Lucene search
K
SeebugMost viewed

56796 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.98 views

Hampshire Trading Standards Script SQL Injection Vulnerability

No description provided by source. Title: Hampshire Trading Standards Script SQL Injection Vulnerability Version: 1.0 Author: Mr.P3rfekT Software Link:N/A Tested on Lunix CVE : N/A Founded By Mr.P3rfekT Dork : inurl:tradeCategory.php?id= Helllo Allz. Exploit :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/05/20 12:0 a.m.97 views

iGenus邮件系统 邮件储存型XSS(打开自动触发,多家政府,企业在使用)

简要描述: - iGenus邮件系统 邮件储存型XSS打开自动触发,多家政府,企业在使用) - 中国科学技术大学选用爱琴思邮件系统 - 北京市丰台教委量身定制教委应用邮件系统 - 浙江财经学院牵手爱琴思邮件系统 - 北京锐迪科微电子再次牵手爱琴思邮件 - 北京汉王科技再次选购爱琴思邮件系统 - 西安乐尚网络选购爱琴思邮件系统 - 北京瑞地通信选购爱琴思邮件系统 - 北京理工大学再次签约爱琴思邮件 - 上海宏洋网络选购爱琴思邮件系统 - 东软集团股份有限公司选购爱琴思邮件系统 - 上海劲霸投资公司选购爱琴思邮件系统 - 热烈祝贺中铁八局再次采购爱琴思邮件系统 - 卢米埃影业选购爱琴思邮件系...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/02/12 12:0 a.m.97 views

Microsoft .NET Framework 远程权利提升漏洞(CVE-2014-0257)(MS14-009)

BUGTRAQ ID: 65417 CVECAN ID: CVE-2014-0257 .NET就是微软的用来实现XML,Web Services,SOA(面向服务的体系结构service-oriented architecture)和敏捷性的技术。.NET Framework是微软开发的软件框架,主要运行在Microsoft Windows上。 Microsoft.NET Framework内存在权限提升漏洞,可使攻击者提升其在受影响系统上的权限。 0 Microsoft .NET Framework 4.x Microsoft .NET Framework 3.x Microsoft...

9.3CVSS2.9AI score0.69801EPSS
Exploits6
seebug.org
seebug.org
added 2013/05/17 12:0 a.m.97 views

nginx 'ngx_http_parse.c'栈缓冲区溢出漏洞

BUGTRAQ ID: 59699 CVECAN ID: CVE-2013-2028 nginx是HTTP及反向代理服务器,同时也用作邮件代理服务器。 nginx 1.3.9 - 1.4.0在解析HTTP块时,"ngxhttpparsechunked"函数 http/ngxhttpparse.c中存在错误,可被利用造成栈缓冲区溢出。 0 Nginx 1.3.9 - 1.4.0 临时解决方法: 建议您升级到nginx 1.4.1或者是1.5.0。但如果您不能立刻安装补丁或者升级,您可以采取以下措施以降低威胁: 在每个server块中使用如下配置 if $httptransferencodi...

7.5CVSS2.1AI score0.87475EPSS
Exploits15
seebug.org
seebug.org
added 2010/08/03 12:0 a.m.97 views

Unix平台Apache mod_proxy_http模块超时处理信息泄露漏洞

BUGTRAQ ID: 42102 CVECAN ID: CVE-2010-2791 Apache HTTP Server是一款流行的Web服务器。 Apache HTTP Server的modproxyhttp模块中的modproxyhttp.c文件没有正确地检测超时,在某些超时情况下服务器可能返回属于其他用户的响应,导致泄漏敏感信息。仅有可触发使用代理worker池的配置才受影响。 该漏洞与CVE-2010-2068中所述漏洞相同,但影响的是Unix系统上的httpd。 Apache 2.2.9 厂商补丁: Apache Group ------------...

