WordPress plugin List category posts 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. Versions...

WordPress plugin Shabat Keeper 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

WordPress plugin BA Book Everything 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS Sonoma prior to 14.8.2 and Sequoia prior to 15.7.2, which stems from improper input cleanup and could result in an application...

FreePBX Endpoint Manager 操作系统命令注入漏洞

FreePBX Endpoint Manager is a centralized IP phone endpoint configuration module from the FreePBX open source. An operating system command injection vulnerability exists in FreePBX Endpoint Manager versions prior to 16.0.92 and prior to 17.0.6, which stems from insufficient user input cleanup, an...

Raidsonic IB-NAS5220和Raidsonic IB-NAS4220 安全漏洞

The Raidsonic IB-NAS5220 and Raidsonic IB-NAS4220 are both wireless routers from the German company Raidsonic. A security vulnerability exists in the Raidsonic IB-NAS5220 and Raidsonic IB-NAS4220 that stems from insufficient timeHandler.cgi endpoint input cleanup, which could lead to remote code...

PowerStick Wave Dual-Band Wifi Extender 安全漏洞

PowerStick Wave Dual-Band Wifi Extender is a portable WiFi extender from PowerStick USA. A security vulnerability exists in version V1.0 of the PowerStick Wave Dual-Band Wifi Extender that originates from insufficient user input cleanup in the file /cgi-bin/cgivista.cgi, which could lead to remot...

LILIN Digital Video Recorder 安全漏洞

LILIN Digital Video Recorder is a video recorder from LILIN Corporation of Taiwan, China. A security vulnerability exists in LILIN Digital Video Recorder versions prior to 2.0b6020200207, which stems from a failure of the web service in /z/zbin/dvrbox to properly clean up the inputs to the Server...

ClipBucket 安全漏洞

ClipBucket is an open source and freely downloadable PHP script from MacWarrior Open Source. It is used for sharing video sites. A security vulnerability exists in ClipBucket 5.5.1-199 and earlier versions, which stems from vulnerability to a PHP deserialization vulnerability and improper input...

cross-spawn 安全漏洞

cross-spawn is an open source library from MOXY. A security vulnerability exists in cross-spawn versions prior to 7.0.5, which stems from improper input cleanup and is vulnerable to a regular expression denial of service attack...

WordPress Plugin Collapse-O-Matic Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in...

WordPress Plugin Elementor Addons by Livemesh 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A security vulnerability exists in WordPress Plugin...

WordPress Plugin Download Manager 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

WordPress Plugin Namaste! LMS 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

memos 跨站脚本漏洞

memos is an open source hosted memo center with knowledge management and social features. A cross-site scripting vulnerability exists in versions of memos prior to 0.10.0, which stems from the fact that its markup editor does not clean up user input allowing an attacker to implement stored...

npm abacus-ext-cmdline 操作系统命令注入漏洞

npm abacus-ext-cmdline is a command line execution utility from npm USA. An operating system command injection vulnerability exists in abacus-ext-cmdline, which stems from incorrect user input cleanup and is prone to command injection via the execute function...

Red Hat CloudForms Cross-Site Scripting Vulnerability (CNVD-2020-44409)

Red Hat CloudForms is a hybrid infrastructure management platform from Red Hat, Inc. The platform provides deployment, management, and other capabilities across virtual machines, clouds, containers, and physical infrastructure. A security vulnerability exists in Report Menu in Red Hat CloudForms,...