漏洞标题 CVE-2014-4536: Infusionsoft Gravity Forms Add-on < 1.5.7 - Cross-Site Scripting 漏洞描述 Multiple cross-site scripting vulnerabilities in tests/notAuto_test_ContactServ...

漏洞标题 CVE-2025-30567: WordPress WP01 - Path Traversal 漏洞描述 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in wp01ru W...

漏洞标题 CVE-2023-47248: PyArrow Flight RPC - Remote Code Execution 漏洞描述 PyArrow Flight RPC from v0.14.0 through v14.0.0 allows remote attackers to execute arbitrary code via a...

漏洞标题 CVE-2004-2687: Distccd v1 - Remote Code Execution 漏洞描述 distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows r...

漏洞标题 CVE-2022-4050: WordPress JoomSport <5.2.8 - SQL Injection 漏洞描述 WordPress JoomSport plugin before 5.2.8 contains a SQL injection vulnerability. The plugin does not p...

漏洞标题 CVE-2023-0676: phpIPAM 1.5.1 - Cross-site Scripting 漏洞描述 Cross-site Scripting (XSS) - Reflected in GitHub repository phpipam/phpipam prior to 1.5.1. PoC代码

漏洞标题 CVE-2024-37728: OfficeWeb365 Indexs Interface - Arbitrary File Read 漏洞描述 There is any file reading in the officeWeb365 Indexs interface. PoC代码

漏洞标题 CVE-2023-33831: FUXA - Unauthenticated Remote Code Execution 漏洞描述 A remote command execution (RCE) vulnerability in the /api/runscript endpoint of FUXA 1.1.13 allows a...

漏洞标题 CVE-2021-40822: Geoserver - Server-Side Request Forgery 漏洞描述 GeoServer through 2.18.5 and 2.19.x through 2.19.2 allows server-side request forgery via the option for s...

漏洞标题 CVE-2015-8350: WordPress Calls to Action <=2.4.3 - Authenticated Reflected XSS 漏洞描述 Calls to Action plugin before 2.5.1 for WordPress contains stored XSS caused by ...

漏洞标题 CVE-2021-21800: Advantech R-SeeNet 2.4.12 - Cross-Site Scripting 漏洞描述 Advantech R-SeeNet 2.4.12 contains a reflected cross-site scripting vulnerability in the ssh_form...

漏洞标题 CVE-2014-1841: Titan FTP Server < 10.40 Move Function - Directory Traversal 漏洞描述 Titan FTP Server versions prior to 10.40 build 1829 contain a directory traversal v...

漏洞标题 CVE-2021-3377: npm ansi_up v4 - Cross-Site Scripting 漏洞描述 npm package ansi_up v4 is vulnerable to cross-site scripting because ANSI escape codes can be used to create ...

漏洞标题 CVE-2024-12209: WP Umbrella Update Backup Restore & Monitoring <= 2.17.0 - Local File Inclusion 漏洞描述 The WP Umbrella: Update Backup Restore & Monitoring plu...

漏洞标题 CVE-2022-0885: Member Hero <=1.0.9 - Remote Code Execution 漏洞描述 WordPress Member Hero plugin through 1.0.9 is susceptible to remote code execution. The plugin lacks...

漏洞标题 CVE-2019-9881: WPEngine WPGraphQL 0.2.3 - Unauthenticated Comment Posting 漏洞描述 The createComment mutation in the WPGraphQL 0.2.3 plugin for WordPress allows unauthenti...