渗透云记 -专注于网络安全与技术分享-最新发布-第36页

CVE-2014-4210: Oracle Weblogic – Server-Side Request Forgery

漏洞标题 CVE-2014-4210: Oracle Weblogic - Server-Side Request Forgery 漏洞描述 An unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0...

云记2014年3月12日 15:58

CVE-2022-48197: Yahoo User Interface library (YUI2) TreeView v2.8.2 – Cross-Site Scripting

漏洞标题 CVE-2022-48197: Yahoo User Interface library (YUI2) TreeView v2.8.2 - Cross-Site Scripting 漏洞描述 Reflected cross-site scripting (XSS) exists in the TreeView of YUI2 thr...

付费阅读100 漏洞库 # xss # CVE-2022 # CVE-2022-48197

云记2022年5月14日 17:44

110

CVE-2023-38964: Academy LMS 6.0 – Cross-Site Scripting

漏洞标题 CVE-2023-38964: Academy LMS 6.0 - Cross-Site Scripting 漏洞描述 Creative Item Academy LMS 6.0 was discovered to contain a cross-site scripting (XSS) vulnerability through ...

付费阅读100 漏洞库 # xss # CVE-2023 # Academy LMS

云记2023年1月14日 17:02

CVE-2019-16931: WordPress Visualizer <3.3.1 - Cross-Site Scripting

漏洞标题 CVE-2019-16931: WordPress Visualizer <3.3.1 - Cross-Site Scripting 漏洞描述 WordPress Visualizer plugin before 3.3.1 contains a stored cross-site scripting vulnerabilit...

付费阅读100 漏洞库 # xss # CVE-2019 # WordPress

云记2019年10月8日 23:35

CVE-2022-4140: WordPress Welcart e-Commerce <2.8.5 - Arbitrary File Access

漏洞标题 CVE-2022-4140: WordPress Welcart e-Commerce <2.8.5 - Arbitrary File Access 漏洞描述 WordPress Welcart e-Commerce plugin before 2.8.5 is susceptible to arbitrary file ac...

付费阅读100 漏洞库 # rce # CVE-2022 # commerce

云记2022年2月24日 03:45

CVE-2025-9808: The Events Calendar <= 6.15.2 - Information Disclosure

漏洞标题 CVE-2025-9808: The Events Calendar <= 6.15.2 - Information Disclosure 漏洞描述 The Events Calendar WordPress plugin <= 6.15.2 contains an information disclosure vuln...

付费阅读100 漏洞库 # CVE-2025 # The Events Calendar # CVE-2025-9808

云记2025年10月5日 07:34

CVE-2018-14013: Synacor Zimbra Collaboration Suite Collaboration <8.8.11 - Cross-Site Scripting

漏洞标题 CVE-2018-14013: Synacor Zimbra Collaboration Suite Collaboration <8.8.11 - Cross-Site Scripting 漏洞描述 Synacor Zimbra Collaboration Suite Collaboration before 8.8.11 ...

付费阅读100 漏洞库 # xss # CVE-2018 # Zimbra Collaboration

云记2018年5月12日 17:49

CVE-2020-13638: rConfig 3.9 – Authentication Bypass(Admin Login)

漏洞标题 CVE-2020-13638: rConfig 3.9 - Authentication Bypass(Admin Login) 漏洞描述 lib/crud/userprocess.php in rConfig 3.9.x before 3.9.7 has an authentication bypass, leading to a...

付费阅读100 漏洞库 # CVE-2020 # 认证绕过 # rConfig

云记2020年8月2日 22:03

CVE-2021-37415: Zoho ManageEngine ServiceDesk Plus – Authentication Bypass

漏洞标题 CVE-2021-37415: Zoho ManageEngine ServiceDesk Plus - Authentication Bypass 漏洞描述 Zoho ManageEngine ServiceDesk Plus before 11302 is vulnerable to authentication bypass ...

付费阅读100 漏洞库 # CVE-2021 # 认证绕过 # CVE-2021-37415

云记2021年1月25日 08:21

CVE-2019-7139: Magento – SQL Injection

漏洞标题 CVE-2019-7139: Magento - SQL Injection 漏洞描述 An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which cause...

付费阅读100 漏洞库 # sql注入 # CVE-2019 # Agent

云记2019年7月8日 09:24

CVE-2023-5222: Viessmann Vitogate 300 – Hardcoded Password

漏洞标题 CVE-2023-5222: Viessmann Vitogate 300 - Hardcoded Password 漏洞描述 A critical vulnerability in Viessmann Vitogate 300 up to 2.1.3.0 allows attackers to authenticate using...

付费阅读100 漏洞库 # CVE-2023 # CVE-2023-5222 # Vitogate

云记2023年3月27日 06:21

CVE-2018-10822: D-Link Routers – Local File Inclusion

漏洞标题 CVE-2018-10822: D-Link Routers - Local File Inclusion 漏洞描述 D-Link routers DWR-116 through 1.06, DIR-140L through 1.02, DIR-640L through 1.02,DWR-512 through 2.02,DWR-7...

付费阅读100 漏洞库 # lfi # CVE-2018 # Router

云记2018年10月2日 15:10

CVE-2010-1875: Joomla! Component Property – Local File Inclusion

漏洞标题 CVE-2010-1875: Joomla! Component Property - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the Real Estate Property (com_properties) component 3.1.22...

付费阅读100 漏洞库 # lfi # CVE-2010 # Joomla!

云记2010年8月31日 01:21