漏洞标题 CVE-2023-32117: Integrate Google Drive <= 1.1.99 - Missing Authorization via REST API Endpoints 漏洞描述 The Integrate Google Drive plugin for WordPress is vulnerable t...

漏洞标题 CVE-2021-45811: osTicket 1.15.x - SQL Injection 漏洞描述 A SQL injection vulnerability in the "Search" functionality of "tickets.php" page in osTicket ...

漏洞标题 CVE-2021-45467: Control Web Panel (CWP) - File Inclusion 漏洞描述 In CWP (Control Web Panel, previously CentOS Web Panel) before version 0.9.8.1107, an unauthenticated att...

漏洞标题 CVE-2013-7285: XStream <1.4.6/1.4.10 - Remote Code Execution 漏洞描述 Xstream API before 1.4.6 and 1.4.10 is susceptible to remote code execution. If the security frame...

漏洞标题 CVE-2024-28734: Coda v.2024Q1 - Cross-Site Scripting 漏洞描述 Cross Site Scripting vulnerability in Unit4 Financials by Coda v.2024Q1 allows a remote attacker to escalate ...

漏洞标题 CVE-2020-24391: Mongo-Express - Remote Code Execution 漏洞描述 Mongo-Express before 1.0.0 is susceptible to remote code execution because it uses safer-eval to validate us...

漏洞标题 Apache Flink 任意文件写入(CVE-2020-17518) 漏洞描述 【漏洞对象】Apache Flink 【涉及版本】Flink1.5.1-1.11.2 \【漏洞描述】ApacheFlink是一个开源的流处理框架，具有强大的流处理...

漏洞标题 CVE-2023-2766: Weaver OA 9.5 - Information Disclosure 漏洞描述 A vulnerability was found in Weaver OA 9.5 and classified as problematic. This issue affects some unknown pr...

漏洞标题 CVE-2020-29453: Jira Server Pre-Auth - Arbitrary File Retrieval (WEB-INF, META-INF) 漏洞描述 The CachingResourceDownloadRewriteRule class in Jira Server and Jira Data Cent...

漏洞标题 CVE-2021-32478: Moodle 3.8-3.10.3 - Reflected XSS & Open Redirect 漏洞描述 Moodle versions 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8 contain a reflected XSS and open ...

漏洞标题 CVE-2022-26138: Atlassian Questions For Confluence - Hardcoded Credentials 漏洞描述 Atlassian Questions For Confluence contains a hardcoded credentials vulnerability. When...

漏洞标题 CVE-2023-39560: ECTouch v2 - SQL Injection 漏洞描述 ECTouch v2 was discovered to contain a SQL injection vulnerability via the $arr['id'] parameter at \default\h...

漏洞标题 CVE-2022-1398: External Media without Import <=1.1.2 - Authenticated Blind Server-Side Request Forgery 漏洞描述 WordPress External Media without Import plugin through 1...

漏洞标题 CVE-2020-26217: XStream <1.4.14 - Remote Code Execution 漏洞描述 XStream before 1.4.14 is susceptible to remote code execution. An attacker can run arbitrary shell comm...

漏洞标题 CVE-2024-9989: Crypto <= 2.15 - Authentication Bypass 漏洞描述 The Crypto plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, ...

漏洞标题 CVE-2024-41667: OpenAM<=15.0.3 FreeMarker - Template Injection 漏洞描述 OpenAM is an open access management solution. In versions 15.0.3 and prior, the `getCustomLoginU...