U.S. Dept Of Defense: Local File Disclosure on the ████████ (https://████/) leads to the source code disclosure & DB credentials leak

Description I discovered another LFD on the https://████/ virtual host on the █████ IP POC https://█████/file.ashx?path=web.config will download the website configuration file. It exposes different DB credentials than in previous reports: ███ Similarly, attacker able to get content of any...

Arbitrary File Download Vulnerability in Wiktionary 51eweb System

Ltd. is a one-stop service company engaging in the service and development of network and related products, and providing professional informatization solutions and other one-stop services for customers. A file download vulnerability exists in the 51eweb system, which can be exploited by an...

CVE-2018-16337

An issue was discovered in Cscms V4.1.8. There is a CSRF vulnerability that can modify a website's basic configuration via upload/admin.php/setting/save...

Cross site request forgery (csrf)

An issue was discovered in Cscms V4.1.8. There is a CSRF vulnerability that can modify a website's basic configuration via upload/admin.php/setting/save...

CVE-2018-16337

An issue was discovered in Cscms V4.1.8. There is a CSRF vulnerability that can modify a website's basic configuration via upload/admin.php/setting/save...

Creditwest Bank CMS Project Cross-Site Request Forgery Vulnerability

The Creditwest Bank CMS Project aka CWCMS is a content management system CMS. A cross-site request forgery vulnerability exists in the Website Configuration Update feature in Creditwest Bank CMS Project 2017-07-28 and prior releases. A remote attacker can exploit this vulnerability to inject...

Ubiquiti Inc.: Subdomain Takeover in http://assets.goubiquiti.com/

Hi there, Its urgent issue about your subdomain http://assets.goubiquiti.com pointing to AWS S3 but no such website configuration is made. This unused subdomain can claim by anyone and fully take over it. An attacker can fully takeover this subdomain and do whatever he wants. this can cause huge...

Oracle Fusion Middleware Remote File Inclusion

A remote file inclusion vulnerability has been reported in the Oracle Reports component of Oracle Fusion Middleware. The vulnerability is due to incorrect website configuration that could allow a remote attacker to execute unauthenticated network attacks over HTTP...

Cherry enterprise website management system V3. 1 vulnerability-the vulnerability warning-the black bar safety net

Vulnerability file: newscategory. asp Set rs = server. CreateObject"adodb. recordset" sql ="select from news where category="&request. QueryString"id"&" order by id desc" rs. Open sql, conn, 1, 1 If rs. EOF Then Vulnerability code: not filtered Vulnerability file admindelete. asp Vulnerability...

Doorgets CSRF Vulnerability

With this vulnerability you can change the configuration of the site. Title Slogan Description Copyright Year of creation Keywords ID Facebook Disqus doorgets-home doorgets-light 0day.today 2018-04-03...

School hassle-free voting system The use of 0day-vulnerability warning-the black bar safety net

Actually, it's not a 0day. Just a thought., recently bored. Disregard on the A5 looked under and found a voting system, rough look, with people a lot, so it is down under, study, the machine is set up to see, the code basically is nothing vulnerability, is my art bad bar, and transfer station, th...

Ajax File Manager File Upload Vulnerability

Exploit for php platform in category web applications ========================================================================= Ajax File Manager File Upload Vulnerability =========================================================================...

DaLogin - Multiple Vulnerabilities

dalogin 2.2 multiple vulnerabilites app desc: Configurable WebSite. PHP + Mysql: news zone with rss feed, private zone, languages, themes, administration panel app source: http://dalogin.sourceforge.net/ author: hc0 1 config file disclosure you can access config.ini file from...

South data get shell summary-vulnerability warning-the black bar safety net

By upfileother. asp vulnerability file taken directly SHELL Directly open userreg. asp for registered members, log in not logged state, use local Upload File Upload code is as follows: HTMLHEAD META http-equiv=Content-Type content="text/html; charset=gb2312" STYLE type=text/cssBODY FONT-SIZE: 9pt...