漏洞标题 CVE-2019-10758: mongo-express Remote Code Execution 漏洞描述 mongo-express before 0.54.0 is vulnerable to remote code execution via endpoints that uses the `toBSON` method...

漏洞标题 CVE-2021-24849: WCFM WooCommerce Multivendor Marketplace < 3.4.12 - SQL Injection 漏洞描述 The wcfm_ajax_controller AJAX action of the WCFM Marketplace WordPress plugin...

漏洞标题 CVE-2022-0785: WordPress Daily Prayer Time <2022.03.01 - SQL Injection 漏洞描述 WordPress Daily Prayer Time plugin prior to 2022.03.01 contains a SQL injection vulnerab...

漏洞标题 CVE-2019-16931: WordPress Visualizer <3.3.1 - Cross-Site Scripting 漏洞描述 WordPress Visualizer plugin before 3.3.1 contains a stored cross-site scripting vulnerabilit...

漏洞标题 CVE-2022-2863: WordPress WPvivid Backup <0.9.76 - Local File Inclusion 漏洞描述 WordPress WPvivid Backup version 0.9.76 is vulnerable to local file inclusion because th...

漏洞标题 CVE-2023-27482: Home Assistant Supervisor - Authentication Bypass 漏洞描述 Home Assistant Supervisor is an open source home automation tool. A remotely exploitable vulnera...

漏洞标题 CVE-2021-34643: WordPress Skaut Bazar <1.3.3 - Cross-Site Scripting 漏洞描述 WordPress Skaut Bazar plugin before 1.3.3 contains a reflected cross-site scripting vulnera...

漏洞标题 CVE-2022-45835: WordPress PhonePe Payment Solutions <=1.0.15 - Server-Side Request Forgery 漏洞描述 WordPress PhonePe Payment Solutions plugin through 1.0.15 is suscept...

漏洞标题 CVE-2018-18264: Kubernetes Dashboard <1.10.1 - Authentication Bypass 漏洞描述 Kubernetes Dashboard before 1.10.1 allows attackers to bypass authentication and use Dashb...

漏洞标题 CVE-2011-4336: Tiki Wiki CMS Groupware 7.0 Cross-Site Scripting 漏洞描述 Tiki Wiki CMS Groupware 7.0 is vulnerable to cross-site scripting via the GET "ajax" par...

漏洞标题 CVE-2024-36675: LyLme spage v1.9.5 - Server-Side Request Forgery 漏洞描述 LyLme spage v1.9.5 is vulnerable to server-side request forgery (SSRF) via the url parameter in a...

漏洞标题 CVE-2010-2034: Joomla! Component Percha Image Attach 1.1 - Directory Traversal 漏洞描述 A directory traversal vulnerability in the Percha Image Attach (com_perchaimageatta...

漏洞标题 CVE-2022-0679: WordPress Narnoo Distributor <=2.5.1 - Local File Inclusion 漏洞描述 WordPress Narnoo Distributor plugin 2.5.1 and prior is susceptible to local file inc...

漏洞标题 CVE-2024-1208: LearnDash LMS < 4.10.3 - Sensitive Information Exposure 漏洞描述 The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure i...

漏洞标题 CVE-2024-55218: IceWarp Server 10.2.1 - Cross-Site Scripting 漏洞描述 IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting (XSS) via the meta parameter. PoC代码

漏洞标题 CVE-2017-7921: Hikvision - Authentication Bypass 漏洞描述 Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 160530, DS-2CD2xx0F-I Series V5.2.0 build 1407...