漏洞标题 CVE-2018-6605: Joomla Ext zhbaidumap sql inject 漏洞描述 Joomla Ext zhbaidumap sql inject fofa: app="Joomla" shodan: http.html:"Joomla" PoC代码

漏洞标题 CVE-2019-6703: Total Donations Plugin for WordPress < 2.0.6 - Arbitrary Options Update 漏洞描述 Incorrect access control in migla_ajax_functions.php in the Calmar Webme...

漏洞标题 CVE-2022-35413: WAPPLES Web Application Firewall <=6.0 - Hardcoded Credentials 漏洞描述 WAPPLES Web Application Firewall through 6.0 contains a hardcoded credentials vu...

漏洞标题 CVE-2024-3469: GP Premium <= 2.4.0 - Cross-Site Scripting 漏洞描述 The GP Premium plugin for WordPress up to 2.4.0 is vulnerable to reflected XSS via the 'message&...

漏洞标题 CVE-2024-9466: Palo Alto Expedition - Infomation Disclosure 漏洞描述 Palo Alto Networks Expedition的/API/convertCSVtoParquet.php接口存在信息泄露漏洞，从而导致PAN-OS防火墙...

漏洞标题 CVE-2022-25149: WordPress Plugin WP Statistics <= 13.1.5 - SQL Injection 漏洞描述 The WP Statistics WordPress plugin is vulnerable to SQL Injection due to insufficient ...

这篇文章主要介绍了Nginx服务500：Internal Server Error原因之一，文中通过示例代码介绍的非常详细，对大家的学习或者工作具有一定的参考学习价值，需要的朋友们下面随着小编来一起学习学习吧 ...

漏洞标题 CVE-2022-40359: Kae's File Manager <=1.4.7 - Cross-Site Scripting 漏洞描述 Kae's File Manager through 1.4.7 contains a cross-site scripting vulnerability via ...

漏洞标题 CVE-2018-8719: WordPress WP Security Audit Log 3.1.1 - Information Disclosure 漏洞描述 WordPress WP Security Audit Log 3.1.1 plugin is susceptible to information disclosur...

漏洞标题 CVE-2020-35847: Agentejo Cockpit <0.11.2 - NoSQL Injection 漏洞描述 Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php resetpassword func...

漏洞标题 CVE-2019-10758: mongo-express Remote Code Execution 漏洞描述 mongo-express before 0.54.0 is vulnerable to remote code execution via endpoints that uses the `toBSON` method...

漏洞标题 CVE-2020-27615: WordPress Loginizer < 1.6.4 – Unauthenticated SQL Injection via `log` Parameter 漏洞描述 The Loginizer plugin before 1.6.4 for WordPress allows SQL inj...

漏洞标题 CVE-2014-3120: ElasticSearch v1.1.1/1.2 RCE 漏洞描述 The default configuration in Elasticsearch before 1.2 enables dynamic scripting, which allows remote attackers to exec...

漏洞标题 CVE-2021-41691: openSIS Student Information System 8.0 SQL Injection 漏洞描述 openSIS Student Information System version 8.0 is susceptible to SQL injection via the studen...

漏洞标题 CVE-2021-38647: Microsoft Open Management Infrastructure - Remote Code Execution 漏洞描述 Microsoft Open Management Infrastructure is susceptible to remote code execution ...

漏洞标题 CVE-2019-17444: Jfrog Artifactory <6.17.0 - Default Admin Password 漏洞描述 Jfrog Artifactory prior to 6.17.0 uses default passwords (such as "password") for ...