排序
CVE-2023-40749: PHPJabbers Food Delivery Script v3.0 – SQL Injection
漏洞标题 CVE-2023-40749: PHPJabbers Food Delivery Script v3.0 - SQL Injection 漏洞描述 PHPJabbers Food Delivery Script v3.0 is vulnerable to SQL Injection in the "column"...
2023年2月28日 01:21CVE-2023-3990: Mingsoft MCMS < 5.3.1 - Cross-Site Scripting
漏洞标题 CVE-2023-3990: Mingsoft MCMS < 5.3.1 - Cross-Site Scripting 漏洞描述 A vulnerability classified as problematic has been found in Mingsoft MCMS up to 5.3.1. This affects...
2023年2月2日 09:48Apache Superset Cookie 权限绕过漏洞(CVE-2023-27524)
漏洞标题 Apache Superset Cookie 权限绕过漏洞(CVE-2023-27524) 漏洞描述 Apache Superset 是一个开源的现代数据探索和可视化平台。Apache Superset Cookie 存在权限绕过漏洞,攻击者可通过...
2023年8月22日 03:22CVE-2023-2780: Mlflow <2.3.1 - Local File Inclusion Bypass
漏洞标题 CVE-2023-2780: Mlflow <2.3.1 - Local File Inclusion Bypass 漏洞描述 Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.3.1. PoC代码
2023年10月30日 10:03CVE-2023-2813: WordPress Multiple Themes – Reflected Cross-Site Scripting
漏洞标题 CVE-2023-2813: Wordpress Multiple Themes - Reflected Cross-Site Scripting 漏洞描述 All of the above Aapna WordPress theme through 1.3, Anand WordPress theme through 1.2, A...
2023年11月9日 13:45CVE-2023-49105: OwnCloud – WebDAV API Authentication Bypass
漏洞标题 CVE-2023-49105: OwnCloud - WebDAV API Authentication Bypass 漏洞描述 An issue was discovered in ownCloud owncloud/core before 10.13.1. An attacker can access, modify, or d...
2023年8月10日 21:58CVE-2023-49103: OwnCloud – Phpinfo Configuration
漏洞标题 CVE-2023-49103: OwnCloud - Phpinfo Configuration 漏洞描述 An issue was discovered in ownCloud owncloud/graphapi 0.2.x before 0.2.1 and 0.3.x before 0.3.1. The graphapi app...
2023年3月12日 05:18CVE-2023-34752: bloofoxCMS v0.5.2.1 – SQL Injection
漏洞标题 CVE-2023-34752: bloofoxCMS v0.5.2.1 - SQL Injection 漏洞描述 bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability via the lid parameter at admin/index....
2023年4月28日 09:04CVE-2023-40779: IceWarp Mail Server Deep Castle 2 v.13.0.1.2 – Open Redirect
漏洞标题 CVE-2023-40779: IceWarp Mail Server Deep Castle 2 v.13.0.1.2 - Open Redirect 漏洞描述 An issue in IceWarp Mail Server Deep Castle 2 v.13.0.1.2 allows a remote attacker to ...
2023年5月12日 22:56CVE-2023-45852: Viessmann Vitogate 300 – Remote Code Execution
漏洞标题 CVE-2023-45852: Viessmann Vitogate 300 - Remote Code Execution 漏洞描述 In Vitogate 300 2.1.3.0, /cgi-bin/vitogate.cgi allows an unauthenticated attacker to bypass authent...
2023年12月6日 08:59CVE-2023-3345: LMS by Masteriyo < 1.6.8 - Information Exposure
漏洞标题 CVE-2023-3345: LMS by Masteriyo < 1.6.8 - Information Exposure 漏洞描述 The plugin does not properly safeguards sensitive user information, like other user's email...
2023年9月27日 15:52CVE-2023-47248: PyArrow Flight RPC – Remote Code Execution
漏洞标题 CVE-2023-47248: PyArrow Flight RPC - Remote Code Execution 漏洞描述 PyArrow Flight RPC from v0.14.0 through v14.0.0 allows remote attackers to execute arbitrary code via a...
2023年10月15日 10:44CVE-2023-49489: KodeExplorer 4.51 – Reflective Cross Site Scripting (XSS)
漏洞标题 CVE-2023-49489: KodeExplorer 4.51 - Reflective Cross Site Scripting (XSS) 漏洞描述 Reflective Cross Site Scripting (XSS) vulnerability in KodExplorer version 4.51, allows ...
2023年5月18日 15:14CVE-2023-41538: PHPJabbers PHP Forum Script 3.0 – Cross-Site Scripting
漏洞标题 CVE-2023-41538: PHPJabbers PHP Forum Script 3.0 - Cross-Site Scripting 漏洞描述 PhpJabbers PHP Forum Script 3.0 is vulnerable to Cross Site Scripting (XSS) via the keyword...
2023年8月29日 23:55CVE-2023-6266: WordPress Backup Migration <= 1.3.6 - Path Traversal
漏洞标题 CVE-2023-6266: WordPress Backup Migration <= 1.3.6 - Path Traversal 漏洞描述 WordPress Backup Migration plugin versions up to 1.3.6 contain a path traversal and file va...
2023年12月28日 23:53CVE-2023-4450: JeecgBoot JimuReport – Template injection
漏洞标题 CVE-2023-4450: JeecgBoot JimuReport - Template injection 漏洞描述 A vulnerability was found in jeecgboot JimuReport up to 1.6.0. It has been declared as critical. Affected...
2023年2月23日 04:36
