Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

seebug.org
seebug.orgadded 2016/12/27 12:0 a.m.40 views

Mastery oa 2015 \inc\common.inc.php approve_finish function injection vulnerability

Recently made public measured when encountered on a system, The 2015 version of the latest update date: 2016-07-22 Injection the analysis \inc\common.inc.php ? php function SecureRequest&$var if isarray$var foreach $var as $k = $v $var$k = securerequest$v; else if 0 strlen$var &&...

6.9AI score
Exploits0
seebug.org
seebug.orgadded 2016/10/13 12:0 a.m.23 views

Mastery OA /pda/apps/report/getdata.php arbitrary file upload

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2016/10/08 12:0 a.m.64 views

Mastery OA /general/mytable/intel_view/video_file.php arbitrary File Download vulnerability

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2016/09/20 12:0 a.m.26 views

Mastery OA /inc/finger/use_finger. php file SQL injection vulnerabilities

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2016/09/20 12:0 a.m.16 views

Mastery OA /general/ems/manage/search_excel. php file SQL injection vulnerabilities

Width byte injection occurs the position is that PHP sends a request to the MYSQL character set to use the charactersetclient setting a value for an encoding, the GET parameters if it contains“%df%27”, addslashes encoded into‘\’ variable“%df%5c%27”, in MySQL in the processing use the gbk characte...

7.4AI score
Exploits0
seebug.org
seebug.orgadded 2016/08/22 12:0 a.m.17 views

Mastery OA /interface/go.php SQL injection vulnerability

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2016/06/10 12:0 a.m.25 views

Mastery OA system /general/document/index. php/recv/register/turn parameter rid of the SQL injection vulnerability

http://xxx/general/document/index.php/recv/register/turn post:SERVER=&rid=expselectfromselect concat0x7e7e7e,@@version,0x7e7e7e from user limit 0,1x...

7.1AI score
Exploits0
myhack58
myhack58added 2014/01/19 12:0 a.m.13 views

Mastery OA to the latest version of the override to delete the others notice, notice reply, a few at a stored XSS-vulnerability warning-the black bar safety net

Test version: mastery OA 2 0 1 3 enhanced Edition 125MB Download: http://www.tongda2000.com/download/2013adv.php Updated on 2013-12-26 1 3:3 0 In the news, announcements, notifications, etc. reply, you can override delete someone else's reply, just need someone to reply to the content of the id c...

0.8AI score
Exploits0
myhack58
myhack58added 2013/02/23 12:0 a.m.12 views

Mastery OA contents of the log stored XSS can get the cookie-vulnerability warning-the black bar safety net

Mastery OA2013 and 2 0 1 0 version, Office Anywhere 2 0 1 3 work log edit page there is the storage typeXSS, and their superiors view the log after you can steal the cookie 1, the work log edit page source code to bypass the bypass a character can be constructedXSS! ! ! 1, the interception to giv...

1.5AI score
Exploits0
Rows per page
Query Builder