From 795975e7f75117a12a7fed9cd0b777de901b5333 Mon Sep 17 00:00:00 2001
From: Github-Bot <github-bot@example.com>
Date: Wed, 24 Apr 2024 03:25:14 +0000
Subject: [PATCH] Updated by Github Bot

---
 cache/Nsfocus.dat  |  15 +++
 cache/RedQueen.dat |   2 +
 data/cves.db       | Bin 47202304 -> 47206400 bytes
 docs/index.html    | 292 ++++++++++++++++++++++-----------------------
 4 files changed, 163 insertions(+), 146 deletions(-)

diff --git a/cache/Nsfocus.dat b/cache/Nsfocus.dat
index 11cc4ce0ab8..ec350ce5521 100644
--- a/cache/Nsfocus.dat
+++ b/cache/Nsfocus.dat
@@ -188,3 +188,18 @@ d6c5c294d48a46d68f8b7b82114744b3
 ecb3931117c18f588d59321497d5ab03
 3a1461afb1f7210c872c26397f023bdc
 683bb70b842a85f8d42f09138e262e48
+d44a869f1f9124848e7d045c0ce9eb0b
+72579810e7f195cdb385f919519e100a
+114e50e70cd10a0834836de3bd59fd8a
+df7e115fa5c7a7c13b06afea54deed61
+7eb62c06ef8ff48d16f9e1544666d3d8
+31b8d828a9e73fd10f5b974831cc68f7
+fdef16d6144db285f015307e82f07a9d
+39ea8472a0942092df64eba3954bfddf
+e9b819a96a928c1c8d1fb11fe625c841
+4b15b1b31e332a6ca6ae607e90d532d3
+967295d1e563f29a145094c01c1bed83
+02aa7712665d545a48955fe1cc272baa
+c1e8d3f4847190513e5b33dea94114c3
+8a5bb5e975960c79ac61f263d909d0c9
+bf581ecb4d714c46e4c834f4b0e96c59
diff --git a/cache/RedQueen.dat b/cache/RedQueen.dat
index 918d8598b82..bc3f215c793 100644
--- a/cache/RedQueen.dat
+++ b/cache/RedQueen.dat
@@ -175,3 +175,5 @@ d3030211dcec9a42a92987f13596ad55
 e11870f3f07072687523d416df59c498
 c2940fd6df7360d0eda5471b42246380
 588937a2b4f6f9768ad4ea800d6c8998
+2ef04c4b02d59bbdfc4ea56ab259e4a6
+b6fea27f784cf473ec11a8ca7203bc70
diff --git a/data/cves.db b/data/cves.db
index 2151ad2c3e6ba208eb5d4d651c77398fac12aa85..3afb0510f6099c346a67bc6171a999ce73bd6d46 100644
GIT binary patch
delta 4638
zcma*pX`GJr8V7Lmn8A!0OCk|XN`xo(zNn<^YlMi(b+4Kj%giKNJ?U4dEUBhQ4^oy=
