漏洞 - 第512页-OGeek|极客世界-中国程序员成长平台

OGeek|极客世界-中国程序员成长平台 › 门户 ›漏洞

漏洞

RSS

下级分类:

CVE漏洞

CVE-2021-24932

The Auto Featured Image (Auto Post Thumbnail) WordPress plugin before 3.9.3 does not sanitise and escape the post_id parameter before outputting back in an admin page within a JS block, leading to a R ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：14 | 回复：0
CVE漏洞

CVE-2021-24925

The Modern Events Calendar Lite WordPress plugin before 6.1.5 does not sanitise and escape the current_month_divider parameter of its mec_list_load_more AJAX call (available to both unauthenticated an ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：19 | 回复：0
CVE漏洞

CVE-2021-24922

The Pixel Cat WordPress plugin before 2.6.2 does not have CSRF check when saving its settings, and did not sanitise as well as escape some of them, which could allow attacker to make a logged in admin ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：15 | 回复：0
CVE漏洞

CVE-2021-24896

The Caldera Forms WordPress plugin before 1.9.5 does not sanitise and escape the Form Name before outputting it in attributes, which could allow high privilege users to perform Cross-Site Scripting at ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：30 | 回复：0
CVE漏洞

CVE-2021-24872

The Get Custom Field Values WordPress plugin before 4.0 allows users with a role as low as Contributor to access other posts metadata without validating the permissions. Eg. contributors can access ad ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：10 | 回复：0
CVE漏洞

CVE-2021-24871

The Get Custom Field Values WordPress plugin before 4.0.1 does not escape custom fields before outputting them in the page, which could allow users with a role as low as contributor to perform Cross-S ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：22 | 回复：0
CVE漏洞

CVE-2021-24863

The WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection Plugin StopBadBots WordPress plugin before 6.67 does not sanitise and escape the User Agent before using it in a SQL statem ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：28 | 回复：0
CVE漏洞

CVE-2021-24861

The Quotes Collection WordPress plugin through 2.5.2 does not validate and escape the bulkcheck parameter before using it in a SQL statement, leading to a SQL injection……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：14 | 回复：0
CVE漏洞

CVE-2021-24859

The User Meta Shortcodes WordPress plugin through 0.5 registers a shortcode that allows any user with a role as low as contributor to access other users metadata by specifying the user login as a para ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：13 | 回复：0
CVE漏洞

CVE-2021-24857

The ToTop Link WordPress plugin through 1.7.1 passes base64 encoded user input to the unserialize() PHP function, which could lead to PHP Object injection if a plugin installed on the blog has a suita ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：9 | 回复：0
CVE漏洞

CVE-2021-24855

The Display Post Metadata WordPress plugin before 1.5.0 adds a shortcode to print out custom fields, however their content is not sanitised or escaped which could allow users with a role as low as Con ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：18 | 回复：0
CVE漏洞

CVE-2021-24848

The mediamaticAjaxRenameCategory AJAX action of the Mediamatic WordPress plugin before 2.8.1, available to any authenticated user, does not sanitise the categoryID parameter before using it in a SQL s ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：10 | 回复：0
CVE漏洞

CVE-2021-24845

The Improved Include Page WordPress plugin through 1.2 allows passing shortcode attributes with post_type post_status which can be used to retrieve arbitrary content. This way, users with a role as l ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：10 | 回复：0
CVE漏洞

CVE-2021-24836

The Temporary Login Without Password WordPress plugin before 1.7.1 does not have authorisation and CSRF checks when updating its settings, which could allows any logged-in users, such as subscribers t ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：8 | 回复：0
CVE漏洞

CVE-2021-24819

The Page/Post Content Shortcode WordPress plugin through 1.0 does not have proper authorisation in place, allowing users with a role as low as contributor to access draft/private/password protected/tr ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：10 | 回复：0
CVE漏洞

CVE-2021-24818

The WP Limits WordPress plugin through 1.0 does not have CSRF check when saving its settings, allowing attacker to make a logged in admin change them, which could make the blog unstable by setting low ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：8 | 回复：0
CVE漏洞

CVE-2021-24817

The Ultimate NoFollow WordPress plugin through 1.4.8 does not sanitise and escape the href attribute of its shortcodes, allowing users with a role as low as contributor to perform Cross-Site Scripting ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：37 | 回复：0
CVE漏洞

CVE-2021-24795

The Filter Portfolio Gallery WordPress plugin through 1.5 is lacking Cross-Site Request Forgery (CSRF) check when deleting a Gallery, which could allow attackers to make a logged in admin delete arbit ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：20 | 回复：0
CVE漏洞

