漏洞标题 CVE-2019-7139: Magento - SQL Injection 漏洞描述 An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which cause...

漏洞标题 CVE-2021-35464: ForgeRock OpenAM <7.0 - Remote Code Execution 漏洞描述 ForgeRock AM server before 7.0 has a Java deserialization vulnerability in the jato.pageSession p...

漏洞标题 CVE-2020-16846: SaltStack Shell Injection 漏洞描述 An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to the Salt API, with the SSH clien...

漏洞标题 CVE-2019-25141: Easy WP SMTP <= 1.3.9 - Missing Authorization to Arbitrary Options Update 漏洞描述 The Easy WP SMTP plugin for WordPress is vulnerable to authorization ...

漏洞标题 CVE-2019-7238: Sonatype Nexus Repository Manager <3.15.0 - Remote Code Execution 漏洞描述 Sonatype Nexus Repository Manager before 3.15.0 is susceptible to remote code ...

漏洞标题 CVE-2022-1952: WordPress eaSYNC Booking <1.1.16 - Arbitrary File Upload 漏洞描述 WordPress eaSync Booking plugin bundle for hotel, restaurant and car rental before 1.1....

漏洞标题 CVE-2019-2725: Oracle WebLogic Remote Code Execution 漏洞描述 Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services...

漏洞标题 CVE-2023-4169: Ruijie RG-EW1200G Router - Password Reset 漏洞描述 A vulnerability was found in Ruijie RG-EW1200G 1.0(1)B1P5. It has been declared as critical. Affected by ...

漏洞标题 CVE-2021-39316: WordPress DZS Zoomsounds <=6.50 - Local File Inclusion 漏洞描述 WordPress Zoomsounds plugin 6.45 and earlier allows arbitrary files, including sensitive...

漏洞标题 CVE-2020-17496: vBulletin 5.5.4 - 5.6.2- Remote Command Execution 漏洞描述 vBulletin versions 5.5.4 through 5.6.2 allow remote command execution via crafted subWidgets dat...

漏洞标题 Alibaba Nacos derby 未授权访问(CVE-2021-29442) 漏洞描述 Alibaba Nacos /derby端点不受保护，未经身份验证的用户可以公开访问。导致可以执行任意的select查询语句,可以查询数据库用...

漏洞标题 CVE-2024-32739: CyberPower < v2.8.3 - SQL Injection 漏洞描述 A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. PoC代码

漏洞标题 CVE-2017-3131: FortiOS 5.4.0 to 5.6.0 - Cross-Site Scripting 漏洞描述 A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 and 5.6.0 allow...

漏洞标题 CVE-2017-7615: MantisBT <=2.30 - Arbitrary Password Reset/Admin Access 漏洞描述 MantisBT through 2.3.0 allows arbitrary password reset and unauthenticated admin access ...

漏洞标题 CVE-2024-0799: Arcserve Unified Data Protection - Authentication Bypass 漏洞描述 An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and ...

漏洞标题 CVE-2010-1307: Joomla! Component Magic Updater - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the Magic Updater (com_joomlaupdater) component for J...