737 matches found
Android Pentesting Portable Integrated Environment: Appie
Appie is a software package that has been pre-configured to function as an Android Pentesting Environment on any windows based machine without the need of a Virtual MachineVM or dualboot. It is completely portable and can be carried on USB stick or your smartphone. It is one of its kind Android...
Open Real Estate 1.15.1 XSS / SQL Injection / Weak Hashing
Introduction: Open Real Estate is an open source CMS for managing estate agent websites. It is written in PHP and uses the YII CMF. It supports multiple languages. It is supported by MonoRay.net The product has a number of commercial support offerings available and an internal market for...
UliCMS v9.8.1 - SQL Injection
Exploit for php platform in category web applications ============================================= MGC ALERT 2016-001 - Original release date: January 26, 2016 - Last revised: February 02, 2016 - Discovered by: Manuel García Cárdenas - Severity: 7,1/10 CVSS Base Score...
UliCMS v9.8.1 - SQL Injection
UliCMS v9.8.1 - SQL Injection ============================================= MGC ALERT 2016-001 - Original release date: January 26, 2016 - Last revised: February 02, 2016 - Discovered by: Manuel García Cárdenas - Severity: 7,1/10 CVSS Base Score ============================================= I...
UliCMS v9.8.1 - SQL Injection
============================================= MGC ALERT 2016-001 - Original release date: January 26, 2016 - Last revised: February 02, 2016 - Discovered by: Manuel García Cárdenas - Severity: 7,1/10 CVSS Base Score ============================================= I. VULNERABILITY...
UliCMS 9.8.1 SQL Injection
============================================= MGC ALERT 2016-001 - Original release date: January 26, 2016 - Last revised: February 02, 2016 - Discovered by: Manuel García Cárdenas - Severity: 7,1/10 CVSS Base Score ============================================= I. VULNERABILITY...
WordPress Booking Calendar Contact Form 1.1.24 Plugin - Multiple Vulnerabilities
Exploit for php platform in category web applications Exploit Title: WordPress appointment-booking-calendar =1.1.24 - Privilege escalation Managing calendars & Persistent XSS Date: 2016-01-28 Google Dork: Index of /wordpress/wp-content/plugins/appointment-booking-calendar/ Exploit Author: Joaquin...
WordPress Booking Calendar Contact Form 1.1.23 Plugin - Shortcode SQL Injection
Exploit for php platform in category web applications Exploit Title: WordPress appointment-booking-calendar =1.1.23 - Shortcode SQL injection Date: 2016-01-24 Google Dork: Index of /wordpress/wp-content/plugins/appointment-booking-calendar/ Exploit Author: Joaquin Ramirez Martinez i0 security-lab...
WordPress Plugin Booking Calendar Contact Form 1.1.23 - Shortcode SQL Injection
Exploit Title: WordPress appointment-booking-calendar =1.1.23 - Shortcode SQL injection Date: 2016-01-24 Google Dork: Index of /wordpress/wp-content/plugins/appointment-booking-calendar/ Exploit Author: Joaquin Ramirez Martinez i0 security-lab Software Link:...
WordPress Plugin Booking Calendar Contact Form 1.1.23 - Shortcode SQL Injection
WordPress Plugin Booking Calendar Contact Form 1.1.23 - Shortcode SQL Injection Exploit Title: WordPress appointment-booking-calendar =1.1.23 - Shortcode SQL injection Date: 2016-01-24 Google Dork: Index of /wordpress/wp-content/plugins/appointment-booking-calendar/ Exploit Author: Joaquin Ramire...
WordPress Booking Calendar Contact Form 1.1.23 Plugin - Unauthenticated SQL Injection
Exploit for php platform in category web applications Exploit Title: WordPress appointment-booking-calendar =1.1.23 - Unauthenticated SQL injection Date: 2016-01-26 Google Dork: Index of /wordpress/wp-content/plugins/appointment-booking-calendar/ Exploit Author: Joaquin Ramirez Martinez i0akiN...
