Cloud Security

Chiyu Fingerprint Access Control Device XSS Vulnerability (CVE-2015-2870)Chiyu Fingerprint Access Control Device XSS Vulnerability (CVE-2015-2870) Release date:Updated on:Affected Systems: Chiyu Technology BF-660C Description: CVE (CAN) ID:

Google Chrome DoS Vulnerability (CVE-2015-5605)Google Chrome DoS Vulnerability (CVE-2015-5605) Release date:Updated on:Affected Systems: Google Chrome Description: Bugtraq id: 76007CVE (CAN) ID: CVE-2015-5605Google Chrome is a Web browser tool

Php null pointer Multiple Security Restriction Bypass Vulnerability (CVE-2015-3412)Php null pointer Multiple Security Restriction Bypass Vulnerability (CVE-2015-3412) Release date:Updated on:Affected Systems: PHP PHP PHP Description: Bugtraq

PCRE 'compile _ branch () 'Function Heap Buffer Overflow VulnerabilityPCRE 'compile _ branch () 'Function Heap Buffer Overflow Vulnerability Release date:Updated on:Affected Systems: PCRE Description: Bugtraq id: 75175CVE (CAN) ID: CVE-2015-232

Shell script checks the memcache process and automatically restartsRevised version:#! /Bin/sh# Check memcache process and restart if downMm_bin = "/usr/local/bin/memcached"Mm_log = "/home/xxx/memcached_check.log"Mm_ports = ("11211" "11212 ")Mm_param

Quick access to basic Server Information shell scriptsSuccessively run shell scripts (applicable to centos and debian Series)Catcheck. sh #! /Bin/bash # ------------------------------------------------ # Date: June152015 # Author: jimmygong # Mail:

Principles and handling of SYN attacks in Linux security TCP has been developed for more than 30 years since it was invented in 1974 and has become the most important basic Internet Protocol. However, TCP also has some defects. SYN attacks use the

Solve the browser homepage hijacking event caused by the "" plug-in for installing youtubedownloader. Youtubedownloader is a tool used to download videos on the youtube site. It is very convenient to download videos by providing video URLs. However,

Null Pointer Vulnerability Protection Technology-improvementIn this article, we introduced the concept of NULL pointer and Null Pointer Vulnerability. In this advanced article, we will introduce the use of NULL pointer and corresponding protection

Discuz full-version storage XSS Analysis Discuz sets the post administrator's function to edit comments in the user comments. due to improper processing of the front-end JS Code, the maliciously constructed comments form an XSS after interaction.

A website in CSDN has the SQL blind injection vulnerability. Http://edu.csdn.net/courses? Attr = 3 & c_id = 0 & level = 1 payload: blind Note 1 = 1 Parameter: level (GET) Type: boolean-based blind Title: AND boolean-based blind-WHERE or HAVING

The latest cmseasy Injection Unfortunately, 360 webscan is not bypassed (in fact, it is easy to bypass) Cmseasy, latest version 0318, has an injectionVulnerability file:/lib/default/archive_act.php250-rows:  Function search_action () {// print_r ($ _

Web SQL injection and packaging   Three injection packagesInjection Point 1: http://www.wepiao.com/?a=filmdetail&c=film&m=web&fid=5452 Fid ParameterInjection Point 2: http://www.wepiao.com/?a=cinemadetailshow&c=cinema&m=web&cinemaid=1002069 Cinemaid

SQL injection vulnerability in express it Management System Place: POSTParameter: PDA_SN Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: PDA_Type=&PDA_SN=X30013040448' AND 1496=1496 AND

A large browser game SQL injection has penetrated into the company to obtain a large amount of data. Later I learned that it was a very large development company, covering Web games, websites, and smart home. It has penetrated into the development

The uploading and filtering of a website in chainjia property is not strict, resulting in leakage of about 0.4 million of Getshell accounts. A website of chainjia property is not strictly filtered, causing leakage of Getshell + approximately 0.4

SQL Injection for another sub-station in langang Injection point: http://fr.linekong.com/xml/common.php?sort_id=* The sort_id parameter has SQL injection.  Sqlmap identified the following injection points with a total of 2179 HTTP (s) requests: ---

Baidu leaked git information to getshell roaming Intranet The killer is in hand. I have it all! Http://hybrid.baidu.com/.git/configA git Information Leak allows you to download code; ➜ hybrid.baidu.com git:(master) ✗ ls -lhtotal 0drwxr-xr-x 22

Shanda's website source code leaks. Getshell goes directly to the Intranet. Git leaks, causing source code to be downloaded to the http://minigame.sdo.com/taojin/.git/config Here, we will not describe the specific vulnerability exploitation details

Happy web SQL Injection Vulnerability Happy web SQL Injection Vulnerability Many websites of Happy color network adopt thinkphp framework for development. Because patches are not updated in time, there is a general injection. See 2cto: SQL Injection.