Lucene search
K
Myhack58Most viewed

7620 matches found

myhack58
myhack58
added 2011/10/20 12:0 a.m.18 views

Furniture flooring group website the entire Station v1. 0 cookie injection vulnerability-vulnerability warning-the black bar safety net

Source code description: All-round corporate website system-the group of beautiful atmospheric versionDouble version simplified and traditional, the latest optimization background and the keyword version, the anti - SQL injection. Administrator address:../admin/adminlogin. asp Administrator...

0.2AI score
Exploits0
myhack58
myhack58
added 2011/10/20 12:0 a.m.18 views

WHMCompleteSolution (cart.php)local file disclosure flaws and fixes-vulnerability warning-the black bar safety net

Title: WHMCompleteSolution cart.php Local File Disclosure Author: Lagripe-Dz www.badguest.cn Developer: WHMCS WHMCompleteSolution http://whmcs.com/ Affected version: 3. x. x , 4.0. x Test platform: linux+apache Defect file: cart.php --------- Code analysis: --------- if $a == "add" $templatefile...

0.2AI score
Exploits0
myhack58
myhack58
added 2011/10/14 12:0 a.m.18 views

shopex password retrieve at the newly generated password may predict vulnerability-vulnerability warning-the black bar safety net

Brief description: shopex in the password place, there are some logic design problems, the cause can be predicted the newly-generated password may be used to attack acquiring others passwords Detailed description: The relevant code /core/shop/controller/ctl. passport. php: function sendPSW...

0.4AI score
Exploits0
myhack58
myhack58
added 2011/10/14 12:0 a.m.18 views

Wind noise dotNETCMS 0day-vulnerability warning-the black bar safety net

Brief description: File upload Detailed description: Vulnerability in the user page, the registered user. Article management, upload of.. Select the file name unchanged.... Upload 1. asp;,jpg And then you know Vulnerability to prove: ! ! !...

1.5AI score
Exploits0
myhack58
myhack58
added 2011/10/06 12:0 a.m.18 views

Easy Hosting control panel to manage authentication bypass the defect and repair-vulnerability warning-the black bar safety net

Title: Easy Hosting Control Panel Admin Auth Bypass Author: Jasman www.2cto.com Download address: https://launchpad.net/ehcp & amp; http://www.ehcp.net Affected version: 0.29.10 - 0.29.13 Test platform: Ubuntu, Debian Overview Easy Hosting Control Panel designed for hosting of multiple domains on...

0.5AI score
Exploits0
myhack58
myhack58
added 2011/08/31 12:0 a.m.18 views

Enterprise to food industry website source code 1.0 injection vulnerabilities and fixes-vulnerability warning-the black bar safety net

by Mr. DzY from www.0855.tv This system seems to be in the 0 to 5 year development. Is not the original work, to research it! The modified switch. Source code download: Demo address: Default backend: system/index. asp EXP: the union select 1,2,3,username,password,6,7,8,9,1 0,1 1,1 2 from nwebadmi...

7.3AI score
Exploits0
myhack58
myhack58
added 2011/08/06 12:0 a.m.18 views

Taoyuan Network Hard Drive&IIS6. 0 parsing vulnerability and the Fix-vulnerability warning-the black bar safety net

IIS6. 0 filename parsing vulnerability, as long as the use IIS6. 0 of Taoyuan Network Hard Drive to upload a php Trojan:1 2 3;asp;123.jpg that Then through the show. aspx? type=1&filepath=http://www. badguest. cn/the method takes a file path, The last to perform, you can. Repair: frequently asked...

1.8AI score
Exploits0
myhack58
myhack58
added 2011/07/29 12:0 a.m.18 views

iGiveTest 2.1.0 injection vulnerability-vulnerability warning-the black bar safety net

Version: = 2.1.0 Homepage: http://iGiveTest.com/ Google keywords: “Powered by iGiveTest” Just register for an account. And then the storm of the administrator account and password http://www.xxxx.com/users.php?action=groups&order=-1&the userids=-1 union select...

3.2AI score
Exploits0
myhack58
myhack58
added 2011/07/23 12:0 a.m.18 views

evin Basic PHP Events Lister v2. 0 3 CSRF flaws and fixes-vulnerability warning-the black bar safety net

Author: CrazyHacker Script: Mevin Basic PHP Events Lister v2. 0 3 Exploit type: CSRF Vulnerability Add & Delete Admin Download: php-events-lister2.03.zip"http://www.mevin.com/downloads/Basic-php-events-lister2.03.zip Risk: High Contact: [email protected] form name="setup" action="...

7.3AI score
Exploits0
myhack58
myhack58
added 2011/07/12 12:0 a.m.18 views

EC_word enterprise management system injection exploit-vulnerability warning-the black bar safety net

The program uses maple General-purpose anti injection 1. 0 asp Edition, this anti-injection completely tasteless, the site program proshow. asp with cookies to injection, or variant of the injection, before injection can first determine what number of fields: ORdeR By xx Injected statement: ANd 1...

0.9AI score
Exploits0
myhack58
myhack58
added 2011/07/05 12:0 a.m.18 views

VietNext cms multiple defects and repair-vulnerability warning-the black bar safety net

Exploit Title:Multiple Vulnerabilities + Date: 2 0 1 1 + script:VietNext cms + Software: http://vietnextco.com & amp; http://vietnext.vn + Author : pentesters. ir + Website : WwW.PenTesters.IR + dorks :"Developed & Design By VietNext" and "Design by VietNext"...

7.4AI score
Exploits0
myhack58
myhack58
added 2011/06/13 12:0 a.m.18 views

eFront add administrator CSRF vulnerability-vulnerability warning-the black bar safety net

Vulnerability description: eFront is a tool for small and medium businesses, schools, government provide a PHP content management system, due to design defect, causing the remote to add the management, modification Management, Configuration, etc. multiple cross-site request forgery...

7.1AI score
Exploits0
myhack58
myhack58
added 2011/06/12 12:0 a.m.18 views

Pacer Edition CMS 2.1 (l param)local file inclusion flaw and fix-vulnerability warning-the black bar safety net

Pacer Edition CMS 2.1 l param Local File Inclusion Vulnerability Vendor: The Pacer Edition Product web page: http://www.thepaceredition.com Affected version: RC 2.1 SVN: 8 6 7 Summary: The 'Pacer Edition' is a Content Management SystemCMS written using PHP 5.2.9 as a minimum requirement. The Pace...

6.9AI score
Exploits0
myhack58
myhack58
added 2011/05/31 12:0 a.m.18 views

Upload file to cause arbitrary code execution-vulnerability warning-the black bar safety net

Foxmail Server is designed for people design mail server software,offering a variety of mail services, the user can use Foxmail, Outlook and other client software to send and receive messages, also can be in a beautiful and easy to use Chinese language on the Web interface login processing mail...

1.3AI score
Exploits0
myhack58
myhack58
added 2011/05/21 12:0 a.m.18 views

Good subtle Bo then burst IIS parsing upload vulnerability and fix-vulnerability warning-the black bar safety net

By: the joken's, wdlei Recently, webmasters Download Station on a good subtle Bo program and update. Update Time 2 0 1 0 year 7 month 1 3 day, update the skin and modify the upload vulnerabilities, but still exist vulnerability issues. Vulnerability file: UpFileForm. asp Code: html head meta...

7.3AI score
Exploits0
myhack58
myhack58
added 2011/05/17 12:0 a.m.18 views

Scarecrow enterprise Station management system wide byte injection exploit-vulnerability warning-the black bar safety net

Scarecrow enterprise Station based on php+sqlite and php+mysql two versions, php+sqlite features and asp+access almost,the advantage is in favor of the backup, now mostly web space to support php+sqlite. php+mysql features is conducive to processing large amounts of data, but backup and restore i...

0.4AI score
Exploits0
myhack58
myhack58
added 2011/04/18 12:0 a.m.18 views

pub918 software company website system 1. 3 the presence of multi-vulnerability-vulnerability warning-the black bar safety net

pub918 software company site system is a great-looking corporate type website Background Username Password admin Download: http://www.mycodes.net/25/4040.htm Background: admin/ Default database: admin/db/N%2 3%23ews. mdb 1, The ewebeditor problem. Path:...

1.2AI score
Exploits0
myhack58
myhack58
added 2011/04/03 12:0 a.m.18 views

Real player 14.0.2.633 0day Buffer overflow/DOS Exploit-vulnerability warning-the black bar safety net

Real player 14.0.2.633 0day Buffer overflow/DOS Exploit Great。。。。。 real player...... 0day...... !/ usr/bin/perl +Exploit Title: Real player 14.0.2.633 Buffer overflow/DOS Exploit +Software Link: www.soft32.com/download122615.html +Software: Real player +Version: 14.0.2.633 +Tested On: WIN-XP SP3 ...

0.7AI score
Exploits0
myhack58
myhack58
added 2011/03/10 12:0 a.m.18 views

boblog arbitrary variable overwrite vulnerability(a)-vulnerability warning-the black bar safety net

by Ryatpuretot mail: puretot at gmail dot com team: http://www.80vul.com Vulnerability code is as follows: // go.php $qurl=$SERVER"REQUESTURI"; @list$relativePath, $rawURL=@explode'/go.php/', $qurl; $rewritedURL=$rawURL; // from$SERVER"REQUESTURI",can be arbitrarily submitted:...

0.9AI score
Exploits0
myhack58
myhack58
added 2011/03/01 12:0 a.m.19 views

dedecms latest vulnerability-vulnerability warning-the black bar safety net

Say the following using the method: registered members, upload software: the local address is filled into a/dede:linkdede:toby57 name="'=0;phpinfo;//"x/dede:toby57, published after the review or modification can be performed. Generated by parsing the file content is as follows: ! After the succes...

2.2AI score
Exploits0
myhack58
myhack58
added 2011/01/29 12:0 a.m.18 views

dircms XSS vulnerability and the use of the method and fix-vulnerability warning-the black bar safety net

| XSSvulnerabilityfile: The online submission function Because of this you do not need to register Membership then the draft before a lot of stations to prohibit registered members Classic white look at the code 1 $info'content'=addalt$info'content',$info'title'; //////////////////////automatical...

0.5AI score
Exploits0
myhack58
myhack58
added 2011/01/18 12:0 a.m.18 views

ESPCMS 0day vulnerability analysis-vulnerability warning-the black bar safety net

Publishing author:★black kid★ Affected versions: unknown Official website: http://www.ecisp.cn Vulnerability type: COOKIES cheat Vulnerability description: made of COOKIES after the Modify to deceive, into the background upload in jpg structure Getshell it. Code analysis: function...

7.2AI score
Exploits0
myhack58
myhack58
added 2010/12/31 12:0 a.m.18 views

WordPress blog personal publishing platform 0DAY-vulnerability warning-the black bar safety net

Framework of the preceding article was not allowed to tell me more about some interesting unpublished vulnerabilities and banal omissions WordPressSo now you'll be able to read the continuation of the penetration-testing of the famous blogging platformHere we go! Statistics To begin, I want to ci...

7.2AI score
Exploits0
myhack58
myhack58
added 2010/10/10 12:0 a.m.18 views

Network fun online shopping system fashion version 1 0. 3 injection vulnerability-vulnerability warning-the black bar safety net

Network fun online shopping system fashion version 1 0. 3 in the member login to edit an order at the presence ofSQL injection, to cause the administrator password is injected into the storm of the MD5 vulnerability. Vulnerability:file editorderform. asp, the presence ofsql injectionvulnerability...

0.1AI score
Exploits0
myhack58
myhack58
added 2010/10/10 12:0 a.m.18 views

Feindura File Manager 1.0 remote upload vulnerability-vulnerability warning-the black bar safety net

Feindura file management system V1. 0 Upload only to verify the file header, resulting in the CAN by the file header spoofing bypasses the upload of any file. Test use: upload shell file the first row is added GIF81a http://www.chinasg.tk/path/library/thirdparty/filemanager/...

1.3AI score
Exploits0
myhack58
myhack58
added 2010/10/04 12:0 a.m.18 views

ecshop modify any user password vulnerability XSS exploit-vulnerability warning-the black bar safety net

Currently ecshop presence of the reflection typeXSS, you can use, if the secondary development existXSSor other CSRF problem, then use more. Once encountered this problem, slightly affected by its damage) ByXSSstructure post submission of personal information is modified, the modification is...

0.1AI score
Exploits0
myhack58
myhack58
added 2010/09/18 12:0 a.m.18 views

Phpcms2008 local file inclusion vulnerabilities and using: an arbitrary SQL statement execution-vulnerability warning-the black bar safety net

Author: oldjun Recently been made an afterthought, so be despised; but there's no way to make the head of the bird is also people laughing at you! Anyway, these things throw me here also no use, will only rot in the hard disk! Thus, as long as a little wind blows grass move, I'll publish it. The...

0.7AI score
Exploits0
myhack58
myhack58
added 2010/07/17 12:0 a.m.18 views

Struts2/XWork < 2.2.0 remote execution of arbitrary code vulnerability analysis and patch-vulnerability warning-the black bar safety net

Neeao's Blog http://neeao.com/ : 1. exploit-db website on 7 month 1 4 day broke aStruts2 remote execution of arbitrary code vulnerabilityvulnerability, hazard of large, can be described as a crack shot, directly to the root, as long as the use Struts2 and webwork framework of the system for the...

0.7AI score
Exploits0
myhack58
myhack58
added 2010/06/17 12:0 a.m.18 views

DDLCMS v2. 1 Remote File inclusion vulnerability-vulnerability warning-the black bar safety net

DDLCMS v2. 1 program thanks. php page there is a remote file inclusion vulnerability Vulnerability file:thanks.php Code: includeWWWROOT . 'skins/' . $skin . '/header.php'; // line 46 includeWWWROOT . 'leftside.php'; Poc: the"skin" parameter in FILE thanks.php is not Defined which can allow remote...

2.8AI score
Exploits0
myhack58
myhack58
added 2010/05/07 12:0 a.m.18 views

phpcms 2 0 0 8 yp.php 0day exp-vulnerability warning-the black bar safety net

? php iniset“maxexecutiontime”,0; errorreporting7; function usage global $argv; exit “\n–+++============================================================+++–”. “\n–+++====== PhpCms 2 0 0 8 Sp3 Blind SQL Injection Exploit========+++–”...

Exploits0
myhack58
myhack58
added 2010/04/26 12:0 a.m.18 views

SHOPXP online shopping system v10. 3 1 injection vulnerability Exp-vulnerability warning-the black bar safety net

Limitations is very big, also is the background a file didn't do the filter. So yeah, a lot of stations changed the background, so is useless. EXP: !-- ShopXpOday -- !-- inurl:xpCatalogxpDesc. asp? actionkeyorder= Or inurl:shopxpnews. asp - form action="" method="post" label div align="left"ShopX...

7.2AI score
Exploits0
myhack58
myhack58
added 2010/04/20 12:0 a.m.18 views

Simple forged X-Forwarded-For-bug warning-the black bar safety net

On the forged X-Forwarded-For purposes I will not say more. In the invasion of a PHP station, the GPC is ON, Character type injection all., while in PHP5, the GPC the default is open. But GPC for$SERVER without any effect, So you can fake the$SERVER to achieve the injection to the purpose. IP. in...

7.5AI score
Exploits0
myhack58
myhack58
added 2010/04/19 12:0 a.m.18 views

FreeBSD 6.4 root shell exploit 0 day-vulnerability warning-the black bar safety net

The following code exploit the vulnerability to run in kernel-mode code if 0 FreeBSD 6.4 and below are vulnerable to race condition between pipeclose and knlistcleardel resulting in NULL pointer dereference. The following code exploits the vulnerability to run code in kernel mode, giving root she...

