• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    公众号

CVE漏洞

RSS
  • CVE-2022-27104
    CVE-2022-27104
    An Unauthenticated time-based blind SQL injection vulnerability exists in Forma LMS prior to v.1.4.3.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:94 | 回复:0
  • CVE-2022-24825
    CVE-2022-24825
    Smokescreen is a simple HTTP proxy that fogs over naughty URLs. The primary use case for Smokescreen is to prevent server-side request forgery (SSRF) attacks in which external attackers leverage the b ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:135 | 回复:0
  • CVE-2021-23283
    CVE-2021-23283
    Eaton Intelligent Power Protector (IPP) prior to version 1.69 is vulnerable to stored Cross Site Scripting. The vulnerability exists due to insufficient validation of user input and improper encoding ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:116 | 回复:0
  • CVE-2021-26625
    CVE-2021-26625
    Insufficient Verification of input Data leading to arbitrary file download and execute was discovered in Nexacro platform. This vulnerability is caused by an automatic update function that does not ve ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:80 | 回复:0
  • CVE-2021-26626
    CVE-2021-26626
    Improper input validation vulnerability in XPLATFORM's execBrowser method can cause execute arbitrary commands. IF the second parameter value of the execBrowser function is ‘default’, the first ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:83 | 回复:0
  • CVE-2021-26627
    CVE-2021-26627
    Real-time image information exposure is caused by insufficient authentication for activated RTSP port. This vulnerability could allow to remote attackers to send the RTSP requests using ffplay command ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:75 | 回复:0
  • CVE-2021-4096
    CVE-2021-4096
    The Fancy Product Designer plugin for WordPress is vulnerable to Cross-Site Request Forgery via the FPD_Admin_Import class that makes it possible for attackers to upload malicious files that could be ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:60 | 回复:0
  • CVE-2022-0992
    CVE-2022-0992
    The SiteGround Security plugin for WordPress is vulnerable to authentication bypass that allows unauthenticated users to log in as administrative users due to missing identity verification on initial ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:77 | 回复:0
  • CVE-2022-0993
    CVE-2022-0993
    The SiteGround Security plugin for WordPress is vulnerable to authentication bypass that allows unauthenticated users to log in as administrative users due to missing identity verification on the 2FA ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:117 | 回复:0
  • CVE-2022-1019
    CVE-2022-1019
    Automated Logic's WebCtrl Server Version 6.1 'Help' index pages are vulnerable to open redirection. The vulnerability allows an attacker to send a maliciously crafted URL which could resul ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:261 | 回复:0
  • CVE-2022-1119
    CVE-2022-1119
    The Simple File List WordPress plugin is vulnerable to Arbitrary File Download via the eeFile parameter found in the ~/includes/ee-downloader.php file due to missing controls which makes it possible u ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:130 | 回复:0
  • CVE-2022-1186
    CVE-2022-1186
    The WordPress plugin Be POPIA Compliant exposed sensitive information to unauthenticated users consisting of site visitors emails and usernames via an API route, in versions up to an including 1.1.5.……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:109 | 回复:0
  • CVE-2022-1187
    CVE-2022-1187
    The WordPress WP YouTube Live Plugin is vulnerable to Reflected Cross-Site Scripting via POST data found in the ~/inc/admin.php file which allows unauthenticated attackers to inject arbitrary web scri ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:144 | 回复:0
  • CVE-2022-1329
    CVE-2022-1329
    The Elementor Website Builder plugin for WordPress is vulnerable to unauthorized execution of several AJAX actions due to a missing capability check in the ~/core/app/modules/onboarding/module.php fil ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:89 | 回复:0
  • CVE-2022-1384
    CVE-2022-1384
    Mattermost version 6.4.x and earlier fails to properly check the plugin version when a plugin is installed from the Marketplace, which allows an authenticated and an authorized user to install and exp ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:68 | 回复:0
  • CVE-2022-1385
    CVE-2022-1385
    Mattermost 6.4.x and earlier fails to properly invalidate pending email invitations when the action is performed from the system console, which allows accidentally invited users to join the workspace ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:55 | 回复:0
  • CVE-2022-21404
    CVE-2022-21404
    Vulnerability in the Helidon product of Oracle Fusion Middleware (component: Reactive WebServer). Supported versions that are affected are 1.4.10 and 2.0.0-RC1. Difficult to exploit vulnerability allo ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:38 | 回复:0
  • CVE-2022-21405
    CVE-2022-21405
    Vulnerability in the OSS Support Tools product of Oracle Support Tools (component: Oracle Explorer). The supported version that is affected is 18.3. Easily exploitable vulnerability allows high privil ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:43 | 回复:0
  • CVE-2022-21409
    CVE-2022-21409
    Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime). The supported version that is affected is Prior to 9.2.6.3. Easily exploitable vulnerability ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:55 | 回复:0
  • CVE-2022-21410
    CVE-2022-21410
    Vulnerability in the Oracle Database - Enterprise Edition Sharding component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows high priv ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:55 | 回复:0
  • CVE-2022-21411
    CVE-2022-21411
    Vulnerability in the RDBMS Gateway / Generic ODBC Connectivity component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 19c and 21c. Easily exploitable vulnerability all ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:44 | 回复:0
  • CVE-2022-21412
    CVE-2022-21412
    Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privil ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:42 | 回复:0
  • CVE-2022-21413
    CVE-2022-21413
    Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged a ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:39 | 回复:0
  • CVE-2022-21414
    CVE-2022-21414
    Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privil ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:37 | 回复:0
  • CVE-2022-21415
    CVE-2022-21415
    Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high priv ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:29 | 回复:0
  • CVE-2022-21416
    CVE-2022-21416
    Vulnerability in the Oracle Solaris product of Oracle Systems (component: Utility). The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with l ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:36 | 回复:0
  • CVE-2022-21417
    CVE-2022-21417
    Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Easily exploitable vulnerability allows h ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:34 | 回复:0
  • CVE-2022-21418
    CVE-2022-21418
    Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.28 and prior. Difficult to exploit vulnerability allows high privileged atta ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:33 | 回复:0
  • CVE-2022-21419
    CVE-2022-21419
    Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Visual Analyzer). Supported versions that are affected are 5.5.0.0.0 and 5.9.0.0.0. ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:48 | 回复:0
  • CVE-2022-21420
    CVE-2022-21420
    Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerab ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:63 | 回复:0
  • CVE-2022-21421
    CVE-2022-21421
    Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Web General). Supported versions that are affected are 5.5.0.0.0, 5.9.0.0 ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:83 | 回复:0
  • CVE-2022-21422
    CVE-2022-21422
    Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Connection Manager). Supported versions that are affected are 12.0.0 ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:88 | 回复:0
  • CVE-2022-21423
    CVE-2022-21423
    Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attack ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:75 | 回复:0
  • CVE-2022-21424
    CVE-2022-21424
    Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Connection Manager). The supported version that is affected is 12.0. ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:67 | 回复:0
  • CVE-2022-21425
    CVE-2022-21425
    Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged a ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:52 | 回复:0
  • CVE-2022-21426
    CVE-2022-21426
    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0 ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:44 | 回复:0
  • CVE-2022-21427
    CVE-2022-21427
    Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Easily exploitable vulnerability all ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:25 | 回复:0
  • CVE-2022-21430
    CVE-2022-21430
    Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Connection Manager). Supported versions that are affected are 12.0.0 ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:26 | 回复:0
  • CVE-2022-21431
    CVE-2022-21431
    Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications (component: Connection Manager). Supported versions that are affected are 12.0.0 ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:21 | 回复:0
  • CVE-2022-21434
    CVE-2022-21434
    Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 10:16 | 阅读:32 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
专题导读
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap