Seebug - Page 52 of Seebug Vulnerabilities List

PowerLogic PM8ECC是800 PowerMeter系列设备的通讯模块。根据施耐德电气描述, PowerLogic PM8ECC部署于商业设施部门并已在全世界广泛使用。漏洞描述： 1.访问/status.htm页面。在没登录的情况下发现“User”处有一字符串； 2.以该字符串作为用户名和密码即可登录该设备的Web管理界面和FTP（如有），虽然用户列表中无该用户。...

7.1AI score

Exploits0

seebug.org•added 2016/06/27 12:0 a.m.•31 views

悟空CRM App\Lib\Action\BusinessAction.class.php SQL注入

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/27 12:0 a.m.•335 views

Swagger 通过参数注入远程代码执行漏洞

详情来源： R7-2016-06 This disclosure will address a class of vulnerabilities in a Swagger Code Generator in which injectable parameters in a Swagger JSON or YAML file facilitate remote code execution. This vulnerability applies to NodeJS, PHP, Ruby, and Java and probably other languages as well. Othe...

8.3AI score

Exploits3

seebug.org•added 2016/06/27 12:0 a.m.•24 views

seacms /htdocs/seacms/member.php id参数 SQL注入

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/27 12:0 a.m.•15 views

metinfo v5.3 /news/news.php 参数serch_sql SQL盲注漏洞

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/27 12:0 a.m.•34 views

MetInfo 5.3.4 /member/login.php SQL注入

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/27 12:0 a.m.•14 views

Haidao网店系统 /appliaction/Controller/User/CouponsController.class.php等2处SQL注入

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/27 12:0 a.m.•22 views

WordPress Like Dislike Counter 1.2.3 插件 SQL注入漏洞

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/27 12:0 a.m.•14 views

ZTE Management system网关设备通用型2处任意文件下载漏洞

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/24 12:0 a.m.•15 views

PHPOA V4. 0 /phpoa/upload/index.php arbitrary file upload vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/24 12:0 a.m.•14 views

Schoolhos CMS 2.29 Parameter kelas SQL injection vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/24 12:0 a.m.•10 views

PcManFtp DELE command buffer overflow vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/24 12:0 a.m.•21 views

Blue Ling EIS wisdom collaboration platform /MobileApp/login. aspx injection vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/24 12:0 a.m.•14 views

Blue Ling EIS wisdom collaboration platform /vote/service. aspx injection vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/24 12:0 a.m.•33 views

Blue Ling micro applications CMS /basic/usermanager/sysOrgUser/login fdName parameter SQL injection vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/24 12:0 a.m.•17 views

Blue Ling EIS wisdom collaboration platform /sm/menu_left_edit. aspx injection vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/24 12:0 a.m.•366 views

phpoa upLoadOfficeFile.php 任意文件上传漏洞

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/24 12:0 a.m.•18 views

PcManFtp the LS command buffer overflow

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/22 12:0 a.m.•15 views

WordPress Mobile Detector <=3.5 resize.php the src parameter local file include vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/22 12:0 a.m.•21 views

Lws-Construction Management actualites.php parameters id_actualite SQL injection vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/22 12:0 a.m.•29 views

ETMV9 digital campus platform any download

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/22 12:0 a.m.•16 views

seacms /htdocs/seacms/reg.php ip参数 SQL注入

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/22 12:0 a.m.•13 views

网视领航电视台在线播放系统 /t/t1/user/bkzjsplb.aspx 参数 bkzjid SQL注入漏洞

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/22 12:0 a.m.•40 views

Zhejiang uniview technologies security(DVR/NVR)and other monitoring equipment command execution

In file /Interface/DevManage/VM.php in: code area .............. Code omitted.................... // Set the DNS to resolve the server address case 'setDNSServer' : shellexec'echo "nameserver '. 'DNSServerAdrr'.'"'.' /etc/resolv. conf'; 'Code' = 0; getTip; echo jsonencode; break; default :...

7.3AI score

Exploits0

seebug.org•added 2016/06/22 12:0 a.m.•63 views

Web interface for DNSmasq / Mikrotik - SQL Injection

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/21 12:0 a.m.•9 views

Days Bo online training system /Web_Org/Class_Info. aspx file couseid parameter SQL injection vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/21 12:0 a.m.•22 views

SG8000 large rotating machine monitoring system /app/sg8k_rs/config/defaultuser.xml the system Super administrator account password information disclosure

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/21 12:0 a.m.•33 views

S8000 rotating machinery online condition monitoring and analysis system weak password

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2016/06/21 12:0 a.m.•31 views

S8000 rotating machinery online condition monitoring and analysis system /default. asp parameter username injection vulnerability

No description provided by source...

7.1AI score