Lucene search
K
Myhack58Most viewed

7620 matches found

myhack58
myhack58
added 2019/01/24 12:0 a.m.31 views

Razer Synapse 3 Windows client local to mention the right vulnerability analysis-vulnerability warning-the black bar safety net

A, vulnerability introduction Razer Synapse(Ray cloud software installed in the system a service Razer Synapse Service, the service to NT AUTHORITY\SYSTEM permissions to run 会加载C:\ProgramData\Razer\目录中的多个.NET assembly. C:\ProgramData\Razer\and its subdirectories/files in the permissions aspect is...

0.7AI score
Exploits0
myhack58
myhack58
added 2017/08/14 12:0 a.m.31 views

Using Burp and a custom Sqlmap Tamper the use of secondary injection vulnerability-vulnerability warning-the black bar safety net

! The Web application already from on century a simple script evolved into today's single-page application. However, with the Web applications of increasing complexity of different types of security vulnerabilities also come with it. One is called the secondary injection vulnerability is a Web...

7.2AI score
Exploits0
myhack58
myhack58
added 2017/05/11 12:0 a.m.31 views

Google said in the release“of the Android O”the new version will not fix the screen hijacking vulnerability-vulnerability warning-the black bar safety net

Millions of Android smartphones are suffering from a serious“screen hijacking”vulnerabilities, a hacker could steal user passwords, Bank details and help ransomware app to steal money. Google is claiming that publishing the“Android O”version does not fix the vulnerability The worst thing is that...

0.2AI score
Exploits0
myhack58
myhack58
added 2017/03/17 12:0 a.m.31 views

Hands-on teach you to dig a Western Digital NAS vulnerabilities-vulnerability warning-the black bar safety net

Some time ago on a platform found on the foreign security team broke up the Western Digital NAS products 80 A few vulnerabilities, but did not exploit the details, just in Division I in the use of products in the Western Digital NAS, so there's this article, here in this article is based, the mor...

0.2AI score
Exploits0
myhack58
myhack58
added 2017/03/01 12:0 a.m.31 views

Old version of vBulletin vulnerability to be exploited: hackers leak from the 126 Forum of the 82 million accounts-vulnerability warning-the black bar safety net

Since the older versions of vBulletin there is a serious vulnerability, this is an Internet forum widely used software has been used by hackers, and leakage from the 126 Forum of the 82 million account.@ CrimeAgency on Twitter claim that hackers stole from the forum administrator and registered...

0.4AI score
Exploits0
myhack58
myhack58
added 2017/02/17 12:0 a.m.31 views

For the Node. js in the node-serialize module deserialization vulnerability the subsequent analysis-vulnerability warning-the black bar safety net

Of the Node. js serialization remote command execution vulnerabilities of a number of follow-up found and how to develop the attack load. A few days ago I was in opsecx blog found an article How to use a named node-serialize nodejs module in the RCE remote code execution error blog. The article...

0.2AI score
Exploits0
myhack58
myhack58
added 2017/01/10 12:0 a.m.31 views

Reverse Safety series: Use After Free vulnerability analysis-vulnerability warning-the black bar safety net

One, Foreword Thinking the next step is to write a use after free small summary, just happened to be the nearest Lake Gordon Cup 2016 the one.---- game Use the use after free can be out. This title is their first in more formal competitions, make pwn title, do this question of time spent a lot, t...

7.5AI score
Exploits0
myhack58
myhack58
added 2016/09/13 12:0 a.m.32 views

Microsoft Windows kernel provide the right to exploit the principles of analysis and utilization(CVE-2 0 1 6-3 3 0 8 / ZDI-1 6-4 5 3)-vulnerability warning-the black bar safety net

1, vulnerability introduction Vulnerability announcements related links: ZDI-1 6-4 5 3 CVE-2 0 1 6-3 3 0 8 CloverSec Labs members bear13oy in mid-July also found that the kernel vulnerability, since at the time the comparison is busy, the August Microsoft patch week after its analysis and use,...

0.1AI score
Exploits0
myhack58
myhack58
added 2016/08/23 12:0 a.m.31 views

The exploit of those things - from theory to practical-vulnerability warning-the black bar safety net

It seems like long time no post, recently on a whim ready to talk about “the exploit of that thing is.” Now there is a phenomenon is that once a hazard the higher the vulnerability verification PoC or the use of EXP is released, there will be a large group of hungry unbearable hat to brush hole,...

8.6AI score
Exploits0
myhack58
myhack58
added 2016/07/31 12:0 a.m.31 views

PHP, Python, etc. web applications break the Remote Agent vulnerability: httpoxy-vulnerability warning-the black bar safety net

This is a for PHP, Go, Python, and other languages CGI application vulnerabilities. httpoxy is a series of effects to CGI or the class CGI to run application vulnerability name. Simple to say, it is a name space conflict. RFC 3 8 7 5 (CGI)is defined from the HTTP request to the Proxy head filled...

7.5AI score
Exploits0
myhack58
myhack58
added 2016/07/20 12:0 a.m.31 views

OpenSSHD user enumeration vulnerability-vulnerability warning-the black bar safety net

! Summary: By sending a long password,a remote user can enumerate on the system running the SSHD user. This problem exists in most of the modern configuration,as compared to the calculation of BLOWFISH hashes,takes longer time to calculate the SHA256 / SHA512 to. CVE-ID:CVE-2 0 1 6-6 2 1 0 Test...

0.2AI score
Exploits0
myhack58
myhack58
added 2016/07/18 12:0 a.m.31 views

D-Link cloud camera more than 1 2 0 product gaps, about 4 0 million devices affected-vulnerability warning-the black bar safety net

! Before the camera there is a security vulnerability, privacy is leaked out of the event. This event is the protagonist of turn A D-Link cloud camera. A woman named Stephen Ridley of the security researcher found that the D-Link cloud camera vulnerabilities exist, and he also found more than 1 2...

7.7AI score
Exploits0
myhack58
myhack58
added 2016/06/08 12:0 a.m.31 views

Heroku the latest vulnerability to cause the hackers can take control of their accounts-vulnerability warning-the black bar safety net

Premise Description: 5 month 2 6 day, the vulnerability has been fixed. Environment Heroku(https://www.heroku.com/there is one called“one click deployment”feature, when you click, it is possible to achieve a bond of the configuration and deployment of third-party components, libraries and...

7.4AI score
Exploits0
myhack58
myhack58
added 2016/05/21 12:0 a.m.31 views

Docker is not authorized to access the statistics report-vulnerability warning-the black bar safety net

! 2 0 1 6 5 1 7,, a platform broke Docker Swarm cluster port opening is exposed to the outside,resulting in remote unauthorized access vulnerability,then the executable Docker node specific command. To exploit the vulnerability directly obtain root privileges. What is Docker? Docker is an...

0.8AI score
Exploits0
myhack58
myhack58
added 2016/05/07 12:0 a.m.31 views

CVE-2 0 1 6-3 7 1 4 - ImageMagick command to perform the analysis-vulnerability warning-the black bar safety net

ImageMagick is a usage of a very wide image processing program, many manufacturers are calling this a program for image processing, including image scaling, cutting, watermarking, format conversion and more. But recently researchers have found that, when the user of the incoming contains...

0.1AI score
Exploits0
myhack58
myhack58
added 2016/04/25 12:0 a.m.31 views

AppCan vulnerability spree(AppCan weak password\XSS\SQL injection\sensitive files leaked\weak password\file upload vulnerability collection)-vulnerability warning-the black bar safety net

Test yourself to write the discuz scan tool robustness of the time to find a backup file http://bbs. appcan. cn//config/configucenter. php. bak Use uckey getshell failure,the test has changed uckey. To continue testing,found a suspected injection point http://edu. appcan. cn/traindetailnew. html?...

7.7AI score
Exploits0
myhack58
myhack58
added 2016/04/20 12:0 a.m.31 views

CVE-2 0 1 6-1 7 7 9 technical analysis and the story behind it-vulnerability warning-the black bar safety net

The Geolocation API is used to obtain the user's host device's location, and it has a complete protection of user privacy mechanisms. But the CVE-2 0 1 6-1 7 7 6 this vulnerability to bypass the Geolocation authentication of the source of a security mechanism, and it is possible to cause the user...

0.1AI score
Exploits0
myhack58
myhack58
added 2016/04/20 12:0 a.m.31 views

The exception in the exception--by means of a system of exception handling exception achieve incredible exploit-vulnerability warning-the black bar safety net

Memory read, write, execute attribute is system security the most important one of the mechanisms. Usually, if you want to overwrite the data in memory, you must first ensure that the block of memory having a write attribute, if you want to execute a piece of code in memory, you must first ensure...

0.1AI score
Exploits0
myhack58
myhack58
added 2016/01/26 12:0 a.m.31 views

PayPal remote code execution vulnerability-vulnerability warning-the black bar safety net

! /Article/UploadPic/2016-1/2016126182812936.jpg In 2 0 1 5 years 1 2 months,I in the PayPal Business Sitemanager.paypal.comfound a serious vulnerability,this vulnerability exist,so that I can through unsafe JAVA deserialize the object,in the PayPal website, the server on the remote using the she...

Exploits0
myhack58
myhack58
added 2015/11/24 12:0 a.m.31 views

Java deserialization vulnerability batch testing-vulnerability warning-the black bar safety net

! Foreword Java de-serialization vulnerabilities appear in people's field of vision has been for some time, the Rubik's Cube security team about this vulnerability were reproduced, while the study shows a high accuracy of mass detection the idea here with all of you a safe circle of friends to...

Exploits0
myhack58
myhack58
added 2015/11/05 12:0 a.m.31 views

Baidu really fixed all of the WormHole vulnerability?-vulnerability warning-the black bar safety net

You can’t have a back door in the software because you can’t have a back door that's only for the good guys.“ - Apple CEO Tim Cook You should not give software to install the back door, because you can't guarantee that this Backdoor only the good guys can use the--Apple CEO cook 0×0 developments...

0.1AI score
Exploits0
myhack58
myhack58
added 2015/09/21 12:0 a.m.31 views

Takeaway O2O App security analysis: the App vulnerability assessment platform technical details-vulnerability warning-the black bar safety net

In the mobile Internet and O2O tide swept under, the takeaway market is gradually entering the white-collar field, at BAT three giants throwing money to cultivate the market, white-collar workers have to change eating habits. As long as it is imprisoned in the white collar does not substantially ...

7.9AI score
Exploits0
myhack58
myhack58
added 2015/09/18 12:0 a.m.31 views

Android 5. x vulnerability: the hacker can bypass the screen password to enter the system-vulnerability warning-the black bar safety net

Many Android users will choose to use a lock screen password protect the device, but the latest burst of vulnerability was shocking: any person who without complex operation can bypass the lock screen directly into your system! An attacker can exploit the pilot gets a lock on the device all the...

Exploits0
myhack58
myhack58
added 2015/08/06 12:0 a.m.31 views

Linksys WRT54G router overflow vulnerability analysis-operating environmental remediation-vulnerability warning-the black bar safety net

This excerpt from the secret home router 0day vulnerability Mining Technology of Wu Shaohua editor, Wang Wei, Zhao Xu, EDS., Publishing House of electronics industry 2 0 1 5 年 8 月 publication. In this Chapter the experimental test environment described in Table 1 3-1 shown in Fig. Table 1 3-1 The...

8.5AI score
Exploits0
myhack58
myhack58
added 2015/05/20 12:0 a.m.31 views

IPsec Tools denial of service 0day vulnerabilities detail report-vulnerability warning-the black bar safety net

IPsec-tools recently exposed a denial of service 0day vulnerabilities, and the Internet has appeared the use of the program. You may be questioning the vulnerability does not even reach a moderate vulnerability rating, but remember that IPsec is critical infrastructure, and this attack requires...