0.2AI score
Exploits0
myhack58
myhack58
added 2010/04/15 12:0 a.m.18 views

Le tour travel site management system v1. 7. 3 xday-vulnerability warning-the black bar safety net

The exploit procedure: First: The administrator directory under AdminPassod. asp !-- include file="../Include/conn. asp" - !-- include file="../Include/md5. asp" - % select case request. QueryString"Action" case "ModifyPass" SaveNewPass case else end select set rs = server. createobject"adodb...

Exploits0
myhack58
myhack58
added 2010/04/01 12:0 a.m.18 views

Hidden WEBSHELL-vulnerability warning-the black bar safety net

%if request. QueryString"hac"="ker" then a=Request. TotalBytes:if a Then b="adodb. stream":Set c=Createobjectb:c. Type=1:c. Open:c. The Write Request. BinaryReada:c. Position=0:d=c. Read:e=chrB1 3&chrB 1 0:f=Instrbd,e:g=Instrbf+1,d,e:set h=Createobjectb:h. Type=1:h. Open:c. Position=f+1:c. Copyto...

0.8AI score
Exploits0
myhack58
myhack58
added 2010/03/25 12:0 a.m.18 views

Discuz! NT3. 0 background to get shell-vulnerability warning-the black bar safety net

Author: icysun Himself not to engage in a good long time to figure out how to get the shell Into the back we can know that the website path, this is important Direct export word Select from table1 into outfile 'c:\test.txt' this is no good, don't know where I wrong, or is simply not on. So we can...

1.4AI score
Exploits0
myhack58
myhack58
added 2010/03/12 12:0 a.m.18 views

Zoomla! By the waves of CMS3. 2 0day-vulnerability warning-the black bar safety net

Zoomla! By wave CMS is a powerful website, the kernel and management system,integrated content management\OA\SNS\project\capture\mail subscriptions, and other powerful functions,based on the clanguage. net architecture development,is currently the only sync support MSSQL and Oracle, two large...

Exploits0
myhack58
myhack58
added 2010/03/04 12:0 a.m.18 views

Sablog-X 2.0 COOKIE spoofing exploit-vulnerability warning-the black bar safety net

Vulnerability file: cp.php Specific code, please see the text behind Cheat cookie: saxauth=MQkJ;saxhash=abcdef; Get the webshell methods: Template Manager-edit template-tag list-write a sentence ! The Trojan path http://url/templates/default/tag.php the word connection end cp. php vulnerability...

0.3AI score
Exploits0
myhack58
myhack58
added 2010/02/26 12:0 a.m.18 views

In ASP the database insert webshell small conference-vulnerability warning-the black bar safety net

Some time ago, the new cloud management system, dynamic network Forum get a WEBSHELL and this, today, we discuss this aspect of things, in fact, ASP database plug horse also is not what fresh stuff, believe you played this. Oh, and that you have not met insert the asp code is spaces apart case?...

7.2AI score
Exploits0
myhack58
myhack58
added 2010/02/23 12:0 a.m.18 views

Database Password Hashes Cracking-vulnerability warning-the black bar safety net

SQL Server 2 0 0 0:- SELECT password from master. dbo. sysxlogins where name='sa' 0×010034767D5C0CFA5FDCA28C4A56085E65E882E71CB0ED250341 2FD54D6119FFF04129A1D72E7C3194F7284A7F3A 0×0 1 0 0 - constant header 34767D5C - salt 0CFA5FDCA28C4A56085E65E882E71CB0ED250341 - case senstive hash...

0.9AI score
Exploits0
myhack58
myhack58
added 2010/01/18 12:0 a.m.18 views

cuteeditor using the method of two-vulnerability and early warning-the black bar safety net

Author: m@w01f 1. Direct Download load. ashx configuration file http://www.7747.net/CuteSoftClie ... ../../../web. config Then view some of the sql configuration information from the sql database connection to start with connectionStrings add name="ynncConnectionString" connectionString="Server=....

7AI score
Exploits0
myhack58
myhack58
added 2010/01/13 12:0 a.m.18 views

On plesk virtual host to mention the right-vulnerability warning-the black bar safety net

This virtual machine in a foreign country relatively popular. Safety performance is also very high, where the next record to mention the right methods. 1. mysql adminthe original rootand the default passwordsetupdidn't change,by mysql to provide the right 2. Parallels Plesk Control Panel,in 8 8 8...

