排序
CVE-2025-49706: Microsoft SharePoint Server – Authentication Bypass
漏洞标题 CVE-2025-49706: Microsoft SharePoint Server - Authentication Bypass 漏洞描述 Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perf...
2025年11月18日 08:10CVE-2018-17283: Zoho ManageEngine OpManager – SQL Injection
漏洞标题 CVE-2018-17283: Zoho ManageEngine OpManager - SQL Injection 漏洞描述 Zoho ManageEngine OpManager before 12.3 Build 123196 does not require authentication for /oputilsServl...
2018年9月8日 17:01CVE-2023-37645: EyouCms v1.6.3 – Information Disclosure
漏洞标题 CVE-2023-37645: EyouCms v1.6.3 - Information Disclosure 漏洞描述 EyouCms v1.6.3 was discovered to contain an information disclosure vulnerability via the component /custom...
2023年10月24日 19:48CVE-2004-2687: Distccd v1 – Remote Code Execution
漏洞标题 CVE-2004-2687: Distccd v1 - Remote Code Execution 漏洞描述 distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows r...
2004年11月7日 03:17CVE-2022-29006: Directory Management System 1.0 – SQL Injection
漏洞标题 CVE-2022-29006: Directory Management System 1.0 - SQL Injection 漏洞描述 Directory Management System 1.0 contains multiple SQL injection vulnerabilities via the username a...
2022年7月3日 20:08CVE-2021-25299: Nagios XI 5.7.5 – Cross-Site Scripting
漏洞标题 CVE-2021-25299: Nagios XI 5.7.5 - Cross-Site Scripting 漏洞描述 Nagios XI 5.7.5 contains a cross-site scripting vulnerability in the file /usr/local/nagiosxi/html/admin/ss...
2021年4月1日 12:06CVE-2025-24514: Ingress-Nginx Controller – Configuration Injection via Unsanitized `auth-url` Annotation
漏洞标题 CVE-2025-24514: Ingress-Nginx Controller - Configuration Injection via Unsanitized `auth-url` Annotation 漏洞描述 A security issue was discovered in ingress-nginx https-//...
2025年11月30日 15:04CVE-2018-17246: Kibana – Local File Inclusion
漏洞标题 CVE-2018-17246: Kibana - Local File Inclusion 漏洞描述 Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker ...
2018年9月17日 22:22CVE-2023-4450: JeecgBoot JimuReport – Template injection
漏洞标题 CVE-2023-4450: JeecgBoot JimuReport - Template injection 漏洞描述 A vulnerability was found in jeecgboot JimuReport up to 1.6.0. It has been declared as critical. Affected...
2023年10月31日 09:23CVE-2006-1681: Cherokee HTTPD <=0.5 - Cross-Site Scripting
漏洞标题 CVE-2006-1681: Cherokee HTTPD <=0.5 - Cross-Site Scripting 漏洞描述 Cherokee HTTPD 0.5 and earlier contains a cross-site scripting vulnerability which allows remote att...
2006年8月23日 02:39CVE-2022-0434: WordPress Page Views Count <2.4.15 - SQL Injection
漏洞标题 CVE-2022-0434: WordPress Page Views Count <2.4.15 - SQL Injection 漏洞描述 WordPress Page Views Count plugin prior to 2.4.15 contains an unauthenticated SQL injection v...
2022年7月8日 20:16CVE-2021-21801: Advantech R-SeeNet – Cross-Site Scripting
漏洞标题 CVE-2021-21801: Advantech R-SeeNet - Cross-Site Scripting 漏洞描述 Advantech R-SeeNet contains a cross-site scripting vulnerability in the device_graph_page.php script via...
2021年4月6日 08:25CVE-2025-6058: WPBookit <= 1.0.4 - Unauthenticated Arbitrary File Upload
漏洞标题 CVE-2025-6058: WPBookit <= 1.0.4 - Unauthenticated Arbitrary File Upload 漏洞描述 The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to missi...
2025年12月11日 16:55CVE-2018-9205: Drupal avatar_uploader v7.x-1.0-beta8 – Local File Inclusion
漏洞标题 CVE-2018-9205: Drupal avatar_uploader v7.x-1.0-beta8 - Local File Inclusion 漏洞描述 In avatar_uploader v7.x-1.0-beta8 the view.php program doesn't restrict file path...
2018年10月7日 19:02CVE-2023-5863: phpMyFAQ < 3.2.0 - Cross-site Scripting
漏洞标题 CVE-2023-5863: phpMyFAQ < 3.2.0 - Cross-site Scripting 漏洞描述 Cross-site Scripting (XSS) Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.2. PoC代码
2023年11月5日 02:18CVE-2007-5728: phpPgAdmin <=4.1.1 - Cross-Site Scripting
漏洞标题 CVE-2007-5728: phpPgAdmin <=4.1.1 - Cross-Site Scripting 漏洞描述 phpPgAdmin 3.5 to 4.1.1, and possibly 4.1.2, is vulnerable to cross-site scripting and allows remote a...
2007年10月18日 20:34
