漏洞标题 CVE-2015-4455: WordPress Plugin Aviary Image Editor Addon For Gravity Forms 3.0 Beta - Arbitrary File Upload 漏洞描述 Unrestricted file upload vulnerability in includes/up...

漏洞标题 CVE-2023-0037: WordPress 10Web Map Builder < 1.0.73 - Unauthenticated SQL Injection 漏洞描述 The 10Web Map Builder for Google Maps WordPress plugin before 1.0.73 does n...

漏洞标题 CVE-2025-27223: TRUfusion Enterprise <= 7.10.4.0 - Authentication Bypass 漏洞描述 Hard-Coded Cryptographic key allowing to forge session cookies that can be used to ent...

漏洞标题 CVE-2020-10189: ManageEngine Desktop Central Java Deserialization 漏洞描述 Zoho ManageEngine Desktop Central before 10.0.474 is vulnerable to a deserialization of untruste...

漏洞标题 CVE-2023-49103: OwnCloud - Phpinfo Configuration 漏洞描述 An issue was discovered in ownCloud owncloud/graphapi 0.2.x before 0.2.1 and 0.3.x before 0.3.1. The graphapi app...

漏洞标题 CVE-2021-38314: WordPress Redux Framework <=4.2.11 - Information Disclosure 漏洞描述 WordPress Redux Framework plugin through 4.2.11 is susceptible to information discl...

漏洞标题 CVE-2022-1946: WordPress Gallery <2.0.0 - Cross-Site Scripting 漏洞描述 WordPress Gallery plugin before 2.0.0 contains a reflected cross-site scripting vulnerability. I...

漏洞标题 CVE-2021-24155: WordPress BackupGuard <1.6.0 - Authenticated Arbitrary File Upload 漏洞描述 WordPress Backup Guard plugin before 1.6.0 is susceptible to authenticated a...

漏洞标题 CVE-2024-3753: Hostel < 1.1.5.3 - Cross-Site Scripting 漏洞描述 The Hostel WordPress plugin before 1.1.5.3 does not sanitise and escape a parameter before outputting it...

漏洞标题 CVE-2020-6637: OpenSIS 7.3 - SQL Injection 漏洞描述 OpenSIS Community Edition version 7.3 is vulnerable to SQL injection via the USERNAME parameter of index.php. PoC代码

漏洞标题 CVE-2025-47423: Personal Weather Station Dashboard 12 - Directory Traversal 漏洞描述 Personal Weather Station Dashboard 12_lts allows unauthenticated remote attackers to r...

漏洞标题 CVE-2024-55417: DevDojo Voyager <= 1.8.0 - Arbitrary File Write vulnerability 漏洞描述 DevDojo Voyager through version 1.8.0 is vulnerable to bypassing the file type ve...

漏洞标题 CVE-2021-3223: Node RED Dashboard - Directory Traversal 漏洞描述 Node-RED-Dashboard before 2.26.2 allows ui_base/js/..%2f directory traversal to read files. PoC代码

漏洞标题 CVE-2010-0972: Joomla! Component com_gcalendar Suite 2.1.5 - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the GCalendar (com_gcalendar) component 2...

从网上粘贴过来的，方便以后查看使用length Length + handler like LiKe select SeleCT sleep SLEEp database DATABASe delete having or oR as As -~ BENCHMARK limit LimIt left Left select ...

漏洞标题 CVE-2019-18665: DOMOS 5.5 - Local File Inclusion 漏洞描述 SECUDOS DOMOS before 5.6 allows local file inclusion via the log module. PoC代码