zzzphp CMS 1.6.1 - Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications Exploit Title: Cross-Site Request ForgeryCSRF of zzzphp cms 1.6.1 Google Dork: intext:"2015-2019 zzcms.com" Date: 26/02/2019 Exploit Author: Yang Chenglong Vendor Homepage: http://www.zzzcms.com/index.html Software Link:...

CVE-2018-3810

Authentication Bypass vulnerability in the Oturia Smart Google Code Inserter plugin before 3.5 for WordPress allows unauthenticated attackers to insert arbitrary JavaScript or HTML code via the sgcgoogleanalytic parameter that runs on all pages served by WordPress. The saveGoogleCode function in...

Schneider Electric Pelco VideoXpert Enterprise Elevation of Privilege Vulnerability

Pelco VideoXpert Enterprise is an enterprise video management system. An elevation of privilege vulnerability exists in Schneider Electric Pelco VideoXpert Enterprise, where an attacker can gain system privileges by replacing certain files and inserting code that will execute with the elevated...

CVE-2017-14019

An Unquoted Search Path or Element issue was discovered in Progea Movicon Version 11.5.1181 and prior. An unquoted search path or element vulnerability has been identified, which may allow an authorized local user to insert arbitrary code into the unquoted service path and escalate his or her...

Code Execution Vulnerability in FineCMS v5.0.8 Public Interest Edition Backend

FineCMS v5.0.8 is a cms for small and medium-sized websites developed by SkyRay programming team. FineCMS v5.0.8 public welfare version of the background there is a code execution vulnerability, remote attackers can take advantage of the vulnerability to insert code, and the code can be parsed...

ABB DataManagerPro Credential Management Vulnerability

OVERVIEW NCCIC/ICS-CERT received a report from Trend Micro’s Zero Day Initiative ZDI concerning a credential management vulnerability in ABB’s DataManagerPro application. Security researcher Andrea Micalizzi reported this vulnerability to ZDI. ABB has produced a new version to mitigate this...

Bluethrust Clan Scripts v4 R17 - Multiple Vulnerabilities

Exploit for php platform in category web applications Administrator optionsModify Current Theme" or use site.com/members/console.php?cID=61. You can then insert the PHP code of your choosing into Footer. In order to add or edit code you are required to provide a special Admin Key that was defined...

Analysis WordPress a js Backdoor-vulnerability warning-the black bar safety net

We were recently in a lot of WordPress sites to find a for a collection the administrator login credentials for the backdoor, the injured site is to insert a concealment code, when an administrator logs on, the code is triggered, the Administrator's login credentials are encrypted by the GET...

High risk warning: the Bash environment variables remote code insertion vulnerability-vulnerability warning-the black bar safety net

A few months ago around the high-profile OpenSSL heartbleed information disclosure vulnerability only in the past did not take long, the Internet also broke a than bleeding heart more fierce vulnerability: Bash environment variables remote code insertion vulnerability. The server of the cgi...

Cmseasy建站系统csrf获取管理权限后台getshell

简要描述： Cmseasy建站系统csrf获取管理权限后台getshell 详细说明： 在修改管理密码处存在csrf漏洞 http://localhost/cmseasy/uploads/index.php?case=table&act=edit&table=user&id=1&admindir=admin&site=default post:...

Clansys <= 1.1 (index.php page) PHP Code Insertion Vulnerability

No description provided by source. NukedX Security Advisory Nr 2006-29 ClanSys v1.1 index.php page PHP Code Insertion Vulnerability Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=29...

Discuz! X3. 1 Background to arbitrary code execution can take shell-vulnerability warning-the black bar safety net

See someone ask Discuz! X3. 1 Background how get shell, download it a look, before someone says HTML generation can take the shell, I yesterday the official website to download the version found, the static file extensions, limiting the htm/html. If the server does not exist parsing vulnerability...

espcms后台getshell-3，并可利用csrf交互强制管理员getshell

简要描述： 详细说明： 后台修改模板处未过滤，可在模板中插入php代码（此处方便演示，使用了phpinfo 本来，一个后台getshell的危害应该属于较低的，因为需要管理员权限。但是，espcms后台操作无token，通过csrf的交互，就可以强迫管理员干很多事。修改模板为shell的包如下： 无token，所以可以通过一个自动提交表单给管理员点击，然后就会自动getshell了。（此处主要是后台getshell，csrf就不再说了，详细的POC可以查看我以前提交的一些漏洞） 漏洞证明：...

Mitsubishi.ru Cross Site Scripting / SQL Injection

Exploit Title: Mitsubishi.ru XSS/SQL Injection Vulnerability Date: 23/04/2012 Author: Ryuzaki Lawlet Web/Blog: http://justryuz.blogspot.com Category: webapps Security:RISK: High Vendor or Software Link:- Google dork: - Tested on: Linux Exploit/p0c : http://localhost:80/rac.php?m=xss...

Translate helper method which may allow an attacker to insert arbitrary code into a page

The helper method for i18n translations has a convention whereby translations strings with a name ending in 'html' are considered HTML safe. There is also a mechanism for interpolation. It has been discovered that these 'html' strings allow arbitrary values to be contained in the interpolated...

PHPCMS all versions of a page cross-site scripting vulnerability-vulnerability warning-the black bar safety net

Two versions 1, Official demo page for the url xss. 2, official the Master Station of the error reporting page,$info'errorlink'to go from the referer,change the referer to insert arbitrary code. Little harm, the vulnerability level is low. Test code: POC1:...

SA-2008-039 - Suggested terms - Cross site scripting

This module provides "suggested terms" for free-tagging Taxonomy fields based on terms already submitted. Taxonomy terms as presented in the clickable list are not properly sanitized. Users who are able to create new terms are able to insert arbitrary script code and HTML into certain edit pages...

Debian: Security Advisory (DSA-642-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

HIOX GUEST BOOK (HGB) 4.0 - Remote Code Execution

HIOX GUEST BOOK HGB 4.0 - Remote Code Execution +========================I=R=A=N============================+ HGB Version 4.0 =========================I=R=A=N============================= +========================I=R=A=N============================+ Author : Dj7xpl / Dj7xplatYahoodotcom...

Hidden ASP the back door of the three methods-vulnerability warning-the black bar safety net

1, The establishment of a non-standard directory: mkdir images..\ A copy of the ASP Trojan to the directory: copy c:\inetpub\wwwroot\news.asp c:\inetpub\wwwroot\images..\news.asp Through the web Access ASP Trojan: http://ip/images../news.asp?action=login How to delete a non-standard directory:...