漏洞标题 CVE-2020-35846: Agentejo Cockpit < 0.11.2 - NoSQL Injection 漏洞描述 Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php check function. T...

漏洞标题 CVE-2024-3495: Wordpress Country State City Dropdown <=2.7.2 - SQL Injection 漏洞描述 The Country State City Dropdown CF7 plugin for WordPress is vulnerable to SQL Inje...

漏洞标题 CVE-2017-14186: FortiGate FortiOS SSL VPN Web Portal - Cross-Site Scripting 漏洞描述 FortiGate FortiOS through SSL VPN Web Portal contains a cross-site scripting vulnerabi...

漏洞标题 Chamilo LMS 存在命令执行漏洞(CVE-2023-3368) 漏洞描述 Chamilo是一款可供用户免费下载的学习管理软件，该软件存在命令执行漏洞，可执行任意系统命令 PoC代码 暂无

漏洞标题 CVE-2022-28365: Reprise License Manager 14.2 - Information Disclosure 漏洞描述 Reprise License Manager 14.2 is susceptible to information disclosure via a GET request to /...

漏洞标题 CVE-2020-9315: Oracle iPlanet Web Server 7.0.x - Authentication Bypass 漏洞描述 Oracle iPlanet Web Server 7.0.x has incorrect access control for admingui/version URIs in t...

漏洞标题 CVE-2024-39646: WordPress Custom 404 Pro <= 3.11.1 - Reflected XSS 漏洞描述 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripti...

漏洞标题 Couchdb 垂直权限绕过漏洞(CVE-2017-12635) 漏洞描述 （CVE-2017-12635）是由于Erlang和 JavaScript 对 JSON解析方式的不同，在语句执行时产生差异性导致的。该漏洞可使非管理员用户赋...

漏洞标题 CVE-2023-27032: PrestaShop AdvancedPopupCreator - SQL Injection 漏洞描述 In the module “Advanced Popup Creator” (advancedpopupcreator) from Idnovate for PrestaShop, a gu...

漏洞标题 CVE-2022-1910: WordPress Shortcodes and Extra Features for Phlox <2.9.8 - Cross-Site Scripting 漏洞描述 WordPress Shortcodes and extra features plugin for the Phlox the...

漏洞标题 CVE-2020-19283: Jeesns 1.4.2 - Cross-Site Scripting 漏洞描述 Jeesns 1.4.2 is vulnerable to reflected cross-site scripting in the /newVersion component and allows attackers...

漏洞标题 CVE-2024-41628: Cluster Control CMON API - Directory Traversal 漏洞描述 Directory Traversal vulnerability in Severalnines Cluster Control 1.9.8 before 1.9.8-9778, 2.0.0 be...

漏洞标题 CVE-2017-9833: BOA Web Server 0.94.14 - Arbitrary File Access 漏洞描述 BOA Web Server 0.94.14 is susceptible to arbitrary file access. The server allows the injection of &...

漏洞标题 Ureport v2.1.7 CVE-2023-24189 XXE漏洞 漏洞描述 Ureport v2.1.7 CVE-2023-24189 XXE漏洞 日期: 2024-02-07 | 影响软件: Ureport v2.1.7 | PoC代码

漏洞标题 CVE-2022-46934: kkFileView 4.1.0 - Cross-Site Scripting 漏洞描述 kkFileView 4.1.0 is susceptible to cross-site scripting via the url parameter at /controller/OnlinePreview...

漏洞标题 CVE-2020-8512: IceWarp WebMail Server <=11.4.4.1 - Cross-Site Scripting 漏洞描述 IceWarp Webmail Server through 11.4.4.1 contains a cross-site scripting vulnerability i...