49 matches found
Exploit for OS Command Injection in Systeminformation
CVE-2021-21315-systeminformation This is Proof of Concept for...
ISC BIND Buffer Overflow (CVE-2020-8625)
According to its self-reported version, the ISC Bind present on the remote host is affected by a buffer overflow vulnerability. BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings th...
Command injection
In Gallagher Command Centre versions 8.10 prior to 8.10.1134MR4, 8.00 prior to 8.00.1161MR5, 7.90 prior to 7.90.991MR5, 7.80 prior to 7.80.960MR2, 7.70 and earlier, any operator account has access to all data that would be replicated if the system were to be or is attached to a multi-server...
CVE-2020-16096
In Gallagher Command Centre versions 8.10 prior to 8.10.1134MR4, 8.00 prior to 8.00.1161MR5, 7.90 prior to 7.90.991MR5, 7.80 prior to 7.80.960MR2, 7.70 and earlier, any operator account has access to all data that would be replicated if the system were to be or is attached to a multi-server...
U.S. Dept Of Defense: phpinfo() disclosure info
hi security team i found subdoamins avalibale file phpinfo PoC:- https://█████████/phpinfo.php Impact An attacker can obtain information such as: •Exact PHP version. •Exact OS and its version. •Details of the PHP configuration. •Internal IP addresses. •Server environment variables. •Loaded PHP...
CVE-2018-11338
Intuit Lacerte 2017 for Windows in a client/server environment transfers the entire customer list in cleartext over SMB, which allows attackers to 1 obtain sensitive information by sniffing the network or 2 conduct man-in-the-middle MITM attacks via unspecified vectors. The customer list contains...
PHPinfo Information Disclosure
Many PHP installation tutorials instruct the user to create a PHP file that calls the PHP function 'phpinfo' for debugging purposes, and various PHP applications may also include such a file by default. By accessing it, a remote attacker can discover a large amount of information about the remote...
Security update 2018-06-19
...
Boozt Fashion AB: PHP info page disclosure on http://www.day.dk/
Hi, Boozt team. Description: phpinfo is a debug functionality that prints out detailed information on both the system and the PHP configuration. Step to reproduce: 1. Go to http://www.day.dk/check.php An attacker can obtain information such as: •Exact PHP version. •Exact OS and its version...
How to: Version Control
How to: Version Control In Linux, /etc directory contains important system-related or application-specific configuration files. Especially in a server environment, it is wise to back up various server configurations in /etc directory regularly, to save trouble from any accidental changes in the...
Uzbey: Information Disclosure (phpinfo())
URL :- https://staging.uzbey.com/phpinfo.php Description :- phpinfo is a debug functionality that prints out detailed information on both the system and the PHP configuration. An attacker can obtain information such as: •Exact PHP version. •Exact OS and its version. •Details of the PHP...
逐浪cms两处文件上传漏洞(有服务器环境限制)
简要描述: 也是要结合iis6的解析漏洞,不知道这两处跟之前提交的会不会重复 详细说明: 由于官网不是iis6的环境 我本地进行测试 第一处 http://127.0.0.1/Plugins/ckfinder/ckfinder.html 在左边文件夹Files下新建字幕了1.asp 然后点击1.asp目录然后上传图片木马3.gif 然后右键查看文件 就可以看到文件地址了 文件地址 http://127.0.0.1/UploadFiles/files/1.asp/3.GIF 第二处 http://127.0.0.1/plugins/imageupload.aspx protected vo...
Fedora 19 : perl-CGI-Application-4.50-7.fc19 (2014-2998)
CGI::Application suffers from a flaw where, in certain cases, it would unexpectedly dump a complete set of web query data and server environment information as an error page. This could allow unintended disclosure of sensitive information. This update patches CGI::Application to no longer do so...
[SE-2012-01] Yet another Reflection API flaw affecting Oracle's Java SE
Hello All, Today, a vulnerability report with an accompanying Proof of Concept code was sent to Oracle notifying the company of a new security weakness affecting Java SE 7 software. The new flaw was verified to affect all versions of Java SE 7 including the recently released 1.7.021-b11. It can b...
shopex front Desk ordinary users getshell vulnerabilities-vulnerability warning-the black bar safety net
Use method: First: Think of a way to find the target site's absolute path http://www.test.com/install/svinfo.php?phpinfo=true http://www.test.com/core/api/shopapi.php http://www.test.com/core/api/site/2.0/apib2b20cat.php http://www.test.com/core/api/site/2.0/apib2b20goodstype.php...
Innovation factory security po information disclosure vulnerability A and solution-vulnerability warning-the black bar safety net
Brief description: CDN most afraid of leaking the user's original server address, once leaked, the so-called security services is non-existent. Safe treasure the presence of multiple information disclosure vulnerabilities, the first report of the series! Detailed description: Information disclosu...
codeigniter -- SQL injection vulnerability
The CodeIgniter changelog reports: An improvement was made to the MySQL and MySQLi drivers to prevent exposing a potential vector for SQL injection on sites using multi-byte character sets in the database client connection. An incompatibility in PHP versions 5.0.7 with mysqlsetcharset creates a...
PHPCMS V9 Cross-Station 2 and repair-vulnerability warning-the black bar safety net
Some place it with the filter, the Server environment registerglobals = On time directly toXSS and... Fishing fishing. Nothing. In order to rank before the issue. Well well to. Detail:/install/header. tpl. php? step=b&stepsb=cc/titlescriptalert1 1 1;/scriptyou fuck your own test to go. In order t...
PHPCMS V9 Cross-Station 2 and repair-vulnerability warning-the black bar safety net
Some place it with the filter, the Server environment registerglobals = On time directly toXSS and... Fishing fishing. Nothing. In order to rank before the issue. Well well to. Detail:/install/header. tpl. php? step=b&stepsb=cc/titlescriptalert1 1 1;/script You fuck your own test to go. In order ...
CVE-2011-1724
Unspecified vulnerability in HP Virtual Server Environment before 6.3 allows remote authenticated users to gain privileges via unknown vectors...