• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞

漏洞

RSS

下级分类:

  • CVE-2020-21681
    CVE漏洞
    CVE-2020-21681
    A global buffer overflow in the set_color component in genge.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into ge format.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:37 | 回复:0
  • CVE-2020-21680
    CVE漏洞
    CVE-2020-21680
    A stack-based buffer overflow in the put_arrow() component in genpict2e.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pict2e format.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:37 | 回复:0
  • CVE-2020-21678
    CVE漏洞
    CVE-2020-21678
    A global buffer overflow in the genmp_writefontmacro_latex component in genmp.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into mp format.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:25 | 回复:0
  • CVE-2020-21677
    CVE漏洞
    CVE-2020-21677
    A heap-based buffer overflow in the sixel_encoder_output_without_macro function in encoder.c of Libsixel 1.8.4 allows attackers to cause a denial of service (DOS) via converting a crafted PNG file int ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:28 | 回复:0
  • CVE-2020-21676
    CVE漏洞
    CVE-2020-21676
    A stack-based buffer overflow in the genpstrx_text() component in genpstricks.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into pstricks format.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:26 | 回复:0
  • CVE-2020-21675
    CVE漏洞
    CVE-2020-21675
    A stack-based buffer overflow in the genptk_text component in genptk.c of fig2dev 3.2.7b allows attackers to cause a denial of service (DOS) via converting a xfig file into ptk format.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:15 | 回复:0
  • CVE-2021-37391
    CVE漏洞
    CVE-2021-37391
    A user without privileges in Chamilo LMS 1.11.14 can send an invitation message to another user, e.g., the administrator, through main/social/search.php, main/inc/lib/social.lib.php and steal cookies ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:15 | 回复:0
  • CVE-2021-37390
    CVE漏洞
    CVE-2021-37390
    A Chamilo LMS 1.11.14 reflected XSS vulnerability exists in main/social/search.php=q URI (social network search feature).……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:14 | 回复:0
  • CVE-2021-37389
    CVE漏洞
    CVE-2021-37389
    Chamilo 1.11.14 allows stored XSS via main/install/index.php and main/install/ajax.php through the port parameter.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:14 | 回复:0
  • CVE-2021-33708
    CVE漏洞
    CVE-2021-33708
    Due to insufficient input validation in Kyma, authenticated users can pass a Header of their choice and escalate privileges.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:20 | 回复:0
  • CVE-2021-29296
    CVE漏洞
    CVE-2021-29296
    ** UNSUPPORTED WHEN ASSIGNED **Null Pointer Dereference vulnerability in D-Link DIR-825 2.10b02, which could let a remote malicious user cause a denial of service. The vulnerability could be triggered ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:16 | 回复:0
  • CVE-2021-29295
    CVE漏洞
    CVE-2021-29295
    ** UNSUPPORTED WHEN ASSIGNED **Null Pointer Dereference vulnerability exists in D-Link DSP-W215 1.10, which could let a remote malicious user cause a denial of servie via usr/bin/lighttpd. It could be ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:14 | 回复:0
  • CVE-2021-29294
    CVE漏洞
    CVE-2021-29294
    ** UNSUPPORTED WHEN ASSIGNED ** Null Pointer Dereference vulnerability exists in D-Link DSL-2740R UK_1.01, which could let a remove malicious user cause a denial of service via the send_hnap_unauthori ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:16 | 回复:0
  • CVE-2021-28846
    CVE漏洞
    CVE-2021-28846
    A Format String vulnerablity exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial of serv ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:20 | 回复:0
  • CVE-2021-28845
    CVE漏洞
    CVE-2021-28845
    Null Pointer Dereference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a deni ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:10 | 回复:0
  • CVE-2021-38387
    CVE漏洞
    CVE-2021-38387
    In Contiki 3.0, a Telnet server that silently quits (before disconnection with clients) leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumpt ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:17 | 回复:0
  • CVE-2021-38386
    CVE漏洞
    CVE-2021-38386
    In Contiki 3.0, a buffer overflow in the Telnet service allows remote attackers to cause a denial of service because the ls command is mishandled when a directory has many files with long names.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:16 | 回复:0
  • CVE-2021-28844
    CVE漏洞
    CVE-2021-28844
    Null Pointer Dereference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03 by sending the POST request to apply_cgi via a do_gra ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:27 | 回复:0
  • CVE-2021-28843
    CVE漏洞
    CVE-2021-28843
    Null Pointer Dereference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03 by sending the POST request to apply_cgi with an unkn ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:19 | 回复:0
  • CVE-2021-28842
    CVE漏洞
    CVE-2021-28842
    Null Pointer Deference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:38 | 回复:0
  • CVE-2021-28841
    CVE漏洞
