漏洞标题 CVE-2020-9315: Oracle iPlanet Web Server 7.0.x - Authentication Bypass 漏洞描述 Oracle iPlanet Web Server 7.0.x has incorrect access control for admingui/version URIs in t...

漏洞标题 CVE-2021-20091: Buffalo WSR-2533DHPL2 - Configuration File Injection 漏洞描述 The web interfaces of Buffalo WSR-2533DHPL2 firmware version <= 1.02 and WSR-2533DHP3 firm...

漏洞标题 Adobe ColdFusion /filemanager/iedit.cfc 未授权访问漏洞 （CVE-2023-26360） 漏洞描述 Adobe ColdFusion是一种用于构建动态Web应用程序的服务器端编程语言和开发平台。ColdFusion的...

漏洞标题 CVE-2021-39312: WordPress True Ranker <2.2.4 - Local File Inclusion 漏洞描述 WordPress True Ranker before version 2.2.4 allows sensitive configuration files such as wp-...

漏洞标题 CVE-2022-32772: WWBN AVideo 11.6 - Cross-Site Scripting 漏洞描述 WWBN AVideo 11.6 contains a cross-site scripting vulnerability in the footer alerts functionality via the ...

漏洞标题 CVE-2020-13379: Grafana 3.0.1-7.0.1 - Server-Side Request Forgery 漏洞描述 Grafana 3.0.1 through 7.0.1 is susceptible to server-side request forgery via the avatar feature...

漏洞标题 CVE-2024-5084: Hash Form <= 1.1.0 - Arbitrary File Upload 漏洞描述 The Hash Form Drag & Drop Form Builder plugin for WordPress is vulnerable to arbitrary file uploa...

漏洞标题 CVE-2017-12611: Apache Struts2 S2-053 - Remote Code Execution 漏洞描述 Apache Struts 2.0.0 through 2.3.33 and 2.5 through 2.5.10.1 uses an unintentional expression in a Fr...

漏洞标题 CVE-2022-0679: WordPress Narnoo Distributor <=2.5.1 - Local File Inclusion 漏洞描述 WordPress Narnoo Distributor plugin 2.5.1 and prior is susceptible to local file inc...

漏洞标题 CVE-2023-51409: Jordy Meow AI Engine - Unrestricted File Upload 漏洞描述 Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine- ChatGPT Cha...

漏洞标题 Adobe ColdFusion //CFIDE/wizards/common/utils.cfc 权限绕过漏洞 （CVE-2023-29298） 漏洞描述 Adobe ColdFusion 是一种广泛用于企业级 Web 应用开发的工具，支持专有标记语言以构建...

漏洞标题 CVE-2011-5265: Featurific For WordPress 1.6.2 - Cross-Site Scripting 漏洞描述 A cross-site scripting vulnerability in cached_image.php in the Featurific For WordPress plug...

漏洞标题 CVE-2022-37190: Cuppa CMS v1.0 - Remote Code Execution 漏洞描述 CuppaCMS 1.0 is vulnerable to Remote Code Execution (RCE). An authenticated user can control both parameter...

漏洞标题 CVE-2022-1768: WordPress RSVPMaker <=9.3.2 - SQL Injection 漏洞描述 WordPress RSVPMaker plugin through 9.3.2 contains a SQL injection vulnerability due to insufficient ...

漏洞标题 Cacti 存在命令注入漏洞 (CVE-2022-46169) 漏洞描述 Cacti是Cacti团队的一套开源的网络流量监测和分析工具。该工具通过snmpget来获取数据，使用RRDtool绘画图形进行分析，并提供数据和...

漏洞标题 CVE-2025-55749: XWiki - Information Disclosure 漏洞描述 XWiki 16.7.0 to 16.10.11, 17.4.4, and 17.7.0 using XJetty contains an information disclosure vulnerability caused b...