CVE-2025-34040: Zhiyuan OA Platform – Arbitrary File Upload
漏洞标题 CVE-2025-34040: Zhiyuan OA Platform - Arbitrary File Upload 漏洞描述 An arbitrary file upload vulnerability exists in the Zhiyuan OA platform 5.0, 5.1 - 5.6sp1, 6.0 - 6.1s...
CVE-2024-11238: Landray EKP – Path Traversal
漏洞标题 CVE-2024-11238: Landray EKP - Path Traversal 漏洞描述 A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This affects the function del...
CVE-2008-1547: Microsoft OWA Exchange Server 2003 – ‘redir.asp’ Open Redirection
漏洞标题 CVE-2008-1547: Microsoft OWA Exchange Server 2003 - 'redir.asp' Open Redirection 漏洞描述 Open redirect vulnerability in exchweb/bin/redir.asp in Microsoft Outlo...
CVE-2020-10770: Keycloak <= 12.0.1 - request_uri Blind Server-Side Request Forgery (SSRF)
漏洞标题 CVE-2020-10770: Keycloak <= 12.0.1 - request_uri Blind Server-Side Request Forgery (SSRF) 漏洞描述 Keycloak 12.0.1 and below allows an attacker to force the server to r...
CVE-2020-27838: KeyCloak – Information Exposure
漏洞标题 CVE-2020-27838: KeyCloak - Information Exposure 漏洞描述 A flaw was found in keycloak in versions prior to 13.0.0. The client registration endpoint allows fetching informa...
CVE-2021-20323: Keycloak 10.0.0 – 18.0.0 – Cross-Site Scripting
漏洞标题 CVE-2021-20323: Keycloak 10.0.0 - 18.0.0 - Cross-Site Scripting 漏洞描述 Keycloak 10.0.0 to 18.0.0 contains a cross-site scripting vulnerability via the client-registratio...
CVE-2024-3656: Keycloak < 24.0.5 - Broken Access Control
漏洞标题 CVE-2024-3656: Keycloak < 24.0.5 - Broken Access Control 漏洞描述 A flaw was found in Keycloak. Certain endpoints in Keycloak's admin REST API allow low-privilege ...
CVE-2024-8698: Keycloak – SAML Core Package Signature Validation Flaw
漏洞标题 CVE-2024-8698: Keycloak - SAML Core Package Signature Validation Flaw 漏洞描述 A flaw exists in the SAML signature validation method within the Keycloak XMLSignatureUtil c...
CVE-2024-8883: Keycloak – Open Redirect
漏洞标题 CVE-2024-8883: Keycloak - Open Redirect 漏洞描述 A misconfiguration flaw was found in Keycloak. This issue can allow an attacker to redirect users to an arbitrary URL if a...
CVE-2014-6308: Osclass Security Advisory 3.4.1 – Local File Inclusion
漏洞标题 CVE-2014-6308: Osclass Security Advisory 3.4.1 - Local File Inclusion 漏洞描述 A directory traversal vulnerability in OSClass before 3.4.2 allows remote attackers to read ...
CVE-2018-1000129: Jolokia 1.3.7 – Cross-Site Scripting
漏洞标题 CVE-2018-1000129: Jolokia 1.3.7 - Cross-Site Scripting 漏洞描述 Jolokia 1.3.7 is vulnerable to cross-site scripting in the HTTP servlet and allows an attacker to execute m...
CVE-2018-1000130: Jolokia Agent – JNDI Code Injection
漏洞标题 CVE-2018-1000130: Jolokia Agent - JNDI Code Injection 漏洞描述 Jolokia agent is vulnerable to a JNDI injection vulnerability that allows a remote attacker to run arbitrary...
CVE-2025-46822: Java-springboot-codebase 1.1 – Arbitrary File Read
漏洞标题 CVE-2025-46822: Java-springboot-codebase 1.1 - Arbitrary File Read 漏洞描述 OsamaTaher/Java-springboot-codebase is a collection of Java and Spring Boot code snippets, appl...
CVE-2022-0422: WordPress White Label CMS <2.2.9 - Cross-Site Scripting
漏洞标题 CVE-2022-0422: WordPress White Label CMS <2.2.9 - Cross-Site Scripting 漏洞描述 WordPress White Label CMS plugin before 2.2.9 contains a reflected cross-site scripting ...
CVE-2021-24910: WordPress Transposh Translation <1.0.8 - Cross-Site Scripting
漏洞标题 CVE-2021-24910: WordPress Transposh Translation <1.0.8 - Cross-Site Scripting 漏洞描述 WordPress Transposh Translation plugin before 1.0.8 contains a reflected cross-si...
