排序
CVE-2021-25120: Easy Social Feed < 6.2.7 - Cross-Site Scripting
漏洞标题 CVE-2021-25120: Easy Social Feed < 6.2.7 - Cross-Site Scripting 漏洞描述 Easy Social Feed < 6.2.7 is susceptible to reflected cross-site scripting because the plugin...
2021年9月8日 12:57CVE-2021-24997: WordPress Guppy <=1.1 - Information Disclosure
漏洞标题 CVE-2021-24997: WordPress Guppy <=1.1 - Information Disclosure 漏洞描述 WordPress Guppy plugin through 1.1 is susceptible to an API disclosure vulnerability. This can a...
2021年9月8日 08:57CVE-2021-3019: ffay lanproxy Directory Traversal
漏洞标题 CVE-2021-3019: ffay lanproxy Directory Traversal 漏洞描述 ffay lanproxy 0.1 is susceptible to a directory traversal vulnerability that could let attackers read /../conf/co...
2021年9月7日 20:30CVE-2021-32172: Maian Cart <=3.8 - Remote Code Execution
漏洞标题 CVE-2021-32172: Maian Cart <=3.8 - Remote Code Execution 漏洞描述 Maian Cart 3.0 to 3.8 via the elFinder file manager plugin contains a remote code execution vulnerabil...
2021年9月7日 14:31CVE-2021-24285: WordPress Car Seller – Auto Classifieds Script – SQL Injection
漏洞标题 CVE-2021-24285: WordPress Car Seller - Auto Classifieds Script - SQL Injection 漏洞描述 The request_list_request AJAX call of the Car Seller - Auto Classifieds Script Word...
2021年9月7日 11:57CVE-2021-44138: Caucho Resin >=4.0.52 <=4.0.56 - Directory traversal
漏洞标题 CVE-2021-44138: Caucho Resin >=4.0.52 <=4.0.56 - Directory traversal 漏洞描述 There is a Directory traversal vulnerability in Caucho Resin, as distributed in Resin 4...
2021年9月7日 10:27CVE-2021-30461: VoipMonitor <24.61 - Remote Code Execution
漏洞标题 CVE-2021-30461: VoipMonitor <24.61 - Remote Code Execution 漏洞描述 VoipMonitor prior to 24.61 is susceptible to remote code execution vulnerabilities because of its us...
2021年9月7日 10:16CVE-2021-37589: Virtua Software Cobranca <12R - Blind SQL Injection
漏洞标题 CVE-2021-37589: Virtua Software Cobranca <12R - Blind SQL Injection 漏洞描述 Virtua Cobranca before 12R allows blind SQL injection on the login page. PoC代码
2021年9月7日 03:25CVE-2021-24245: WordPress Stop Spammers <2021.9 - Cross-Site Scripting
漏洞标题 CVE-2021-24245: WordPress Stop Spammers <2021.9 - Cross-Site Scripting 漏洞描述 WordPress Stop Spammers plugin before 2021.9 contains a reflected cross-site scripting v...
2021年9月7日 02:36CVE-2021-44228: Apache Log4j2 Remote Code Injection
漏洞标题 CVE-2021-44228: Apache Log4j2 Remote Code Injection 漏洞描述 Apache Log4j2 <=2.14.1 JNDI features used in configuration, log messages, and parameters do not protect aga...
2021年9月6日 23:18CVE-2021-44521: Apache Cassandra Load UDF RCE
漏洞标题 CVE-2021-44521: Apache Cassandra Load UDF RCE 漏洞描述 When running Apache Cassandra with the following configuration: enable_user_defined_functions: true enable_scripted_...
2021年9月6日 19:29CVE-2021-34643: WordPress Skaut Bazar <1.3.3 - Cross-Site Scripting
漏洞标题 CVE-2021-34643: WordPress Skaut Bazar <1.3.3 - Cross-Site Scripting 漏洞描述 WordPress Skaut Bazar plugin before 1.3.3 contains a reflected cross-site scripting vulnera...
2021年9月6日 16:56CVE-2021-35064: Kramer VIAware – Privilege Escalation and Remote Code Execution
漏洞标题 CVE-2021-35064: Kramer VIAware - Privilege Escalation and Remote Code Execution 漏洞描述 Kramer VIAware, all tested versions, allow privilege escalation and remote code ex...
2021年9月6日 10:09CVE-2021-32618: Python Flask-Security – Open Redirect
漏洞标题 CVE-2021-32618: Python Flask-Security - Open Redirect 漏洞描述 Python Flask-Security contains an open redirect vulnerability. Existing code validates that the URL specifie...
2021年9月6日 06:23CVE-2021-40822: Geoserver – Server-Side Request Forgery
漏洞标题 CVE-2021-40822: Geoserver - Server-Side Request Forgery 漏洞描述 GeoServer through 2.18.5 and 2.19.x through 2.19.2 allows server-side request forgery via the option for s...
2021年9月6日 04:19CVE-2021-39327: WordPress BulletProof Security 5.1 Information Disclosure
漏洞标题 CVE-2021-39327: WordPress BulletProof Security 5.1 Information Disclosure 漏洞描述 The BulletProof Security WordPress plugin is vulnerable to sensitive information disclos...
2021年9月5日 21:50
