yudao-cloud 代码问题漏洞

yudao-cloud is a backend management system for YunaiV individual developers. A code issue vulnerability exists in yudao-cloud version 2026.03, which originates from the function IotDataSinkHttpConfig operation in the file /admin-api/iot/data-sink/create in the component Admin API Endpoint, which...

GitLab: Injection of `http.<url>.*` git config settings leading to SSRF

Summary When import a repo with credentials via a URL, gitaly generates the git clone command with a -c flag to add the Authorization header: https://gitlab.com/gitlab-org/gitaly/-/blob/master/internal/service/repository/createfromurl.goL37 go flags = appendflags, git.ValueFlagName: "-c", Value:...

Static HTTP Server 1.0 - Local Overflow (SEH)

Static HTTP Server 1.0 - Local Overflow SEH !/usr/bin/env python import os TitleStatic HTTP Server SEH Overflow - HTTP Config - httptiplist Discovered and ReportedJune 2013 Discovered/Exploited ByJacob Holcomb/Gimppy, Security Analyst @ Independent Security Evaluators...

http-config-backup NSE Script

Checks for backups and swap files of common content management system and web server configuration files. When web server files are edited in place, the text editor can leave backup or swap files in a place where the web server can serve them. The script checks for these files: wp-config.php:...

dynalink.Backdoor.txt

I was playing with a Dynalink RTA 230 http://www.dynalink.co.nz/products/rta230.htm, a linux based mips-cored adsl router. Looking at embedded linux system, i've found something like a backdoor: cat /etc/passwd admin:xxxxxobscuredxxxxx:0:0:Administrator:/:/bin/sh...