漏洞标题 CVE-2025-34085: WordPress Simple File List <=4.2.2 - Remote Code Execution 漏洞描述 An unrestricted file upload vulnerability in the WordPress Simple File List plugin b...

漏洞标题 CVE-2020-24579: D-Link DSL 2888a - Authentication Bypass/Remote Command Execution 漏洞描述 D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55 are vulnerab...

漏洞标题 CVE-2021-41432: FlatPress 1.2.1 - Stored Cross-Site Scripting 漏洞描述 FlatPress 1.2.1 contains a stored cross-site scripting vulnerability that allows for arbitrary execu...

漏洞标题 CVE-2021-24991: WooCommerce PDF Invoices & Packing Slips WordPress Plugin < 2.10.5 - Cross-Site Scripting 漏洞描述 The Wordpress plugin WooCommerce PDF Invoices &am...

漏洞标题 CVE-2019-7255: Linear eMerge E3 - Cross-Site Scripting 漏洞描述 Linear eMerge E3-Series devices are vulnerable to cross-site scripting via the 'layout' parameter...

漏洞标题 CVE-2024-22024: Ivanti Connect Secure - XXE 漏洞描述 Ivanti Connect Secure is vulnerable to XXE (XML External Entity) injection. PoC代码

漏洞标题 CVE-2010-1494: Joomla! Component AWDwall 1.5.4 - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the AWDwall (com_awdwall) component 1.5.4 for Joomla!...

漏洞标题 CVE-2025-10211: ChanCMS <= 3.3.0 - Server-Side Request Forgery 漏洞描述 yanyutao0402 ChanCMS 3.3.0 contains a server-side request forgery caused by manipulation of the ...

漏洞标题 CVE-2023-26067: Lexmark Printers - Command Injection 漏洞描述 Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4). PoC代码

漏洞标题 CVE-2025-1974-k8s: Ingress-Nginx Controller - Unauthenticated Remote Code Execution 漏洞描述 A security issue was discovered in ingress-nginx where the `auth-tls-match-cn`...

漏洞标题 CVE-2020-5405: Spring Cloud Config - Local File Inclusion 漏洞描述 Spring Cloud Config versions 2.2.x prior to 2.2.2, 2.1.x prior to 2.1.7, and older unsupported versions ...

漏洞标题 CVE-2020-16139: Cisco Unified IP Conference Station 7937G - Denial-of-Service 漏洞描述 Cisco Unified IP Conference Station 7937G 1-4-4-0 through 1-4-5-7 allows attackers t...

漏洞标题 CVE-2023-6379: OpenCMS 14 & 15 - Cross Site Scripting 漏洞描述 Cross-site scripting (XSS) vulnerability in Alkacon Software Open CMS, affecting versions 14 and 15 of t...

漏洞标题 CVE-2019-3799: Spring Cloud Config Server - Local File Inclusion 漏洞描述 Spring Cloud Config Server versions 2.1.x prior to 2.1.2, 2.0.x prior to 2.0.4, 1.4.x prior to 1....

漏洞标题 CVE-2022-0666: Microweber < 1.2.11 - CRLF Injection 漏洞描述 CRLF Injection leads to Stack Trace Exposure due to lack of filtering at https://demo.microweber.org/ in Pa...

漏洞标题 CVE-2013-2251: Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution (S2-016) 漏洞描述 In Struts 2 before 2.3.15.1 the information following "action:&quo...