Lucene search
K
SeebugRecent

56796 matches found

seebug.org
seebug.org
added 2016/01/13 12:0 a.m.30 views

天融信Top App 网关应用bytecache_run_action.php 命令执行

bytecacherunaction.php: code 区域 15 $ipFilterArray$m=dechex$ipFilterArray$m; else $ipFilterArray$m="0".dechex$ipFilterArray$m; $ipFilterNum =$ipFilterArray0.$ipFilterArray1.$ipFilterArray2.$ipFilterArray3; UciUtil::setValue'appex', 'sys', 'BCDebugEngineId',$engine; UciUtil::setValue'appex', 'sys',...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.26 views

益用TMS content_show.aspx contentid 参数SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.242 views

Discuz X3.2的milu_seotool插件存在本地文件包涵漏洞

0x01漏洞简介 Discuz X3.2的miluseotool插件存在本地文件包涵漏洞。 看见木有有个微信登陆功能,漏洞也出现在这里。无截断所以不鸡肋。 0x02漏洞分析 接下来看代码,文件在source\plugin\wechat\wechat.class.php: static public function redirect$type global $G; $hook = unserialize$G'setting''wechatredirect'; if !$hook || !inarray$hook'plugin', $G'setting''plugins''availabl...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.39 views

Netentsec ASG网康应用安全网关在commonpluginDownload.php存在任意文件下载漏洞

0x01漏洞简介 Netentsec ASG网康应用安全网关在/commonplugin/Download.php存在任意文件下载漏洞。远程攻击者可以利用参数licensefile 或者 reqfile 结合..下载任意文件。如果下载文件是SvrLicense.license表示该漏洞已经修复,如果下载文件为自己包含的文件,说明该漏洞仍然存在。 0x02漏洞分析 查看问题代码如下: obstart""; header"Expires: Sat, 01 Jan 2000 00:00:00 GMT"; header"Last-Modified: ".gmdate"D, d M Y...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.274 views

天融信Topsec系统 getMacAddr.php 命令执行

getMacAddr.php: code 区域 '; ? 跟进getMacAddrFromIfName code 区域 function getMacAddrFromIfName$ifName $mac = execute'cat /sys/class/net/' . trim$ifName . '/address'-get'output'; if$mac != null && $mac != '' return $mac0; else return ''; http://218.206.217.19:8080/acc/network/getMacAddr.php?eth= | echo...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.52 views

泛微协同商务系统e-cology某处SQL注入(附验证中转脚本)

简要描述: RT 详细说明: 官网http://...//services/ 随便找个吧 以http://...//services/MobileService?wsdl为例 使用wvs checkUserLogin方法 三个参数 分别为字符型、字符型和数字 正确的时候返回3 错误返回4 (本想采用抓包工具(WSockExpert ) 使用某度搜索了一个 评分还挺高 结果系统多了个某度影音 和某度输...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.21 views

V5Shop淘宝客系统在productpic.aspx等3处存在SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.45 views

JCMS政府信息公开系统在/lm/front/noontimelist.jsp存在SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.30 views

HiShop网上商店系统多版本SQL注入

简要描述: HiShop全称“长沙海商网络技术有限公司”,是国内最大的ASP.NET独立网店服务提供商。长期专注于B2C网上购物软件的研发及相关增值服务的提供。拥有著名网上商店系统品牌——HiShop。公司的主要业务是为中小企业、个人网商及网站站长提供B2C独立购物网站搭建的一站式套餐服务及网店推广、货源提供、个性定制等相关增值服务。 详细说明: 之前提交给wooyun,一直没反应! 主要是Hishop6.0-Hishop6.1版本存在此处注入,不是开源的,黑盒来吧 关键字: powered by Hishop6.0 powered by Hishop6.1 用量不小,百度搜索看下...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.56 views

shop7z 商城系统在/Advsearchadmin.asp 处参数kindnum存在SQL注入漏洞

0x01漏洞简介 shop7z商城系统在Advsearchadmin.asp 处的参数kindnum由于过滤不严,存在kindnumSQL注入漏洞。远程攻击者可以利用该漏洞执行任意SQL指令。 0x02漏洞分析 Advsearchadmin.asp代码如下: kindnum=trimrequest"kindnum" pipai=trimrequest"pipai" model=trimrequest"model" productname=trimrequest"productname" price11=trimrequest"price11"...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.33 views

