8 matches found
WordPress plugin MasterStudy LMS WordPress Plugin for Online Courses and Education 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...
WordPress plugin Power Charts Lite 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
JIZHICMS 安全漏洞
JIZHICMS is an open-source content management system developed by JIZHI Corporation in China. JIZHICMS versions 2.5.6 and earlier contained security vulnerabilities. These vulnerabilities were caused by insufficient input cleaning in the publish function of the app/home/c/UserController.php file,...
Angular 跨站脚本漏洞
Angular is an open-source development platform created by Angular. It is used to build mobile and desktop web applications using TypeScript/JavaScript and other languages. Versions of Angular prior to 21.2.0, 21.1.16, 20.3.17, and 19.2.19 have a cross-site scripting vulnerability. This...
The vulnerability of the upgrade_filter_asp function in the /upgrade_filter.asp file of the D-Link DI-8003 router’s microprogramming system, allowing a hacker to execute arbitrary commands.
The vulnerability of the upgradefilterasp function in the /upgradefilter.asp file of the D-Link DI-8003 router microprogramming system is related to the lack of measures taken at the control level for data cleaning. Exploiting this vulnerability allows a remote attacker to execute arbitrary...
The vulnerability of TP-Link MR3020 router’s microprogramming software, related to the lack of measures taken to clean data at the control level, allows attackers to execute arbitrary commands.
The vulnerability of TP-Link MR3020 router’s microprogramming software is related to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands by sending a specially crafted tftp request to the destination...
The vulnerability of the files apt-pkg/contrib/extracttar.cc, apt-pkg/deb/debfile.cc, and apt-pkg/contrib/arfile.cc, which are used for installing, updating, and removing software packages in the Apt suite, relates to integer overflow vulnerabilities. This allows attackers to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the apt-pkg/contrib/extracttar.cc, apt-pkg/deb/debfile.cc, and apt-pkg/contrib/arfile.cc files, which are used for installing, updating, and removing software packages, is related to the lack of data cleaning. Exploiting this vulnerability can allow an attacker to access...
The vulnerability of Java-Framework templates in the Apache Camel framework allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of Java-Framework templates in the Apache Camel framework lies in insufficient cleaning of special elements in the output data used by the incoming component. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected...