四川省熊猫杯初赛和决赛题WP - 渗透测试中心
初赛web_ezcmsswagger泄露test/test测试账号登录,/sys/user/**没有做鉴权,可以添加一个超级管理员用户,此时仍然不知道roleId。并且role模块没有未授权。继续阅
Aggregator
四川省熊猫杯初赛和决赛题WP - 渗透测试中心
1 year 10 months ago
初赛web_ezcmsswagger泄露test/test测试账号登录,/sys/user/**没有做鉴权,可以添加一个超级管理员用户,此时仍然不知道roleId。并且role模块没有未授权。继续阅读user模块,发现接口这里存在roleid泄露,这里填入前面泄露的admin的id fcf34b56
渗透测试中心
CVE-2024-37023 | Vonets VGA-1000 up to 3.3.23.6.9 os command injection (icsa-24-214-08)
1 year 10 months ago
A vulnerability has been found in Vonets VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC and VGA-1000 up to 3.3.23.6.9 and classified as critical. This vulnerability affects unknown code. The manipulation leads to os command injection.
This vulnerability was named CVE-2024-37023. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-41936 | Vonets VGA-1000 up to 3.3.23.6.9 path traversal (icsa-24-214-08)
1 year 10 months ago
A vulnerability, which was classified as critical, was found in Vonets VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC and VGA-1000 up to 3.3.23.6.9. This affects an unknown part. The manipulation leads to path traversal.
This vulnerability is uniquely identified as CVE-2024-41936. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-29082 | Vonets VGA-1000 up to 3.3.23.6.9 access control (icsa-24-214-08)
1 year 10 months ago
A vulnerability, which was classified as critical, has been found in Vonets VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC and VGA-1000 up to 3.3.23.6.9. Affected by this issue is some unknown functionality. The manipulation leads to improper access controls.
This vulnerability is handled as CVE-2024-29082. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-41161 | Vonets VGA-1000 up to 3.3.23.6.9 hard-coded credentials (icsa-24-214-08)
1 year 10 months ago
A vulnerability classified as critical was found in Vonets VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC and VGA-1000 up to 3.3.23.6.9. Affected by this vulnerability is an unknown functionality. The manipulation leads to hard-coded credentials.
This vulnerability is known as CVE-2024-41161. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-3827 | Brainstorm Force Spectra Pro Plugin up to 1.1.4 on WordPress Block ID cross site scripting
1 year 10 months ago
A vulnerability classified as problematic has been found in Brainstorm Force Spectra Pro Plugin up to 1.1.4 on WordPress. Affected is an unknown function of the component Block ID Handler. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2024-3827. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-4643 | Element Pack Elementor Addons Plugin up to 5.7.1 on WordPress cross site scripting
1 year 10 months ago
A vulnerability was found in Element Pack Elementor Addons Plugin up to 5.7.1 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2024-4643. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-3238 | Menu Plugin up to 5.0.29 on WordPress cross-site request forgery
1 year 10 months ago
A vulnerability was found in Menu Plugin up to 5.0.29 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery.
This vulnerability was named CVE-2024-3238. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-6704 | Comments Plugin up to 7.6.21 on WordPress cross site scripting
1 year 10 months ago
A vulnerability was found in Comments Plugin up to 7.6.21 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to basic cross site scripting.
This vulnerability is uniquely identified as CVE-2024-6704. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-7253 | NoMachine Local Privilege uncontrolled search path (ZDI-24-1042)
1 year 10 months ago
A vulnerability was found in NoMachine and classified as critical. Affected by this issue is some unknown functionality of the component Local Privilege Handler. The manipulation leads to uncontrolled search path.
This vulnerability is handled as CVE-2024-7253. The attack needs to be approached locally. There is no exploit available.
vuldb.com
从xctf决赛 ezthink挖掘tp8的反序列化链
1 year 10 months ago
从xctf决赛 ezthink挖掘tp8的反序列化链
对特洛伊木马Androm样本的研究分析
1 year 10 months ago
对特洛伊木马Androm样本的研究分析
内网端口转发利器:Sharp4TranPort使用指南
1 year 10 months ago
内网端口转发利器:Sharp4TranPort使用指南
【_LIST_ENTRY详解】shellcode免杀之动态获取API
1 year 10 months ago
【_LIST_ENTRY详解】shellcode免杀之动态获取API
启发式防御大模型越狱攻击
1 year 10 months ago
启发式防御大模型越狱攻击
【翻译】在(不)受限场景中的身份验证绕过 - Progress MOVEit Transfer(CVE-2024-5806)
1 year 10 months ago
【翻译】在(不)受限场景中的身份验证绕过 - Progress MOVEit Transfer(CVE-2024-5806)
微软最新WiFi远程代码执行漏洞(CVE-2024-30078)探究
1 year 10 months ago
微软最新WiFi远程代码执行漏洞(CVE-2024-30078)探究
[SWPU 2019]easyapp——手把手frida环境配置与初步使用以及so文件动态调试教程
1 year 10 months ago
[SWPU 2019]easyapp——手把手frida环境配置与初步使用以及so文件动态调试教程
初探SRC挖掘第一步
1 year 10 months ago
初探SRC挖掘第一步