CVE-2013-2251: Apache Struts 2 – DefaultActionMapper Prefixes OGNL Code Execution (S2-016)
漏洞标题 CVE-2013-2251: Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution (S2-016) 漏洞描述 In Struts 2 before 2.3.15.1 the information following "action:&quo...
CVE-2024-13888: WPMobile.App <= 11.56 - Open Redirect
漏洞标题 CVE-2024-13888: WPMobile.App <= 11.56 - Open Redirect 漏洞描述 The WPMobile.App plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including...
CVE-2021-46381: D-Link DAP-1620 – Local File Inclusion
漏洞标题 CVE-2021-46381: D-Link DAP-1620 - Local File Inclusion 漏洞描述 D-Link DAP-1620 is susceptible to local file Inclusion due to path traversal that can lead to unauthorized ...
CVE-2019-12987: Citrix SD-WAN Center – Remote Command Injection
漏洞标题 CVE-2019-12987: Citrix SD-WAN Center - Remote Command Injection 漏洞描述 Citrix SD-WAN Center is susceptible to remote command injection via the apply action in StorageMgm...
CVE-2024-55550: Mitel MiCollab – Arbitary File Read
漏洞标题 CVE-2024-55550: Mitel MiCollab - Arbitary File Read 漏洞描述 The Mitel Collab Arbitrary File Read vulnerability allows an unauthenticated attacker to read arbitrary files ...
CVE-2022-1937: WordPress Awin Data Feed <=1.6 - Cross-Site Scripting
漏洞标题 CVE-2022-1937: WordPress Awin Data Feed <=1.6 - Cross-Site Scripting 漏洞描述 WordPress Awin Data Feed plugin 1.6 and prior contains a cross-site scripting vulnerabilit...
CVE-2024-21893: Ivanti SAML – Server Side Request Forgery (SSRF)
漏洞标题 CVE-2024-21893: Ivanti SAML - Server Side Request Forgery (SSRF) 漏洞描述 A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, ...
CVE-2020-36112: CSE Bookstore 1.0 – SQL Injection
漏洞标题 CVE-2020-36112: CSE Bookstore 1.0 - SQL Injection 漏洞描述 CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR error-based SQL injectio...
CVE-2022-39986: RaspAP 2.8.7 – Unauthenticated Command Injection
漏洞标题 CVE-2022-39986: RaspAP 2.8.7 - Unauthenticated Command Injection 漏洞描述 A Command injection vulnerability in RaspAP 2.8.0 thru 2.8.7 allows unauthenticated attackers to ...
CVE-2009-1496: Joomla! Cmimarketplace 0.1 – Local File Inclusion
漏洞标题 CVE-2009-1496: Joomla! Cmimarketplace 0.1 - Local File Inclusion 漏洞描述 Joomla! Cmimarketplace 0.1 is susceptible to local file inclusion because com_cmimarketplace allo...
CVE-2021-31602: Hitachi Vantara Pentaho/Business Intelligence Server – Authentication Bypass
漏洞标题 CVE-2021-31602: Hitachi Vantara Pentaho/Business Intelligence Server - Authentication Bypass 漏洞描述 Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence...
CVE-2010-2682: Joomla! Component Realtyna Translator 1.0.15 – Local File Inclusion
漏洞标题 CVE-2010-2682: Joomla! Component Realtyna Translator 1.0.15 - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the Realtyna Translator (com_realtyna) c...
CVE-2010-1469: Joomla! Component JProject Manager 1.0 – Local File Inclusion
漏洞标题 CVE-2010-1469: Joomla! Component JProject Manager 1.0 - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the Ternaria Informatica JProject Manager (com...
CVE-2024-0305: Ncast busiFacade – Remote Command Execution
漏洞标题 CVE-2024-0305: Ncast busiFacade - Remote Command Execution 漏洞描述 The Ncast Yingshi high-definition intelligent recording and playback system is a newly developed audio ...
CVE-2020-15568: TerraMaster TOS v4.1.24 RCE
漏洞标题 CVE-2020-15568: TerraMaster TOS v4.1.24 RCE 漏洞描述 TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. This is a dynamic c...
