Lucene search
K

113 matches found

seebug.org
seebug.org
added 2014/03/13 12:0 a.m.23 views

EspCMS最新版可伪造任意帐户登陆(简单利用代码)

简要描述: EspCMS最新版可伪造任意帐户登陆(源码分析) 测试版本espcmsutf85.8.14.03.03b 详细说明: EspCMS中用户cookie生成算法中重要的就是dbpscode 貌似前面有大牛提交过多次,厂商都只是略作修改,并没有最终搞定问题 这里来说一下,可以通过注册普通帐号,通过帐号+cookie破解得到dbpscode 首先是cookie加密算法,/public/classfunction.php,144-170行 function eccode$string, $operation = 'DECODE', $key =...

7AI score
Exploits0
myhack58
myhack58
added 2013/02/13 12:0 a.m.15 views

Woven dream CMS vulnerability dedecms vulnerability 2013-02-10 SQL injection vulnerability-vulnerability warning-the black bar safety net

www.xxx.com/plus/search.php?keyword= In include/shopcar. class. php First take a look at this shopcar class is how to generate the cookie 2 3 9 function saveCookie$key,$value 2 4 0 2 4 1 ifisarray$value 2 4 2 2 4 3 $value = $this-enCrypt$this-enCode$value; 2 4 4 2 4 5 else 2 4 6 2 4 7 $value =...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2012/03/19 12:0 a.m.122 views

[SECURITY] [DSA 2421-1] moodle security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2421-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 29, 2012 http://www.debian.org/security/faq -...

6.8CVSS0.9AI score0.02149EPSS
Exploits0
OpenVAS
OpenVAS
added 2012/03/12 12:0 a.m.27 views

Debian: Security Advisory (DSA-2421-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.4AI score0.02149EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/03/01 12:0 a.m.36 views

Debian DSA-2421-1 : moodle - several vulnerabilities

Several security issues have been fixed in Moodle, a course management system for online learning : - CVE-2011-4308 / CVE-2012-0792 Rossiani Wijaya discovered an information leak in mod/forum/user.php. - CVE-2011-4584 MNet authentication didn't prevent a user using 'Login as' from jumping to a...

6.8CVSS5.4AI score0.02149EPSS
Exploits0References24
Debian
Debian
added 2012/02/29 8:22 p.m.30 views

[SECURITY] [DSA 2421-1] moodle security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2421-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 29, 2012 http://www.debian.org/security/faq -...

6.8CVSS6.6AI score0.02149EPSS
Exploits0
Prion
Prion
added 2012/01/27 12:55 a.m.24 views

Stack overflow

Stack-based buffer overflow in the suhosinencryptsinglecookie function in the transparent cookie-encryption feature in the Suhosin extension before 0.9.33 for PHP, when suhosin.cookie.encrypt and suhosin.multiheader are enabled, might allow remote attackers to execute arbitrary code via a long...

5.1CVSS8.5AI score0.03511EPSS
Exploits1References9Affected Software1
UbuntuCve
UbuntuCve
added 2012/01/27 12:55 a.m.24 views

CVE-2012-0807

Stack-based buffer overflow in the suhosinencryptsinglecookie function in the transparent cookie-encryption feature in the Suhosin extension before 0.9.33 for PHP, when suhosin.cookie.encrypt and suhosin.multiheader are enabled, might allow remote attackers to execute arbitrary code via a long...

5.1CVSS6.5AI score0.03511EPSS
Exploits1References1
exploitpack
exploitpack
added 2011/04/24 12:0 a.m.22 views

SoftMP3 - SQL Injection

SoftMP3 - SQL Injection Exploit Title: SOFTMP3 source code SQL injection Date: 23/04/2011 Author: mArTi Software Link: http://softmp3.org/ Version: No others versions available... Tested on: Windows / Unix /.................................../ Introduction /.................................../...

0.2AI score
Exploits0
myhack58
myhack58
added 2010/10/25 12:0 a.m.15 views

Most soil buy the system blind and cookie spoofing vulnerability-vulnerability warning-the black bar safety net

Most soil group purchase system is a domestic famous group purchase program in the domestic group purchase system of share in the proportion is very large. But because some version of some where filtering does not completely lead to injection vulnerabilitiesnon-killed. Find a way powered by zuitu...

8AI score
Exploits0
Prion
Prion
added 2007/11/30 1:46 a.m.24 views

Design/Logic Flaw

The web management interface in Citrix NetScaler 8.0 build 47.8 uses weak encryption XOR of unpadded data to store credentials within a cookie, which makes it easier for remote attackers to obtain cleartext credentials when a cookie is captured via a known-plaintext attack...

4.3CVSS7AI score0.00699EPSS
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2007/11/26 12:0 a.m.33 views

Citrix NetScaler weak cryptography

Username/password are stored as a part of cookie with encryption XORing with reused key, making it's possible to discover parts of the password...

4.3CVSS2.1AI score0.03579EPSS
Exploits0References1Affected Software1
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.19 views

Timing attack vector for remember me token

The current rememberme token verification process leaves the application open to a timing attack. Since the default is for the token to be stored as a cookie and for cookies to be encrypted, an attacker would have to know the application secret to exploit this. However, should a custom guard be...

5.9CVSS5.4AI score0.01193EPSS
Exploits0Affected Software1
Rows per page
Query Builder