Cloud Security

Study on unauthorized MySQL reading During the penetration test, you may encounter many times of MySQL environment. Once you get the root account of MySQL and it is a Windows system, you can use UDF or MOF to raise the permission to get the system

PostgreSQL 'to _ char ()' Function Buffer Overflow (CVE-2015-0241) Release date:Updated on: Affected Systems:PostgreSQL 9.4PostgreSQL 9.1PostgreSQL 8.4Description:Bugtraq id: 72540CVE (CAN) ID: CVE-2015-0241 PostgreSQL is an advanced

PHP incomplete fix re-exploitation of Remote Code Execution Vulnerability (CVE-2015-0231) after release) Release date:Updated on: Affected Systems:PHP 5.6.xPHP 5.5.xPHP 5.4.xDescription:Bugtraq id: 72539CVE (CAN) ID: CVE-2015-0231 PHP is a widely

PostgreSQL Security Restriction Bypass Vulnerability (CVE-2015-0244) Release date:Updated on: Affected Systems:PostgreSQL 9.4PostgreSQL 9.1PostgreSQL

UniPDF 1.1-Crash PoC (SEH overwritten) # Exploit Title: UniPDF v1.1 BufferOverflow, SEH overwrite DoS PoC# Google Dork: [none]# Vendor Homepage: http://unipdf.com/# Software Link: http://unipdf.com/file/unipdf-setup.exe (Redirect to:

SF app verifies user vulnerabilities and obtains coupons and solutions for others in batches. The SF Express app did not verify the account currently logged in when querying SF coupons, so that you can view SF coupons under other accounts. $nn=800008

Sogou Input Method Denial of Service Improper handling of sogou input intent Protected void onCreate (Bundle arg5 ){Super. onCreate (arg5 );This. requestWindowFeature (7 );This. setContentView (2130903292 );This. getWindow (). setFeatureInt (7, 21309

Linux Kernel: isofs endless loop This problem is very similar to the CVE-2014-5472, but the root cause is different, is the kernel in the processing of the Rock type file expansion of the endless loop problem. This problem is caused by the isofs

How to obtain the plaintext password of the IIS application pool account Sometimes, in order to obtain the necessary permissions, we will set a local or domain account for the identity of the IIS application pool to run. For example, SharePoint

Adobe Flash Player remote code execution vulnerability in CVE-2015-0313) Release date:Updated on: Affected Systems:Adobe Flash Player Adobe Flash Player 16.xAdobe Flash Player 15.xAdobe Flash Player 14.xDescription:Bugtraq id: 72429CVE (CAN) ID: CVE-

Libmspack 'mspack/lzxd. c' Memory Corruption Vulnerability Release date:Updated on: Affected Systems:LibmspackDescription:Bugtraq id: 72492 Libmspack is a library of loose Microsoft compression formats such as CAB, CHM, HLP, kernel, KWAJ, and

Tomcat all system reports Request Vulnerability CVE-2014-0227 CVE-2014-0227 Request SmugglingHazard level: Important!Affected Versions include:--Apache Tomcat 8.0.0-RC1 to 8.0.8--Apache Tomcat 7.0.0 to 7.0.54--Apache Tomcat 6.0.0 to

FreeType tt_cmap4_validate DoS Vulnerability Release date:Updated on: Affected Systems:FreeType Description:CVE (CAN) ID: CVE-2014-9663 FreeType is a popular font function library. FreeType 2.5.4 or earlier, sfnt/ttcmap. c's tt_cmap4_validate

Apache ActiveMQ Multiple Cross-Site Scripting Vulnerabilities (CVE-2014-8110) Release date:Updated on: Affected Systems:Apache Group ActiveMQ 5.10.0Unaffected system:Apache Group ActiveMQ 5.11.0Apache Group ActiveMQ 5.10.1Description:Bugtraq id: 72

CentOS 6.x one-click pptp vpn installation scriptEnvironment CentOS 6.x 32-bit/64-bitXEN/KVM/OpenVZProcedure Run the following commands in sequence #wgethttp://www.hi-vps.com/shell/vpn_centos6.sh #chmoda+xvpn_centos6.shInstall Centos6.2PPTPVPN

Sina reads data from any file to GetShell.   Start with a seemingly tough page.Http: // 123.125.106.97/test/data. php what is this?  Well, he taught me to input two parameters.  please input 'date=&type=' If you just input two values and find that

YXcms background csrf add administrator + getshell YXcms background csrf add administrator + getshell Without any verification, the PHP file can be created by adding another template function, resulting in getshell 1. Add management in the

Any user password can be reset if the user password is improperly set at a certain part of yunda Express You can reset any user password in the password retrieval area.On the registration page, scan several registered user mobile phone numbers.  

Prevents SQL injection attacks during PHP development SQL Injection attacks (SQL Injection) means to obtain the access permission of the website database through SQL Injection, and then obtain all the data in the website database, malicious hackers

Zero yuan shopping vulnerability in daily orchards 0 yuan shopping vulnerability in daily orchards, 0 yuan to buy any fruit ~~ Have a gift ~~Security is a whole When adding an item to a shopping cartWeb VersionPOST/basket HTTP/1.1Host: