漏洞标题 CVE-2023-34843: Traggo directory traversal 漏洞描述 CVE-2023-34843 Traggo Server 0.3.0 is vulnerable to directory traversal via a crafted GET reques fofa: "traggo&quo...

漏洞标题 CVE-2020-3952: VMware vCenter Server LDAP Broken Access Control 漏洞描述 Under certain conditions, vmdir that ships with VMware vCenter Server, as part of an embedded or e...

漏洞标题 CVE-2021-31682: WebCTRL OEM <= 6.5 - Cross-Site Scripting 漏洞描述 WebCTRL OEM 6.5 and prior is susceptible to a cross-site scripting vulnerability because the login po...

漏洞标题 CVE-2023-4112: PHPJabbers Shuttle Booking Software 1.0 - Cross Site Scripting 漏洞描述 The attacker can send to victim a link containing a malicious URL in an email or ins...

漏洞标题 CVE-2019-11510: Pulse Connect Secure SSL VPN Arbitrary File Read 漏洞描述 Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9...

漏洞标题 CVE-2023-37988: Contact Form Generator <= 2.5.5 - Cross-Site Scripting 漏洞描述 The Contact Form Generator plugin for WordPress is vulnerable to Reflected Cross-Site Sc...

漏洞标题 CVE-2016-1000148: WordPress S3 Video <=0.983 - Cross-Site Scripting 漏洞描述 WordPress S3 Video and before contains a reflected cross-site scripting vulnerability which...

漏洞标题 CVE-2020-10148: SolarWinds Orion API - Auth Bypass 漏洞描述 SolarWinds Orion API is vulnerable to an authentication bypass vulnerability that could allow a remote attacker...

漏洞标题 CVE-2021-24762: WordPress Perfect Survey <1.5.2 - SQL Injection 漏洞描述 Perfect Survey WordPress plugin before 1.5.2 does not validate and escape the question_id GET p...

漏洞标题 CVE-2018-11709: WordPress wpForo Forum <= 1.4.11 - Cross-Site Scripting 漏洞描述 WordPress wpForo Forum plugin before 1.4.12 for WordPress allows unauthenticated reflec...

漏洞标题 CVE-2025-1562: Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit - Broken Access Control 漏洞描述 The Recover WooCommerc...

漏洞标题 CVE-2023-28665: Woo Bulk Price Update <2.2.2 - Cross-Site Scripting 漏洞描述 The Woo Bulk Price Update WordPress plugin, in versions < 2.2.2, is affected by a reflec...

漏洞标题 (CVE-2024-1071) WordPress 插件 代码注入漏洞 漏洞描述 (CVE-2024-1071) WordPress 插件 代码注入漏洞 PoC代码 暂无

漏洞标题 CVE-2023-25135: vBulletin <= 5.6.9 - Pre-authentication Remote Code Execution 漏洞描述 vBulletin before 5.6.9 PL1 allows an unauthenticated remote attacker to execute a...

漏洞标题 CVE-2017-5487: Wordpress<4.7.1 Exist Username Enumeration 漏洞描述 WordPress （是一种使用PHP语言开发的博客平台）WordPress 在4.7.0版本之后将REST API插件集成到默认功能之...