排序
CVE-2021-21972: VMware vSphere Client (HTML5) – Remote Code Execution
漏洞标题 CVE-2021-21972: VMware vSphere Client (HTML5) - Remote Code Execution 漏洞描述 VMware vCenter vSphere Client (HTML5) contains a remote code execution vulnerability in a vC...
2021年4月17日 02:50CVE-2021-30203: Dzzoffice 2.02.1 – Cross-Site Scripting
漏洞标题 CVE-2021-30203: Dzzoffice 2.02.1 - Cross-Site Scripting 漏洞描述 Dzzoffice 2.02.1_SC_UTF8 contains a cross-site scripting vulnerability which allows remote attackers to in...
2021年4月16日 16:38CVE-2021-3223: Node RED Dashboard – Directory Traversal
漏洞标题 CVE-2021-3223: Node RED Dashboard - Directory Traversal 漏洞描述 Node-RED-Dashboard before 2.26.2 allows ui_base/js/..%2f directory traversal to read files. PoC代码
2021年4月16日 14:19CVE-2021-24987: WordPress Super Socializer <7.13.30 - Cross-Site Scripting
漏洞标题 CVE-2021-24987: WordPress Super Socializer <7.13.30 - Cross-Site Scripting 漏洞描述 WordPress Super Socializer plugin before 7.13.30 contains a reflected cross-site scr...
2021年4月16日 13:11CVE-2021-39226: Grafana Snapshot – Authentication Bypass
漏洞标题 CVE-2021-39226: Grafana Snapshot - Authentication Bypass 漏洞描述 Grafana instances up to 7.5.11 and 8.1.5 allow remote unauthenticated users to view the snapshot associat...
2021年4月16日 04:02CVE-2021-32648: OctoberCMS – Account Takeover
漏洞标题 CVE-2021-32648: OctoberCMS - Account Takeover 漏洞描述 octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package ...
2021年4月15日 20:05CVE-2021-24862: WordPress RegistrationMagic <5.0.1.6 - Authenticated SQL Injection
漏洞标题 CVE-2021-24862: WordPress RegistrationMagic <5.0.1.6 - Authenticated SQL Injection 漏洞描述 WordPress RegistrationMagic plugin before 5.0.1.6 contains an authenticated ...
2021年4月15日 04:59CVE-2021-24287: WordPress Select All Categories and Taxonomies <1.3.2 - Cross-Site Scripting
漏洞标题 CVE-2021-24287: WordPress Select All Categories and Taxonomies <1.3.2 - Cross-Site Scripting 漏洞描述 WordPress Select All Categories and Taxonomies plugin before 1.3.2...
2021年4月15日 04:25CVE-2021-34643: WordPress Skaut Bazar <1.3.3 - Cross-Site Scripting
漏洞标题 CVE-2021-34643: WordPress Skaut Bazar <1.3.3 - Cross-Site Scripting 漏洞描述 WordPress Skaut Bazar plugin before 1.3.3 contains a reflected cross-site scripting vulnera...
2021年4月14日 23:41Apache OFBiz RMI反序列化前台命令执行(CVE-2021-26295)
漏洞标题 Apache OFBiz RMI反序列化前台命令执行(CVE-2021-26295) 漏洞描述 OFBiz是基于Java的Web框架,包括实体引擎,服务引擎和基于小部件的UI。近日,Apache OFBiz官方发布安全更新。Apache ...
2021年4月14日 18:00CVE-2021-28149: Hongdian H8922 3.0.5 Devices – Local File Inclusion
漏洞标题 CVE-2021-28149: Hongdian H8922 3.0.5 Devices - Local File Inclusion 漏洞描述 Hongdian H8922 3.0.5 devices are vulnerable to local file inclusion. The /log_download.cgi log...
2021年4月14日 01:19CVE-2021-4073: RegistrationMagic <= 5.0.1.7 - Authentication Bypass
漏洞标题 CVE-2021-4073: RegistrationMagic <= 5.0.1.7 - Authentication Bypass 漏洞描述 RegistrationMagic WordPress plugin versions <= 5.0.1.7 contain an authentication bypass ...
2021年4月13日 18:12CVE-2021-31682: WebCTRL OEM <= 6.5 - Cross-Site Scripting
漏洞标题 CVE-2021-31682: WebCTRL OEM <= 6.5 - Cross-Site Scripting 漏洞描述 WebCTRL OEM 6.5 and prior is susceptible to a cross-site scripting vulnerability because the login po...
2021年4月13日 16:55CVE-2021-24488: WordPress Post Grid <2.1.8 - Cross-Site Scripting
漏洞标题 CVE-2021-24488: WordPress Post Grid <2.1.8 - Cross-Site Scripting 漏洞描述 WordPress Post Grid plugin before 2.1.8 contains a reflected cross-site scripting vulnerabili...
2021年4月13日 10:20CVE-2021-24335: WordPress Car Repair Services & Auto Mechanic Theme <4.0 - Cross-Site Scripting
漏洞标题 CVE-2021-24335: WordPress Car Repair Services & Auto Mechanic Theme <4.0 - Cross-Site Scripting 漏洞描述 WordPress Car Repair Services & Auto Mechanic before 4....
2021年4月13日 09:55CVE-2021-40539: Zoho ManageEngine ADSelfService Plus v6113 – Unauthenticated Remote Command Execution
漏洞标题 CVE-2021-40539: Zoho ManageEngine ADSelfService Plus v6113 - Unauthenticated Remote Command Execution 漏洞描述 Zoho ManageEngine ADSelfService Plus version 6113 and prior ...
2021年4月13日 09:38
