Lucene search
K
Myhack58Most viewed

7620 matches found

myhack58
myhack58
added 2016/10/29 12:0 a.m.50 views

From Old exploits to new vulnerabilities – iMessage 0day(CVE-2 0 1 6-1 8 4 3) Tap record-vulnerability warning-the black bar safety net

0x01 introduction Note: in the article“0day”in the report to the official after the assigned vulnerability ID: CVE-2 0 1 6-1 8 4 3 A few days ago a foreigner posted a 3 month update to fix iMessage xssVulnerability, CVE-2 0 1 6-1 7 6 4)details:...

6.9AI score0.02645EPSS
Exploits0
myhack58
myhack58
added 2015/09/23 12:0 a.m.50 views

The remote control tool VNC denial of service vulnerability analysis-vulnerability warning-the black bar safety net

Original author: 3 6 0 security guard company account) LR, noirfate Foreword Qemu is a processor simulation software, can provide user-mode simulation and system mode simulation. When in the user mode of the simulation state will be used when dynamic translation technology allows a cpu to build t...

7AI score0.0361EPSS
Exploits1
myhack58
myhack58
added 2015/08/27 12:0 a.m.50 views

Attack the onion routing(Tor)and anonymous service to some of the review-vulnerability warning-the black bar safety net

Tor The Onion Router, the onion router's main purpose is to prevent flow through the filter and Sniffer to spy on the user of the communication Privacy, the majority of the Chinese people familiar with it not because it's encrypted, but because it is a multi-layer node could span the Great Wall o...

6.8AI score
Exploits0
myhack58
myhack58
added 2015/04/13 12:0 a.m.50 views

Hacking the D-Link DIR-890L-vulnerability warning-the black bar safety net

Before 6 months and D-Link are constantly below the belt, to put my whole head spinning with. Today I want to have some fun, visit their website, the result saw the appalling scene: ! D-Link’s $3 0 0 the DIR-890L router This router runs on firmware has many bugs, and the most perverted place that...

Exploits0
myhack58
myhack58
added 2013/04/17 12:0 a.m.50 views

PHP file include vulnerability details(including the truncated method)-vulnerability warning-the black bar safety net

One, what is”remote file inclusion vulnerability”for? The answer is: the server through the php properties of a function to contain any files, since you want to include this file source filter is not strict, so can go to that contains a malicious file and we can construct the malicious file to...

7.4AI score
Exploits0
myhack58
myhack58
added 2013/04/08 12:0 a.m.50 views

The PHP file contains the exploit-vulnerability warning-the black bar safety net

A, PHP configuration in the file contain the use of The file contains a vulnerability that when the programmer in the include file of the process is introduced in the external data submitted by participating in the procedures included the generation of vulnerability, this vulnerability is current...

7.2AI score
Exploits0
myhack58
myhack58
added 2012/07/14 12:0 a.m.50 views

Magento eCommerce Platform XXE Injection exploit-vulnerability warning-the black bar safety net

0x1 In tick-zone xsser the articlezend framework file read vulnerability analysishas reference to magento, the following is one of the original: According to@crickets brother in the clouds on the vulnerability report warns that some open source software because of the use of zend framework's xml...

0.2AI score
Exploits0
myhack58
myhack58
added 2010/06/24 12:0 a.m.50 views

Phpcms 2 0 0 8 yp/job. php script SQL blind injection vulnerability-vulnerability warning-the black bar safety net

Affected version: Phpcms 2 0 0 8 Vulnerability description: Phpcms website management system is the domestic mainstream CMS systems Phpcms the use of yp/job. php script to urldecode function does not properly filter user submitted$genre parameters in the SQL used in the query, a remote attacker c...

8.6AI score
Exploits0
myhack58
myhack58
added 2009/08/09 12:0 a.m.50 views

News website management system vulnerability-vulnerability warning-the black bar safety net

News website management system vulnerabilities author: xk8888888 This system has N of the Year Edition,General government, schools and enterprises with much more, Special permit: to display news NewsView. asp? NewsID= Login login. asp? id=3,The main special permit is available one has a EDIT the...

