ZONE.CI 全球网

Prisna GWT - Google 网站翻译 <= 1.4.11 - 已通过身份验证 (Admin+) PHP 对象注入 (CVE-2024-8514)CV

ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in

SmartSearchWP < 2.4.6 - Unauthenticated OpenAI Key Disclosure (CVE-2024-6845)CVE

WP ULike < 4.7.4 - Admin+ Stored XSS (CVE-2024-7878)CVE编号
CVE-2024-7878利用情况
暂无

adstxt Plugin <= 1.0.0 - Settings Update via CSRF (CVE-2024-7892)CVE编号
CVE-2024

myCred – Loyalty Points and Rewards plugin for WordPress and WooCommerce – Give

Ninja Forms Contact Form <= 3.8.15 - Reflected Self-Based Cross-Site Scripting v

Revolut Gateway for WooCommerce <= 4.17.3 - Missing Authorization to Unauthentic

WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listing

Apache Answer: Avatar URL leaked user email addresses (CVE-2024-40761)CVE编号
CVE

Apache Hadoop: Temporary File Local Information Disclosure (CVE-2024-23454)CVE编号

WordPress Elementor Addons by Livemesh plugin <= 8.5 - Cross Site Scripting (XSS

HT Mega – Absolute Addons For Elementor <= 2.6.5 - Authenticated (Contributor+)

litespeed cache <= 6.4.1 - Authenticated (Administrator+) Stored Cross-Site Scri

error handling in x86 IOMMU identity mapping (CVE-2024-31145)CVE编号
CVE-2024-311

北京和利时工业软件有限公司多款产品存在任意文件下载漏洞（CNVD-2024-37765）CVE编号
N/A利用情况
暂无补丁情况 N/A披露时间 2024-

CODESYS: web server vulnerable to DoS (CVE-2024-8175)CVE编号
CVE-2024-8175利用情况
暂

PCI device pass-through with shared resources (CVE-2024-31146)CVE编号
CVE-2024-31

北京亿赛通科技发展有限责任公司亿赛通电子文档安全管理系统存在SQL注入漏洞（CNVD-2024-37771）CVE编号
N/A利用情况
暂无补丁情况 N/A

Improper signature verification of VPN driver installation in TeamViewer Remote

哎哟！由于使用未初始化的内存而导致分段错误CVE编号
N/A利用情况
暂无补丁情况 N/A披露时间 2024-09-24漏洞描述When trying to

x86: Deadlock in vlapic_error() (CVE-2024-45817)CVE编号
CVE-2024-45817利用情况
暂无补丁情

Camaleon CMS 通过用户文件上传存在存储型 XSS 漏洞（GHSL-2024-184）CVE编号
N/A利用情况
暂无补丁情况 N/A披露时间 2

Improper signature verification of Printer driver installation in TeamViewer Rem

Elementor Addons by Livemesh <= 8.5 - Authenticated (Contributor+) Stored Cross-