zdMK4jDq2w5SD{V&zIUqgyU(d}&dl+m7vJkMytuFb@A@w@GiPpXF>~4077JPz^r%xO
zU9hn9<h&jkf#g9_kh+k3NCBiCq&}npq!3aBX$UEXlt3Cm8bg{unnDhNG=m%pX%1-t
zISkSgayX<Fq&4ISNE=97$dQmz$Wf4XkfR~TK-xo&g>-;)gd7Ly1nCUv0!c%ThjfJ~
z5EY_9bcg{lAr{1jI1m@o4RQkHM94{y?vRrqJs_t*PKES@^n&z;^nvt+^n>(=41f%T
z41x@X41t^m844K&IUO<_G6FIZat34+WHjVV$Qa02$XSrHA?HBGK{y`|;zI&R2#Fvu
zWIW_tNEzfj$OOnlNI7H@WHMw5WGbWrQVFSooDZ1>xd1X9G6QlU<RZw$kV_z!LN0^M
zgk&I>LuNs)fB<qO<SNK)$Q;OA$kmW*AlE|XLFPjiKo&x-gDiqv54izyBcvK~6Xa&d
zV#pH6Es&*<TOnD<GRShs3dn7cm5|#ZcR*G_Rzuc6)<W)t+yz+&xf^m1WIg0wNDi_A
zvJrA0<bKE|$ODiEArC<|Lmq}a0(lg&1@ahVE97y=6Obn%+aTK^PeGoBJOg<avIDXc
zvJ3JY<ax+$$P17cAumB*hP(oK74jP7b;ui#Hz999-iGXfyaU+_*$3GVc^C2?<bB8o
zkPjgTARj?KhI|6~6!ID5bI2EvFCkw+zJ`1Q`4;jW<a@{ukRKsGL4Jn(0{Ip456Ewj
z-ywg@k-Tdqk5W{Z@~MF8QGIGag;YchshCQr5jCbJ)RYdPW^^burxtV=wWPzT6}6@#
zs13EHBdL^*qIPsN9YgKuSn5C>={V{{ov90@>3Hf&3aO-#P6nA|kxdS{)QwJ{6X_)C
zPA5|jI)zT9p45waQy=O}{ir_;pn)`q2GbBajfT=NI-Q2o2pUOe&?p*BXVMrNOJ~v9
zbPkQ9Wd0uc6i`SJ#WbGIr7}8?CeTDGr%5!KrqEQXph~Ku^JyAgK+|akT}T(v#dHZ>
zN|(`0%FyLBi>@Hhm2?%&ra3g1uBL0~TAD}mX#p*y>u3>OPdCtwR82S0&9s=7&@Hr-
zZlx?Oqvf=MZljfSJKaI6Xf>^&wR9)lMeFEpx`)=&y_BO3w2|(k`)LzBKo8PGw3!~J
zN9a-7LXXi_dYqo1CutjPr>E#?dWN2*9ki2n(R1`X?WPy#MS6)|rdQ}ydW~MEH|R}z
zi{7R^^bYN%eYBt6rT6H4`hY&91N0GnOrOxF^cj6lU(lEI6@5+L(6{s*eNR8okMtA$
zOux{t^bh)tey2b3=17XypHftp@~MF8QGIGag;YchshCQr5jCbJ)RYdPW^^burxtV=
zwWPzT6}6@#s13EHBdL^*qIPsN9YgKuSn5C>={V{{ov90@>3Hf&3aO-#P6nA|kxdS{
z)QwJ{6X_)CPA5|jI)zT9p45waQy=O}{ir_;pn)`q2GbBajfT=NI-Q2o2pUOe&?p*B
zXVMrNOJ~v9bPkQ9Wd0uc6i`SJ#WbGIr7}8?CeTDGr%5!KrqEQXph~Ku^JyAgK+|ak
zT}T(v#dHZ>N|(`0%FyLBi>@Hhm2?%&ra3g1uBL0~TAD}mX#p*y>u3>OPdCtwR82S0
z&9s=7&@Hr-Zlx?Oqvf=MZljfSJKaI6Xf>^&wR9)lMeFEpx`)=&y_BO3w2|(k`%{m|
zrqs&44IZw$v`+HJ-j?Ehn^M#2rW(G!<%;(<rCK(qZo0lt_kwgja-HYz{d7}`<$<I;
zn3RW-vN<UaC*_f(Jerg(NqH<OTa)s5Ql3c4lS$c@l<i4*Dk)DV<(Z^Bo0J_%*_o7G
