Dream line business enterprise station building system exists arbitrary file download vulnerability

Dream line business enterprise station building system is to use PHP + MySQL way to run the open source station building system. Dream line enterprise building system there are arbitrary file download vulnerability, an attacker can use the vulnerability to download any system file...

The black hole of the ASP on-line system of a vulnerability-vulnerability warning-the black bar safety net

In the default case, the use of the vulnerability can be obtained on-line system where the server webshell ASP on-line system stored in the on-line IP information of the database extension the default for asp Write the configuration of the parameters is not checked, the setip. asp the relevant co...

CVE-2008-0184

CVE-2008-0184 affects Sys-Hotel on Line System. Affects the index.php file where an absolute path traversal can occur via an encoded slash (%2F) in the file parameter, enabling remote reading of arbitrary files. The NVD entry lists a Network attack vector with Low complexity and no authentication...

CVE-2008-0184

Absolute path traversal vulnerability in index.php in Sys-Hotel on Line System allows remote attackers to read arbitrary files via an encoded "/" "%2F" in the file parameter...