排序
CVE-2023-38035: Ivanti Sentry – Authentication Bypass
漏洞标题 CVE-2023-38035: Ivanti Sentry - Authentication Bypass 漏洞描述 A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which m...
2023年5月5日 19:59CVE-2023-1408: Video List Manager <= 1.7 - SQL Injection
漏洞标题 CVE-2023-1408: Video List Manager <= 1.7 - SQL Injection 漏洞描述 The plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leadi...
2023年5月5日 18:51CVE-2023-26843: ChurchCRM 4.5.3 – Cross-Site Scripting
漏洞标题 CVE-2023-26843: ChurchCRM 4.5.3 - Cross-Site Scripting 漏洞描述 A stored Cross-site scripting (XSS) vulnerability in ChurchCRM 4.5.3 allows remote attackers to inject arbi...
2023年5月5日 13:29CVE-2023-35813: Sitecore – Remote Code Execution
漏洞标题 CVE-2023-35813: Sitecore - Remote Code Execution 漏洞描述 Multiple Sitecore products allow remote code execution. This affects Experience Manager, Experience Platform, and...
2023年5月5日 10:17Chamilo LMS 存在命令执行漏洞(CVE-2023-3368)
漏洞标题 Chamilo LMS 存在命令执行漏洞(CVE-2023-3368) 漏洞描述 Chamilo是一款可供用户免费下载的学习管理软件,该软件存在命令执行漏洞,可执行任意系统命令 PoC代码 暂无
2023年5月5日 03:23CVE-2023-34362: MOVEit Transfer – Remote Code Execution
漏洞标题 CVE-2023-34362: MOVEit Transfer - Remote Code Execution 漏洞描述 In Progress MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1...
2023年5月5日 02:53CVE-2023-25194: Apache Druid Kafka Connect – Remote Code Execution
漏洞标题 CVE-2023-25194: Apache Druid Kafka Connect - Remote Code Execution 漏洞描述 The vulnerability has the potential to enable a remote attacker with authentication to run any ...
2023年5月5日 00:19CVE-2023-40749: PHPJabbers Food Delivery Script v3.0 – SQL Injection
漏洞标题 CVE-2023-40749: PHPJabbers Food Delivery Script v3.0 - SQL Injection 漏洞描述 PHPJabbers Food Delivery Script v3.0 is vulnerable to SQL Injection in the "column"...
2023年5月4日 19:34CVE-2023-4174: mooSocial 3.1.6 – Reflected Cross Site Scripting
漏洞标题 CVE-2023-4174: mooSocial 3.1.6 - Reflected Cross Site Scripting 漏洞描述 A vulnerability has been found in mooSocial mooStore 3.1.6 and classified as problematic. Affected...
2023年5月4日 12:40CVE-2023-27624: WordPress Redirect After Login <= 0.1.9 - Admin Stored XSS
漏洞标题 CVE-2023-27624: WordPress Redirect After Login <= 0.1.9 - Admin Stored XSS 漏洞描述 Marcelotorres Redirect After Login plugin <= 0.1.9 contains a stored cross-site s...
2023年5月4日 06:38Atlassian Confluence CVE-2023-22515 权限提升漏洞 (阶段1: 属性修改)
漏洞标题 Atlassian Confluence CVE-2023-22515 权限提升漏洞 (阶段1: 属性修改) 漏洞描述 Atlassian Confluence CVE-2023-22515 权限提升漏洞 (阶段1: 属性修改) 日期: 2024-02-07 | 影响软件:...
2023年5月4日 04:40CVE-2023-27482: Home Assistant Supervisor – Authentication Bypass
漏洞标题 CVE-2023-27482: Home Assistant Supervisor - Authentication Bypass 漏洞描述 Home Assistant Supervisor is an open source home automation tool. A remotely exploitable vulnera...
2023年5月4日 00:24CVE-2023-40779: IceWarp Mail Server Deep Castle 2 v.13.0.1.2 – Open Redirect
漏洞标题 CVE-2023-40779: IceWarp Mail Server Deep Castle 2 v.13.0.1.2 - Open Redirect 漏洞描述 An issue in IceWarp Mail Server Deep Castle 2 v.13.0.1.2 allows a remote attacker to ...
2023年5月3日 23:09CVE-2023-26067: Lexmark Printers – Command Injection
漏洞标题 CVE-2023-26067: Lexmark Printers - Command Injection 漏洞描述 Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4). PoC代码
2023年5月3日 05:24CVE-2023-42793: JetBrains TeamCity < 2023.05.4 - Remote Code Execution
漏洞标题 CVE-2023-42793: JetBrains TeamCity < 2023.05.4 - Remote Code Execution 漏洞描述 In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity ...
2023年5月2日 20:39CVE-2023-32068: XWiki – Open Redirect
漏洞标题 CVE-2023-32068: XWiki - Open Redirect 漏洞描述 XWiki Platform is vulnerable to open redirect attacks due to improper validation of the xredirect parameter. This allows an ...
2023年5月2日 19:52
