Lucene search
K
SeebugRecent

56796 matches found

seebug.org
seebug.org
added 2015/12/14 12:0 a.m.20 views

rockoa v2.1.8 upgradeAction.php 存在任意文件上传

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/14 12:0 a.m.32 views

Shopex开放平台SQL注入和Getshell

简要描述: SQL注入. 详细说明: BBScan 扫到一个git信息泄露: http://open.shopex.cn/.git/ 使用rip-git.pl把源码下载下来. 源码审计发现一个sql注入: open.shopex.cn\core\application\controllers\docs.php: / API接口搜索列表页 @access public @return void / public function apisearch$categoryid $this-data'navigations' = array'name'='开发文档','url'='';...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/14 12:0 a.m.23 views

Vicworl 新闻媒体系统 /data/backup/ 敏感信息泄露

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/14 12:0 a.m.195 views

pigcms id参数SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/14 12:0 a.m.53 views

PHP168 homepage.php/admin/member-profile 敏感信息泄露

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/14 12:0 a.m.65 views

Windows 权限提升漏洞 CVE-2015-6132

No description provided by source...

7.2CVSS6.5AI score0.84701EPSS
Exploits5
seebug.org
seebug.org
added 2015/12/14 12:0 a.m.19 views

Joomla Shape 5 MP3 Player 2.0 Plugin 任意文件读取漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/13 12:0 a.m.28 views

Hishop商城分销系统信息泄露漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/12 12:0 a.m.17 views

用友销售信息管理系统sims被入侵已成马场

简要描述: 用友销售信息管理系统sims被入侵已成马场 详细说明: 用友销售信息管理系统sims被入侵已成马场 漏洞证明: 马地址:http://hcm.yonyou.com//uploadfiles/Payment/1.aspx 以免扩散密码就不放出来了 进行一次大规模的清马吧 在不维护就废了...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.24 views

Jenkins 1.633 Unauthenticated Credential Recovery

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.25 views

xpshop CheckOut.aspx SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.16 views

xpshop comorder.aspx SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.14 views

xpshop AutoComplete.aspx sql注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.22 views

xpshop memberlostpass.aspx SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.18 views

xpshop comorder.aspx SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.26 views

Hishop易分销系统 sortOrderBy等参数SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.18 views

xpshopi sporderreturnby.aspx SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.14 views

xpshop ajax.aspx AreaName参数 SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.13 views

xpshop preview.aspx SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.16 views

xpshop myrefund.aspx SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.27 views

联邦政府网上审批系统 WebUserList.aspx 页面 id 参数 SQL 注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.14 views

联邦政府网上审批系统 sxlist.aspx 页面 baseorg 参数 SQL 注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.20 views

联邦政府网上审批系统 listBcmx2.aspx 页面 org 参数 SQL 注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.18 views

联邦政府网上审批系统 mobilemsgsend.aspx 页面 tbMsg 参数 SQL 注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.16 views

Netgear Router Firmware N300_1.1.0.31_1.0.1.img and N300-1.1.0.28_1.0.1.img 认证绕过

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.114 views

Metinfo 5.3.1 /login_check.php 注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.14 views

xpshop ajax.aspx ProductNos参数 SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.17 views

联邦政府网上审批系统 ckmxlist.aspx 页面 tbSxmc 参数 SQL 注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.163 views

泛微OA PreDownload.jsp SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.27 views

联邦政府网上审批系统 spsl.aspx 页面 xksxid 参数 SQL 注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.21 views

Ubuntu 12.04, 14.04, 14.10, 15.04 - overlayfs Local Root

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/11 12:0 a.m.19 views

Belkin N150 无线路由器目录穿越漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.21 views

金蝶协作办公系统 /kingdee/Template/TemplateEdit.jsp 参数 RecordID SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.19 views

金蝶协作办公系统 /kingdee/DocumentSave.jsp 参数 RecordID SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.24 views

金蝶协作办公系统 /kingdee/tree/tree/news/get_nodes.jsp 参数 node SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.48 views

通达OA系统 /interface/auth.php SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.15 views

金蝶协作办公系统/kingdee/tree/tree/rules/get_selected.jsp 参数 ids SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.15 views

金蝶协作办公系统/kingdee/tree/tree/announce/get_selected.jsp 参数 ids SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.24 views

金蝶协作办公系统/kingdee/tree/tree/discuss/get_nodes.jsp 参数 node SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.20 views

金蝶协作办公系统 /kingdee/tree/tree/rules/get_nodes.jsp 参数 node SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.106 views

QEMU pcnet_receive 堆缓冲区溢出漏洞(CVE-2015-7504)

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: https://lists.gnu.org/archive/html/qemu-devel/2015-11/msg06342.html pcnet是虚拟化软件QEMU中实现AMD PCNET网卡功能模拟的组件,相关的代码实现位于/hw/net/pcnet.c中。 在qemu软件中使用pcnet网卡,需要如下的命令行进行配置: qemu-system-x8664 centos-6.5-x64.img -m 1024 - net nic,model=pcnet -net user...

4.6CVSS9AI score0.00642EPSS
Exploits1
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.1075 views

通达OA任意文件上传漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.14 views

金蝶协作办公系统 /kingdee/tree/tree/discuss/get_selected.jsp 参数 ids SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.408 views

用友某系统漏洞(SSRF&Java反序列化命令执行漏洞)

简要描述: 1.SSRF内网信息嗅探; 2.Java反序列化命令执行:获取系统权限。 详细说明: 用友私有云运营中心 http://219.232.202.154:8080//home 部署的weblogic: 漏洞证明: 1.SSRF 默认搜索页面存在: 结合http://blog.gdssecurity.com/labs/2015/3/30/weblogic-ssrf-and-xss-cve-2014-4241-cve-2014-4210-cve-2014-4.html,以localhost为例进行测试: 2.Java反序列化命令执行 测试EXP:...

5CVSS9.2AI score0.38152EPSS
Exploits8
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.20 views

金蝶协作办公系统 /kingdee/Template/TemplateSave.jsp 参数 FileName SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.17 views

金蝶协作办公系统 /kingdee/tree/tree/news/get_selected.jsp 参数 ids SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.16 views

金蝶协作办公系统 /kingdee/tree/tree/announce/get_nodes.jsp 参数 node SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.38 views

通达OA系统 logincheck.php SQL注入

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.17 views

金蝶协作办公系统 /kingdee/DocumentShow.jsp 参数 Template SQL注射

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2015/12/10 12:0 a.m.23 views

xpshop网店系统 xpshop.webui.Show SQL 注入

漏洞位置xpshop.webui.Show: private void GetImgstring pids ProductDB productDB = new ProductDB; DataTable thumbnailImg = productDB.GetThumbnailImgpids; thumbnailImg.TableName = "Products"; base.Response.WriteXpShopJson.DtToJSONthumbnailImg; 这里是问题函数,我就不写怎么跟进来的,就是pageload,等下直接用payload测试就好了,官网demo的。...

7.1AI score
Exploits0
Total number of security vulnerabilities56796