Days Bo online training system network school Edition Course_Class_List_Default. aspx the parameter cid SQL injection vulnerability

No description provided by source...

SAUDI SOFTECH gallery.php parameters gid a SQL injection vulnerability

No description provided by source...

Airlive WL-2600CAM IP Camera information disclosure vulnerability

No description provided by source...

WordPress WP Mobile Detector Plugin 3.5 file upload vulnerability

No description provided by source...

MikroTik RouterOS cross-site request forgery vulnerability

No description provided by source...

天柏在线培训系统 /Web_Org/Ddcb_View.aspx 文件 infoid 参数SQL注入漏洞

No description provided by source...

WUZHICMS coreframe\app\tags\index.php tid参数 SQL注入

No description provided by source...

天柏在线培训系统 /Web_Org/CW_Default.aspx 文件 couseid 参数SQL注入漏洞

No description provided by source...

HDCMS内容管理系统 spacecontroller.class.php 参数username SQL注入漏洞

0x01漏洞简介 HDCMS内容管理系统在文件spacecontroller.class.php处的参数username存在SQL注入漏洞。 0x02漏洞详情 member/controller/spacecontroller.class.php public function init //用户名 if $username = Q'username' $uid = M'user'-where"username='$username'"-getField'uid'; goU"index", array'uid' = $uid; $this-uid = Q'uid', 0, 'intval...

农友政务系统 /ExtWebModels/LandManage/WoodsManage.aspx POST参数WoodID SQL注入漏洞

No description provided by source...

百度浏览器网站伪造漏洞

No description provided by source...

WSTMall apps\home\action\ArticlesModel.class.php articleId参数 SQL注入

No description provided by source...

Allegro RomPager 缓冲区溢出漏洞

AllegroSoft RomPager是美国AllegroSoft公司的一套嵌入式Web服务器工具包，它允许用户使用通用的Web浏览器管理和控制网络打印机、交换机和路由器等网络设备的万维网（WWW）服务。 AllegroSoft RomPager中存在缓冲区溢出漏洞。远程攻击者可利用该漏洞造成拒绝服务或执行任意代码。 目前厂商已经发布了升级补丁以修复此安全问题，补丁获取链接：...

mallbuilder多用户商城 /module/product/admin/product.php 参数oid SQL注入漏洞

0x01漏洞简介 mallbuilder多用户商城系统在页面/module/product/admin/product.php处的参数oid 存在SQL注入漏洞。远程攻击者无需登陆，可以结合回显报错等方式，利用该漏洞执行SQL指令。 0x02漏洞详情 看到module/product/admin/product.php setorderstatu$GET'oid',6; $sqld="select from ".ORDER." where orderid=".$GET'oid'; 然后构造...

dzzoffice information title of the stored XSS vulnerability

0x01 vulnerability profile dzzoffice stored XSs one comfortably the background can be hit cookie 0x02 vulnerability details The point of the desktop information new In the information header of the inserted code may trigger a call to the xss platform insert 只要用户访问就可以打到他cookie了 0x03 solution...

Fujian four create disaster early warning system FileType. aspx parameter ID SQL injection vulnerability

No description provided by source...

HDWiki 5.1 /control/user. php, etc. 2 SQL injection vulnerability

HDWiki description Interactive wiki open source systems HDWiki as China's first with independent intellectual property rights of the Chinese Wiki（Wiki）system, the interactive online（Beijing）Technology Co., Ltd. in 2006 to 11 November 28 the official launch, and strive for domestic and foreign man...

HDWiki 5.1 /control/doc.php SQL injection vulnerability

HDWiki description Interactive wiki open source systems HDWiki as China's first with independent intellectual property rights of the Chinese Wiki（Wiki）system, the interactive online（Beijing）Technology Co., Ltd. in 2006 to 11 November 28 the official launch, and strive for domestic and foreign man...

Multiple Airlive IP Cameras backup file information disclosure vulnerability

No description provided by source...

Whitney Walton Internet behavior management system /base/message/welcome_pc.php parameter id SQL injection vulnerability

0x01 vulnerability description Whitney Walton Internet behavior management system in page/base/message/welcomepc. php for the GET parameter id filter is not strict, led to the emergence of SQL injection vulnerability. 0x02 vulnerability details File: base/message/welcomepc.php ? php $thisfile =...

Farmers-government system /ExtWebModels/WebManage/ProductList. aspx POST parameters PName SQL injection vulnerability

No description provided by source...

