CVE-2024-8852: All-in-One WP Migration < 7.87 - Unauthenticated Information Disclosure
漏洞标题 CVE-2024-8852: All-in-One WP Migration < 7.87 - Unauthenticated Information Disclosure 漏洞描述 The All-in-One WP Migration and Backup plugin for WordPress is vulnerabl...
CVE-2022-0873: WordPress Gmedia Photo Gallery Plugin < 1.20.0 - Cross-Site Scripting
漏洞标题 CVE-2022-0873: WordPress Gmedia Photo Gallery Plugin < 1.20.0 - Cross-Site Scripting 漏洞描述 The Gmedia Photo Gallery WordPress plugin before 1.20.0 does not sanitise ...
CVE-2014-2962: Belkin N150 Router 1.00.08/1.00.09 – Path Traversal
漏洞标题 CVE-2014-2962: Belkin N150 Router 1.00.08/1.00.09 - Path Traversal 漏洞描述 A path traversal vulnerability in the webproc cgi module on the Belkin N150 F9K1009 v1 router w...
CVE-2009-4223: KR-Web <=1.1b2 - Remote File Inclusion
漏洞标题 CVE-2009-4223: KR-Web <=1.1b2 - Remote File Inclusion 漏洞描述 KR-Web 1.1b2 and prior contain a remote file inclusion vulnerability via adm/krgourl.php, which allows re...
CVE-2023-39143: PaperCut < 22.1.3 - Path Traversal
漏洞标题 CVE-2023-39143: PaperCut < 22.1.3 - Path Traversal 漏洞描述 PaperCut NG and PaperCut MF before 22.1.3 are vulnerable to path traversal which enables attackers to read, ...
BackupBuddy 存在本地文件包含漏洞(CVE-2022-31474)
漏洞标题 BackupBuddy 存在本地文件包含漏洞(CVE-2022-31474) 漏洞描述 BackupBuddy 是WordPress一款备份迁移插件。BackupBuddy 8.5.8.0 - 8.7.4.1版本存在本地文件包含漏洞,攻击者可以利用...
CVE-2022-4301: WordPress Sunshine Photo Cart <2.9.15 - Cross-Site Scripting
漏洞标题 CVE-2022-4301: WordPress Sunshine Photo Cart <2.9.15 - Cross-Site Scripting 漏洞描述 WordPress Sunshine Photo Cart plugin before 2.9.15 contains a cross-site scripting ...
CVE-2024-25600: WordPress的Bricks主题存在远程命令执行
漏洞标题 CVE-2024-25600: WordPress的Bricks主题存在远程命令执行 漏洞描述 Improper Control of Generation of Code ('Code Injection') vulnerability in Codeer Limited Bricks B...
CVE-2022-47002: Masa CMS – Authentication Bypass
漏洞标题 CVE-2022-47002: Masa CMS - Authentication Bypass 漏洞描述 Masa CMS 7.2, 7.3, and 7.4-beta are susceptible to authentication bypass in the Remember Me function. An attacker...
(CVE-2018-25114) osCommerce Online Merchant 2.3.4.1 远程代码执行漏洞
漏洞标题 (CVE-2018-25114) osCommerce Online Merchant 2.3.4.1 远程代码执行漏洞 漏洞描述 (CVE-2018-25114) osCommerce Online Merchant 2.3.4.1 远程代码执行漏洞 PoC代码 暂无
CVE-2022-0899: Header Footer Code Manager < 1.1.24 - Cross-Site Scripting
漏洞标题 CVE-2022-0899: Header Footer Code Manager < 1.1.24 - Cross-Site Scripting 漏洞描述 The Header Footer Code Manager WordPress plugin before 1.1.24 does not escape generat...
CVE-2022-0760: WordPress Simple Link Directory <7.7.2 - SQL injection
漏洞标题 CVE-2022-0760: WordPress Simple Link Directory <7.7.2 - SQL injection 漏洞描述 WordPress Simple Link Directory plugin before 7.7.2 contains a SQL injection vulnerabilit...
CVE-2024-4956: Sonatype Nexus Repository Manager 3 – Local File Inclusion
漏洞标题 CVE-2024-4956: Sonatype Nexus Repository Manager 3 - Local File Inclusion 漏洞描述 Path Traversal in Sonatype Nexus Repository 3 allows an unauthenticated attacker to read...
Arcserve Unified Data Protection CVE-2024-0801 拒绝服务漏洞
漏洞标题 Arcserve Unified Data Protection CVE-2024-0801 拒绝服务漏洞 漏洞描述 Arcserve Unified Data Protection存在拒绝服务漏洞,此漏洞是由于EdgeServiceConsoleImpl接口对用户的请求验...
CVE-2024-34982: LyLme-Spage – Arbitary File Upload
漏洞标题 CVE-2024-34982: LyLme-Spage - Arbitary File Upload 漏洞描述 An arbitrary file upload vulnerability in the component /include/file.php of lylme_spage v1.9.5 allows attacker...
CVE-2021-25299: Nagios XI 5.7.5 – Cross-Site Scripting
漏洞标题 CVE-2021-25299: Nagios XI 5.7.5 - Cross-Site Scripting 漏洞描述 Nagios XI 5.7.5 contains a cross-site scripting vulnerability in the file /usr/local/nagiosxi/html/admin/ss...
