jwt 安全漏洞

jwt is a Ruby library for JSON Web Token open source. A security vulnerability exists in jwt version v3.0.0.beta1, which stems from the presence of a weak cryptographic implementation...

Red Hat Resteasy Remote Code Execution Vulnerability (CNVD-2017-09797)

Red Hat RESTEasy is the United States Red Hat Red Hat, Inc. of a JBoss open source project , which provides a variety of frameworks for building RESTful Web Services and RESTful Java applications . A remote code execution vulnerability exists in Red Hat Resteasy versions 3.0-beta-1 through...

TikiWiki 2.2/3.0 'tiki-galleries.php' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34105/info TikiWiki is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site and to...

FileZilla多个格式串漏洞

FileZilla是一款免费的FTP客户端软件。 FileZilla处理用户名数据存在问题，远程攻击者可以利用漏洞进行格式串攻击，可能以进程权限执行任意指令。 如果用户名包含%字符，连接将会提示错误，而造成格式串攻击，可能以进程权限执行任意指令。 FileZilla 3.0 -beta4 FileZilla 3.0 -beta3 FileZilla 3.0 -beta2 FileZilla 3.0 -beta1 升级程序： FileZilla FileZilla 3.0 -beta1 FileZilla FileZilla3.0.0-beta5src.tar.bz2...