Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

CNNVD
CNNVDadded 2023/03/06 12:0 a.m.4 views

ECshop 代码问题漏洞

ShopeX ECShop is an open source mall system of the Chinese business school ShopeX company . Support PC + H5 + APP + small program mall , source code free download experience , suitable for enterprise development and build mall . ECshop 4.1.8 and previous versions of the code problem vulnerability...

8.8CVSS5.8AI score0.00552EPSS
Exploits0References4
seebug.org
seebug.orgadded 2013/10/23 12:0 a.m.11 views

cmseasy官方演示站某漏洞获取webshell

简要描述: csrf+lfi拿下shell 详细说明: 1.这里直接进数据库了,没有判断路径是否跳出了templete目录的问题 2.然后利用这一点,我们可以构造如下页面,诱惑管理员访问: 3.官方演示站,我们可以直接用测试帐号登录,然后点击这个页面 当然也可以手动去后台添加 (官方下载的5.5版本,安装好之后自动带有两个自定义表单,无需管理员手动添加,我就利用了其中一个): 4.其数据包如下: 5.提交后访问如下页面即可获得shell(无需登陆) test1站的shell...

7.1AI score
Exploits0
Rows per page
Query Builder