漏洞标题 CVE-2025-51482: Letta Letta 0.7.12 - Remote Code Execution 漏洞描述 Letta 0.7.12 is vulnerable to remote code execution via POST /v1/tools/run in letta.server.rest_api.rou...

漏洞标题 CVE-2022-4301: WordPress Sunshine Photo Cart <2.9.15 - Cross-Site Scripting 漏洞描述 WordPress Sunshine Photo Cart plugin before 2.9.15 contains a cross-site scripting ...

漏洞标题 CVE-2021-26085: Atlassian Confluence Server - Local File Inclusion 漏洞描述 Atlassian Confluence Server allows remote attackers to view restricted resources via local file...

漏洞标题 Apache APISIX 默认密钥漏洞（CVE-2020-13945） 漏洞描述 Apache APISIX是一个高性能API网关。在用户未指定管理员Token或使用了默认配置文件的情况下，ApacheAPISIX将使用默认的管理员...

漏洞标题 CVE-2023-34990: FortiWLM - Directory Traversal 漏洞描述 A relative path traversal in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker ...

漏洞标题 CVE-2024-42640: Angular-Base64-Upload - Remote Code Execution 漏洞描述 angular-base64-upload prior to v0.1.21 is vulnerable to unauthenticated remote code execution via de...

漏洞标题 CVE-2023-39650: PrestaShop Theme Volty CMS Blog - SQL Injection 漏洞描述 In the module 'Theme Volty CMS Blog' (tvcmsblog) up to versions 4.0.1 from Theme Volty f...

漏洞标题 CVE-2015-8399: Atlassian Confluence configuration files read 漏洞描述 Atlassian Confluence before 5.9.1 allows remote attackers to read arbitrary files via a crafted reque...

漏洞标题 CVE-2021-27748: IBM WebSphere HCL Digital Experience - Server-Side Request Forgery 漏洞描述 IBM WebSphere HCL Digital Experience is vulnerable to server-side request forge...

漏洞标题 Apache Solr <= 8.8.1 SSRF(CVE-2021-27905) 漏洞描述 Apache Solr中的ReplicationHandler（通常注册在Solrcore下的“/replication”）有一个“masterUrl”（也称为“leaderUrl”别...

漏洞标题 CVE-2018-13379: Fortinet FortiOS - Credentials Disclosure 漏洞描述 Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12 and FortiProxy 2.0.0, 1.2.0 to 1.2.8...

漏洞标题 CVE-2023-4973: Academy LMS 6.2 - Cross-Site Scripting 漏洞描述 A vulnerability was found in Academy LMS 6.2 on Windows. It has been declared as problematic. Affected by th...

漏洞标题 CVE-2023-5558: LearnPress < 4.2.5.5 - Cross-Site Scripting 漏洞描述 The LearnPress WordPress plugin before 4.2.5.5 does not sanitise and escape user input before output...

漏洞标题 CVE-2024-44849: Qualitor <= 8.24 - Remote Code Execution 漏洞描述 Qualitor up to 8.24 is vulnerable to Remote Code Execution (RCE) via Arbitrary File Upload in checkAce...

漏洞标题 CVE-2024-55457: MasterSAM Star Gate v11 - Local File Inclusion 漏洞描述 MasterSAM Star Gate v11 is vulnerable to a directory traversal attack via the endpoint /adama/adama...

漏洞标题 CVE-2022-34049: WAVLINK WN530HG4 - Improper Access Control 漏洞描述 Wavlink WN530HG4 M30HG4.V5030.191116 is susceptible to improper access control. An attacker can downloa...