月度存档: 二月 2014

phpBB远程拒绝服务漏洞

WordPress BP Group Documents Plugin 1.2.1 -多个漏洞

WordPress AdRotate Plugin 3.9.4 (clicktracker.php, track param) – SQL注入漏洞

IBM Business Process Manager – User Account Reconfiguration

MediaWiki Thumb.php远程命令执行

Symantec Endpoint Protection Manager远程命令执行漏洞

WordPress Frontend Upload Plugin – Arbitrary File Upload

Apache Commons FileUpload and Apache Tomcat Denial-of-Service

朋友网查询QQ号漏洞

新浪微博CSRF漏洞可刷粉丝

Joomla 3.2.1 – SQL注入漏洞

Android 游览器和 WebView addJavascriptInterface 执行代码漏洞

Pandora FMS远程代码执行漏洞

Apache Tomcat Manager Application Upload Authenticated Code Execution

Apache Struts Developer Mode OGNL Execution

VLC 2.1.2 (.asf) – Crash PoC

Pandora FMS 5.0RC1 – Remote Command Injection

Joomla JomSocial Component 2.6 – Code Execution Exploit

D-Link DIR-100 – Multiple Vulnerabilities

XnView 1.92.1 Command-Line Arguments Buffer Overflow Vulnerability

CCProxy 7.3 – Integer Overflow Exploit

ECSHOP后台低权限sql注入

华众系统存储型xss漏洞可盲打后台影响几千家主机服务商

同程旅游网主站SQL注入漏洞#0

天涯某处OAuth认证缺陷可劫持oauth_token