Craft CMS 安全漏洞

Craft CMS is an open-source content management system developed by Craft CMS. Versions prior to 4.17.8 and 5.9.14 of Craft CMS had security vulnerabilities. These vulnerabilities stemmed from the Config Sync update program’s indexing process, which lacked authentication measures. As a result,...

QAD Search Server Cross-Site Scripting Vulnerability

QAD Search Server is a search server application from QAD Corporation. A security vulnerability exists in QAD Search Server version 1.0.0.315 and earlier, which stems from vulnerability to a stored cross-site scripting XSS attack that allows an unauthenticated attacker to create new indexes and...