zNqH`{W$&lYr`q>wRb1zuI>i-*JL`W}Kd)ZPg2DN->Mly{Nj1vrUEQR|^$YuDnsSj1
z1|NRhK)qymXc(Sjxv?6%s%AKb6WO6+n1K>RZsaTefz4YEEXnpfqjy?UG$XB<rlO82
zn^f+VP0a59ZF{P1A^%e^RrGFJHt+YTdF_f^-Bt8VFXTF9yKmf(+P0;!wmbE8Nrw^+
zu1Ue8bsCRpw7F52lDWkPiU&7b+pu-f^uj%b-5RWFkYE3_dP@tkO_$xCw{BCZeE3QJ
z$jlhzPAKA1Gi~aWWK7?RBTutq+cARJu=OZVRnG}LTT^sDu$2Q3t@vQUygwJKrFBJ7
z?7q{3^2%{jDkh&71y!ZVzp~4htVzY?v1z!jW?E_22&}Xbm}=VBf*@@xs%x93#X-cG
zG;-Yv*}r$vUW;PI2n=7*LeusAFb<5!GcC{8OgAz-t44c{MYD8gP}#JovaG6lYcQ@^
zw#T#UQpRObteU>YW}2He+(1eDzG0;!J5n9r4oyq-G755T(l%3{Tja;4qeg*mgtp4|
zR%8T@Zp2(i<XVC0*4QGQpVSRyNOZwOZ&Fw~Wa{~46;Y|mNtE`VR25ZtL17h_R64M1
za%J`M)gz9`mJZyNDyUy$4@bMY<G7i&$T>VG9maDJj%WJ58F4bMr3AL?1(q5!VCX7t
zs01|^VWd@6(??CN2!~cgm6fHvr$v*hhE|l7XT46FQ>C?!%wV>2l}sb#?BrPXX1hR*
zoKTN>AZ^uEOjVCeU)RIPa}AY4&}(Gos2$ZYMnzubjG-0PUpH#nJgfZie5$bC{~pXF
zl&dD8tiM7jn&;WJs#%s9nuh5aj%%86qy~XzYrf~z>cUXQ-wxG3X{TjcAZI3_MlzIZ
z*_vyHYGhh^tht_Qm<kV{q6VrTh0Z}jY1)8MqqCVRBk!1EBdyfBYX3^4Cy9)|5*a?v
zmg?(jr0bez1)k+amSRV)5}LXe)^5Q>=HE^<AW39oijdQjL?<y(<ob^4damWUniHsj
z6RNSVs&Qm#X5biVtpRF|Z5pS0l~byhe>?E7Y>%Sn4tDZfGl``A6-jp^kH<jsI4ezY
zwJ^4f$oF*DH2gRW<61pbT~iJgY5(lGd2O=$*6*m@vR4wz$}~q#O=1matT^NywL(iZ
zjL_E{Ggeen=M)_+R&37=YqivLE!*|%T&iRCv69`XdNod+lYHGy0xACqr20<iXpZMb
zwjPJ75}Uqj8;;I%XF0L`@2_WPEZ&xCSG{3YW$S}o(LTv{olG0#x+bd*xN1A{EiF*2
zD0X7roKUr5H&RW*uq-RoL#M{7^|a3S$;i&1wJp^myYJ`qsg?(8Gbm}}CVPH-(k9vS
zFy>38nz3gFwr2;b?kkqZciA+;DB{d&v`Ma}ZR*LMpE5K%^_z{UmbGvH*yI<6l4*rp
zI+@Tow%`?yOeM0FfYb35zIKjog^}*_-Hk)%|L&!2+5g@0QzuRiCRENStvWX<&kk#`
zGu680<Hj9v6*Y4da$S;06OzekrtLZ^JI1PO2BEKW&t3kga)65RXTR+H?b}k#v)js@
V)FJtX>1f$|A3sQ*g5>+!KLMM!c5eUx

delta 2758
zcmWmG^Ox5N7>41Q?=(%eIoY;t+x2AIo~fQ}+qNf9w$^N`ZQZKf*1SJIT=yUFob#UZ
z#%#TkAtvTZhNW2}ON50LORy}uMtF%>S>aa5im(z`kyb)0%1UG<wvt#$tz=emD}|NP
zN@b<C(pYJ&bXIyRgO$<BWM#IpSXr%XR(30gmD7s0a#^{pJXT&SpOxP#U=_3qS%s}4
zR#B^%Rop6Jm9$D(rL8hnS*x5?-l||#v?^JZttwVktD05as$tc%YFV|dI#yk)o>kv!
