排序
CVE-2022-0206: WordPress NewStatPress <1.3.6 - Cross-Site Scripting
漏洞标题 CVE-2022-0206: WordPress NewStatPress <1.3.6 - Cross-Site Scripting 漏洞描述 WordPress NewStatPress plugin before 1.3.6 is susceptible to cross-site scripting. The plug...
2022年11月28日 05:52CVE-2022-0434: WordPress Page Views Count <2.4.15 - SQL Injection
漏洞标题 CVE-2022-0434: WordPress Page Views Count <2.4.15 - SQL Injection 漏洞描述 WordPress Page Views Count plugin prior to 2.4.15 contains an unauthenticated SQL injection v...
2022年3月16日 03:19CVE-2022-2627: WordPress Newspaper < 12 - Cross-Site Scripting
漏洞标题 CVE-2022-2627: WordPress Newspaper < 12 - Cross-Site Scripting 漏洞描述 WordPress Newspaper theme before 12 is susceptible to cross-site scripting. The does not sanitiz...
2022年3月9日 04:59Atlassian Questions For Confluence 应用硬编码漏洞(CVE-2022-26138)
漏洞标题 Atlassian Questions For Confluence 应用硬编码漏洞(CVE-2022-26138) 漏洞描述 Atlassian Questions For Confluence 应用硬编码漏洞(CVE-2022-26138) PoC代码 暂无
2022年8月16日 23:49Apache APISIX Dashboard命令执行漏洞(CVE-2022-24112)
漏洞标题 Apache APISIX Dashboard命令执行漏洞(CVE-2022-24112) 漏洞描述 Apache APISIX 是一个动态、实时、高性能的开源 API网关,提供负载均衡、动态上游、灰度发布、服务熔断、身份认证、可...
2022年5月10日 06:11CVE-2022-45354: Download Monitor <= 4.7.60 - Sensitive Information Exposure
漏洞标题 CVE-2022-45354: Download Monitor <= 4.7.60 - Sensitive Information Exposure 漏洞描述 The Download Monitor plugin for WordPress is vulnerable to Sensitive Information Ex...
2022年10月6日 17:36CVE-2022-0928: Microweber < 1.2.12 - Stored Cross-Site Scripting
漏洞标题 CVE-2022-0928: Microweber < 1.2.12 - Stored Cross-Site Scripting 漏洞描述 Microweber prior to 1.2.12 contains a stored cross-site scripting vulnerability via the Type p...
2022年11月8日 00:11CVE-2022-0228: Popup Builder < 4.0.7 - SQL Injection
漏洞标题 CVE-2022-0228: Popup Builder < 4.0.7 - SQL Injection 漏洞描述 The Popup Builder WordPress plugin before 4.0.7 does not validate and properly escape the orderby and orde...
2022年8月7日 00:21CVE-2022-39986: RaspAP 2.8.7 – Unauthenticated Command Injection
漏洞标题 CVE-2022-39986: RaspAP 2.8.7 - Unauthenticated Command Injection 漏洞描述 A Command injection vulnerability in RaspAP 2.8.0 thru 2.8.7 allows unauthenticated attackers to ...
2022年3月31日 18:01CVE-2022-1057: WordPress Pricing Deals for WooCommerce <=2.0.2.02 - SQL Injection
漏洞标题 CVE-2022-1057: WordPress Pricing Deals for WooCommerce <=2.0.2.02 - SQL Injection 漏洞描述 WordPress Pricing Deals for WooCommerce plugin through 2.0.2.02 contains a SQ...
2022年1月16日 10:02CVE-2022-46020: WBCE CMS v1.5.4 – Remote Code Execution
漏洞标题 CVE-2022-46020: WBCE CMS v1.5.4 - Remote Code Execution 漏洞描述 WBCE CMS v1.5.4 can implement getshell by modifying the upload file type. PoC代码
2022年8月1日 09:26CVE-2022-0786: WordPress KiviCare <2.3.9 - SQL Injection
漏洞标题 CVE-2022-0786: WordPress KiviCare <2.3.9 - SQL Injection 漏洞描述 WordPress KiviCare plugin before 2.3.9 contains a SQL injection vulnerability. The plugin does not san...
2022年4月25日 08:44CVE-2022-47615: LearnPress Plugin < 4.2.0 - Local File Inclusion
漏洞标题 CVE-2022-47615: LearnPress Plugin < 4.2.0 - Local File Inclusion 漏洞描述 Local File Inclusion vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versi...
2022年1月6日 16:42CVE-2022-30489: Wavlink WN-535G3 – Cross-Site Scripting
漏洞标题 CVE-2022-30489: Wavlink WN-535G3 - Cross-Site Scripting 漏洞描述 Wavlink WN-535G3 contains a POST cross-site scripting vulnerability via the hostname parameter at /cgi-bin...
2022年12月3日 22:12CVE-2022-1933: WordPress CDI <5.1.9 - Cross Site Scripting
漏洞标题 CVE-2022-1933: WordPress CDI <5.1.9 - Cross Site Scripting 漏洞描述 WordPress CDI plugin prior to 5.1.9 contains a cross-site scripting vulnerability. The plugin does n...
2022年2月7日 15:57CVE-2022-0149: WooCommerce Stored Exporter WordPress Plugin < 2.7.1 - Cross-Site Scripting
漏洞标题 CVE-2022-0149: WooCommerce Stored Exporter WordPress Plugin < 2.7.1 - Cross-Site Scripting 漏洞描述 The plugin was affected by a reflected cross-site scripting vulnerab...
2022年9月29日 20:59
