diff --git a/cache/Nsfocus.dat b/cache/Nsfocus.dat index 18b1cde7539..32d2b420edd 100644 --- a/cache/Nsfocus.dat +++ b/cache/Nsfocus.dat @@ -139,3 +139,18 @@ f32db704495ac592afc6eeaf793d4018 9fb91ccee794e3dbd04e1c5f4b1852ca 79d9e496173770dd2888c49425c11210 b14680b7688e5e0df9b51cccf8278a27 +5bc768d6b21ae898085dca868f465650 +f91d8003fa09089fceea31b748c5c252 +e9b2b18f8d2c4a3d0aae49287d3d2f7b +121d96010deaf1ff60974852264cd6c7 +c6cbabd6d85a43452d86d7c7b2b3ccb1 +acc3a7db2c2ac9bf4bbaf9e3d7a1eae9 +cb66901fca8a602d5fa74968c2b340ee +7e016b5f83f6b5419787053b1ae819c1 +dfe5f0576593fd05efc4be46f26d4700 +d57239b0a662e846499c7156aec116bc +d76edfbfd2385e9ef09b406dd52dd955 +1e7e59c8f483bb32f3bf3bd1ebd40930 +f9131c00955d5734eb9b878078dfd554 +84f6455bb4a352b0c3231e5a3e515d52 +76fa976c8b2146988f7b4a3eb3c4c8b8 diff --git a/data/cves.db b/data/cves.db index 882d13ff9ef..293cd64fe3f 100644 Binary files a/data/cves.db and b/data/cves.db differ diff --git a/docs/index.html b/docs/index.html index 23661fe4d85..9eb5671e215 100644 --- a/docs/index.html +++ b/docs/index.html @@ -1,4 +1,4 @@ - + @@ -366,7 +366,7 @@

眈眈探求 | + 2024-11-09 14:15:18 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mark Tilly MyCurator Content Curation allows Stored XSS.This issue affects MyCurator Content Curation: from n/a through 3.78. 详情 @@ -374,7 +374,7 @@

眈眈探求 | + 2024-11-09 14:15:18 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mark Kinchin Beds24 Online Booking allows Stored XSS.This issue affects Beds24 Online Booking: from n/a through 2.0.25. 详情 @@ -382,7 +382,7 @@

眈眈探求 | + 2024-11-09 14:15:17 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Bricksable Bricksable for Bricks Builder allows Stored XSS.This issue affects Bricksable for Bricks Builder: from n/a through 1.6.59. 详情 @@ -390,7 +390,7 @@

眈眈探求 | + 2024-11-09 14:15:17 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Modernaweb Studio Black Widgets For Elementor allows Stored XSS.This issue affects Black Widgets For Elementor: from n/a through 1.3.6. 详情 @@ -398,7 +398,7 @@

眈眈探求 | + 2024-11-09 14:15:17 Cross-Site Request Forgery (CSRF) vulnerability in Chaser324 Featured Posts Scroll allows Stored XSS.This issue affects Featured Posts Scroll: from n/a through 1.25. 详情 @@ -406,7 +406,7 @@

眈眈探求 | + 2024-11-09 14:15:17 Cross-Site Request Forgery (CSRF) vulnerability in Lars Schenk Responsive Flickr Gallery allows Stored XSS.This issue affects Responsive Flickr Gallery: from n/a through 1.3.1. 详情 @@ -414,7 +414,7 @@

眈眈探求 | + 2024-11-09 14:15:16 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MetricThemes Header Footer Composer for Elementor allows DOM-Based XSS.This issue affects Header Footer Composer for Elementor: from n/a through 1.0.4. 详情 @@ -422,7 +422,7 @@

眈眈探求 | + 2024-11-09 14:15:16 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in EzyOnlineBookings EzyOnlineBookings Online Booking System Widget allows DOM-Based XSS.This issue affects EzyOnlineBookings Online Booking System Widget: from n/a through 1.3. 详情 @@ -430,7 +430,7 @@

眈眈探求 | + 2024-11-09 14:15:16 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kaedinger Audio Comparison Lite audio-comparison-lite allows Stored XSS.This issue affects Audio Comparison Lite: from n/a through 3.4. 详情 @@ -438,7 +438,7 @@

眈眈探求 | + 2024-11-09 14:15:16 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mehrdad Farahani WP EIS allows SQL Injection.This issue affects WP EIS: from n/a through 1.3.3. 详情 @@ -1979,6 +1979,126 @@