5CVSS5.5AI score0.16002EPSS
Exploits2
seebug.org
seebug.org
added 2009/06/12 12:0 a.m.97 views

4images <= 1.7.7 Filter Bypass HTML Injection/XSS Vulnerability

No description provided by source. || || | || o,7 || . o7 || q||| o\, : / / . =By: Qabandi =Email: iqaahotmail.fr From Kuwait, PEACE... =Vuln: 4images = 1.7.7 - filter bypass HTML injection/XSS =INFO: =BUY: =DORK: -=/:Conditions:=-...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/11/03 12:0 a.m.97 views

Maran PHP Shop (prod.php cat) SQL Injection Vulnerability

No description provided by source. Maran PHP Shop prod.php cat SQL Injection Vulnerability url: http://www.maran.pamil-visions.com/maranshop.php Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/09/27 12:0 a.m.97 views

PHP 'create_function()'代码注入漏洞

BUGTRAQ ID: 31398 CNCAN ID:CNCAN-2008092610 PHP是一款流行的WEB编程语言。 PHP不正确过滤传递给'createfunction'的输入,远程攻击者可以利用漏洞以特权应用程序权限执行任意代码。 PHP使用createfunction函数用于CREATE一个匿名函数: 1,使用createfunction建立一个匿名函数: ?php $newfunc = createfunction'$a,$b', 'return "ln$a + ln$b = " . log$a $b;'; echo "New anonymous function:...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2008/07/24 12:0 a.m.97 views

BIND 9.4.1-9.4.2 Remote DNS Cache Poisoning Flaw Exploit (py)

No description provided by source. from scapy import import random Copyright C 2008 Julien Desfossez [email protected] http://www.solisproject.net/ This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Softwa...

5CVSS7.1AI score0.95182EPSS
Exploits20
seebug.org
seebug.org
added 2008/06/25 12:0 a.m.97 views

Link ADS 1 (out.php linkid) Remote SQL Injection Vulnerability

No description provided by source. Link ADS 1 SQL Injection Vulnerability ======================================================== Author: Hussin X Home : www.tryag.cc/cc email: darkangel...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/03/18 12:0 a.m.97 views

MG-SOFT Net Inspector 6.5.0.828 Multiple Remote Vulnerabilities

No description provided by source. Luigi Auriemma Application: MG-SOFT Net Inspector http://www.mg-soft.com/netinsp.html bug C affects any MgWTrap3 service which is included in...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/12/26 12:0 a.m.97 views

RunCMS 1.6 Multiple Remote Vulnerabilities

No description provided by source. Digital Security Research Group Advisory Application: RunCMS Versions Affected: RunCMS 1.6 Vendor URL: http://www.runcms.org Bugs: SQL Injections, XSS, PHP Include, Predictable session id, etc. Exploits: Aviable Reported: 14.12.2007 Vendor response: 15.12.2007...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/09/14 12:0 a.m.97 views

Ajax File Browser 3b (settings.inc.php approot) RFI Vulnerability

No description provided by source. Ajax File Browser 3 Beta Remote File Inclusion found by the "arfis project" http://arfis.wordpress.com/ Project Info: ------------- Name: Ajax File Browser Link: http://sourceforge.net/projects/ajaxfb/ DL:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/06/18 12:0 a.m.97 views

Apache Tomcat Manager和Host Manager上传跨站脚本漏洞

Apache Tomcat是一个流行的开放源码的JSP应用服务器程序。 Apache Tomcat包含的管理和主机管理WEB应用程序不正确处理URL数据,远程攻击者可以利用漏洞进行跨站脚本攻击,获得敏感信息。 提交恶意POST请求,由于不充分过滤,可导致提交恶意脚本代码作为参数,当其他用户解析时可泄露敏感信息。 Apache Tomcat 6.0.13 Apache Tomcat 6.0.12 Apache Tomcat 6.0.11 Apache Tomcat 6.0.10 Apache Tomcat 6.0.9 Apache Tomcat 6.0.8 Apache Tomcat...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/04/25 12:0 a.m.97 views

OpenSSH S/Key远程信息泄露漏洞

OpenSSH是一款流行的加密安全shell应用实现。 在使用S/KEY的情况下OpenSSH存在信息泄露问题,远程攻击者可以利用漏洞获得系统帐户的敏感信息。 如果"ChallengeResponseAuthentication"设置为"Yes"默认设置,SH允许用户通过使用'ssh userid:skey at hostname'形式的S/KEY登录,一般的SSH行为如: =============================================================================== alucard $ ssh user at...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2007/03/24 12:0 a.m.97 views

