• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号

漏洞

RSS

下级分类:

  • CVE-2021-38320
    CVE-2021-38320
    The simpleSAMLphp Authentication WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to a reflected $_SERVER value in the ~/simplesamlphp-authentication.php file which allows attacker ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:21 | 回复:0
  • CVE-2021-38319
    CVE-2021-38319
    The More From Google WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to a reflected $_SERVER value in the ~/morefromgoogle.php file which allows attackers to inject arbitrary web ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:19 | 回复:0
  • CVE-2021-38318
    CVE-2021-38318
    The 3D Cover Carousel WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the id parameter in the ~/cover-carousel.php file which allows attackers to inject arbitrary web scripts, in ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:24 | 回复:0
  • CVE-2021-38317
    CVE-2021-38317
    The Konnichiwa! Membership WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the plan_id parameter in the ~/views/subscriptions.html.php file which allows attackers to inject arbitr ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:11 | 回复:0
  • CVE-2021-38316
    CVE-2021-38316
    The WP Academic People List WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the category_name parameter in the ~/admin-panel.php file which allows attackers to inject arbitrary we ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:17 | 回复:0
  • CVE-2021-28914
    CVE-2021-28914
    BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow the user to set a weak password because the strength is shown in configuration tool, but finally not enforced. This is usable and part of an a ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:18 | 回复:0
  • CVE-2021-25466
    CVE-2021-25466
    Improper scheme check vulnerability in Samsung Internet prior to version 15.0.2.47 allows attackers to perform Man-in-the-middle attack and obtain Samsung Account token.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:21 | 回复:0
  • CVE-2021-25465
    CVE-2021-25465
    An improper scheme check vulnerability in Samsung Themes prior to version 5.2.01 allows attackers to perform Man-in-the-middle attack.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:20 | 回复:0
  • CVE-2021-25464
    CVE-2021-25464
    An improper file management vulnerability in SamsungCapture prior to version 4.8.02 allows sensitive information leak.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:22 | 回复:0
  • CVE-2021-25463
    CVE-2021-25463
    Improper access control vulnerability in PENUP prior to version 3.8.00.18 allows arbitrary webpage loading in webview.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:17 | 回复:0
  • CVE-2021-25462
    CVE-2021-25462
    NULL pointer dereference vulnerability in NPU driver prior to SMR Sep-2021 Release 1 allows attackers to cause memory corruption.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:20 | 回复:0
  • CVE-2021-25461
    CVE-2021-25461
    An improper length check in APAService prior to SMR Sep-2021 Release 1 results in stack based Buffer Overflow.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:20 | 回复:0
  • CVE-2021-25460
    CVE-2021-25460
    An improper access control vulnerability in sspExit() in BlockchainTZService prior to SMR Sep-2021 Release 1 allows attackers to terminate BlockchainTZService.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:20 | 回复:0
  • CVE-2021-25459
    CVE-2021-25459
    An improper access control vulnerability in sspInit() in BlockchainTZService prior to SMR Sep-2021 Release 1 allows attackers to start BlockchainTZService.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:21 | 回复:0
  • CVE-2021-25458
    CVE-2021-25458
    NULL pointer dereference vulnerability in ION driver prior to SMR Sep-2021 Release 1 allows attackers to cause memory corruption.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:18 | 回复:0
  • CVE-2021-25457
    CVE-2021-25457
    An improper input validation vulnerability in DSP driver prior to SMR Sep-2021 Release 1 allows local attackers to get a limited kernel memory information.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:19 | 回复:0
  • CVE-2021-25456
    CVE-2021-25456
    OOB read vulnerability in libswmfextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute memcpy at arbitrary address via forged wmf file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:13 | 回复:0
  • CVE-2021-25455
    CVE-2021-25455
    OOB read vulnerability in libsaviextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to access arbitrary address through pointer via forged avi file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:15 | 回复:0
  • CVE-2021-25454
    CVE-2021-25454
    OOB read vulnerability in libsaacextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute remote DoS via forged aac file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:15 | 回复:0
  • CVE-2021-25453
    CVE-2021-25453
    Some improper access control in Bluetooth APIs prior to SMR Sep-2021 Release 1 allows untrusted application to get Bluetooth information.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:24 | 回复:0
  • CVE-2021-25452
    CVE-2021-25452
    An improper input validation vulnerability in loading graph file in DSP driver prior to SMR Sep-2021 Release 1 allows attackers to perform permanent denial of service on the device.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:20 | 回复:0
  • CVE-2021-25451
    CVE-2021-25451
    A PendingIntent hijacking in NetworkPolicyManagerService prior to SMR Sep-2021 Release 1 allows attackers to get IMSI data.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:30 | 回复:0
  • CVE-2021-25450
    CVE-2021-25450
    Path traversal vulnerability in FactoryAirCommnadManger prior to SMR Sep-2021 Release 1 allows attackers to write file as system uid via remote socket.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:22 | 回复:0
  • CVE-2021-25449
    CVE-2021-25449
    An improper input validation vulnerability in libsapeextractor library prior to SMR Sep-2021 Release 1 allows attackers to execute arbitrary code in mediaextractor process.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:26 | 回复:0
  • CVE-2021-39296
    CVE-2021-39296
    In OpenBMC 2.9, crafted IPMI messages allow an attacker to bypass authentication and gain full control of the system.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:23 | 回复:0
  • CVE-2021-28913
    CVE-2021-28913
    BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow unauthenticated attackers access to /webif/SecurityModule to validate the so called and hard coded unique 'eibPort String' which acts ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:21 | 回复:0
  • CVE-2021-28912
    CVE-2021-28912
    BAB TECHNOLOGIE GmbH eibPort V3. Each device has its own unique hard coded and weak root SSH key passphrase known as 'eibPort string'. This is usable and the final part of an attack chain to g ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:27 | 回复:0
  • CVE-2021-28911
    CVE-2021-28911
    BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow unauthenticated attackers access to /tmp path which contains some sensitive data (e.g. device serial number). Having those info, a possible lo ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:26 | 回复:0
  • CVE-2021-28910
    CVE-2021-28910
    BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 contains basic SSRF vulnerability. It allow unauthenticated attackers to request to any internal and external server.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:15 | 回复:0
  • CVE-2021-28909
    CVE-2021-28909
    BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow unauthenticated attackers to access uncontrolled the login service at /webif/SecurityModule in a brute force attack. The password could be wea ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:27 | 回复:0
  • CVE-2020-19268
    CVE-2020-19268
    A cross-site request forgery (CSRF) in index.php/Dswjcms/User/tfAdd of Dswjcms 1.6.4 allows authenticated attackers to arbitrarily add administrator users.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:26 | 回复:0
  • CVE-2020-19267
    CVE-2020-19267
    An issue in index.php/Dswjcms/Basis/resources of Dswjcms 1.6.4 allows attackers to execute arbitrary code via uploading a crafted PHP file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:31 | 回复:0
  • CVE-2020-19266
    CVE-2020-19266
    A stored cross-site scripting (XSS) vulnerability in the index.php/Dswjcms/Site/articleList component of Dswjcms 1.6.4 allows attackers to execute arbitrary web scripts or HTML.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:26 | 回复:0
  • CVE-2020-19265
    CVE-2020-19265
    A stored cross-site scripting (XSS) vulnerability in the index.php/Dswjcms/Basis/links component of Dswjcms 1.6.4 allows attackers to execute arbitrary web scripts or HTML.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:42 | 回复:0
  • CVE-2020-19264
    CVE-2020-19264
    A cross-site request forgery (CSRF) in MipCMS v5.0.1 allows attackers to arbitrarily add users via index.php?s=/user/ApiAdminUser/itemAdd.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:21 | 回复:0
  • CVE-2020-19263
    CVE-2020-19263
    A cross-site request forgery (CSRF) in MipCMS v5.0.1 allows attackers to arbitrarily escalate user privileges to administrator via index.php?s=/user/ApiAdminUser/itemEdit.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:5 | 回复:0
  • CVE-2021-40284
    CVE-2021-40284
    D-Link DSL-3782 EU v1.01:EU v1.03 is affected by a buffer overflow which can cause a denial of service. This vulnerability exists in the web interface /cgi-bin/New_GUI/Igmp.asp. Authenticated remote a ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:19 | 回复:0
  • CVE-2021-38727
    CVE-2021-38727
    FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:30 | 回复:0
  • CVE-2021-32487
    CVE-2021-32487
    In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not nee ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:12 | 回复:0
  • CVE-2021-32486
    CVE-2021-32486
    In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not nee ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:42 | 阅读:17 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap