Web Solutions products.php parameters of the IDZ SQL injection vulnerability

No description provided by source...

English Fu the education system /VJ/PublicModule/MessageManage/Iframe_StuSend. aspx file pid parameter SQL injection vulnerability

No description provided by source...

MSCorp CMS gallery.php parameter id SQL injection vulnerability

No description provided by source...

While trying Server 6.0 mail system has an arbitrary File Download vulnerability

No description provided by source...

Dental CMS questionview.php 参数ID SQL注入漏洞

No description provided by source...

Ruvar OA system pm_gatt_inc. aspx SQL injection vulnerability

No description provided by source...

django CMS 3.3.0 - (Editor, Snippet) stored XSS

No description provided by source...

Joomla Huge IT Catalog Extension 1.0.4 XSS / SQL Injection Vulnerabilities

No description provided by source...

CoolPlayer+ Portable 2.19.6 - . m3u buffer overflow vulnerability

No description provided by source. Exploit Title: CoolPlayer+ Portable build 2.19.6 - .m3u Stack Overflow Egghunter+ASLR bypass Exploit Author: Karn Ganeshen Download link:...

SIRIUS news.php parameters gid a SQL injection vulnerability

No description provided by source...

ZTE ZXV10 MS90 video conferencing management system SQL injection vulnerability

No description provided by source...

PhpMyAdmin 4.3.0—4.6.2 authorized users remote command execution vulnerability

Problem source code part in PMA 4.6.2: - libraries/controllers/table/TableSearchController.php:708: php 708: private function getRegexReplaceRows ... 727: if isarray$result 728: foreach $result as $index=$row 729: $result$index1 = pregreplace 730: "/" . $find . "/", 731: $replaceWith, 732: $row0...

ZTE light cat F620 unauthorized access causes leakage of sensitive information

No description provided by source...

ask2 \control\favorite.php parameter id SQL injection

No description provided by source...

MediaCoder 0.8.43.5852 - .m3u缓冲区溢出漏洞

No description provided by source. Exploit Title: MediaCoder 0.8.43.5852 - .m3u SEH Exploit Exploit Author: Karn Ganeshen Vendor Homepage: http://www.mediacoderhq.com Download link: http://www.mediacoderhq.com/mirrors.html?file=MediaCoder-0.8.45.5852.exe Version: Current version 0.8.43.58.52 Test...

Crown State Library System /Ajax/Default. aspx file UserId parameter SQL injection vulnerability

No description provided by source...

workyi talent system search_Companyzl. aspx parameters s2 SQL injection vulnerability

No description provided by source...

OpenSNS v2 \Application\People\Controller\IndexController.class.php parameters arearank, the parameter uid SQL injection

No description provided by source...

ZTE enterprise gateway system voip_eone. be. php etc file command execution vulnerability

No description provided by source...

Schneider Electric PowerLogic PM8ECC XSS vulnerability

No description provided by source...

ZWC CMS index.php parameter id SQL injection vulnerability

No description provided by source...

ZTE enterprise gateway system local_rollback.be.php command execution vulnerability

No description provided by source...

AXIS Authenticated 远程命令执行漏洞

来源：packetstormsecurity Technical Details The devtools.sh script is the responsible for vulnerability and it's 4 attack vectors through the following pages: http://xxx.xxx.xxx.xxx/applicense.shtml?app= http://xxx.xxx.xxx.xxx/applicensecustom.shtml?app= http://xxx.xxx.xxx.xxx/appindex.shtml?app=...

ZTE enterprise gateway system reporting_calllogs_export.php command execution vulnerability

No description provided by source...

ZTE enterprise gateway system index.php select_lang local file inclusion vulnerability

No description provided by source...

Thousand OA collaborative office management platform defaultroot/mobile/setting/setPersonInfo. jsp injection vulnerability

No description provided by source...

Thousand OA /defaultroot/public/editor/tpsc. jsp file upload vulnerability

No description provided by source...

Live800 referrerSta. jsp companyID SQL injection vulnerability

No description provided by source...

Cause sho OA /mainpage/msglog. aspx file user parameter SQL injection vulnerability

No description provided by source...

Joomla component com_showdown SQL injection vulnerability

No description provided by source...

zzcms Product version \install\index.php re-installation vulnerability

No description provided by source...

Days Rui electronic library management system gl_tz_xian. asp parameter id SQL injection vulnerability

No description provided by source...

zzcms产品版 \dl\search.php 参数b SQL注入

No description provided by source...

Million ezOffice collaborative office management platform/defaultroot/xfservlet/XFireServlet/DealFileWebService injection vulnerability

No description provided by source...

zzcms Product version \dl\dl.php the parameter b SQL injection

No description provided by source...

TFTP Server 1.4 - WRQ Buffer Overflow Exploit (Egghunter)

No description provided by source. Exploit Title: TFTP Server 1.4 - WRQ Buffer Overflow Exploit Egghunter Exploit Author: Karn Ganeshen Vendor Homepage: http://sourceforge.net/projects/tftp-server/ Version: 1.4 Tested on: Windows Vista SP2 Coded this for Vista Ultimate, Service Pack 2 3-byte...

ZTE enterprise gateway system voip_eone.be.php parameters hid_id, etc. 2 arbitrary command execution vulnerability

No description provided by source...

Small and micro OA office management system v2. 0 \Application\Home\Controller\DocController.class.php parameter id SQL injection

No description provided by source...

Million hin College Management System /model/TwoGradePage/jxkj. aspx parameters columnId, etc sql injection vulnerability

No description provided by source...

WebStorm listing_detail.php parameter id SQL injection vulnerability

No description provided by source...

The micro-engine technology \web\source\mc\store.ctrl.php parameter id SQL injection

No description provided by source...

Shiro RememberMe 1.2.4 deserialize the result of command execution vulnerability

Author: rungobier 知道创宇404安全实验室 概述 Apache Shiro 在 Java 的权限及安全验证框架中占用重要的一席之地，在它编号为550的 issue 中爆出严重的 Java 反序列化漏洞。下面，我们将模拟还原此漏洞的场景以及分析过程。 0x01 漏洞场景还原 首先，需要获取 Apache Shiro 存在漏洞的源代码，具体操作如下: git clone https://github.com/apache/shiro.git git checkout shiro-root-1.2.4 cd ./shiro/samples/web...

Drupal 7. x RESTWS module command execution vulnerability

No description provided by source...

Cisco EPC3925 UPC Modem / Router default password vulnerability

No description provided by source...

Thousand OA collaborative office management platform govdocumentmanager_judge. jsp numId parameter sql injection vulnerability

No description provided by source...

Thousand OA collaborative office management platform GovReceiveFileAction. do RecordID parameter id injection vulnerability

No description provided by source...

PHP GC algorithm and anti-serialization mechanism after the release of the reuse vulnerability

Description: A critical use after free vulnerability was discovered when PHP's garbage collection algorithm interacts with other specific PHP objects. This vulnerability has wide reaching effects like allowing the exploitation of unserialize to gain remote code execution on a target system. While...

Million Ezoffice system /defaultroot/sp/desktop. jsp POST parameters userName SQL injection vulnerability

No description provided by source...

i-Tech Nepal Radio CMS image.php parameters al_id SQL injection vulnerability

No description provided by source...

Foosun CMS v4. 0 /user/SetNextOptions. asp parameters ReqSql SQL injection vulnerability

No description provided by source...