CVE-2019-9955: Zyxel – Cross-Site Scripting
漏洞标题 CVE-2019-9955: Zyxel - Cross-Site Scripting 漏洞描述 Zyxel ATP200, ATP500, ATP800, USG20-VPN, USG20W-VPN, USG40, USG40W, USG60, USG60W, USG110, USG210, USG310, USG1100, US...
CVE-2024-11680: ProjectSend <= r1605 - Improper Authorization
漏洞标题 CVE-2024-11680: ProjectSend <= r1605 - Improper Authorization 漏洞描述 An improper authorization check was identified within ProjectSend version r1605 that allows an at...
CVE-2023-40752: PHPJabbers Make an Offer Widget v1.0 – Cross-Site Scripting
漏洞标题 CVE-2023-40752: PHPJabbers Make an Offer Widget v1.0 - Cross-Site Scripting 漏洞描述 There is a Cross Site Scripting (XSS) vulnerability in the "action" paramete...
CVE-2008-4764: Joomla! <=2.0.0 RC2 - Local File Inclusion
漏洞标题 CVE-2008-4764: Joomla! <=2.0.0 RC2 - Local File Inclusion 漏洞描述 Joomla! 2.0.0 RC2 and earlier are susceptible to local file inclusion in the eXtplorer module (com_ex...
CVE-2010-2034: Joomla! Component Percha Image Attach 1.1 – Directory Traversal
漏洞标题 CVE-2010-2034: Joomla! Component Percha Image Attach 1.1 - Directory Traversal 漏洞描述 A directory traversal vulnerability in the Percha Image Attach (com_perchaimageatta...
CVE-2010-1354: Joomla! Component VJDEO 1.0 – Local File Inclusion
漏洞标题 CVE-2010-1354: Joomla! Component VJDEO 1.0 - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the VJDEO (com_vjdeo) component 1.0 and 1.0.1 for Joomla!...
CVE-2023-32117: Integrate Google Drive <= 1.1.99 - Missing Authorization via REST API Endpoints
漏洞标题 CVE-2023-32117: Integrate Google Drive <= 1.1.99 - Missing Authorization via REST API Endpoints 漏洞描述 The Integrate Google Drive plugin for WordPress is vulnerable t...
CVE-2025-54309: CrushFTP – Authentication Bypass Race Condition
漏洞标题 CVE-2025-54309: CrushFTP - Authentication Bypass Race Condition 漏洞描述 CrushFTP 10 before 10.8.5 and 11 before 11.3.4_23, when the DMZ proxy feature is not used, mishand...
CVE-2025-31489: MinIO – Incomplete Signature Validation for Unsigned-Trailer Uploads
漏洞标题 CVE-2025-31489: MinIO - Incomplete Signature Validation for Unsigned-Trailer Uploads 漏洞描述 MinIO is a High Performance Object Storage released under GNU Affero General ...
CVE-2023-37679: NextGen Mirth Connect – Remote Code Execution
漏洞标题 CVE-2023-37679: NextGen Mirth Connect - Remote Code Execution 漏洞描述 Mirth Connect, by NextGen HealthCare, is an open source data integration platform widely used by hea...
CVE-2022-4063: WordPress InPost Gallery <2.1.4.1 - Local File Inclusion
漏洞标题 CVE-2022-4063: WordPress InPost Gallery <2.1.4.1 - Local File Inclusion 漏洞描述 WordPress InPost Gallery plugin before 2.1.4.1 is susceptible to local file inclusion. ...
CVE-2021-3018: IPeakCMS 3.5 – SQL Injection
漏洞标题 CVE-2021-3018: IPeakCMS 3.5 - SQL Injection 漏洞描述 ipeak Infosystems ibexwebCMS 3.5 contains an unauthenticated Boolean-based SQL injection caused by unsanitized 'i...
CVE-2022-35914: GLPI <=10.0.2 - Remote Command Execution
漏洞标题 CVE-2022-35914: GLPI <=10.0.2 - Remote Command Execution 漏洞描述 GLPI through 10.0.2 is susceptible to remote command execution injection in /vendor/htmlawed/htmlawed/...
CVE-2022-4971: Sassy Social Share <= 3.3.3 - Cross-Site Scripting
漏洞标题 CVE-2022-4971: Sassy Social Share <= 3.3.3 - Cross-Site Scripting 漏洞描述 The Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting v...
CVE-2023-25194: Apache Druid Kafka Connect – Remote Code Execution
漏洞标题 CVE-2023-25194: Apache Druid Kafka Connect - Remote Code Execution 漏洞描述 The vulnerability has the potential to enable a remote attacker with authentication to run any ...






