Kemana Directory Version 3.2 Build 20170903 Database Disclosure

0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1-=-=-=-=-=-=-=-=-=-=-=-=- | Title : Kemana Directory Version 3.2 build 20170903 Database Disclosure Vulnerability | Author : indoushka | email : [email protected] | vendor : http://www.c97.net/ | Tested on : windows 8....

Kemana Directory 1.5.6 Database Backup Disclosure Exploit

No description provided by source. ?php / Kemana Directory 1.5.6 Database Backup Disclosure Exploit Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana...

Kemana Directory 1.5.6 - kemana_admin_passwd Cookie User Password Hash Disclosure

No description provided by source. ? Kemana Directory 1.5.6 kemanaadminpasswd Cookie User Password Hash Disclosure Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easi...

Kemana Directory 1.5.6 Remote Code Execution

No description provided by source. ? Kemana Directory 1.5.6 Remote Code Execution Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana. Unique Kemana's...

Kemana Directory 1.5.6 (qvc_init()) Cookie Poisoning CAPTCHA Bypass Exploit

No description provided by source. ?!C:\Perl64\bin\perl.exe Kemana Directory 1.5.6 qvcinit Cookie Poisoning CAPTCHA Bypass Exploit Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana. Create your own...

Kemana Directory 1.5.6 (run param) Local File Inclusion Vulnerability

No description provided by source. ? Kemana Directory 1.5.6 run param Local File Inclusion Vulnerability Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with...

Kemana Directory 'function.php' CAPTCHA安全绕过漏洞

Bugtraq ID:66436 Kemana Directory是一款基于WEB的目录服务。 Kemana Directory CAPTCHA函数存在一个安全漏洞，允许攻击者利用漏洞绕过基于CAPTCHA的验证挑战，进行暴力破解攻击。 0 Kemana Directory 1.5.6 目前没有详细解决方案提供： http://www.c97.net...

Kemana Directory 'kemana_admin_passwd' Cookie信息泄漏漏洞

Bugtraq ID:66445 Kemana Directory是一款基于WEB的目录服务。 Kemana Directory存在一个安全漏洞，由于'kemanaadminpasswd' cookie存储了用户密码SHA1哈希，允许可进行中间人攻击的攻击者获得密码信息。 0 Kemana Directory 1.5.6 目前没有详细解决方案提供： http://www.c97.net GET /kemana/admin/revreport.php HTTP/1.1 Host: localhost User-Agent: Mozilla/5.0 Windows NT 6.1; WOW64...

Kemana Directory 1.5.6 Local File Inclusion Vulnerability

Kemana Directory version 1.5.6 suffers from a local file inclusion vulnerability. Kemana Directory 1.5.6 run param Local File Inclusion Vulnerability Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana...

Kemana Directory 1.5.6 Database Backup Disclosure Vulnerability

Kemana Directory version 1.5.6 suffers from a database backup disclosure vulnerability. ?php / Kemana Directory 1.5.6 Database Backup Disclosure Exploit Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with...

Kemana Directory 1.5.6 Password Hash Disclosure Vulnerability

Kemana contains a flaw that is due to the 'kemanaadminpasswd' cookie storing user password SHA1 hashes. This may allow a remote MitM attacker to more easily gain access to password information. Version 1.5.6 is affected. Kemana Directory 1.5.6 kemanaadminpasswd Cookie User Password Hash Disclosur...

Kemana Directory 1.5.6 Remote Code Execution Vulnerability

Kemana Directory suffers from an authenticated arbitrary code execution. The vulnerability is caused due to the improper verification of uploaded files in several modules thru several POST parameters. This can be exploited to execute arbitrary PHP code by uploading a malicious PHP script file tha...

Kemana Directory 1.5.6 CAPTCHA Bypass Vulnerability

The CAPTCHA function for Kemana Directory is prone to a security bypass vulnerability that occurs in the CAPTCHA authentication routine. The function 'qvcinit' in '/includes/function.php' sets a cookie with a SHA1-based hash value in the Response Header which can be replaced by a random SHA1...

Kemana Directory 1.5.6 kemana_admin_passwd Cookie User Password Hash Disclosure

Summary Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana. Unique Kemana's features including: CMS engine based on our qEngine, multiple directories support, user friendly administration control panel, easy to use custom fields,...

Kemana Directory 1.5.6 - Database Backup Disclosure

$total return; ifempty$starttime $starttime=time; $now...

Kemana Directory 1.5.6 - kemana_admin_passwd Cookie User Password Hash Disclosure

Kemana Directory 1.5.6 kemanaadminpasswd Cookie User Password Hash Disclosure Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana. Unique Kemana's...

Kemana Directory 1.5.6 - Database Backup Disclosure

Kemana Directory 1.5.6 - Database Backup Disclosure $total return; ifempty$starttime $starttime=time; $now = time...

Kemana Directory 1.5.6 Database Backup Disclosure Exploit

Summary Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana. Unique Kemana's features including: CMS engine based on our qEngine, multiple directories support, user friendly administration control panel, easy to use custom fields,...

Kemana Directory 1.5.6 Password Hash Disclosure

Kemana Directory 1.5.6 kemanaadminpasswd Cookie User Password Hash Disclosure Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution with Kemana. Create your own Yahoo or Dmoz easily with Kemana. Unique Kemana's...

Kemana Directory 1.5.6 - qvc_init() Cookie Poisoning CAPTCHA Bypass

Kemana Directory 1.5.6 - qvcinit Cookie Poisoning CAPTCHA Bypass !C:\Perl64\bin\perl.exe Kemana Directory 1.5.6 qvcinit Cookie Poisoning CAPTCHA Bypass Exploit Vendor: C97net Product web page: http://www.c97.net Affected version: 1.5.6 Summary: Experience the ultimate directory script solution...