排序
CVE-2020-13700: WordPress acf-to-rest-api <=3.1.0 - Insecure Direct Object Reference
漏洞标题 CVE-2020-13700: WordPress acf-to-rest-api <=3.1.0 - Insecure Direct Object Reference 漏洞描述 WordPress acf-to-rest-ap through 3.1.0 allows an insecure direct object re...
2020年6月10日 20:07CVE-2020-15148: Yii 2 < 2.0.38 - Remote Code Execution
漏洞标题 CVE-2020-15148: Yii 2 < 2.0.38 - Remote Code Execution 漏洞描述 Yii 2 (yiisoft/yii2) before version 2.0.38 is vulnerable to remote code execution if the application cal...
2020年6月10日 17:33Apache Struts2(S2-061)远程代码执行漏洞(CVE-2020-17530)
漏洞标题 Apache Struts2(S2-061)远程代码执行漏洞(CVE-2020-17530) 漏洞描述 Apache Struts2框架是一个用于开发Java EE网络应用程序的Web框架。Struts2 会对某些标签属性(比如 id,其他属性有...
2020年6月10日 16:48CVE-2020-27615: WordPress Loginizer < 1.6.4 – Unauthenticated SQL Injection via `log` Parameter
漏洞标题 CVE-2020-27615: WordPress Loginizer < 1.6.4 – Unauthenticated SQL Injection via `log` Parameter 漏洞描述 The Loginizer plugin before 1.6.4 for WordPress allows SQL inj...
2020年6月10日 08:51CVE-2020-10148: SolarWinds Orion API – Auth Bypass
漏洞标题 CVE-2020-10148: SolarWinds Orion API - Auth Bypass 漏洞描述 SolarWinds Orion API is vulnerable to an authentication bypass vulnerability that could allow a remote attacker...
2020年6月10日 05:29CVE-2020-9344: Jira Subversion ALM for Enterprise <8.8.2 - Cross-Site Scripting
漏洞标题 CVE-2020-9344: Jira Subversion ALM for Enterprise <8.8.2 - Cross-Site Scripting 漏洞描述 Jira Subversion ALM for Enterprise before 8.8.2 contains a cross-site scripting...
2020年6月9日 10:22CVE-2020-25213: WordPress File Manager Plugin – Remote Code Execution
漏洞标题 CVE-2020-25213: WordPress File Manager Plugin - Remote Code Execution 漏洞描述 The WordPress File Manager plugin prior to version 6.9 is susceptible to remote code executi...
2020年6月9日 04:19CVE-2020-5307: PHPGurukul Dairy Farm Shop Management System 1.0 – SQL Injection
漏洞标题 CVE-2020-5307: PHPGurukul Dairy Farm Shop Management System 1.0 - SQL Injection 漏洞描述 PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to SQL injection, a...
2020年6月8日 16:58CVE-2020-35476: OpenTSDB 2.4.0 Remote Code Execution
漏洞标题 CVE-2020-35476: OpenTSDB 2.4.0 Remote Code Execution 漏洞描述 A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange pa...
2020年6月8日 16:41CVE-2020-14750: Oracle WebLogic Server – Remote Command Execution
漏洞标题 CVE-2020-14750: Oracle WebLogic Server - Remote Command Execution 漏洞描述 Oracle WebLogic Server 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0 is suscepti...
2020年6月8日 14:32CVE-2020-14882: Oracle Weblogic Server – Remote Command Execution
漏洞标题 CVE-2020-14882: Oracle Weblogic Server - Remote Command Execution 漏洞描述 Oracle WebLogic Server contains an easily exploitable remote command execution vulnerability whi...
2020年6月7日 23:39CVE-2020-20300: WeiPHP 5.0 – SQL Injection
漏洞标题 CVE-2020-20300: WeiPHP 5.0 - SQL Injection 漏洞描述 WeiPHP 5.0 contains a SQL injection vulnerability via the wp_where function. An attacker can possibly obtain sensitive ...
2020年6月6日 20:11CVE-2020-14750: Oracle WebLogic Server – Remote Command Execution
漏洞标题 CVE-2020-14750: Oracle WebLogic Server - Remote Command Execution 漏洞描述 Oracle WebLogic Server 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0 is suscepti...
2020年6月6日 20:11CVE-2020-9274: Pure-FTPd ≤ 1.0.49 – DoS via Uninitialized Pointer
漏洞标题 CVE-2020-9274: Pure-FTPd ≤ 1.0.49 - DoS via Uninitialized Pointer 漏洞描述 Pure-FTPd versions ≤ 1.0.49 (>= ~0.96) contain a vulnerability in the init_aliases() functi...
2020年6月6日 19:27CVE-2020-28208: Rocket.Chat <3.9.1 - Information Disclosure
漏洞标题 CVE-2020-28208: Rocket.Chat <3.9.1 - Information Disclosure 漏洞描述 Rocket.Chat through 3.9.1 is susceptible to information disclosure. An attacker can enumerate email...
2020年6月6日 11:09CVE-2020-36510: WordPress 15Zine <3.3.0 - Cross-Site Scripting
漏洞标题 CVE-2020-36510: WordPress 15Zine <3.3.0 - Cross-Site Scripting 漏洞描述 WordPress 15Zine before 3.3.0 is vulnerable to reflected cross-site scripting because the theme ...
2020年6月4日 22:22
