漏洞 - 第117页-OGeek|极客世界-中国程序员成长平台

OGeek|极客世界-中国程序员成长平台 › 门户 ›漏洞

漏洞

RSS

下级分类:

CVE漏洞

CVE-2021-24996

The IDPay for Contact Form 7 WordPress plugin through 2.1.2 does not sanitise and escape the idpay_error parameter before outputting it back in the page leading to a Reflected Cross-Site Scripting……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：56 | 回复：0
CVE漏洞

CVE-2021-24995

The HTML5 Responsive FAQ WordPress plugin through 2.8.5 does not properly sanitise and escape some of its settings, which could allow a high privilege users to perform Cross-Site Scripting attacks eve ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：37 | 回复：0
CVE漏洞

CVE-2021-24982

The Child Theme Generator WordPress plugin through 2.2.7 does not sanitise escape the parade parameter before outputting it back, leading to a Reflected Cross-Site Scripting in the admin dashboard……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：33 | 回复：0
CVE漏洞

CVE-2021-24966

The Error Log Viewer WordPress plugin through 1.1.1 does not validate the path of the log file to clear, allowing high privilege users to clear arbitrary files on the web server, including those outsi ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：33 | 回复：0
CVE漏洞

CVE-2021-24959

The WP Email Users WordPress plugin through 1.7.6 does not escape the data_raw parameter in the weu_selected_users_1 AJAX action, available to any authenticated users, allowing them to perform SQL inj ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：29 | 回复：0
CVE漏洞

CVE-2021-24958

The Meks Easy Photo Feed Widget WordPress plugin before 1.2.4 does not have capability and CSRF checks in the meks_save_business_selected_account AJAX action, available to any authenticated user, and ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：27 | 回复：0
CVE漏洞

CVE-2021-24950

The Insight Core WordPress plugin through 1.0 does not have any authorisation and CSRF checks in the insight_customizer_options_import (available to any authenticated user), does not validate user inp ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：25 | 回复：0
CVE漏洞

CVE-2021-24940

The Persian Woocommerce WordPress plugin through 5.8.0 does not escape the s parameter before outputting it back in an attribute in the admin dashboard, which could lead to a Reflected Cross-Site Scri ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：53 | 回复：0
CVE漏洞

CVE-2021-24897

The Add Subtitle WordPress plugin through 1.1.0 does not sanitise or escape the sub-title field (available only with classic editor) when output in the page, which could allow users with a role as low ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：26 | 回复：0
CVE漏洞

CVE-2021-24895

The Cybersoldier WordPress plugin before 1.7.0 does not sanitise and escape the URL settings before outputting it in an attribute, which could allow high privilege users to perform Cross-Site Scriptin ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：28 | 回复：0
CVE漏洞

CVE-2021-24692

The Simple Download Monitor WordPress plugin before 3.9.5 allows users with a role as low as Contributor to download any file on the web server (such as wp-config.php) via a path traversal vector.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：27 | 回复：0
CVE漏洞

CVE-2022-24576

GPAC 1.0.1 is affected by Use After Free through MP4Box.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：26 | 回复：0
CVE漏洞

CVE-2022-24575

GPAC 1.0.1 is affected by a stack-based buffer overflow through MP4Box.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：32 | 回复：0
CVE漏洞

CVE-2022-24574

GPAC 1.0.1 is affected by a NULL pointer dereference in gf_dump_vrml_field.isra ().……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：28 | 回复：0
CVE漏洞

CVE-2022-0946

Stored XSS viva cshtm file upload in GitHub repository star7th/showdoc prior to v2.10.4.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：27 | 回复：0
CVE漏洞

CVE-2022-24387

With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.1 ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：36 | 回复：0
CVE漏洞

CVE-2022-24386

Stored XSS in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：30 | 回复：0
CVE漏洞

CVE-2022-24385

A Direct Object Access vulnerability in SmarterTools SmarterTrack leads to information disclosure This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：37 | 回复：0
CVE漏洞

CVE-2022-24384

Cross-site Scripting (XSS) vulnerability in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：35 | 回复：0
CVE漏洞

