Siemens LOGO! 8 BM Use of a Broken or Risky Cryptographic Algorithm (CVE-2020-25232)

A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3. Due to the usage of an insecure random number generation function and a deprecated cryptographic function, an attacker could extract the key that is used when communicating with an affected device on port...

Communication Key Leakage Vulnerability in Jingdong Xiaojingyu Intelligent Platform

The Little Jingyu Intelligent Platform integrates the original Jingdong Alpha Platform and introduces Jingdong's artificial intelligence and big data capabilities, which not only focuses on the original smart hardware, smart home, and smart travel solutions, but also expands its IoT capabilities ...

SAP Redwood BPA Message Service crypto secret information disclosure

Application: SAP Redwood BPA Vendor URL: SAP Bugs: Information Disclosure Reported: 09.11.2017 Vendor response: 10.11.2017 Date of Public Advisory: 13.03.2018 Reference: SAP Security Note 2596535 Author: Mathieu Geli ERPScan DESCRIPTION An anonymous network attacker can forge valid packets that a...

phpwind9.x 通讯秘钥安全漏洞

来源链接：phpwind 利用哈希长度扩展攻击进行getshell 一哥新发的漏洞，还是蛮屌的： http://www.wooyun.org/bugs/wooyun-2016-0210850。分析补丁（ http://www.phpwind.net/read/3709549 ）加上一些风闻，我得知利用的是哈希长度扩展攻击。之前CTF中经常出境的MD5 Length Extension Attack，终于在实战中露了一次面。 0x01 漏洞点分析 phpwind逻辑太冗杂了，一看就是java程序员开发的。...

Discuz! X-Series remote code execution vulnerability analysis-vulnerability warning-the black bar safety net

0x01 vulnerability root causes The root of the problem is that the api/uc. php file in the updatebadwords method, the code is as follows: function updatebadwords$get, $post global $G; if! APIUPDATEBADWORDS return APIRETURNFORBIDDEN; $data = array; ifisarray$post foreach$post as $k = $v...