Updated graphicsmagick packages fix security vulnerability

- A read out-of-bound in the parsing of gif files using GraphicsMagick CVE-2015-8808. - Infinite loop caused by converting a circularly defined svg file CVE-2016-5240. - Fix another case of CVE-2016-2317 heap buffer overflow in the MVG rendering code also impacts SVG. - arithmetic exception...

Exploit for Integer Overflow or Wraparound in Python

CVE-2016-5636 PoC for CVE-2016-5636https://bugs.python.o...

Cisco UCS Manager 2.1(1b) - Remote Command Injection (Shellshock)

Cisco UCS Manager 2.11b - Remote Command Injection Shellshock !/usr/bin/python Cisco UCS Manager 2.11b Shellshock Exploit CVE-2014-6278 Confirmed on version 2.11b, but more are likely vulnerable. Cisco's advisory:...

泛微oa /iweboffice/officeserver.php 任意文件上传getshell

No description provided by source...

Discuz!某工具写文件导致getshell

简要描述： 就不告诉你们是什么工具，哼！害羞 详细说明： 产品名：Discuz!应用开发助手 安装量较高，此处分析此产品可getshell的一个部分。 创建应用处如下填写。 此处创建时他会存入数据库，进入下一步。 只需在 “普通页面嵌入脚本” 处 填入任意字符。 如xxx.class.php，填完直接下一步到导出插件包。 此时会在/data/develop/生成igetshell目录,目录下的xxx.class.php为插入的内容。 漏洞证明： 随便找了个站测试的，求不水表。...

某通用在线考试系统可getshell、注册管理员等

简要描述： 某通用在线考试系统可getshell、注册管理员等 详细说明： 上海天柏信息科技有限公司的系统： 测试地址：http://www.timber2005.com/Productsy.html demo： http://exam1.timber2005.com/login.aspx 首先注册一个普通账号： 然后登陆： 之后直接访问： http://exam1.timber2005.com/system/systemconfig.aspx -======================================================= 这里有两个问题：...

金蝶旗下某业务通讯监控系统命令执行

简要描述： title 详细说明： null 漏洞证明： 万恶的struts2框架～ 金蝶已经差不多补全了！但是还是有一些没有被注意到。 问题出在： http://comm.youshang.com/login.do 图片为域名对应IP： 已shell：...

亿邮邮件系统SQL导致批量GetShell（无需登录）

简要描述： 亿邮邮件系统SQL导致批量GetShell（至少几百个单位） 详细说明： 漏洞文件：\php\bill\printaddfeelog.php 执行任意SQL命令，且不受GPC影响。 默认MYSQL都是有权限导出文件权限的，可以导出一句话后门。 query$sql; ? 利用代码： POST /php/bill/printaddfeelog.php HTTP/1.1 Content-Length: 140 Host: mail.sihs.edu.cn User-Agent: Mozilla/5.0 Windows; U; Windows NT 6.2; zh-CN;...

Destoon最新 V5.0-UTF8 正式版命令执行漏洞（后台）

简要描述： RT 详细说明： 后台一处命令执行漏洞，可添加系统账户。 漏洞位于admin/tag.inc.php case 'preview': $db-halt = 0; $destoontask = ''; if$tagcss $tagcss = stripslashes$tagcss; if$taghtmls $taghtmls = stripslashes$taghtmls; if$taghtmle $taghtmle = stripslashes$taghtmle; if$tagcode $tagcode = stripslashes$tagcode; if$tagjs...

Sudo <= 1.6.8p9 (SHELLOPTS/PS4 ENV variables) Local Root Exploit

No description provided by source. Sudo local root escalation privilege vuln versions : sudo 1.6.8p10 by breno You need sudo access execution for some bash script Use csh shell to change SHELLOPTS env ie: %cat x.sh !/bin/bash -x echo Getting root!! % cat /etc/sudoers ... breno ALL=ALL...

OpenFTPD <= 0.30.1 (message system) Remote Shell Exploit

No description provided by source. / shouts to mitakeet :D exploit for openftpd format string bug. tested on most current version only. -infamous42md AT hotpop DOT com is real email only tricky part is find a place to stick the shell, as there isn't enough room to send it with the format string...

PHPMyTGP 1.4 AddVIP.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23657/info PHPMyTGP is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlyi...

Fast Free Media 1.3 - Adult Site Upload Shell Exploit

No description provided by source...

ASUS RT-AC66U acsd Param - Remote Root Shell Exploit

No description provided by source...

Myuploader >> upload shell exploit

No description provided by source...

D-Link DSR Router Series - Remote Root Shell Exploit

No description provided by source. !/usr/bin/python CVEs: CVE-2013-5945 - Authentication Bypass by SQL-Injection CVE-2013-5946 - Privilege Escalation by Arbitrary Command Execution Vulnerable Routers: D-Link DSR-150 Firmware v1.08B44 D-Link DSR-150N Firmware v1.05B64 D-Link DSR-250 and DSR-250N...

Marty Bochane MDBMS 0.9 xbx Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1252/info A vulnerability exists in the MDBMS database, written by Marty Bochane. By supplying a line of sufficient length to the MDBMS server, containing machine executable code, it is possible for a remote attacker to...

HP Data Protector Remote Shell for HP-UX

No description provided by source. !/bin/bash Exploit Title: HP Data Protector Remote Shell for HPUX Date: 2011-08-02 Author: Adrian Puente Z. Software Link:http://www8.hp.com/us/en/software/software- product.html?compURI=tcm:245-936920&pageTitle=data-protector Version: 0.9 Tested on: HPUX CVE:...

ELOG <= 2.5.6 - Remote Shell Exploit

No description provided by source. / Worked on latest version for me http://midas.psi.ch/elog/download/tar/elog-latest.tar.gz elog-latest.tar.gz 26-Jan-2005 21:36 519K Default port 8080. str0ke / / Hi there, someone has brought to u a gift. ELOG Remote Shell Exploit = 2.5.6 Also for future Versio...

WordPress Theme Highlight Premium - Cross-Site Request Forgery Arbitrary File Upload

WordPress Theme Highlight Premium - Cross-Site Request Forgery Arbitrary File Upload Title : Wordpress Highlight Premium Themes CSRF File Upload Vulnerability Author : DevilScreaM Date : 11/10/2013 - 10 November 2013 Category : Web Applications Type : PHP Vendor : http://themeforest.net Download ...