65 matches found
EUVD-2016-7594
Malware in sbrugna...
EUVD-2014-4917
Malware in sbrugna...
EUVD-2006-1122
Malware in sbrugna...
CVE-2023-1016
The Intuitive Custom Post Order plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 3.1.4.1, due to insufficient escaping on the user supplied 'objects' and 'tags' parameters and lack of sufficient preparation in the 'updateoptions' function as well as the...
CVE-2014-5018
Incomplete blacklist vulnerability in the autoEscape function in commonhelper.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to conduct cross-site scripting XSS attacks via the GBK charset in the loadname parameter to index.php, related to the survey resume...
curl: Incorrect Encoding Conversion in hostname results in indeterminate SSRF vulnerabilities
Vulnerability description not provided...
PT-2023-16691 · WordPress · Intuitive Custom Post Order
Name of the Vulnerable Software and Affected Versions: Intuitive Custom Post Order plugin for WordPress versions up to, and including, 3.1.3 Description: The issue arises from insufficient escaping on the user-supplied objects and tags parameters and a lack of sufficient preparation in the update...
Sql injection
In install/pagedbsettings.php in the Core distribution of XOOPS 2.5.8.1, unfiltered data passed to CREATE and ALTER SQL queries caused SQL Injection in the database settings page, related to use of GBK in CHARACTER SET and COLLATE clauses...
CVE-2017-11174
In install/pagedbsettings.php in the Core distribution of XOOPS 2.5.8.1, unfiltered data passed to CREATE and ALTER SQL queries caused SQL Injection in the database settings page, related to use of GBK in CHARACTER SET and COLLATE clauses...
CVE-2017-11174
In install/pagedbsettings.php in the Core distribution of XOOPS 2.5.8.1, unfiltered data passed to CREATE and ALTER SQL queries caused SQL Injection in the database settings page, related to use of GBK in CHARACTER SET and COLLATE clauses...
Android Qualcomm Wi-Fi gbk2utf Denial of Service Vulnerability
Android is an open source operating system based on Linux. A security vulnerability in the service/jni/comandroidserverwifiGbk2Utf.cpp file in the Qualcomm Wi-Fi gbk2utf component of Android allows remote attackers to exploit the vulnerability to build malicious apps that can crash the app...
CVE-2016-6691
service/jni/comandroidserverwifiGbk2Utf.cpp in the Qualcomm Wi-Fi gbk2utf module in Android before 2016-10-05 allows remote attackers to cause a denial of service framework crash or possibly have unspecified other impact via an access point that has a malformed SSID with GBK encoding, aka Qualcom...
Code injection
service/jni/comandroidserverwifiGbk2Utf.cpp in the Qualcomm Wi-Fi gbk2utf module in Android before 2016-10-05 allows remote attackers to cause a denial of service framework crash or possibly have unspecified other impact via an access point that has a malformed SSID with GBK encoding, aka Qualcom...
Mastery OA /general/ems/manage/search_excel. php file SQL injection vulnerabilities
Width byte injection occurs the position is that PHP sends a request to the MYSQL character set to use the charactersetclient setting a value for an encoding, the GET parameters if it contains“%df%27”, addslashes encoded into‘\’ variable“%df%5c%27”, in MySQL in the processing use the gbk characte...
kppw最新版前台sql注入
简要描述: 我这么认真,你们还是给我点对应的rank吧 详细说明: 算上关联的函数,本来还有很多的,我自己也没有找了, 我测试的是utf版本的,你们gbk版本由于这个问题已经炸了,希望好好审查 下面我拿 control\user\messagesend.php文件举例,同样问题的我找的还有 message.php,yijia.php setUid $gUid ; $objMsgM-setUsername $username ; $objMsgM-setTouid $arrSpaceInfo 'uid' ; $objMsgM-setTousername $arrSpaceInfo...
通达OA /interface/auth.php SQL注入
通达OA 两处注入点: /interface/auth.php /general/score/flow/scoredate/result.php 主要原因还是由于宽字符导致的。 MYSQL的字符集转换过程 1. MySQL Server收到请求时将请求数据从charactersetclient转换为charactersetconnection; 2. 进行内部操作前将请求数据从charactersetconnection转换为内部操作字符集,其确定方法如下: • 使用每个数据字段的CHARACTER SET设定值; • 若上述值不存在,则使用对应数据表的DEFAULT CHARACTER...
74CMS (V 3.5.2 - 20150423) utf8_to_gbk() 不安全性造成的SQL注入
No description provided by source...
phpwind V9.0 gbk 20130227 宽字符SQL注入
/wind/db/mysql/WindMysqlPdoAdapter.php中class WindMysqlPdoAdapter extends AbstractWindPdoAdapter / non-PHPdoc @see AbstractWindPdoAdapter::setCharset / public function setCharset$charset $charset && $this-query"set names " . $this-quote$charset . ";"; 字符集问题...
HDWIKI最新版Update注入可修改管理员密码(MYSQL进制技巧)
简要描述: 最新版HDWIKI 5.1 GBK 无视GPC 上首页吧! 详细说明: 问题出在\hdwiki\control\user.php下 最新版HDWIKI 5.1 GBK版本 HDWIKI全局过滤,但是面对宽字节注入,就容易出问题了 function doeditprofile ifisset$this-post'submit' $gender = intval$this-post'gender'; $birthday = strtotime$this-post'birthday'; $location = $this-post'location'; $signature =...
74cms(20141020)全局SQL注入过滤绕过
简要描述: 74cmsv3.5.120141020 绕过全局SQL注入过滤。 详细说明: WooYun: 74cms 最新版 注入8-9 报道过74cms转换编码导致的SQL注入的问题,是由于使用了iconv函数导致的,74cms做了修正,转而使用了自定义的函数utf8togbk来转换编码,代码如下: function utf8togbk$utfstr global $UC2GBTABLE; $okstr = ''; ifempty$UC2GBTABLE define'CODETABLEDIR',...