眈眈探求 | TITLE URL + + 5bc768d6b21ae898085dca868f465650 + CVE-2024-6674 + 2024-11-11 03:26:23 + Saifeddine ALOUI LoLLMs访问控制错误漏洞 + 详情 + + + + f91d8003fa09089fceea31b748c5c252 + CVE-2024-6673 + 2024-11-11 03:26:23 + Saifeddine ALOUI LoLLMs跨站请求伪造漏洞 + 详情 + + + + e9b2b18f8d2c4a3d0aae49287d3d2f7b + CVE-2024-6581 + 2024-11-11 03:26:23 + Saifeddine ALOUI LoLLMs跨站脚本漏洞 + 详情 + + + + 121d96010deaf1ff60974852264cd6c7 + CVE-2024-6868 + 2024-11-11 03:26:23 + Ettore Di Giacinto LocalAI任意文件写入漏洞 + 详情 + + + + c6cbabd6d85a43452d86d7c7b2b3ccb1 + CVE-2024-7042 + 2024-11-11 03:26:23 + LangChain.js SQL注入漏洞 + 详情 + + + + acc3a7db2c2ac9bf4bbaf9e3d7a1eae9 + CVE-2024-7010 + 2024-11-11 03:26:23 + Ettore Di Giacinto LocalAI信息泄露漏洞 + 详情 + + + + cb66901fca8a602d5fa74968c2b340ee + CVE-2021-38120 + 2024-11-11 03:26:23 + NetIQ Advanced Authentication使用不安全TLS版本漏洞 + 详情 + + + + 7e016b5f83f6b5419787053b1ae819c1 + CVE-2024-7783 + 2024-11-11 03:26:23 + Mintplex AnythingLLM信息泄露漏洞 + 详情 + + + + dfe5f0576593fd05efc4be46f26d4700 + CVE-2024-9989 + 2024-11-11 03:26:23 + WordPress plugin Crypto身份验证绕过漏洞 + 详情 + + + + d57239b0a662e846499c7156aec116bc + CVE-2024-7472 + 2024-11-11 03:26:23 + Lunary电子邮件注入漏洞 + 详情 + + + + d76edfbfd2385e9ef09b406dd52dd955 + CVE-2024-8924 + 2024-11-11 03:26:23 + ServiceNow Now Platform SQL注入漏洞 + 详情 + + + + 1e7e59c8f483bb32f3bf3bd1ebd40930 + CVE-2024-7473 + 2024-11-11 03:26:23 + Lunary IDOR漏洞 + 详情 + + + + f9131c00955d5734eb9b878078dfd554 + CVE-2024-50466 + 2024-11-11 03:26:23 + WordPress plugin DarkMySite跨站请求伪造漏洞 + 详情 + + + + 84f6455bb4a352b0c3231e5a3e515d52 + CVE-2024-10491 + 2024-11-11 03:26:23 + Express.js任意资源注入漏洞 + 详情 + + + + 76fa976c8b2146988f7b4a3eb3c4c8b8 + CVE-2024-50459 + 2024-11-11 03:26:23 + WordPress plugin Stripe Donation and Payment缺少授权漏洞 + 详情 + + 0d71bbd01d2cb6df5b9300d51f083196 CVE-2024-24510 @@ -2099,126 +2219,6 @@

眈眈探求 | 详情 - - 3b95a562d7d1291f1021ec12c3834e49 - CVE-2024-1596 - 2024-11-07 09:22:22 - WordPress Preloader Plus – WordPress Loading Screen Plugin跨站脚本漏洞 - 详情 - - - - 8834535f81a630657166fed3d7c4fb42 - CVE-2024-7620 - 2024-11-07 09:22:22 - WordPress Customizer Export/Import Plugin任意文件上传漏洞 - 详情 - - - - 41351d0ec3732c5dff3d140992fd7bf7 - CVE-2024-6849 - 2024-11-07 09:22:22 - WordPress Preloader Plus – WordPress Loading Screen Plugin跨站脚本漏洞 - 详情 - - - - 329dc028e563c2b3eaf5342016080892 - CVE-2024-45625 - 2024-11-07 09:22:22 - WordPress Forminator Plugin跨站脚本漏洞 - 详情 - - - - 0a50517463a78ffc013c658e23465052 - CVE-2024-40710 - 2024-11-07 09:22:22 - Veeam Backup & Replication远程代码执行漏洞 - 详情 - - - - 2ca13589573246881843402d454bc011 - CVE-2024-38651 - 2024-11-07 09:22:22 - Veeam Service Provider Console代码注入漏洞 - 详情 - - - - f38741b0eb93d7fac5dfb5c9235e182e - CVE-2024-40714 - 2024-11-07 09:22:22 - Veeam Backup & Replication证书验证错误漏洞 - 详情 - - - - 2bc4d6b50a12cca3a9d8361e3c470755 - CVE-2024-39718 - 2024-11-07 09:22:22 - Veeam Service Provider Console输入验证错误漏洞 - 详情 - - - - e22e9fac420f954b2645afd47cd9abb7 - CVE-2024-39715 - 2024-11-07 09:22:22 - Veeam Service Provider Console代码注入漏洞 - 详情 - - - - e665d26d160130f8d8b67f2803a8c2d3 - CVE-2024-39714 - 2024-11-07 09:22:22 - Veeam Service Provider Console代码注入漏洞 - 详情 - - - - e15e2825e5ce182e5104207936b2d04a - CVE-2024-40711 - 2024-11-07 09:22:22 - Veeam Backup & Replication不受信数据反序列化漏洞 - 详情 - - - - 7d1843b3a8a737274978d9798880ba57 - CVE-2024-40712 - 2024-11-07 09:22:22 - Veeam Backup & Replication路径遍历漏洞 - 详情 - - - - 4aae88371035c4ed0cbd4df19ba5c552 - CVE-2024-40718 - 2024-11-07 09:22:22 - Veeam Backup & Replication服务器端请求伪造漏洞 - 详情 - - - - 5297e1b50899834313422dcdc0a9cb43 - CVE-2024-6928 - 2024-11-07 09:22:22 - WordPress Opti Marketing Plugin SQL注入漏洞 - 详情 - - - - 33693b4b688d30c81f0efc06fb8efae7 - CVE-2024-6859 - 2024-11-07 09:22:22 - WordPress WP MultiTasking WordPress Plugin跨站脚本漏洞 - 详情 - -