Wordpress Begin 插件-go.php-url重定向漏洞

No description provided by source...

用友TruboCRM管理系统 reservationcomplete.php 参数ID SQL注入漏洞

利用过过程： payload:http://xxx/background/reservationcomplete.php?DontCheckLogin=1&ID=1%20IFUNICODESUBSTRINGSELECT%20ISNULLCAST@@VERSION%20AS%20NVARCHAR4000,CHAR32,1,1%3d1%20WAITFOR%20DELAY%20%270:0:5%27...

WordPress Category-Page-Icons插件-wpdev-flash-uploader.php文件-文件上传漏洞

No description provided by source...

Wordpress Goodnews 插件-跨站脚本漏洞

No description provided by source...

Wordpress mTheme Unus-css.php文件-本地文件包含漏洞

No description provided by source...

WordPress FR0_theme插件-down.php文件-任意文件下载漏洞

No description provided by source...

Wordpress Formcraft插件-upload.php-文件上传漏洞

No description provided by source...

Wordpress Bonuspressx插件-ar_submit.php文件-跨站脚本漏洞

No description provided by source...

新为软件E-learning系统 /bos/desktop/RequestOrResponse.aspx /site/ajax/WebSiteAjax.aspx 等多处处sql注入

No description provided by source...

MiCollab 7.0 - SQL 注入漏洞

No description provided by source...

DockerUI v0.10.0 XSS

No description provided by source...

网康 NS-ASG 6.2 用安全网关 /admin/cert_download.php 任意 文件下载

No description provided by source...

D-Link 2750u/2730u /cgi-bin/webproc 任意文件读取

No description provided by source...

海天OA /information/OA_Condition.asp 等7处INT型sql注入

No description provided by source...

海天OA /loginverify.asp /LosePassAction.asp 两处post类型的sql注入

0x01 漏洞简介 提交时间： 2014-05-25 公开时间： 2014-08-21 漏洞类型： SQL注射漏洞 北京联杰海天科技有限公司是一家专业从事应用软件开发、集成服务的高科技企业，面向各类企事业单位开发、销售基于Internet/Intranet技术的系列软件产品，致力于政府机构及企业信息化和办公自动化建设。 目前，联杰公司凭借Microsoft系统平台上的开发经验，已经成功推出了基于Internet/Intranet平台的企业级网络应用系统。主打软件“海天OA”...

新为Elearning在线学习系统 /bos/desktop/ajax/EcAjax.aspx sql注入

No description provided by source...

WordPress Altos Connect Widget 1.3.0 XSS 漏洞

文件：/wp-content/plugins/altos-connect/jquery-validate/demo/demo/captcha/index.php 上代码 " id="refreshimg" title="Click to refresh image"" width="132" height="46" alt="Captcha image" / Enter the characters as seen on the image above case insensitive: 第三行中...

shopnc /shop/index.php?act=member&op=address&inajax=1 sql注入漏洞（需要登录）

No description provided by source...

wordpress SP Projects and Document Manager V 2.5.9.6 XSS 漏洞

No description provided by source...

海天OA /InforForWeb/list.asp文件id参数SQL注入漏洞

No description provided by source...

PHPYUN任意文件上传导致GETSHELL

简要描述： 简单到你难以想象，只要网站还可以注册就可以GETSHELL，无视GPC,无视WAF。4.1beta版本，其他版本未测 详细说明： 1.在审计PHPYUN的时候一度对PHPYUN的WAF非常无语，但是在大家都痴迷于寻找SQL注入漏洞的时候，确实忽略了一个很简单的上传漏洞。首先定位到漏洞文件wap/member/model/index.class.php function photoaction if$POST'submit' pregmatch'/^data:\simage/\w+;base64,/', $POST'uimage', $result;...

74cms(20150817) company_jobs.php SQL注入漏洞

No description provided by source...

WordPress eBook Download Plugin 1.1 - 任意文件下载

No description provided by source...

KingCms v9 /api/conn.php 信息泄漏漏洞

No description provided by source...

IBM Tivoli NetView Access Services权限获取漏洞

No description provided by source...

D-Link DWR-932认证绕过

No description provided by source...

D-Link DIR-645路由器缓冲区溢出漏洞

No description provided by source...

PHPYUN v3.0 任意文件上传漏洞

No description provided by source...

WordPress的ProjectTheme2.0.9.5多个漏洞(XSS/CSRF)

No description provided by source...

TaoCMS v2.5Beta4 api.php 存在任意代码执行漏洞

No description provided by source...

gongwalker API Manager v1.1 - Blind SQL Injection

No description provided by source...

TaoCMS v2.5Beta4 Comment.php 存在储存型xss漏洞(可打后台)

No description provided by source...

TaoCMS v2.5Beta4 index.php 存在sql注入漏洞

No description provided by source...

农友政务系统 ftb.imagegallery.aspx组件 文件上传漏洞

No description provided by source...

phpshe v1.1 user.php sql注入

No description provided by source...

大汉 (JCMS)的opr_getcount.jsp的两处注入（

No description provided by source...

大汉JCMS政务系统 opr_ballot.jsp 参数c_uuid SQL注入漏洞

No description provided by source...

TinyMCE v3.2.x <= (AuthBypass/ShellUpload) Multiple Vulnerabilites

No description provided by source...

Microsoft XML Core Services 任意代码执行漏洞

No description provided by source...

极限OA系统 data_fetch.php check_secure_key.php 等文件SQL注入漏洞

exp: http://oa.jsmstc.com/general/workflow/list/inputform/datafetch.php?runid=1 AND SELECT 1 FROMSELECT COUNT,CONCAT0x7e7e7e,MIDIFNULLCASTdatabase AS CHAR,0x20,1,50,0x7e7e7e,FLOORRAND02x FROM INFORMATIONSCHEMA.CHARACTERSETS GROUP BY xa...

SiteStar 2.7 mod_user.php 用户信息修改漏洞

No description provided by source...

phpshe v1.1 任意文件上传漏洞

No description provided by source...

phpshe v1.1 order.php 存在变量覆盖漏洞(导致可绕过付款)

No description provided by source...

phpshe v1.1 do.php 存在sql注入(导致可绕过后台登录)

No description provided by source...

MyBB <1.8.4 member.php跨站脚本漏洞

No description provided by source...

phpshe v1.1 module/index/order.php sql注入

No description provided by source...

phpshe v1.1 安装文件任意代码执行

No description provided by source...

SCADA-OS缓冲区溢出漏洞

No description provided by source...

新为软件E-learning 文件上传漏洞

No description provided by source...

Sysax Multi Server 6.50 远程代码执行漏洞

No description provided by source...