5 matches found
BOSSI company(enterprises)website administrative system injection&upload exploit-vulnerability warning-the black bar safety net
BOSSI companyenterpriseswebsite administrative system,Chinese / English bilingual version,the background in same page within while management added modified information within OF in the English content,the website's left column using the module, you can freely increase&delete,can not modify the...
For the guestbook vulnerability discovery-vulnerability warning-the black bar safety net
Guestbook of a single function, generally for the ordinary viewer only message function. And for the administrator function of how much is written on the guestbook of the optimization. Generally the administrator has to reply to a message edit a message delete a message there are websites users t...
Improper access control
PortalApp stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for 8691.mdb, a different vector than CVE-2004-1786...
wdse20-db.txt
--/ INTRODUCTION -- Advisory : Web Directory / Search Engine v2.0 Authentication Bypass/Database Download Vulnerability Release Date : 25 / 05 / 2007 Application : Web Directory / Search Engine v2.0 Impact : Remote Googledork : "Web Directory / Search Engine v2.0" ,...
Web Directory / Search Engine v2.0 Authentication Bypass/Database Download Vulne
--/ INTRODUCTION -- Advisory : Web Directory / Search Engine v2.0 Authentication Bypass/Database Download Vulnerability Release Date : 25 / 05 / 2007 Application : Web Directory / Search Engine v2.0 Impact : Remote Googledork : "Web Directory / Search Engine v2.0" ,...