130 matches found
CVE-2019-7402
An issue was discovered in PHPMyWind 5.5. The GetQQ function in include/func.class.php allows XSS via the cfgqqcode parameter. This can be exploited via CSRF...
ThinkPHP 5.x Remote Code Execution
Exploit Title: ThinkPHP 5.x v5.0.23,v5.1.31 Remote Code Execution Date: 2018-12-11 Exploit Author: VulnSpy Vendor Homepage: https://thinkphp.cn Software Link: https://github.com/top-think/framework/ Version: v5.x below v5.0.23,v5.1.31 CVE: N/A Exploit...
Webzyme Couch Path Disclosure Vulnerability
Webzyme Couch is the United States Webzyme Softwares, Inc. of a set of open source content management system CMS. A security vulnerability exists in Webzyme Couch. A remote attacker can exploit the vulnerability by sending a direct request to the includes/mysql2i/mysql2i.func.php or...
Adobe Flash MovieClip.duplicateMovieClip - Use-After-Free
Source: https://code.google.com/p/google-security-research/issues/detail?id=591 There is a use-after-free in MovieClip.duplicateMovieClip. If the depth or movie name parameter provided is an object with toString or valueOf defined, this method can free the MovieClip, which is then used. A minimal...
GetSimple CMS Cross-Site Scripting Vulnerability (CNVD-2015-04183)
GetSimple CMS is an XML-based content management system CMS from Cagintranet Networks, USA. The system includes a theme selector and editor, component editor, image and file managers, and more. A cross-site scripting vulnerability exists in the admin/filebrowser.php script in GetSimple CMS versio...
CVE-2015-5356
Cross-site scripting XSS vulnerability in admin/filebrowser.php in GetSimple CMS before 3.3.6 allows remote attackers to inject arbitrary web script or HTML via the func parameter...
CVE-2015-5356
Cross-site scripting XSS vulnerability in admin/filebrowser.php in GetSimple CMS before 3.3.6 allows remote attackers to inject arbitrary web script or HTML via the func parameter...
WordPress Plugin Marketplace 2.4.0 - Arbitrary File Download
WordPress Plugin Marketplace 2.4.0 - Arbitrary File Download Exploit Title: WP Marketplace 2.4.0 Arbitrary File Download Date: 26-10-2014 Software Link: https://wordpress.org/plugins/wpmarketplace/ Exploit Author: Kacper Szurek Contact: http://twitter.com/KacperSzurek Website:...
知道key的情况下对ucserver进行注射
简要描述: 因为帮finger解决问题,无意中看到的漏洞。 怎么拿到key要问finger。 详细说明: 在/ucserver/control/feed.php内有一段代码: function onadd $this-load'misc'; $appid = intval$this-input'appid'; $icon = $this-input'icon'; $uid = intval$this-input'uid'; $username = $this-input'username'; $bodydata =...
Mambo Component Mambads <= 1.5 - Remote SQL Injection Vulnerability
No description provided by source. Mambads = 1.5 Sql Injection Autor:Sniper456 Contact:Sniper456atgmail.kom Greetss: PescaoDeth, Daemon21, Vampirin456, Shh-2, CodeBreak and the chilean People ; SQL: index.php?option=commambads&Itemid=0&func=detail&cacat=1&casb=1&caid=inyecta maricon Example:...
OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previou...
CVE-2011-4540
Multiple cross-site scripting XSS vulnerabilities in AtMail Open aka AtMail Open-Source edition 1.04 allow remote attackers to inject arbitrary web script or HTML via the func parameter to 1 ldap.php or 2 search.php...
中国游戏中心游戏大厅 (CGAgent.dll) ActiveX Remote Code Execution Exploit
No description provided by source. ChinaGames CGAgent.dll ActiveX Remote Code Execution Exploit Exploit made by etirah Download: www.chinagames.com Problem DLL : CGAgent.dll Problem Func : CreateChinagamesparam1 Problem Param : param1 References: 1. http://bbs.pediy.com/showthread.php?t=87615 2...
ChinaGames - CGAgent.dll ActiveX Remote Code Execution
ChinaGames - CGAgent.dll ActiveX Remote Code Execution ChinaGames CGAgent.dll ActiveX Remote Code Execution Exploit Exploit made by etirah Download: www.chinagames.com Problem DLL : CGAgent.dll Problem Func : CreateChinagamesparam1 Problem Param : param1 References: 1...
ChinaGames (CGAgent.dll) ActiveX Remote Code Execution Exploit
Exploit for windows platform in category remote exploits ============================================================== ChinaGames CGAgent.dll ActiveX Remote Code Execution Exploit ============================================================== ChinaGames CGAgent.dll ActiveX Remote Code Execution...
PHP 5.2.5 - 'mbstring.func_overload' WebServer Denial of Service
source: https://www.securityfocus.com/bid/33542/info PHP is prone to a denial-of-service vulnerability because it fails to limit global scope for certain settings relating to Unicode text operations. Attackers can exploit this issue to crash the affected webserver, denying service to legitimate...
Joomla! Component EZ Store Remote - Blind SQL Injection
!/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print "...
joomlamygallery-sql.txt
H-T Team HouSSamix & ToXiC350 ===================================================================== Joomla Component mygallery Remote SQL Injection Exploit ===================================================================== AUTHOR : HouSSamix From H-T TeaM Script : mygallery Joomla Component...
Joomla Component EasyBook 1.1 (gbid) SQL Injection Exploit
Exploit for unknown platform in category web applications ========================================================== Joomla Component EasyBook 1.1 gbid SQL Injection Exploit ========================================================== !/usr/bin/perl use IO::Socket; use strict; INFO Example: Host:...
MercuryBoard 1.1.5 - login.php Blind SQL Injection
MercuryBoard 1.1.5 - login.php Blind SQL Injection settitle$this-lang-loginheader; 55. $this-tree$this-lang-loginheader; 56. 57. //print "agent: $this-agent\n"; 58. 59. if !isset$this-post'submit' 60. $requesturi = $this-geturi; 61. 62. if substr$requesturi, -8 == 'register' 63. $requesturi =...