7.7AI score
Exploits0
myhack58
myhack58
added 2009/06/28 12:0 a.m.50 views

Simple get the IIS Guest account(IUSR_XXX)and the start of the process account(IWAM_XXX)password-vulnerability warning-the black bar safety net

Previously wrote a post thereset IIS Guest accountIUSRXXXand the start of the process accountIWAMXXXpassword on, mainly used in accidentally modify the IIS inside the relevant accounts of the case. Today visiting the Bin cattleaspxspy authorof the Blog when suddenly noticed he had an article...

0.3AI score
Exploits0
myhack58
myhack58
added 2008/12/14 12:0 a.m.50 views

Using Nmap for your Windows network to find vulnerabilities-vulnerability warning-the black bar safety net

That said, If your network is vulnerable, or that your firewall has a vulnerability, or that your server is open shouldn't open ports, then your network is faced with is attack, is the damage of risk. To strike first. To prevent someone else ruin their own network, the first of his own“ruthless”a...

0.2AI score
Exploits0
myhack58
myhack58
added 2008/01/04 12:0 a.m.50 views

The coolest windows Backdoor-vulnerability warning-the black bar safety net

The back door principle: Go to: small Chapter blog http://blog.csdn.net/scz123/archive/2007/03/14/1528695.aspx In windows 2 0 0 0/xp/vista, press shift key 5 times, you can open the sticky position, 会运行sethc.exe and, in the login interface may also be open. It's reminiscent of a WINDOWS...

7.8AI score
Exploits0
myhack58
myhack58
added 2007/09/13 12:0 a.m.50 views

Tencent QQ scene vulnerability to the hack of the law-vulnerability and early warning-the black bar safety net

According to analysys international released the 2 0 0 7 in the first 2 quarters of China im market quarterly monitoring report shows, Chinese active IM software account has reached 3. 7 6 million, which has 2. 9 million active user accounts for Tencent QQ is well deserved IM the king. But did yo...

7.4AI score
Exploits0
myhack58
myhack58
added 2006/11/02 12:0 a.m.50 views

Hack thirty-six of the invasion tactics Count is calculated-vulnerability warning-the black bar safety net

Hacking techniques include 1sneak 2gonna try 3nothing 4. 5the tongue is in the possession of the knife 6steal 7for the third night 8diversion. 9Example 1 0wet water. 1 1outbred recent attack 1 of 2bait and switch 1 3become masters of. Hackers often interlocking, and hard to detect, can not not...

6.9AI score
Exploits0
myhack58
myhack58
added 2006/09/03 12:0 a.m.50 views

How to become a ASP Trojan master-vulnerability warning-the black bar safety net

Name: how to make a picture of the ASP Trojan can display pictures Built an asp file, the content of!-- of i nclude file="ating.jpg"-- 找 一 个 正常 图片 ating.jpg, insert the word Trojan,such as the ice Fox, with ultraedit to hex compiled, insert a picture, in order to run successfully, but also to...

8.1AI score
Exploits0
myhack58
myhack58
added 2006/07/29 12:0 a.m.50 views

How to execute system command in MSSQL-vulnerabilities and early warning-the black bar safety net

Assume that a host opening a 1 4 3 3 ports we have bySQL injectionor empty weak password for remote connection Can have what way to add a system administrator user? or perform a system command 1. XPCMDSHELL cmd.exe /c net user aaa bbb /add Everyone knows the way,the biggest benefit is the return...

Exploits0
myhack58
myhack58
added 2006/03/27 12:0 a.m.51 views

Super strong 2 0 0 0 platform Shell ACKcmd Backdoor analysis-vulnerability warning-the black bar safety net

Description -=-=-=-=--= ACKcmd is to provide a Win2000 under remote command Shell is a backdoor, it uses TCP to transfer, but different from the normal TCP connection a three-way handshake, ACKcmd using only TCP ACK packets, so the General case can pass through firewalls and avoid IDS detection...

0.2AI score
Exploits0
myhack58
myhack58
added 2005/11/08 12:0 a.m.50 views

The most classic hack introductory textbook-vulnerability warning-the black bar safety net

The first section, hack the type and behavior of the To my understanding, the“hackers”generally should be divided into“positive”and“evil”Categories, the decent hackers rely on their own knowledge to help system administrators to identify system vulnerabilities and be improved, while the evil...

7.6AI score
Exploits0
myhack58
myhack58
added 2019/08/30 12:0 a.m.49 views

In-depth analysis of the thread and process handle leak vulnerability, under-vulnerability warning-the black bar safety net

PROCESSVM It covers the VM access permissions three types: WRITE/READ/OPERATION. The first two permissions should be self-explanatory, the third permission allows the operation of the virtual address space itself, such as modifying the page protection VirtualProtectEx or allocating memory with...

7.2AI score
Exploits0
myhack58
myhack58
added 2019/08/12 12:0 a.m.49 views

Steam 0 day vulnerability affects 1 billion users-vulnerability warning-the black bar safety net

! The Steam platform is currently the most popular game platform steam has over 1 million registered users, with millions of users simultaneously participate in the game. Researchers in the Steam games Windows the client found a 0-day privilege escalation vulnerability, exploit the vulnerability...

0.1AI score
Exploits0
myhack58
myhack58
added 2017/09/06 12:0 a.m.49 views

Oracle Java and the Apache Xerces PDF/Docx Server DDOS vulnerability-vulnerability warning-the black bar safety net

One, flaws summary Oracle Java JDK/JRE(1.8.0.131 and earlier versions of the package and the Apache Xerces(2.11.0 version, there are two flaws, two flaws were: The Oracle JDK/JRE and-rebuff-do(DoS)flaws java. net. URLConnection not apply setConnectTimeout when and-rebuff-do. Oracle has received t...

7.1AI score
Exploits0
myhack58
myhack58
added 2017/04/28 12:0 a.m.49 views

The magic of Content-Type to: all versions of the IE browser there is a 0day vulnerability-vulnerability warning-the black bar safety net

We believe that this loophole one day in the future will certainly give you great help. Note that this vulnerability will affect all versions of IE in Win7, And Win8. 1 and Win10 on a test, but MicrosoftEdge not affected by this vulnerability. ! Vulnerability overview The server sends the respons...

0.5AI score
Exploits0
myhack58
myhack58
added 2017/04/21 12:0 a.m.49 views

Dozens of Linksys Router the exposed high-risk vulnerability can lead to remote command execution and sensitive information disclosure-vulnerability warning-the black bar safety net

! From the IOACTIVE researchers recently discovered the presence in the Linksys smart Wifi Router vulnerabilities. Researchers last year purchased a Linksys EA3500 series smart router. This brand before belonging to Cisco, and now belongs to Belkin's, in the Asian Regional market usage is small...

0.1AI score
Exploits0
myhack58
myhack58
added 2017/04/17 12:0 a.m.49 views

For cross-browser local file disclosure vulnerability analysis-vulnerability warning-the black bar safety net

Foreword You know? You can easily turn ordinary file selector into a folder picker, to do this, simply drag the attribute“webkitdirectory”added to the type ='file'in the given input element on the line. Of course, with the folder selector is different, eventually you will load a given folder all...

6.9AI score0.00332EPSS
Exploits1
myhack58
myhack58
added 2017/03/19 12:0 a.m.49 views

Analysis of Kerberos constrained delegation SPN security vulnerabilities-vulnerability warning-the black bar safety net

In the past few years, more and more security researchers began to study Kerberos security, eventually found in support of the authentication Protocol of the network environment a lot of interesting attacks. In this post, I will describe my in the Windows Kerberos constrained delegation feature...

7AI score
Exploits0
myhack58
myhack58
added 2017/03/10 12:0 a.m.49 views

CVE-2016-5483: use mysqldump to backup can generate Backdoor-vulnerability warning-the black bar safety net

mysqldump is used to create a MySQL database, logical backup is a commonly used tool. It is in the default configuration, you can generate one. sql file containing the create/delete tables and insert data. In import the dump file, an attacker may be manufactured by a malicious table name to...

1.3AI score
Exploits0
myhack58
myhack58
added 2016/12/20 12:0 a.m.49 views

CVE-2016-8655 kernel race condition vulnerability the Debug analysis-vulnerability warning-the black bar safety net

12 5 March, hilipPettersson published a piece that already exists Linux kernel up to 5 years of local mention the right vulnerability, affecting virtually all Linux mainstream distributions, a time limelight without the two, no less than some time ago of“Dirty Cow”in. For this black magic...

7.6AI score0.11127EPSS
Exploits16
myhack58
myhack58
added 2016/12/01 12:0 a.m.49 views

joomla create ordinary user vulnerability analysis(cve-2016-8870)-vulnerability warning-the black bar safety net

The experiment environment requirements Joomla version 3. 44 to 3. 63 Vulnerability analysis In joomla there are two user registration method: In the components/comusers/controllers/registration. in php UsersControllerRegistration::register In the components/comusers/controllers/user. in php...

7.3AI score0.82086EPSS
Exploits7
myhack58
myhack58
added 2016/09/14 12:0 a.m.49 views

IE browser exploits technology evolution(II)-vulnerability warning-the black bar safety net

Foreword In a previous article, we talked about some of the early ie related exploits, from the most basic, the most simple stack overflow vulnerability of the use of speaking, to the relatively more complex UAF exploits. Through these exploits evolution, as if we can see the human society from t...

0.3AI score
Exploits0
myhack58
myhack58
added 2016/08/12 12:0 a.m.49 views

Hazards 9 million Android devices a high-pass vulnerability details exposure(CVE-2 0 1 6-3 8 4 2,containing the POC-the exploit-warning-the black bar safety net

! One, Preface Just a few days before, a security research expert in the Qualcomm chip found within a series of severe Android security vulnerability, affected by these vulnerabilities of the Android smartphones and tablets, the number will exceed nine million units. More terrible is, most affect...

7.3AI score
Exploits0
myhack58
myhack58
added 2015/05/23 12:0 a.m.49 views

cve-2 0 1 4-7 9 1 1 Android mention the right vulnerability analysis-vulnerability warning-the black bar safety net

CVE-2 0 1 4-7 9 1 1 by Jann Horn discovered a about Android to mention the right vulnerability, the vulnerability allows malicious applications from the normal application permissions to provide the right to the system user executing the command, the vulnerability information with the POCsee 1 fo...

0.6AI score
Exploits0
myhack58
myhack58
added 2014/12/31 12:0 a.m.49 views

About lei division(NetCore)full-series routers in the“suspected Backdoor”program-vulnerability warning-the black bar safety net

See the recent router Backdoor most is a built-in super password, you can log in directly to the routing management background, or a background on the FTP, it can be any file uploading and downloading, etc., then there is the presence of some very obvious”flaws”, these barely also said in the pas...

0.2AI score
Exploits0
myhack58
myhack58
added 2011/09/22 12:0 a.m.49 views

dede variables covering 0day getshell a exp-vulnerability warning-the black bar safety net

Author: the Black kid dede recently the explosion of the cave, but the exp is also pretty practical huh! 0 1 ! usr/bin/php-w 0 2 ? php 0 3 errorreportingEERROR; 0 4 settimelimit0; 0 5 printr' 0 6 DEDEcms Variable Coverage 0 7 Exploit Author: www.heixiaozi.com www.webvul.com 0 8 ; 0 9 echo"\r\n"; ...

0.6AI score
Exploits0
myhack58
myhack58
added 2011/06/14 12:0 a.m.49 views

JaManaGe enterprise built Station system v2. 0 injection vulnerability-vulnerability warning-the black bar safety net

By:Mr. DzY date:2011/06/11 aManaGe the enterprise built Station system with perfect enterprise website background management functions, can through the background simple operation to achieve a large amount of information updated. Finished Good system, products, news, talent, and customer service...

6.9AI score
Exploits0
myhack58
myhack58
added 2009/12/08 12:0 a.m.49 views

Monopoly provide the right overview-vulnerability warning-the black bar safety net

Preface:webshell provide the right has been is scripts one of the most popular question, of course, is one of the most difficult issues,so I according to their usual mention of the right of some of the methods and network to collect the text Chapter total into this set webshell to mention the rig...

8.5AI score
Exploits0
myhack58
myhack58
added 2008/10/27 12:0 a.m.49 views

Alexander Sotirov the inverse out of the MS08-0 6 7 the problem a function of the pseudo-code-vulnerability warning-the black bar safety net

Author: tombkeeper This Biu vulnerability assigned to a small four. Small four said, Do not worry, someone will refer to this famous, and can be slightly and so on. Sure enough, lunch came up, someone put PoC out. Yesterday evening, the“Father of China PT”and asked if I wanted to write ms08-0 6 7...

0.2AI score
Exploits0
myhack58
myhack58
added 2008/07/23 12:0 a.m.49 views

Published some of Ring3 at the end of the process of skill-vulnerability warning-the black bar safety net

In response to the XHR call, in 2 0 0 8 年 5 月 5, re-finishing, and some new skills. 2 0 0 8 years 7 months 1 3 to increase a skill. All of OpenProcess/ZwOpenProcess/OpenThread/ZwOpenThread can replace the ZwQuerySystemInformation-ZwOpenProcess-ZwDuplicateObject it. Specific is why your own...

0.6AI score
Exploits0
myhack58
myhack58
added 2007/08/18 12:0 a.m.49 views

Abroad joomla storm administrators-vulnerability warning-the black bar safety net

Abroad joomla storm administrator google search:joomla comgmapsa lot Modified:http://target/directory/index. php? option=comgmaps&task=viewmap&Itemid=5 7&mapId=-1//union//select//0,username,password,3,4,5,6,7,8//from//josusers/ Test: 目标 站 :http://allabouthairandtanz.com/index.php Storm out of the...

0.4AI score
Exploits0
myhack58
myhack58
added 2006/12/29 12:0 a.m.49 views

About the database the simple intrusion and rogue damage-vulnerability warning-the black bar safety net

For domestic and foreign a lot of news, BBS and e-Commerce site using ASP+SQL design, and write an ASP programmer many many have just graduated, so, ASP+SQL attack success rate is relatively high. This type of attack method with the NT version and SQL version is not much relationship, there is no...

0.3AI score
Exploits0
myhack58
myhack58
added 2006/08/19 12:0 a.m.49 views

A brush visits to the website of the pony analysis-vulnerability warning-the black bar safety net

Article author: 混世魔王 Information source: evil octal information security team www.eviloctal.com) System patch kick, online blind filling, and actually also in the network of the horse, ay. Now.... Put his net horse down down, 8 wrong, and genuine. Pass to kill 9 8. nt. 2 0 0 0. xp. XP SP2. 2 0 0 ...

0.3AI score
Exploits0
myhack58
myhack58
added 2006/05/26 12:0 a.m.49 views

Super Junior Linux Backdoor method of making-a vulnerability warning-the black bar safety net

A file has an owner, indicating that the file who is create. At the same time, the file there is a group number, indicating that the file belongs to the group, typically the owner of the file belongs to the group. If it is an executable file, then in the implementation, generally the file only ha...

0.6AI score
Exploits0
myhack58
myhack58
added 2019/08/08 12:0 a.m.48 views

Wi-Fi security the future: assessment WPA3 vulnerability in-vulnerability warning-the black bar safety net

Recently, a security research expert Matty Vanhoef and Eyal Ronen on the WPA3 Wi-Fi standards, conducted a safety analysis, and success from which to discover the five security vulnerabilities. Wherein, there are four security vulnerabilities will seriously affect Internet Security, then the next...

