Cloud Security

Security risks of Edge browsers may be exploited by hackers. Users who use Edge browsers should pay attention to the fact that this browser is considered to have some security risks recently and may be exploited by hackers to endanger computer

Nettle ecc_256_modq Function Security Vulnerability (CVE-2015-8805)Nettle ecc_256_modq Function Security Vulnerability (CVE-2015-8805) Release date:Updated on:Affected Systems: Nettle nettle> 3.2 Description: CVE (CAN) ID: CVE-2015-8805Nettle

SQL Injection exists in the official medical drug search APP (involving more than 1 million user data) SQL Injection (including 116 million + User Data) exists in the official medical drug search APP Objective: To detect the Android APP of a

A website in HC has the SQL injection vulnerability involving more than 20 thousand user data entries. A website in HC has the SQL injection vulnerability, involving more than pieces of user data. Continued: WooYun-2016-173045The Operating Analysis

Cool music main site SQL injection vulnerability requires parameter filtering (ROOT injection/Intranet ip leakage) Cool music main site SQL Injection Vulnerability (ROOT injection/Intranet ip leakage) Different from WooYun: The domain name of a

Hainan Airlines deserialization command execution (Intranet) ~~~~ 202.100.226.94 corresponds to srm.hnair.comWeblogic deserializationHttp: // 202.100.226.94: 7001      ## Configured using SAM by root on Thu Oct 29 17:18:19 2009## Configured using

Tonglian payment: Improper configuration of an important system in a province weak tomcat password affects 23 million Card swiping consumption information \ 5.82 million bank card information, etc. Rt   Mask Region 1.http://**.**.**/gdrWeb/

Analysis on Python interface technology of Deepviz SDK Today is the last time we released our Python SDK Linked Library to support users to quickly use our Deepviz technology in their existing projects and platforms.Since our Deepviz release in last

HTTPS-related contentWhy https? HTTP is transmitted in plaintext, which means that any node between the sender and acceptor can know what the content you transmit is. These nodes may be routers and proxies. The most common example is user login. If

Case study of a rare MSSQL Injection Vulnerability     The author is going to share a fairly rare vulnerability found in last year's Google rewards program, the only one that the author has encountered throughout his penetration testing career. The

Min An Property Insurance Company Limited multiple core system middleware weak password Getshell (many vulnerabilities are not fixed) RT.   1. Core Business System of Min 'an Property Insurance Co., Ltd. Http: // 218.17.200.230: 9004/casserver/login?

SQL Injection for DBA permissions on the WAF web game main site (only two databases of the current database are viewed, with more than 2 million user information) Web game master site DBA permission SQL injection (tens of millions of user

The Bank of China paid for a small hole in a website involving a large number of personal information and multiple database information. Attachment: shell writing skillsI don't know where the actual location of the bank's payment is in Shandong? Is

A system vulnerability in huatai insurance has problems such as configuration leakage. Shell can threaten the Intranet. St command execution/configuration Leakage 1 # Command ExecutionHttp://shop.ehuatai.com:

The default webserver configuration of a Wi-Fi router in Xiaoyun is harmful. Default webserver misconfiguration vulnerability in the Wi-Fi router of Xiaoyun The small cloud products have default open proxy server ports for the public network. Just

Common Anti-crawler and Countermeasures for websites In our PREDICTION Article on the big data industry in 2016, "in 2016, big data will go down the altar and embrace the opportunities of life capital to favor entrepreneurship", we once mentioned

Didi kuaidi Smart Travel platform (cangqiong) SQL Injection Vulnerability The web interface of Didi kuaidi Smart Travel platform has the SQL injection vulnerability. Didi fast intelligent travel platform data interface has obvious SQL injection

Latency injection exists on important sites of the pull Network Punch card GET /wangpiao/checkCinema.php?robId=46&filmid=59674 HTTP/1.1Host: m.lashou.comUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:42.0) Gecko/20100101 Firefox/42.0Accept: text/

Arbitrary SQL Execution Vulnerability (getshell) in the imo cloud Office System) Rt This vulnerability is an SQL injection vulnerability. However, the mysql PDO query system can execute multiple statements, which is equivalent to arbitrary SQL

Arbitrary Password Reset caused by design defects of a substation in sogou Non-violent, second reset. The problem is that sogou cloud testing launched a business a few months ago.Mt.sogou.com  Session coverageUse your mobile phone number to