排序
CVE-2024-8425: WooCommerce Ultimate Gift Card ≤ 2.6.0 – Arbitrary File Upload
漏洞标题 CVE-2024-8425: WooCommerce Ultimate Gift Card ≤ 2.6.0 - Arbitrary File Upload 漏洞描述 The WooCommerce Ultimate Gift Card plugin for WordPress is vulnerable to arbitrary ...
2024年5月27日 15:35CVE-2024-10914: D-Link NAS – Command Injection via Name Parameter
漏洞标题 CVE-2024-10914: D-Link NAS - Command Injection via Name Parameter 漏洞描述 A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It ...
2024年5月27日 12:30CVE-2024-6651: WordPress File Upload Plugin < 4.24.8 - Cross-Site Scripting
漏洞标题 CVE-2024-6651: WordPress File Upload Plugin < 4.24.8 - Cross-Site Scripting 漏洞描述 The WordPress File Upload plugin before version 4.24.8 contains a reflected cross-s...
2024年5月27日 12:03CVE-2024-13853: WordPress SEO Tools Plugin 4.0.7 – Cross-Site Scripting
漏洞标题 CVE-2024-13853: WordPress SEO Tools Plugin 4.0.7 - Cross-Site Scripting 漏洞描述 The SEO Tools WordPress plugin through version 4.0.7 contains a reflected cross-site scrip...
2024年5月26日 17:10CVE-2024-9772: WordPress UIX Shortcodes <= 1.9.7 - Unauthenticated Shortcode Execution
漏洞标题 CVE-2024-9772: WordPress UIX Shortcodes <= 1.9.7 - Unauthenticated Shortcode Execution 漏洞描述 The The Uix Shortcodes – Compatible with Gutenberg plugin for WordPress...
2024年5月26日 14:07CVE-2024-54764: ipTIME A2004 – Unauthorized Access
漏洞标题 CVE-2024-54764: ipTIME A2004 - Unauthorized Access 漏洞描述 An access control issue exists in the component /login/hostinfo2.cgi of ipTIME A2004 v12.17.0 that allows attac...
2024年5月26日 13:49CVE-2024-32651: Change Detection – Server Side Template Injection
漏洞标题 CVE-2024-32651: Change Detection - Server Side Template Injection 漏洞描述 A Server Side Template Injection in changedetection.io caused by usage of unsafe functions of Ji...
2024年5月26日 11:00CVE-2024-34061: Changedetection.io <=v0.45.21 - Cross-Site Scripting
漏洞标题 CVE-2024-34061: Changedetection.io <=v0.45.21 - Cross-Site Scripting 漏洞描述 Changedetection.io is a free open source web page change detection, website watcher, resto...
2024年5月25日 23:32CVE-2024-54763: ipTIME A2004 – Unauthorized Access
漏洞标题 CVE-2024-54763: ipTIME A2004 - Unauthorized Access 漏洞描述 An access control issue in the component /login/hostinfo.cgi of ipTIME A2004 v12.17.0 allows attackers to obtai...
2024年5月25日 15:23Apache OFBiz CVE-2024-38856 未授权代码执行漏洞
漏洞标题 Apache OFBiz CVE-2024-38856 未授权代码执行漏洞 漏洞描述 Apache OFBiz存在未授权代码执行漏洞,该漏洞是由于ProgramExport接口对用户的权限校验不当导致的。 PoC代码 暂无
2024年5月24日 22:54CVE-2024-23917: JetBrains TeamCity > 2023.11.3 – Authentication Bypass
漏洞标题 CVE-2024-23917: JetBrains TeamCity > 2023.11.3 - Authentication Bypass 漏洞描述 In JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible...
2024年5月24日 14:20CVE-2024-0305: Ncast盈可视高清智能录播系统存在RCE漏洞
漏洞标题 CVE-2024-0305: Ncast盈可视高清智能录播系统存在RCE漏洞 漏洞描述 Ncast盈可视高清智能录播系统是广州盈可视电子科技有限公司的一款产品。Ncast盈可视高清智能录播系统/classes/commo...
2024年5月24日 06:32CVE-2024-1021: Rebuild <= 3.5.5 - Server-Side Request Forgery
漏洞标题 CVE-2024-1021: Rebuild <= 3.5.5 - Server-Side Request Forgery 漏洞描述 There is a security vulnerability in Rebuild 3.5.5, which is due to a server-side request forgery...
2024年5月23日 18:26CVE-2024-1212: Progress Kemp LoadMaster – Command Injection
漏洞标题 CVE-2024-1212: Progress Kemp LoadMaster - Command Injection 漏洞描述 Unauthenticated remote attackers can access the system through the LoadMaster management interface, en...
2024年5月23日 14:42CVE-2024-11320: Pandora v7.0NG.777.3 – Remote Code Execution
漏洞标题 CVE-2024-11320: Pandora v7.0NG.777.3 - Remote Code Execution 漏洞描述 Arbitrary commands execution on the server by exploiting a command injection vulnerability in the LDA...
2024年5月23日 11:35CVE-2024-2928: MLflow < 2.11.3 - Path Traversal
漏洞标题 CVE-2024-2928: MLflow < 2.11.3 - Path Traversal 漏洞描述 MLflow versions prior to 2.11.3 are vulnerable to a Path Traversal attack due to improper URI fragment parsing....
2024年5月23日 09:21
