SQL injection vulnerability in OURPHP backend ourphp_callback.php page

OurPHP 傲派建站系统 is a website content management system developed using PHP language, the developer is Harbin Weicheng Technology Co. A SQL injection vulnerability exists in the background ourphpcallback.php page of OURPHP. Attackers can use this vulnerability to obtain sensitive database informatio...

SQLite 'dump_callback' function denial of service vulnerability

SQLite is an open source C-based embedded relational database management system developed by American software developer D. Richard Hipp. The system is characterized by independence, isolation, cross-platform and so on. A security vulnerability exists in the 'dumpcallback' function in SQLite...

AZL-44160 CVE-2017-13685 affecting package libchewing 0.5.1-18

The dumpcallback function in SQLite 3.20.0 allows remote attackers to cause a denial of service EXCBADACCESS and application crash via a crafted file...

DEBIAN-CVE-2017-13685

The dumpcallback function in SQLite 3.20.0 allows remote attackers to cause a denial of service EXCBADACCESS and application crash via a crafted file...

AZL-44418 CVE-2017-13685 affecting package jimtcl 0.83-3

The dumpcallback function in SQLite 3.20.0 allows remote attackers to cause a denial of service EXCBADACCESS and application crash via a crafted file...

UBUNTU-CVE-2017-13685

The dumpcallback function in SQLite 3.20.0 allows remote attackers to cause a denial of service EXCBADACCESS and application crash via a crafted file...

DEBIAN-CVE-2017-12935

The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c...

openSUSE Security Update : libzypp / zypper (openSUSE-2017-893)

The Software Update Stack was updated to receive fixes and enhancements. libzypp : Security issues fixed : - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned repositories and packages. bsc1045735, bsc1038984 Bug fixes : - Re-probe on refresh if the...

Security update for libzypp, zypper (important)

The Software Update Stack was updated to receive fixes and enhancements. libzypp: Security issues fixed: - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned repositories and packages. bsc1045735, bsc1038984 Bug fixes: - Re-probe on refresh if the repository...

http-jsonp-detection NSE Script

Attempts to discover JSONP endpoints in web servers. JSONP endpoints can be used to bypass Same-origin Policy restrictions in web browsers. The script searches for callback functions in the response to detect JSONP endpoints. It also tries to determine callback function through URLcallback functi...

See how I integrated the use of 4 vulnerability GitHub Enterprise remote code execution-vulnerability warning-the black bar safety net

! Hello everyone, since the last vulnerability disclosure has been there for six months, in this article, I will show you how to through 4 vulnerability is the perfect realization of GitHub Enterprise RCE, the RCE to achieve a method and a server-side request forgery technology（SSRF）related,...

DEBIAN-CVE-2017-9619

The xpstruecallbackglyphname function in xps/xpsttf.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service Segmentation Violation and application crash via a crafted file...

Fedora 26 : php-pear-CAS (2017-2f3096ba16)

Changes in version 1.3.5 - Security Fixes : - Fix possible authentication bypass in validateCAS20 228 Gregory Boddin - Bug Fixes : - Fix file permissions non-executable 177 Remi Collet - Fixed translations Greek and Japanese 192 ikari7789 - Fix errors under phpdbg 204 MasonM - Fix logout...

WMI Event Subscription Persistence Exploit

This Metasploit module will create a permanent WMI event subscription to achieve file-less persistence using one of five methods. This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/exploit/powershell'...

Foscam IP Video Camera Command Injection Vulnerability(CVE-2017-2847)

Summary An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can allow for a user to inject arbitrary shell characters during manual network configurati...

The vulnerability of the crypto/ahash.c component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the crypto/ahash.c component in the Linux operating system is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability allows a remote attacker to cause a service failure the API interface calls its own callback and triggers infinit...

Windows Kernel stack memory disclosure in win32k!ClientPrinterThunk(CVE-2017-8475)

We have discovered that it is possible to disclose portions of uninitialized kernel stack memory to user-mode applications in Windows 7 other platforms untested indirectly through the win32k!NtGdiOpenDCW system call. The analysis shown below was performed on Windows 7 32-bit. The full stack trace...

Microsoft Windows - 'win32k!ClientPrinterThunk' Kernel Stack Memory Disclosure

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1186 We have discovered that it is possible to disclose portions of uninitialized kernel stack memory to user-mode applications in Windows 7 other platforms untested indirectly through the win32k!NtGdiOpenDCW system call. The...

Open Redirects

github.com/concourse/atc is vulnerable to open redirect attacks. These attacks are possible because the oauthcallbackhandler doesn't validate that the redirect URL is one within the website...

Foscam IP Video Camera CGIProxy.fcgi SMTP Test Host Parameter Configuration Command Injection Vulnerability

Summary An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can allow for a user to inject arbitrary data in the “msmtprc” configuration file resulting...