排序
CVE-2020-8209: Citrix XenMobile Server – Local File Inclusion
漏洞标题 CVE-2020-8209: Citrix XenMobile Server - Local File Inclusion 漏洞描述 Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile...
2020年12月5日 18:55CVE-2020-29583: ZyXel USG – Hardcoded Credentials
漏洞标题 CVE-2020-29583: ZyXel USG - Hardcoded Credentials 漏洞描述 A hardcoded credential vulnerability was identified in the 'zyfwp' user account in some Zyxel firewall...
2020年12月5日 13:14CVE-2020-24223: Mara CMS 7.5 – Cross-Site Scripting
漏洞标题 CVE-2020-24223: Mara CMS 7.5 - Cross-Site Scripting 漏洞描述 Mara CMS 7.5 allows reflected cross-site scripting in contact.php via the theme or pagetheme parameters. PoC代...
2020年12月5日 12:57CVE-2020-9425: rConfig <3.9.4 - Sensitive Information Disclosure
漏洞标题 CVE-2020-9425: rConfig <3.9.4 - Sensitive Information Disclosure 漏洞描述 rConfig prior to version 3.9.4 is susceptible to sensitive information disclosure. An unauthen...
2020年12月5日 06:22CVE-2020-22209: 74cms – ajax_common.php SQL Injection
漏洞标题 CVE-2020-22209: 74cms - ajax_common.php SQL Injection 漏洞描述 SQL Injection in 74cms 3.2.0 via the query parameter to plus/ajax_common.php. PoC代码
2020年12月5日 00:53CVE-2020-11738: WordPress Duplicator 1.3.24 & 1.3.26 – Local File Inclusion
漏洞标题 CVE-2020-11738: WordPress Duplicator 1.3.24 & 1.3.26 - Local File Inclusion 漏洞描述 WordPress Duplicator 1.3.24 & 1.3.26 are vulnerable to local file inclusion vu...
2020年12月4日 17:46CVE-2020-9274: Pure-FTPd ≤ 1.0.49 – DoS via Uninitialized Pointer
漏洞标题 CVE-2020-9274: Pure-FTPd ≤ 1.0.49 - DoS via Uninitialized Pointer 漏洞描述 Pure-FTPd versions ≤ 1.0.49 (>= ~0.96) contain a vulnerability in the init_aliases() functi...
2020年12月3日 10:26CVE-2020-1943: Apache OFBiz <=16.11.07 - Cross-Site Scripting
漏洞标题 CVE-2020-1943: Apache OFBiz <=16.11.07 - Cross-Site Scripting 漏洞描述 Apache OFBiz 16.11.01 to 16.11.07 is vulnerable to cross-site scripting because data sent with co...
2020年12月2日 13:24CVE-2020-36708: WordPress Epsilon Framework Themes <=2.4.8 - Remote Code Execution
漏洞标题 CVE-2020-36708: WordPress Epsilon Framework Themes <=2.4.8 - Remote Code Execution 漏洞描述 WordPress themes including Shapely <= 1.2.7, NewsMag <= 2.4.1, Activel...
2020年12月2日 07:23CVE-2020-5405: Spring Cloud Config – Local File Inclusion
漏洞标题 CVE-2020-5405: Spring Cloud Config - Local File Inclusion 漏洞描述 Spring Cloud Config versions 2.2.x prior to 2.2.2, 2.1.x prior to 2.1.7, and older unsupported versions ...
2020年12月2日 05:47CVE-2020-14092: WordPress PayPal Pro <1.1.65 - SQL Injection
漏洞标题 CVE-2020-14092: WordPress PayPal Pro <1.1.65 - SQL Injection 漏洞描述 WordPress PayPal Pro plugin before 1.1.65 is susceptible to SQL injection via the 'query'...
2020年12月1日 20:16CVE-2020-27866: NETGEAR – Authentication Bypass
漏洞标题 CVE-2020-27866: NETGEAR - Authentication Bypass 漏洞描述 NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and...
2020年12月1日 19:15CVE-2020-8209: Citrix XenMobile Server – Local File Inclusion
漏洞标题 CVE-2020-8209: Citrix XenMobile Server - Local File Inclusion 漏洞描述 Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile...
2020年12月1日 10:35CVE-2020-7107: WordPress Ultimate FAQ <1.8.30 - Cross-Site Scripting
漏洞标题 CVE-2020-7107: WordPress Ultimate FAQ <1.8.30 - Cross-Site Scripting 漏洞描述 WordPress Ultimate FAQ plugin before 1.8.30 is susceptible to cross-site scripting via Dis...
2020年12月1日 00:10CVE-2020-24186: WordPress wpDiscuz <=7.0.4 - Remote Code Execution
漏洞标题 CVE-2020-24186: WordPress wpDiscuz <=7.0.4 - Remote Code Execution 漏洞描述 WordPress wpDiscuz plugin versions version 7.0 through 7.0.4 are susceptible to remote code ...
2020年11月30日 20:50CVE-2020-28653: ManageEngine OpManager SumPDU 12.1 – 12.5.232 – Java Deserialization
漏洞标题 CVE-2020-28653: ManageEngine OpManager SumPDU 12.1 - 12.5.232 - Java Deserialization 漏洞描述 Zoho ManageEngine OpManager Stable build before 125203 (and Released build be...
2020年11月30日 19:49
