI score
Exploits0
Metasploit
Metasploit
added 2010/08/03 9:7 a.m.12 views

Amlibweb NetOpacs webquery.dll Stack Buffer Overflow

This module exploits a stack buffer overflow in Amlib's Amlibweb Library Management System NetOpacs. The webquery.dll API is available through IIS requests. By specifying an overly long string to the 'app' parameter, SeH can be reliably overwritten allowing for arbitrary remote code execution. In...

10AI score
Exploits0
Packet Storm
Packet Storm
added 2007/07/07 12:0 a.m.38 views

olms-xss.txt

BACKGROUND ========== "Oliver is the web-based Library Management System for Schools. Softlink has built on the understanding of thousands of school clients, over many years, and has designed a new system for school libraries and learning resource centres in the 21st century" -- from...

7.4AI score
Exploits0
NVD
NVD
added 2007/07/05 7:30 p.m.17 views

CVE-2007-3569

Multiple cross-site scripting XSS vulnerabilities in Oliver Library Management System allow remote attackers to inject arbitrary web script or HTML via the 1 updateform and 2 displayform parameter to a gateway/gateway.exe; the 3 TERMS, 4 database, 5 srchad, 6 SuggestedSearch, and 7 searchform...

4.3CVSS5.8AI score0.04392EPSS
Exploits1References10
CVE
CVE
added 2007/07/05 7:0 p.m.39 views

CVE-2007-3569

Affected product : Oliver Library Management System. Vulnerable vectors : XSS via the parameters (updateform, displayform) to gateway/gateway.exe and via (TERMS, database, srchad, SuggestedSearch, searchform) on the Basic Search page; and (8) username during login. Root cause : likely improper in...

4.3CVSS5.8AI score0.04392EPSS
Exploits1References10Affected Software1
securityvulns
securityvulns
added 2007/07/04 12:0 a.m.88 views

Cross Site Scripting in Oliver Library Management System

BACKGROUND ========== "Oliver is the web-based Library Management System for Schools. Softlink has built on the understanding of thousands of school clients, over many years, and has designed a new system for school libraries and learning resource centres in the 21st century" -- from...

7.2AI score
Exploits0
exploitpack
exploitpack
added 2007/03/09 12:0 a.m.20 views

PMB Services 3.0.13 - Multiple Remote File Inclusions

PMB Services 3.0.13 - Multiple Remote File Inclusions \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV68$2007 ----------------------------------------------------------------------------------------- ECHOADV68$2007 PMB Services = 3.0.13 Multiple Remote File...

7.5AI score
Exploits0
Rows per page
Query Builder