-
大佬,能否提供个现成的client,编程苦手,调试了半天也没搞出来,跪求单播
-
情况时这样的,登录返回的json为404,然后web界面显示用户名或密码错误:
root@VM-8-2-debian:~/14Finger-docker# cat nginx/html/config.json
{
"BASE_URL_PROD": "http://127.0.0.1:7990",
"BASE_URL_DEV": "http://127.0.0.1:8000"
…
-
A xss vulnerability was discovered in seacms v12.6
There is a stored XSS vulnerability which allows remote attackers to inject arbitrary web script or HTML via the v_company and v_tvsparameter of /…
-
The cause of the vulnerability: When decompressing, the compressed files were not filtered and judged, which resulted in the possibility of uploading cross-directory zip files to getshell.
![image](h…
-
### Vulnerability file address
`admin/add_product.php` from line 18,It only restricts the type of the file, and does not restrict the file suffix, and the file type can be bypassed only by modifyin…
-
I use the released code without problem before updating. Now, I notice that the codes are updated newly. So I can not wait to try it, and successfully run the python setup.py install. Then when I run …
-
### Vulnerability file address
`net-banking/send_funds_action.php` from line 17,The `$_GET['cust_id']` parameter is controllable, the parameter cust_id can be passed through get, and the `$receiver_i…
-
Hi,
I am developing a B2B system and that is completed but I need to add a modification after AirCreate like:
1. to add PSPT
2. to add meal request (VGML, KSML)
3. to add frequent flyer
all t…
-
Hi,
The CSV available in the repository seems to have suffered from an encoding issue.
All the non-latin characters have been saved as `?` (`0x3f`), so it is unusable in its present state.
Could…
-
Hey there!
I belong to an open source security research community, and a member (@faisalfs10x) has found an issue, but doesn’t know the best way to disclose it.
If not a hassle, might you kindly add…