最新发布第965页
CVE-2023-5360: WordPress Royal Elementor Addons Plugin <= 1.3.78 - Arbitrary File Upload
漏洞标题 CVE-2023-5360: WordPress Royal Elementor Addons Plugin <= 1.3.78 - Arbitrary File Upload 漏洞描述 Arbitrary File Upload vulnerability in WordPress Royal Elementor Addon...
CVE-2022-29349: kkFileView 4.0.0 – Cross-Site Scripting
漏洞标题 CVE-2022-29349: kkFileView 4.0.0 - Cross-Site Scripting 漏洞描述 kkFileView 4.0.0 contains multiple cross-site scripting vulnerabilities via the urls and currentUrl parame...
CVE-2022-3982: WordPress Booking Calendar <3.2.2 - Arbitrary File Upload
漏洞标题 CVE-2022-3982: WordPress Booking Calendar <3.2.2 - Arbitrary File Upload 漏洞描述 WordPress Booking Calendar plugin before 3.2.2 is susceptible to arbitrary file upload...
CVE-2023-0099: Simple URLs < 115 - Cross Site Scripting
漏洞标题 CVE-2023-0099: Simple URLs < 115 - Cross Site Scripting 漏洞描述 The plugin does not sanitise and escape some parameters before outputting them back in some pages, lead...
Cellinx NVT 摄像机 GetFileContent.cgi 任意文件读取漏洞 (CVE-2023-23063)
漏洞标题 Cellinx NVT 摄像机 GetFileContent.cgi 任意文件读取漏洞 (CVE-2023-23063) 漏洞描述 Cellinx NVT IP PTZ是韩国Cellinx公司的一个摄像机设备。Cellinx NVTv1.0.6.002b版本存在安全漏...
CVE-2020-13820: Extreme Management Center 8.4.1.24 – Cross-Site Scripting
漏洞标题 CVE-2020-13820: Extreme Management Center 8.4.1.24 - Cross-Site Scripting 漏洞描述 Extreme Management Center 8.4.1.24 contains a cross-site scripting vulnerability via a p...
CVE-2025-61757: Oracle Identity Manager REST WebServices – Authentication Bypass
漏洞标题 CVE-2025-61757: Oracle Identity Manager REST WebServices - Authentication Bypass 漏洞描述 Vulnerability in the Identity Manager product of Oracle Fusion Middleware (compon...
CVE-2018-10093: AudioCodes 420HD – Remote Code Execution
漏洞标题 CVE-2018-10093: AudioCodes 420HD - Remote Code Execution 漏洞描述 AudioCodes IP phone 420HD devices using firmware version 2.2.12.126 allow remote code execution. PoC代码
CVE-2020-2096: Jenkins Gitlab Hook <=1.4.2 - Cross-Site Scripting
漏洞标题 CVE-2020-2096: Jenkins Gitlab Hook <=1.4.2 - Cross-Site Scripting 漏洞描述 Jenkins Gitlab Hook 1.4.2 and earlier does not escape project names in the build_now endpoint...
CVE-2023-2745: WordPress Core <=6.2 - Directory Traversal
漏洞标题 CVE-2023-2745: WordPress Core <=6.2 - Directory Traversal 漏洞描述 WordPress Core is vulnerable to Directory Traversal in versions up to, and including, 6.2, via the ‘...
CVE-2020-21998: HomeAutomation 3.3.2 – Open Redirect
漏洞标题 CVE-2020-21998: HomeAutomation 3.3.2 - Open Redirect 漏洞描述 HomeAutomation 3.3.2 contains a redirect vulnerability caused by improper verification of the 'redirect&...
CVE-2024-4620: ArForms < 6.6 - Remote Code Execution
漏洞标题 CVE-2024-4620: ArForms < 6.6 - Remote Code Execution 漏洞描述 The ARForms - Premium WordPress Form Builder Plugin WordPress plugin before 6.6 allows unauthenticated use...
CVE-2019-17564: Apache Dubbo 2.5.x-2.7.4 – Insecure Deserialization
漏洞标题 CVE-2019-17564: Apache Dubbo 2.5.x-2.7.4 - Insecure Deserialization 漏洞描述 Unsafe deserialization occurs within a Dubbo application which has HTTP remoting enabled. An a...
CVE-2019-3912: LabKey Server Community Edition <18.3.0 - Open Redirect
漏洞标题 CVE-2019-3912: LabKey Server Community Edition <18.3.0 - Open Redirect 漏洞描述 LabKey Server Community Edition before 18.3.0-61806.763 contains an open redirect vulner...
Apache APISIX Dashboard CVE-2021-45232 未授权访问漏洞
漏洞标题 Apache APISIX Dashboard CVE-2021-45232 未授权访问漏洞 漏洞描述 Apache APISIX Dashboard存在未授权访问漏洞,此漏洞是缺乏校验导致的。 PoC代码 暂无
CVE-2021-42567: Apereo CAS Cross-Site Scripting
漏洞标题 CVE-2021-42567: Apereo CAS Cross-Site Scripting 漏洞描述 Apereo CAS through 6.4.1 allows cross-site scripting via POST requests sent to the REST API endpoints. PoC代码





