Lucene search
K
Myhack58Most viewed

7620 matches found

myhack58
myhack58
added 2009/07/05 12:0 a.m.48 views

With a simple asp Trojan back door, to find a asp Backdoor Trojan-exploit-warning-the black bar safety net

I waited for the side dishes yourself not write to asp of the horse, only with prawns to write, but the online streaming of all don't know is the several hand, it is inevitable that some ill-intentioned people will be on the inside plus the back door. Finally get to a shell and be someone stole h...

7.5AI score
Exploits0
myhack58
myhack58
added 2017/02/21 12:0 a.m.48 views

TEW-654TR router vulnerability analysis and mining-vulnerability warning-the black bar safety net

Read the complete devttys0 predecessors of”exploiting embedded systems”series. Analysis under the relevant firmware router model: TEW-654TR firmware download address: http://download.trendnet.com/TEW-654TR/firmware/ 0×01 environment settings ! !/ bin/bash INPUT="$1" LEN=$echo-n "$INPUT" | wc-c...

7.6AI score
Exploits0
myhack58
myhack58
added 2017/02/07 12:0 a.m.47 views

WordPress REST API content injection vulnerability analysis-vulnerability warning-the black bar safety net

Author: Lucifaer 0x00 vulnerability description 1. Vulnerability description In the REST API automatically included in Wordpress4. 7 or more version, the WordPress REST API provides a set of easy-to-use HTTP endpoint, you can use the user in a simple JSON format to access the site's data,...

7.1AI score
Exploits0
myhack58
myhack58
added 2016/12/14 12:0 a.m.47 views

A directory traversal triggered by the injection and follow-up--XG SDK vulnerability review and reflection-vulnerability warning-the black bar safety net

XG SDK is one of the popular Android app of push SDK, there are quite a few popular Android apps are in use, the paper analysis the version is mainly for 100001workweixin1. 0. 0. apk the version. Vulnerability initially in 2016 4 month of time to submit it to a cloud site, the manufacturer has...

0.4AI score
Exploits0
myhack58
myhack58
added 2016/05/04 12:0 a.m.47 views

WordPress Typecho xmlrpc vulnerability-vulnerability warning-the black bar safety net

Generally we are concerned with WordPress, after all, the amount of users is huge, while the domestic Typecho as a lightweight blogging system on the concern of the people is not much. Typecho has a lot to draw on WordPress, including a compatible xmlrpc interface, and the WordPress of this...

Exploits0
myhack58
myhack58
added 2016/04/02 12:0 a.m.47 views

Recent js blackmailer anti-killing skills analysis-vulnerability warning-the black bar safety net

Recently many users reflect the computer in a blackmailer virus, also known as the“Locky ransomware”, the computer in documents, pictures and other important information is virus encryption. Such viral vectors for the js script by js script download remote server of the pe file, and that this pe...

7.5AI score
Exploits0
myhack58
myhack58
added 2016/03/12 12:0 a.m.47 views

SpagoBI remote code execution vulnerability analysis requires authentication permissions-bug warning-the black bar safety net

Today we publish the second article—SpagoBI remote code execution vulnerability. In this article, I want to talk about SpagoBI And SpagoBI is a free open source Business Intelligence Suite, which consists of the Engineering Group's SpagoBI Labswww.eng.it SpagoBI Labs develop and manage, its goal ...

8.8AI score
Exploits0
myhack58
myhack58
added 2015/11/22 12:0 a.m.48 views

Redis event a comprehensive analysis-vulnerability warning-the black bar safety net

redis unauthorized access has not been valued, until the 1 1 on No. 4, and in this article on being broke: the redis you can write into the SSH Key and then control the server, the security personnel started a lot of attention to this event. 0×0 1 vulnerability profile Exposed in public of redis ...

0.1AI score
Exploits0
myhack58
myhack58
added 2015/05/15 12:0 a.m.47 views

Vulnerability warning:“venom(VENOM”the vulnerability affects millions worldwide virtual machine security-vulnerability warning-the black bar safety net

! CrowdStrike, the company security researchers said that a named“venom(VENOM”QEMU could allow millions of virtual machines in a cyber-attack risk, the vulnerability can cause the virtual machine to escape, the threat to the world's largest cloud service provider's data security. QEMU is an...