0irc-client v1345 build20060823 Denial of Service Exploit

No description provided by source. / 0irc-client v1345 build 20060823 DoS Exploit By DiGitalX [email protected] Date: 22/3/2007 -- MicroSystem Team -- Site: http://DiGitalX.I.am Description: 0irc-client suffers from a NULL pointer derefrencing bug. / define WIN32LEANANDMEAN include winsock2.h...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/12/06 12:0 a.m.97 views

myEvent Myevent.PHP远程文件包含漏洞

myEvent是一款基于PHP的事件管理程序。 myEvent不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是'myevent.php'脚本对用户提交的"myeventpath"参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 myWebland myEvent 1.3 myWebland myEvent 1.2 http://mywebland.com/download.php?id=6...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/10/25 12:0 a.m.97 views

Microsoft Windows TCP连接重置漏洞 (MS05-019/MS06-064)

Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows的TCP实现中存在拒绝服务漏洞,远程攻击者可能利用此漏洞进行拒绝服务攻击。 攻击者可以向受影响的系统发送特制的TCP消息导致重置已有的TCP连接。 Microsoft Windows ME Microsoft Windows 98se Microsoft Windows 98 Microsoft Windows 2000 SP4 Microsoft Windows 2000 SP3 Microsoft Windows XP SP1 Microsoft Server 2003...

7.5AI score
Exploits0
seebug.org
seebug.org
added 2017/10/16 12:0 a.m.96 views

Microsoft Office SMB Information Disclosure

Vulnerability Summary The following advisory describes an information disclosure found in Microsoft Office versions 2010, 2013, and 2016. Microsoft Office is: “Whether you’re working or playing, Microsoft is here to help. We’re the company that created Microsoft Office, including Office 365 Home,...

6.3AI score
Exploits0
seebug.org
seebug.org
added 2017/07/25 12:0 a.m.96 views

ManageEngine Desktop Central 10 Build 100087 RCE(CVE-2017-11346)

Description: When uploading a file, the FileUploadServlet class does not check the user-controlled fileName parameter using hasVulnerabilityInFileName function. This allows a remote attacker to create a malicious file and place it under a directory that allows server-side scripts to run, which...

7.5CVSS9.5AI score0.4327EPSS
Exploits5
seebug.org
seebug.org
added 2016/05/04 12:0 a.m.96 views

OpenSSL Padding oracle in AES-NI CBC MAC check (CVE-2016-2107)

No description provided by source...

2.6CVSS8.4AI score0.89058EPSS
Exploits6
seebug.org
seebug.org
added 2016/01/07 12:0 a.m.96 views

Netcore / Netis 路由器后门

漏洞概要 2014 年 8 月末,由中国生产的一系列路由器(国内品牌名称为 Netcore ,国外品牌名称为 Netis )被爆出含有一个严重的后门漏洞。攻击者可以通过此漏洞获取路由器 root 权限。 2014 年 12 月 28 日,微博上爆料 Netcore 的后门仍然存在(文章地址:http://www.weibo.com/p/1001603792736686871336)。 漏洞描述 Netcore 系列路由器在 /bin 目录下存在一个名为 igdmptd 的程序,此程序会监听 UDP 端口 53413 端口: 之后调用 operateloop...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/01/16 12:0 a.m.96 views

phpyun某处SQL注入漏洞含POC

简要描述: 20141231 详细说明: phpyun使用了360和一个自身的防护脚本 我们来看看过滤情况 这都是我们常用查询语句。出现这些语句就会结束,以及替换。 不过这里有个安全隐患就是 sysafekey安装默认为7854222ffdss 这样会导致POST无过滤。 好了我们继续。 =============================================== \wap\member\model\index.class.php:200:addresumeaction函数 带入POST 表的一部分我们可控,这样我们能用0x来绕过防护脚本。继续看mysql数据操作...

7AI score
Exploits0
seebug.org
seebug.org
added 2014/09/21 12:0 a.m.96 views

某学校综合管理平台OAsql注入漏洞(影响大量学校)

简要描述: 前台走一走 详细说明: 问题厂商:上海安脉计算机科技有限公司 谷歌百度:版权所有:上海安脉计算机科技有限公司 大量学校使用该系统 管理平台没发现漏洞,但是这套系统附带一套oa系统 /anmai/oa/adduser.aspx 在密码出现sql注入 只能手工不好利用 但是 这有个用户修改 只需添加参数id /anmai/oa/adduser.aspx?id=1 (id存在注入) 以该公司demo为例 http://www.anmai.net/anmai/oa/adduser.aspx?id=1 Place: GET Parameter: id Type: error-based...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.96 views

MediaWiki Thumb.php - Remote Command Execution

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient def...

6CVSS0.3AI score0.42777EPSS
Exploits12
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.96 views

Apache Commons FileUpload and Apache Tomcat - Denial-of-Service

No description provided by source. CVE-2014-0050 Apache Commons FileUpload and Apache Tomcat Denial-of-Service Author: Oren Hafif, Trustwave SpiderLabs Research This is a Proof of Concept code that was created for the sole purpose of assisting system administrators in evaluating whether their...

7.5CVSS7.5AI score0.83175EPSS
Exploits8
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.96 views

kubix <= 0.7 - Multiple Vulnerabilities exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on \r\n"; echo "Thanks to rgod for the php code and Marty for the Love\r\n\r\n"; if $argc Related: path of the file to include\r\n"; echo " |- Es: php ".$argv0." localhost /kubix/ 1 ../../../../../etc/passwd\r\n\r\n"; echo " 2 -...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.96 views

VSFTPD 2.3.4 - Backdoor Command Execution

No description provided by source. $Id: vsftpd234backdoor.rb 13099 2011-07-05 05:20:47Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/04/16 12:0 a.m.96 views

HP多个产品OpenSSL TLS/DTLS心跳信息泄漏漏洞

CVE ID:CVE-2014-0160 HP多个产品存在安全漏洞。 HP多个产品所绑定的OpenSSL存在安全漏洞,OpenSSL处理TLS”心跳“扩展存在一个边界错误,允许攻击者利用漏洞获取64k大小的已链接客户端或服务器的内存内容。内存信息可包括私钥,用户名密码等。 0 HP Onboard Administrator 4.x HP AssetManager 9.x HP Diagnostics 9.x HP IT Executive Scorecard 9.x HP LoadRunner 11.x HP LoadRunner 12.x HP OpenView Connect-It...

5CVSS1.3AI score0.99999EPSS
Exploits87
seebug.org
seebug.org
added 2014/01/15 12:0 a.m.96 views

Discuz附件下载权限绕过

简要描述: 绕过附件下载权限只是漏洞的一个应用,还可以免费下载附件,其他的应用还没发掘.. 详细说明: 在下载附件的时候,附件所设置的“阅读权限”可以被绕过。 Discuz的附件下载地址是类似 forum.php?mod=attachment&aid=Nzg4fDQwNGQzYjMxfDEzODk2OTM4Mzh8MzEyNTR8MjY3Mw%3D%3D 这样的地址,其中的aid参数是一串base64,解码后是: 788|404d3b31|1389693838|31254|2673 这串aid在source/module/forum/forumattachment.php 中被这样解析...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2011/09/24 12:0 a.m.96 views

DeDeCMS(织梦) 变量覆盖(CVE-2015-4553)

简要描述: 1.受影响版本DEDECMS 5.7、5.6、5.5。 2.漏洞文件/include/common.inc.php 3.DEDECMS的全局变量初始化存在漏洞,可以任意覆盖任意全局变量。 漏洞危害: 1.黑客可以通过此漏洞来重定义数据库连接。 2.通过此漏洞进行各种越权操作构造漏洞直接写入webshell后门。 !usr/bin/php -w 12 echo " Exploit Success \n"; if$aid==1echo " Shell:".$url."/$path/data/cache/fuck.php\n" ; if$aid==2echo "...

8.8AI score0.56738EPSS
Exploits6
seebug.org
seebug.org
added 2009/12/17 12:0 a.m.96 views

PostgreSQL索引函数会话状态修改本地特权提升漏洞

Bugraq ID: 37333 CVE ID:CVE-2009-4136 PostgreSQL是一款对象关系型数据库管理系统,支持扩展的SQL标准子集。 索引函数中处理会话状态更改存在一个错误,本地攻击者可以利用漏洞提升特权。 PostgreSQL PostgreSQL 8.4.1 PostgreSQL PostgreSQL 8.3.8 PostgreSQL PostgreSQL 8.3.6 PostgreSQL PostgreSQL 8.2.14 PostgreSQL PostgreSQL 8.2.6 PostgreSQL PostgreSQL 8.2.4 PostgreSQL...

6.5CVSS6.7AI score0.03644EPSS
Exploits3
seebug.org
seebug.org
added 2008/01/11 12:0 a.m.96 views

Apache mod_imagemap和mod_imap模块跨站脚本漏洞

BUGTRAQ ID: 26838 CVECAN ID: CVE-2007-5000 Apache HTTP Server是一款流行的Web服务器。 Apache的modimagemap和modimap模块中没有正确地过滤某些用户输入,允许远程攻击者提交恶意的HTTP请求执行跨站脚本攻击。 Apache Group Apache 2.2.0 - 2.2.6 Apache Group Apache 2.0.35 - 2.0.61 Apache Group Apache 1.3.0 - 1.3.39 Apache Group ------------...

4.3CVSS9.5AI score0.46603EPSS
Exploits1
seebug.org
seebug.org
added 2007/09/17 12:0 a.m.96 views

Ajax File Browser 3b (settings.inc.php approot) RFI Vulnerability

No description provided by source. Ajax File Browser 3 Beta Remote File Inclusion found by the "arfis project" http://arfis.wordpress.com/ Project Info: ------------- Name: Ajax File Browser Link: http://sourceforge.net/projects/ajaxfb/ DL:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/05/04 12:0 a.m.96 views

PHP Coupon Script 3.0 (index.php bus) Remote SQL Injection Vulnerability

No description provided by source. ============================================== PHP Coupon Script 3.0 Remote SQL Injection ============================================== Found: Cyber-Security.org ============================================== Script site: http://www.couponscript.com/...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/01/04 12:0 a.m.96 views

Durian Web Application Server远程缓冲区溢出漏洞

Durian Web Application Server是一款WEB应用服务程序。 Durian Web Application Server不正确处理畸形请求,远程攻击者可以利用漏洞对应用程序进行拒绝服务或缓冲区溢出攻击。 提交超长请求可导致缓冲区溢出,或者提交畸形请求可显示1000个访问冲突对话框而造成拒绝服务攻击。 Durian Web Application Server 3.02 目前没有解决方案提供: http://sourceforge.net/projects/durian/ //Durian Web Application Server 3.02 freeware f...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/12/08 12:0 a.m.96 views

PHPBB2多个本地文件包含漏洞

PHPBB2是一款基于PHP的论坛程序。 PHPBB2不充分过滤用户提交的URI输入,远程攻击者可以利用漏洞以WEB进程权限查看系统文件内容。 问题是多个脚本对用户提交的WEB参数缺少过滤,提交包含多个"../"字符作为参数数据,可绕过WEB ROOT限制,以WEB进程权限查看系统文件内容。 phpBB2 phpBB2 Plus 2.0.13 + phpBB Group phpBB 2.0.13 + phpBB Group phpBB 2.0.12 http://www.phpbb2.de/...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/11/10 12:0 a.m.96 views

EncapsCMS 0.3.6 (core/core.php) Remote File Include Vulnerability

No description provided by source. Firewall encapscms 0.3.6 - Remote File Include by Firewall BuG FounD by Firewall Application Affect: encapscms 0.3.6 Sorce Code: http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip Code: includeonce$root."core/Config.php";...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/05/15 12:0 a.m.96 views

Squirrelcart &lt;= 2.2.0 (cart_content.php) Remote Inclusion Vulnerability

No description provided by source. Title : Squirrelcart = 2.2.0 Remote File Inclusion URL : http://www.ldev.com/ google Dork : inurl:/squirrelcart/ Author : OLiBekaS greetz : Skulmatic, weleh, brokencode, bigmaster and all papmahackerlink crew Exploit :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2018/05/02 12:0 a.m.95 views

Multiple Vulnerabilities in NagiosXI

We found four vulnerabilities in NagiosXI, and chained them together to create a root RCE exploit, available here. Vulnerability chaining can increase the risk posed by individual vulns, it takes a village to raise a root RCE etc. etc. If you’re running NagiosXI = 5.4.12, update. If you perform...

9CVSS10AI score0.64172EPSS
Exploits12
seebug.org
seebug.org
added 2017/05/11 12:0 a.m.95 views

Git Shell Bypass By Abusing Less (CVE-2017-8386)

The git-shell is a restricted shell maintained by the git developers and is meant to be used as the upstream peer in a git remote session over a ssh tunnel. The basic idea behind this shell is to restrict the allowed commands in a ssh session to the ones required by git which are as follows:...

6.5CVSS9.3AI score0.12387EPSS
Exploits2
seebug.org
seebug.org
added 2016/04/19 12:0 a.m.95 views

ILAS图书管理系统 BookRetr.aspx 参数KeyWord SQL注入漏洞

0x01 框架介绍 相关厂商: 深圳市科图自动化新技术应用公司 提交时间: 2015-06-28 漏洞类型: SQL注射漏洞 官方主页: www.ilas.com.cn ILASIII “数字图书馆体系结构研究与应用平台开发”项目(简称ILAS III)是我公司继ILAS II、UACN之后又一次为全国图书馆界提供的应用软件平台,该项目于2005年5月通过了文化部鉴定,专家一致认为:ILAS III在分布式的体系结构、跨平台和跨数据库应用、系统实用性和功能完备性等方面达到了国内领先水平。 ILAS...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/28 12:0 a.m.95 views

天融信WEB应用安全网关 /db/wafconfig.db 文件 信息泄露漏洞

0x01 框架概述 天融信WEB应用安全防护系统(简称TopWAF)是天融信公司根据当前的互联网安全形势,并经过多年的技术积累,研制出品的专业级WEB威胁防护类网络安全产品。 TopWAF是天融信WEB安全团队针对“网站型”服务器量身定制的产业化产品,汇聚了天融信公司长期对网站系统及WEB安全领域的研究成果。产品主要从网站系统可用性和信息可靠性的角度出发,满足用户对于WEB威胁防护、WEB性能优化及WEB数据分析等功能的核心需求,致力于为各类网站系统提供全方位的安全防护及业务优化解决方案。 官方主页: http://www.topsec.com.cn/ 0x02 漏洞细节...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/28 12:0 a.m.95 views

天融信网络卫士安全审计系统 /policy/manager/policy_bak.xls 文件 信息泄露漏洞

0x01 框架概述 天融信网络卫士数据库审计系统TopAudit-DB V3(简称TA-DB)是由北京天融信公司自主研发的面向企业级用户的数据库信息审计系统,同时集成网络审计功能、日志审计功能和运维审计功能。TA-DB系统以旁路的方式部署在网络中,不影响网络的性能具有即时的网络数据采集能力、强大的审计分析功能以及智能的信息处理能力。 通过使用该系统,可以实现如下目标: 实现对单位业务系统核心数据库的操作过程进行审计 有效保护业务数据的完整性。可以对违规行为进行审计记录与报警 对用户的网络行为监控、网络传输内容进行审计 官方主页: www.topsec.com.cn 0x02 漏洞细节...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/29 12:0 a.m.95 views

Edusoho敏感信息泄露漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/09/20 12:0 a.m.95 views

Discuz!3.2 利用UC_KEY登陆任意用户

几乎所有版本都可以吧(在得到uckey情况下)/api/uc.php里面有个synlogin方法function synlogin$get, $post global $G; if!APISYNLOGIN return APIRETURNFORBIDDEN; header'P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"'; $cookietime = 31536000; $uid = intval$get'uid'; if$member =...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/10/08 12:0 a.m.95 views

青果软件某系统存在通信敏感信息泄露漏洞

简要描述: 青果软件某系统存在敏感信息泄露 详细说明: 青果软件邮件系统 https://mail.kingosoft.com/ 存在OpenSSL心脏出血漏洞,导致敏感信息泄漏 漏洞证明: Connecting... Sending Client Hello... Waiting for Server Hello... ... received message: type = 22, ver = 0302, length = 66 ... received message: type = 22, ver = 0302, length = 770 ... received message...

7AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.95 views

Smart Vsion Script News (newsdetail) SQL Injection Vulnerability

No description provided by source. Exploit Title: Smart Vsion Script News newsdetail SQL Injection Vulnerability Software Link: www.esmart-vision.comhttp://www.esmart-vision.com/ ============================================ | Smart Vision Script News newsdetail SQL Injection Vulnerability...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.95 views

WordPress <= 1.5.1.1 - SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w SQL Injection Exploit for WordPress = 1.5.1.1 This exploit shows the username of the administrator of the blog and his password crypted in MD5, you must only choose the correct version of the target Related advisory:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.95 views

Arab Portal 2.1 - Remote File Disclosure Vulnerability (win only)

No description provided by source. Arab Portal v2.1 Remote File Disclosure Win32 AUTHOR : IRCRASH R3d.W0rm Sina Yazdanmehr Discovered by : R3d.W0rm Sina Yazdanmehr Our Site : Http://IRCRASH.COM IRCRASH Team Members : Dr.Crash - R3d.w0rm Sina Yazdanmehr - Hadi Kiamarsi Download : www.arabportal.ne...

7.1AI score
Exploits0
Total number of security vulnerabilities5000