Lucene search
+L

672 matches found

myhack58
myhack58
added 2011/07/05 12:0 a.m.21 views

SemCms foreign trade website management system cookie injection vulnerability and fix-vulnerability warning-the black bar safety net

by Mr. DzY from www.0855.tv date 2011/7/2 It turned out as if someone had issued after the station cookie spoofing vulnerability,but it seems like the official to do the repair. Nothing else, looked at, found not to cookie submitted data to be filtered, can cookie injection. SemCms is a set of...

0.1AI score
Exploits0
myhack58
myhack58
added 2011/06/25 12:0 a.m.40 views

High-speed Ankang School Site program v3. 1. 1 cookie injection vulnerability-vulnerability warning-the black bar safety net

PS:seems to be oyaya kernel. Use the system notes: 1. The present program consists of extreme well-being and development,the symbolic charge a little Fee for everyone to use! 2. The present system for sharing procedures,the user the freedom to choose whether to use,in use, any problems and losses...

7.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2011/06/21 10:39 p.m.6 views

Mozilla Miscellaneous memory safety hazards (MFSA 2011-19)

CRLF injection vulnerability in the nsCookieService::SetCookieStringInternal function in netwerk/cookie/nsCookieService.cpp in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird before 3.1.11, allows remote attackers to bypass intended access restrictions via a string containing...

4.3CVSS7.4AI score0.01034EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/06/21 10:30 p.m.5 views

Mozilla Miscellaneous memory safety hazards (MFSA 2011-19)

CRLF injection vulnerability in the nsCookieService::SetCookieStringInternal function in netwerk/cookie/nsCookieService.cpp in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, and Thunderbird before 3.1.11, allows remote attackers to bypass intended access restrictions via a string containing...

4.3CVSS7.4AI score0.01034EPSS
Exploits0References4
myhack58
myhack58
added 2011/06/19 12:0 a.m.14 views

Pole Rui enterprise website system v1. 0 cookie injection vulnerability-vulnerability warning-the black bar safety net

Pole Rui enterprise website system is for small and medium businesses specially tailored to the small business Station source code, The code is all free and open, you can modify their own learning to use, but it is strictly prohibited for commercial purposes. System Systems front Desk interface i...

0.2AI score
Exploits0
myhack58
myhack58
added 2011/06/17 12:0 a.m.15 views

Pole Rui enterprise website system v1. 0 cookie injection vulnerability-vulnerability warning-the black bar safety net

Pole Rui enterprise website system is for small and medium businesses specially tailored to the small business Station source code, The code is all free and open, you can modify their own learning to use, but it is strictly prohibited for commercial purposes. System Systems front Desk interface i...

0.1AI score
Exploits0
myhack58
myhack58
added 2011/05/24 12:0 a.m.17 views

Fire article back office management system V2. 1 cookie injection-vulnerability warning-the black bar safety net

Publishing author: dark-on formula Vulnerability type: cookie injection Vulnerability Description: The fire article back office management system V2. 1 program using a common anti-injection procedures, only the post get to filter lead to a cookie injection vulnerability. Vulnerability analysis:...

0.5AI score
Exploits0
myhack58
myhack58
added 2011/04/27 12:0 a.m.13 views

Km tourism site management system 3. 0 many of the mentally vulnerability and fix-vulnerability warning-the black bar safety net

by:Mr. DzY Km tourism site management system is the latest development of a tourism industry website management system, effective to help you build the tourism electronic Commerce website. The system contains the article release module, hotel module, ticket module, vacation module, module, image...

6.8AI score
Exploits0
myhack58
myhack58
added 2011/04/25 12:0 a.m.13 views

Amanda enterprise website system cookie injection vulnerability 0day-vulnerability warning-the black bar safety net

amanda/cgProductShow. asp --------------------------------------------------------------- %@ LANGUAGE = VBScript. Encode % !-- include file="Inc/SysProduct. asp" - % ShowSmallClassType=ShowSmallClassTypeArticle dim ID ID=trimrequest"ID" if ID="" then response. Redirect"cgProduct. asp" end if...

Exploits0
myhack58
myhack58
added 2011/04/21 12:0 a.m.11 views

Concave Yaya article system injection vulnerability analysis-vulnerability warning-the black bar safety net

Article author:small ice Last night in the penetration of a local University website time to find a sub-Station is using the concave Yaya news publishing system, at the time in Internet for a under the about the system vulnerabilities but did not find anything, so they own out of the sleeve 4. 7A...

