Adobe ColdFusion IPFilterUtils CVE-2023-38205 认证绕过漏洞
漏洞标题 Adobe ColdFusion IPFilterUtils CVE-2023-38205 认证绕过漏洞 漏洞描述 Adobe ColdFusion中存在不正当访问控制漏洞,可绕过认证功能。该漏洞是由于IPFilterUtils类对URL路径的验证不...
(CVE-2021-39141) XStream 反序列化漏洞
漏洞标题 (CVE-2021-39141) XStream 反序列化漏洞 漏洞描述 (CVE-2021-39141) XStream 反序列化漏洞 PoC代码 暂无
CVE-2024-7593: Ivanti vTM – Authentication Bypass
漏洞标题 CVE-2024-7593: Ivanti vTM - Authentication Bypass 漏洞描述 Incorrect implementation of an authentication algorithm in Ivanti vTM other than versions 22.2R1 or 22.7R2 allow...
CVE-2017-18532: Realty by BestWebSoft < 1.1.0 - Cross-Site Scripting
漏洞标题 CVE-2017-18532: Realty by BestWebSoft < 1.1.0 - Cross-Site Scripting 漏洞描述 The realty plugin before 1.1.0 for WordPress has multiple XSS issues. PoC代码
CVE-2022-0949: WordPress Stop Bad Bots <6.930 - SQL Injection
漏洞标题 CVE-2022-0949: WordPress Stop Bad Bots <6.930 - SQL Injection 漏洞描述 WordPress Stop Bad Bots plugin before 6.930 contains a SQL injection vulnerability. The plugin do...
CVE-2022-2599: WordPress Anti-Malware Security and Brute-Force Firewall <4.21.83 - Cross-Site Scripting
漏洞标题 CVE-2022-2599: WordPress Anti-Malware Security and Brute-Force Firewall <4.21.83 - Cross-Site Scripting 漏洞描述 WordPress Anti-Malware Security and Brute-Force Firewal...
CVE-2021-3239: E-Learning System v1.0 SQL注入基于时间盲注漏洞
漏洞标题 CVE-2021-3239: E-Learning System v1.0 SQL注入基于时间盲注漏洞 漏洞描述 user_email 参数似乎容易受到基于时间的盲注的 SQL 注入攻击。 在 user_email 参数中提交了单引号,并返回...
CVE-2023-4151: Store Locator WordPress < 1.4.13 - Cross-Site Scripting
漏洞标题 CVE-2023-4151: Store Locator WordPress < 1.4.13 - Cross-Site Scripting 漏洞描述 The Store Locator WordPress plugin before 1.4.13 does not sanitise and escape an invalid...
CVE-2025-44136: MapTiler Tileserver-php v2.0 – Unauthenticated XSS
漏洞标题 CVE-2025-44136: MapTiler Tileserver-php v2.0 - Unauthenticated XSS 漏洞描述 MapTiler Tileserver-php v2.0 contains a reflected XSS caused by unencoded reflection of the GET...
CVE-2013-6281: WordPress Spreadsheet – Cross-Site Scripting
漏洞标题 CVE-2013-6281: WordPress Spreadsheet - Cross-Site Scripting 漏洞描述 WordPress Spreadsheet plugin contains a reflected cross-site scripting vulnerability in /dhtmlxspreads...
CVE-2023-24488: Citrix Gateway and Citrix ADC – Cross-Site Scripting
漏洞标题 CVE-2023-24488: Citrix Gateway and Citrix ADC - Cross-Site Scripting 漏洞描述 Citrix ADC and Citrix Gateway versions before 13.1 and 13.1-45.61, 13.0 and 13.0-90.11, 12.1 ...
CVE-2023-5914: Citrix StoreFront – Cross-Site Scripting
漏洞标题 CVE-2023-5914: Citrix StoreFront - Cross-Site Scripting 漏洞描述 Reflected Cross-Site Scripting issue which is exploitable without authentication. This vulnerability was e...
CVE-2021-24862: WordPress RegistrationMagic <5.0.1.6 - Authenticated SQL Injection
漏洞标题 CVE-2021-24862: WordPress RegistrationMagic <5.0.1.6 - Authenticated SQL Injection 漏洞描述 WordPress RegistrationMagic plugin before 5.0.1.6 contains an authenticated ...
CVE-2010-0759: Joomla! Plugin Core Design Scriptegrator – Local File Inclusion
漏洞标题 CVE-2010-0759: Joomla! Plugin Core Design Scriptegrator - Local File Inclusion 漏洞描述 A directory traversal vulnerability in plugins/system/cdscriptegrator/libraries/hig...
CVE-2020-8772: WordPress InfiniteWP <1.9.4.5 - Authorization Bypass
漏洞标题 CVE-2020-8772: WordPress InfiniteWP <1.9.4.5 - Authorization Bypass 漏洞描述 WordPress InfiniteWP plugin before 1.9.4.5 for WordPress contains an authorization bypass v...
CVE-2021-39327: WordPress BulletProof Security 5.1 Information Disclosure
漏洞标题 CVE-2021-39327: WordPress BulletProof Security 5.1 Information Disclosure 漏洞描述 The BulletProof Security WordPress plugin is vulnerable to sensitive information disclos...
