unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
CVE-2021-42631 PrinterLogic Web Stack unserialize RCE
看到推特上有人发 PrinterLogic Web Stack unserialize RCE,但是poc打码了,所以自己下了一个分析一下。这玩意是个打印机,开放了一个基于iis/php/larave...
2022-1-28 11:23:16 | 阅读: 15 |
收藏
|
y4er.com
v12
m128i
v11
v9
php
CVE-2021-42631 PrinterLogic Web Stack unserialize RCE
看到推特上有人发 PrinterLogic Web Stack unserialize RCE,但是poc打码了,所以自己下了一个分析一下。这玩意是个打印机,开放了一个基于iis/php/larave...
2022-1-28 11:23:16 | 阅读: 13 |
收藏
|
y4er.com
v12
m128i
v9
v11
php
CVE-2022-22733 Apache ShardingSphere ElasticJob-UI RCE
看diff https://github.com/apache/shardingsphere-elasticjob-ui/commit/f3afe51221cd2382e59afc4b9544c6...
2022-1-21 15:22:0 | 阅读: 32 |
收藏
|
y4er.com
gettoken
elasticjob
handlelogin
纠正
CVE-2022-22733 Apache ShardingSphere ElasticJob-UI RCE
看diff https://github.com/apache/shardingsphere-elasticjob-ui/commit/f3afe51221cd2382e59afc4b9544c6c8...
2022-1-21 15:22:0 | 阅读: 16 |
收藏
|
y4er.com
elasticjob
gettoken
handlelogin
不尽
dotnet 反序列化的另外几个gadget
之前写了一些ysoserial.net工具中常见的gadget,文章放在了我的GitHub,这篇文章对其进行补充。全文以json.net反序列化为例,开启TypeNameHandling.All...
2022-1-21 11:6:13 | 阅读: 28 |
收藏
|
y4er.com
neutral
windows
dotnet 反序列化的另外几个gadget
之前写了一些ysoserial.net工具中常见的gadget,文章放在了我的GitHub,这篇文章对其进行补充。全文以json.net反序列化为例,开启TypeNameHandling.All。测试...
2022-1-21 11:6:13 | 阅读: 13 |
收藏
|
y4er.com
neutral
windows
CVE-2021-45456 Apache Kylin 命令注入
ubuntu docker 8g 1docker pull apachekylin/apache-kylin-standalone:4.0.0 2 3docker run -d \ 4-m 8G...
2022-1-13 16:6:53 | 阅读: 29 |
收藏
|
y4er.com
kylin
5005
7070
CVE-2021-45456 Apache Kylin 命令注入
ubuntu docker 8gdocker pull apachekylin/apache-kylin-standalone:4.0.0docker run -d \-m 8G \-p...
2022-1-13 16:6:53 | 阅读: 241 |
收藏
|
y4er.com
kylin
5005
8088
MeterSphere PluginController Pre-Auth RCE
chybeta又发预警了1wget https://github.com/metersphere/metersphere/releases/download/v1.16.3/metersphere-o...
2022-1-7 10:38:55 | 阅读: 15 |
收藏
|
y4er.com
metersphere
github
MeterSphere PluginController Pre-Auth RCE
chybeta又发预警了wget https://github.com/metersphere/metersphere/releases/download/v1.16.3/metersphere...
2022-1-7 10:38:55 | 阅读: 14 |
收藏
|
y4er.com
metersphere
msversion
CVE-2021-45232 Apache APISIX Dashboard Unauthorized Access Vulnerability
安装docker和docker-compose,然后git clone https://github.com/apache/apisix-docker修改 /home/ubuntu/apisi...
2021-12-28 10:36:31 | 阅读: 39 |
收藏
|
y4er.com
apisix
migrate
gatewayurl
中间件
payload
CVE-2021-45232 Apache APISIX Dashboard Unauthorized Access Vulnerability
安装docker和docker-compose,然后1git clone https://github.com/apache/apisix-docker修改 /home/ubuntu/apisix-...
2021-12-28 10:36:31 | 阅读: 20 |
收藏
|
y4er.com
apisix
migrate
gatewayurl
payload
crc32
CVE-2021-21234 Spring Boot Actuator Logview Directory Traversal
项目地址:https://github.com/lukashinsch/spring-boot-actuator-logview在spring-boot-actuator-logview 0.2...
2021-12-07 22:16:49 | 阅读: 28 |
收藏
|
y4er.com
logview
actuator
github
loggingpath
CVE-2021-44077 Zoho ManageEngine ServiceDesk Plus Pre-Auth RCE
11303版本的才有ImportTechnicians action,11305版本没有,踩了个大坑。http://archives.manageengine.com/service-desk/...
2021-12-07 12:03:48 | 阅读: 29 |
收藏
|
y4er.com
restapi
msiexec
s247action
CVE-2021-44077 Zoho ManageEngine ServiceDesk Plus Pre-Auth RCE
11303版本的才有ImportTechnicians action,11305版本没有,踩了个大坑。http://archives.manageengine.com/service-desk/113...
2021-12-7 11:3:48 | 阅读: 15 |
收藏
|
y4er.com
msiexec
restapi
s247action
11303
CVE-2021-34992 Orckestra C1 CMS Deserialization RCE
Orckestra C1 CMS 6.10存在 .net 反序列化漏洞,需要登录,成因是因为TypeNameHandling.Auto下载 https://github.com/Orckest...
2021-12-04 22:36:49 | 阅读: 19 |
收藏
|
y4er.com
composite
mscorlib
neutral
CVE-2021-34992 Orckestra C1 CMS Deserialization RCE
Orckestra C1 CMS 6.10存在 .net 反序列化漏洞,需要登录,成因是因为TypeNameHandling.Auto下载 https://github.com/Orckestra/C...
2021-12-4 21:36:49 | 阅读: 19 |
收藏
|
y4er.com
composite
mscorlib
CVE-2021-21234 Spring Boot Actuator Logview Directory Traversal
项目地址:https://github.com/lukashinsch/spring-boot-actuator-logview在spring-boot-actuator-logview 0.2.13...
2021-12-1 21:34:33 | 阅读: 28 |
收藏
|
y4er.com
logview
actuator
loggingpath
github
CommVault Command Center Pre-Auth Rce
CommVault这玩意是两种语言(.net和java)开发的,两掺挺有意思。下载链接安装会自动更新 恶心坏了 只能在更新打补丁前先把dll拷出来然后再覆盖进去。整个流程就是从一个权限绕过...
2021-11-25 22:32:01 | 阅读: 20 |
收藏
|
y4er.com
soapenv
tem
svc
flag3
CommVault Command Center Pre-Auth Rce
CommVault这玩意是两种语言(.net和java)开发的,两掺挺有意思。下载链接安装会自动更新 恶心坏了 只能在更新打补丁前先把dll拷出来然后再覆盖进去。整个流程就是从一个权限绕过到文件读取,...
2021-11-25 21:32:1 | 阅读: 11 |
收藏
|
y4er.com
soapenv
tem
svc
reject
Previous
5
6
7
8
9
10
11
12
Next