• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号

CVE漏洞

RSS
  • CVE-2021-36218
    CVE-2021-36218
    An issue was discovered in SKALE sgxwallet 1.58.3. sgx_disp_ippsAES_GCMEncrypt allows an out-of-bounds write, resulting in a segfault and compromised enclave. This issue describes a buffer overflow, w ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:50 | 回复:0
  • CVE-2021-36219
    CVE-2021-36219
    An issue was discovered in SKALE sgxwallet 1.58.3. The provided input for ECALL 14 triggers a branch in trustedEcdsaSign that frees a non-initialized pointer from the stack. An attacker can chain mult ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:56 | 回复:0
  • CVE-2021-37786
    CVE-2021-37786
    Certain Federal Office of Information Technology Systems and Telecommunication FOITT products are affected by improper handling of exceptional conditions. This affects COVID Certificate App IOS 2.2.0 ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:51 | 回复:0
  • CVE-2021-26587
    CVE-2021-26587
    A potential DOM-based Cross Site Scripting security vulnerability has been identified in HPE StoreOnce. The vulnerability could be remotely exploited to cause an elevation of privilege leading to part ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:49 | 回复:0
  • CVE-2021-36878
    CVE-2021-36878
    Cross-Site Request Forgery (CSRF) vulnerability in WordPress uListing plugin (versions = 2.0.5) makes it possible for attackers to update settings.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:59 | 回复:0
  • CVE-2021-37539
    CVE-2021-37539
    Zoho ManageEngine ADManager Plus before 7111 is vulnerable to unrestricted file which leads to Remote code execution.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:36 | 回复:0
  • CVE-2021-24569
    CVE-2021-24569
    The Cookie Notice Compliance for GDPR / CCPA WordPress plugin before 2.1.2 does not escape the value of its Button Text setting when outputting it in an attribute in the frontend, allowing high privi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:36 | 回复:0
  • CVE-2021-24610
    CVE-2021-24610
    The TranslatePress WordPress plugin before 2.0.9 does not implement a proper sanitisation on the translated strings. The 'trp_sanitize_string' function only removes script tag with a regex, st ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:35 | 回复:0
  • CVE-2021-24632
    CVE-2021-24632
    The Recipe Card Blocks by WPZOOM WordPress plugin before 2.8.1 does not escape the message parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting issue……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:37 | 回复:0
  • CVE-2021-24633
    CVE-2021-24633
    The Countdown Block WordPress plugin before 1.1.2 does not have authorisation in the eb_write_block_css AJAX action, which allows any authenticated user, such as Subscriber, to modify post contents di ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:53 | 回复:0
  • CVE-2021-24634
    CVE-2021-24634
    The Recipe Card Blocks by WPZOOM WordPress plugin before 2.8.3 does not properly sanitise or escape some of the properties of the Recipe Card Block (such as ingredientsLayout, iconSet, steps, ingredie ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:47 | 回复:0
  • CVE-2021-24643
    CVE-2021-24643
    The WP Map Block WordPress plugin before 1.2.3 does not escape some attributes of the WP Map Block, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting att ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:41 | 回复:0
  • CVE-2021-24652
    CVE-2021-24652
    The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10 performs incorrect checks before allowing any logged in user to perform some ajax based requests, allowing any user to mo ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:34 | 回复:0
  • CVE-2021-24659
    CVE-2021-24659
    The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10 allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the plugin's block. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:40 | 回复:0
  • CVE-2021-24660
    CVE-2021-24660
    The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with a role as low as Contributor to perform Stored Cross-Site Scriptin ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:34 | 回复:0
  • CVE-2021-24661
    CVE-2021-24661
    The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with Contributor roles or higher to read password-protected or private ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:42 | 回复:0
  • CVE-2021-24666
    CVE-2021-24666
    The Podlove Podcast Publisher WordPress plugin before 3.5.6 contains a 'Social Donations' module (not activated by default), which adds the rest route '/services/contributor/(?Pid+), take ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:43 | 回复:0
  • CVE-2021-24670
    CVE-2021-24670
    The CoolClock WordPress plugin before 4.3.5 does not escape some shortcode attributes, allowing users with a role as low as Contributor toperform Stored Cross-Site Scripting attacks……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:36 | 回复:0
  • CVE-2021-24671
    CVE-2021-24671
    The MX Time Zone Clocks WordPress plugin before 3.4.1 does not escape the time_zone attribute of the mxmtzc_time_zone_clocks shortcode, allowing users with a role as low as Contributor to perform Stor ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:37 | 回复:0
  • CVE-2021-28613
    CVE-2021-28613
