Discuz! NT 3.1.0 后台拿webshell

简要描述： 通过后台写入aspx木马，直接拿到webshell，然后获取整个服务器权限。 详细说明： 1、访问http://127.0.0.1/admin/global/globaltemplatesedit.aspx?path=../tools/&filename=rss.aspx&templateid=1&templatename=Default，写入aspx木马。 2、写入aspx木马后，访问http://127.0.0.1/tools/rss.aspx就可以了。 漏洞证明：...

DZ-X1. 5 Forum latest backstage get WebShell-vulnerability warning-the black bar safety net

Discuz! X is Kang Sheng Chong want Comsenz launch of a community-based professional jianzhan platform, Forum, BBS, the personal space of SNS, the portal（Portal）, group Group, application of open platform the Open Platform for full integration in one, help website realize one-stop service. Look...

ShopEx V4. 8(v4. 8 4,v4. 8 5) the background write WebShell-vulnerability warning-the black bar safety net

ShopEx online store system sales platform, is one of the earliest online shop software provider; is currently the shop system continued research and development of the oldest of the company; is currently the shop software domestic the highest market share of the software provider; is currently th...

Every day buy system of 0DAY-vulnerability warning-the black bar safety net

Author:mind =========================================== Also is that sentence to finally be able to get a WEBSHELL are collectively 0DAY o∩∩o ha ha Classic white look at the code The first is the local contains ajax.php requireonce MODPATH.$ this-SetEvent$config'defaultmodule'.'. mod.php'; //look...

Concave Yaya news publishing system ACC version SQL Edition latest through the kill injection 0day-vulnerability warning-the black bar safety net

Use code: javascript:alertdocument. cookie="BigClassName="+escape"%2 5' and 1=2 union select 1,admin,3,password,5,6,7,8,9,1 0,1 1,1 2,1 3 from admin where 1=1 and 'a'='a"; Open thepage, then in the first page of the IE address bar above the use of the code, and then access the? Page refresh time,...

Discuz! 2 0 1 1 All version background get Webshell 0day-vulnerability warning-the black bar safety net

From Discuz! Ancient 6. 0 version, the vulnerabilities are present in the extensions, use differently, the following start. A Discuz! 6.0 and Discuz! 7.0 Since you want the background to take the Shell, the file is written to Must-see. /include/cache.func.php ! To turn on,find the calling functio...

FeiXun enterprise website management system v2011 upload vulnerabilities pass to kill 0day-vulnerability warning-the black bar safety net

Affected version: v2011 Official website: http://www.webhtm.cn PRODUCT DESCRIPTION: Suitable Agent building a Business Site of the enterprise source code, The aspect of the practical! Program description: 1. Features: simplified and Traditional Chinese switch, the product display system, news...

Rain Joe(YuQa)Network Information feedback system YuQaIFS V1. 0 vulnerability 0day and fix-vulnerability warning-the black bar safety net

Publishing author: f4tb0y Affected versions: YuQaIFS V1. 0 Vulnerability type: design flaw Vulnerability Description: a vulnerability in the file is YuQaIFSSave. the asp directly to the submitted data is written to the database, without any filtering. 主页 面 www.xxx.com/xx/index.asp（xx for this...

OemPro 3.6.4 SQL Injection / Shell Upload

Exploit title: Multiple vulnerabilities on OemPro Product: OemPro Version Affected: v3.6.4 and probably prior. Date: 03/02/2011 Author: Ignacio Garrido Vendor: http://octeth.com Tested on: Linux - Windows 2003 Mail: [email protected] Path disclosure: http://localhost/clibounce.php FCKEditor 2.3.2...

OemPro 3.6.4 - Multiple Vulnerabilities

OemPro 3.6.4 - Multiple Vulnerabilities Exploit title: Multiple vulnerabilities on OemPro Product: OemPro Version Affected: v3.6.4 and probably prior. Date: 03/02/2011 Author: Ignacio Garrido Vendor: http://octeth.com Tested on: Linux - Windows 2003 Mail: [email protected] Path disclosure:...

OemPro 3.6.4 - Multiple Vulnerabilities

Exploit title: Multiple vulnerabilities on OemPro Product: OemPro Version Affected: v3.6.4 and probably prior. Date: 03/02/2011 Author: Ignacio Garrido Vendor: http://octeth.com Tested on: Linux - Windows 2003 Mail: [email protected] Path disclosure: http://localhost/clibounce.php FCKEditor 2.3.2...

YuQaIFS V1. 0 vulnerability 0day-vulnerability warning-the black bar safety net

Publishing author: f4tb0y Affected versions: YuQaIFS V1. 0 Vulnerability type: design flaw Vulnerability Description: a vulnerability in the file is YuQaIFSSave. the asp directly to the submitted data is written to the database, without any filtering. Part of the loophole code to Select Case Send...

Lotus CMS Fraise v3.0 LFI - Remote Code Execution Exploit

No description provided by source. !/usr/bin/python Lotus CMS Fraise v3.0 LFI - Remote Code Execution Exploit greetz Tecr0C :0 Vuln: lines 15-23 in core/lib/router.php ---------- sof //Get page request if any $page = $this-getInputString"page", "index"; //Get plugin request if any $plugin =...

PJBlog3 v3. 1. 6. 2 2 7 vulnerabilities and solutions-vulnerability warning-the black bar safety net

| 1. View the default database blogDB/PBLog3. asp whether exist! 2。 The registration ID 3. the To┼pay offs number 畣 whole 爠 Hwan enemy 瑳∨≒┩congregation┼anvil this in the name of the password just under 4。 In to the user management location find your registration of the user in the this...

ExpoCMS background Cookies spoofing vulnerability-vulnerability warning-the black bar safety net

Publishing author: small Clock Affected versions: all Official website: Vulnerability type: design flaw Vulnerability description: program background file just using a simple cookie authentication, causing the Cookies to deceive into the background. Background address: your...

“Happy one hundred phases in the Park”photo album GETSHELL vulnerabilities-vulnerability warning-the black bar safety net

The vulnerability appears in the index.php if$do == 'upload' if$POST'formsub' $file = $FILES'upload'; if!$ file'error' ifstrpos$file'type', 'image' === 0 $hash = $POST'i'.'. jpg'; //if IIS, then here can be self-configured IIS malformed file extension to get a webshell...

phpmotion 0day. IE FCKeditor upload vulnerability-vulnerability warning-the black bar safety net

Since the phpmotion app uses the FCKeditor, and not on the test. html page to be deleted, causing the file upload vulnerability. Exploit : http://www.xxxx.com/phpmotion/fckeditor/editor/filemanager/connectors/test.html Upload webshell; and shell address: http://www.xxxx.com/userfiles/webshell...

Discuz! 7.2 the following versions and various uc products api interface to Get webshell vulnerability-vulnerability warning-the black bar safety net

For dz, we are more concerned about is to get the shell, but the dz stuff want to take the shell too hard too difficult, on an article at the end of the bedding the next, so this article is also not on the horse after cannon....this vulnerability has been in the discuz! x1 version quietly give up...

zen cart 1.38 a multi-exploit-vulnerability warning-the black bar safety net

Vulnerability 1, The form id="frmUpload" enctype="multipart/form-data" action="" method="post" Upload a new file:br input type="file" name="NewFile" size="5 0"br input id="btnUpload" type="submit" value="Upload" /form We test under power. Directly to upload a PHP WEBSHELL to the IMAGES...

Debian 5.0.6 / Ubuntu 10.04 Webshell To Remote Root

Exploit Title: Debian =5.0.6 /Ubuntu =10.04 Webshell-Remote-Root Date: 24-10-2010 Author: jmit Mail: fhausbergeratgmaildotcom Tested on: Debian 5.0.6 CVE: CVE-2010-3856 -------------- | DISCLAIMER | -------------- IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,...