7.7AI score
Exploits0
myhack58
myhack58
added 2011/04/20 12:0 a.m.20 views

Simple article management system cookie injection vulnerabilities pass to kill all versions-bug warning-the black bar safety net

Simple article management system uses a classification, the interface simple, feature simple and practical. Delete the article, article related images also be deleted minus Less junk files exist. The backstage management entrance http://Domain/admin username and password are admin Backend module:...

7.6AI score
Exploits0
myhack58
myhack58
added 2011/01/25 12:0 a.m.24 views

Hua-speed online trading platform V13 full version more than the presence of injection vulnerabilities-vulnerability warning-the black bar safety net

Publishing author: wandering wind Affected versions: V13 Official website: http://www.hs173.cn Vulnerability type: SQL injection Vulnerability Description: The program is also the only anti-get and post two kinds of injection, then we can use the cookie injection, get admin username and password...

0.2AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2010/10/13 7:58 a.m.6 views

Phishing Vulnerability in Accela BizSearch Document View Window

Overview The document view window in Accela BizSearch Gateway Option has the following vulnerabilities which allow a remote attacker to: display a fraudulent web page over a legitimate web page steal cookies stored in browser place arbitrary cookies into browser Impact A remote attacker could...

5.8CVSS6.9AI score
Exploits0References3
myhack58
myhack58
added 2010/07/17 12:0 a.m.19 views

Thousand Bo enterprise website management system v2010 Build 0 7 1 6 vulnerability analysis-vulnerability warning-the black bar safety net

Release time: 2010-07-16 Affected version: Thousand Bo enterprise website management system v2010 Build 0 7 1 6 Vulnerability Description: The search type injection vulnerability Default background address: http://127.1/system/AdminLogin.Asp Publishing author: m4r10 reproduced please indicate the...

8.4AI score
Exploits0
myhack58
myhack58
added 2010/06/29 12:0 a.m.21 views

Yxbbs Forum system Ver 3.1.0 multiple vulnerabilities-vulnerability warning-the black bar safety net

Yxbbs by the Y network developed a set of open source free Community Forum system program, using asp+Access SQL technical. Speed: the use of currently the more popular caching technology, which greatly accelerates the forum access speed Function: although the function can not be and dynamic netwo...

1.8AI score
Exploits0
myhack58
myhack58
added 2010/02/27 12:0 a.m.29 views

7 1 1 enterprise web site management program V6. 0 Then proof upload vulnerability and exploit-vulnerability warning-the black bar safety net

sfmb ----------------------- The other day a Cookie injection vulnerability, and today they turned to see to In the ADMIN directory there are 2 Upload File upfile. asp and upfile2. asp These 2 components of the function is: without logging in the backend, without having to cut packages, direct...

7.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/01/25 12:0 a.m.1694 views

Web Server Generic Cookie Injection

The remote host is running a web server that fails to adequately sanitize request strings of malicious JavaScript. By leveraging this issue, an attacker may be able to inject arbitrary cookies. Depending on the structure of the web application, it may be possible to launch a 'session fixation'...

5.8AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2010/01/25 12:0 a.m.1196 views

CGI Generic Cookie Injection Scripting

The remote web server hosts at least one CGI script that fails to adequately sanitize request strings with malicious JavaScript. By leveraging this issue, an attacker may be able to inject arbitrary cookies. Depending on the structure of the web application, it may be possible to launch a 'sessio...

5.6AI score
Exploits0References4
myhack58
myhack58
added 2009/12/26 12:0 a.m.28 views

Easy and sun Shopping Mall v1. 4Cookies injection vulnerability-vulnerability warning-the black bar safety net

Easy and sun Shopping Mall v1. 4Cookies injection vulnerability This injection vulnerability seems to occur in the Home Shopping system. Looks like the network fun. The problem occurs in getpwd4. asp page. See the code: % username=request"username" passwd=md5trimrequest. form"passwd",1 6 set...

7.7AI score
Exploits0
myhack58
myhack58
added 2009/12/15 12:0 a.m.16 views

Southern data, a good precision system, Web soft world exploits-vulnerability warning-the black bar safety net

1, through the upfileother. asp vulnerability file taken directly SHELL Directly open userreg. asp for registered members, log in not logged state, use local Upload File Upload code is as follows: HTMLHEAD META http-equiv=Content-Type content="text/html; charset=gb2312" STYLE type=text/cssBODY...

7.5AI score
Exploits0
Rows per page
Query Builder