ezEIP 跨站脚本漏洞

WanHu ezEIP is a website backend management system from China WanHu Network WanHu Company. A security vulnerability exists in ezEIP version v5.3.00649, which is caused by a cross-site scripting XSS vulnerability...

MAL-2022-5512 Malicious code in ptokens-website-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4f2eb8741be933f0b1b3bb5b71c91a9dc94860b2e2dd4706e8a781580f66f26c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in ptokens-website-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4f2eb8741be933f0b1b3bb5b71c91a9dc94860b2e2dd4706e8a781580f66f26c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview ptokens-website-backend is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

File Containment Vulnerability in DM Website System Backend

DM building system is developed by php + mysql a set of specialized for small and medium-sized enterprise website construction of open source cms. DM website builder system has a file inclusion vulnerability , attackers can use the vulnerability to obtain sensitive information...

DianYiPS V3.0建站系统后台sql注入漏洞

南宁典意数码科技有限公司，简称典意设计（http://www.dianyisheji.com/），注入点位于网站后台登陆用户名处，案例具体寻找办法可以通过谷歌搜索：powered by DianYiPS，找到案例后在域名后面加/dianyi/即是管理后台，可以用万能密码admin' or '1'='1登陆。...