• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号

漏洞

RSS

下级分类:

  • CVE-2021-24590
    CVE-2021-24590
    The Cookie Notice Consent Banner for GDPR CCPA Compliance WordPress plugin before 1.7.2 does not properly sanitize inputs to prevent injection of arbitrary HTML within the plugin's design custom ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:5 | 回复:0
  • CVE-2021-24588
    CVE-2021-24588
    The SMS Alert Order Notifications WordPress plugin before 3.4.7 is affected by a cross site scripting (XSS) vulnerability in the plugin's setting page.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:7 | 回复:0
  • CVE-2021-24568
    CVE-2021-24568
    The AddToAny Share Buttons WordPress plugin before 1.7.46 does not sanitise its Sharing Header setting when outputting it in frontend pages, allowing high privilege users such as admin to perform Cros ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:12 | 回复:0
  • CVE-2021-24517
    CVE-2021-24517
    The Stop Spammers Security | Block Spam Users, Comments, Forms WordPress plugin before 2021.18 does not escape some of its settings, allowing high privilege users such as admin to set Cross-Site Scrip ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:7 | 回复:0
  • CVE-2021-24513
    CVE-2021-24513
    The Form Builder | Create Responsive Contact Forms WordPress plugin before 1.9.8.4 does not sanitise or escape its Form Title, allowing high privilege users such as admin to set Cross-Site Scripting p ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:18 | 回复:0
  • CVE-2021-24435
    CVE-2021-24435
    The iframe-font-preview.php file of the titan-framework does not properly escape the font-weight and font-family GET parameters before outputting them back in an href attribute, leading to Reflected C ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:8 | 回复:0
  • CVE-2021-24395
    CVE-2021-24395
    The editid GET parameter of the Embed Youtube Video WordPress plugin through 1.0 is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:19 | 回复:0
  • CVE-2021-24394
    CVE-2021-24394
    An id GET parameter of the Easy Testimonial Manager WordPress plugin through 1.2.0 is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:23 | 回复:0
  • CVE-2021-24393
    CVE-2021-24393
    A c GET parameter of the Comment Highlighter WordPress plugin through 0.13 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:22 | 回复:0
  • CVE-2021-24392
    CVE-2021-24392
    An id GET parameter of the WordPress Membership SwiftCloud.io WordPress plugin through 1.0 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:20 | 回复:0
  • CVE-2021-24391
    CVE-2021-24391
    An editid GET parameter of the Cashtomer WordPress plugin through 1.0.0 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:14 | 回复:0
  • CVE-2021-24390
    CVE-2021-24390
    A proid GET parameter of the WordPress支付å®?Alipay|财付通Tenpay|è´?å®?PayPal集æˆ?æ?’件 WordPress plugin through 3.7.2 is not sanitised, properly escaped or valid ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:8 | 回复:0
  • CVE-2021-24303
    CVE-2021-24303
    The JiangQie Official Website Mini Program WordPress plugin before 1.1.1 does not escape or validate the id GET parameter before using it in SQL statements, leading to SQL injection issues……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:20 | 回复:0
  • CVE-2021-40524
    CVE-2021-40524
    In Pure-FTPd before 1.0.50, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size, which may lead to denial of service or a server hang. This occur ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:27 | 回复:0
  • CVE-2021-40523
    CVE-2021-40523
    In Contiki 3.0, Telnet option negotiation is mishandled. During negotiation between a server and a client, the server may fail to give the WILL/WONT or DO/DONT response for DO and WILL commands becaus ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:15 | 回复:0
  • CVE-2021-40516
    CVE-2021-40516
    WeeChat before 3.2.1 allows remote attackers to cause a denial of service (crash) via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:15 | 回复:0
  • CVE-2021-23439
    CVE-2021-23439
    This affects the package file-upload-with-preview before 4.2.0. A file containing malicious JavaScript code in the name can be uploaded (a user needs to be tricked into uploading such a file).……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:13 | 回复:0
  • CVE-2021-40509
    CVE-2021-40509
    ViewCommon.java in JForum2 2.7.0 allows XSS via a user signature.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:9 | 回复:0
  • CVE-2021-30624
    CVE-2021-30624
    Chromium: CVE-2021-30624 Use after free in Autofill……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:10 | 回复:0
  • CVE-2021-30623
    CVE-2021-30623
    Chromium: CVE-2021-30623 Use after free in Bookmarks……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:21 | 回复:0
  • CVE-2021-30622
    CVE-2021-30622
    Chromium: CVE-2021-30622 Use after free in WebApp Installs……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:12 | 回复:0
  • CVE-2021-30621
    CVE-2021-30621
    Chromium: CVE-2021-30621 UI Spoofing in Autofill……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:20 | 回复:0
  • CVE-2021-30620
    CVE-2021-30620
    Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:11 | 回复:0
  • CVE-2021-30619
    CVE-2021-30619
    Chromium: CVE-2021-30619 UI Spoofing in Autofill……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:11 | 回复:0
  • CVE-2021-30618
    CVE-2021-30618
    Chromium: CVE-2021-30618 Inappropriate implementation in DevTools……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:7 | 回复:0
  • CVE-2021-30617
    CVE-2021-30617
    Chromium: CVE-2021-30617 Policy bypass in Blink……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:25 | 回复:0
  • CVE-2021-30616
    CVE-2021-30616
    Chromium: CVE-2021-30616 Use after free in Media……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:9 | 回复:0
  • CVE-2021-30615
    CVE-2021-30615
    Chromium: CVE-2021-30615 Cross-origin data leak in Navigation……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:11 | 回复:0
  • CVE-2021-30614
    CVE-2021-30614
    Chromium: CVE-2021-30614 Heap buffer overflow in TabStrip……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:11 | 回复:0
  • CVE-2021-30613
    CVE-2021-30613
    Chromium: CVE-2021-30613 Use after free in Base internals……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:14 | 回复:0
  • CVE-2021-30612
    CVE-2021-30612
    Chromium: CVE-2021-30612 Use after free in WebRTC……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:20 | 回复:0
  • CVE-2021-30611
    CVE-2021-30611
    Chromium: CVE-2021-30611 Use after free in WebRTC……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:14 | 回复:0
  • CVE-2021-30610
    CVE-2021-30610
    Chromium: CVE-2021-30610 Use after free in Extensions API……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:9 | 回复:0
  • CVE-2021-30609
    CVE-2021-30609
    Chromium: CVE-2021-30609 Use after free in Sign-In……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:17 | 回复:0
  • CVE-2021-30608
    CVE-2021-30608
    Chromium: CVE-2021-30608 Use after free in Web Share……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:13 | 回复:0
  • CVE-2021-30607
    CVE-2021-30607
    Chromium: CVE-2021-30607 Use after free in Permissions……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:20 | 回复:0
  • CVE-2021-30606
    CVE-2021-30606
    Chromium: CVE-2021-30606 Use after free in Blink……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:28 | 回复:0
  • CVE-2021-39193
    CVE-2021-39193
    Frontier is Substrate's Ethereum compatibility layer. Prior to commit number 0b962f218f0cdd796dadfe26c3f09e68f7861b26, a bug in `pallet-ethereum` can cause invalid transactions to be included in t ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:18 | 回复:0
  • CVE-2021-40492
    CVE-2021-40492
    A reflected XSS vulnerability exists in multiple pages in version 22 of the Gibbon application that allows for arbitrary execution of JavaScript (gibbonCourseClassID, gibbonPersonID, subpage, currentD ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:22 | 回复:0
  • CVE-2021-23437
    CVE-2021-23437
    The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:38 | 阅读:28 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap