Cloud Security

# Platform: php# Impact: Remote Cross-Site Request Forgery + Files Disclosure + RFI# Tested on: [Windows XP sp3 FR] & [Linux. (Ubuntu 10.10) En] & [Mac OS x 10.6.1] & [BSDi-BSD/OS 4.2]####(~) Greetings To: Caddy-Dz (+) JaGo-Dz (+) Dr. Ride (+) All

# All you have to do is save the below code as exploit.html# Then Host a website with the exploit.html file. A person with admin permissions if visits the site,# Will automatically creat user admin4 with password "newpassword" without warning ;)_____

# Software ...... Tickets 2.13 # Vulnerability ...... SQL Injection # Threat Level ...... Critical (4/5) # Download ...... http://www.ticketscad.org/ # Discovery Date... # Tested On... #----------------------------------------------------------------

As one of the most widely used CMS in China, DedeCms often exposes vulnerabilities. The impact of each vulnerability is a large piece, which is easily caused by advertisements and pop-up boxes, the server becomes a bot and valuable data is lost. So

By: 77600145Copyright: 3EST Information Security TeamI. CauseToday, I did my graduation project and discussed the webshell issue of a website in the group on the way. All said they couldn't take it down and joined the discussion queue. Read the

Author: y35u Vulnerability Type: SQL Injection Vulnerability Description: SPlink is a famous Japanese PHP Link Management System. Key words: inurl:. jp/link. php? CatidInurl:. jp/Spink 1. Repeated Installation Vulnerability

By:Darkmoon When executable files cannot be uploaded, I believe everyone has encountered another idea. You can upload a txt jpg file without modifying the suffix, and cannot upload an exe bat file with other files. I think a lot of people will

Googel Search Keyword: inurl: website/html /? 163. html  You can also construct keywords by yourself.  Open the website found, such as http://www.bkjia.com/website/html/163.html  On the homepageRegister a new user in "member login, Go back to the

Generally, they are trojans on webpages.  The most stupid one is to directly modify the generated index.htm file. Generally, you can add a code at the bottom of the source code to directly view the source code. You can regenerate the homepage once;

Exploit Title: Burning Board 3.1.5 Full Path Disclosure --------------------------------------------------------------------- Author: linc0ln. dll Date: 19/06/11 Site: http://linc0ln.pl/ @: Linc0ln [at] e-o-u.org ------------------------------------

Official Website:Http://www.taodisoft.com 1. There is actually a place in the background of the demo station that can upload images without prohibiting upload.2. Simple filtering of uploaded images, making it easy to break through. Upload and

######################################## ################## Title: Sheffield SQL Injection Vulnerability# Author: Kalashinkov3# Home: 13000/ALGERIA# Website: 1337day.com/dis9.com# Vendor: www. resounddesign. co. uk# Email: kalashinkov3 [at] Hotmail [

Author: village chiefFile u_sc1.asp source code: 'Here, fuptype is accepted and saved to the session ("fuptype"). The next file must use session ("fupname") = request ("fupname ") 'Here, fupname is accepted and saved to the session ("fupname").

# Exploit Title: DmxReady Bilboard v1.2 SQL Injection Vulnerability# Google Dork: inurl: inc_billboardmanager_summary_popup.asp# Date: 03.07.2011# Author: Bellatrix# Software Link:Http://www.dmxready.com /? Product = billboard-manager# Version: v1.2#

Brief description: The voting restriction is equivalent to the virtual setting.Address: http://health.hsw.cn/system/2011/05/11/050936197.shtml Detailed description: Address: http://health.hsw.cn/system/2011/05/11/050936197.shtmlFirame embedded

Affected Versions:Discuz! NNT 3.6 Vulnerability description: Discuz! In NT3.6, the user space log editing does not perform security filtering on the data submitted by the user, resulting in malicious code insertion. Attackers can exploit this

the authentication mode used by the element configuration application. The proper authentication mode depends on how the application or Web Services are designed. The default Machine. config is used to set the default Windows authentication for

# Exploit Title: LiteRadius # Google Dork: allinurl: locator. php? Long = # Author: Robert Cooper (admin [at] websiteauditing.org) # Software Link: http://www.escaperadius.com/er/products/literadius/lr.php # Tested on: [Linux/Windows 7] #

Sometimes the website limits the classic union select joint query. At this time, some features of Oracle can also be used for injection attacks. For example, the utl_http.request packet function is provided in Oracle to obtain the request

Security ExceptionNote: An application attempts to perform operations that are not permitted by a security policy. To grant the required permissions to the application, contact the system administrator or change the trust level of the application in