Cloud Security

Stored XSS in an iPhone (the database address and other information have been returned) 0x01Someone recommended me a software called one password that day:  This can be synchronized to the cloud, and password transmission can be performed on

Weak OA password of a subsidiary of CNPC Weak OA password of a subsidiary of CNPC The APP you see in the APP marketplace.Download and test.  POST /uie3/upc/login.action HTTP/1.1Host: **.**.**.**:7774Accept-Encoding: gzip, deflateContent-Type:

Multiple SQL Injection packages in a wasu System Rt Http:// OS .wasu.cn/weixiu/delwxd.php? Id = 1Http:// OS .wasu.cn/weixiu/pdxz.php? Id = 1Http:// OS .wasu.cn/weixiu/savewxd.php POST parameter: dz = pd & id = 111111 & pdgs = 1Http:// OS

SQL injection vulnerability in a Kingdee system (with verification script) Kingdee system Injection VulnerabilityAs of November 8, 2015, the system had released more than 1.3 million mobile Internet users, with over 2.62 million

A static injection (error reported) on a giant network site) A static injection (error reported) on a giant network site) Http://act.vg.ztgame.com/video/public/show/13---Parameter: #1 * (URI)Type: error-basedTitle: MySQL & gt; = 5.0 AND

Xinhuanet sub-station injection vulnerability obtained Shell A substation in Xinhuanet has the SQL Injection Vulnerability (you can directly inject and write SHELL) POST/index. php? A = search & m = Book HTTP/1.1Content-Length: 325Content-Type:

A System Defect in huatai insurance allows you to directly operate on the database to add, delete, and modify data (you do not need to log on to execute any SQL statement) Design defects Http: // 219.143.162.218/htwx/    POST http://219.143.162.218/

Reset the password of any account on the Android Client My daughter-in-law recommended me to use this APP, So she changed her password... When I registered with a mobile phone, I found that the verification code was 4 digits, and I felt that there

Getshell of a Huawei website Shell Career-whrc.w.wei.com/pages/handle/register.handle.phpFirst, register a number and then register it again.If a single quotation mark is added to the user name, the registration fails.It should be

Multiple SQL injections from a substation in Huawei A sub-station of Huawei, Oracle Database Http://consumer.huawei.com/support/services/service/tcsReservation/findReservationByReservationNo? Jsonp = jquery1910201111365258694_1448884905233 &

Some design defects of a platform in Fujian wanglong can be packaged. you can log on to any user account to consume others' balances at will. Design defect packaging, allows you to log on to any user account to consume others' balances at

A site under Baidu has severe design defects Img src = "/upload/201511/30143343 e5dfc2f4553a0fde8f89dc00f8a889b5.png" alt = "2.png"/>Baidu bookstore domain name is ks.baidu.comI first registered a bookstore number,Then open http: //

A major security vulnerability exists in NetEase enterprise mail (such as Yunxiao Street/Hunan Satellite TV) Many corporate post offices have chosen Netease enterprise mail. All of the three companies on Netease's enterprise mail platform,

A giant has many injections (an interesting addslashes that is sometimes absent) There was no small gift for the last vulnerability !! So I still have a question. Will this time be ignored?I gave up when I became the richest person. I can give it

Yuantong's website server fell (java deserialization vulnerability) Yuantong's website server fell (java deserialization vulnerability) The java deserialization vulnerability exists when a Site Server of yuantong falls down.Vulnerability address:

58. Arbitrary user hijacking and logon caused by improper design of an app in the same city 58. An app in the same city is improperly designed, resulting in hijacking of arbitrary users 58 The logon function of the Home Express app (ios) is

Cisco Jabbar chat client vulnerable to man-in-the-middle attacks Cisco announced that its chat client Jabbar has a security vulnerability and is vulnerable to man-in-the-middle attacks. This vulnerability exists in the Jabbar on the Windows platform.

Cisco Jabbar chat client vulnerable to man-in-the-middle attacks Cisco announced that its chat client Jabbar has a security vulnerability and is vulnerable to man-in-the-middle attacks.This vulnerability exists in the Jabbar on the Windows platform.

China Telecom micro-store Getshell (millions of users/millions of orders/Intranet/several database servers/fall into China Telecom micro-Stores) First, a connection from BaiduHttp: // **. **/CTManager/login. do? Lel = 0 & code =

A certain potato system SQL injection to Getshell Rt Http://xianchang03.danmu.tudou.com/login.doThe potato bullet Screen System reported a weak password before, but there was actually an injection for login.Admin 'or '1' = '1 direct bypass