• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞CVE漏洞

CVE漏洞

RSS
  • CVE-2021-0604
    CVE-2021-0604
    In generateFileInfo of BluetoothOppSendFileInfo.java, there is a possible way to share private files over Bluetooth due to a confused deputy. This could lead to local information disclosure with no ad ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:24 | 回复:0
  • CVE-2021-0654
    CVE-2021-0654
    In isRealSnapshot of TaskThumbnailView.java, there is possible data exposure due to a missing permission check. This could lead to local information disclosure from locked profiles with no additional ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:23 | 回复:0
  • CVE-2021-24117
    CVE-2021-24117
    In Apache Teaclave Rust SGX SDK 1.1.3, a side-channel vulnerability in base64 PEM file decoding allows system-level (administrator) attackers to obtain information about secret RSA keys via a controll ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:29 | 回复:0
  • CVE-2021-33211
    CVE-2021-33211
    A Directory Traversal vulnerability in the Unzip feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to write files to arbitrary directories via relative paths in ZIP archive ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:50 | 回复:0
  • CVE-2021-33212
    CVE-2021-33212
    A Cross-site scripting (XSS) vulnerability in the View in Browser feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted SVG ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:32 | 回复:0
  • CVE-2021-33213
    CVE-2021-33213
    An SSRF vulnerability in the Upload from URL feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to retrieve HTTP and FTP files from the internal server network by inserting ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:27 | 回复:0
  • CVE-2021-35527
    CVE-2021-35527
    Password autocomplete vulnerability in the web application password field of Hitachi ABB Power Grids eSOMS allows attacker to gain access to user credentials that are stored by the browser. This issue ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:31 | 回复:0
  • CVE-2020-25444
    CVE-2020-25444
    Cross Site Scripting (XSS) vulnerability in Booking Core - Ultimate Booking System Booking Core 1.7.0 via the (1) About Yourself” section under the “My Profile” page, (2) “Hotel Policy” field un ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:35 | 回复:0
  • CVE-2020-25445
    CVE-2020-25445
    The “Subscribe” feature in Ultimate Booking System Booking Core 1.7.0 is vulnerable to CSV formula injection. The input containing the excel formula is not being sanitized by the application. As a r ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:31 | 回复:0
  • CVE-2020-27379
    CVE-2020-27379
    Cross Site Request Forgery (CSRF) vulnerability in Booking Core - Ultimate Booking System Booking Core 1.7.0 . The CSRF token is not being validated when the request is sent as a GET method. This resu ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:34 | 回复:0
  • CVE-2021-22778
    CVE-2021-22778
    Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:27 | 回复:0
  • CVE-2021-22779
    CVE-2021-22779
    Authentication Bypass by Spoofing vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Control Expert V15.0 SP1, EcoSt ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:40 | 回复:0
  • CVE-2021-22780
    CVE-2021-22780
    Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:33 | 回复:0
  • CVE-2021-22781
    CVE-2021-22781
    Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:43 | 回复:0
  • CVE-2021-22782
    CVE-2021-22782
    Missing Encryption of Sensitive Data vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:38 | 回复:0
  • CVE-2021-36716
    CVE-2021-36716
    A ReDoS (regular expression denial of service) flaw was found in the Segment is-email package before 1.0.1 for Node.js. An attacker that is able to provide crafted input to the isEmail(input) function ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:28 | 回复:0
  • CVE-2020-18144
    CVE-2020-18144
    SQL Injection Vulnerability in ECTouch v2 via the integral_min parameter in index.php.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:27 | 回复:0
  • CVE-2020-29146
    CVE-2020-29146
    A cross site scripting (XSS) vulnerability in index.php of Wayang-CMS v1.0 allows attackers to execute arbitrary web scripts or HTML via a constructed payload created by adding the X-Forwarded-For fie ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:27 | 回复:0
  • CVE-2020-29147
