发布时间:2010-09-03 影响版本:uchome 2.0 漏洞描述:看源码分析的,出错位置较敏感,而且基本没有利用限制,个人主页自定义风格时,可@import外部css文件 测试方法: 本站提供程序(方法)可能带有攻击性,仅供安全研究与教学之用,风险自负! 以下在uchome 简体utf-8 ...
扫码分享
验证:
体验盒子不再关注网络安全
发布时间:2010-09-03 影响版本:uchome 2.0 漏洞描述:看源码分析的,出错位置较敏感,而且基本没有利用限制,个人主页自定义风格时,可@import外部css文件 测试方法: 本站提供程序(方法)可能带有攻击性,仅供安全研究与教学之用,风险自负! 以下在uchome 简体utf-8 ...
vBulletin is a customizable forums package for web sites. It has been written in PHP and is complimented with MySQL. While a user is previewing the post, both newreply.php and newthread.php correctly sanitize the input in 'Preview', but ...
VP-ASP (Virtual Programming - ASP) has won awards both in the US and France. It is now in use in over 70 countries. VP-ASP can be used to build any type of Internet shop and sell anything.According to http://www.securityfocus.com/bid/9164/discussi...
# Google Dork: inurl:/calendar/calendar_form.php # Triconsole 3.75 - Reflected XSS. CVE: 2021-27330. # https://www.exploit-db.com/exploits/49597 # Date: 1/3/2021 # Exploit Author: Alexandros Pappas
# Google Dork: "Powered By Best Support System" # Best Support System 3.0.4 - 'ticket_body' Persistent XSS (Authenticated). # CVE: CVE-2020-24963. https://www.exploit-db.com/exploits/49122 # Date: 23/2/2021 # Exploit Author: Al...
# Google Dork :inurl:/wp-content/themes/altair/ # Shows Altair WordPress theme v4.8 - Unauthenticated Reflected XSS # Author : ANURAG K P
# Google Dork: inurl:/cgi-bin/manlist?section # SCO Openserver 5.0.7 - 'section' Reflected XSS. CVE : CVE-2020-25495. # https://www.exploit-db.com/exploits/49300 # SCO Openserver 5.0.7 - 'outputform' Command Injection. CVE : CV...
# Google Dork: inurl:"woocommerce-exporter" # WooCommerce Store Exporter v1.7.5 Stored XSS. https://www.exploit-db.com/exploits/34424 # Date: 29/10/2020 # Exploit Author: Alexandros Pappas
Google Dork : inurl:"/plugins/servlet/Wallboard/" This will give all the Jira dashboard which might be vulnerable to XSS. (Sensitive Data Exposure) Author : Pratik Khalane Date : 10/09/2020
Google Dork: inurl:wp-content/plugins/coming-soon This google dork lists out Advisories and Vulnerabilities regarding the coming soon page,maintenance and under construction pages. Ref:https://wpvulndb.com/vulnerabilities/10283 Coming Soon Page, U...
体验盒子
