Exploits « ProdigYu's Blog

Exploits

MS10-048 本地提权漏洞利用

by ProdigYu on Oct.05, 2010, under Exploits

USE MS10048.EXE NET USER XX XX /ADD
USE MS10048.EXE MUMA.EXE (continue reading…)

Leave a Comment :漏洞, 脚本 more...

Discuz! 7.1 & 7.2 远程代码执行漏洞

by ProdigYu on Sep.18, 2010, under Exploits

特别说明：产生漏洞的$scriptlang数组在安装插件后已经初始化，因此有安装插件的用户不受影响。

漏洞介绍：

Discuz！新版本7.1与7.2版本中的showmessage函数中eval中执行的参数未初始化，可以任意提交，从而可以执行任意PHP命令。 (continue reading…)

Leave a Comment :Discuz!, 漏洞, 远程 more...

Hi! Welcome to ProdigYu's Blog!
Thanks for dropping by! Feel free to join the discussion by leaving comments, and stay updated by subscribing to the RSS feed. See ya around!
Recent Posts
Browse by tags
BIND9 CentOS DNS FastCGI Google IIS IP Linux Nginx Opensource Python Skill Spawn-FCGI web.py Windows Xen 命令安装开源技巧注入源码漏洞系统组件网络电话脚本自建详解错误

Categories
- Hosting
- Life
- Mood
- OpenSource
- OS
  - Linux
  - Windows
- Program
  - PHP
  - Python
- Security
  - Exploits
  - Injection
- Virtualization
- VoIP
- Web
  - CDN
  - MySQL
  - Nginx
  - SEO

Meta
- Log in
- Valid XHTML

Looking for something?

Use the form below to search the site:

Still not finding what you're looking for? Drop a comment on a post or contact us so we can take care of it!

Blogroll

A few highly recommended websites...

Archives

All entries, chronologically...