Joomla component com_availcal parameter id SQL injection vulnerability

No description provided by source...

Farmers agriculture regulatory system /ckq/plview. aspx parameter CountryName SQL injection vulnerability

http://xxx/general/document/index.php/recv/register/turn post:SERVER=&rid=expselectfromselect concat0x7e7e7e,@@version,0x7e7e7e from user limit 0,1x...

Million hin College management system playtv. aspx parameter id SQL injection vulnerability

No description provided by source...

Easy to create think CMS ViewSecrecyGuestBookMessage. aspx parameters sn SQL injection vulnerability

No description provided by source...

HeerOA faWenAction.do 参数readFile.fileId 本地文件包含漏洞

No description provided by source...

And drainage SCADA industrial control systems /DataSrvs/UCCGSrv. asmx/GetWaterMeterType Parameter model SQL injection vulnerability

No description provided by source...

唐桥视频会议系统 /common/web_meeting/ajax.php文件gpId参数SQL注入漏洞

No description provided by source...

中兴W-LAN无线接入控制器 /apgroup/getChannelByCountryCode.php 参数CountryCode注入漏洞

No description provided by source...

FineCMS 企业版后台模板管理任意文件上传漏洞

No description provided by source...

Meteocontrol WEBlog 多个越权漏洞

No description provided by source...

Cerio DT-200N router 弱口令

...

Resource Data Management Intuitive 650 TDB控制器权限提升漏洞

No description provided by source...

WUZHICMS coreframe\app\order\order_goods.php cartids参数 SQL注入

No description provided by source...

PivotX 2.3.11 代码执行漏洞

Pivotx是一套开源的博客内容管理系统（Blog CMS）。该系统支持内置评论审查、垃圾信息防护和模板更换等功能。 PivotX 2.3.11中存在代码执行漏洞。由于重命名文件时未能检查扩展名。攻击者能够执行任意代码。 漏洞出现在上传功能,当上传文件时,为了防止恶意文件的上传,如PHP文件asp文件等等可以执行代码的文件造成代码执行漏洞，因此会检查文件扩展名的文件。然而,PivotX 2.3.11重命名函数却没有进行检查新文件名的扩展,导致代码执行。...

WSTMall Apps\home\model\ordersmodel.class.php sdate参数等2处SQL注入

No description provided by source...

zentaoPHP框架 SQL注入漏洞

No description provided by source...

WordPress Mobile Detector file_get_contents 函数远程文件读取

No description provided by source...

SAP NetWeaver AS JAVA SQL注入漏洞

No description provided by source...

Apache Continuum 1.4.2任意命令执行

No description provided by source...

Cisco Prime Network Analysis Module和Cisco Prime Virtual Network Analysis Module本地命令注入漏洞

No description provided by source...

Cisco Unified IP Phones本地权限提升漏洞

No description provided by source...

Cisco Unified IP Phone CNU 拒绝服务漏洞

No description provided by source...

MallBuilder v5.8 smarty_config.php 参数key SQL注入漏洞

No description provided by source...

IBOS协同办公系统 \system\modules\report\controllers\DefaultController.php repids参数 SQL注入

No description provided by source...

WordPress OPS Old Post Spinner 插件任意文件包含漏洞

No description provided by source...

海康威视视频接入网关系统 downFile.php 参数fileName 任意文件下载漏洞

0x01漏洞简介 海康威视视频接入网关系统在页面/serverLog/downFile.php的参数fileName存在任意文件下载漏洞。 0x02漏洞分析 文件/serverLog/downFile.php alert"文件不存在!";window.history.back-1;'; exit; else $file = fopen$filedir . $filename,"r"; // 打开文件 // 输入文件标签 Header"Content-type: application/octet-stream"; Header"Accept-Ranges: bytes";...

Hikvision(海康威视) /data/fetchPlanStatus.php 参数rows 时间盲注

No description provided by source...

海康威视视频接入网关系统 /userInfo/roleInfo.php等34处 SQL注入漏洞

0x01漏洞简介 海康威视视频接入网关系统采用PHP+SQLite架构，其在以下34处均存在注入漏洞： /userInfo/roleInfo.php /userInfo/userInfo.php /data/fetchRoleTreeJson.php /deviceConfig/configDeviceInfo.php /transformServer/serverConfigInfo.php /cameraConfig/transferInfo.php /data/deviceAndCameraListData.php /data/deviceTypeData.php...

Cisco Unified IP Phone 7900权限提升漏洞

No description provided by source...