Directory Traversal Vulnerability in PageAdmin CMS

PageAdmin CMS is a self-service website builder based on asp.net mvc development . PageAdmin CMS has a directory traversal vulnerability that can be exploited by an attacker to view the structure of the server file system and file contents...

File Upload Vulnerability in PageAdmin CMS

PageAdmin CMS is a self-service website builder based on asp.net mvc development. PageAdmin CMS has a file upload vulnerability that can be exploited by an attacker to gain control of the web server...

PageAdmin CMS /e/master/build_static. aspx ultra vires and sql injection

No description provided by source...

PageAdmin CMS e\master\build_static.aspx SQL注入

No description provided by source...

PageAdmin多处设计缺陷可getshell

简要描述： rt 详细说明： text3 = now.AddSecondsdoublerandom.Next3600, 86164.ToString"yyyyMMddHHmmss"; masterlogin.imMAPgbr7QUplCu6n3ehttpCookie.Add"Valicate", masterlogin.sxW4jRbFsutFEAxed8Smd, text3; 管理员登陆成功，SetCookie 登陆时间+（3600，86164）之间随机的秒数，进行GetMd5运算。 public string GetMd5string s MD5 mD = new...

Pageadmin CMS get_comments.aspx SQL注入漏洞

getcomments.aspx 未过滤 table 参数，造成 SQL 注入漏洞 0 v3 暂无 使用Firefox访问目标站点的/e/aspx/getcomments.aspx目录，构造POST数据包： post=add&table=pazt set id=1 where 1=0/@@version--&id=1&siteid=1&ismember=12&checked=1&content=1...

Pageadmin cms 3 /get_comments.aspx SQL注入漏洞

No description provided by source...