1697 matches found
大汉版通系统任意文件上传/删除漏洞
简要描述: 大汉版通某系统存在多处任意文件上传/删除漏洞 详细说明: 一、漏洞代码 文件上传: 漏洞一:/xxgk/jcmsfiles/jcms1/web1/site/zfxxgk/ysqgk/attachupload.jsp 漏洞二:/xxgk/jcmsfiles/jcms1/web1/site/zfxxgk/ysqgk/applyattachupload.jsp 文件删除: 上述两个文件同时存在任意文件删除漏洞 先来看任意文件删除的代码: if"D".equalsstrBillStatus delFileName =...
Dompdf 0.6 /dompdf.php 任意文件下载漏洞
No description provided by source...
PTCeffect 4.6 - Local File Inclusion / SQL Injection
Exploit Title: PTCeffect LFI & SQL Injection Vulnerabilities Google Dork: find it : Date: 2014-04-19 Exploit Author: Walidz Software Link: http://www.ptceffect.com/ Version: 4.6 Tested on: windows,linux,mac os CVE : N/A The LFI vulnerability is in index.php...
CMSimple 4.44.4.2 - Remote File Inclusion
CMSimple 4.44.4.2 - Remote File Inclusion ============================================================================================================= o CMSimple - Open Source CMS with no database = Remote File Inclusion Vulnerability Software : CMSimple - Open Source CMS with no database Versio...
CVE-2014-3146
creationtimestamp| type| source ---|---|--- 2014-04-15 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39155...
SFR Box NB6多个跨站脚本漏洞
CVE ID:CVE-2014-1599 SFR Box NB6是一款路由器设备。 通过/network/dns, /network/dhcp, /network/nat, /network/route, /network/lan和/wifi/config传递的输入在返回用户之前缺少过滤,允许远程攻击者利用漏洞注入恶意脚本或HTML代码,当恶意数据被查看时,可获取敏感信息或劫持用户会话。 0 SFR Box NB6 目前没有详细解决方案:...
CVE-2013-7196
creationtimestamp| type| source ---|---|--- 2014-04-05 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39139...
innoEDIT 'innoedit.cgi'远程命令执行漏洞
Bugtraq ID:66367 innoEDIT是一款基于WEB的应用。 innoEDIT 'innoedit.cgi'不正确处理提交给'download'参数的数据,允许远程攻击者利用漏洞提交特殊shell元字符,可以WEB权限执行任意命令。 0 innoEDIT 6.2 目前没有详细解决方案提供: http://www.inno.com.mx/innoedit.htm http://www.mtyjet.com/innoedit/innoedit.cgi?download=;id|...
CVE-2013-7346
creationtimestamp| type| source ---|---|--- 2014-03-24 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39136...
TaoCMS 2.5 /index.php SQL注入漏洞
No description provided by source...
CVE-2013-5954
creationtimestamp| type| source ---|---|--- 2014-03-15 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39117...
CVE-2014-2069
creationtimestamp| type| source ---|---|--- 2014-02-22 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39106...
EasyTalk SQL注入导致后台登录绕过
简要描述: EasyTalk SQL注入导致后台登录绕过 详细说明: 漏洞存在文件:/Admin/Lib/Action/LoginAction.class.php: public function dologin parent::toadmin; $username=$POST'username'; $password=$POST'password'; $authcode=trim$POST'authcode'; if !$username || !$password || !$authcode || $authcode!=$SESSION'authcode'...
Teracom Modem T2-B-Gawv1.4U10Y-BI跨站脚本漏洞
No description provided by source. Exploit Title: Teracom Modem Stored XSS Vulnerability Date: 19-01-2014 Author: Rakesh S Software Link: http://www.teracom.in/ Version: T2-B-Gawv1.4U10Y-BI Tested on: Windows 7 Code : GET...
DomPHP 0.83 - Local Directory Traversal
------------------------------------------------------------- DomPHP = v0.83 Local Directory Traversal Vulnerability ------------------------------------------------------------- = Author : Houssamix = Script : DomPHP = v0.83 = Download : http://www.domphp.com/download/ = BUG : Local Directory...
Cisco Adaptive Security Appliance Identity Firewall NetBIOS Logout Probe Auth State Change Vulnerability
A vulnerability in the NetBIOS logout probe feature of the Identity Firewall IDFW feature of the Cisco Adaptive Security Appliance ASA could allow an unauthenticated, remote attacker to impact the authorization status of users authorized via this feature. The vulnerability is due to insufficient...
CVE-2013-7281
The dgramrecvmsg function in net/ieee802154/dgram.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel stack memory via a 1 recvfrom, 2...
CVE-2014-1915
creationtimestamp| type| source ---|---|--- 2014-01-07 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38957 2014-01-07 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38958...
V5shop官方演示站点一处有意思的逻辑缺陷可泄漏管理员密码
简要描述: 我了个插,一个厂商发3个之后就不挖了,不然有刷rank的嫌疑。 wb都是xsser的,不然他会很伤心的,请别的白帽子也高台贵手。 详细说明: 为啥我会说有意思,难道没意思我会说有意思吗?我不知道你们看完觉得有没有意思。 打开http://site2.v5shop.com.cn/vprostandred/。铺面而来的是 本屌当时就填了个验证码就进去了。看到admin,很高心,于是想要提交,你以为管理是sb吗?这是演示站点啊。虽然你可以进行各种操作,但是你以为官网是sb啊。于是搞的本吊上级下跳,慢慢的审查这个演示后台。突然24k纯金狗眼一亮发现一个地方可以修改密码...
CVE-2013-7192
creationtimestamp| type| source ---|---|--- 2013-12-13 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38884 2013-12-13 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38883...