漏洞标题 CVE-2022-29005: Online Birth Certificate System 1.2 - Stored Cross-Site Scripting 漏洞描述 Online Birth Certificate System 1.2 contains multiple stored cross-site scriptin...

漏洞标题 (CVE-2020-5410) Spring Cloud Config 目录遍历漏洞 漏洞描述 (CVE-2020-5410) Spring Cloud Config 目录遍历漏洞 PoC代码 暂无

漏洞标题 CVE-2024-39907: 1Panel SQL Injection - Authenticated 漏洞描述 1Panel is a web-based linux server management control panel. There are many sql injections in the project, an...

漏洞标题 CVE-2019-3398: Atlassian Confluence Download Attachments - Remote Code Execution 漏洞描述 Confluence Server and Data Center had a path traversal vulnerability in the downl...

漏洞标题 CVE-2023-3848: MooDating 1.2 - Cross-site scripting 漏洞描述 A vulnerability, which was classified as problematic, has been found in mooSocial mooDating 1.2. This issue af...

漏洞标题 CVE-2017-3132: Fortinet FortiOS < 5.6.0 - Cross-Site Scripting 漏洞描述 A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attac...

漏洞标题 CVE-2020-11529: Grav < 1.7 - Open Redirect 漏洞描述 Grav before 1.7 has an open redirect vulnerability via common/Grav.php. This is partially fixed in 1.6.23 and still ...

漏洞标题 CVE-2023-27032: PrestaShop AdvancedPopupCreator - SQL Injection 漏洞描述 In the module “Advanced Popup Creator” (advancedpopupcreator) from Idnovate for PrestaShop, a gu...

漏洞标题 CVE-2010-4617: Joomla! Component JotLoader 2.2.1 - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the JotLoader (com_jotloader) component 2.2.1 for J...

漏洞标题 CVE-2015-1419: vsftpd <= 3.0.2 - Access Restriction Bypass 漏洞描述 vsftpd 3.0.2 and earlier contain a vulnerability that allows remote attackers to bypass access restr...

漏洞标题 CVE-2025-61884: Oracle E-Business Suite - Server-Side Request Forgery 漏洞描述 Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: Runt...

漏洞标题 CVE-2020-10204: Nexus Repository before 3.21.2 Remote Code Execution 漏洞描述 漏洞触发需要任意账户权限 body="Nexus Repository Manager" app="Nexus-Repository...

漏洞标题 CVE-2022-29383: NETGEAR ProSafe SSL VPN firmware - SQL Injection 漏洞描述 NETGEAR ProSafe SSL VPN multiple firmware versions were discovered to contain a SQL injection vul...

漏洞标题 CVE-2022-24260: VoipMonitor - Pre-Auth SQL Injection 漏洞描述 A SQL injection vulnerability in Voipmonitor GUI before v24.96 allows attackers to escalate privileges to the...

漏洞标题 Apache Airflow admin 未授权访问漏洞 （CVE-2020-17526） 漏洞描述 攻击者可以创建与目标相同版本的本地安装，以管理员身份登录并将会话cookie重播到目标以在远程计算机上以管理员身...

漏洞标题 CVE-2023-0037: WordPress 10Web Map Builder < 1.0.73 - Unauthenticated SQL Injection 漏洞描述 The 10Web Map Builder for Google Maps WordPress plugin before 1.0.73 does n...