当前文章支持参与抽奖截止6月21日共有100位幸运儿可以100%参与评论获取7天渗透云记博客赞助会员！！！先到先得，晚来可就没有啦 如需获取激活码，可直接查看文章最后，即可获取教程 前言 一直以...

截止2026年5月1日，文末参与评论即可获取7天网站会员，数量有限，先到先得！ 无需登录 前言 好久没有更新公众号了，最近又搓出来一个小工具，默连，寓意很简单，就是悄咪咪，静默连接。 工具支...

项目地址： 如果EasyTools对您有所帮助的话，烦请点个小星星，谢谢 https://github.com/doki-byte/EasyTools 全功能版本下载地址： EasyTools渗透测试工具箱 一款综合性网络安全检测与运维工具...

提高法律意识 b.encenc.com（渗透云记）一直致力于打造专业的网络安全学习平台，为用户提供通俗易懂的专业知识讲解。然而，我们注意到一些不法分子利用本站的优质内容，因此我们对网站进行了整...

漏洞标题 CVE-2020-13483: Bitrix24 <=20.0.0 - Cross-Site Scripting 漏洞描述 The Web Application Firewall in Bitrix24 up to and including 20.0.0 allows XSS via the items[ITEMS][ID...

漏洞标题 CVE-2020-8772: WordPress InfiniteWP <1.9.4.5 - Authorization Bypass 漏洞描述 WordPress InfiniteWP plugin before 1.9.4.5 for WordPress contains an authorization bypass v...

漏洞标题 CVE-2022-29383: NETGEAR ProSafe SSL VPN firmware - SQL Injection 漏洞描述 NETGEAR ProSafe SSL VPN multiple firmware versions were discovered to contain a SQL injection vul...

漏洞标题 CVE-2021-24910: WordPress Transposh Translation <1.0.8 - Cross-Site Scripting 漏洞描述 WordPress Transposh Translation plugin before 1.0.8 contains a reflected cross-si...

漏洞标题 CVE-2021-26072: Atlassian Confluence < 5.8.6 - Server-Side Request Forgery 漏洞描述 Confluence Server and Data Center before 5.8.6 contain a blind server-side request f...

漏洞标题 CVE-2022-31793: muhttpd <=1.1.5 - Local Inclusion 漏洞描述 muhttpd 1.1.5 and before are vulnerable to unauthenticated local file inclusion. The vulnerability allows ret...

漏洞标题 CVE-2023-27032: PrestaShop AdvancedPopupCreator - SQL Injection 漏洞描述 In the module “Advanced Popup Creator” (advancedpopupcreator) from Idnovate for PrestaShop, a gu...

漏洞标题 CVE-2024-13726: Themes Coder Ecommerce <= 1.3.4 - SQL Injection 漏洞描述 The Themes Coder Ecommerce WordPress plugin through 1.3.4 does not properly sanitise and escape...

漏洞标题 CVE-2024-6220: WordPress Keydatas ≤ 2.5.2 - Arbitrary File Upload 漏洞描述 The Keydatas plugin for WordPress (known in Chinese as "简数采集器") is vulnerable to...

漏洞标题 CVE-2023-28343: Altenergy Power Control Software C1.2.5 - Remote Command Injection 漏洞描述 Altenergy Power Control Software C1.2.5 is susceptible to remote command inject...

漏洞标题 CVE-2018-6910: DedeCMS 5.7 - Path Disclosure 漏洞描述 DedeCMS 5.7 allows remote attackers to discover the full path via a direct request for include/downmix.inc.php or inc...

据报道，乌克兰国防部和武装部队以及该国的两家国有银行Privatbank（乌克兰最大的银行）和Oschadbank（国家储蓄银行）的官方门户网站于2月15日受到分布式拒绝服务（DDoS）攻击。 本次网络...

漏洞标题 CVE-2021-24285: WordPress Car Seller - Auto Classifieds Script - SQL Injection 漏洞描述 The request_list_request AJAX call of the Car Seller - Auto Classifieds Script Word...

漏洞标题 CVE-2025-34509: Sitecore Experience Manager (XM) and Experience Platform (XP) - Hardcoded Credentials 漏洞描述 Sitecore Experience Manager (XM) and Experience Platform (XP...

漏洞标题 CVE-2021-41773: Apache 2.4.49 - Path Traversal and Remote Code Execution 漏洞描述 A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An ...

漏洞标题 CVE-2014-4539: Movies <= 0.6 - Cross-Site Scripting 漏洞描述 A cross-site scripting vulnerability in the Movies plugin 0.6 and earlier for WordPress allows remote attac...