4a网络教学平台relatedMaterial.jsp resId参数SQL注入漏洞
4a网络教学平台relatedMaterial.jsp resId参数SQL注入漏洞 relatedMaterial.jsp中的resid参数存在注入 可以用sqlmap直接跑。 这个是正常的。 这个是不正常的。我也是醉了。...
V5shop 在cart.aspx处的参数spikeid存在SQL注入漏洞
举例: 通过谷歌搜索inurl:productpic.aspx,因为cart.aspx是需要登录才可以正常访问,但是注入的时候毫无影响。 案例: http://www.wolifu.com/cart.aspx?act=spikebuy&spikeid=3 D:\sqlmappython sqlmap.py -u "http://www.wolifu.com/cart.aspx?act=spikebuy&spik eid=3" -p "spikeid" | | 1.0-dev-nongit-20150806 | -| . | | | .'| . | || |||||,| | || ||...
joomla com_Nice Ajax Poll 1.4.0 组件SQL注入漏洞
1.google 语法: inurl:"/index.php?option=comniceajaxpoll" 2.随便打开一个网站,利用sqlmap 进行注入. sqlmap.py -u "http://www.cevosop.com/index.php?option=comniceajaxpoll&getpliseid=" --current-user...
ATSCAN - Server, Site and Dork Scanner
Description: ATSCAN Version 2 Dork scanner. XSS scanner. Sqlmap. LFI scanner. Filter wordpress and Joomla sites in the server. Find Admin page. Decode / Encode MD5 + Base64. Libreries to install: ap-get install libxml-simple-perl NOTE: Works in linux platforms. Permissions & Executution: $chmod +...
Sqlmap code execution vulnerability report-vulnerability warning-the black bar safety net
Author: Nixawk know Chong Yu 4 0 4 Security lab Date: 2015-12-09 A vulnerability overview In 2 0 1 5 years 0 1 months 2 7 day, I read in the latest version of Sqlmap code, found its existing code enforcement issues. Security by python's pickle cause. pickle module implements a basic but powerful...
Sqlmap 代码执行
前言 于2015年01月27日, 我在阅读最新版本Sqlmap代码时,发现其存在代码执行问题。安全问题由 python 的 pickle 导致。 pickle 模块实现了一个基础而强劲的算法,用于序列化和反序列化 Python 对象结构,常用于跨平台及网络应用。在进行反序列化操作时,pickle 会执行精心构造的 python 代码。 漏洞演示 测试数据: python sqlmap.py --pickled-options...
HumHub 0.11.2 and 0.20.0-beta.2 - SQL 注入漏洞
寻找SQL注入的一般步骤: 1、寻找数据输入(表单) 2、注入数据 3、检测异常响应,像HTTP的500错误,SQL报错 该过程可以借助多种工具实现自动化。 用AWVS检测出 /index.php 可能存在SQL注入。 以下地址会报SQL错误,from 字段是注入点: http://localhost/index.php?from=1'"&limit=10&mode=activity&r=space/space/stream&sguid=e9659cfc-886f-4524-94ae-1721999ad43b...
phpMyChat-Plus 1.94-b8 - SQL Injection Vulnerability
phpMyChat-Plus 1.94-b8 - SQL Injecti0n Vulnerability ===================================================== phpMyChat-Plus 1.94-b8 - SQL Injecti0n Vulnerability ===================================================== Exploit Title: phpMyChat-Plus 1.94-b8 SQL Injecti0n Vulnerability SQLMAP ! Date:...
HumHub 0.11.2/0.20.0-beta.2 - SQL Injection
=== LSE Leading Security Experts GmbH - Security Advisory 2015-10-14 === HumHub - SQL-Injection ------------------------------------------------------------------------ Tested Versions =============== HumHub 0.11.2 and 0.20.0-beta.2 Issue Overview ============== Vulnerability Type: 89 - Improper...