Lucene search
K
SeebugRecent

56796 matches found

seebug.org
seebug.org
added 2016/03/19 12:0 a.m.28 views

齐博CMS考试系统 exam_order.php 参数and SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/19 12:0 a.m.53 views

科创CMS /web/doc_hit.jsp等3处 SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/19 12:0 a.m.18 views

LZXSZXYXT乐知行数字校园系统 /oa/calendar/exportExcel.do等5处 SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/19 12:0 a.m.39 views

盈世Coremail XT3.0版 发件人地址处 存储型XSS

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/19 12:0 a.m.15 views

科创CMS /cms/voteManager/voteaction.jsp 通用型Oracle注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/19 12:0 a.m.18 views

天空教室精品系统 /sc8/coursefiledownload 参数 filepath 任意文件下载漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/19 12:0 a.m.18 views

天空教室精品系统 /sc8/page/schoolspace/course/academycourse-view.do等4处 SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/18 12:0 a.m.47 views

AVCON org_execl_download.action filename任意文件下载漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/18 12:0 a.m.107 views

phpMyWind v5.3 /goodsshow.php 代码执行

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/18 12:0 a.m.30 views

WordPress CIP4 Folder Download 1.10 本地文件包含漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/18 12:0 a.m.84 views

一采通电子采购系统任意文件上传Getshell (UploadFile.aspx)

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/18 12:0 a.m.46 views

Honeywell FALCON XLWeb系列控制器登录绕过漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/18 12:0 a.m.23 views

iwebmall买家留言处存储型XSS漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/18 12:0 a.m.21 views

Wireshark 权限许可和访问控制漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.55 views

Ruby on Rails Action View 信息泄漏

Possible Information Leak Vulnerability in Action View. There is a possible directory traversal and information leak vulnerability in Action View. This was meant to be fixed on CVE-2016-0752. However the 3.2 patch was not covering all the scenarios. This vulnerability has been assigned the CVE...

5CVSS7.4AI score0.95537EPSS
Exploits11
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.41 views

宝信建站系统 /EC/DM/ECDM0104.jsp 参数 filePath 下载漏洞

0x01 漏洞框架 相关厂商: 上海宝信软件股份有限公司 提交时间: 2015-04-26 公开时间: 2015-07-27 漏洞类型: 任意文件遍历/下载 上海宝信软件股份有限公司(简称“宝信软件”)系宝钢股份控股的软件企业,2001年4月上市,公司总部位于上海浦东张江高科技园区。...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.31 views

74cms v3.6 (20150817) 设计缺陷导致8处不同文件注入漏洞(gpc=off)

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.10 views

OECMS4.2 /source/control/index/buylist.php cookie注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.17 views

appcms 2.0.101版本 密码明文泄露

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.58 views

正方教务系统 jwggck.aspx 参数fbsj SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.17 views

Cisco ASA VPN Portal-logon.html-跨站脚本漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.16 views

appcms 1.3.890版本 存在储存型xss漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.18 views

appcms 1.3.960版本 本地包含漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.39 views

Ruby on Rails Action Pack远程代码执行漏洞

漏洞应用 测试环境:Rails-4.0.13 Ruby-2.1.5 测试系统:Kali Linux 2.0 创建 Rails 应用: rails new cve-2016-2098 cd cve-2016-2098 使用自带命令创建控制器 vuln 路由 index,并修改其路由默认处理代码: rails generate scaffold User name:string desc:text age:integer rake db:migrate 修改 app/controllers/userscontroller.rb 中 index 函数代码为: class...

7.5CVSS7.1AI score0.81445EPSS
Exploits7
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.28 views

GE工业UPS SNMP适配器任意命令执行漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.21 views

appcms 1.3.960 储存型xss漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.20 views

新为Elearning在线学习系统 /bos/desktop/MyShoppingCart.aspx sql注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/17 12:0 a.m.21 views

鹏达学校综合管理系统任意下载漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.13 views

BlueCMS v1.6 sp1 ad_js.php ad_id 参数SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.13 views

74cms company_common.php SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.1024 views

OpenSSH <=7.2p1 xauth injection

来源链接: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115 VuNote Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115 Version: 0.2 Date: Mar 3rd, 2016 Tag: openssh xauth command injection may lead to forced-command and /bin/false bypass Overview Name: openssh...

5.5CVSS8.1AI score0.37016EPSS
Exploits13
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.15 views

AShop 3.9.3 catalogue.php文件参数跨站脚本漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.35 views

Shop7z v2.9 /order_checknoprint.asp 文件 id 参数 SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.20 views

农友政务系统 /ExtWebModels/WebFront/showlandlist.aspx InfoType 参数SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.61 views

Git 版本<=2.7.1 远程代码执行漏洞

参考来源: http://seclists.org/oss-sec/2016/q1/645 Hello, original report describing the overflow is here http://pastebin.com/UX2P2jjg On 11/02/2016 16:50, Jeff King wrote this on the git security mailing list: On Thu, Feb 11, 2016 at 02:31:49PM +0100, 'Laël Cellier' via Git Security wrote: Ok the bug...

9.3AI score0.63178EPSS
Exploits5
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.85 views

Hishop易分销系统 Brand.aspx,ProductUnSales.aspx 两处SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.20 views

MetInfo v5.3.1 global.func.php SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.28 views

祥云时代通用型建站系统SQL注射漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.15 views

卓光科技通用建站系统SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.33 views

农友政务系统 /ckq/sllistout.aspx tname 参数SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.58 views

CMSTOP媒体云 /gallery/index/list 任意文件上传

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.24 views

yershop商城系统 PublicController.class.php 参数username[0] SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.41 views

Mallbuilder lostpass.php 文件 userid 参数SQL注入漏洞

0x01 漏洞概述 相关厂商: 上海远丰信息科技有限公司 官方主页: shop-builder.cn 提交时间: 2014-06-03 公开时间: 2014-09-01 漏洞类型: SQL注射漏洞 谷歌关键字: powered by mallbuilder 0x02 漏洞详情 首先来看看全局文件 function magic if!getmagicquotesgpc&&isset$POST foreach$POST as $key=$v if!isarray$v $POST$key=addslashes$v; else foreach$v as $skey=$sv if!isarray$...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.24 views

kingdee协同办公系统 fileDownload.do 任意文件下载漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.93 views

yershop商城系统/index.php?s=/Home/account/savepaykey.html等30处 SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.14 views

iwebmall添加商品时商品介绍处存储型XSS

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.16 views

mallbuilder多用户商城系统 v5.8.1.1 /api/wechat.php XML注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.14 views

ROCKOA 跨站脚本漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.40 views

农友政务系统 /ExtWebModels/WebFront/ShowCompanyList.aspx ctype 参数SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/03/16 12:0 a.m.21 views

京信通信/09/business/loginAction.php username参数命令执行漏洞

No description provided by source...

7.1AI score
Exploits0
Total number of security vulnerabilities56796