zU^TQFS&gkGR#U5))!b@fwX|AUt*tgzTdSSb-s)g=v^rUxtu9tqtDDu`>S3`@Ppg;J
z+v;QWwfb58tpV0RYmhbA8e$E#hFQa{5!Og+lr`EKV~w@OS>vq<)<kQPHQAbCO|_<3
z)2$dQ)|z3>v}RehW?OTtxz;>uzO}$wXf3i9TT85^)-r3kwZd9yt+G~IYpk`_I%~bP
z!P;nTvNl^=tgY5IYrD0>+G*{wc3XR_z1BW!zjeSmXdSW+TSu&;)-mh2b;3Gnow80_
zan>2@taZ*hZ(Xo1T9>SN>#}vlx@ujsu3I;(o7OGswspt4Yu&T%TMw*<)+6h&^@jDP
z^_KOv^^Wzf^`7;<^?~)F^^x_l^~CzbdTKqho?D+<FRah3&#f=4FRibvudQ#am)5t|
zch>jT57v*?E9)ogXX~}~i}kDZoAtZ(hxMoRm-V;xkM*zh-#mpcQaD10KmtS}A)=57
ziID_JkqpU^0x6LSsgVY0kq+sR0U41AnUMuqkqz0A133|mT*!?)$cuc)j{+!&LMV(P
zD2iezjuI$|QYeiwD2s9^j|!-WN~nw~sETT+jvA<mTBwaWsEc~2j|OOnMre#CXo_ZN
zjuvQ%R%nejXp44ej}GXFPUws-=!$OWjvfg1?}=XMjXvm$e&~+@7>Gd_j3F3`VHl1P
z7>Q9BjWHODaTt#Yn21T3j47CkX_$@}#9{_!Vit_qn1i{Phxu55g;<2eSc0WkhUHj+
zl~{$<ScA1#hxOQijo5_E*n+LthV9sao!Eul*n_>;hy6H!gE)l4ID(@%hT}MalQ@Ob
zh{GA2#W|eE1zf}>#N#rq;3}@+I&R=5Zs9iW;4bdrJ|5s99^o<Gz?*mrZ{r=ji}&z8
zKEQ|g2p{7KKEYEw!*hI!7x)aH;|qL=ukba#!ApFL@9;f-z>j!^pYStY;}`sj-|##B
zz@PXFf8!tgi~qvsDa83Bga{-+BoZPDiI5mckQB*~94U|zsgN3JkQV8X9vP4knUEP-
zkQLdG9XXH_(a43|$b-Ddhx{mjf+&Q-D1xFWhT<rJk|>4JD1)*nhw`X^il~IjsDi4f
zhU%z+ny7`^sDrwwhx%xMhG>MwXo99_hURF2mS~06XoI$BhxX`zj_8EW=z^~3hVJNr
zVE>-zh2H3czUYVk7=VEoguxhsp%{kY7=e)(h0z#;u^5N(n1G3xgvpqKshEc8h(Ro7
zU?yh4n2kA@i+Pxj1z3nhSd1lDie*@i6<CQ?SdBGUi*;C!4cLfH*o-aMif!1A9oUIo
z*o{5di+$LS12~97IE*7WieosA6F7-eI32pExX{k0iOxrC3JadS_+-!GLgOMrVPWyJ
zUc`kmCEAiYdQ^D5CC^{Rg~*v8XM>yzaz4m~AQyvN3KAdWa*!)Qt_Hal<a&@BL2d@Q
z736l1J3;OSxfkSqkOx5?hT@;Ud=$!4H*?bPdSS^%CB7f^Ix0M2rpRUqW=5<CJqe`<
fkINNZt6+F!Y+WBOyrufd6QLXNDN8>Ny-NN+0S_(2

diff --git a/docs/index.html b/docs/index.html
index b2987a601ca..6048154839d 100644
--- a/docs/index.html
+++ b/docs/index.html
@@ -1,4 +1,4 @@
-<!-- RELEASE TIME : 2024-04-23 23:22:46 -->
+<!-- RELEASE TIME : 2024-04-24 03:25:13 -->
 <html lang="zh-cn">
 
  <head>
@@ -286,7 +286,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>77e33783c65fb599dd25a95235f2bee9</td>
        <td>CVE-2024-3177</td>
-       <td>2024-04-22 23:15:51 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 23:15:51</td>
        <td>A security issue was discovered in Kubernetes where users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using containers, init containers, and ephemeral containers with the envFrom field populated. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the kubernetes.io/enforce-mountable-secrets annotation are used together with containers, init containers, and ephemeral containers with the envFrom field populated.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-3177">详情</a></td>
       </tr>
@@ -294,7 +294,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>280b2b1c7479b8e43c50efa9161e532c</td>
        <td>CVE-2024-32657</td>
-       <td>2024-04-22 23:15:50 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 23:15:50</td>
        <td>Hydra is a Continuous Integration service for Nix based projects. Attackers can execute arbitrary code in the browser context of Hydra and execute authenticated HTTP requests. The abused feature allows Nix builds to specify files that Hydra serves to clients. One use of this functionality is serving NixOS `.iso` files. The issue is only with html files served by Hydra. The issue has been patched on https://hydra.nixos.org around 2024-04-21 14:30 UTC. The nixpkgs package were fixed in unstable and 23.11. Users with custom Hydra packages can apply the fix commit to their local installations. The vulnerability is only triggered when opening HTML build artifacts, so not opening them until the vulnerability is fixed works around the issue.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-32657">详情</a></td>
       </tr>
@@ -302,7 +302,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>62e666b89f29ff2e4e2b22e4bf0e0a42</td>
        <td>CVE-2024-32656</td>
-       <td>2024-04-22 23:15:50 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 23:15:50</td>
