CVE漏洞

OGeek|极客世界-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2021-24176

The JH 404 Logger WordPress plugin through 1.1 doesn't sanitise the referer and path of 404 pages, when they are output in the dashboard, which leads to executing arbitrary JavaScript code in the ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：16 | 回复：0
CVE-2021-24177

In the default configuration of the File Manager WordPress plugin before 7.1, a Reflected XSS can occur on the endpoint /wp-admin/admin.php?page=wp_file_manager_properties when a payload is submitted ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：18 | 回复：0
CVE-2021-24180

Unvalidated input and lack of output encoding within the Related Posts for WordPress plugin before 2.0.4 lead to a Reflected Cross-Site Scripting (XSS) vulnerability within the 'lang' GET para ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：11 | 回复：0
CVE-2021-24181

The tutor_mark_answer_as_correct AJAX action from the Tutor LMS â€“ eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that cou ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：25 | 回复：0
CVE-2021-24182

The tutor_quiz_builder_get_answers_by_question AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that cou ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：22 | 回复：0
CVE-2021-24183

The tutor_quiz_builder_get_question_form AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：10 | 回复：0
CVE-2021-24184

Several AJAX endpoints in the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 were unprotected, allowing students to modify course information and elevate their privile ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：20 | 回复：0
CVE-2021-24185

The tutor_place_rating AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploite ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：14 | 回复：0
CVE-2021-24186

The tutor_answering_quiz_question/get_answer_by_id function pair from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection th ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：23 | 回复：0
CVE-2021-24187

The setting page of the SEO Redirection Plugin - 301 Redirect Manager WordPress plugin before 6.4 is vulnerable to reflected Cross-Site Scripting (XSS) as user input is not properly sanitised before b ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：21 | 回复：0
CVE-2021-24196

The Social Slider Widget WordPress plugin before 1.8.5 allowed Authenticated Reflected XSS in the plugin settings page as the â€˜token_errorâ€™ parameter can be controlled by users and it is dir ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：20 | 回复：0
CVE-2021-24201

In the Elementor Website Builder WordPress plugin before 3.1.4, the column element (includes/elements/column.php) accepts an â€˜html_tagâ€™ parameter. Although the element control lists a fixed ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：19 | 回复：0
CVE-2021-24202

In the Elementor Website Builder WordPress plugin before 3.1.4, the heading widget (includes/widgets/heading.php) accepts a ‘header_size’ parameter. Although the element control lists a fixed set of ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：15 | 回复：0
CVE-2021-24203

In the Elementor Website Builder WordPress plugin before 3.1.4, the divider widget (includes/widgets/divider.php) accepts an ‘html_tag’ parameter. Although the element control lists a fixed set of p ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：14 | 回复：0
CVE-2021-24204

In the Elementor Website Builder WordPress plugin before 3.1.4, the accordion widget (includes/widgets/accordion.php) accepts a ‘title_html_tag’ parameter. Although the element control lists a fixed ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：15 | 回复：0
CVE-2021-24205

In the Elementor Website Builder WordPress plugin before 3.1.4, the icon box widget (includes/widgets/icon-box.php) accepts a ‘title_size’ parameter. Although the element control lists a fixed set o ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：21 | 回复：0
CVE-2021-24206

In the Elementor Website Builder WordPress plugin before 3.1.4, the image box widget (includes/widgets/image-box.php) accepts a ‘title_size’ parameter. Although the element control lists a fixed set ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：12 | 回复：0
CVE-2021-24207

By default, the WP Page Builder WordPress plugin before 1.2.4 allows subscriber-level users to edit and make changes to any and all posts pages - user roles must be specifically blocked from editing p ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：16 | 回复：0
CVE-2021-24208

The editor of the WP Page Builder WordPress plugin before 1.2.4 allows lower-privileged users to insert unfiltered HTML, including JavaScript, into pages via the “Raw HTML” widget and the “Custom H ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：29 | 回复：0
CVE-2021-24209

The WP Super Cache WordPress plugin before 1.7.2 was affected by an authenticated (admin+) RCE in the settings page due to input validation failure and weak $cache_path check in the WP Super Cache Set ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：22 | 回复：0
CVE-2021-24210

