排序
CVE-2023-36287: Webkul QloApps 1.6.0 – Cross-site Scripting
漏洞标题 CVE-2023-36287: Webkul QloApps 1.6.0 - Cross-site Scripting 漏洞描述 An unauthenticated Cross-Site Scripting (XSS) vulnerability found in Webkul QloApps 1.6.0 allows an at...
2023年11月19日 04:36CVE-2023-32315-2: Openfire身份认证绕过漏洞
漏洞标题 CVE-2023-32315-2: Openfire身份认证绕过漏洞 漏洞描述 Openfire is an XMPP server licensed under the Open Source Apache License. Openfire's administrative console, a web...
2023年7月25日 03:33CVE-2023-39650: PrestaShop Theme Volty CMS Blog – SQL Injection
漏洞标题 CVE-2023-39650: PrestaShop Theme Volty CMS Blog - SQL Injection 漏洞描述 In the module 'Theme Volty CMS Blog' (tvcmsblog) up to versions 4.0.1 from Theme Volty f...
2023年10月6日 06:48CVE-2023-40752: PHPJabbers Make an Offer Widget v1.0 – Cross-Site Scripting
漏洞标题 CVE-2023-40752: PHPJabbers Make an Offer Widget v1.0 - Cross-Site Scripting 漏洞描述 There is a Cross Site Scripting (XSS) vulnerability in the "action" paramete...
2023年9月5日 12:41CVE-2023-3380: WAVLINK WN579X3 – Remote Command Execution
漏洞标题 CVE-2023-3380: WAVLINK WN579X3 - Remote Command Execution 漏洞描述 Remote Command Execution vulnerability in WAVLINK WN579X3 routers via pingIp parameter in /cgi-bin/adm.c...
2023年7月8日 17:46CVE-2023-46347: PrestaShop Step by Step products Pack – SQL Injection
漏洞标题 CVE-2023-46347: PrestaShop Step by Step products Pack - SQL Injection 漏洞描述 In the module “Step by Step products Pack” (ndk_steppingpack) up to 1.5.6 from NDK Design ...
2023年12月14日 12:48CVE-2023-5003: Active Directory Integration WP Plugin < 4.1.10 - Log Disclosure
漏洞标题 CVE-2023-5003: Active Directory Integration WP Plugin < 4.1.10 - Log Disclosure 漏洞描述 The Active Directory Integration / LDAP Integration WordPress plugin before 4.1...
2023年11月3日 04:37CVE-2023-34039: VMWare Aria Operations – Remote Code Execution
漏洞标题 CVE-2023-34039: VMWare Aria Operations - Remote Code Execution 漏洞描述 VMWare Aria Operations for Networks (vRealize Network Insight) Static SSH key RCE (CVE-2023-34039) ...
2023年6月2日 15:11CVE-2023-1315: osTicket < v1.16.6 - Cross-Site Scripting
漏洞标题 CVE-2023-1315: osTicket < v1.16.6 - Cross-Site Scripting 漏洞描述 Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to v1.16.6. PoC代...
2023年11月5日 19:06CVE-2023-49489: KodeExplorer 4.51 – Reflective Cross Site Scripting (XSS)
漏洞标题 CVE-2023-49489: KodeExplorer 4.51 - Reflective Cross Site Scripting (XSS) 漏洞描述 Reflective Cross Site Scripting (XSS) vulnerability in KodExplorer version 4.51, allows ...
2023年7月25日 08:18CVE-2023-39677: PrestaShop MyPrestaModules – PhpInfo Disclosure
漏洞标题 CVE-2023-39677: PrestaShop MyPrestaModules - PhpInfo Disclosure 漏洞描述 PrestaShop modules by MyPrestaModules expose PHPInfo PoC代码
2023年8月28日 20:02CVE-2023-20864: VMware Aria Operations for Logs – Unauthenticated Remote Code Execution
漏洞标题 CVE-2023-20864: VMware Aria Operations for Logs - Unauthenticated Remote Code Execution 漏洞描述 VMware Aria Operations for Logs contains a deserialization vulnerability. ...
2023年1月8日 00:16CVE-2023-30210: OURPHP <= 7.2.0 - Cross Site Scripting
漏洞标题 CVE-2023-30210: OURPHP <= 7.2.0 - Cross Site Scripting 漏洞描述 OURPHP <= 7.2.0 is vulnerable to Cross Site Scripting (XSS) via /client/manage/ourphp_tz.php. PoC代码
2023年7月27日 10:21CVE-2023-23489: WordPress Easy Digital Downloads 3.1.0.2/3.1.0.3 – SQL Injection
漏洞标题 CVE-2023-23489: WordPress Easy Digital Downloads 3.1.0.2/3.1.0.3 - SQL Injection 漏洞描述 WordPress Easy Digital Downloads plugin 3.1.0.2 and 3.1.0.3 contains a SQL inject...
2023年5月25日 20:08CVE-2023-43187: NodeBB XML-RPC Request xmlrpc.php – XML Injection
漏洞标题 CVE-2023-43187: NodeBB XML-RPC Request xmlrpc.php - XML Injection 漏洞描述 A remote code execution (RCE) vulnerability in the xmlrpc.php endpoint of NodeBB Inc NodeBB foru...
2023年6月6日 07:14CVE-2023-7116: WeiYe-Jing datax-web <= 2.1.2 - OS Command Injection
漏洞标题 CVE-2023-7116: WeiYe-Jing datax-web <= 2.1.2 - OS Command Injection 漏洞描述 A vulnerability, which was classified as critical, has been found in WeiYe-Jing datax-web 2...
2023年9月30日 05:30