0.7AI score
Exploits0
myhack58
myhack58
added 2015/04/10 12:0 a.m.31 views

The popular WordPress caching plugin WP-Super-Cache aeration high-risk security vulnerabilities-vulnerability warning-the black bar safety net

The popular WordPress caching plugin WP-Super-Cache recently exposed high-risk vulnerability, the attacker may be in a page to inject malicious code, which makes millions of WordPress websites in danger. WP Super Cache is a classic veteran and a good cache plugin can greatly improve website...

Exploits0
myhack58
myhack58
added 2015/02/26 12:0 a.m.31 views

A common Site Management System any user login/SQL injection/GetShell vulnerabilities source code analysis-vulnerability warning-the black bar safety net

Brief description: This system is not open source, most of the universities in use, turn the source off at the next Detailed description: 0x00 General case: code area Manufacturer: Rio Tinto tech Official website: http://www.ltpower.net/ The main is to do the educational products of the...

7.2AI score
Exploits0
myhack58
myhack58
added 2015/01/30 12:0 a.m.31 views

IE sandbox elevation of privilege vulnerability, CVE-2 0 1 5-0 0 1 6 analysis-vulnerability warning-the black bar safety net

This month, Microsoft's“Tuesday patch”coming out, includingMS15-0 0 4patch, repair a could cause elevation of Privilege vulnerabilities CVE-2 0 1 5-0 0 1 6,This is a very rare for IE sandbox vulnerability, Trend Micro researchers about this vulnerability for a detailed analysis. Patch details...

3.2AI score
Exploits0
myhack58
myhack58
added 2015/01/29 12:0 a.m.31 views

The Ghost vulnerability the GHOST affects a large number of Linux operating system and its release version update repair programme-vulnerability warning-the black bar safety net

Security researchers have recently exposed a named Ghost(GHOST)a serious security vulnerability, this vulnerability may allow an attacker remote accessoperating systemis the highest control authority, the impact of the market on a large number of Linux operating system and its release version. Th...

0.9AI score
Exploits0
myhack58
myhack58
added 2014/12/20 12:0 a.m.31 views

A EXCEL the vulnerabilities the sample shellcode analysis-vulnerability warning-the black bar safety net

0x00 causes Recently I got a EXCEL samples, allegedly an over-all anti-virus of 0day, after the analysis after a let me disappointed, this is a 2 0 1 2-year old vulnerability, not 0day the. Although not picked to the 0day, but this sample of shellcode is still quite distinctive, it is indeed...

2.2AI score
Exploits0
myhack58
myhack58
added 2014/10/31 12:0 a.m.31 views

Windows batch parsing vulnerability-vulnerability warning-the black bar safety net

In this article before you begin, Please note that this is a very jumbled information security notices. Related to Windows control command identifier, I may have found a simple batch file to attack the BUG. This BUG is present in Windows 2 0 0 0 version more 6 4-bit and 3 2-bit machine, it is a...

0.7AI score
Exploits0
myhack58
myhack58
added 2014/10/31 12:0 a.m.31 views

Etiko CMS index.php cross-site scripting vulnerability-vulnerability warning-the black bar safety net

Affected system: Etiko Etiko CMS Description: CVECAN ID: CVE-2 0 1 4-8 5 0 5 Etiko CMS is a content management system. Etiko CMS did not effectively verify the index. php script input, in the realization on the presence of cross-site scripting vulnerability, a remote attacker with the structure o...

7.6AI score
Exploits0
myhack58
myhack58
added 2014/09/22 12:0 a.m.31 views

The little red umbrella(Avira)exposed a serious vulnerability, hackers can hijack a user account-bug warning-the black bar safety net

! Famous antivirus red umbrella Avira is a free security software, however its secure backup service but there is a serious Web application vulnerabilities, so an attacker can hijack user accounts, millions of users could not accidentally become a“platter. of meat.” Avira the famous free security...

1.9AI score
Exploits0
myhack58
myhack58
added 2014/04/03 12:0 a.m.31 views

WinRar 4.2 file extension spoofing vulnerability EXP-vulnerability warning-the black bar safety net

First input required to run the name of the program, then enter the required display name, and then input the output file name can be import zipfile import binascii print " Code By Cond0r\n \n " newname=rawinput"Shellcode File:" realname=rawinput"Display Name:" zipname=rawinput"Out Name:" def...

