排序
CVE-2019-14322: Pallets Werkzeug <0.15.5 - Local File Inclusion
漏洞标题 CVE-2019-14322: Pallets Werkzeug <0.15.5 - Local File Inclusion 漏洞描述 Pallets Werkzeug before 0.15.5 is susceptible to local file inclusion because SharedDataMiddlew...
2019年1月20日 13:41CVE-2023-0948: WordPress Japanized for WooCommerce <2.5.8 - Cross-Site Scripting
漏洞标题 CVE-2023-0948: WordPress Japanized for WooCommerce <2.5.8 - Cross-Site Scripting 漏洞描述 WordPress Japanized for WooCommerce plugin before 2.5.8 is susceptible to cros...
2023年12月15日 18:40CVE-2010-1534: Joomla! Component Shoutbox Pro – Local File Inclusion
漏洞标题 CVE-2010-1534: Joomla! Component Shoutbox Pro - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the Shoutbox Pro (com_shoutbox) component for Joomla! ...
2010年4月19日 05:57CVE-2022-0864: UpdraftPlus < 1.22.9 - Cross-Site Scripting
漏洞标题 CVE-2022-0864: UpdraftPlus < 1.22.9 - Cross-Site Scripting 漏洞描述 The plugin does not sanitise and escape the updraft_interval parameter before outputting it back in ...
2022年8月17日 17:57CVE-2021-41648: PuneethReddyHC action.php SQL Injection
漏洞标题 CVE-2021-41648: PuneethReddyHC action.php SQL Injection 漏洞描述 An unauthenticated SQL injection vulnerability exists in PuneethReddyHC Online Shopping through the /actio...
2021年5月20日 13:16CVE-2019-10758: mongo-express Remote Code Execution
漏洞标题 CVE-2019-10758: mongo-express Remote Code Execution 漏洞描述 mongo-express before 0.54.0 is vulnerable to remote code execution via endpoints that uses the `toBSON` method...
2019年2月2日 14:34CVE-2023-6421: WordPress Download Manager – File Password Exposure
漏洞标题 CVE-2023-6421: WordPress Download Manager - File Password Exposure 漏洞描述 The WordPress Download Manager plugin contains a vulnerability that allows attackers to obtain ...
2023年12月22日 13:50CVE-2010-1983: Joomla! Component redTWITTER 1.0 – Local File Inclusion
漏洞标题 CVE-2010-1983: Joomla! Component redTWITTER 1.0 - Local File Inclusion 漏洞描述 A drectory traversal vulnerability in the redTWITTER (com_redtwitter) component 1.0.x inclu...
2010年5月20日 11:00CVE-2022-0540: Atlassian Jira Seraph – Authentication Bypass
漏洞标题 CVE-2022-0540: Atlassian Jira Seraph - Authentication Bypass 漏洞描述 Jira Seraph allows a remote, unauthenticated attacker to bypass authentication by sending a specially...
2022年8月24日 12:53CVE-2021-22205: GitLab CE/EE – Remote Code Execution
漏洞标题 CVE-2021-22205: GitLab CE/EE - Remote Code Execution 漏洞描述 GitLab CE/EE starting from 11.9 does not properly validate image files that were passed to a file parser, res...
2021年5月26日 00:39CVE-2019-9733: JFrog Artifactory 6.7.3 – Admin Login Bypass
漏洞标题 CVE-2019-9733: JFrog Artifactory 6.7.3 - Admin Login Bypass 漏洞描述 JFrog Artifactory 6.7.3 is vulnerable to an admin login bypass issue because by default the access-adm...
2019年2月17日 05:43CVE-2023-22518: Atlassian Confluence Server – Improper Authorization
漏洞标题 CVE-2023-22518: Atlassian Confluence Server - Improper Authorization 漏洞描述 All versions of Confluence Data Center and Server are affected by this unexploited vulnerabil...
2023年12月28日 04:48CVE-2010-1982: Joomla! Component JA Voice 2.0 – Local File Inclusion
漏洞标题 CVE-2010-1982: Joomla! Component JA Voice 2.0 - Local File Inclusion 漏洞描述 A directory traversal vulnerability in the JA Voice (com_javoice) component 2.0 for Joomla! a...
2010年6月14日 05:00CVE-2022-0349: WordPress NotificationX <2.3.9 - SQL Injection
漏洞标题 CVE-2022-0349: WordPress NotificationX <2.3.9 - SQL Injection 漏洞描述 WordPress NotificationX plugin prior to 2.3.9 contains a SQL injection vulnerability. The plugin ...
2022年8月30日 03:35CVE-2021-44910: SpringBlade – Information Leakage
漏洞标题 CVE-2021-44910: SpringBlade - Information Leakage 漏洞描述 SpringBlade is a comprehensive project upgraded and optimized from a commercial-grade project, featuring both a ...
2021年6月1日 09:34CVE-2019-8943: WordPress Core 5.0.0 – Crop-image Shell Upload
漏洞标题 CVE-2019-8943: WordPress Core 5.0.0 - Crop-image Shell Upload 漏洞描述 WordPress through 5.0.3 allows Path Traversal in wp_crop_image(). An attacker (who has privileges to...
2019年3月5日 02:37