0.3AI score
Exploits0
myhack58
myhack58
added 2010/01/13 12:0 a.m.18 views

The corporate website is black universal vulnerability-the vulnerability warning-the black bar safety net

The corporate website is black universal vulnerability Webmasters runaway revenge only in this document to each enterprise network administrator, I hope for your help - The runaway revenge 1, The default account and password General network company for the enterprises to do the website or the...

0.4AI score
Exploits0
myhack58
myhack58
added 2010/01/06 12:0 a.m.18 views

PcAnyWhere connection on after the black screen issue-bug warning-the black bar safety net

The reason is the previous even people not normally disconnected. In this case first use the PCANYWHERE connection on, although can't see the screen, but other management operations can still be done. In the master-end management inside look at the process 找到 awhost32.exe end off. Then re-connect...

1.9AI score
Exploits0
myhack58
myhack58
added 2009/12/21 12:0 a.m.18 views

dedecms latest injection vulnerability-vulnerability warning-the black bar safety net

dedecms5. 3 and 5. The 5-Series version, there is a major injection vulnerability, Author:Zhang Heng Suppose domain name is:www. abc. com attack steps are as follows: 1. Visit the URL: http://www.abc.com/plus/diggframe.php?action=good&id=1 0 2 4% 6 5 1 0 2 4&mid=/eval$POSTx;vardump3;?& gt; 2...

7.7AI score
Exploits0
myhack58
myhack58
added 2009/12/13 12:0 a.m.18 views

Permission to use the highest system of accounts-vulnerability warning-the black bar safety net

One, at the command line to end the explorer process taskkill /f /im explorer.exe Second, the plan task start an interactive interface at 1 3:3 0 /interactive explorer.exe You must open the Task Scheduler service, the default is open. So when the 1 3:3 0 when the explorer process to the system us...

0.8AI score
Exploits0
myhack58
myhack58
added 2009/11/24 12:0 a.m.18 views

Meters topology information background upload vulnerability(Bincker)-vulnerability warning-the black bar safety net

Vulnerability description: See background upload page h t t p : / /localhost/admin/include/uploadfile.php ? php requireonce '../login/logincheck.php'; $cssurl="../templates/".$ metskin."/ css"; $imgurl="../templates/".$ metskin."/ images"; ?& gt; html head meta http-equiv="Content-Type"...

6.9AI score
Exploits0
myhack58
myhack58
added 2009/11/24 12:0 a.m.18 views

Joomla! sql injection vulnerability-vulnerability warning-the black bar safety net

Joomla! the iF Portfolio Nexus Component ’id’ sql injection vulnerability The following example URIs are available: http://www.example.com/services/portfolio?view=item&;id=-100%20union%20all%20select%2 0 1,version%2 8%29,3,4,5,6,7,...

1.6AI score
Exploits0
myhack58
myhack58
added 2009/10/22 12:0 a.m.18 views

Master of advanced clever change settings enhanced 3 3 8 9 intrusion-vulnerability warning-the black bar safety net

Many of my friends using the input by 3 3 8 9 port someone else's Server, be found in connection to the other machine, not like the network computer that can pass each file, which to a large extent, so that after the attack greatly reduced, in fact, hit on Microsoft's own“patch”can fix this...

0.3AI score
Exploits0
myhack58
myhack58
added 2009/10/12 12:0 a.m.18 views

DEDECMS 5.1 feedback_js.php 0DAY-vulnerability warning-the black bar safety net

Author:st0p&Rainy'Fox The same is on magicquotesgpc=off case available Vulnerability version:DEDECMS 5.1 This vulnerability can get to the backend Administrator's account and the encrypted HASH,漏洞 存在 文件 plus/feedbackjs.php,not a Filter parameter for$arcurl ...... $urlindex = 0; ifempty$arcID $row...

7.9AI score
Exploits0
Total number of security vulnerabilities5000