    CVE-2020-29147
    A SQL injection vulnerability in wy_controlls/wy_side_visitor.php of Wayang-CMS v1.0 allows attackers to obtain sensitive database information.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:32 | 回复:0
  • CVE-2021-23407
    CVE-2021-23407
    This affects the package elFinder.Net.Core from 0 and before 1.2.4. The user-controlled file name is not properly sanitized before it is used to create a file system path.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:21 | 回复:0
  • CVE-2021-31859
    CVE-2021-31859
    Incorrect privileges in the MU55 FlexiSpooler service in YSoft SafeQ 6 6.0.55 allows local user privilege escalation by overwriting the executable file via an alternative data stream.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:20 | 回复:0
  • CVE-2021-36740
    CVE-2021-36740
    Varnish Cache, with HTTP/2 enabled, allows request smuggling and VCL authorization bypass via a large Content-Length header for a POST request. This affects Varnish Enterprise 6.0.x before 6.0.8r3, an ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:23 | 回复:0
  • CVE-2020-18145
    CVE-2020-18145
    Cross Site Scripting (XSS) vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:16 | 回复:0
  • CVE-2021-31183
    CVE-2021-31183
    Windows TCP/IP Driver Denial of Service Vulnerability This CVE ID is unique from CVE-2021-33772, CVE-2021-34490.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:30 | 回复:0
  • CVE-2021-31196
    CVE-2021-31196
    Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31206, CVE-2021-34473.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:21 | 回复:0
  • CVE-2021-31206
    CVE-2021-31206
    Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31196, CVE-2021-34473.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:45 | 回复:0
  • CVE-2021-31947
    CVE-2021-31947
    HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-33775, CVE-2021-33776, CVE-2021-33777, CVE-2021-33778.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:26 | 回复:0
  • CVE-2021-31961
    CVE-2021-31961
    Windows InstallService Elevation of Privilege Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:47 | 回复:0
  • CVE-2021-31979
    CVE-2021-31979
    Windows Kernel Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-33771, CVE-2021-34514.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:23 | 回复:0
  • CVE-2021-31984
    CVE-2021-31984
    Power BI Remote Code Execution Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:21 | 回复:0
  • CVE-2021-33740
    CVE-2021-33740
    Windows Media Remote Code Execution Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:19 | 回复:0
  • CVE-2021-33743
    CVE-2021-33743
    Windows Projected File System Elevation of Privilege Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:23 | 回复:0
  • CVE-2021-33744
    CVE-2021-33744
    Windows Secure Kernel Mode Security Feature Bypass Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:28 | 回复:0
  • CVE-2021-33745
    CVE-2021-33745
    Windows DNS Server Denial of Service Vulnerability This CVE ID is unique from CVE-2021-34442, CVE-2021-34444, CVE-2021-34499.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:19 | 回复:0
  • CVE-2021-33746
    CVE-2021-33746
    Windows DNS Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-33754, CVE-2021-33780, CVE-2021-34494, CVE-2021-34525.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:23 | 回复:0
  • CVE-2021-33749
    CVE-2021-33749
    Windows DNS Snap-in Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-33750, CVE-2021-33752, CVE-2021-33756.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:30 | 回复:0
  • CVE-2021-33750
    CVE-2021-33750
    Windows DNS Snap-in Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-33749, CVE-2021-33752, CVE-2021-33756.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:27 | 回复:0
  • CVE-2021-33751
    CVE-2021-33751
    Storage Spaces Controller Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-34460, CVE-2021-34510, CVE-2021-34512, CVE-2021-34513.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:30 | 回复:0
  • CVE-2021-33752
    CVE-2021-33752
    Windows DNS Snap-in Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-33749, CVE-2021-33750, CVE-2021-33756.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:23 | 回复:0
  • CVE-2021-33753
    CVE-2021-33753
    Microsoft Bing Search Spoofing Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:25 | 阅读:40 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap