• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞CVE漏洞

CVE漏洞

RSS
  • CVE-2022-28425
    CVE-2022-28425
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/pagerole.phpaction=displayvalue=1roleid=.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:28 | 回复:0
  • CVE-2022-28426
    CVE-2022-28426
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/pagerole.phpaction=editroleid=.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:47 | 回复:0
  • CVE-2022-28427
    CVE-2022-28427
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/inbox.phpaction=readmsgid=.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:29 | 回复:0
  • CVE-2022-28429
    CVE-2022-28429
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/inbox.phpaction=deletemsgid=.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:37 | 回复:0
  • CVE-2022-28431
    CVE-2022-28431
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/siteoptions.phpsocial=removesid=2.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:43 | 回复:0
  • CVE-2022-28432
    CVE-2022-28432
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin.php?id=siteoptionssocial=displayvalue=0sid=2.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:50 | 回复:0
  • CVE-2022-28433
    CVE-2022-28433
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.phpaction=displayvalue=Showuserid=.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:42 | 回复:0
  • CVE-2022-28434
    CVE-2022-28434
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin.php?id=siteoptionssocial=editsid=2.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:43 | 回复:0
  • CVE-2022-28435
    CVE-2022-28435
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/siteoptions.phpaction=displaygoalvalue=1roleid=1.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:39 | 回复:0
  • CVE-2022-28436
    CVE-2022-28436
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.phpaction=displayvalue=Hideuserid=.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:60 | 回复:0
  • CVE-2022-28437
    CVE-2022-28437
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.phpaction=typeuserrole=Adminuserid=3.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:62 | 回复:0
  • CVE-2022-28438
    CVE-2022-28438
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.phpaction=typeuserrole=Useruserid=.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:46 | 回复:0
  • CVE-2022-28439
    CVE-2022-28439
    Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.phpaction=deleteuserid=4.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:67 | 回复:0
  • CVE-2022-28440
    CVE-2022-28440
    An arbitrary file upload vulnerability in UCMS v1.6 allows attackers to execute arbitrary code via a crafted PHP file.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:108 | 回复:0
  • CVE-2022-28443
    CVE-2022-28443
    UCMS v1.6 was discovered to contain an arbitrary file deletion vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:64 | 回复:0
  • CVE-2022-28444
    CVE-2022-28444
    UCMS v1.6 was discovered to contain an arbitrary file read vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:41 | 回复:0
  • CVE-2022-28445
    CVE-2022-28445
    KiteCMS v1.1.1 was discovered to contain an arbitrary file read vulnerability via the background management module.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:60 | 回复:0
  • CVE-2022-22558
    CVE-2022-22558
    Dell PowerEdge Server BIOS contains an Improper SMM communication buffer verification vulnerability. A Local High Privileged attacker could potentially exploit this vulnerability leading to arbitrary ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:57 | 回复:0
  • CVE-2022-24423
    CVE-2022-24423
    Dell iDRAC8 versions prior to 2.83.83.83 contain a denial of service vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to cause resource exhaustion in the w ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:62 | 回复:0
  • CVE-2022-24424
    CVE-2022-24424
    Dell EMC AppSync versions from 3.9 to 4.3 contain a path traversal vulnerability in AppSync server. A remote unauthenticated attacker may potentially exploit this vulnerability to gain unauthorized re ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:90 | 回复:0
  • CVE-2022-26856
    CVE-2022-26856
    Dell EMC Repository Manager version 3.4.0 contains a plain-text password storage vulnerability. A local attacker could potentially exploit this vulnerability, leading to the disclosure of certain user ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:101 | 回复:0
  • CVE-2022-29280
    CVE-2022-29280
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-28366. Reason: This candidate is a reservation duplicate of CVE-2022-28366. Notes: All CVE users should reference CVE-2022-28366 ins ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:126 | 回复:0
  • CVE-2022-28366
    CVE-2022-28366
    Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction (PI) input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Ne ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:139 | 回复:0
  • CVE-2022-26594
    CVE-2022-26594
    Multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.5 through 7.4.0, and Liferay DXP 7.3 before service pack 3 allow remote attackers to inject arbitrary web script or HTML via a ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:19 | 回复:0
  • CVE-2022-27258
    CVE-2022-27258
    Multiple Cross-Site Scripting (XSS) vulnerabilities in Hubzilla 7.0.3 and earlier allows remote attacker to include arbitrary web script or HTML via the rpath parameter.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:19 | 回复:0
  • CVE-2022-28109
    CVE-2022-28109
    Selenium Selenium Grid (formerly Selenium Standalone Server) Fixed in 4.0.0-alpha-7 is affected by: DNS rebinding. The impact is: execute arbitrary code (remote). The component is: WebDriver endpoint ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:20 | 回复:0
  • CVE-2022-29268
    CVE-2022-29268
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:29 | 回复:0
  • CVE-2021-36205
    CVE-2021-36205
    Under certain circumstances the session token is not cleared on logout.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:24 | 回复:0
  • CVE-2021-36828
    CVE-2021-36828
    Authenticated (admin+) Stored Cross-Site Scripting (XSS) in WP Maintenance (WordPress plugin) = 6.0.4 affects multiple inputs.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:31 | 回复:0
  • CVE-2021-42230
    CVE-2021-42230
    Seowon 130-SLC router all versions as of 2021-09-15 is vulnerable to Remote Code Execution via the queriesCnt parameter.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:30 | 回复:0
  • CVE-2022-27849
    CVE-2022-27849
    Sensitive Information Disclosure (sac-export.csv) in Simple Ajax Chat (WordPress plugin) = 20220115……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:33 | 回复:0
  • CVE-2022-27850
    CVE-2022-27850
    Cross-Site Request Forgery (CSRF) in Simple Ajax Chat (WordPress plugin) = 20220115 allows an attacker to clear the chat log or delete a chat message.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:38 | 回复:0
  • CVE-2022-27851
    CVE-2022-27851
    Cross-Site Request Forgery (CSRF) in Use Any Font (WordPress plugin) = 6.1.7 allows an attacker to deactivate the API key.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:62 | 回复:0
  • CVE-2022-27852
    CVE-2022-27852
    Multiple Unauthenticated Stored Cross-Site Scripting (XSS) vulnerabilities in KB Support (WordPress plugin) = 1.5.5……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:39 | 回复:0
  • CVE-2021-44481
    CVE-2021-44481
    An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of parameter validation in calls to memcpy in check_and_set_timeout in sr_unix/ztimeoutroutines.c allows attackers to attempt to r ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:31 | 回复:0
  • CVE-2021-44482
    CVE-2021-44482
    An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of input validation in calls to do_verify in sr_unix/do_verify.c allows attackers to attempt to jump to a NULL pointer by corrupti ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:30 | 回复:0
  • CVE-2021-44483
    CVE-2021-44483
    An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of input validation in calls to eb_div in sr_port/eb_muldiv.c allows attackers to crash the application by performing a divide by ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:31 | 回复:0
  • CVE-2021-44484
    CVE-2021-44484
    An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of NULL checks in calls to emit_trip in sr_port/emit_code.c allows attackers to crash the application by dereferencing a NULL poin ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:26 | 回复:0
  • CVE-2021-44485
    CVE-2021-44485
    An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of NULL checks in trip_gen in sr_port/emit_code.c allows attackers to crash the application by dereferencing a NULL pointer.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:28 | 回复:0
  • CVE-2021-44486
    CVE-2021-44486
    An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can manipulate the value of a function pointer used in op_write in sr_port/op_write.c in order to gain con ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:15 | 阅读:31 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap