Vulndb

漏洞是在硬件、软件、协议的具体实现或系统安全策略上存在的缺陷,Exploit、Shellcode、PoC
Zabbix 2.2.x, 3.0.x SQL注射漏洞

Zabbix 2.2.x, 3.0.x SQL注射漏洞

0x01 背景 昨晚zabbix这个高危漏洞又在朋友圈炸开锅了,这篇是根据POC对zabbix3.0.3的源码进行了粗浅的分析。 注入产生的流程: PHP jsrpc.php:182→CScreenBuilder::getScreen()→CScreenBase::calculateTime()→CProfile::update() →page_footer.php:40→CProfile::flush()→CProfile::insertDB()→DBexecute() ...

2016-08-23 Vulndb

WordPress 4.5.3 Core Ajax Handlers Path Traversal

Path traversal vulnerability in WordPress Core Ajax handlers ------------------------------------------------------------------------ Yorick Koster, July 2016 Abstract ------------------------------------------------------------------------ A path...

2016-08-22 Vulndb

WordPress Count per Day Plugin 3.5.4 – Stored Cross-Site Scripting

EDB-ID: 40206 Author: Julien Rentrop CVE: N/A Published: 2016-08-05 Type: webapps Platform: PHP Stored Cross-Site Scripting vulnerability in Count per Day WordPress Plugin Abstract A Cross-Site Scripting vulnerability was found in the Count per Da...

2016-08-22 Vulndb
WordPress Gravity Forms 1.8.19 Shell Upload

WordPress Gravity Forms 1.8.19 Shell Upload

发布:2016.06.18 级别:高 CWE:CWE-264 PHP <?php # Exploit Title: Wordpress Gravity Forms - Arbitrary File Upload # Vendor Homepage: http://www.gravityforms.com/ # Vulnerable Version(s): 1.8.19 (and below) # Exploit Author: Abk Khan # Contact: [ an0nguy @ protonmail.ch ] # Web...

2016-08-15 Vulndb
Internet Explorer 11 VBScript Engine Memory Corruption

Internet Explorer 11 VBScript Engine Memory Corruption

发布:2016.08.06 级别:高 CVE:CVE-2016-0189 远程:是 Python ## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## require 'msf/core' class MetasploitModule < Msf::Exploit::Remote Rank = Norma...

2016-08-15 Vulndb
WordPress Advanced Custom Fields: Table Field 1.1.12 XSS

WordPress Advanced Custom Fields: Table Field 1.1.12 XSS

Details ================ Software: Advanced Custom Fields: Table Field Version: 1.1.12 Homepage: https://wordpress.org/plugins/advanced-custom-fields-table-field/ Advisory report: https://security.dxw.com/advisories/xss-in-advanced-custom-fields-table-field-could-allow-authenticated-users-to-do-almost-anything-an-ad...

2016-08-14 Vulndb
微擎科技最新版某处无需登录sql注入

微擎科技最新版某处无需登录sql注入

文件\payment\unionpay\notify.php PHP <?php /**  * [WeEngine System] Copyright (c) 2014 WE7.CC  * WeEngine is NOT a free software, it under the license terms, visited http://www.we7.cc/ for more details.  */ error_reporting(0); define('IN_MOBILE', true); require '../../framework...

2016-08-09 Vulndb

wordpress 3.0-3.9.2 XSS Getshell Payload

如果实战用记得把 console.lnfo 那一行该为发送喔。。。 密码:fuckxssQ 这个getshell js 有getshell当前模板跟getshell全部模板的功能 默认是getshell当前模板 StartGetshell = 0 如果要getshell全部插件模板 把 StartGetshell的值改为1 即可 ...

2014-12-01 Vulndb
Discuz <= 7.2 SQL未公开注入漏洞

Discuz <= 7.2 SQL未公开注入漏洞

据说是某数字公司的应急给发布出来了.群里面的小伙伴都惊呆了 具体的漏洞分析看:http://www.80vul.com/webzine_0x06/PSTZine_0x06_0x03.txt 其中的 PHP 在《高级PHP应用程序漏洞审核技术》[1]一文里的"魔术引号带来的新的安全问题"一节里,有 提到通过提取魔术引号产生的“\”字符带来的安全问题,同样这个问...

2014-07-05 Vulndb

Siteserver 3.6.3版SQL注入漏洞

官方最新版本3.6.4。 扫描siteserver 3.6.3版本目录结构,获得URL如下 http://www/siteserver/CMS/console_tableMetadata.aspx?ENName=cms_Content&TableType=BackgroundContent 注入点就存在ENName上,完全没有任何过滤。各种SQL注入类型,可以执行os cmd,脱裤。。...

2013-11-21 Vulndb