排序
CVE-2023-23752: Joomla! Webservice – Password Disclosure
漏洞标题 CVE-2023-23752: Joomla! Webservice - Password Disclosure 漏洞描述 An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized acce...
2023年11月10日 09:01CVE-2023-22463: KubePi JwtSigKey – Admin Authentication Bypass
漏洞标题 CVE-2023-22463: KubePi JwtSigKey - Admin Authentication Bypass 漏洞描述 KubePi is a k8s panel. The jwt authentication function of KubePi through version 1.6.2 uses hard-co...
2023年11月10日 04:32CVE-2023-2813: WordPress Multiple Themes – Reflected Cross-Site Scripting
漏洞标题 CVE-2023-2813: Wordpress Multiple Themes - Reflected Cross-Site Scripting 漏洞描述 All of the above Aapna WordPress theme through 1.3, Anand WordPress theme through 1.2, A...
2023年11月9日 13:45Adobe ColdFusion /CFIDE/adminapi/accessmanager.cfc 代码执行漏洞(CVE-2023-29300)
漏洞标题 Adobe ColdFusion /CFIDE/adminapi/accessmanager.cfc 代码执行漏洞(CVE-2023-29300) 漏洞描述 Adobe ColdFusion 是 Adobe 公司开发的用于 Web 应用程序开发的商业应用程序服务器。...
2023年11月9日 11:45CVE-2023-46455: GL.iNet <= 4.3.7 - Arbitrary File Write
漏洞标题 CVE-2023-46455: GL.iNet <= 4.3.7 - Arbitrary File Write 漏洞描述 GL.iNet <= 4.3.7 is vulnerable to an arbitrary file write exploit, allowing an attacker to overwrite...
2023年11月8日 17:37CVE-2023-48241: XWiki < 4.10.15 - Information Disclosure
漏洞标题 CVE-2023-48241: XWiki < 4.10.15 - Information Disclosure 漏洞描述 The Solr-based search suggestion provider that also duplicates as generic JavaScript API for search re...
2023年11月7日 21:36CVE-2023-3277: MStore API <= 4.10.7 - Unauthorized Account Access and Privilege Escalation
漏洞标题 CVE-2023-3277: MStore API <= 4.10.7 - Unauthorized Account Access and Privilege Escalation 漏洞描述 The MStore API plugin for WordPress is vulnerable to Unauthorized Ac...
2023年11月7日 19:42CVE-2023-3843: mooDating 1.2 – Cross-site scripting
漏洞标题 CVE-2023-3843: mooDating 1.2 - Cross-site scripting 漏洞描述 A vulnerability was found in mooSocial mooDating 1.2. It has been classified as problematic. Affected is an un...
2023年11月7日 15:32CVE-2023-1318: osTicket < v1.16.6 - Cross-Site Scripting
漏洞标题 CVE-2023-1318: osTicket < v1.16.6 - Cross-Site Scripting 漏洞描述 Cross-site Scripting (XSS) - Generic in GitHub repository osticket/osticket prior to v1.16.6. PoC代码
2023年11月7日 00:57CVE-2023-29084: ManageEngine ADManager Plus – Command Injection
漏洞标题 CVE-2023-29084: ManageEngine ADManager Plus - Command Injection 漏洞描述 Zoho ManageEngine ADManager Plus through 7180 allows for authenticated users to exploit command in...
2023年11月6日 23:59CVE-2023-32315: Openfire Administration Console – Authentication Bypass
漏洞标题 CVE-2023-32315: Openfire Administration Console - Authentication Bypass 漏洞描述 Openfire is an XMPP server licensed under the Open Source Apache License. Openfire's ...
2023年11月6日 02:57CVE-2023-30869: Easy Digital Downloads – Privilege Escalation
漏洞标题 CVE-2023-30869: Easy Digital Downloads - Privilege Escalation 漏洞描述 Improper Authentication vulnerability in Easy Digital Downloads plugin allows unauth. Privilege Esca...
2023年11月6日 02:38CVE-2023-43472: MLFlow < 2.8.1 - Sensitive Information Disclosure
漏洞标题 CVE-2023-43472: MLFlow < 2.8.1 - Sensitive Information Disclosure 漏洞描述 An issue in MLFlow versions 2.8.1 and before allows a remote attacker to obtain sensitive inf...
2023年11月5日 20:12CVE-2023-43261: Milesight Routers – Information Disclosure
漏洞标题 CVE-2023-43261: Milesight Routers - Information Disclosure 漏洞描述 A critical security vulnerability has been identified in Milesight Industrial Cellular Routers, comprom...
2023年11月5日 19:42CVE-2023-1315: osTicket < v1.16.6 - Cross-Site Scripting
漏洞标题 CVE-2023-1315: osTicket < v1.16.6 - Cross-Site Scripting 漏洞描述 Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to v1.16.6. PoC代...
2023年11月5日 19:06CVE-2023-24737: PMB v7.4.6 – Cross-Site Scripting
漏洞标题 CVE-2023-24737: PMB v7.4.6 - Cross-Site Scripting 漏洞描述 PMB v7.4.6 allows an attacker to perform a reflected XSS on export_z3950.php via the 'query' parameter...
2023年11月5日 11:34