7.7CVSS0.6AI score0.15275EPSS
Exploits1
myhack58
myhack58
added 2013/05/05 12:0 a.m.47 views

A section of the asp of the cms application injection vulnerabilities-vulnerability warning-the black bar safety net

Brief description: Google Baidu search keyword inurl:HomeMarket. asp in the domain name behind add the following code to blast out the management account password/NewsType. asp? SmallClass='%20union%20select%2 0 0,username%2BCHR1 2 4%2Bpassword,2,3,4,5,6,7,8,9%20from%20admin%20union%20select%2...

0.6AI score
Exploits0
myhack58
myhack58
added 2010/11/29 12:0 a.m.47 views

ecshop v2. 7 2 demo/index. php file getshell vulnerabilities-vulnerability warning-the black bar safety net

//------------------------------------------------------------- Release date: 2010-11. 2 6 Publishing author: xhming Affected version: ecshop v2. 7 2 Official address: Vulnerability type: code execution Vulnerability description: Vulnerability analysis: demo/index.php if ! empty$POST'lang'...

0.4AI score
Exploits0
myhack58
myhack58
added 2010/04/17 12:0 a.m.47 views

Wind crossing technology ASP online shopping system 0 9 0 5-1 injection vulnerability-vulnerability warning-the black bar safety net

Wind crossing technology ASP online shopping system 0 9 0 5-1 Multi-file exists injection vulnerability Relates to document: proshow. asp, new. asp and the like. ! Size: 132.91 K Size: 5 0 0 x 3 9 1 Browse: 0 times Click to open a new window to browse the full map! Size: 88.01 K Size: 5 0 0 x 3 9...

7.5AI score
Exploits0
myhack58
myhack58
added 2009/08/18 12:0 a.m.47 views

Under Linux the rebound CmdLine Shell tips-vulnerability warning-the black bar safety net

Last nightshould be early this morningplaying for a long time friend of Linux WebShell, and wanted to practice what UDEV to provide the right it, and finally found that the server seems to have been patched. But still there are other harvest, so I just YY under Linux to bounce a shell problem...

7.7AI score
Exploits0
myhack58
myhack58
added 2008/12/20 12:0 a.m.47 views

3 0 seconds it is possible to crack the system and all password-vulnerability warning-the black bar safety net

Case a:strong check""tools Open the software,the"X"icon,directly drag into the need to view the password in the window that you can Download address: http://work.newhua.com/cfan/200622/xpass.zip This is not my real password is... Oh ! ---------------------------------------------------- Case...

6.4AI score
Exploits0
myhack58
myhack58
added 2008/07/27 12:0 a.m.47 views

The big data library default address-vulnerability warning-the black bar safety net

data/dvbbs7. mdb Action Network Forum database /databackup/dvbbs7. mdb Action Network Forum database /bbs/databackup/dvbbs7. mdb Action Network Forum database /admin/data/qcdnnews. mdb green to create article management system database /data/qcdnnews. mdb green to create article management system...

0.2AI score
Exploits0
myhack58
myhack58
added 2006/12/29 12:0 a.m.47 views

About the database the simple intrusion and rogue damage-vulnerability warning-the black bar safety net

For domestic and foreign a lot of news, BBS and e-Commerce site using ASP+SQL design, and write an ASP programmer many many have just graduated, so, ASP+SQL attack success rate is relatively high. This type of attack method with the NT version and SQL version is not much relationship, there is no...

0.3AI score
Exploits0
myhack58
myhack58
added 2005/09/21 12:0 a.m.47 views

The use of TCP hidden channels to bypass the firewall-vulnerability warning-the black bar safety net

From:http://www. oioj. net/ my home ISP a free personal home page service, in the days that followed, I often passed 3 3 8 9 Port to log in, constantly to the IT patch patch the vulnerability, do some management and maintenance, own also grow a lot of knowledge. Recently delving intonetworksecuri...

7.2AI score
Exploits0
myhack58
myhack58
added 2018/03/05 12:0 a.m.46 views

The researchers found that the 4G LTE network Protocol vulnerability-vulnerability warning-the black bar safety net

Recently, four American University researchers found that a 4G LTE agreement in question, the use of this vulnerability can be false information fabricated, you can also monitor the user and the address of the track. In the 5G is the deployment of the next phase, we should also note that the...

1.6AI score
Exploits0
myhack58
myhack58
added 2017/10/11 12:0 a.m.46 views

To expose the spike Trend Micro multiple products RCE vulnerability flaws bug-a vulnerability warning-the black bar safety net

The framework of the network security of ever more and more give rise to a network security staff to the presence of dependents, for example, the Apache Struts case because within the framework of a wide range of vulnerabilities flaws bug the excitation of the network hits the firing presumably...

7.7AI score
Exploits0
myhack58
myhack58
added 2017/08/02 12:0 a.m.46 views

See how I through subdomain takeover to bypass the Uber Single Sign-On authentication mechanism-vulnerability warning-the black bar safety net

! Uber to use the Amazon CloudFront CDN architecture website saostatic. uber. com there is a subdomain of the security vulnerability, an attacker take over. In addition, Uber recently deployed in the site auth. uber. com, based on Uber all the subdomain cookie sharing to achieve authentication of...

Exploits0
myhack58
myhack58
added 2017/05/26 12:0 a.m.46 views

Wechat appeared“remote pop exploit”has been maxed circle of friends in reference to specific play-a vulnerability warning-the black bar safety net

This morning a 5 month 26 day, micro-channel circle of friends have a lot of friends to the lei Feng network reflect: wechat appearedXSSvulnerabilities that can be in a friends phone, remote pop up! The black bar safety net in accordance with the User Instructions, go to wechat search friends...

0.3AI score
Exploits0
myhack58
myhack58
added 2017/05/23 12:0 a.m.46 views

Bitdefender in processing PE code signing the organizationName field when there is buffer overflow vulnerability-vulnerability warning-the black bar safety net

A vulnerability summary This paper describes the Bitdefender PE engine in the presence of a buffer overflow vulnerability. Bitdefender provides“anti-malware antimalware”of the engine, the engine can be integrated to other security vendors ' products, Bitdefender in their products, such as...

0.9AI score
Exploits0
myhack58
myhack58
added 2017/05/05 12:0 a.m.46 views

NSA Fuzzbunch in EaseBee the use of research methods and MDaemon vulnerability analysis-vulnerability warning-the black bar safety net

0X01 overview EaseBee is the NSA-developed for the mail system, MDaemon code execution vulnerability a tool, which supports multiple version of MDaemon is a well-known standard SMTP/POP/IMAP mail service system, by the American Alt-N company development. It provides full mail server functionality...

0.3AI score
Exploits0
myhack58
myhack58
added 2017/04/11 12:0 a.m.46 views

The Word exposed 0day vulnerabilities: no need to enable the macros, open the document it automatically install a malicious program-vulnerability warning-the black bar safety net

! In fact, the use of Word macros as the distribution of malicious programs is the way today's conventional via, so many people choose to disable macros, but if you say disable the macros are useless, such a malicious Word document danger is quite different. Recently, McAfee and FireEye security...

7.6AI score
Exploits0
myhack58
myhack58
added 2017/04/09 12:0 a.m.46 views

The operating system found 40 0day vulnerabilities, Samsung developers what the hell are you doing? - Vulnerability warning-the black bar safety net

Event overview Tizen is Samsung's ownoperating system, currently millions of Samsung products are installed to thisoperating system, but a security researcher recently in the Tizen system The found forty-one previously undiscovered 0day vulnerabilities. Just last month, the Wikileaks leak of CIA...

8.8AI score
Exploits0
myhack58
myhack58
added 2017/02/10 12:0 a.m.46 views

Wordpress content injection vulnerability induced Super of 67,000 a site being black production use-vulnerability warning-the black bar safety net

! http://p7.qhimg.com/t0103be813526052f73.jpg From the latest WordPress vulnerability over 67,000 sites to be attacked If your website uses WordPress, and there is no timely update official last week released a patch, upgrade to v4. 7. 2 versions, then your site is likely to be this 4 a hacking...

7.5AI score
Exploits0
myhack58
myhack58
added 2017/01/14 12:0 a.m.46 views

CVE-2015-1860 analysis: Qt module for processing GIFs cause a crash-bug warning-the black bar safety net

Vulnerability background Qt is a cross-platform graphical interface programming Framework, and its version is less than 4. 8. 7 and 5. x is less than 5. 4. 2 analytical picture of the process for cross-border inspections of improper handling, will result in the memcpy of the process occurs out of...

7.4AI score0.08736EPSS
Exploits0
myhack58
myhack58
added 2016/12/22 12:0 a.m.46 views

You know in PHP public key encryption is wrong-vulnerability warning-the black bar safety net

Last year, our security team to confirm the CVE-2015-7503 vulnerability, aka ZF2015-10, which is a in using the RSA process, the emergence of functional vulnerability exists in Zend Framework cryptographic library. The actual vulnerability with PKCS1v1. 5 method of filling the RSA...

7.2AI score0.01356EPSS
Exploits0
myhack58
myhack58
added 2016/12/13 12:0 a.m.47 views

Yahoo mail storage type XSS vulnerabilities, hackers can look at anyone's mail-vulnerability warning-the black bar safety net

Recently from Finland Klikki Oy, a researcher Jouko Pynnönen has published a blog, which demonstrates a malicious attacker how to useXSSvulnerability attack under Yahoo mail, the victims Inbox messages sent to an external site; and constructing a virus, this virus can be passed to the email...

7AI score
Exploits0
myhack58
myhack58
added 2015/12/10 12:0 a.m.46 views

Java deserialization vulnerability to execute commands echo to achieve and Exploit download-vulnerability warning-the black bar safety net

Mentioned some of the techniques, tools may with a certain offensive, only for safety learning and teaching purposes, the prohibition of illegal use! 0×0 0 Preface Some time ago java deserialization vulnerability fights uproar, from the beginning of foreign cattle one can execute OS commands...

8AI score
Exploits0
myhack58
myhack58
added 2015/12/04 12:0 a.m.46 views

Why your API is not a security-vulnerability warning-the black bar safety net

0×0 0 background description Some time ago I to Spree Commerce company reported its API path exists JSONP+CSRF vulnerability issues. Similarly, the Instagram API the presence of CSRF vulnerabilities. Disqus, a Stripe and Shopify API via JSONP leakage of privacy information. All this the root of t...

7.1AI score
Exploits0
myhack58
myhack58
added 2015/11/11 12:0 a.m.46 views

Hacking Team Android browser attacks during the vulnerability analysis Stage4-vulnerability warning-the black bar safety net

A, vulnerability introduction: Hacking team of the year broke out for android4. 0. x-4.3. x android browser vulnerabilities to attack the use of the code. The exploit code, by successive use of a plurality of browser and kernel vulnerabilities, is done through Javascript to the virtual memory wri...

6.9AI score
Exploits0
myhack58
myhack58
added 2015/04/03 12:0 a.m.46 views

PHP arbitrary file upload Vulnerability, CVE-2 0 1 5-2 3 4 8-a vulnerability warning-the black bar safety net

Security researchers today published a medium-risk vulnerabilities--PHP arbitrary file upload Vulnerability, CVE-2 0 1 5-2 3 4 8 in. In the Upload File only when the determined file name is the legal name of the file to conclude that this file is not malicious file, which will indeed lead to othe...

8.1AI score
Exploits0
myhack58
myhack58
added 2015/02/20 12:0 a.m.46 views

Palliative: the sogou browser to continue the remote execution of arbitrary commands-bug warning-the black bar safety net

1. Update to the latest version ! 1.jpg 2. Search for a vulnerability, do some repair, the most fundamental Protocol of the jump limit is still not repaired. A. for signin. htmlXSSdo as shown below fix: ! 2.jpg Canonical seemingly written by a bunch of, very complex, but in reality: even defining...

