Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

46 matches found

Positive Technologies
Positive Technologiesadded 2022/07/26 12:0 a.m.2 views

PT-2022-11201 · Tencent · Wechat

Name of the Vulnerable Software and Affected Versions: WeChat versions 8.0.10 Description: A mini program in the WeChat application can obtain sensitive information from a user's address book via wx.searchContacts. This issue allows unauthorized access to user data. Recommendations: For WeChat...

7.5CVSS7.3AI score0.00444EPSS
Exploits1References7
CVE
CVEadded 2021/09/06 11:9 a.m.54 views

CVE-2021-24303

The CVE-2021-24303 entry concerns the WordPress plugin “JiangQie Official Website Mini Program” (before v1.1.1). The vulnerability arises because the id GET parameter is not escaped/validated before being used in SQL statements, enabling SQL injection. Impact is described as high (per CVE data) w...

8.8CVSS9AI score0.00582EPSS
Exploits2References2Affected Software1
Patchstack
Patchstackadded 2021/07/30 12:0 a.m.10 views

WordPress JiangQie Official Website Mini Program plugin <= 1.1.0 - Authenticated SQL Injection (SQLi) vulnerability

Authenticated SQL Injection SQLi vulnerability discovered by ja9er in WordPress JiangQie Official Website Mini Program plugin versions = 1.1.0. Solution Update the WordPress JiangQie Official Website Mini Program plugin to the latest available version at least 1.1.1...

8.8CVSS3.6AI score0.00582EPSS
Exploits2References3Affected Software1
CNVD
CNVDadded 2020/11/05 12:0 a.m.1 views

Anhui Weitong Technology Co., Ltd. Weitong open source mall management platform there are XML entity injection vulnerabilities

Microteam Mall is an open source WeChat small program mall front and back end open source : uniapp + Java, with seconds , coupons , multi-merchant , live selling , distribution and other functions , can be used to quickly build a WeChat small program mall . Anhui Weitong Technology Co., Ltd...

7.3AI score
Exploits0
CNVD
CNVDadded 2020/05/13 12:0 a.m.1 views

Chengdu Crazy Horse Crazy Horse Technology Co., Ltd Crazy Horse Fitness WeChat mini-program has a logic flaw vulnerability

Chengdu Crazy Horse Crazy Horse Technology Co. was founded on December 27, 2017 . The company's business scope includes: software research and development, technical development of network equipment, technical consulting, technical services, technology transfer and so on. Chengdu Crazy Horse Craz...

6.9AI score
Exploits0
CNVD
CNVDadded 2020/03/04 12:0 a.m.0 views

File Upload Vulnerability in LaiKe Full Scene Ecommerce System

LaiKe full-scene e-commerce system is a WeChat small program e-commerce platform front and back end open source PHP, including distribution, group, lottery, red packets and other functions , the entire system architecture is very simple , suitable for small teams or individual developers secondar...

7.1AI score
Exploits0
Rows per page
Query Builder