There is an open redirect in the PhastPress WordPress plugin before 1.111 that allows an attacker to malform a request to a page with the plugin and then redirect the victim to a malicious page. There ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：29 | 回复：0
CVE-2021-24211

The WordPress Related Posts plugin through 3.6.4 contains an authenticated (admin+) stored XSS vulnerability in the title field on the settings page. By exploiting that an attacker will be able to exe ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：6 | 回复：0
CVE-2021-24212

The WooCommerce Help Scout WordPress plugin before 2.9.1 (https://woocommerce.com/products/woocommerce-help-scout/) allows unauthenticated users to upload any files to the site which by default will e ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：7 | 回复：0
CVE-2020-19595

Buffer overflow vulnerability in Core FTP Server v2 Build 697, via a crafted username.……

作者：菜鸟教程小白 | 时间：2022-2-5 10:29 | 阅读：9 | 回复：0
CVE-2021-29930

An issue was discovered in the arenavec crate through 2021-01-12 for Rust. A drop of uninitialized memory can sometimes occur upon a panic in T::default().……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：19 | 回复：0
CVE-2021-29931

An issue was discovered in the arenavec crate through 2021-01-12 for Rust. A double drop can sometimes occur upon a panic in T::drop().……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：13 | 回复：0
CVE-2021-29932

An issue was discovered in the parse_duration crate through 2021-03-18 for Rust. It allows attackers to cause a denial of service (CPU and memory consumption) via a duration string with a large expone ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：18 | 回复：0
CVE-2021-29933

An issue was discovered in the insert_many crate through 2021-01-26 for Rust. Elements may be dropped twice if a .next() method panics.……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：7 | 回复：0
CVE-2021-29934

An issue was discovered in PartialReader in the uu_od crate before 0.0.4 for Rust. Attackers can read the contents of uninitialized memory locations via a user-provided Read operation.……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：6 | 回复：0
CVE-2021-29935

An issue was discovered in the rocket crate before 0.4.7 for Rust. uri::Formatter can have a use-after-free if a user-provided function panics.……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：6 | 回复：0
CVE-2021-29936

An issue was discovered in the adtensor crate through 2021-01-11 for Rust. There is a drop of uninitialized memory via the FromIterator implementation for Vector and Matrix.……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：12 | 回复：0
CVE-2021-29937

An issue was discovered in the telemetry crate through 2021-02-17 for Rust. There is a drop of uninitialized memory if a value.clone() call panics within misc::vec_with_size().……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：16 | 回复：0
CVE-2021-29938

An issue was discovered in the slice-deque crate through 2021-02-19 for Rust. A double drop can occur in SliceDeque::drain_filter upon a panic in a predicate function.……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：20 | 回复：0
CVE-2021-29939

An issue was discovered in the stackvector crate through 2021-02-19 for Rust. There is an out-of-bounds write in StackVec::extend if size_hint provides certain anomalous data.……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：19 | 回复：0
CVE-2021-29940

An issue was discovered in the through crate through 2021-02-18 for Rust. There is a double free (in through and through_and) upon a panic of the map function.……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：18 | 回复：0
CVE-2021-29941

An issue was discovered in the reorder crate through 2021-02-24 for Rust. swap_index has an out-of-bounds write if an iterator returns a len() that is too small.……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：11 | 回复：0
CVE-2021-29942

An issue was discovered in the reorder crate through 2021-02-24 for Rust. swap_index can return uninitialized values if an iterator returns a len() that is too large.……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：20 | 回复：0
CVE-2021-29083

Improper neutralization of special elements used in an OS command in SYNO.Core.Network.PPPoE in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote authenticated users to execute arb ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：17 | 回复：0
CVE-2021-28918

Improper input validation of octal strings in netmask npm package v1.0.6 and below allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks on many of the dependent ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：12 | 回复：0
CVE-2021-20234

An uncontrolled resource consumption (memory leak) flaw was found in the ZeroMQ client in versions before 4.3.3 in src/pipe.cpp. This issue causes a client that connects to multiple malicious or compr ...……

作者：菜鸟教程小白 | 时间：2022-2-5 10:28 | 阅读：18 | 回复：0