渗透云记 -专注于网络安全与技术分享-最新发布-第50页

CVE-2021-31195: Microsoft Exchange Server – Cross-Site Scripting

漏洞标题 CVE-2021-31195: Microsoft Exchange Server - Cross-Site Scripting 漏洞描述 Microsoft Exchange Server, or OWA, is vulnerable to a cross-site scripting vulnerability in refur...

云记2021年12月18日 04:42

CVE-2017-11586: FineCMS <5.0.9 - Open Redirect

漏洞标题 CVE-2017-11586: FineCMS <5.0.9 - Open Redirect 漏洞描述 FineCMS 5.0.9 contains an open redirect vulnerability via the url parameter in a sync action. An attacker can re...

付费阅读100 漏洞库 # CVE-2017 # CVE-2017-11586 # finecms

云记2017年12月19日 11:55

CVE-2023-1893: Login Configurator <=2.1 - Cross-Site Scripting

漏洞标题 CVE-2023-1893: Login Configurator <=2.1 - Cross-Site Scripting 漏洞描述 Login Configurator WordPress plugin <= 2.1 contains a reflected cross-site scripting caused b...

付费阅读100 漏洞库 # xss # CVE-2023 # CVE-2023-1893

云记2023年6月12日 16:24

CVE-2023-5089: Defender Security < 4.1.0 - Protection Bypass (Hidden Login Page)

漏洞标题 CVE-2023-5089: Defender Security < 4.1.0 - Protection Bypass (Hidden Login Page) 漏洞描述 The Defender Security WordPress plugin before 4.1.0 does not prevent redirects...

付费阅读100 漏洞库 # CVE-2023 # FE # CVE-2023-5089

云记2023年4月23日 02:10

CVE-2021-25067: Landing Page Builder < 1.4.9.6 - Cross-Site Scripting

漏洞标题 CVE-2021-25067: Landing Page Builder < 1.4.9.6 - Cross-Site Scripting 漏洞描述 The Landing Page Builder WordPress plugin before 1.4.9.6 was affected by a reflected XSS ...

付费阅读100 漏洞库 # xss # CVE-2021 # CVE-2021-25067

云记2021年10月20日 22:07

CVE-2021-46419: Telesquare TLR-2855KS6 – Arbitrary File Deletion

漏洞标题 CVE-2021-46419: Telesquare TLR-2855KS6 - Arbitrary File Deletion 漏洞描述 An unauthorized file deletion vulnerability in Telesquare TLR-2855KS6 via DELETE method can allow...

付费阅读100 漏洞库 # CVE-2021 # Telesquare # CVE-2021-46419

云记2021年12月28日 02:23

CVE-2023-48777: WordPress Elementor 3.18.1 – File Upload/Remote Code Execution

漏洞标题 CVE-2023-48777: WordPress Elementor 3.18.1 - File Upload/Remote Code Execution 漏洞描述 The plugin is vulnerable to Remote Code Execution via file upload via the template ...

付费阅读100 漏洞库 # rce # CVE-2023 # 文件上传

云记2023年12月10日 14:07

CVE-2000-0760: Jakarta Tomcat 3.1 and 3.0 – Information Disclosure

漏洞标题 CVE-2000-0760: Jakarta Tomcat 3.1 and 3.0 - Information Disclosure 漏洞描述 Jakarta Tomcat 3.1 and 3.0 under Apache contain a vulnerability in the Snoop servlet that revea...

付费阅读100 漏洞库 # tomcat # CVE-2000 # CVE-2000-0760

云记2000年12月17日 11:00

CVE-2015-2067: Magento Server MAGMI – Directory Traversal

漏洞标题 CVE-2015-2067: Magento Server MAGMI - Directory Traversal 漏洞描述 Magento Server MAGMI (aka Magento Mass Importer) contains a directory traversal vulnerability in web/aja...

付费阅读100 漏洞库 # CVE-2015 # Agent # CVE-2015-2067

云记2015年11月24日 01:02

CVE-2021-26247: Cacti – Cross-Site Scripting

漏洞标题 CVE-2021-26247: Cacti - Cross-Site Scripting 漏洞描述 Cacti contains a cross-site scripting vulnerability via "http://<CACTI_SERVER>/auth_changepassword.php?ref...

付费阅读100 漏洞库 # xss # CVE-2021 # cacti

云记2021年11月5日 15:51

CVE-2018-11784: Apache Tomcat – Open Redirect

漏洞标题 CVE-2018-11784: Apache Tomcat - Open Redirect 漏洞描述 Apache Tomcat versions prior to 9.0.12, 8.5.34, and 7.0.91 are prone to an open-redirection vulnerability because it...

付费阅读100 漏洞库 # CVE-2018 # Tomcat # CVE-2018-11784

云记2018年10月31日 06:14

[GXYCTF2019]BabySQli

进入题目一个登录框对登录框做了一些常规的sql注入和fuzz发现都无果。然后在等级登录后跳转的search.php页面查看源代码发现一段编码。 MMZFM422K5HDASKDN5TVU3SKOZRFGQRRMMZFM6KJJBSG6WSYJJWES...

白帽黑客 # buu # sql注入 # sql

沐寒2022年4月21日 21:53

030

CVE-2020-26876: WordPress WP Courses Plugin Information Disclosure

漏洞标题 CVE-2020-26876: WordPress WP Courses Plugin Information Disclosure 漏洞描述 WordPress WP Courses Plugin < 2.0.29 contains a critical information disclosure which expose...

付费阅读100 漏洞库 # CVE-2020 # WordPress # CVE-2020-26876

云记2020年6月21日 12:13

CVE-2010-2037: Joomla! Component Percha Downloads Attach 1.1 – Directory Traversal

漏洞标题 CVE-2010-2037: Joomla! Component Percha Downloads Attach 1.1 - Directory Traversal 漏洞描述 A directory traversal vulnerability in the Percha Downloads Attach (com_perchad...

付费阅读100 漏洞库 # CVE-2010 # Joomla!# CVE-2010-2037

云记2010年10月3日 17:46

CVE-2008-6668: nweb2fax <=0.2.7 - Local File Inclusion

漏洞标题 CVE-2008-6668: nweb2fax <=0.2.7 - Local File Inclusion 漏洞描述 nweb2fax 0.2.7 and earlier allow remote attackers to read arbitrary files via the id parameter submitted...

付费阅读100 漏洞库 # lfi # CVE-2008 # CVE-2008-6668

云记2008年2月17日 19:35

CVE-2010-2680: Joomla! Component jesectionfinder – Local File Inclusion

漏洞标题 CVE-2010-2680: Joomla! Component jesectionfinder - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the JExtensions JE Section/Property Finder (jesecti...

付费阅读100 漏洞库 # lfi # CVE-2010 # Joomla

云记2010年7月14日 07:57