DEBIAN-CVE-2024-30187

Anope before 2.0.15 does not prevent resetting the password of a suspended account...

WordPress plugin 跨站脚本漏洞

WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. WordPress WP Booking System plugin has a cross-site scripting vulnerability in versions prior to 2.0.15...

locutus 安全漏洞

Locutus PHP is an open source PHP language standard library used in JavaScript. A security vulnerability exists in locutus versions prior to 2.0.15, which stems from the gopherparsedir function being susceptible to a denial of service ReDoS attack...

CVE-2021-26068

An endpoint in Atlassian Jira Server for Slack plugin from version 0.0.3 before version 2.0.15 allows remote attackers to execute arbitrary code via a template injection vulnerability...

Design/Logic Flaw

Yii 2.x before 2.0.15 allows remote attackers to inject unintended search conditions via a variant of the CVE-2018-7269 attack in conjunction with the Elasticsearch extension...