Zhcms v1. 0 sql injection+arbitrary code execution-vulnerability warning-the black bar safety net

Author:Sco4x0 blog:www.sco4x0.com Team: www.secbox.cn A: sql injectioncauses the backend login bypass See UserAction. class. the php processing code in the Login method public function login if! empty$POST'code' if! empty$POST'user' && ! empty$POST'passwd' $rs = $this-user-login$POST'user',...

Palliative: the sogou browser to continue the remote execution of arbitrary commands-bug warning-the black bar safety net

1. Update to the latest version ! 1.jpg 2. Search for a vulnerability, do some repair, the most fundamental Protocol of the jump limit is still not repaired. A. for signin. htmlXSSdo as shown below fix: ! 2.jpg Canonical seemingly written by a bunch of, very complex, but in reality: even defining...

U-mail Mail Service system to the latest version 3 SQL injection vulnerability package-vulnerability warning-the black bar safety net

Injection point 1: \client\mail\module\views.php: code area if ACTION == "mail-compose" $draftmail = gss $GET'draft' ; $forwardmail = gss $GET'forward' ; $replymail = gss $GET'reply' ; $mailbox = gss $GET'mailbox' ; $writeagain = gss $GET'writeagain' ; $issendfile = gss $GET'sendfile' ; $isshare ...

IP. Board CMS malicious redirect analysis-vulnerability warning-the black bar safety net

IP. Board CMS is a famous CMS system, which allows users to easily create and manage online communities. And recently Sucuri researcher recently found a for the IP. Board of redirection. After analysis, researchers found that this attack has lasted 2 years. ! Visitors is a malicious redirect The...

CVE2015-0 0 5 7 vulnerability of the sample to construct out-vulnerability warning-the black bar safety net

0x00 Preface Microsoft's latest patch fixes a CVE2015-0 0 5 7 mention the right vulnerability, the same day that the vulnerability discovery has published analytical articles in the One-Bit To Rule Them All: Bypassing Windows’ 1 0 Protections using a Single Bit of action, after reading the articl...

Hidden 1 5 years of the JasBug vulnerability affects all versions of windows System-vulnerability warning-the black bar safety net

A few days ago Microsoft just released a critical patch to fix one up to 1 5 years, the vulnerability, the hacker exploits the vulnerability can remotely hijack the user's computer, regardless of whether the computer is running any version of windows System. This serious...

Rsync path spoofing attack vulnerability-vulnerability warning-the black bar safety net

Affected system: Samba rsync 3.1.1 Description: CVECAN ID: CVE-2 0 1 4-9 5 1 2 rsync is a fast incremental file transfer tool that is used in the same host the backup inside the backup. rsync 3.1.1 version there is a path spoofing attack vulnerability, through the synchronization path of the file...

eYou mail system The message body stored XSS（HTML5 features and need to click on the-vulnerability warning-the black bar safety net

Since eyou version number is different, the following test code The effect is a subtle distinction, but the presence of the vulnerability causes of the same. Test code: !-- if trueimg onerror=alert1 src=--form action=javascript:alert2input type=submitinput autofocus onfocus=alert3select autofocus...

Value 1 2 5 0 0 dollars to the Facebook album delete vulnerability-vulnerability warning-the black bar safety net

Overview: if your photo is deleted unknowingly, what will you do? Obviously, this problem is very annoying huh? This post is to say I found a vulnerability which allows a malicious user to delete Facebook on any album. Yes, any user, page, group, photo album can be deleted. The Graph API is the...

wdcp X-Forwarded-For injected vulnerability analysis-vulnerability warning-the black bar safety net

Originally this article want and on the article written together, but because of Bad typography will further write this post. 1 3 years of vulnerability, the Internet also does not have this vulnerability details this vulnerability to use the tool, so hold learning mentality, try to analyze it. 0...

Many well-known hotel chains, high-end brand hotels there are serious security vulnerabilities, massive open room information stored in the disclosure risk-vulnerability warning-the black bar safety net

Well-known Inn orange, Jinjiang Inn, the super eight, pudding; high-end hotel the MARRIOTT Hotel Group, MARRIOTT, Ritz Carlton, Starwood group, Sheraton, Le Meridien, W Hotels, Intercontinental Hotel Group, Holiday Inn, etc there is a serious security breach, the tenant Open House information at ...

ecshop background a brute-force CAPTCHA bypass-vulnerability warning-the black bar safety net

ecshop background of violence crack Detailed description: ! 选区 092.jpg Login request for code area username=admin&password=admin888&captcha=1 1 1 1&act=signin Request remove cookie in ECSCPID=parameter Service the end it will not verify the CAPTCHA directly to verify that the account password is...

phpwind can bypass the verification code to continue the violent crack users, demo demo-a vulnerability warning-the black bar safety net

First came to phpwind official website to see, found phpwind has been updated to 9. 0, website is the latest program ! 1. png Then came the landing place can be seen, the site has CAPTCHA restrictions, sank half） ! 2. png Then pick an account login see, the input error will find that there are th...

BMW security vulnerability details: the ancient Bole to identify a good horse, today there are hackers escapement BMW-vulnerability warning-the black bar safety net

ADAC whole German automobile club want to in-depth understanding of embedded mobile network modem of the car to the manufacturer to send data. C't German computer technology magazine for the ADAC introduced a security expert. The expert in-depth analysis of the BMW ConnectedDrive system the data...

MvMmallv5. 5SQL injection of php exp exploit-vulnerability warning-the black bar safety net

Vulnerability type: MvMmall v5. 5. 1 SQL injection vulnerability Default background:admincp. php? module=index Google search:”Powered by MvMmall v5. 5. 1" One, use: php exp use 1 Install the php environment Use phpnow very simple to install. 2 Use exp attack Link: Extract password: aahj The exp...

Gold Partner: security researchers discovered Flash 0day vulnerability with BEDEP virus there is a close Association-vulnerability warning-the black bar safety net

2 0 1 5 year at the beginning of the Adobe Flash sequential burst more0dayvulnerability, and has not been repaired when it waslarge-scale malicious usethe. Recently, Trend Micro security researchers in Adobe 0day vulnerabilities in the tracking survey, found BEDEP series virus with the Adobe Flas...

In PHP memory corruption vulnerability use of CVE-2 0 1 4-8 1 4 2 and CVE-2 0 1 5-0 2 3 1-the vulnerability warning-the black bar safety net

Many people think that, for Web-based applications, memory corruption class of bugs is not what a serious problem. Especially nowXSSandSQL injectionthe class of vulnerabilities is still the matter of the case, not how much attention to devote to such a bug, they will be treated as“non-use”or is...

Vulnerability analysis: a Markdown parser's persistent XSS Vulnerability, CVE-2 0 1 4-5 1 4 4-a vulnerability warning-the black bar safety net

What is the Markdown? a Markdown is a lightweight markup language, the popularity has got GitHub and Stack Overflow broad support, as ordinary people we can also easily get started. Use markdown to write articles very much like those trivial HTML tag can be behind without the tube. The last 5...

bash vulnerability detection several methods-vulnerability warning-the black bar safety net

You can use the following command to check the system for the existence of this vulnerability in native Bash environment, run: the Broken shells 1, CVE-2 0 1 4-6 2 7 1, Test Method: env x=' :;; echo vulnerable' bash-c "echo this is a test" Such as the implementation of the following results...

Vulnerability alert: LG Mobile Phone authentication permission bypass vulnerability, can Remote Control Phone-vulnerability warning-the black bar safety net

Security researchers recently found a LG phone a very serious vulnerability, the attacker may be in the user unaware of the case control LG phone, all without physical contact. As long as the attacker with the target within the same LAN, you can implement the attack, for example, connected to the...

SSRF vulnerability of the mining experience-the vulnerability warning-the black bar safety net

SSRF overview SSRFServer-Side Request Forgery:server side request forgery is a by the attacker structure is formed by the service terminal initiating the request of a security vulnerability. Under normal circumstances, the SSRF attack the target from outside the network cannot access the internal...

Vulnerability tracking: latest IE UXSS vulnerability technical analysis-vulnerability warning-the black bar safety net

This article is a brief analysis about the vulnerability of the principle. Attack process top0. eval'=top1;alert;. location="javascript:alertdocument. domain"'; poc in the first iframe the use of a 3 0 2 jump, jump to the target domain, the second one the iframe is also loading the target domain ...

By javascript hack TP-Link Router with the Poc and video-bug warning-the black bar safety net

Recently read this post:“getlocalandpublicipaddressesinjavascript with javascript to get the local and public IP address”I began to think, this used to hack into WIFI router is a good idea Ah, I have just got a TP-LINK WR741N, then measured up the chant. The collection of relevant information, I...

BMW ConnectedDrive Services security vulnerability tracking analysis-vulnerability warning-the black bar safety net

3 6 0 the network attack and Defense laboratory for the ConnectedDrive module security holes event ongoing Track, 2 on the 5th, ADAC fellow staff published（Dieter Spaar-sent the vulnerability of the whole process. ADAC is want to research the BMW car, the end will send what kind of data to the...

Millet smart cameras small ants there is a remote command execution vulnerability-vulnerability warning-the black bar safety net

! t0167153064b2673d18. png Vulnerability description: Small ants Camera application management program the presence of a remote command execution vulnerability through the web interface with root privileges to execute arbitrary system commands without any web permissions, now the official latest...

The popular game "heroes Union" and then exposed vulnerabilities: hackers can access player accounts to steal credits and coins-vulnerability warning-the black bar safety net

Famous foreign community Reddit recently broke the popular game "heroes Union" （LOL）one of the exploit programs exploit, the attacker can access the player account via a Web browser to open the in-game store for credits or gold transactions. Vulnerability description Initially this vulnerability ...

Recent XSS 0day vulnerability struck, the impact of the latest version of the IE browser-vulnerability warning-the black bar safety net

! Security researchers recently discovered a seriousXSS 0day vulnerability that can impact the latest version of the IE browser, the user is exposed in the attack and identity theft risk. Vulnerability information The vulnerability can affect fully restored IE browser, hackers can exploit the...

Adobe Flash CVE-2 0 1 5-0 3 1 3 new 0day-vulnerability warning-the black bar safety net

In the Adobe Flash Player newly discovered a high risk vulnerability, hackers can take advantage of its large-scale forced-by downloaddrive-by downloadattacks, also known as the“website hanging horse attack”, when you're viewing contains a malicious code of a web page or to access the AD, it will...

Oracle database XXE injection vulnerabilities(CVE-2 0 1 4-6 5 7 7)analysis-vulnerability warning-the black bar safety net

In this article, we will jointly analyze the Oracle database XXE injection vulnerabilitiesCVE-2 0 1 4-6 5 7 7, Oracle Corporation 1 month 2 0 day was released for the vulnerability related to the patch. About XXE relevant knowledge, you can view the security pulse of the station within other...

Cacti monitoring injection vulnerability triggered within the network the fall-vulnerability warning-the black bar safety net

Preface: Security is a whole, any one of the short Board will cause Safety accident, from the border network to the IDC operation and maintenance of the network to the office network, are the whole of each of the network cannot be ignored. Enterprise in for security to do a multi-layer protection...

0day third bomb: yet another Flash critical vulnerability-exposure-vulnerability warning-the black bar safety net

! Recently, a third serious Flash 0day vulnerabilities show up. The vulnerability affects Windows, Linux, Mac system Adobe Flash Player 16.0.0.296 and all earlier versions, can lead to attacker control of the target system. Vulnerability This is the last few weeks Adobe user the third facing 0day...

Fix Firefox（Firefox browser commonly used security test plug-in Live HTTP Headers replay function-vulnerability warning-the black bar safety net

Live Http headers for Firefox the following Http header capture tool, commonly used in safety tests. But unfortunately the Replay function is not in the most recent version of the Firefox browser35.0.1, I decided to plug-in the official version of the update before to do a temporary repair. I fou...

By the Ghost vulnerability to cause“bloodshed”-vulnerability warning-the black bar safety net

0x00 background Recently a security company found the glibc gethostbyname buffer overflow vulnerability, the vulnerability is named ghost, the reason is glibc's Gethostbyname functions in processing incoming malformations of the domain information for parsing leads to heap overflow, numerous web...

Millet smart cameras small ants there is a remote command execution vulnerability-vulnerability warning-the black bar safety net

! t0167153064b2673d18. png Vulnerability description: Small ants Camera application management program the presence of a remote command execution vulnerability through the web interface with root privileges to execute arbitrary system commands without any web permissions, now the official latest...

Wary of the Ghost vulnerability in the butterfly effect granted Server Permissions-bug warning-the black bar safety net

Recently everyone is concerned about the Ghost vulnerability, CNNVD-2 0 1 5 0 1-6 5 8, In addition to in clockdiff, and procmail, and exim and other applications on the discovered vulnerabilities, yesterday security personnel found to have spread to the common on the web application, such as the...

Xiaomi smart home solutions”guest user”override control vulnerability-vulnerability warning-the black bar safety net

Millet always let a person countless daydream, it's each of the goods are the people to whom surprised. Xiaomi smart home solution,using a lot of hardware interaction, etc., giving users a very good experience. ! t01e2d571016343efa1. png In provide great convenience at the same time also introduc...

ThinkPHP 3.0~3.2 SQL injection vulnerability in detail and use-vulnerability and early warning-the black bar safety net

! ThinkPHP 3.03.2 a target=SQL injection vulnerability in detail with the use of" style="border: 0px;" onload="return imgzoomthis,5 5 0;" onclick="javascript:window. openthis. src;" style="cursor:pointer;"/ 0x00 background thinkphp recent vulnerability frequency, this exploit belongs to the...

Linux Glibc library critical security vulnerabilities and repair method-vulnerability warning-the black bar safety net

By Linux, the GNU glibc standard library gethostbyname function of the burst buffer overflow vulnerability, vulnerability number CVE-2 0 1 5-0 2 3 5 to. A hacker can through gethostbyname functions to achieve remote code execution, access to the server control and Shell access, and this...

Upload pictures of the shell to bypass the filter of several methods-vulnerability warning-the black bar safety net

General site picture upload function to the file filter, to prevent webshell written. But the different procedures of the filter are not the same, how to break through the filter to continue to upload? This article summarizes seven methods that can break! 1, The file header+GIF89a law. （php//this...

Friends news router discovery DNS hijacking vulnerability-vulnerability warning-the black bar safety net

Security researchers have found that the Friends of the hearing at least one model of the router is found that the presence of DNS hijacking vulnerability that can be remotely change the DNS settings, hijack the traffic. Ethical hackerEthical Hackerresearch group of Todor Donev said, the...

OS X < 10.10. x - Gatekeeper bypass Vulnerability-vulnerability warning-the black bar safety net

Exploit Title: OS X Gatekeeper bypass Vulnerability Date: 01-27-2015 Exploit Author: Amplia Security Research Vendor Homepage: www.apple.com Version: OS X Lion, OS X Mountain Lion, OS X Mavericks, OS X Yosemite Tested on: OS X Lion, OS X Mountain Lion, OS X Mavericks, OS X Yosemite CVE : CVE-2 0 ...

Microsoft Windows Server 2 0 0 3 SP2 - Privilege Escalation-vulnerability warning-the black bar safety net

KL-0 0 1-2 0 1 5-0 0 1 : Microsoft Windows Server 2 0 0 3 SP2 Arbitrary Write Privilege Escalation Title: Microsoft Windows Server 2 0 0 3 SP2 Arbitrary Write Privilege Escalation Advisory ID: KL-0 0 1-2 0 1 5-0 0 1 Publication Date: 2015.01.28 Publication URL:...

UniPDF 1.1 - Crash PoC (SEH overwritten)-vulnerability warning-the black bar safety net

Exploit Title: UniPDF v1. 1 BufferOverflow, SEH overwrite DoS PoC Google Dork: none Vendor Homepage: http://unipdf.com/ Software Link: http://unipdf.com/file/unipdf-setup.exe Redirect to: http://unipdf-converter.en.softonic.com/download Version: 1.1 Tested on: Windows 7 SP1 EN CVE : none Note:...

1 7-year-old adolescents disclosed the“American version of wechat,”a WhatsApp Web two security vulnerabilities-vulnerability warning-the black bar safety net

! Abroad the most popular mobile communication APP that is the United States of wechat）WhatsApp recently developed a web version. Unfortunately not on the line long, a 1 7-year-old Indian teenager discovered it 2 a security vulnerability. You again...... Run it juvenile Indrajeet Bhuyan 1 year 7...

Vulnerability tracking: Flash critical Vulnerability（CVE-2 0 1 5-0 3 1 1 detailed technical analysis-vulnerability warning-the black bar safety net

Last week's Flash 0day vulnerability you play cool. Known for their natural also want to know its so natural, playing tired, sit down and take a look at this vulnerability causes. Trend Micro recently to the vulnerability detailed analysis, the author translated, the readers. Vulnerability contex...

IE sandbox elevation of privilege vulnerability, CVE-2 0 1 5-0 0 1 6 analysis-vulnerability warning-the black bar safety net

This month, Microsoft's“Tuesday patch”coming out, includingMS15-0 0 4patch, repair a could cause elevation of Privilege vulnerabilities CVE-2 0 1 5-0 0 1 6，This is a very rare for IE sandbox vulnerability, Trend Micro researchers about this vulnerability for a detailed analysis. Patch details...

Tesla high-risk vulnerabilities-no need the key to open the vehicle-vulnerability warning-the black bar safety net

1 on 2 1, 3 6 0 the network attack and Defense laboratory released a second example of the Tesla high-risk vulnerabilities---without the key the vehicle on. Combination 3 6 0 the first report of remote control vehicles, realize unlocking, whistle, flashing lights of the vulnerability, a hacker ca...

Vulnerability tracking: how to check and fix the Ghost vulnerability-vulnerability warning-the black bar safety net

Number CVE-2 0 1 5-0 2 3 5 The Ghost vulnerability is a Qualys researcher discovered a Linux service on a very serious security vulnerability that can be exploited for remote code execution and local elevation of Privilege. ! Vulnerability brief description The vulnerability exists in the library...

A SMS crack“the world's most secure mobile”vulnerability disclosure-vulnerability warning-the black bar safety net

A message to break the“world's most secure phones” Myhack58 everreportstoo, known as“ the world's most secure phone”the BlackPhone at last year's black hat Conference on hackers team TeamAndIRC the group with a time of 5 minutes to hack to get root access. But recently, researchers went on it fou...

Remote let the phone restart count as vulnerability? At least Google says not to count-vulnerability warning-the black bar safety net

Security researchers recently announced about the Android WiFi-Direct vulnerabilities, the vulnerability can lead to Android device reboot. Google and the vulnerability is found above the Core Security of the company has been in debate about this Android vulnerability severity--in the end let the...