• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号

漏洞

RSS

下级分类:

  • CVE-2021-45341
    CVE-2021-45341
    A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:17 | 回复:0
  • CVE-2021-45340
    CVE-2021-45340
    In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:19 | 回复:0
  • CVE-2022-0268
    CVE-2022-0268
    Cross-site Scripting (XSS) - Stored in Packagist getgrav/grav prior to 1.7.28.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:21 | 回复:0
  • CVE-2022-0338
    CVE-2022-0338
    Improper Privilege Management in Conda loguru prior to 0.5.3.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:28 | 回复:0
  • CVE-2022-23935
    CVE-2022-23935
    lib/Image/ExifTool.pm in ExifTool before 12.38 mishandles a $file =~ /\|$/ check, leading to command injection.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:30 | 回复:0
  • CVE-2021-46483
    CVE-2021-46483
    Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:24 | 回复:0
  • CVE-2021-46482
    CVE-2021-46482
    Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src/jsiNumber.c.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:43 | 回复:0
  • CVE-2021-46481
    CVE-2021-46481
    Jsish v3.5.0 was discovered to contain a memory leak via linenoise at src/linenoise.c.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:26 | 回复:0
  • CVE-2021-46480
    CVE-2021-46480
    Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiValueObjDelete in src/jsiEval.c. This vulnerability can lead to a Denial of Service (DoS).……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:28 | 回复:0
  • CVE-2021-46478
    CVE-2021-46478
    Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiClearStack in src/jsiEval.c. This vulnerability can lead to a Denial of Service (DoS).……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:32 | 回复:0
  • CVE-2021-46477
    CVE-2021-46477
    Jsish v3.5.0 was discovered to contain a heap buffer overflow via RegExp_constructor in src/jsiRegexp.c. This vulnerability can lead to a Denial of Service (DoS).……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:35 | 回复:0
  • CVE-2021-46475
    CVE-2021-46475
    Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsi_ArraySliceCmd in src/jsiArray.c. This vulnerability can lead to a Denial of Service (DoS).……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:47 | 回复:0
  • CVE-2021-46474
    CVE-2021-46474
    Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiEvalCodeSub in src/jsiEval.c. This vulnerability can lead to a Denial of Service (DoS).……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:56 | 回复:0
  • CVE-2021-44994
    CVE-2021-44994
    There is an Assertion ''JERRY_CONTEXT (jmem_heap_allocated_size) == 0'' failed at /jerry-core/jmem/jmem-heap.c in Jerryscript 3.0.0.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:109 | 回复:0
  • CVE-2021-44993
    CVE-2021-44993
    There is an Assertion ''ecma_is_value_boolean (base_value)'' failed at /jerry-core/ecma/operations/ecma-get-put-value.c in Jerryscript 3.0.0.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:143 | 回复:0
  • CVE-2021-44992
    CVE-2021-44992
    There is an Assertion ''ecma_object_is_typedarray (obj_p)'' failed at /jerry-core/ecma/operations/ecma-typedarray-object.c in Jerryscript 3.0.0.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:106 | 回复:0
  • CVE-2021-44988
    CVE-2021-44988
    Jerryscript v3.0.0 and below was discovered to contain a stack overflow via ecma_find_named_property in ecma-helpers.c.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:60 | 回复:0
  • CVE-2021-43394
    CVE-2021-43394
    Unisys OS 2200 Messaging Integration Services (NTSI) 7R3B IC3 and IC4, 7R3C, and 7R3D has an Incorrect Implementation of an Authentication Algorithm. An LDAP password is not properly validated.……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:81 | 回复:0
  • CVE-2021-36343
    CVE-2021-36343
    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 07:48 | 阅读:27 | 回复:0
  • CVE-2022-0177
    CVE-2022-0177
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This CVE has been rejected as it was incorrectly assigned. All references and descriptions in this candidate have been removed to prevent acciden ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:10 | 阅读:36 | 回复:0
  • CVE-2022-22554
    CVE-2022-22554
    Dell EMC System Update, version 1.9.2 and prior, contain an Unprotected Storage of Credentials vulnerability. A local attacker with user privleges could potentially exploit this vulnerability leading ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:10 | 阅读:29 | 回复:0
  • CVE-2022-21715
    CVE-2022-21715
    CodeIgniter4 is the 4.x branch of CodeIgniter, a PHP full-stack web framework. A cross-site scripting (XSS) vulnerability was found in `API\ResponseTrait` in Codeigniter4 prior to version 4.1.8. Attac ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:10 | 阅读:45 | 回复:0
  • CVE-2022-21711
    CVE-2022-21711
    elfspirit is an ELF static analysis and injection framework that parses, manipulates, and camouflages ELF files. When analyzing the ELF file format in versions prior to 1.1, there is an out-of-bounds ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:10 | 阅读:23 | 回复:0
  • CVE-2022-21710
    CVE-2022-21710
    ShortDescription is a MediaWiki extension that provides local short description support. A cross-site scripting (XSS) vulnerability exists in versions prior to 2.3.4. On a wiki that has the ShortDescr ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:21 | 回复:0
  • CVE-2021-46451
    CVE-2021-46451
    An SQL Injection vulnerabilty exists in Sourcecodester Online Project Time Management System 1.0 via the pid parameter in the load_file function.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:28 | 回复:0
  • CVE-2021-45226
    CVE-2021-45226
    An issue was discovered in COINS Construction Cloud 11.12. Due to improper validation of user-controlled HTTP headers, attackers can cause it to send password-reset e-mails pointing to arbitrary websi ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:22 | 回复:0
  • CVE-2021-45225
    CVE-2021-45225
    An issue was discovered in COINS Construction Cloud 11.12. Due to improper input neutralization, it is vulnerable to reflected cross-site scripting (XSS) via malicious links (affecting the search wind ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:30 | 回复:0
  • CVE-2021-45224
    CVE-2021-45224
    An issue was discovered in COINS Construction Cloud 11.12. In several locations throughout the application, JavaScript code is passed as a URL parameter. Attackers can trivially alter this code to cau ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:26 | 回复:0
  • CVE-2021-45223
    CVE-2021-45223
    An issue was discovered in COINS Construction Cloud 11.12. Due to insufficient input neutralization, it is vulnerable to denial of service attacks via forced server crashes.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:27 | 回复:0
  • CVE-2021-45222
    CVE-2021-45222
    An issue was discovered in COINS Construction Cloud 11.12. Due to logical flaws in the human ressources interface, it is vulnerable to privilege escalation by HR personnel.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:31 | 回复:0
  • CVE-2021-43589
    CVE-2021-43589
    Dell EMC Unity, Dell EMC UnityVSA and Dell EMC Unity XT versions prior to 5.1.2.0.5.007 contain an operating system (OS) command injection Vulnerability. A locally authenticated user with high privile ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:31 | 回复:0
  • CVE-2021-43588
    CVE-2021-43588
    Dell EMC Data Protection Central version 19.5 contains an Improper Input Validation Vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to denial of ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:25 | 回复:0
  • CVE-2021-36349
    CVE-2021-36349
    Dell EMC Data Protection Central versions 19.5 and prior contain a Server Side Request Forgery vulnerability in the DPC DNS client processing. A remote malicious user could potentially exploit this vu ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:24 | 回复:0
  • CVE-2021-36342
    CVE-2021-36342
    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:28 | 回复:0
  • CVE-2020-17383
    CVE-2020-17383
    A directory traversal vulnerability on Telos Z/IP One devices through 4.0.0r grants an unauthenticated individual root level access to the device's file system. This can be used to identify config ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:23 | 回复:0
  • CVE-2022-23126
    CVE-2022-23126
    TeslaMate before 1.25.1 (when using the default Docker configuration) allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. This occur ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:20 | 回复:0
  • CVE-2021-43420
    CVE-2021-43420
    SQL injection vulnerability in Login.php in Sourcecodester Online Payment Hub v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:22 | 回复:0
  • CVE-2021-42168
    CVE-2021-42168
    Cross Site Scripting (XSS) in Sourcecodester Try My Recipe (Recipe Sharing Website - CMS) by oretnom23, allows attackers to gain the PHPSESID or other unspecified impacts via the fullname parameter to ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:23 | 回复:0
  • CVE-2021-41930
    CVE-2021-41930
    Cross site scripting (XSS) vulnerability in Sourcecodester Online Covid Vaccination Scheduler System v1 by oretnom23, allows attackers to execute arbitrary code via the lid parameter to /scheduler/add ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:28 | 回复:0
  • CVE-2021-41928
    CVE-2021-41928
    SQL injection in Sourcecodester Try My Recipe (Recipe Sharing Website - CMS) 1.0 by oretnom23, allows attackers to execute arbitrary code via the rid parameter to the view_recipe page.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:09 | 阅读:29 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap