排序
CVE-2020-24148: Import XML & RSS Feeds WordPress Plugin <= 2.0.1 Server-Side Request Forgery
漏洞标题 CVE-2020-24148: Import XML & RSS Feeds WordPress Plugin <= 2.0.1 Server-Side Request Forgery 漏洞描述 WordPress plugin Import XML and RSS Feeds (import-xml-feed) pl...
2020年5月28日 18:05CVE-2020-23972: Joomla! Component GMapFP 3.5 – Arbitrary File Upload
漏洞标题 CVE-2020-23972: Joomla! Component GMapFP 3.5 - Arbitrary File Upload 漏洞描述 Joomla! Component GMapFP 3.5 is vulnerable to arbitrary file upload vulnerabilities. An attac...
2020年5月27日 06:05CVE-2020-7247: OpenSMTPD 6.4.0-6.6.1 – Remote Code Execution
漏洞标题 CVE-2020-7247: OpenSMTPD 6.4.0-6.6.1 - Remote Code Execution 漏洞描述 OpenSMTPD versions 6.4.0 - 6.6.1 are susceptible to remote code execution. smtp_mailaddr in smtp_sess...
2020年5月27日 01:23CVE-2020-29453: Jira Server Pre-Auth – Arbitrary File Retrieval (WEB-INF, META-INF)
漏洞标题 CVE-2020-29453: Jira Server Pre-Auth - Arbitrary File Retrieval (WEB-INF, META-INF) 漏洞描述 The CachingResourceDownloadRewriteRule class in Jira Server and Jira Data Cent...
2020年5月26日 22:38CVE-2020-27982: IceWarp WebMail 11.4.5.0 – Cross-Site Scripting
漏洞标题 CVE-2020-27982: IceWarp WebMail 11.4.5.0 - Cross-Site Scripting 漏洞描述 IceWarp WebMail 11.4.5.0 is vulnerable to cross-site scripting via the language parameter. PoC代码
2020年5月26日 15:21CVE-2020-16139: Cisco Unified IP Conference Station 7937G – Denial-of-Service
漏洞标题 CVE-2020-16139: Cisco Unified IP Conference Station 7937G - Denial-of-Service 漏洞描述 Cisco Unified IP Conference Station 7937G 1-4-4-0 through 1-4-5-7 allows attackers t...
2020年5月26日 10:20CVE-2020-2096: Jenkins Gitlab Hook <=1.4.2 - Cross-Site Scripting
漏洞标题 CVE-2020-2096: Jenkins Gitlab Hook <=1.4.2 - Cross-Site Scripting 漏洞描述 Jenkins Gitlab Hook 1.4.2 and earlier does not escape project names in the build_now endpoint...
2020年5月24日 23:43CVE-2020-36836: WordPress WP Fastest Cache <= 0.9.0.2 - Authenticated Arbitrary File Deletion
漏洞标题 CVE-2020-36836: WordPress WP Fastest Cache <= 0.9.0.2 - Authenticated Arbitrary File Deletion 漏洞描述 The WP Fastest Cache plugin for WordPress is vulnerable to unauth...
2020年5月24日 22:53CVE-2020-36836: WordPress WP Fastest Cache <= 0.9.0.2 - Authenticated Arbitrary File Deletion
漏洞标题 CVE-2020-36836: WordPress WP Fastest Cache <= 0.9.0.2 - Authenticated Arbitrary File Deletion 漏洞描述 The WP Fastest Cache plugin for WordPress is vulnerable to unauth...
2020年5月24日 04:57CVE-2020-9402: Django SQL Injection
漏洞标题 CVE-2020-9402: Django SQL Injection 漏洞描述 Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allow SQL injection if untrusted data is used as a toleran...
2020年5月24日 04:11CVE-2020-36510: WordPress 15Zine <3.3.0 - Cross-Site Scripting
漏洞标题 CVE-2020-36510: WordPress 15Zine <3.3.0 - Cross-Site Scripting 漏洞描述 WordPress 15Zine before 3.3.0 is vulnerable to reflected cross-site scripting because the theme ...
2020年5月24日 03:40CVE-2020-5307: PHPGurukul Dairy Farm Shop Management System 1.0 – SQL Injection
漏洞标题 CVE-2020-5307: PHPGurukul Dairy Farm Shop Management System 1.0 - SQL Injection 漏洞描述 PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to SQL injection, a...
2020年5月24日 00:35Apache Airflow CVE-2020-11978远程代码执行漏洞
漏洞标题 Apache Airflow CVE-2020-11978远程代码执行漏洞 漏洞描述 Apache Airflow存在远程代码执行漏洞,此漏洞是缺乏验证导致的。 PoC代码 暂无
2020年5月23日 20:17CVE-2020-10199: Nexus Repository before 3.21.2 allows JavaEL Injection
漏洞标题 CVE-2020-10199: Nexus Repository before 3.21.2 allows JavaEL Injection 漏洞描述 漏洞触发需要任意账户权限 body="Nexus Repository Manager" app="Nexus-Reposito...
2020年5月23日 16:24CVE-2020-14181: Jira Server and Data Center – Information Disclosure
漏洞标题 CVE-2020-14181: Jira Server and Data Center - Information Disclosure 漏洞描述 Jira Server and Data Center is susceptible to information disclosure. An attacker can enumera...
2020年5月22日 18:09CVE-2020-29395: WordPress EventON Calendar 3.0.5 – Cross-Site Scripting
漏洞标题 CVE-2020-29395: Wordpress EventON Calendar 3.0.5 - Cross-Site Scripting 漏洞描述 Wordpress EventON Calendar 3.0.5 is vulnerable to cross-site scripting because it allows a...
2020年5月22日 12:53
