15 matches found
File Inclusion Vulnerability in CmsTop Version v1.0.0.800
CmsTop Popular Edition mainly solves the needs of small and medium-sized local websites, information channels of industrial websites, as well as website publishing and management of online media, institutions, schools and enterprises. CmsTop version 1.0.0.800 has a local file inclusion...
cmstop 远程代码执行漏洞(大众版)
No description provided by source...
CMSTOP媒体云 /gallery/index/list 任意文件上传
No description provided by source...
CMSTOP媒体云&政务版 verfiysite 参数identifier SQL注入漏洞
No description provided by source...
CMSTOP媒体云&政务版一处越权
简要描述: RT 详细说明: 厂商官网:http://.../ CMSTOP产品覆盖面较广 CmsTop 媒体版 面向媒体提供“PC站+手机站+手机端+平板端”多终端一体化新媒体技术解决方案,助力媒体融合转型。 媒体云 CmsTop 媒体云 作为媒体云时代的开创者,思拓合众颠覆了传统的软件采购和项目外包模式,与传媒集团建立战略合作伙伴关系,以互联网思维和云计算技术为基础整合集团、区域和行业内的媒体及政务新媒体资源,共同建设和运营媒体云。 政务版 CmsTop 政务版 面向党政部门提供多终端一体化的网站群私有云技术解决方案,助力党政部门打造“两微一端”政务新媒体。 在线演示站点:...
CmsTop媒体版某模板存在三处SQL盲注漏洞(非全部网站用户)
简要描述: 不是全部网站都安装了这几个模板,这个模板用户量一般 详细说明: 漏洞文件是/apps/rss/controller/fullsite.php中 public function getsectiondata $sectionid = $GET'sectionid'; //多个以','隔开 $outtyle = $GET'outtyle'; //输出类型 $sectionlist = $this-rss-lssection$sectionid; $data = array; foreach$sectionlist as $section if $section'data' &&...
CmsTop Media Edition SQL Injection Vulnerability
CmsTop is a content management system CMS for domestic media websites, mainly serving online media, newspapers, magazines, radio and television, government and large and medium-sized enterprises, etc., and has served more than one hundred well-known media websites. There is a SQL injection...
CmsTop Media Edition somewhere in the sql injection vulnerabilities-vulnerability warning-the black bar safety net
The problem occurs in uc. php interface,not the right to judge the UC interface is turned on,and the key is again the default. Because the code in their own closed the GPC, it will lead to injection. $set= setting'member'; $set'ucdbtablepre' = "'.$ set'ucdbname'.".'.$ set'ucdbtablepre'; $set =...
cmstop媒体云sql注入漏洞(1)-order by 注入技巧
简要描述: 今天无聊就多看了一会儿媒体云的产品,order by 后面的注入技巧 详细说明: 其他说明见: WooYun: cmstop媒体云SQL注入漏洞 同样的cmstop 媒体云的注入 注册账号后,在选择链接分类的时候,会发生如下链接 http://site.cmstop.cn/link/index/list?type=1&offset=0&limit=50&=1440172313381&sort=desc&category=2 但是其中的sort参数过滤不严格,导致了一个order by后面的mysql注入...
CmsTop媒体版中某处sql注入漏洞
简要描述: sql注入漏洞 详细说明: 可以直接修改 管理员密码。 问题出现在 uc.php接口中,没有正确的判断UC接口是否开启,而key又是默认的。 因为代码中自己关闭了GPC,所以会导致注入。 $set= setting'member'; $set'ucdbtablepre' = ''.$set'ucdbname'.'.'.$set'ucdbtablepre'; $set = arraychangekeycase$set, CASEUPPER; foreach$set as $k = $v ifpregmatch'/^UC/',$k define$k,$v;...
cmstop 远程代码执行漏洞(大众版)
简要描述: 详细说明: 具体代码分析 在search\controller\index.php中 search方法如下 public function search sessionstart ; $limit = setting "search", "limit" ; if $limit if $SESSION'lastsearch' && TIME - $SESSION'lastsearch' showmessage "搜索太频繁,请稍候再搜索" ; $SESSION'lastsearch' = TIME; $GLOBALS'GET''wd' = pregreplace "/\s+/"...
CMSTOP vote.php文件SQL注入漏洞
CMSTOP是一款网站内容管理系统。 CMSTOP /apps/vote/controller/vote.php文件存在SQL注入漏洞,攻击者可以利用漏洞活动数据库敏感信息。 0 cmstop 目前厂商暂无提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.cmstop.com/...
cmstop through the kill injection vulnerability-vulnerability warning-the black bar safety net
Play for a few months this vulnerability. See the nine zones there ztz large cattle released out exp. 漏洞 文件 /apps/vote/controller/vote.php app.xxx.com/?app=vote&controller=vote&action=total&contentid=1 To obtain an administrator id ? app=vote&controller=vote&action=total&contentid=1 and 1=2 union...
cmstop /apps/vote/controller/vote.php SQL注入漏洞
No description provided by source...
cmstop 代码执行漏洞
No description provided by source...