CVE-2021-24792

The Shiny Buttons WordPress plugin through 1.1.0 does not have any authorisation and CSRF in place when saving a template (wpbtn_save_template function hooked to the init action), nor sanitise and esc ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：27 | 回复：0
CVE漏洞

CVE-2021-24790

The Contact Form Advanced Database WordPress plugin through 1.0.8 does not have any authorisation as well as CSRF checks in its delete_cf7_data and export_cf7_data AJAX actions, available to any authe ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：21 | 回复：0
CVE漏洞

CVE-2021-24784

The WP Admin Logo Changer WordPress plugin through 1.0 does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin update them via a CSRF attack.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：33 | 回复：0
CVE漏洞

CVE-2021-24782

The Flex Local Fonts WordPress plugin through 1.0.0 does not escape the Class Name field when adding a font, which could allow hight privilege users to perform Cross-Site Scripting attacks even when t ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：16 | 回复：0
CVE漏洞

CVE-2021-24780

The Single Post Exporter WordPress plugin through 1.1.1 does not have CSRF checks when saving its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and give ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：18 | 回复：0
CVE漏洞

CVE-2021-24771

The Inspirational Quote Rotator WordPress plugin through 1.0.0 does not sanitize and escape some of its quote fields when adding/editing a quote as admin, leading to Stored Cross-Site scripting issues ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：26 | 回复：0
CVE漏洞

CVE-2021-24756

The WP System Log WordPress plugin before 1.0.21 does not sanitise, validate and escape the IP address retrieved from login requests before outputting them in the admin dashboard, which could allow un ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：14 | 回复：0
CVE漏洞

CVE-2021-24747

The SEO Booster WordPress plugin before 3.8 allows for authenticated SQL injection via the fn_my_ajaxified_dataloader_ajax AJAX request as the $_REQUEST parameter is not properly escaped leading to bl ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：17 | 回复：0
CVE漏洞

CVE-2021-24705

The NEX-Forms WordPress plugin through 7.9.4 does not escape some of its settings and form fields before outputting them in attributes, which could allow high privilege users to perform Cross-Site Scr ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：11 | 回复：0
CVE漏洞

CVE-2021-20867

Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in moving the field group which may allow a user to mo ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：11 | 回复：0
CVE漏洞

CVE-2021-20866

Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in obtaining the user list which may allow a user to o ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：18 | 回复：0
CVE漏洞

CVE-2021-20865

Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in browsing database which may allow a user to browse ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：21 | 回复：0
CVE漏洞

CVE-2021-44155

An issue was discovered in /goform/login_process in Reprise RLM 14.2. When an attacker attempts to login, the response if a username is valid includes Login Failed, but does not include this string if ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：14 | 回复：0
CVE漏洞

CVE-2021-44154

An issue was discovered in Reprise RLM 14.2. By using an admin account, an attacker can write a payload to /goform/edit_opt, which will then be triggered when running the diagnostics (via /goform/diag ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：11 | 回复：0
CVE漏洞

CVE-2021-44153

An issue was discovered in Reprise RLM 14.2. When editing the license file, it is possible for an admin user to enable an option to run arbitrary executables, as demonstrated by an ISV demo C:\Windows ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：23 | 回复：0
CVE漏洞

CVE-2021-44152

An issue was discovered in Reprise RLM 14.2. Because /goform/change_password_process does not verify authentication or authorization, an unauthenticated user can change the password of any existing us ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：13 | 回复：0
CVE漏洞

CVE-2021-44151

An issue was discovered in Reprise RLM 14.2. As the session cookies are small, an attacker can hijack any existing sessions by bruteforcing the 4 hex-character session cookie on the Windows version (t ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：16 | 回复：0
CVE漏洞

CVE-2021-40858

Auerswald COMpact 5500R devices before 8.2B allow Arbitrary File Disclosure. A sub-admin can read the cleartext Admin password via the fileName=../../etc/passwd substring.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：16 | 回复：0
CVE漏洞

CVE-2021-40857

Auerswald COMpact 5500R devices before 8.2B allow Privilege Escalation via the passwd=1 substring.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：17 | 回复：0
CVE漏洞

CVE-2021-40856

Auerswald COMfortel 1400 IP and 2600 IP before 2.8G devices allow Authentication Bypass via the /about/../ substring.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：28 | 回复：0
CVE漏洞

CVE-2021-44848

In Cibele Thinfinity VirtualUI before 3.0, /changePassword returns different responses for invalid authentication requests depending on whether the username exists.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：18 | 回复：0
CVE漏洞

CVE-2021-44847

A stack-based buffer overflow in handle_request function in DHT.c in toxcore 0.1.9 through 0.1.11 and 0.2.0 through 0.2.12 (caused by an improper length calculation during the handling of received net ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:36 | 阅读：21 | 回复：0