0.8AI score
Exploits0
myhack58
myhack58
added 2013/06/21 12:0 a.m.46 views

The United States VPS management system SolusVM 1.13.03 SQL injection vulnerability with exp-a vulnerability warning-the black bar safety net

SolusVM software is a powerful graphical user interface for VPS management system that can simultaneously manage three kinds of Virtualization Technology: OpenVZ ,Xen Paravirtualization and Xen HVM in. The use of this software open us VPS customer, will feel he is very safe and convenient. Poor...

1.2AI score
Exploits0
myhack58
myhack58
added 2013/01/18 12:0 a.m.46 views

DedeCms V57 plus/search. php file to SQL injection-vulnerability warning-the black bar safety net

Twitter on seen on the analysis,this exploit is more than one place can be utilized. Can actually disregard magicquotesgpc = On. Really not tasteless. Author: [email protected] Dedecms latest version plus/search.php file there is a variable override vulnerability,successfully exploited this...

0.7AI score
Exploits0
myhack58
myhack58
added 2012/09/28 12:0 a.m.46 views

shopex front Desk ordinary users getshell the latest vulnerability-vulnerability warning-the black bar safety net

Use method: First: think of a way to find the target site's absolute path http://www.wooyun.in/install/svinfo.php?phpinfo=true http://www.wooyun.in/core/api/shopapi.php http://www.wooyun.in/core/api/site/2.0/apib2b20cat.php http://www.wooyun.in/core/api/site/2.0/apib2b20goodstype.php...

7.4AI score
Exploits0
myhack58
myhack58
added 2011/10/22 12:0 a.m.46 views

FCKeditor all version File Upload-vulnerability warning-the black bar safety net

In The Name Of GOD + Title:FCKeditor all versian Arbitrary File Upload Vulnerability + Date: 2 0 1 1 + script:http://sourceforge. net/projects/fckeditor/ + Author : pentesters. ir + Website : WwW.PenTesters.IR ------------------- 1. create a. htaccess file: code: FilesMatch “php.gif” SetHandler...

0.9AI score
Exploits0
myhack58
myhack58
added 2010/12/10 12:0 a.m.46 views

Sogou input method 0DAY-vulnerability warning-the black bar safety net

Vulnerability process description: When windows is loaded sogou input method later, log in to the system, lock the computercltr+alt+del it. Switch to sogou input method, input the phonetic alphabet appears sogou input method toolbar, click on search, it will call iexplorer.exe the. Next you can b...

1.5AI score
Exploits0
myhack58
myhack58
added 2010/03/31 12:0 a.m.46 views

Practical Web Security testing of HTTP truncated smuggling vulnerability-vulnerability warning-the black bar safety net

In this article, we will detailed to introduce the reader for the HTTP truncated and HTTP smuggling attack security testing techniques. We will by example demonstrate how to use the HTTP Protocol, certain properties, or the use of Web application weaknesses, or different proxy for HTTP message of...

6.4AI score
Exploits0
myhack58
myhack58
added 2009/08/23 12:0 a.m.46 views

CCProxy proxy software to hide the conspiracy-bug warning-the black bar safety net

AgentServerfor everyone to solve a lot of problems, such as blocking hackers and local area network to share Internet access, etc. This article we are going to discuss one out on the proxy server vulnerability, hope that the network can be given a certain attention. In order to reveal this...

7.3AI score
Exploits0
myhack58
myhack58
added 2009/08/02 12:0 a.m.46 views

Teach you to using strace to find the ssh Backdoor-vulnerability warning-the black bar safety net

First of all, I first compile a ssh back door, this ssh Backdoor in/tmp/xxxxxx record all of the login password Start him QUOTE: root@laptop:/usr/local/openssh2/sbin ps aux | grep sshd root 1 3 6 1 9 0.0 0.3 7 4 3 2 1 7 5 2 ? Ss 2 3:4 4 0:0 0 ./ sshd-p 1 2 3 4 root 1 3 7 0 7 0.0 0.2 4 2 9 2 1 3 2...

0.9AI score
Exploits0
myhack58
myhack58
added 2009/06/27 12:0 a.m.46 views

South data enterprise latest injection vulnerability-vulnerability warning-the black bar safety net

By: A XoL-! http://www.tsbct.com Found to date: 2008-09-25 Affected version: v10. 0 v11. 0 Trojan: '%20union%20select%2 0 0,username%2BCHR1 2 4%2Bpassword,2,3,4,5,6,7,8,9%20from%20admin%20union%20select%2 0%20from%20news%20where%2 0 1=2%20and%2 0"=' Get the shell method: In the website...

0.9AI score
Exploits0
myhack58
myhack58
added 2009/04/23 12:0 a.m.46 views

Google Chrome used ajax to read a local file vulnerability-vulnerability warning-the black bar safety net

Author: the emptiness of the prodigal son heart google's browser Chrome1. 0. 1 5 4. 5 3 currently the latest, and the presence of ajax to read a local file vulnerability. Using this vulnerability you can read a local text file and submit it. And Chrome the cookie is saved by default in...

6.7AI score
Exploits0
myhack58
myhack58
added 2007/08/20 12:0 a.m.46 views

Hack explore lake2 conjecture Serv-U the bounce attack and use-vulnerability and early warning-the black bar safety net

The FTP bounce attack the FTP Bounce Attack is a very old technology, actually in our information security educational materials on find description, its indeed the age is. The so-called FTP bounce attack is to use the FTP Protocol PORT command to send the data to a third party, so you can use...

7.8AI score
Exploits0
myhack58
myhack58
added 2007/03/19 12:0 a.m.46 views

Remote upgrade ordinary user permissions-bug warning-the black bar safety net

The steps of: 1, assuming that we pass the scanner to get a 1 9 2. 1 6 8. 0. 1 on a user test password for the test belonging to the administrators group. 2, Using the GetAccount http://www.lsky.org/download/GetAccount.exe 获得 系统 中 已经 存在 的 帐号 信息 of course the use of empty connections are also...

7.5AI score
Exploits0
myhack58
myhack58
added 2007/01/26 12:0 a.m.47 views

Hacking tricks of how to register a DLL or OCX file-vulnerability warning-the black bar safety net

大家 注册 DLL 或 OCX 的 方法 应该 用 Regsvr32.exe with much more everyone will certainly think in the running to write a long list of things it is annoying! Here I introduce a kind of trouble a convenient“whole life”approach. This method as long as the right-click you want to register or unregister the OCX ...

Exploits0
myhack58
myhack58
added 2006/07/29 12:0 a.m.46 views

The Serv-U 6.0.0.2 Default Account and password little understood-vulnerability warning-the black bar safety net

Today, get a webshell. Find the serv-u directory. See ServUDaemon. ini GLOBAL Version=6.0.0.2 OpenFilesDownloadMode=Exclusive PacketTimeOut=3 0 0 LocalSetupPassword=ah6A0ED50ADD0A516DA36992DB43F3AA39 6.0.0.2 version. Once saw which said 6. 0 version of the default local administrative account and...

0.1AI score
Exploits0
myhack58
myhack58
added 2006/05/16 12:0 a.m.46 views

Do All in Cmd Shell-vulnerability warning-the black bar safety net

Directory 1, Preface 2, The file transmission 3, The system configuration 4, the network configuration 5, software installation 6, Windows Script 7, The accompanying statement Foreword Cmd Shellcommand line interactionis a hack eternal topic, it is the historic and enduring it. This article is...

7.7AI score
Exploits0
myhack58
myhack58
added 2018/12/29 12:0 a.m.45 views

WordPress. org can be worm attack stored XSS vulnerability disclosure-vulnerability warning-the black bar safety net

WP GDPR Compliance is WordPress, a very popular plugin, it is found that the presence of privilege escalation vulnerabilities, the exploits, the attacker can easily hijack thousands of websites. Although a plug-in vulnerability represents only use it on the website of the security flaws, however,...

7.8AI score
Exploits0
Total number of security vulnerabilities5000