标签:漏洞

首发于FreeBufhttp://www.freebuf.com/articles/web/166543.html
Web安全 漏洞
DescriptionEyesOfNetwork ("EON") is an OpenSource network monitoring solution.Remote Code Execution (authenticated)The Eonweb code does not correctly filter arguments, allowingauthenticated users t...
CVE 原创 漏洞 cve
Hello, I found that there are some problems with eonweb, hoping to help you and your work/module/admin_conf/download.phpif(isset($_GET["file"])){ $dwn="/tmp/".$_GET["fi...
CVE 原创 漏洞 cve
Hello, I found that there are some problems with Fiyo CMS, hoping to help you and your workdapurappsapp_configsys_config.php $_POST[site_name] variable exists Storage XSS vulnerability 125 if(is...
CVE xss 原创 漏洞 cve
准备环境本次使用bWAPP和DVWA作为测试系统,填写 bee/bug 登录系统选择"本地文件包含" and then hack it0x1基本的文件包含http://192.168.66.133/bWAPP/rlfi.php?language=lang_en.php&action=go http://192.168.66.133/bWAPP/rlfi.php?language=/e...
Web安全 技巧 原创 分享 漏洞