CVE漏洞

OGeek|极客世界-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2021-41682

There is a heap-use-after-free at ecma-helpers-string.c:1940 in ecma_compare_ecma_non_direct_strings in JerryScript 2.4.0……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：113 | 回复：0
CVE-2021-41683

There is a stack-overflow at ecma-helpers.c:326 in ecma_get_lex_env_type in JerryScript 2.4.0……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：110 | 回复：0
CVE-2022-1720

Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing the software, memory modification, and possible remote execution.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：130 | 回复：0
CVE-2022-2134

Denial of Service in GitHub repository inventree/inventree prior to 0.8.0.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：142 | 回复：0
CVE-2022-31794

An issue was discovered on Fujitsu ETERNUS CentricStor CS8000 (Control Center) devices before 8.1A SP02 P04. The vulnerability resides in the requestTempFile function in hw_view.php. An attacker is ab ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：120 | 回复：0
CVE-2022-31795

An issue was discovered on Fujitsu ETERNUS CentricStor CS8000 (Control Center) devices before 8.1A SP02 P04. The vulnerability resides in the grel_finfo function in grel.php. An attacker is able to in ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：122 | 回复：0
CVE-2022-32983

Knot Resolver through 5.5.1 may allow DNS cache poisoning when there is an attempt to limit forwarding actions by filters.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：166 | 回复：0
CVE-2022-33913

In Mahara 21.04 before 21.04.6, 21.10 before 21.10.4, and 22.04.2, files can sometimes be downloaded through thumb.php with no permission check.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：137 | 回复：0
CVE-2022-22317

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 218281.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：148 | 回复：0
CVE-2022-22318

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：165 | 回复：0
CVE-2022-22414

IBM Robotic Process Automation 21.0.2 could allow a local user to obtain sensitive web service configuration credentials from system memory. IBM X-Force ID: 223026.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：90 | 回复：0
CVE-2022-2128

Unrestricted Upload of File with Dangerous Type in GitHub repository polonel/trudesk prior to 1.2.4.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：101 | 回复：0
CVE-2017-20065

A vulnerability was found in Supsystic Popup Plugin 1.7.6 and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The attack ma ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：109 | 回复：0
CVE-2017-20066

A vulnerability has been found in Adminer Login 1.4.4 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to improper access controls. It is possible to laun ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：101 | 回复：0
CVE-2022-31062

### Impact A plugin public script can be used to read content of system files. ### Patches Upgrade to version 1.0.2. ### Workarounds `b/deploy/index.php` file can be deleted if deploy feature is not u ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：112 | 回复：0
CVE-2017-20067

A vulnerability was found in Hindu Matrimonial Script. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/. The manipulation of the argumen ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：107 | 回复：0
CVE-2017-20068

A vulnerability was found in Hindu Matrimonial Script. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/usermanagement.php. The manipulation leads ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：116 | 回复：0
CVE-2017-20069

A vulnerability classified as critical has been found in Hindu Matrimonial Script. This affects an unknown part of the file /admin/countrymanagement.php. The manipulation leads to improper privilege m ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：133 | 回复：0
CVE-2017-20070

A vulnerability classified as critical was found in Hindu Matrimonial Script. This vulnerability affects unknown code of the file /admin/communitymanagement.php. The manipulation leads to improper pri ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：116 | 回复：0
CVE-2017-20071

A vulnerability, which was classified as critical, has been found in Hindu Matrimonial Script. This issue affects some unknown processing of the file /admin/renewaldue.php. The manipulation leads to i ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：162 | 回复：0
CVE-2017-20072

A vulnerability, which was classified as critical, was found in Hindu Matrimonial Script. Affected is an unknown function of the file /admin/generalsettings.php. The manipulation leads to improper pri ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：111 | 回复：0
CVE-2017-20073

A vulnerability has been found in Hindu Matrimonial Script and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/cms.php. The manipulation leads to ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：149 | 回复：0
CVE-2017-20074

A vulnerability was found in Hindu Matrimonial Script and classified as critical. Affected by this issue is some unknown functionality of the file /admin/newsletter1.php. The manipulation leads to imp ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：107 | 回复：0
CVE-2017-20075

A vulnerability was found in Hindu Matrimonial Script. It has been classified as critical. This affects an unknown part of the file /admin/payment.php. The manipulation leads to improper privilege man ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：136 | 回复：0
CVE-2017-20076

A vulnerability was found in Hindu Matrimonial Script. It has been declared as critical. This vulnerability affects unknown code of the file /admin/searchview.php. The manipulation leads to improper p ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：142 | 回复：0
CVE-2017-20077

A vulnerability was found in Hindu Matrimonial Script. It has been rated as critical. This issue affects some unknown processing of the file /admin/success_story.php. The manipulation leads to imprope ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：128 | 回复：0
CVE-2017-20078

A vulnerability classified as critical has been found in Hindu Matrimonial Script. Affected is an unknown function of the file /admin/featured.php. The manipulation leads to improper privilege managem ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：122 | 回复：0
CVE-2017-20079

A vulnerability classified as critical was found in Hindu Matrimonial Script. Affected by this vulnerability is an unknown functionality of the file /admin/photo.php. The manipulation leads to imprope ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：114 | 回复：0
CVE-2017-20080

A vulnerability, which was classified as critical, has been found in Hindu Matrimonial Script. Affected by this issue is some unknown functionality of the file /admin/googleads.php. The manipulation l ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：114 | 回复：0
CVE-2017-20081

A vulnerability, which was classified as critical, was found in Hindu Matrimonial Script. This affects an unknown part of the file /admin/reports.php. The manipulation leads to improper privilege mana ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：139 | 回复：0
CVE-2022-23072

In Recipes, versions 1.0.5 through 1.2.5 are vulnerable to Stored Cross-Site Scripting (XSS), in “Add to Cart” functionality. When a victim accesses the food list page, then adds a new Food with a m ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：149 | 回复：0
CVE-2022-31800

An unauthenticated, remote attacker could upload malicious logic to devices based on ProConOS/ProConOS eCLR in order to gain full control over the device.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：171 | 回复：0
CVE-2022-31801

An unauthenticated, remote attacker could upload malicious logic to the devices based on ProConOS/ProConOS eCLR in order to gain full control over the device.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：154 | 回复：0
CVE-2022-23073

In Recipes, versions 1.0.5 through 1.2.5 are vulnerable to Stored Cross-Site Scripting (XSS), in copy to clipboard functionality. When a victim accesses the food list page, then adds a new Food with a ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：141 | 回复：0
CVE-2022-23074

In Recipes, versions 0.17.0 through 1.2.5 are vulnerable to Stored Cross-Site Scripting (XSS), in the ‘Name’ field of Keyword, Food and Unit components. When a victim accesses the Keyword/Food/Unit ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：122 | 回复：0
CVE-2022-31302

maccms8 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Server Group text field.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：137 | 回复：0
CVE-2022-31303

maccms10 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Server Group text field.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：135 | 回复：0
CVE-2022-31306

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_array_convert_to_slow_array at src/njs_array.c.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：148 | 回复：0
CVE-2022-31307

Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_string_offset at src/njs_string.c.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：117 | 回复：0
CVE-2022-31373

SolarView Compact v6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Solar_AiConf.php.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:07 | 阅读：122 | 回复：0