695 matches found
Microsoft SharePoint 跨站脚本漏洞
Microsoft SharePoint Server is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. A spoofing...
WriteUp
Preface In the world of network security, CTF Capture The...
Apache Geode 跨站请求伪造漏洞
Apache Geode is the Apache Foundation's suite of management platforms for distributed cloud architectures that provide real-time and consistent access to data for data-intensive applications. Apache Geode suffers from a cross-site request forgery vulnerability, which arises when a web application...
CVE-2025-11331
A vulnerability was found in IdeaCMS up to 1.8. The impacted element is an unknown function of the file app/common/logic/admin/Config.php of the component Website Name Handler. Performing manipulation of the argument 网站名称 results in command injection. The attack may be initiated remotely. The...
EUVD-2025-32529
A vulnerability was found in IdeaCMS up to 1.8. The impacted element is an unknown function of the file app/common/logic/admin/Config.php of the component Website Name Handler. Performing manipulation of the argument 网站名称 results in command injection. The attack may be initiated remotely. The...
CVE-2025-11331
IdeaCMS up to version 1.8 contains a command injection in the Website Name Handler component, via the argument 网站名称 manipulated in app/common/logic/admin/Config.php. The vulnerability arises from an unknown function handling that input, enabling remote execution after exploitation. Public exploit...
NVIDIA ConnectX 安全漏洞
NVIDIA ConnectX is a series of intelligent network interface cards from NVIDIA. NVIDIA ConnectX has a security vulnerability that can be exploited by attackers to potentially cause denial of service, elevation of privilege, information disclosure, and data tampering...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...
TOTOLINK A3002R 安全漏洞
TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3002R suffers from a stack buffer overflow vulnerability, which originates from the parameter subnet in the file /boafrm/formRoute failing to correctly validate the length and size of the input data, which...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Audobee Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...
Adobe Experience Manager 跨站脚本漏洞
Adobe Experience Manager is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Audobee Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...
CVE-2025-3327
A vulnerability was found in iteaj iboot 物联网网关 1.1.3 and classified as problematic. This issue affects some unknown processing of the file /common/upload/batch of the component File Upload. The manipulation of the argument File leads to cross site scripting. The attack may be initiated remotely...
CVE-2025-3327 iteaj iboot 物联网网关 File Upload batch cross site scripting
A vulnerability was found in iteaj iboot 物联网网关 1.1.3 and classified as problematic. This issue affects some unknown processing of the file /common/upload/batch of the component File Upload. The manipulation of the argument File leads to cross site scripting. The attack may be initiated remotely...
Dell SmartFabric OS10 安全漏洞
Dell SmartFabric OS10 is a software-defined network operating system from Dell Networking, based on Linux and open source technologies, designed to enable flexible management and automated deployment of data center network resources. A mismanagement of privileges vulnerability exists in Dell...
Cisco Meraki MX67和Cisco Meraki MX68 信息泄露漏洞
The Cisco Meraki MX67 and Cisco Meraki MX68 are cloud-managed routers in the Cisco Meraki series. An access validation error vulnerability exists in the Cisco Meraki MX67 and Cisco Meraki MX68 that stems from improper access control and can be exploited by an attacker to cause information...
IBM Sterling B2B Integrator 跨站脚本漏洞
IBM Sterling B2B Integrator is a suite of software from International Business Machines IBM that integrates critical B2B processes, transactions and relationships. The software supports secure integration of complex B2B processes with diverse partner communities. A cross-site scripting...
Fortinet FortiDeceptor 跨站脚本漏洞
Fortinet FortiDeceptor is a cyber threat detection platform from the American company Fiat Fortinet. The platform focuses on exposing cyber threats through deception techniques, among other things. Fortinet FortiDeceptor cross-site scripting vulnerability, the vulnerability stems from the...
Google Chrome 安全漏洞
Google Chrome is a free web browser developed by Google. It is the world's largest browser in terms of market share due to its speed, security, simplicity, multi-platform support and built-in privacy protection. Google Chrome suffers from a type confusion vulnerability that stems from the V8...
Open5GS 安全漏洞
Open5GS is an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. A denial of service vulnerability exists in Open5GS. An attacker could exploit this vulnerability to cause a denial of service in the system...
Dell SmartFabric OS10 命令注入漏洞
Dell SmartFabric OS10 is a Linux-based network switch operating system from Dell Dell. Dell SmartFabric OS10 suffers from a command injection vulnerability that stems from an improper neutralization issue that contains a particular element used in a command. An attacker could exploit the...