PT-2024-20495

Name of the Vulnerable Software and Affected Versions The Simple Ajax Chat WordPress plugin versions prior to 20240412 Description The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed, for...

TBK DVR-4104、DVR-4216 操作系统命令注入漏洞

TBK DVR-4104 is a digital video recorder from TBK. An OS command injection vulnerability exists in TBK DVR-4104, DVR-4216 version 20240412 and earlier versions, which stems from the fact that incorrect operation of the parameter mdb/mdc can lead to OS command injection...