7.8AI score
Exploits0
myhack58
myhack58
added 2018/03/05 12:0 a.m.48 views

The researchers found that the 4G LTE network Protocol vulnerability-vulnerability warning-the black bar safety net

Recently, four American University researchers found that a 4G LTE agreement in question, the use of this vulnerability can be false information fabricated, you can also monitor the user and the address of the track. In the 5G is the deployment of the next phase, we should also note that the...

1.6AI score
Exploits0
myhack58
myhack58
added 2017/06/13 12:0 a.m.48 views

Windows 10 the next MS16-098 RGNOBJ integer overflow vulnerability analysis and exploit-vulnerability warning-the black bar safety net

This article with reference to , the text talked about the Windows Kernel Pool Feng Shui, SetBitmapBits/GetBitmapBits to any address read and write, etc. the use of Means, and very helpful in learning the Windows kernel exploits. Test environment: Windows 10 1511 x64 Professional Edition2016.04 2...

0.2AI score
Exploits0
myhack58
myhack58
added 2017/02/04 12:0 a.m.48 views

Windows SMBv3 remote denial of service 0day vulnerabilities-vulnerability warning-the black bar safety net

GMT + 2 on 2 September, the foreign technology website Github exposure Windows SMBv3 the presence of remote attacks 0day vulnerability. According to the disclosure of the vulnerability the authentication code, The POC, the attacker can force the affected system to blue screen crash, this...

0.7AI score
Exploits0
myhack58
myhack58
added 2016/12/14 12:0 a.m.48 views

A directory traversal triggered by the injection and follow-up--XG SDK vulnerability review and reflection-vulnerability warning-the black bar safety net

XG SDK is one of the popular Android app of push SDK, there are quite a few popular Android apps are in use, the paper analysis the version is mainly for 100001workweixin1. 0. 0. apk the version. Vulnerability initially in 2016 4 month of time to submit it to a cloud site, the manufacturer has...

0.4AI score
Exploits0
myhack58
myhack58
added 2016/09/14 12:0 a.m.49 views

On Python vulnerabilities mining those have to mention the thing-vulnerability warning-the black bar safety net

! Foreword Python because of its in the development of larger, more complex application aspects of the unique convenience, so that it in a computer environment becomes more and more indispensable. Although its obvious speech intelligibility and the use friendliness allows the software engineers a...

0.3AI score
Exploits0
myhack58
myhack58
added 2016/03/27 12:0 a.m.49 views

In-depth analysis DLL hijacking vulnerability-vulnerability warning-the black bar safety net

0×0 1. DLL hijacking vulnerability description 1.1 vulnerability profile If the process tries to load a DLL without specifying the DLL's absolute path, then Windows will try to go to the specified directory to find the DLL; if the attacker is able to control which of a certain directory, and put ...

0.4AI score
Exploits0
myhack58
myhack58
added 2016/03/12 12:0 a.m.48 views

SpagoBI remote code execution vulnerability analysis requires authentication permissions-bug warning-the black bar safety net

Today we publish the second article—SpagoBI remote code execution vulnerability. In this article, I want to talk about SpagoBI And SpagoBI is a free open source Business Intelligence Suite, which consists of the Engineering Group's SpagoBI Labswww.eng.it SpagoBI Labs develop and manage, its goal ...

8.8AI score
Exploits0
myhack58
myhack58
added 2016/02/22 12:0 a.m.48 views

File upload vulnerability example analysis-vulnerability warning-the black bar safety net

Principles File upload is a Web application that often appear in the function,it allows users to upload files to the server and saved to a specific location. This security is a very sensitive issue, once the malicious program is uploaded to the server and get the Execute permission, the...

8AI score
Exploits0
Total number of security vulnerabilities5000