漏洞标题 CVE-2012-4242: WordPress Plugin MF Gig Calendar 0.9.2 - Cross-Site Scripting 漏洞描述 A cross-site scripting vulnerability in the MF Gig Calendar plugin 0.9.2 for WordPres...

漏洞标题 CVE-2020-16846: SaltStack Shell Injection 漏洞描述 An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to the Salt API, with the SSH clien...

漏洞标题 CVE-2023-6023: VertaAI ModelDB - Path Traversal 漏洞描述 The endpoint "/api/v1/artifact/getArtifact?artifact_path=" is vulnerable to path traversal. The main cau...

漏洞标题 CVE-2018-9206: Blueimp jQuery-File-Upload v9.22.0 - Unrestricted File Upload 漏洞描述 Blueimp jQuery-File-Upload v9.22.0 contains an unauthenticated arbitrary file upload ...

漏洞标题 CVE-2022-31269: Linear eMerge E3-Series - Information Disclosure 漏洞描述 Linear eMerge E3-Series devices are susceptible to information disclosure. Admin credentials are ...

漏洞标题 CVE-2012-0392: Apache Struts2 S2-008 RCE 漏洞描述 The CookieInterceptor component in Apache Struts before 2.3.1.1 does not use the parameter-name whitelist, which allows r...

漏洞标题 CVE-2018-7422: WordPress Site Editor <=1.1.1 - Local File Inclusion 漏洞描述 WordPress Site Editor through 1.1.1 allows remote attackers to retrieve arbitrary files via...

漏洞标题 CVE-2012-6499: WordPress Plugin Age Verification v0.4 - Open Redirect 漏洞描述 Open redirect vulnerability in age-verification.php in the Age Verification plugin 0.4 and e...

漏洞标题 CVE-2019-2588: Oracle Business Intelligence - Path Traversal 漏洞描述 Oracle Business Intelligence versions 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0 are vulnerable to path tr...

漏洞标题 CVE-2021-21973: VMware vSphere - Server-Side Request Forgery 漏洞描述 VMware vSphere (HTML5) is susceptible to server-side request forgery due to improper validation of UR...

打开题目我们发现一个网页，然后有一个菜单，点击菜单就能发现这个payflag的页面，需要1亿，买是一定要买的，但付款就不一定了 Flag need your 100000000 money attention If you want to buy t...

漏洞标题 CVE-2023-28432: MinIO Cluster Deployment - Information Disclosure 漏洞描述 MinIO is susceptible to information disclosure. In a cluster deployment starting with RELEASE.20...

漏洞标题 CVE-2018-19458: PHP Proxy 3.0.3 - Local File Inclusion 漏洞描述 PHP Proxy 3.0.3 is susceptible to local file inclusion vulnerabilities that allow unauthenticated users to ...

漏洞标题 CVE-2025-32429: XWiki Platform - SQL Injection 漏洞描述 XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In version...

漏洞标题 CVE-2020-36731: Flexible Checkout Fields for WooCommerce <= 2.3.1 - Unauthenticated Arbitrary Plugin Settings Update 漏洞描述 The Flexible Checkout Fields for WooCommer...

漏洞标题 CVE-2024-23692: HTTP File Server Template_injection 漏洞描述 Rejetto HTTP文件服务器，直到并包括2.3m版本，都存在模板注入漏洞。此漏洞允许远程、未经认证的攻击者通过发送特制的...