CMS Made Simple Cross-Site Scripting Vulnerability (CNVD-2021-25375)

CMS Made Simple is a simple, easy-to-use content management system developed using PHP, MySQL and Smarty template engine. A cross-site scripting vulnerability exists in CMS Made Simple 2.2.15. The vulnerability can be exploited via /admin/addbookmark.php via Site Admin My Preferences Title field ...

JerryScript suffers from a denial of service vulnerability (CNVD-2021-25990)

JerryScript is a lightweight JavaScript engine . A denial of service vulnerability exists in JerryScript, which can be exploited by an attacker to cause a denial of service...

Linux kernel denial of service vulnerability (CNVD-2021-28688)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A denial of service vulnerability exists in drivers/net/ethernet/freescale/gianfar.c in the Freescale Gianfar Etherne...

Information Disclosure Vulnerability in RG-UAC Ruijie Unified Internet Behavior Management and Auditing System

RG-UAC is a self-developed Internet behavior management and auditing product developed by StarNet Ruijie Networks Co., Ltd. It is deployed at key nodes of the network in routing, transparent, bypass or hybrid modes to conduct comprehensive inspection and analysis of data at layers 2-7. The RG-UAC...

SEO Panel Cross-Site Scripting Vulnerability (CNVD-2021-23384)

SEO Panel is a free, open source SEO optimization software. A cross-site scripting vulnerability exists in SEO Panel version 4.8.0. An attacker can exploit this vulnerability to inject JavaScript via the reporttype parameter in archive.php...

SQL Injection Vulnerability in SongCMS PHP Version of Guangdong Kegel Technology Limited (CNVD-2021-24954)

SongCMS is a PHP MySQL, ASP Access/SQL Server based development, enterprise-oriented, multi-language support, free, open source CMS to help business users to quickly build and deploy enterprise-level portals. A SQL injection vulnerability exists in the PHP version of SongCMS by Guangdong Kager...

Linux kernel denial of service vulnerability (CNVD-2021-23796)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A denial of service vulnerability exists in nttyreceivecharspecial in drivers/tty/ntty.c in Linux kernel versions pri...

CVE-2018-14009

creationtimestamp| type| source ---|---|--- 2021-03-23 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/49705 2021-09-21 06:42:52+00:00| published-proof-of-concept| https://t.me/pwnwikizhchannel/98 2025-09-17 15:00:06+00:00| published-proof-of-concept|...

Concrete CMS Cross-Site Scripting Vulnerability

Concrete CMS is an open source content management system CMS for publishing content on the World Wide Web and intranet. A cross-site scripting vulnerability exists in Concrete CMS versions prior to 8.5.5. A remote authenticated user can exploit this vulnerability via a specially crafted survey...

Google Android elevation of privilege vulnerability (CNVD-2021-24922)

Google Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA. Google Android suffers from an elevation of privilege vulnerability. The vulnerability stems from a privilege bypass in the getMediaOutputSliceAction of RemoteMediaSlice.java. An attacker...

Google Android elevation of privilege vulnerability (CNVD-2021-24924)

Google Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA. Google Android suffers from an elevation of privilege vulnerability. The vulnerability stems from a code logic error in CrossProfileAppsServiceImpl.java, which results in the application's...

Unspecified vulnerability in GLPI (CNVD-2021-17773)

GLPI is an open source IT and asset management software for individual developers. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner and ink...

Mozilla Firefox Information Disclosure Vulnerability (CNVD-2021-15048)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. An information disclosure vulnerability exists in versions of Mozilla Firefox prior to 85. An attacker could exploit this vulnerability to steal sensitive information...

EPrints Command Injection Vulnerability

EPrints is a free open source software package for building open access repositories compliant with the OAI-PMH protocol. EPrints 3.4.2 suffers from a command injection vulnerability. A remote attacker can exploit this vulnerability by entering specially crafted data into cgi/cal?year= URI to...

CVE-2016-8123

...

Memory Corruption Vulnerability in Nitro Pro (CNVD-2021-21846)

Nitro pro is a PDF production and management software. A memory corruption vulnerability exists in Nitro Pro. An attacker could exploit this vulnerability to cause the program to crash...

Synetics i-doit cross-site scripting vulnerability (CNVD-2021-39651)

Synetics i-doit is a set of open source configuration management database CMDB software from Synetics Germany. The software includes features such as IT infrastructure management, network document management, IP address management and IT asset management. A cross-site scripting vulnerability exis...

Microsoft .NET Core Remote Code Execution Vulnerability (CNVD-2021-14788)

Microsoft.NET Core provides a fast, modular platform for creating server applications that run on Windows, Linux and macOS. A remote code execution vulnerability exists in Microsoft .NET Core. An attacker could exploit the vulnerability to execute code on the target server...

SIYUCMS suffers from an arbitrary file download vulnerability

SIYUCMS is a content management system based on ThinkPHP + AdminLTE. SIYUCMS suffers from an arbitrary file download vulnerability. An attacker can exploit this vulnerability to download arbitrary files on the server...

Exploit for Use After Free in Apache Http_Server

CVE-2019-0211 介绍 CVE-2019-0211 软件架构 软件架构说明 安装教程 1. xxxx 2. xxxx 3. xxxx 使用说明 1. xxxx 2. xxxx 3. xxxx 参与贡献 1. Fork 本仓库 2. 新建 Featxxx 分支 3. 提交代码 4. 新建 Pull Request 特技 1. 使用 Readme\XXX.md 来支持不同的语言，例如 Readme\en.md, Readme\zh.md 2. Gitee 官方博客 blog.gitee.com 3. 你可以 https://gitee.com/explore 这个地址来了解 Git...