Lucene search
K
SeebugRecent

56796 matches found

seebug.org
seebug.org
added 2016/01/11 12:0 a.m.25 views

Ouman EH-net server 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.21 views

Emerson Avocent® ACS 6000 Advanced Console Server 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.38 views

Emerson Smart Wireless Gateway 1420 弱口令

参考链接: http://www2.emersonprocess.com/siteadmincenter/PM%20Rosemount%20Documents/00809-0200-4420.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.26 views

Netcomm Wireless 弱口令

固件型号: 3G21WB 详情参考: http://media.netcomm.com.au/public/assets/pdffile/0003/68403/WSG-3G21WB.pdf 内容截图: /log/in?un=admin&pw=admin&rd=%2Fuir%2Find.htm&rd2=%2Fuir%2Fbsclogin.htm&Nrd=1 其他固件 : 同样有说明文档,此处就不枚举了。...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.20 views

Emerson Network Power® MPH2™ Rack PDU 弱口令

参考链接: https://community.emerson.com/networkpower/support/avocent/power/mph2/m/mediagallery/3093...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.18 views

Contemporary Control Systems BASRT-B 弱口令

参考链接: http://www.ccontrols.com/pdf/TD0712000I2.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.60 views

多款Adobe产品整数溢出漏洞CVE-2014-0569

漏洞类型:整数溢出漏洞 影响组件介绍:Adobe Flash Player、Adobe AIR SDK和Adobe AIR SDK & Compiler都是美国奥多比(Adobe)公司的产品。Adobe Flash Player是一款多媒体播放器产品;Adobe AIR SDK和Adobe AIR SDK & Compiler都是适用于Adobe AIR(一个跨操作系统的运行时环境)的标准开发工具包。 漏洞分析: 原因: action script...

10CVSS6.5AI score0.90208EPSS
Exploits5
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.20 views

Emerson UL33 UPS 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.40 views

Schneider Electric POWERLOGIC® EGX200 or EGX400 with firmware version 5.5 or higher 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.39 views

Rockwell Automation /Allen-Bradley PanelView Plus 6 Graphic Terminals, Firmware 6.10 or later/ , PVPlus 6 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.24 views

ENTES EMG-10, EMG-02 , EMG-12 弱口令

参考链接: http://www.entes.com.tr/dosyalar/EMGSeriesEN-ver22.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.34 views

Sierra Wireless AirLink 9191 端口弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.47 views

Emerson UltraSite 弱口令

参考链接: http://www.emersonclimate.com/Documents/Retail%20Solutions/Manuals/0261004Rev1.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.17 views

BinTec Elmeg any routers 弱口令

参考链接: http://www.router-defaults.com/Router/BinTec--x1200-ip-password-username...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.22 views

Tridium NiagaraAX 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.20 views

moxa Railway Remote I/O (ioLogik E12xx ,  ioLogik E15xx ) 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.43 views

Emerson DeltaV™ Digital Automation System 弱口令

参考链接: http://www.chem.mtu.edu/chemeng/current/newcourses/CM4120/2009/Getting%20Started.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.17 views

Moxa OnCell G3100 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.20 views

Hirschmann OCTOPUS 8M..., OCTOPUS 16M..., OCTOPUS 24M… 弱口令

参考链接: https://www.neteon.net/media/downloads/IGOctopus8M16M24MPoETrain020708en1.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.41 views

NOVUS AUTOMATION Superview 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.25 views

OMRON IA CJ1M CPU Units with Ethernet Functions 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.11 views

Yokogawa YFGW410 gateway

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.22 views

ConnectPort TS 4x4, ConnectPort TS 4x2, ConnectPort TS W, ConnectPort TS 8, ConnectPort TS 8 MEI, ConnectPort TS 16 弱口令

参考链接:http://ftp1.digi.com/support/documentation/90000565P1.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.27 views

Digi Connect WAN, Digi Connect WAN GPRS, Digi Connect WAN GSM-R, Digi Connect WAN VPN, Digi Connect WAN IA, Digi Connect WAN 3G, Digi Connect WAN 3G IA, Digi Connect WAN 4G 弱口令

参考链接: http://www.acspl.com.au/Manuals/digiWan.pdf...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.17 views

Westermo RedFox Series, Wolverine Series, Lynx Series, Falcon Series, Viper Series 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.20 views

siemens Simatic S7-300 (pre-2009 versions) 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.35 views

Schneider Electric ETG100 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.35 views

Phoenix Contact Logic+ 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/11 12:0 a.m.68 views

Rockwell Automation /Allen-Bradley 1734-AENT 弱口令

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.22 views

StrongSoft灾害预警系统doDbAccess.ashx存在SQL注入漏洞

福建四创软件开发的“山洪灾害预警监测系统”存在SQL注入漏洞,可获取数据库任意数据,进而而导致预警系统沦陷。 谷歌搜索: intitle:预警 系统 技术支持:福建四创 注入文件及参数:doDbAccess.ashx里的params 案例 "...:3505/Public/DataAccess/GeneralModule/doDbAccess.ashx?dateForAjax=364" --data "params=0125&sqlkey=Map%5FS%5FGetEnnuById%5FZWP" -p params...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.21 views

WP插件Admin Management Xtended 2.4.0 越权操作

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.78 views

EWEBS应用虚拟化系统的文件casmain.xgi存在任意系统文件读取漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.27 views

Timber E-learning产品内置账号可操作任意用户及添加管理员/任意文件上传GetShell

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.18 views

PHP168 6.0及以下版本在文件login.php处存在利用生成的缓存PHP文件执行命令漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.16 views

QiboCMS地方门户系统文件coupon/s.php存在SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.89 views

qemu内存泄露漏洞(CVE-2015-8567)

No description provided by source. !/bin/bash 这可能是最简单的exp吧... 原理很简单,根据详情分析,发现重新启动网卡就会调用vmxnet3activatedevice 然后堆就不停的分配内存 直到进程漰溃 这是一段bash shell脚本 eth1是我这里虚拟机上的vmxnet3设备 从开始运行直到漰溃用了我一個午觉时间,大概40分钟 其实具体情况按照自己本机机器来定,时间长短不一 root权限执行 while true do ifconfig eth1 down && echo 'Down!' ifconfig eth1 up &&...

6.8CVSS7.7AI score0.05557EPSS
Exploits1
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.120 views

PHPMyWind 5.0后台管理界面的SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.36 views

大汉网络 /jcms/interface/ldap/receive.jsp 接口未授权更改密钥

相关代码如下 if state.equals"S" //注册应用 boolean b = ldapBlf.writeXMLappname,enckey,ldapurl,webtype,ssourl,encrypttype; 未授权注册并覆盖了 enckey 得到 enckey 之后利用可以参照 https://www.sebug.net/vuldb/ssvid-90213...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.14 views

Cisco RV Series multiple vulnerabilities

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.11 views

wordpress <4.4.1 wp-admin/customize.php 页面 xss

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.41 views

kingdee办公系统的文件/kingdee/portal/portal_info.jsp存在Blind SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.18 views

泛微e-cology/web/broswer/CustomerTypeBrowser.jsp sqlwhere参数SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.18 views

ThinkSAAS中tsUrlCheck()函数引发注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.21 views

中科网威防火墙(NPFW)文件遍历漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.83 views

Beescms V4.0 在文件mx_form.php处存在后台登陆绕过漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.15 views

BEESCMS V4.0的文件member.php存在多处注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/09 12:0 a.m.94 views

YonYou NC在/nc/servlet/nc.ui.iufo.login.LoginUI存在SQL盲注漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/08 12:0 a.m.23 views

PHPOK官方DEMO配置不当可getshell(影响其他站点)

简要描述: 这.... 详细说明: Demo未配置好权限,可直接拿shell 首先登陆demo站后台 http://demo.phpok.com/admin.php 进入风格管理 更改模板格式为php 然后直接创建一个index.php内容为一句话即可。 从配置文件可以看出绑定了多个网站,其中有些是正在运行的 如yuechi.net ,岳池在线。 还有update.phpok.com,估计是用来更新的。 mask 区域 alHos n 8 Host Host admin@p ot /qg Name 1000 ;/qghost/w eny,a fro...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/08 12:0 a.m.970 views

佳能MF8040Cn打印机弱口令

佳能MF8040Cn打印机弱口令 1.dork app:"Canon i-SENSYS MF8040Cn printer http admin" 2.漏洞详情 佳能MF8040Cn打印机存在默认账号密码 1)系統管理員模式 admin admin 2)終端使用者模式 admin 3.漏洞证明 用zoomeye搜索 : app:"Canon i-SENSYS MF8040Cn printer http admin" 可见有大量设备暴露在公网上面 http://223.197.235.193 http://219.142.195.251 用admin admin 登陆 成功登陆 可查看打印信...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/08 12:0 a.m.24 views

Z-BLOG Blind-XXE造成任意文件读取

No description provided by source...

7.1AI score
Exploits0
Total number of security vulnerabilities56796