x5music V2.0 Member Center Injection Vulnerability

x5music Free Edition is an audio-visual management system developed using php+Mysql. x5music V2.0 Free Edition has an injection vulnerability in the member center. As X5music uses a global escape filter, nickname characters are taken out of the database and not processed, resulting in data that c...

74CMS 二次注入 #3 (多处)

简要描述： No check out。 6月份了 不知道是自己倒数的多少个洞了。 2014年6月2日 16:06:55 最后写一个 写了就去上晚自习了。 时间原因 怕迟到 可以注入的地方很多 我就贴两个出来就算了。 demo成功。 详细说明： 总所周知 74cms在/user/userreg.php注册的时候 用户名： 只能包含中英文、数字和下划线 不允许注册特殊字符 但是在plus/ajaxuser.php中 也能注册。 在这里就没过滤特殊字符了。 elseif $act=='doreg' $captcha=getcache'captcha'; if...

Double free

The XSS Filter in Microsoft Internet Explorer 8.0 Beta 2 allows remote attackers to bypass the XSS protection mechanism and conduct XSS attacks by injecting data at two different positions within an HTML document, related to STYLE elements and the CSS expression property, aka a "double injection....

CVE-2008-5551

Microsoft Internet Explorer 8.0 Beta 2 contains an anti-XSS filter bypass vulnerability (the XSS Filter) that allows XSS by injecting data at two positions in HTML documents (STYLE elements and the CSS expression property), described as a "double injection." The connected OpenVAS entry and relate...