V5shop 在cart.aspx处的参数spikeid存在SQL注入漏洞

举例: 通过谷歌搜索inurl:productpic.aspx,因为cart.aspx是需要登录才可以正常访问,但是注入的时候毫无影响。 案例: http://www.wolifu.com/cart.aspx?act=spikebuy&spikeid=3 D:\sqlmappython sqlmap.py -u "http://www.wolifu.com/cart.aspx?act=spikebuy&spik eid=3" -p "spikeid" | | 1.0-dev-nongit-20150806 | -| . | | | .'| . | || |||||,| | || ||...

7.7AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.169 views

Shop7z /show.asp pkid参数SQL注入漏洞

漏洞出现在show.asp 358行开始 dim pkid,model,productname,smallpicpath,price1,price2,pipai pkid=request"pkid" sql="select from viewproduct where pkid = "&pkid set rs=server.createobject"adodb.recordset" rs.open sql,conn,1,1 if rs.bof or rs.eof then pkid直接通过request获取 并拼接到sql语句中 没有任何过滤 poc:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.43 views

Fanwe方维团购 m.php 参数email SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.36 views

云锁论坛任意文件遍历及下载

简要描述: 云锁。。。。。 论坛 详细说明: 不说了 自己上图 http://bbs.yunsuo.com.cn/data/ 云锁论坛 漏洞证明: 上图...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.220 views

用友TurboCRM管理系统swfupload.php任意文件上传漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.31 views

Maticsoft Shop NodeProdCategory.aspx EditPhotoHandle.aspx SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.21 views

FortiGate OS(飞塔系统) 4.0-5.0.7 SSH 后门

漏洞概述 FortiGate飞塔防火墙采用 ASIC 加速的 UTM 解决方案,可以有效地防御网 络层和内容层的攻击。FortiGate 解决方案能够发现和消除多层的攻击,比如病 毒、蠕虫、入侵、以及 Web 恶意内容等等实时的应用,而不会导致网络性能下降。 北京时间 2016 年 1 月 12 日凌晨四点钟,国外安全研究员在 twitter 上爆料 FortiGate 防火墙存在一个后门,攻击者可以通过这个后门直接获取防火墙控制 权限。...

7AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.628 views

kingdee EAS系统 V7.5 /plt_iservice/service/findFavList.action 远程命令执行漏洞

0x01 框架介绍 全球第一款融合TOGAF标准SOA架构的企业管理软件,金蝶EAS面向亟待跨越 成长鸿沟的大中型企业,以"创造无边界信息流"为产品设计理念, 支持云计算、SOA 和动态流程管理的整合技术平台,全面覆盖企业战略管理、风险管理、集团财务管 理、战略人力资源管理、跨组织供应链、多工厂制造和外部产业链等管理领域,突破 流程制造、项目制造、供应商协作、客户协作等复杂制造和产业链协同应用,实现业 务的全面管理,支持管理创新与发展,帮助企业敏捷应对日益复杂的商业环境变化, 提升整体运作效率,实现效益最大化。 官方主页:www.kingdee.com 0x02 漏洞细节...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.33 views

EduWind在线教育工具 /course/index SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.19 views

PHPWEB search/index.php SQL注入漏洞

0x01 框架介绍 PHPWEB智能网站管理系统是一款具有可视化管理和模块化网站功能的网站管理软件。可视化的鼠标拖曳排版,自由插入、拖动和叠放插件,所见即所得,让网站制作如同搭积木般便捷易玩;各种插件、边框、菜单可灵活组合和任意摆放,摆脱页面框架的束缚,尽享创意的乐趣;灵活的管理权限和会员权限配置、强大的网站互动功能,让DIY制作的网站毫不逊色于专业开发;模块化的网站功能,十多种常用网站模块和不断增加的专业功能模块可供选用,可根据需要安装卸载模块,即可用于简单的企业展示网站,又可用于开发各种专业网站。 官方主页:www.phpweb.net/ Dork:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.22 views

Fanwe 订餐系统 tuan.php shop.php SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.66 views

phpok v4.3.18 index.php 信息泄漏漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/12 12:0 a.m.27 views

Fanwe V4.3 SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.20 views

siemens SyncoTM living Web server OZW772 V2.0 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.10 views

Yokogawa YFGW410 gateway

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.19 views

siemens Simatic S7-300 (pre-2009 versions) 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.23 views

Wago WAGO-I/O-IPC 758-870/000-xxx 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.23 views

Digi Connect SP, Digi Connect Wi-SP, Digi Connect ME, Digi Connect ME 4 MB, Digi Connect Wi-ME, Digi Connect EM, Digi Connect Wi-EM 弱口令

参考链接: http://ftp1.digi.com/support/documentation/90000565P1.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.16 views

Westermo TDW 33 Modem 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.23 views

Schneider Electric TSX ETG 1000 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.16 views

Westermo RedFox Series, Wolverine Series, Lynx Series, Falcon Series, Viper Series 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.26 views

Digi Connect WAN, Digi Connect WAN GPRS, Digi Connect WAN GSM-R, Digi Connect WAN VPN, Digi Connect WAN IA, Digi Connect WAN 3G, Digi Connect WAN 3G IA, Digi Connect WAN 4G 弱口令

参考链接: http://www.acspl.com.au/Manuals/digiWan.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.21 views

Westermo MRD-305-DIN/MRD-310/MRD-315/MRD-330/MRD-355/MRD-350/MRD-455 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.42 views

Rockwell Automation /Allen-Bradley 1756-EWEB 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.21 views

ConnectPort TS 4x4, ConnectPort TS 4x2, ConnectPort TS W, ConnectPort TS 8, ConnectPort TS 8 MEI, ConnectPort TS 16 弱口令

参考链接:http://ftp1.digi.com/support/documentation/90000565P1.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.26 views

Tecomat Foxtrot 弱口令

参考 http://dsec.ru/ipm-research-center/notification-of-vulnerabilities/tecomatplcparolipoumolchaniyu/...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.17 views

moxa EDS-508A/505A Series 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.37 views

Schneider PowerLogic™ ION8*/7*/6* Energy and power meter 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.22 views

moxa OnCell Central Manager 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.38 views

Sierra Wireless AirLink 12345, 2332端口弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.35 views

Schneider Electric PowerLogic™ Series 800 Power Meter 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.34 views

Schneider Electric ETG100 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.25 views

Turck BL20-E-GW-EN 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.9 views

DigiOne IAP Serial 弱口令

参考链接: http://web-material3.yokogawa.com/IMMW100EIP.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.30 views

Wago Modular I/O-System Linux Fieldbus Coupler 750-860 PLC 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.24 views

moxa AWK-5232-RCC Series 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.67 views

Rockwell Automation /Allen-Bradley 1734-AENT 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.34 views

Phoenix Contact Logic+ 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.35 views

Schneider Electric Modicon Quantum 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.19 views

Emerson IP-KVM Avocent MergePoint Unity 弱口令

参考链接: http://community.emerson.com/networkpower/support/avocent/kvmip/mpunity/w/wiki-mergepoint-unity/363.default-user-name-and-password-for-the-mergepoint-unity-kvm-over-ip-appliance...

7.1AI score
Exploits0
Total number of security vulnerabilities56796