PT-2024-28894 · Seacms · Seacms

Name of the Vulnerable Software and Affected Versions: SeaCMS version 12.9 Description: The issue is caused by admin weixin.php directly splicing and writing user input data into weixin.php without processing it. This allows authenticated attackers to execute arbitrary commands and obtain system...

Cisco Umbrella 跨站脚本漏洞

Cisco Umbrella is a suite of cloud security platforms from Cisco. The platform prevents cyber threats such as phishing, malware and ransomware. Cisco Umbrella suffers from a cross-site scripting vulnerability that originates from unprocessed user input, which could allow an authenticated, remote...

Softlink Oliver v5 Library Server 安全漏洞

Softlink Oliver v5 Library Server is an easy-to-use library management and learning tool from Softlink. A security vulnerability exists in Softlink Oliver v5 Library Server version 5.00.008.053, which originates from a FileServlet function that allows an attacker to download arbitrary files using...

Image-Processing 安全漏洞

Image-Processing is an image-processing code repository that uses C. A security vulnerability exists in Image-Processing versions prior to 1.12.2 that stems from the use of unprocessed user input in the apply method, which allows an attacker to execute system commands...

WordPress All in One SEO Pack plugin cross-site scripting vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in WordPress All in One SEO Pack plugin prior to version...