迪普UMC统一管理系统SQL注入

DPtech UMC统一管理中心案例：http://222.171.148.161/UMC/Login.action http://222.75.152.197:8080/UMC/Login.action http://222.47.70.3:8080/UMC/Login.action http://218.28.177.149/UMC/Login.action http://211.138.102.195:8080/UMC/Login.action针对部分型号，并不通杀。POST /UMC/Login.action HTTP/1.1 Host: 222.171.148.161...

WordPress Buddypress 1.9.1 Privilege Escalation Vulnerability

WordPress Buddypress plugin versions 1.9.1 and below suffer from a privilege escalation vulnerability. Vulnerability: Wordpress plugin Buddypress 2 Visit the url http://example.com/groups/create/step/group-details/ 3 Enjoy the power 0day.today 2018-04-01...

GetSimple 3.1.2 Code Execution

'; echo 'and login without password, right? Generated cookie: '; echo $cookiename . ''; echo 'Anyway: this simple code exploits vulnerability in :'; echo 'admin/settings.php:'; if $authenticated YES - set the login cookie, then redirect user to secure panel // createco...

CVE-2011-0698

CVE-2011-0698 affects Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 on Windows, where a session cookie key containing a slash could allow directory traversal to read/execute files via session replays. The issue is triggered by a specific character in a session cookie and is documented across m...

Chipmunk NewsLetter - Persistent Cross-Site Scripting

Tested On: Windows Vista Note: For educational purposes only There’s probably a lot more vulnerabilities in their web apps, but I could not even get them to work out of the box.. http://server/newsletter/admin/addlist.php Look no sanitization: 8alert'i could get your cookie'&submit=submit...

Geeklog 1.6.0sr2 - Arbitrary File Upload

============================================================================== Geeklog = v1.6.0sr2 - Remote File Upload Discovered: JaL0h Software Site: http://www.geeklog.net Dork: "By Geeklog" "Created this page in" +seconds +powered...

Silentum LoginSys 1.0.0 - Insecure Cookie Handling

START 0x01 Informations: Script : Silentum LoginSys 1.0.0 Download : http://www.hotscripts.com/jump.php?listingid=69667&jumptype=1 Vulnerability : Insecure Cookie Handling Author : Osirys Contact : osirysatlivedotit Website : http://osirys.org Notes : Proud to be Italian Greets: : x0r, emgent, Ja...

Calendar Script 1.1 - Insecure Cookie Handling

Calendar Script 1.1 - Insecure Cookie Handling START 0x01 Informations: Script : Calendar Script v1.1 Download : http://www.hotscripts.com/jump.php?listingid=71365&jumptype=1 Vulnerability : Insecure Cookie Handling Author : Osirys Contact : osirysatlivedotit Website : http://osirys.org Notes :...

PhpAddEdit 1.3 - 'cookie' Authentication Bypass

------------------------------------- PhpAddEdit 1.3 Login By Pass ------------------------------------- Found By: x0r Evolution Team Email: [email protected] ------------------------------------- Bug In: Addedit-login.php if !$loginerror // --- Set admin cookie so favorite form field will sho...

absolutelive-cookie.txt

| | / | \ \ / / / | / | | | | \ | | | | \ V / | | | | | | | | | | | | | || | | | | | | | | | | | | | | || | / || | || \ | Discovered By: Hakxer Home : Www.educ-up.com Type Gap : Insecure Cookie Handling script : Absolute Live Support see script http://www.xigla.com/absolutelsnet/demo.htm Greetz...

ecms-bypass.txt

Entertainment CMS Admin Login Bypass Web: Entertainment CMS Demo : http://multimedia.mydlstore.net/ Download: http://rapidshare.com/files/39640099/enter-cms.rar Author: Kw3rLn tehlostbyteatYaHoOd0tCom Romanian Security Team Ethical Hacking - hTTp://RSTZONE.nET Vulnerable codE: $adminOK=0; if...

Entertainment CMS Admin Login Bypass

Entertainment CMS Admin Login Bypass Web: Entertainment CMS Demo : http://multimedia.mydlstore.net/ Download: http://rapidshare.com/files/39640099/enter-cms.rar Author: Kw3rLn tehlostbyteatYaHoOd0tCom Romanian Security Team Ethical Hacking - hTTp://RSTZONE.nET Vulnerable codE: $adminOK=0; if...

[KAPDA::#44] - NewsCMSLite Login ByPass by Cookie

KAPDA::44 - NewsCMSLite Login ByPass by Cookie Vulnerability KAPDA New advisory Vulnerable product : NewsCMSLite Vendor: http://www.katywhitton.com Vulnerability: Authentication Flaw in 'newsadmin.asp' Lets Remote User Gain Administrative Access . Date : -------------------- Found : 2006/05/21...

MyBulletinBoard (MyBB) 1.03 - 'misc.php' SQL Injection

MyBB New SQL Injection D3vil-0x1 Milw0rm ID :- http://www.milw0rm.com/auth.php?id=1320 The Inf.File :- misc.php Linez :- code $buddies = $mybb-user'buddylist'; $namesarray = explode",",$buddies; ifisarray$namesarray whilelist$key, $buddyid = each$namesarray $sql .= "$comma'$buddyid'";...

[Full-disclosure] [INetCop Security Advisory] Global Hauri Virobot cookie exploit

======================================== INetCop Security Advisory 2006-0x82-028 ======================================== Title: Global Hauri Virobot cookie exploit 0x01. Description Virobot Unix/Linux Server is anti virus program that develop in Global Hauri. Product in Unix of SUN Sparc, HP, IB...

ViRobot Advanced Server 2.0 - addschup Remote Cookie

ViRobot Advanced Server 2.0 - addschup Remote Cookie !/usr/bin/perl ViRobot 2.0 remote cookie exploit - ala addschup copyright Kevin Finisterre kflistsatdigitalmunitiondotcom jdam:/home/kfinisterre ls -al /var/spool/cron/root ls: /var/spool/cron/root: No such file or directory...

ViRobot Advanced Server 2.0 (addschup) Remote Cookie Exploit

Exploit for linux platform in category remote exploits ============================================================ ViRobot Advanced Server 2.0 addschup Remote Cookie Exploit ============================================================ !/usr/bin/perl ViRobot 2.0 remote cookie exploit - ala addsch...

FusionBB 0.x - Multiple Input Validation Vulnerabilities

FusionBB 0.x - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/13939/info FusionBB is affected by multiple vulnerabilities. These issues arise due to a failure of the application to properly sanitize user-supplied input. The following specific vulnerabilities...

Multiple Sql injection and XSS vulnerabilities in phpBB Plus v.1.52 and below and some of its modules.

Dcrab 's Security Advisory Hsc Security Group http://www.hackerscenter.com/ dP Security http://digitalparadox.org/ Get Dcrab's Services to audit your Web servers, scripts, networks, etc. Learn more at http://www.digitalparadox.org/services.ah Severity: Medium Title: Multiple Sql injection and XSS...

CVE-2005-0614

sessions.php in phpBB 2.0.12 and earlier allows remote attackers to gain administrator privileges via the autologinid value in a cookie...