共计 187 篇文章
2025
Kyverno's Improper JMESPath Variable Evaluation Lead to Denial of Service
The bSecure plugin for WordPress is vulnerable to Privilege Escalation due to missing
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
The Website Contact Form With File Upload plugin for WordPress is vulnerable to arbitrary file
The FoxyPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file
LibreNMS has Authenticated Local File Inclusion in ajax_formphp that Allows RCE
pyLoad has Path Traversal Vulnerability in json/upload Endpoint that allows Arbitrary File Write
Starlette has possible denial-of-service vector when parsing large files in multipart forms
Nokogiri patches vendored libxml2 to resolve multiple CVEs
Dolibarr has Remote Code Execution Vulnerability (Bypass)