        <td>Ant Media Server is live streaming engine software. A local privilege escalation vulnerability in present in versions 2.6.0 through 2.8.2 allows any unprivileged operating system user account to escalate privileges to the root user account on the system. This vulnerability arises from Ant Media Server running with Java Management Extensions (JMX) enabled and authentication disabled on localhost on port 5599/TCP. This vulnerability is nearly identical to the local privilege escalation vulnerability CVE-2023-26269 identified in Apache James. Any unprivileged operating system user can connect to the JMX service running on port 5599/TCP on localhost and leverage the MLet Bean within JMX to load a remote MBean from an attacker-controlled server. This allows an attacker to execute arbitrary code within the Java process run by Ant Media Server and execute code within the context of the `antmedia` service account on the system. Version 2.9.0 contains a patch for the issue. As a workaround, one may remove certain parameters from the `antmedia.service` file.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-32656">详情</a></td>
       </tr>
@@ -310,7 +310,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>554a0ac02706303dcded2a7cd054af14</td>
        <td>CVE-2024-32653</td>
-       <td>2024-04-22 23:15:50 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 23:15:50</td>
        <td>jadx is a Dex to Java decompiler. Prior to version 1.5.0, the package name is not filtered before concatenation. This can be exploited to inject arbitrary code into the package name. The vulnerability allows an attacker to execute commands with shell privileges. Version 1.5.0 contains a patch for the vulnerability.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-32653">详情</a></td>
       </tr>
@@ -318,7 +318,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>4aa135259bd73194edced3140171ead9</td>
        <td>CVE-2024-32480</td>
-       <td>2024-04-22 23:15:50 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 23:15:50</td>
        <td>LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. Versions prior to 24.4.0 are vulnerable to SQL injection. The `order` parameter is obtained from `$request`. After performing a string check, the value is directly incorporated into an SQL statement and concatenated, resulting in a SQL injection vulnerability. An attacker may extract a whole database this way. Version 24.4.0 fixes the issue.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-32480">详情</a></td>
       </tr>
@@ -326,7 +326,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>298f54b7417e20b3553b685ca66b2161</td>
        <td>CVE-2024-32479</td>
-       <td>2024-04-22 22:15:08 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 22:15:08</td>
        <td>LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. Prior to version 24.4.0, there is improper sanitization on the `Service` template name, which can lead to stored Cross-site Scripting. Version 24.4.0 fixes this vulnerability.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-32479">详情</a></td>
       </tr>
@@ -334,7 +334,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>9eccda989b666a21ac84d2c831c4a697</td>
        <td>CVE-2024-32461</td>
-       <td>2024-04-22 22:15:07 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 22:15:07</td>
        <td>LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A SQL injection vulnerability in POST /search/search=packages in LibreNMS prior to version 24.4.0 allows a user with global read privileges to execute SQL commands via the package parameter. With this vulnerability, an attacker can exploit a SQL injection time based vulnerability to extract all data from the database, such as administrator credentials. Version 24.4.0 contains a patch for the vulnerability.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-32461">详情</a></td>
       </tr>
@@ -342,7 +342,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>bee4c8ac511f12f49530a9e00ba8a753</td>
        <td>CVE-2024-32460</td>
-       <td>2024-04-22 22:15:07 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 22:15:07</td>
        <td>FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using `/bpp:32` legacy `GDI` drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use modern drawing paths (e.g. `/rfx` or `/gfx` options). The workaround requires server side support.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-32460">详情</a></td>
       </tr>
@@ -350,7 +350,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>01a245df26fca613f715f7ac0a80509e</td>
        <td>CVE-2024-32459</td>
-       <td>2024-04-22 22:15:07 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 22:15:07</td>
        <td>FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known workarounds are available.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-32459">详情</a></td>
       </tr>
@@ -358,7 +358,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>52ee009d2daa91b59134b9d4ea4cdf3f</td>
        <td>CVE-2024-31036</td>
-       <td>2024-04-22 22:15:07 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 22:15:07</td>
        <td>A heap-buffer-overflow vulnerability in the read_byte function in NanoMQ v.0.21.7 allows attackers to cause a denial of service via transmission of crafted hexstreams.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-31036">详情</a></td>
       </tr>
@@ -1971,10 +1971,130 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
        <th width="43%">TITLE</th>
        <th width="5%">URL</th>
       </tr>
+      <tr>
+       <td>d44a869f1f9124848e7d045c0ce9eb0b</td>
+       <td>CVE-2024-25501</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>Winmail任意代码执行漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93903">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>72579810e7f195cdb385f919519e100a</td>
+       <td>CVE-2024-28089</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>Hitron Technologies CODA-4582跨站脚本漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93902">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>114e50e70cd10a0834836de3bd59fd8a</td>
+       <td>CVE-2024-1767</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>WordPress Blocksy theme跨站脚本漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93901">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>df7e115fa5c7a7c13b06afea54deed61</td>
+       <td>CVE-2024-28753</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>RaspAP信息泄露漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93900">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>7eb62c06ef8ff48d16f9e1544666d3d8</td>
+       <td>CVE-2023-32264</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>OpenText Documentum D2源验证错误漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93899">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>31b8d828a9e73fd10f5b974831cc68f7</td>
+       <td>CVE-2024-2339</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>PostgreSQL Anonymizer输入验证错误漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93898">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>fdef16d6144db285f015307e82f07a9d</td>
+       <td>CVE-2024-23297</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>Apple多款产品信息泄露漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93897">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>39ea8472a0942092df64eba3954bfddf</td>
+       <td>CVE-2024-1320</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>WordPress EventPrime Plugin跨站脚本漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93896">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>e9b819a96a928c1c8d1fb11fe625c841</td>
+       <td>CVE-2024-28754</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>RaspAP拒绝服务漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93895">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>4b15b1b31e332a6ca6ae607e90d532d3</td>
+       <td>CVE-2024-1125</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>WordPress EventPrime Plugin授权错误漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93894">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>967295d1e563f29a145094c01c1bed83</td>
+       <td>CVE-2024-28122</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>JWX不受控制的资源消耗漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93893">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>02aa7712665d545a48955fe1cc272baa</td>
+       <td>CVE-2024-1124</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>WordPress EventPrime Plugin授权错误漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93892">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>c1e8d3f4847190513e5b33dea94114c3</td>
+       <td>CVE-2024-28184</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>WeasyPrint信息泄露漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93891">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>8a5bb5e975960c79ac61f263d909d0c9</td>
+       <td>CVE-2024-1123</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>WordPress EventPrime Plugin授权错误漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93890">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>bf581ecb4d714c46e4c834f4b0e96c59</td>
+       <td>CVE-2023-49340</td>
+       <td>2024-04-23 03:23:07 <img src="imgs/new.gif" /></td>
+       <td>Newland Nquire 1000 Interactive Kiosk访问控制错误漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93889">详情</a></td>
+      </tr>
+
       <tr>
        <td>e9a3507f450b02345057f383f7d3c852</td>
        <td>CVE-2024-23268</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品注入漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93825">详情</a></td>
       </tr>
@@ -1982,7 +2102,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>0df769fb28c5f621bf64cf394f26b4d5</td>
        <td>CVE-2024-23258</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple visionOS和macOS Sonoma越界读取漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93824">详情</a></td>
       </tr>
@@ -1990,7 +2110,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>a78e197b2c93926bc718710dee8303e9</td>
        <td>CVE-2024-23270</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品任意代码执行漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93823">详情</a></td>
       </tr>
@@ -1998,7 +2118,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>1ff8de147db71b63d28d81b81129fdb2</td>
        <td>CVE-2024-23269</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品权限降低漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93822">详情</a></td>
       </tr>
@@ -2006,7 +2126,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>6333257b4fb6ed436fa6835ddb231611</td>
        <td>CVE-2024-23257</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品信息泄露漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93821">详情</a></td>
       </tr>
@@ -2014,7 +2134,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>414421e17ff1dbfb45ba5b7fba3dd471</td>
        <td>CVE-2024-23259</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品拒绝服务漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93820">详情</a></td>
       </tr>
@@ -2022,7 +2142,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>f47210c79440a20e2cff5fb1c921c983</td>
        <td>CVE-2024-23255</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品信息泄露漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93819">详情</a></td>
       </tr>
@@ -2030,7 +2150,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>3a81cc0e6c4cc2bba76d38e9f6c0fc51</td>
        <td>CVE-2024-23260</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple macOS Sonoma权限管理错误漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93818">详情</a></td>
       </tr>
@@ -2038,7 +2158,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>9ecdd7e7d3777d13b79bcd57570320c1</td>
        <td>CVE-2024-23266</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品信息泄露漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93817">详情</a></td>
       </tr>
@@ -2046,7 +2166,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>1d9eff9f6fb552f837e3d99eea8d6851</td>
        <td>CVE-2023-48517</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Adobe Experience Manager跨站脚本漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93816">详情</a></td>
       </tr>
@@ -2054,7 +2174,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>c1f82cc207c1bacda44d76fed261b269</td>
        <td>CVE-2024-23265</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品内存破坏漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93815">详情</a></td>
       </tr>
@@ -2062,7 +2182,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>5b3041fa635c345224fe1aa822c0fc00</td>
        <td>CVE-2024-23264</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品信息泄露漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93814">详情</a></td>
       </tr>
@@ -2070,7 +2190,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>9d6f4bd25ac3a51101f36fa3e5c90b3f</td>
        <td>CVE-2024-23273</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品状态管理错误漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93813">详情</a></td>
       </tr>
@@ -2078,7 +2198,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>e71f533d61672a5310dac3e43d22f66e</td>
        <td>CVE-2024-23272</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple多款产品逻辑漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93812">详情</a></td>
       </tr>
@@ -2086,131 +2206,11 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>d138f3eb68dabd241690cb7614530ca4</td>
        <td>CVE-2024-23281</td>
-       <td>2024-04-22 09:22:44 <img src="imgs/new.gif" /></td>
+       <td>2024-04-22 09:22:44</td>
        <td>Apple macOS Sonoma信息泄露漏洞</td>
        <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93811">详情</a></td>
       </tr>
 
-      <tr>
-       <td>01aa165c6aff1f5e1ea450668b48d4e5</td>
-       <td>CVE-2023-6699</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>WordPress Plugin WP Compress路径遍历漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93775">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>e934324478b55a7965212683b3b9123e</td>
-       <td>CVE-2023-6883</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>WordPress Plugin Easy Social Feed关键资源权限分配错误漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93774">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>91121de19136fa1fbbb7983da9096c0d</td>
-       <td>CVE-2024-24469</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>flusity CMS跨站请求伪造漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93773">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>ce8e649cdfa76d1d4d5db805c370f32c</td>
-       <td>CVE-2024-24397</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>Stimulsoft GmbH Stimulsoft Dashboard.JS跨站脚本漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93772">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>6fb511710a909d2301f2d923dbef3051</td>
-       <td>CVE-2024-21665</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>Pimcore Ecommerce Framework Bundle访问控制不当漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93771">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>752f13c236139632712476f55dd9676f</td>
-       <td>CVE-2024-21666</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>Pimcore Customer Management Framework访问控制错误漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93770">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>5281e293f335ea66158f635bd5cb0721</td>
-       <td>CVE-2022-40361</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>Elite CRM跨站脚本执行漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93769">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>26bcd4765d3e77b46bdbc4d4f3976a14</td>
-       <td>CVE-2022-45794</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>Omron PLC访问控制错误漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93768">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>bcdcacc9f4ea9e7ec3e01e92ec2c5ccb</td>
-       <td>CVE-2023-4246</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>WordPress GiveWP plugin跨站请求伪造漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93767">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>5c10acfc6ee65d78469502c3d49763ab</td>
-       <td>CVE-2024-21667</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>Pimcore Customer Management Framework访问控制错误漏洞（CVE-2024-21667 ）</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93766">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>c19b0008c370ec20eceafed67b0a06f9</td>
-       <td>CVE-2024-23054</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>Plone Docker Official Image远程代码执行漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93765">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>f464980fc574cf2b683de529df66224c</td>
-       <td>CVE-2023-4962</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>WordPress Video PopUp plugin跨站脚本漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93764">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>44a7e28bd2103fb7b24b0813f18ee67b</td>
-       <td>CVE-2023-4247</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>WordPress Plugin GiveWP跨站请求伪造漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93763">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>9aa8b3d60a56a53f92f72c8a3aac314f</td>
-       <td>CVE-2023-4960</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>WordPress WCFM Marketplace plugin跨站脚本漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93762">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>b0d0402483124fd90dc5613f15033936</td>
-       <td>CVE-2023-4248</td>
-       <td>2024-04-22 03:23:52 <img src="imgs/new.gif" /></td>
-       <td>WordPress GiveWP plugin跨站请求伪造漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/93761">详情</a></td>
-      </tr>
-
      </tbody>
     </table>
    </div>