0.2AI score
Exploits0
myhack58
myhack58
added 2014/03/01 12:0 a.m.31 views

DedeCMS full version through the kill SQL injection exploit code and tools-vulnerability warning-the black bar safety net

dedecms that weave the dream of PHP open source website content management system is. Woven dream content management systemDedeCms in a simple, practical, open-source and famous, is domestic most well-known PHP open source website management system, is also using most users of PHP class CMS syste...

7.7AI score
Exploits0
myhack58
myhack58
added 2014/02/27 12:0 a.m.31 views

Google Chrome Developer Tools vulnerability exploit-vulnerability warning-the black bar safety net

0x00 introduction The story originated in the Chromium source code in the named InjectedScriptSource.js files, this file is responsible for the console in the command execution. Maybe a lot of people would say: 【Wait! Why is the JavaScript in charge of the command execution,Chromium/Chrome is not...

0.8AI score
Exploits0
myhack58
myhack58
added 2013/11/02 12:0 a.m.31 views

Destoon the latest full version through the kill SQL injection vulnerability-vulnerability warning-the black bar safety net

Author:Kavia /common.inc.php 6 4 line: if$POST $POST = stripsql$POST; //stripsqlfilter if$GET $GET = stripsql$GET; if$COOKIE $COOKIE = stripsql$COOKIE; ......... if$POST extract$POST, EXTRSKIP; //register variable if$GET extract$GET, EXTRSKIP; Follow stripsql /include/global.func.php 1 8 6:...

0.8AI score
Exploits0
myhack58
myhack58
added 2013/07/26 12:0 a.m.31 views

espcms wap module search SQL injection-vulnerability warning-the black bar safety net

0×0 vulnerability overview 0×1 vulnerability details 0×2 PoC 0×0 vulnerability overview Easy to think ESPCMS enterprise website management system based on LAMP development to build enterprise website management system, it has simple operation, powerful function, good stability, scalability and...

Exploits0
myhack58
myhack58
added 2013/06/07 12:0 a.m.31 views

Plesk hosting management software remote get shell 0day-vulnerability warning-the black bar safety net

6 month 5 days late, the Great God king cope in foreign countries well-known mailing list seclists burst Plesk latest remote exploit 0day and gives a perl version of the exp. On Plesk with: Plesk is a cross-platform host Management Control Panel software, is a server virtualization and automation...

1.6AI score
Exploits0
myhack58
myhack58
added 2013/06/05 12:0 a.m.31 views

the apache mod_rewrite module command to perform a detailed analysis attached to POC(CVE-2 0 1 3-1 8 6 2)-vulnerability warning-the black bar safety net

The vulnerability by the security treasure inside security researcher analysis. The analysis is as follows: Recently see a lot of security media are in the description”Apache log file vulnerability could execute arbitrary code”, As security researchers look into”execute arbitrary code”, of course...

1.9AI score
Exploits0
myhack58
myhack58
added 2013/05/15 12:0 a.m.31 views

The horizon of a sub-Station back to bypass-vulnerability warning-the black bar safety net

The horizon of a sub-station in background to bypass leaked some user information! 1. Background privileges to bypass the http://younghainan.tianya.cn/admin888/left.aspx ban js Leaked some information on the Ah Pro! To thehackingto get the user information on what to do. There seemed to be...

1.4AI score
Exploits0
myhack58
myhack58
added 2013/04/16 12:0 a.m.31 views

phpshe v1. 1 multiple SQL injection and file include vulnerabilities Getshell-a vulnerability warning-the black bar safety net

// / Phpshe v1. 1 Vulnerability / ======================== / By: : Kn1f3 / E-Mail : [email protected] // 0×0 0 overall probably the parameters of the transmission font=Verdana, Helvetica, Arial, sans-serifsize=12px /size/font //common.php if getmagicquotesgpc ! empty$GET &&...

0.8AI score
Exploits0
myhack58
myhack58
added 2012/12/21 12:0 a.m.31 views

iwebshop xss 0day code analysis-vulnerability warning-the black bar safety net

Some time ago dedecms, etc. broke a variety of 0day, for a moment, hands itching, so got a small php open source program surgery ! The process of using the tool: phpxref: Windows is to use php code audit assisted tools Grep: linux down to find the key statements Version: iwebshop2. 3. 1 1 1 1 3 0...

7.3AI score
Exploits0
myhack58
myhack58
added 2012/12/02 12:0 a.m.31 views

Tencent microblogging private letter stored XSS cross-site vulnerabilities-vulnerability warning-the black bar safety net

Vulnerability title: Tencent microblogging private letter storage typeXSScross site vulnerability Vulnerability type: xsscross-site scripting attacks Harm level: high Brief description: Recently everyone popular series. Then we are also opening it to the recent heartache of the fat has been...

6.7AI score
Exploits0
myhack58
myhack58
added 2012/10/14 12:0 a.m.31 views

phpcms v9. 1. 1 5 sql and XSS exploits-vulnerability warning-the black bar safety net

phpcms v9. 1. 1 5 The official demo site has been updated to 9.1.16: the http://v9.demo.phpcms.cn/ XSS public function publicgetsuggestkeyword $url = $GET'url'.'& q='.$ GET'q'; echo $url; $res = @filegetcontents$url; ifCHARSET != 'gbk' $res = iconv'gbk', CHARSET, $res; echo $res; Use method:...

7AI score
Exploits0
myhack58
myhack58
added 2012/08/08 12:0 a.m.31 views

Notepad Dog microblogging V3. 6. 1 Build 2 0 A 1 2 0 7 1 8 background to get shell-vulnerability warning-the black bar safety net

Notepad Dog microblogging system, the background presence of design defects that can lead to get backstage access to the shell Version: V3. 6. 1 Build 2 0 a 1 2 0 7 1 8 1. System Tools-data backup-custom backup-select a data amount smaller table-more options-select compress backup...

0.4AI score
Exploits0
myhack58
myhack58
added 2012/04/12 12:0 a.m.31 views

FCKeditor create a folder, Upload a file when“.” Change“_”to break-vulnerability warning-the black bar safety net

Some of the tips, and sometimes quite useful, to collect, data collection in the Internet...... FCKeditor file uploads“.” Change“”underscores the bypass method: This is published online: A lot of times the uploaded file for example: shell.php.rar or shell.php;. jpg becomes shellphp;. jpg this is...

7.3AI score
Exploits0
myhack58
myhack58
added 2011/12/28 12:0 a.m.31 views

Talking about web application permissions problems-vulnerability warning-the black bar safety net

Before knowing about web permissions there might be a problem, but in reality the test encountered is relatively small, today met on record: a warrior please don't waste your valuable time A, longitudinal Stripping of the right to In General the site has many users, divided into different...

6.7AI score
Exploits0
myhack58
myhack58
added 2011/09/01 12:0 a.m.31 views

Discuz 1.5 with NGINX secondary analytical proof path BUG-vulnerability warning-the black bar safety net

Author: Sunny small cast Test environment: discuz X1. 5+nginx 1.0 漏洞 文件 source/function/functioncore.php that code: $G'setting''domain''app''default' && $content = pregreplace"/a href="^"+"/e", "rewriteoutput'sitedefault', 0, '".$ G'setting''domain''app''default'.$ port.$ G'siteroot'."',...

0.6AI score
Exploits0
myhack58
myhack58
added 2011/08/27 12:0 a.m.32 views

FCKeditor editor full version alternative upload vulnerability-vulnerability warning-the black bar safety net

FCKeditor all versian Arbitrary File Upload Vulnerability Published: 2 0 1 1 Source address:http://sourceforge. net/projects/fckeditor/ Vulnerability author: pentesters. ir Using the steps of: 1. Create a. htaccess file: Code content: FilesMatch “php.gif” SetHandler application/x-httpd-php...

1.2AI score
Exploits0
Total number of security vulnerabilities5000