    CVE-2021-28841
    Null Pointer Dereference vulnerability in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial of s ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:20 | 回复:0
  • CVE-2021-21601
    CVE漏洞
    CVE-2021-21601
    Dell EMC Data Protection Search, 19.4 and prior, and IDPA, 2.6.1 and prior, contain an Information Exposure in Log File Vulnerability in CIS. A local low privileged attacker could potentially exploit ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:21 | 回复:0
  • CVE-2021-21600
    CVE漏洞
    CVE-2021-21600
    Dell EMC NetWorker, 19.4 or older, contain an uncontrolled resource consumption flaw in its API service. An authorized API user could potentially exploit this vulnerability via the web and desktop use ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:26 | 回复:0
  • CVE-2021-21598
    CVE漏洞
    CVE-2021-21598
    Dell Wyse ThinOS, versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system could exploit this vulnerabilit ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:20 | 回复:0
  • CVE-2021-21597
    CVE漏洞
    CVE-2021-21597
    Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated malicious user with physical access to the system could exploit this vulnerability to read se ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:20 | 回复:0
  • CVE-2021-21567
    CVE漏洞
    CVE-2021-21567
    Dell PowerScale OneFS 9.1.0.x contains an improper privilege management vulnerability. It may allow an authenticated user with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE to elevate privilege.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:17 | 回复:0
  • CVE-2021-38384
    CVE漏洞
    CVE-2021-38384
    Serverless Offline 8.0.0 returns a 403 HTTP status code for a route that has a trailing / character, which might cause a developer to implement incorrect access control, because the actual behavior wi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:11 | 回复:0
  • CVE-2021-38383
    CVE漏洞
    CVE-2021-38383
    OwnTone (aka owntone-server) through 28.1 has a use-after-free in net_bind() in misc.c.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:5 | 回复:0
  • CVE-2021-38382
    CVE漏洞
    CVE-2021-38382
    Live555 through 1.08 does not handle Matroska and Ogg files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:18 | 回复:0
  • CVE-2021-38381
    CVE漏洞
    CVE-2021-38381
    Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:22 | 回复:0
  • CVE-2021-38380
    CVE漏洞
    CVE-2021-38380
    Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack-based buffer over-read. An attacker can leverage this to launch a DoS attack.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:28 | 回复:0
  • CVE-2021-38140
    CVE漏洞
    CVE-2021-38140
    The set_user extension module before 2.0.1 for PostgreSQL allows a potential privilege escalation using RESET SESSION AUTHORIZATION after set_user().……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:15 | 回复:0
  • CVE-2021-28840
    CVE漏洞
    CVE-2021-28840
    Null Pointer Dereference vulnerability exists in D-Link DAP-2310 2.07.RC031, DAP-2330 1.07.RC028, DAP-2360 2.07.RC043, DAP-2553 3.06.RC027, DAP-2660 1.13.RC074, DAP-2690 3.16.RC100, DAP-2695 1.17.RC06 ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:17 | 回复:0
  • CVE-2021-28839
    CVE漏洞
    CVE-2021-28839
    Null Pointer Dereference vulnerability exists in D-Link DAP-2310 2.07.RC031, DAP-2330 1.07.RC028, DAP-2360 2.07.RC043, DAP-2553 3.06.RC027, DAP-2660 1.13.RC074, DAP-2690 3.16.RC100, DAP-2695 1.17.RC06 ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:18 | 回复:0
  • CVE-2021-28838
    CVE漏洞
    CVE-2021-28838
    Null pointer dereference vulnerability in D-Link DAP-2310 2,10RC039, DAP-2330 1.10RC036 BETA, DAP-2360 2.10RC055, DAP-2553 3.10rc039 BETA, DAP-2660 1.15rc131b, DAP-2690 3.20RC115 BETA, DAP-2695 1.20RC ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:22 | 回复:0
  • CVE-2021-3692
    CVE漏洞
    CVE-2021-3692
    yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:32 | 回复:0
  • CVE-2021-37367
    CVE漏洞
    CVE-2021-37367
    CTparental before 4.45.07 is affected by a code execution vulnerability in the CTparental admin panel. Because The file bl_categories_help.php is vulnerable to directory traversal, an attacker can cre ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:22 | 回复:0
  • CVE-2021-37366
    CVE漏洞
    CVE-2021-37366
    CTparental before 4.45.03 is vulnerable to cross-site request forgery (CSRF) in the CTparental admin panel. By combining CSRF with XSS, an attacker can trick the administrator into clicking a link tha ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:16 | 回复:0
  • CVE-2021-37365
    CVE漏洞
    CVE-2021-37365
    CTparental before 4.45.03 is vulnerable to cross-site scripting (XSS) in the CTparental admin panel. In bl_categires_help.php, the 'categories' variable is assigned with the content of the que ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:16 | 回复:0
  • CVE-2021-32768
    CVE漏洞
    CVE-2021-32768
    TYPO3 is an open source PHP based web content management system released under the GNU GPL. In affected versions failing to properly parse, sanitize and encode malicious rich-text content, the content ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:28 | 阅读:14 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap