排序
CVE-2023-45136: XWiki < 14.10.14 - Cross-Site Scripting
漏洞标题 CVE-2023-45136: XWiki < 14.10.14 - Cross-Site Scripting 漏洞描述 XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it...
2023年6月5日 19:43CVE-2023-1020: Steveas WP Live Chat Shoutbox <= 1.4.2 - SQL Injection
漏洞标题 CVE-2023-1020: Steveas WP Live Chat Shoutbox <= 1.4.2 - SQL Injection 漏洞描述 The Steveas WP Live Chat Shoutbox WordPress plugin through 1.4.2 does not sanitise and es...
2023年6月5日 17:46CVE-2023-4115: PHPJabbers Cleaning Business 1.0 – Cross-Site Scripting
漏洞标题 CVE-2023-4115: PHPJabbers Cleaning Business 1.0 - Cross-Site Scripting 漏洞描述 The attacker can send to victim a link containing a malicious URL in an email or instant me...
2023年6月5日 07:54CVE-2023-3847: MooDating 1.2 – Cross-Site scripting
漏洞标题 CVE-2023-3847: MooDating 1.2 - Cross-Site scripting 漏洞描述 A vulnerability classified as problematic was found in mooSocial mooDating 1.2. This vulnerability affects unk...
2023年6月5日 06:00CVE-2023-0562: Bank Locker Management System v1.0 – SQL Injection
漏洞标题 CVE-2023-0562: Bank Locker Management System v1.0 - SQL Injection 漏洞描述 A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been rated as ...
2023年6月5日 05:33CVE-2023-0261: WordPress WP TripAdvisor Review Slider <10.8 - Authenticated SQL Injection
漏洞标题 CVE-2023-0261: WordPress WP TripAdvisor Review Slider <10.8 - Authenticated SQL Injection 漏洞描述 WordPress WP TripAdvisor Review Slider plugin before 10.8 is suscepti...
2023年6月4日 21:50CVE-2023-28662: WordPress Gift Cards <= 4.3.1 - SQL Injection
漏洞标题 CVE-2023-28662: Wordpress Gift Cards <= 4.3.1 - SQL Injection 漏洞描述 The Gift Cards (Gift Vouchers and Packages) WordPress Plugin, version <= 4.3.1, is affected by...
2023年6月4日 20:44CVE-2023-1177: MLflow get-artifact 任意文件读取漏洞
漏洞标题 CVE-2023-1177: MLflow get-artifact 任意文件读取漏洞 漏洞描述 使用 MLflow 模型注册表托管 MLflow 开源项目的用户 mlflow server或者 mlflow ui使用早于 MLflow 2.2.1 的 MLflow 版...
2023年6月4日 18:24CVE-2023-46574: TOTOLINK A3700R – Command Injection
漏洞标题 CVE-2023-46574: TOTOLINK A3700R - Command Injection 漏洞描述 An issue in TOTOLINK A3700R v.9.1.2u.6165_20211012 allows a remote attacker to execute arbitrary code via the ...
2023年6月4日 14:13CVE-2023-40751: PHPJabbers Fundraising Script v1.0 – Cross-Site Scripting
漏洞标题 CVE-2023-40751: PHPJabbers Fundraising Script v1.0 - Cross-Site Scripting 漏洞描述 PHPJabbers Fundraising Script v1.0 is vulnerable to Cross Site Scripting (XSS) via the &...
2023年6月4日 06:25CVE-2023-49105: OwnCloud – WebDAV API Authentication Bypass
漏洞标题 CVE-2023-49105: OwnCloud - WebDAV API Authentication Bypass 漏洞描述 An issue was discovered in ownCloud owncloud/core before 10.13.1. An attacker can access, modify, or d...
2023年6月4日 05:04Altenergy Power Control Software management_model.php存在命令注入漏洞(CVE-2023-28343)
漏洞标题 Altenergy Power Control Software management_model.php存在命令注入漏洞(CVE-2023-28343) 漏洞描述 Altenergy Power System Control Software是Altenergy PowerSystem公司的微型逆变...
2023年6月4日 02:12CVE-2023-6021: Ray API – Local File Inclusion
漏洞标题 CVE-2023-6021: Ray API - Local File Inclusion 漏洞描述 LFI in Ray's log API endpoint allows attackers to read any file on the server without authentication. PoC代码
2023年6月3日 22:47CVE-2023-4596: WordPress Plugin Forminator 1.24.6 – Arbitrary File Upload
漏洞标题 CVE-2023-4596: WordPress Plugin Forminator 1.24.6 - Arbitrary File Upload 漏洞描述 The Forminator plugin for WordPress is vulnerable to arbitrary file uploads due to file ...
2023年6月3日 21:18CVE-2023-5244: Microweber < V.2.0 - Cross-Site Scripting
漏洞标题 CVE-2023-5244: Microweber < V.2.0 - Cross-Site Scripting 漏洞描述 Reflected Cross-Site Scripting Vulnerability in types GET parameter on the /editor_tools/rte_image_edi...
2023年6月3日 20:25CVE-2023-43208: NextGen Healthcare Mirth Connect – Remote Code Execution
漏洞标题 CVE-2023-43208: NextGen Healthcare Mirth Connect - Remote Code Execution 漏洞描述 Unauthenticated remote code execution vulnerability in NextGen Healthcare Mirth Connect b...
2023年6月3日 18:32
