CVE-2024-39713: Rocket.Chat – Server-Side Request Forgery (SSRF)
漏洞标题 CVE-2024-39713: Rocket.Chat - Server-Side Request Forgery (SSRF) 漏洞描述 A Server-Side Request Forgery (SSRF) affects Rocket.Chat's Twilio webhook endpoint before ve...
CVE-2024-11921: Give WP Plugin < 3.19.0 - Cross-Site Scripting
漏洞标题 CVE-2024-11921: Give WP Plugin < 3.19.0 - Cross-Site Scripting 漏洞描述 The plugin does not sanitise and escape a parameter before outputting it back in the page, leadi...
CVE-2024-2782: WordPress FluentForms <= 5.1.16 - Broken Access Control
漏洞标题 CVE-2024-2782: WordPress FluentForms <= 5.1.16 - Broken Access Control 漏洞描述 The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Bu...
CVE-2024-57045: D-Link DIR-859 – Information Disclosure
漏洞标题 CVE-2024-57045: D-Link DIR-859 - Information Disclosure 漏洞描述 A critical information disclosure vulnerability exists in D-Link devices where sensitive device account in...
CVE-2024-1061: WordPress HTML5 Video Player – SQL Injection
漏洞标题 CVE-2024-1061: WordPress HTML5 Video Player - SQL Injection 漏洞描述 WordPress HTML5 Video Player plugin is vulnerable to SQL injection. An unauthenticated attacker can ex...
IIS 服务器下载apk文件报404错误的解决方法_win服务器
最近在使用IIS作为服务器的时候,apk文件已经上传到服务器上去了,但是无法下载,报404错误(没有找到),原来需要做解析,需要的朋友可以参考下 最近在使用IIS作为服务器的时候,apk文件已经上...
Ubuntu18.04一次性升级Python所有库的方法步骤_Linux
这篇文章主要介绍了Ubuntu18.04一次性升级Python所有库的方法步骤,文中通过示例代码介绍的非常详细,对大家的学习或者工作具有一定的参考学习价值,需要的朋友们下面随着小编来一起学习学习吧 ...
CVE-2024-21644: pyLoad Flask Config – Access Control
漏洞标题 CVE-2024-21644: pyLoad Flask Config - Access Control 漏洞描述 pyLoad is the free and open-source Download Manager written in pure Python. Any unauthenticated user can brow...
CVE-2024-24329: TotoLink Router setPortForwardRules – Command Injection
漏洞标题 CVE-2024-24329: TotoLink Router setPortForwardRules - Command Injection 漏洞描述 TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vuln...
CVE-2024-32640: Mura/Masa CMS – SQL Injection
漏洞标题 CVE-2024-32640: Mura/Masa CMS - SQL Injection 漏洞描述 The Mura/Masa CMS is vulnerable to SQL Injection. PoC代码
解决linux环境下时区无法设置的问题_Linux
在本篇文章里小编给大家整理的是关于解决linux环境下时区无法设置的问题的方法,需要的朋友们学习下。 在进行linux下修改时区的时候总是修改不了 修改成 Asia/Shanghai 但是 时区总是 +0000 却...
详解Nginx轮询算法底层实现的方法_nginx
这篇文章主要介绍了详解Nginx轮询算法底层实现的方法,文中通过示例代码介绍的非常详细,对大家的学习或者工作具有一定的参考学习价值,需要的朋友们下面随着小编来一起学习学习吧 轮询算法简介...
CVE-2024-8503: VICIdial – SQL Injection
漏洞标题 CVE-2024-8503: VICIdial - SQL Injection 漏洞描述 An unauthenticated attacker can leverage a time-based SQL injection vulnerability in VICIdial to enumerate database record...
CVE-2024-5082: Nexus Repository 2 – Remote Code Execution
漏洞标题 CVE-2024-5082: Nexus Repository 2 - Remote Code Execution 漏洞描述 A Remote Code Execution vulnerability has been discovered in Sonatype Nexus Repository 2.This issue affe...
CVE-2024-7954: SPIP Porte Plume Plugin – Remote Code Execution
漏洞标题 CVE-2024-7954: SPIP Porte Plume Plugin - Remote Code Execution 漏洞描述 The porte_plume plugin used by SPIP before 4.30-alpha2, 4.2.13, and 4.1.16 is vulnerable to an arbi...
CVE-2024-4898: WordPress InstaWP Connect <= 0.1.0.38 - Unauthenticated User Creation
漏洞标题 CVE-2024-4898: WordPress InstaWP Connect <= 0.1.0.38 - Unauthenticated User Creation 漏洞描述 The InstaWP Connect – 1-click WP Staging & Migration plugin for WordP...
