漏洞标题 CVE-2019-14470: WordPress UserPro 4.9.32 - Cross-Site Scripting 漏洞描述 WordPress UserPro 4.9.32 is vulnerable to reflected cross-site scripting because the Instagram PHP...

漏洞标题 CVE-2024-6420: Hide My WP Ghost < 5.2.02 - Hidden Login Page Disclosure 漏洞描述 The Hide My WP Ghost plugin does not prevent redirects to the login page via the auth_r...

漏洞标题 CVE-2021-27858: FatPipe WARP/IPVPN/MPVPN - Authorization Bypass 漏洞描述 FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p91 and 10.2.2r42 contain a mis...

漏洞标题 CVE-2021-39501: EyouCMS 1.5.4 Open Redirect 漏洞描述 EyouCMS 1.5.4 is vulnerable to an Open Redirect vulnerability. An attacker can redirect a user to a malicious url via ...

漏洞标题 CVE-2022-34590: Hospital Management System 1.0 - SQL Injection 漏洞描述 Hospital Management System 1.0 contains a SQL injection vulnerability via the editid parameter in /...

漏洞标题 CVE-2014-4940: WordPress Plugin Tera Charts - Local File Inclusion 漏洞描述 Multiple local file inclusion vulnerabilities in Tera Charts (tera-charts) plugin 0.1 for WordP...

漏洞标题 CVE-2023-2272: Tiempo.com <= 0.1.2 - Cross-Site Scripting 漏洞描述 Tiempo.com before 0.1.2 is susceptible to cross-site scripting via the page parameter due to insuffic...

漏洞标题 CVE-2022-34753: SpaceLogic C-Bus Home Controller <=1.31.460 - Remote Command Execution 漏洞描述 SpaceLogic C-Bus Home Controller through 1.31.460 is susceptible to remo...

随着西方云服务提供商陆续撤出俄罗斯，俄罗斯面临着一场严重的IT存储危机。据俄罗斯《生意人报》消息，公共部门的容量短缺可能会在两个月内发生，俄罗斯政府正在探索各种方法来解决IT存储问题，...

漏洞标题 CVE-2024-3848: Mlflow < 2.11.0 - Path Traversal 漏洞描述 A path traversal vulnerability exists in mlflow/mlflow version 2.11.0, identified as a bypass for the previousl...

漏洞标题 CVE-2023-24737: PMB v7.4.6 - Cross-Site Scripting 漏洞描述 PMB v7.4.6 allows an attacker to perform a reflected XSS on export_z3950.php via the 'query' parameter...

漏洞标题 CVE-2021-24875: WordPress eCommerce Product Catalog <3.0.39 - Cross-Site Scripting 漏洞描述 WordPress eCommerce Product Catalog plugin before 3.0.39 contains a cross-si...

昨日，日本知名汽车制造商丰田汽车（Toyota Motor Corporation）发布了一则公告，由于其提供汽车内外饰零部件的供应商小岛冲压工业（Kojima Industries Corporation）遭受网络攻击，丰田被迫暂...

在本篇文章了小编给各位分享的是一篇关于运行docker需要的权限分析，有兴趣的朋友们可以参考下。 运行docker需要root权限。 解决非root用户没有权限运行docker命令的问题，方法如下： 方法1： ...

漏洞标题 CVE-2023-3188: Owncast - Server Side Request Forgery 漏洞描述 Server-Side Request Forgery (SSRF) in GitHub repository owncast/owncast prior to 0.1.0. PoC代码

漏洞标题 CVE-2024-33610: Sharp Multifunction Printers - Cookie Exposure 漏洞描述 It was observed that Sharp printers are vulnerable to a listing of session cookies without authenti...