CVE-2022-0941

Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to v2.10.4.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：34 | 回复：0
CVE漏洞

CVE-2022-23943

Out-of-bounds Write vulnerability in mod_sed of Apache HTTP Server allows an attacker to overwrite heap memory with possibly attacker provided data. This issue affects Apache HTTP Server 2.4 version 2 ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：34 | 回复：0
CVE漏洞

CVE-2022-22721

If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apach ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：38 | 回复：0
CVE漏洞

CVE-2022-22720

Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：47 | 回复：0
CVE漏洞

CVE-2022-22719

A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue affects Apache HTTP Server 2.4.52 and earlier.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：58 | 回复：0
CVE漏洞

CVE-2022-0940

Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to v2.10.4.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：58 | 回复：0
CVE漏洞

CVE-2022-0938

Stored XSS via file upload in GitHub repository star7th/showdoc prior to v2.10.4.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：55 | 回复：0
CVE漏洞

CVE-2022-0341

Cross-site Scripting (XSS) - Stored in GitHub repository vanessa219/vditor prior to 3.8.12.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：51 | 回复：0
CVE漏洞

CVE-2022-0937

Stored xss in showdoc through file upload in GitHub repository star7th/showdoc prior to 2.10.4.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：48 | 回复：0
CVE漏洞

CVE-2021-43954

The DefaultRepositoryAdminService class in Fisheye and Crucible before version 4.8.9 allowed remote attackers, who have 'can add repository permission', to enumerate the existence of internal ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：55 | 回复：0
CVE漏洞

CVE-2021-46709

phpLiteAdmin through 1.9.8.2 allows XSS via the index.php newRows parameter (aka num or number).……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：44 | 回复：0
CVE漏洞

CVE-2022-26981

Liblouis through 3.21.0 has a buffer overflow in compilePassOpcode in compileTranslationTable.c (called, indirectly, by tools/lou_checktable.c).……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：43 | 回复：0
CVE漏洞

CVE-2022-24696

Mirametrix Glance before 5.1.1.42207 (released on 2018-08-30) allows a local attacker to elevate privileges. NOTE: this is unrelated to products from the glance.com and glance.net websites.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：35 | 回复：0
CVE漏洞

CVE-2022-24128

Timescale TimescaleDB 1.x and 2.x before 2.5.2 may allow privilege escalation during extension installation. The installation process uses commands such as CREATE x IF NOT EXIST that allow an unprivil ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：33 | 回复：0
CVE漏洞

CVE-2021-45889

An issue was discovered in PONTON X/P Messenger before 3.11.2. Several functions are vulnerable to reflected XSS, as demonstrated by private/index.jsp?partners/ShowNonLocalPartners.do?localID= or priv ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：36 | 回复：0
CVE漏洞

CVE-2021-45888

An issue was discovered in PONTON X/P Messenger before 3.11.2. The navigation tree that is shown on the left side of every page of the web application is vulnerable to XSS: it allows injection of Java ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：31 | 回复：0
CVE漏洞

CVE-2021-45887

An issue was discovered in PONTON X/P Messenger before 3.11.2. Due to path traversal in private/SchemaSetUpload.do for uploaded ZIP files, an executable script can be uploaded by web application admin ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：35 | 回复：0
CVE漏洞

CVE-2021-45886

An issue was discovered in PONTON X/P Messenger before 3.11.2. Anti-CSRF tokens are globally valid, making the web application vulnerable to a weakened version of CSRF, where an arbitrary token of a l ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：42 | 回复：0
CVE漏洞

CVE-2022-23960

Certain Arm Cortex and Neoverse processors through 2022-03-08 do not properly restrict cache speculation, aka Spectre-BHB. An attacker can leverage the shared branch history in the Branch History Buff ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：44 | 回复：0
CVE漏洞

CVE-2021-36368

** DISPUTED ** An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：74 | 回复：0
CVE漏洞

CVE-2022-26967

GPAC 2.0 allows a heap-based buffer overflow in gf_base64_encode. It can be triggered via MP4Box.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:52 | 阅读：116 | 回复：0