Cloud Security

LibTIFF FAX3 decoder Integer Overflow Vulnerability Release date:Updated on: 2010-06-24 Affected Systems:LibTIFF Unaffected system:LibTIFF 3.9.3Description:--------------------------------------------------------------------------------Bugtraq id: 40

Sap hana Extended Application Services Access Restriction Bypass Vulnerability Release date:Updated on: 2014-08-02 Affected Systems:Sap hana Extended Application ServicesDescription:------------------------------------------------------------------

Linux Kernel "irda_getsockopt ()" Local Integer Overflow Vulnerability Release date:Updated on: Affected Systems:Linux kernel 2.6.0-2.6.37Description:--------------------------------------------------------------------------------Bugtraq id: 45556

Multiple security vulnerabilities in Citrix Access Gateway Release date:Updated on: Affected Systems:Citrix Access Gateway 5.xDescription:--------------------------------------------------------------------------------Bugtraq id: 54775 Citrix

Xen reuse memory corruption vulnerability after release Release date:Updated on: Affected Systems:XenSource Xen 4.3.xXenSource Xen 4.2.xDescription:--------------------------------------------------------------------------------Bugtraq id:

Mozilla Firefox for Android Security Vulnerabilities (CVE-2014-1527) Release date:Updated on: Affected Systems:Mozilla Firefox Mozilla Firefox ESR Description:--------------------------------------------------------------------------------Bugtraq

Mozilla Firefox Event Spoofing Vulnerability (CVE-2014-1561) Release date:Updated on: Affected Systems:Mozilla Firefox 31Description:--------------------------------------------------------------------------------Bugtraq id: 68826CVE (CAN) ID: CVE-20

Apache Maven SSL certificate verification Security Bypass Vulnerability Release date:Updated on: 2013-02-27 Affected Systems:Apache Group Maven 3.xDescription:--------------------------------------------------------------------------------Bugtraq

Website tracking technology replacing cookies: A Preliminary Study on "canvas fingerprint recognition" [Preface]   Generally, websites or advertising alliances require a technical method to precisely locate each individual on the network, so that

A password has changed my life. The next story is between frustration and happiness. "How can she do this to me ?" This problem keeps hovering in my mind. Every day. In 2011, the gradient was still very popular, and iOS icons were still rational.

Shell task scheduled backup log script Log_bak.sh code Bin_home = "/home // bin"Folder_DEPLOY = $ bin_home "/log" Log_back = "/home/logback" Function checkderecloud (){ If ["'LS-A $ Folder_DEPLOY '" = ""]; then # Do something Echo false Else # Do

CentOS server security check script # Note: the linux server security check, Logon Server IP address check, and Firewall Status check are usually performed for system users! 1. You need to store the correct system username in

Shell deletes objects before a specified time.Since the recent World Cup, I have been busy with work and the World Cup, and I have no time to manage my blog. Today, I can only give you a simple little shell. the company asked to delete the backup

Batch import samba user and password scriptsBecause we recently set up samba, we all know that samba users must actually exist in the system. When many users want to create samba, And the password is assigned to you, at this time, only shell scripts

TSRC challenge: PHP defense bypass challenge recordingSome time ago, I was lucky enough to participate in a Challenge initiated by TSRC. A normal discuz application is running in the target environment, and an upload interface exists. This interface

Eleven common cms shell MethodsDirectory:0x1 excellent south0x2 phpweb0x3 scientific news0x4 dedecms0x50x6 aspcms0x7 74cms0x8 phpcms0x9 shopex0x10 old Y Article Management System0x11 ecshopI. China SouthFor Liang Jing, I personally prefer to insert

PDO protection against SQL Injection setAttribute (PDO: ATTR_EMULATE_PREPARES, false); // disable the simulation effect of prepared statements $ dbh-> exec ("set names 'utf8'"); $ SQL = "select * from test where name =? And password =? "; // You

SQL Injection and XSS BYPASS WAF test Vector 1. Identify Vulnerabilities http://www.site.com.tr/uyg.asp?id=123'+union+selec+1,2,3--http://www.site.com.tr/uyg.asp?id=123'http://www.site.com.tr/uyg.asp?id=123 2. HTTP parameter contamination

Lebee csrf vulnerability allows you to change the password by changing the email address The csrf vulnerability exists in the mailbox so that you can retrieve the password. The intercepted post request is as follows:   U is the user number and v

Thoughts on getshell defense in PHP scenarios 1. Background WEB application vulnerabilities often cause intrusions. scanners and WAF cannot solve all the problems, so they try to provide a defense solution for the PHP environment on the host side.