排序
CVE-2024-9487: GitHub Enterprise – SAML Authentication Bypass
漏洞标题 CVE-2024-9487: GitHub Enterprise - SAML Authentication Bypass 漏洞描述 An improper verification of cryptographic signature vulnerability was identified in GitHub Enterpris...
2024年6月3日 09:23CVE-2024-6366: User Profile Builder < 3.11.8 - File Upload
漏洞标题 CVE-2024-6366: User Profile Builder < 3.11.8 - File Upload 漏洞描述 The User Profile Builder WordPress plugin before 3.11.8 does not have proper authorisation, allowing...
2024年6月3日 05:11CVE-2024-27956: WordPress Automatic Plugin <= 3.92.0 - SQL Injection
漏洞标题 CVE-2024-27956: WordPress Automatic Plugin <= 3.92.0 - SQL Injection 漏洞描述 The Automatic plugin for WordPress is vulnerable to SQL Injection in versions up to, and i...
2024年6月2日 20:12CVE-2024-50477: WordPress Stacks Mobile App Builder <=5.2.3 - Authentication Bypass
漏洞标题 CVE-2024-50477: WordPress Stacks Mobile App Builder <=5.2.3 - Authentication Bypass 漏洞描述 Stacks Mobile App Builder WordPress plugin ≤ 5.2.3 suffers from an authent...
2024年6月2日 18:46CVE-2024-28986: SolarWinds Web Help Desk < 12.8.3 - Insecure Deserialization
漏洞标题 CVE-2024-28986: SolarWinds Web Help Desk < 12.8.3 - Insecure Deserialization 漏洞描述 SolarWinds Web Help Desk before version 12.8.3 contain a critical Java deserializa...
2024年6月2日 09:08CVE-2024-47374: LiteSpeed Cache <= 6.5.0.2 - Stored XSS
漏洞标题 CVE-2024-47374: LiteSpeed Cache <= 6.5.0.2 - Stored XSS 漏洞描述 LiteSpeed Technologies LiteSpeed Cache versions up to 6.5.0.2 contain a stored cross-site scripting cau...
2024年6月2日 05:55CVE-2024-4439: WordPress Core <6.5.2 - Cross-Site Scripting
漏洞标题 CVE-2024-4439: WordPress Core <6.5.2 - Cross-Site Scripting 漏洞描述 WordPress Core is vulnerable to Stored Cross-Site Scripting via user display names in the Avatar bl...
2024年6月2日 03:16CVE-2024-0200: Github Enterprise Authenticated Remote Code Execution
漏洞标题 CVE-2024-0200: Github Enterprise Authenticated Remote Code Execution 漏洞描述 An unsafe reflection vulnerability was identified in GitHub Enterprise Server that could lead...
2024年6月2日 02:08CVE-2024-10783: WordPress Plugin MainWP Child – Authentication Bypass
漏洞标题 CVE-2024-10783: WordPress Plugin MainWP Child - Authentication Bypass 漏洞描述 The plugin is vulnerable to an authentication bypass that allows an unauthenticated user to ...
2024年6月1日 21:54CVE-2024-27497: Linksys E2000 1.0.06 position.js Improper Authentication
漏洞标题 CVE-2024-27497: Linksys E2000 1.0.06 position.js Improper Authentication 漏洞描述 Linksys E2000 Ver.1.0.06 build 1 is vulnerable to authentication bypass via the position....
2024年6月1日 07:32CVE-2024-2473: WPS Hide Login <= 1.9.15.2 - Login Page Disclosure
漏洞标题 CVE-2024-2473: WPS Hide Login <= 1.9.15.2 - Login Page Disclosure 漏洞描述 The WPS Hide Login plugin for WordPress is vulnerable to Login Page Disclosure in all version...
2024年6月1日 01:26CVE-2024-23917: JetBrains TeamCity > 2023.11.3 – Authentication Bypass
漏洞标题 CVE-2024-23917: JetBrains TeamCity > 2023.11.3 - Authentication Bypass 漏洞描述 In JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible...
2024年5月31日 20:58CVE-2024-48455: Netis Wifi Router – Information Disclosure
漏洞标题 CVE-2024-48455: Netis Wifi Router - Information Disclosure 漏洞描述 An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0.0.374...
2024年5月31日 15:45CVE-2024-7097: WSO2 User Registration – Arbitrary Account Creation
漏洞标题 CVE-2024-7097: WSO2 User Registration - Arbitrary Account Creation 漏洞描述 The SOAP admin service in WSO2 products has a security vulnerability that allows the creation o...
2024年5月31日 02:52CVE-2024-24112: Exrick XMall – SQL Injection
漏洞标题 CVE-2024-24112: Exrick XMall - SQL Injection 漏洞描述 XMall v1.1 was discovered to contain a SQL injection vulnerability via the 'orderDir' parameter. PoC代码
2024年5月31日 02:00CVE-2024-3850: Uniview NVR301-04S2-P4 – Cross-Site Scripting
漏洞标题 CVE-2024-3850: Uniview NVR301-04S2-P4 - Cross-Site Scripting 漏洞描述 Uniview NVR301-04S2-P4 contains a reflected cross-site scripting vulnerability via the PATH of LAPI. ...
2024年5月30日 21:51
