CVE-2021-41653: TP-Link – OS Command Injection
漏洞标题 CVE-2021-41653: TP-Link - OS Command Injection 漏洞描述 The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable...
使用Docker构建一个Git镜像使用clone仓库_docker
这篇文章主要介绍了使用Docker构建一个Git镜像使用clone仓库,文中通过示例代码介绍的非常详细,对大家的学习或者工作具有一定的参考学习价值,需要的朋友们下面随着小编来一起学习学习吧 概述 ...
CVE-2023-40044: WS_FTP Server – Insecure Deserialization
漏洞标题 CVE-2023-40044: WS_FTP Server - Insecure Deserialization 漏洞描述 In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a pre-authenticated attacker could leverage a .NET de...
CVE-2023-3169: tagDiv Composer < 4.2 - Stored Cross-Site Scripting
漏洞标题 CVE-2023-3169: tagDiv Composer < 4.2 - Stored Cross-Site Scripting 漏洞描述 tagDiv Composer plugin versions before 4.2 for WordPress are vulnerable to unauthenticated s...
CVE-2021-24295: Spam protection, AntiSpam, FireWall by CleanTalk < 5.153.4 - Unauthenticated Blind SQL Injection
漏洞标题 CVE-2021-24295: Spam protection, AntiSpam, FireWall by CleanTalk < 5.153.4 - Unauthenticated Blind SQL Injection 漏洞描述 It was possible to exploit an Unauthenticated ...
CVE-2022-25485: Cuppa CMS v1.0 – Local File Inclusion
漏洞标题 CVE-2022-25485: Cuppa CMS v1.0 - Local File Inclusion 漏洞描述 CuppaCMS v1.0 was discovered to contain a local file inclusion via the url parameter in /alerts/alertLightbo...
CVE-2021-33221: CommScope Ruckus IoT Controller – Information Disclosure
漏洞标题 CVE-2021-33221: CommScope Ruckus IoT Controller - Information Disclosure 漏洞描述 CommScope Ruckus IoT Controller is susceptible to information disclosure vulnerabilities ...
CVE-2022-0149: WooCommerce Stored Exporter WordPress Plugin < 2.7.1 - Cross-Site Scripting
漏洞标题 CVE-2022-0149: WooCommerce Stored Exporter WordPress Plugin < 2.7.1 - Cross-Site Scripting 漏洞描述 The plugin was affected by a reflected cross-site scripting vulnerab...
CVE-2022-26148: Grafana & Zabbix Integration – Credentials Disclosure
漏洞标题 CVE-2022-26148: Grafana & Zabbix Integration - Credentials Disclosure 漏洞描述 Grafana through 7.3.4, when integrated with Zabbix, contains a credential disclosure vul...
CVE-2022-1386: WordPress Fusion Builder <3.6.2 - Server-Side Request Forgery
漏洞标题 CVE-2022-1386: WordPress Fusion Builder <3.6.2 - Server-Side Request Forgery 漏洞描述 WordPress Fusion Builder plugin before 3.6.2 is susceptible to server-side request...
CVE-2020-26413: Gitlab CE/EE 13.4 – 13.6.2 – Information Disclosure
漏洞标题 CVE-2020-26413: Gitlab CE/EE 13.4 - 13.6.2 - Information Disclosure 漏洞描述 GitLab CE and EE 13.4 through 13.6.2 is susceptible to Information disclosure via GraphQL. Use...
CVE-2024-36683: PrestaShop productsalert – SQL Injection
漏洞标题 CVE-2024-36683: PrestaShop productsalert - SQL Injection 漏洞描述 In the module 'Products Alert' (productsalert) up to version 1.7.4 from Smart Modules for Prest...
CVE-2021-24347: WordPress SP Project & Document Manager <4.22 - Authenticated Shell Upload
漏洞标题 CVE-2021-24347: WordPress SP Project & Document Manager <4.22 - Authenticated Shell Upload 漏洞描述 WordPress SP Project & Document Manager plugin before 4.22 i...
CVE-2018-7193: osTicket < 1.10.2 - Cross-Site Scripting
漏洞标题 CVE-2018-7193: osTicket < 1.10.2 - Cross-Site Scripting 漏洞描述 Cross-site scripting (XSS) vulnerability in /scp/directory.php in Enhancesoft osTicket before 1.10.2 al...
CVE-2021-25104: WordPress Ocean Extra <1.9.5 - Cross-Site Scripting
漏洞标题 CVE-2021-25104: WordPress Ocean Extra <1.9.5 - Cross-Site Scripting 漏洞描述 WordPress Ocean Extra plugin before 1.9.5 contains a cross-site scripting vulnerability. Th...
CVE-2020-13483: Bitrix24 <=20.0.0 - Cross-Site Scripting
漏洞标题 CVE-2020-13483: Bitrix24 <=20.0.0 - Cross-Site Scripting 漏洞描述 The Web Application Firewall in Bitrix24 up to and including 20.0.0 allows XSS via the items[ITEMS][ID...