    Adobe Creative Cloud Desktop Application version 5.4 (and earlier) is affected by a file handling vulnerability that could allow an attacker to arbitrarily overwrite a file. Exploitation of this issue ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:33 | 回复:0
  • CVE-2021-36841
    CVE-2021-36841
    Authenticated Stored Cross-Site Scripting (XSS) vulnerability in YITH Maintenance Mode (WordPress plugin) versions = 1.3.7, vulnerable parameter yith_maintenance_newsletter_submit_label. Possible even ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:36 | 回复:0
  • CVE-2021-36845
    CVE-2021-36845
    Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities in YITH Maintenance Mode (WordPress plugin) versions = 1.3.8, there are 46 vulnerable parameters that were missed by the vendor ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:29 | 回复:0
  • CVE-2021-36874
    CVE-2021-36874
    Authenticated Insecure Direct Object References (IDOR) vulnerability in WordPress uListing plugin (versions = 2.0.5).……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:53 | 回复:0
  • CVE-2021-36875
    CVE-2021-36875
    Authenticated Reflected Cross-Site Scripting (XSS) vulnerability in WordPress uListing plugin (versions = 2.0.5). Vulnerable parameters: filter, filter, filter, filter, filter.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:34 | 回复:0
  • CVE-2021-36876
    CVE-2021-36876
    Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in WordPress uListing plugin (versions = 2.0.5) as it lacks CSRF checks on plugin administration pages.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:49 | 回复:0
  • CVE-2021-36877
    CVE-2021-36877
    Cross-Site Request Forgery (CSRF) vulnerability in WordPress uListing plugin (versions = 2.0.5) makes it possible for attackers to modify user roles.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:27 | 回复:0
  • CVE-2021-36879
    CVE-2021-36879
    Unauthenticated Privilege Escalation vulnerability in WordPress uListing plugin (versions = 2.0.5). Possible if WordPress configuration allows user registration.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:33 | 回复:0
  • CVE-2021-36880
    CVE-2021-36880
    Unauthenticated SQL Injection (SQLi) vulnerability in WordPress uListing plugin (versions = 2.0.3), vulnerable parameter: custom.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:47 | 回复:0
  • CVE-2021-39818
    CVE-2021-39818
    Adobe InCopy version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious TIFF file, potentially resulting in arbitrary code execution in the con ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:43 | 回复:0
  • CVE-2021-39819
    CVE-2021-39819
    Adobe InCopy version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious XML file, potentially resulting in arbitrary code execution in the cont ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:24 | 回复:0
  • CVE-2021-39823
    CVE-2021-39823
    Adobe svg-native-viewer 8182d14dfad5d1e10f53ed830328d7d9a3cfa96d and earlier versions are affected by a heap buffer overflow vulnerability due to insecure handling of a malicious .svg file, potentiall ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:32 | 回复:0
  • CVE-2021-39824
    CVE-2021-39824
    Adobe Premiere Elements version 2021.2235820 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious png file, potentially resulting in arbitrary code ex ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:33 | 回复:0
  • CVE-2021-39825
    CVE-2021-39825
    Photoshop Elements versions 2021 build 19.0 (20210304.m.156367) (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the c ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:55 | 回复:0
  • CVE-2021-39826
    CVE-2021-39826
    Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary command execution vulnerability. An authenticated attacker could leverage this vulnerability to execute arbitrary comman ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:49 | 回复:0
  • CVE-2021-39827
    CVE-2021-39827
    Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:53 | 回复:0
  • CVE-2021-39828
    CVE-2021-39828
    Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by a privilege escalation vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability t ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:41 | 回复:0
  • CVE-2021-40700
    CVE-2021-40700
    Adobe Premiere Elements version 2021.2235820 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious TIFF file, potentially resulting in arbitrary code e ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:44 | 回复:0
  • CVE-2021-40701
    CVE-2021-40701
    Adobe Premiere Elements version 2021.2235820 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious m4a file, potentially resulting in arbitrary code ex ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:41 | 回复:0
  • CVE-2021-40702
    CVE-2021-40702
    Adobe Premiere Elements version 2021.2235820 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious psd file, potentially resulting in arbitrary code ex ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:44 | 回复:0
  • CVE-2021-40703
    CVE-2021-40703
    Adobe Premiere Elements version 2021.2235820 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious m4a file, potentially resulting in arbitrary code ex ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:51 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
专题导读
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap