Lucene search
K

8 matches found

CNNVD
CNNVD
added 2026/04/17 12:0 a.m.10 views

WordPress plugin MasterStudy LMS WordPress Plugin for Online Courses and Education 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

6.5CVSS5.9AI score0.00462EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.10 views

WordPress plugin Power Charts Lite 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.4CVSS6AI score0.00265EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/24 12:0 a.m.8 views

JIZHICMS 安全漏洞

JIZHICMS is an open-source content management system developed by JIZHI Corporation in China. JIZHICMS versions 2.5.6 and earlier contained security vulnerabilities. These vulnerabilities were caused by insufficient input cleaning in the publish function of the app/home/c/UserController.php file,...

5.4CVSS5.7AI score0.00165EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/26 12:0 a.m.8 views

Angular 跨站脚本漏洞

Angular is an open-source development platform created by Angular. It is used to build mobile and desktop web applications using TypeScript/JavaScript and other languages. Versions of Angular prior to 21.2.0, 21.1.16, 20.3.17, and 19.2.19 have a cross-site scripting vulnerability. This...

7.6CVSS7.3AI score0.00466EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.9 views

The vulnerability of the upgrade_filter_asp function in the /upgrade_filter.asp file of the D-Link DI-8003 router’s microprogramming system, allowing a hacker to execute arbitrary commands.

The vulnerability of the upgradefilterasp function in the /upgradefilter.asp file of the D-Link DI-8003 router microprogramming system is related to the lack of measures taken at the control level for data cleaning. Exploiting this vulnerability allows a remote attacker to execute arbitrary...

6.5CVSS6.9AI score0.0425EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/03/28 12:0 a.m.4 views

The vulnerability of TP-Link MR3020 router’s microprogramming software, related to the lack of measures taken to clean data at the control level, allows attackers to execute arbitrary commands.

The vulnerability of TP-Link MR3020 router’s microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sending a specially crafted tftp request to the destination...

10CVSS8.2AI score0.0249EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2021/07/15 12:0 a.m.3 views

The vulnerability of the files apt-pkg/contrib/extracttar.cc, apt-pkg/deb/debfile.cc, and apt-pkg/contrib/arfile.cc, which are used for installing, updating, and removing software packages in the Apt suite, relates to integer overflow vulnerabilities. This allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the apt-pkg/contrib/extracttar.cc, apt-pkg/deb/debfile.cc, and apt-pkg/contrib/arfile.cc files, which are used for installing, updating, and removing software packages, is related to the lack of data cleaning. Exploiting this vulnerability can allow an attacker to access...

5.7CVSS6.1AI score0.00377EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2021/02/16 12:0 a.m.7 views

The vulnerability of Java-Framework templates in the Apache Camel framework allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Java-Framework templates in the Apache Camel framework lies in insufficient cleaning of special elements in the output data used by the incoming component. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected...

7.8CVSS7.4AI score0.04491EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder