From daf5cdd01880a6484be3da7618ff1b46aa433ee4 Mon Sep 17 00:00:00 2001
From: Github-Bot <github-bot@example.com>
Date: Wed, 27 Nov 2024 03:37:16 +0000
Subject: [PATCH] Updated by Github Bot

---
 cache/Nsfocus.dat |  15 ++++
 data/cves.db      | Bin 50282496 -> 50286592 bytes
 docs/index.html   | 208 +++++++++++++++++++++++-----------------------
 3 files changed, 119 insertions(+), 104 deletions(-)

diff --git a/cache/Nsfocus.dat b/cache/Nsfocus.dat
index 9a2475401e9..0e35b1e52ce 100644
--- a/cache/Nsfocus.dat
+++ b/cache/Nsfocus.dat
@@ -165,3 +165,18 @@ bec2384e7b8281d935df749a25b4f514
 418ac41bdd896add625bb728bbe91f1b
 1c9279f6e4c0d04dc82337a6801548a9
 3badffb5333069f2db5ad689ce6f97c4
+98169601742c73a14d0da9b8826e93d1
+54f35987d8927c409b18d6a2066987b5
+a538437a8c076b60c2e538369c913566
+2c196a970c6d262dcdc0595a969551b1
+0995e3725554f5ef9c2c12685a333249
+46b44d37b489b3e6a1af23be0f6ac9d7
+880d68d2cd619577da80239267f5e966
+0f8ad78442591cc1cb20b77afaa16598
+2fe3c27e92ff89b25bb24fa920909226
+b97351135df869a5f8fd677a240fc3c6
+c2f4d330485abc217f6f409565c879db
+2d742fdb3dc1499ae3f48dc7149547e7
+70f05a07e97f58f46832e1d4fcbabb19
+5224b97219e6a11b7862ce0d996f712d
+2e5a87cf7da9edfd55c79f753626c14d
diff --git a/data/cves.db b/data/cves.db
index ca60bd8f79d7ef0cbb61c2213656917835f32f80..e53c5b96be8f075866578627e247967cfb4eef8f 100644
GIT binary patch
delta 4597
zcmajhd6>=R8^>{TFj)pkWzP}PHu)~+yJ<npD4C)ONy~k<Z>D52B(!kKT~QiTrj0{s
z-}ePgyY^N4rp8i{q_imf-rwohFVuDY=DJ?@b)ECa`8?14JkNd2v}s%0PFuLO?d*<?
zS2SqQYxA6VpMn)RQ7KS~sWen+q|#WWP-QojCMr!;nyEBbDN<>n(o&_B%I+$yRrXM6
zqq3*UUMhR5v{h-R(q5&5N=KDWDxFpKQR$)*SLv#<uSz$S?kYW0_EYJpvcJj!DhH|@
zq;jxIvC1JTy;KYpQ^iuTRT3(WimT$O_$q-)Z<Rw;4pTW?<p`BNDt%S@sT`@&UuA$w
ziAt%;K$W9Zj#e3@a*WDgl`@rMRgO~`qB2zFc$IRM6I6z&3|ASUa-zyem6KFPshq5G
zipr@fr>W4Nq)JL9t&&m6s)Q=1tBh8uP&q^8OqDSzXQ_-;sZ=>zWt>Wt%6OFtD(9$7
zR5@2=lFDS2DJtiwoUd|$%7rRZRi>%rR4!7vSY^73s$8OSsmf(4GgM}(T&{A3$}E*D
zRjO5HtIScEt8$gf)hgGh%u}gRxmM*mmFrb*P`OcMzRCiXyvjnAMJhL`+^n)#<rbA&
zRc=$cUF8myJ5}ydxm)EPm3vk0Q@LN|0hI?;9#VN&<q?%fRUT7$T;&OsCsmfHELB;i
z@{~%g%F`;(s64CkoXYbmFQ~kzvRvgQm6ugsQF&G6HI>&@-cWf{<t>%BRo+o~S7n9D
zdn)g%e4z57%10_6t9+vJsmf<6pR0VKvQp(sm9JFlR9301R#~I6R^@AzZ&bcjS*NmI
z<vW!PD&MPYRQW+=lgf`OKdEe1`B~)`m0wkUQ`w^OyUHIbTUEBHY@Z<ov!nnqG(;mb
zMj>`X6EsCLG)ECype0&iceKVHXoEem7xqS5v_pGzKu2^!XY7M6h@&g^MK^Ru5A27Y
z*dGVrKpcdFQH(>-3kFPBu#tcR7an{B=#4{h7!Jn~=!3rKha=G+15koe48&158iQ~Q
z2BQqe;y4V!P#lkPoPc2%juAK!BXJT&;bfeGQ*j!i{wI+_8X05};&hBg1<t^k7=yDg
z7L_;~<4}e1n1FLI5$9qOCSwZD!}+)X7h)==A%}}_F{VRt2`<HDn1PwN99Li#u0%Cv
zV-DuxDqM|gFb_4j7T4i=+<+S~9}AGjLM*~fxEYIa3vR`2xE*)kPTYmNaS!greYhVF
z;6Xfuhw%s=#bbCJPvA)`!BQ;4Q>ew$cm~hnIXsUS@FJGuCA^GR@G4%z>v#ii;w`+5
zcknJ&;61#L5AY#A!pHaopW-uojxVqhU*ap&VHH+m4c6joe1mVX4(st9HsE_~#1Ghn
zAMq15<7fPWU-28Z;CK9it=NX`1v4bZ^G6H~(Fl!Eh~3ZxP0<X^QG^y~iB{Mht+5B%
zU{CCYz0nr!&>kJo5uMN(`=ATr=!$*O4c*ZL`=KZH#{oDH2jO58;}G<M0TUK%B;de>
z2Oj}?<4_!i!*K-qpfCF2Nc6`5l%Ny?aTJcmARL3iD8sQh4nr^$$D<r4U>JsD1Wv?A
zoP<$08K>Y>oQA0XNu-cQ23dqS9ivf!GjJxx;4F+qCC<h;RAD?O;2ccExtN5>n1b_g
zJ}$t8n2Kr0;UZj&=}=sPOK}-yU?wid6_|x9QH|M{gSog0SK}JYLk+IQb+{fk;6}{H
z0_3p}i*OTe#$w!pTX7q1#~rv6cj0c_gL`ow?#Bao5D(#DJc38@7#_zHcoIvn6wB}w
zYVkCl!LxV{&*KHWh~;<*FXI)wir4Tu-oTr93vc5cyo(ih5AWjxe29<mF+Rbk_za)p
z3#`PK_zHDch1FPtwfGv};M>?TSr=Pe-DGLQ`3<6fUTceHuZvA=7;CY*cKTK8Vm+GG
zw7$Reh{nBs(z^cD>*ueFQPxN0yQpl4%J)&(7?mHQvMDM*M&+ldY>vv$QTZh*zeeS^
zsBDSK?@{?9DqCZ<>*sHawVT_fX@jW^nt!|7r-c(6w`=%SY)Zi=1^L!}rxlDIlCxMv
z)3WwGbIt7*!;+5eCu}e2rwz|dxklQ`@{R2V>A<ud*Im1$cI^%M{=-X(EyGF_d!BEN
zsI1BismhKYzovTbswI!+7ap`O)-E4=W=28BqC~N27F%B2uzTAz$qohk4l@ncH{D!Z
z>yB(v*8YIg$#fE-?F7D;@dL|CCyXFv`WZKA8LrE>DQB0=gkkvJ@QN{&@v`jr(eV)#
zr4{+kGoOfc&(Hp7YphY>4r!z6)4W^<t?L)1jUp`|K5z}wOIT^oPMV2~kx2$A-?!Xs
zU}wyKN%MD3i<eIxKOvhp8gGkr+A*!LKFzP4Vr`FI(xOWX&c3Kg*q~Li<)W6&T1e5d
zqImO(&Ax0_+VsXITbk6iUb(zrSnRR*>=~OH56ZRDy5piHmas&6p7gzR=&`VDCd@ca
z+6zL@v0ckev*2Bq=voP*f904l$<&03iTQCQKgZhVH?-d#D{S~z+lNO>GZMMZT6b)e
zl8oAJS&3BOS!R%Rlct&SeAh~6jZ6@@p=VnENC_;{=vS2<ovn%w8Izn4R#u&rpZ)lj
zShxH}vKsv_YhZnrlk1^%Wl`2RvOFU+oTTAp121&^FyZ>Pl{GVoFr7-KQf9F0jx5J_
zY8F-Y?NIYVx9;uo@#dRjg-y9h?%y}*`1%+(x3|^}j$+EA#$`CwFq5(~v?&OZSvySl
znY70TC*ftionowF%Vx_X%PYeP@$!D9B}4NMblD#3TDU_9Tc&SbZg;IaCJGryNZJY$
z8QV4zzLQL)Ez=9#kW1^hPTKc^OwF8DkF+Ur&A)%QruD4eZ59-6i#6Txr~hn|AGK-F
zUv1(zY{%rGWkTN#l1}J{8Q1fYoNt)6)4RUD1Z}eaPn*i>cM#;-Y2DGp^c)$rDa_hw
zi^H(O&<|3UlS)~MFd0}zU<8)6Ym6WG#^8!DTa}!gA3JbUtb4QQQSZ>Dp;3lu<o40J
zqoS>($uL4cneqGtYYfbE+DxY`BgIz2WYTnb?K>SsqBvo@KF@4YMK<2Qs&Z^i*UQh}
zt7hJYKCS*cLUu^2Z=7jHjT`t^<9y%9xPHb;XIwLIJRXj3Sax8!T(@lSkFgasF7baF
zS6;s<E4PQ%l}3##V^aw?mEi2XRD!nI(X&a0mYvEPp_@zxnVs)fqB!8}PMSO^J0?D?
zd|<qEa7j%;nb#)2vSD-;b{JFjuhX=1hiY9({Uq)jH82RAtnFEj!+dnIVUV`crsZ<!
zY}>XHyFM9@zki*?#;PSt)=aNnGw)J{^Vjz+SzSGE_1r5~U$*d@>lUwBTD|7s1@)8s
zU*~ipnw$foCP$N#{J>2Ho{@GlmTP6wnY7^qPBL%<$1zj?GC2ct=gFCWdwDL_DZeqs
MY}&B_e@;&4KL<>Gga7~l

delta 2918
zcmWmGWwR9o6op|pmy#}Nq(hYM?ru<!UZ8X%-L>fMx^#m`H(VN&?(UTC4&U?Pd4Ir~
z*)zNU+%F0H_y3Y`T+)d9!-dQGdVI>F;r9=a72XP1Ayxz{q7})CY(=rYv!Ytjtmsw@
zE2b68ifzTQ;#%>n_}2GU0xO}F$VzM_v65QJtmM`YRthVnmC8zOrLodl>8$it1}mfW
zqm{|}$@<yKY-O>sTG_1ZRt_ttmCMR)<+1Ww`K<g_0jr=@$SQ0Vv5H#7tm0M)tE5%R
zDs7dq%39^D@>T__qE*SNY*n$UTGg!TRt>AB^^5hZRm-Yv{btp%>RR=z`c?z0q1DJ@
zpT<@b>v!u9tEtt@YHqc#T3W5F)>a#<t<}zIZ*{ObTAi#vt<F{#tE<(`>TdP0dRo1#
z-c}#0uhq}$Zw;^pT7#^?maQSyP-~bq+!|qxv_@H@tufYEYn(OSnqW<|CRvlMDb`eL
znl;^;Va>E=S)tZ!YmPP7nrF?o7FY|dMb=_#iM7;PW-Yf?SSzi+tX0<E)@o~wwboi^
zt+zH<8?8;&W^0SJ)!Jrlw{}=NtuSkswcFZb?X~t<`>g}kLF<t9kM*y0*g9ezwT@ZG
ztrONs>y&lcI%A!+&ROTJ3)V&Jl6Bd-VqLYaS=X%_)=le{b=$gQ-L>vn_pJxkf7V0m
zk@eVmVm-B<S<kH()=TS^_1b!4y|vz1@2wBkN9&XI+4^FAwZ08k_|XcF074J}5fKTI
z5e45NDxx7eVjw1BAvWS5F5)3RzDEKiL?R?c5+p@3B*za(fs{yv)JTK0NQd;ufQ<MN
zneY>SMrLF|R%AnV<Umg3LT=<iUgSf56hJ`~LSYm^Q4~XQlt4+8LTQviS(HP0R6s>k
zLS<AzRa8TD)Id%Af?rV!wecJ3pf2j6J{q7Q8X>rUV>H3<_ybMR49(F3Ezt_C(FSeN
z4(-ta9nlGYqBFXnE4raOdY~tIp*Q-VFZ!WB24EltVK9s#7>Z#Sju9A%Q5cOe7>jWj
zj|rHFNtlc&n2Kqbjv1JVSqQ~!%)wmD!+b2jLM*~!EWuJN!*Z;^O8kXY_#3OS25Yen
z>#+eFu?d^81zWKV+pz;X5r$pZjXl_leb|o!IEX{|2mj(Qj^HSc;W$p<Bu?Qp&fqN0
z;XE$jA}--FuHY)J;W}>MCT`(2?%*!&;XWSVKRm=EJjN3|#WOs|3%tZDyv7^6#XG#m
z2YkdQe8v}i#kcUo72y04KnNlrA|fF&qToA3MKnZ548%k%#6}#%MLfjE_eg+*NQA^l
zf}}`><oE$8kP@ko8flOg>5v{7kP$y36Mn+a$c!w=ifqV^9LR}W$c;S6i+sqB0w{<=
zD2yT~iee~^5-5pMD2*~Gi*hKB3aE%msEjJ8ifX8i8mNh1@GEMeHhx1L)I~kiM*}oO
zBLw$vj3)RUf1oLvp*dQhC0e01+Mq4kp*=dFBRb(vbVe6+MK^Ru5A;MY^hO`_ML+b%
z01U(+42CfTLop1)F#;no3ZpRwV=)fnF#!`X36n7eQ!x$GF#|I(3!#{eIhc!in2!Zm
zh(%b8C0L4OSdJA~iNCN4e`7V)U@g{RJvLw?HeoZiU@Nv^J9c0v!mtawu?Ksx5BqTd
z2XP4h;9nfZ5gf%a9LEWq#3`J{8JxvAoW})R#3fwD6<ozNT*nRE#4X&$9o)q|+{Xj_
zhlhb3dK6eVHp;e;&~U-$H7xqLM}e*(fy;fv22XqxNEdZZoRpoymmd2x^ihC34(3TP
zPlI_D%=2Jg1oJYOSHZjv=1nkfgLxOs`(Qo<^D&rD!F&$pOCaoN=+{7k2{9uDdWMVk
cF!Gg1T_Yw6xwR?w^WiN5VLfwv3k-?zKP04god5s;

diff --git a/docs/index.html b/docs/index.html
index 01b7b907131..bf61d0dfaba 100644
--- a/docs/index.html
+++ b/docs/index.html
@@ -1,4 +1,4 @@
-<!-- RELEASE TIME : 2024-11-26 15:27:26 -->
+<!-- RELEASE TIME : 2024-11-27 03:37:15 -->
 <html lang="zh-cn">
 
  <head>
@@ -366,7 +366,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>e07bc2c33b3c45eb1fe555e936e1f44f</td>
        <td>CVE-2024-11664</td>
-       <td>2024-11-25 09:15:06 <img src="imgs/new.gif" /></td>
+       <td>2024-11-25 09:15:06</td>
        <td>A vulnerability, which was classified as critical, has been found in eNMS up to 4.2. Affected by this issue is the function multiselect_filtering of the file eNMS/controller.py of the component TGZ File Handler. The manipulation leads to path traversal. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The patch is identified as 22b0b443acca740fc83b5544165c1f53eff3f529. It is recommended to apply a patch to fix this issue.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-11664">详情</a></td>
       </tr>
@@ -374,7 +374,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>d2aaafa108cdeddab6eab316968d3f28</td>
        <td>CVE-2024-11663</td>
-       <td>2024-11-25 09:15:06 <img src="imgs/new.gif" /></td>
+       <td>2024-11-25 09:15:06</td>
        <td>A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument keywords leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-11663">详情</a></td>
       </tr>
@@ -382,7 +382,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>17400c831ef3066f86e7e8c3813a506b</td>
        <td>CVE-2022-33862</td>
-       <td>2024-11-25 08:54:39 <img src="imgs/new.gif" /></td>
+       <td>2024-11-25 08:54:39</td>
        <td>IPP software prior to v1.71 is vulnerable to default credential vulnerability. This could lead attackers to identify and access vulnerable systems.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2022-33862">详情</a></td>
       </tr>
@@ -390,7 +390,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>9c4fcb1bac12f13476b88489e06bea12</td>
        <td>CVE-2024-11661</td>
-       <td>2024-11-25 08:15:09 <img src="imgs/new.gif" /></td>
+       <td>2024-11-25 08:15:09</td>
        <td>A vulnerability was found in Codezips Free Exam Hall Seating Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file profile.php of the component Profile Image Handler. The manipulation of the argument image leads to unrestricted upload. The attack can be initiated remotely. The researcher submit confuses the vulnerability class of this issue.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-11661">详情</a></td>
       </tr>
@@ -398,7 +398,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>b32fce327f1088af29d9a77211082940</td>
        <td>CVE-2024-10492</td>
-       <td>2024-11-25 08:15:08 <img src="imgs/new.gif" /></td>
+       <td>2024-11-25 08:15:08</td>
        <td>A vulnerability was found in Keycloak. A user with high privileges could read sensitive information from a Vault file that is not within the expected context. This attacker must have previous high access to the Keycloak server in order to perform resource creation, for example, an LDAP provider configuration and set up a Vault read file, which will only inform whether that file exists or not.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-10492">详情</a></td>
       </tr>
@@ -406,7 +406,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>b899d342ec994e31ea7d20f69831c44e</td>
        <td>CVE-2024-10451</td>
-       <td>2024-11-25 07:37:05 <img src="imgs/new.gif" /></td>
+       <td>2024-11-25 07:37:05</td>
        <td>A flaw was found in Keycloak. This issue occurs because sensitive runtime values, such as passwords, may be captured during the Keycloak build process and embedded as default values in bytecode, leading to unintended information disclosure. In Keycloak 26, sensitive data specified directly in environment variables during the build process is also stored as a default values, making it accessible during runtime. Indirect usage of environment variables for SPI options and Quarkus properties is also vulnerable due to unconditional expansion by PropertyMapper logic, capturing sensitive data as default values in all Keycloak versions up to 26.0.2.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-10451">详情</a></td>
       </tr>
@@ -414,7 +414,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>fd1c6ff78239ee5f70c92bf0ec3420c8</td>
        <td>CVE-2024-10270</td>
-       <td>2024-11-25 07:37:04 <img src="imgs/new.gif" /></td>
+       <td>2024-11-25 07:37:04</td>
        <td>A vulnerability was found in the Keycloak-services package. If untrusted data is passed to the SearchQueryUtils method, it could lead to a denial of service (DoS) scenario by exhausting system resources due to a Regex complexity.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-10270">详情</a></td>
       </tr>
@@ -422,7 +422,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>6a21b3419e5329a7330f496f9e844fd5</td>
        <td>CVE-2024-9666</td>
-       <td>2024-11-25 07:29:52 <img src="imgs/new.gif" /></td>
+       <td>2024-11-25 07:29:52</td>
        <td>A vulnerability was found in the Keycloak Server. The Keycloak Server is vulnerable to a denial of service (DoS) attack due to improper handling of proxy headers. When Keycloak is configured to accept incoming proxy headers, it may accept non-IP values, such as obfuscated identifiers, without proper validation. This issue can lead to costly DNS resolution operations, which an attacker could exploit to tie up IO threads and potentially cause a denial of service. The attacker must have access to send requests to a Keycloak instance that is configured to accept proxy headers, specifically when reverse proxies do not overwrite incoming headers, and Keycloak is configured to trust these headers.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-9666">详情</a></td>
       </tr>
@@ -430,7 +430,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>1f0bffc6e77b30531a3a5027d13a00f1</td>
        <td>CVE-2024-11660</td>
-       <td>2024-11-25 07:00:18 <img src="imgs/new.gif" /></td>
+       <td>2024-11-25 07:00:18</td>
        <td>A vulnerability was found in code-projects Farmacia 1.0. It has been classified as problematic. This affects an unknown part of the file usuario.php. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-11660">详情</a></td>
       </tr>
@@ -438,7 +438,7 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       <tr>
        <td>73c70b14c7658664dabeafc6a043778e</td>
        <td>CVE-2024-6538</td>
-       <td>2024-11-25 06:15:12 <img src="imgs/new.gif" /></td>
+       <td>2024-11-25 06:15:12</td>
        <td>A flaw was found in OpenShift Console. A Server Side Request Forgery (SSRF) attack can happen if an attacker supplies all or part of a URL to the server to query. The server is considered to be in a privileged network position and can often reach exposed services that aren't readily available to clients due to network filtering. Leveraging such an attack vector, the attacker can have an impact on other services and potentially disclose information or have other nefarious effects on the system. The /api/dev-console/proxy/internet endpoint on the OpenShit Console allows authenticated users to have the console's pod perform arbitrary and fully controlled HTTP(s) requests. The full response to these requests is returned by the endpoint. While the name of this endpoint suggests the requests are only bound to the internet, no such checks are in place. An authenticated user can therefore ask the console to perform arbitrary HTTP requests from outside the cluster to a service inside the cluster.</td>
        <td><a target="_blank" href="https://www.tenable.com/cve/CVE-2024-6538">详情</a></td>
       </tr>
@@ -1987,6 +1987,54 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
        <th width="43%">TITLE</th>
        <th width="5%">URL</th>
       </tr>
+      <tr>
+       <td>98169601742c73a14d0da9b8826e93d1</td>
+       <td>CVE-2024-40088</td>
+       <td>2024-11-27 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Vilo Mesh WiFi System目录遍历漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106818">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>54f35987d8927c409b18d6a2066987b5</td>
+       <td>CVE-2024-40087</td>
+       <td>2024-11-27 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Vilo Mesh WiFi System访问控制错误漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106817">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>a538437a8c076b60c2e538369c913566</td>
+       <td>CVE-2024-7782</td>
+       <td>2024-11-27 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>WordPress插件Contact Form by Bit Form任意文件删除漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106816">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>2c196a970c6d262dcdc0595a969551b1</td>
+       <td>CVE-2024-40091</td>
+       <td>2024-11-27 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Vilo Mesh WiFi System信息泄露漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106815">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>0995e3725554f5ef9c2c12685a333249</td>
+       <td>CVE-2024-7777</td>
+       <td>2024-11-27 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>WordPress插件Contact Form by Bit Form任意文件读取和删除漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106814">详情</a></td>
+      </tr>
+
+      <tr>
+       <td>46b44d37b489b3e6a1af23be0f6ac9d7</td>
+       <td>CVE-2024-9677</td>
+       <td>2024-11-27 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Zyxel USG FLEX信息泄露漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106813">详情</a></td>
+      </tr>
+
       <tr>
        <td>f0947cfa9600689a6fffb0d0618e8caa</td>
        <td>CVE-2024-41930</td>
@@ -2108,123 +2156,75 @@ <h2><a href="https://exp-blog.com" target="_blank">眈眈探求</a> | <a href="h
       </tr>
 
       <tr>
-       <td>a1d7ede1e15bd2cded3fd8fdf13435e4</td>
-       <td>CVE-2024-8633</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>WordPress Form Maker by 10Web Plugin跨站脚本漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106570">详情</a></td>
+       <td>880d68d2cd619577da80239267f5e966</td>
+       <td>CVE-2024-42584</td>
+       <td>2024-11-26 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Warehouse Inventory System跨站请求伪造漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106812">详情</a></td>
       </tr>
 
       <tr>
-       <td>26f7a311b4a8e0ab9e4141961dfb4e9e</td>
-       <td>CVE-2024-45981</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>Book Review Library主机标头注入漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106569">详情</a></td>
+       <td>0f8ad78442591cc1cb20b77afaa16598</td>
+       <td>CVE-2024-43688</td>
+       <td>2024-11-26 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Vixie Cron基于堆的缓冲区下溢漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106811">详情</a></td>
       </tr>
 
       <tr>
-       <td>ec10fbaa1d99eeabe7ddc046c17856db</td>
-       <td>CVE-2024-7011</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>Sharp NEC Projectors拒绝服务漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106568">详情</a></td>
+       <td>2fe3c27e92ff89b25bb24fa920909226</td>
+       <td>CVE-2024-8980</td>
+       <td>2024-11-26 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Liferay Portal跨站请求伪造漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106810">详情</a></td>
       </tr>
 
       <tr>
-       <td>189bc22c7d51b3cd763ff10bdef1ff81</td>
-       <td>CVE-2024-8991</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>WordPress OSM – OpenStreetMap Plugin跨站脚本漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106567">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>a2949d42f12fbb4da912d5aeddc82178</td>
-       <td>CVE-2024-9130</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>WordPress GiveWP – Donation Plugin and Fundraising SQL注入漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106566">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>6bf5b28e6a2cd6378fde12703931f48f</td>
-       <td>CVE-2024-8681</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>WordPress Premium Addons for Elementor Plugin跨站脚本漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106565">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>c32d60e21cd149550d7e052a12f50357</td>
-       <td>CVE-2024-41605</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>Foxit PDF Reader和PDF Editor访问控制错误漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106564">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>e6356c09cb479df9e7d1913747a2e534</td>
-       <td>CVE-2024-8922</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>WordPress Product Enquiry for WooCommerce Plugin PHP对象注入漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106563">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>c181caca36bb108adcc2c040fc5e1898</td>
-       <td>CVE-2024-9115</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>WordPress Common Tools for Site Plugin跨站脚本漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106562">详情</a></td>
-      </tr>
-
-      <tr>
-       <td>1d06a01e4e04faf58f3fe3a464aca23f</td>
-       <td>CVE-2024-39431</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>Google Android越界写入漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106561">详情</a></td>
+       <td>b97351135df869a5f8fd677a240fc3c6</td>
+       <td>CVE-2024-42583</td>
+       <td>2024-11-26 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Warehouse Inventory System跨站请求伪造漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106809">详情</a></td>
       </tr>
 
       <tr>
-       <td>228d8af11db1f0c64734f79215202055</td>
-       <td>CVE-2024-9177</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>WordPress Themedy Toolbox Plugin跨站脚本漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106560">详情</a></td>
+       <td>c2f4d330485abc217f6f409565c879db</td>
+       <td>CVE-2022-23861</td>
+       <td>2024-11-26 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>YSoft SAFEQ跨站脚本漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106808">详情</a></td>
       </tr>
 
       <tr>
-       <td>a64ce7077f43f657d2d0eae5daec1294</td>
-       <td>CVE-2024-8725</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>WordPress Advanced File Manager Plugin有限文件上传漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106559">详情</a></td>
+       <td>2d742fdb3dc1499ae3f48dc7149547e7</td>
+       <td>CVE-2022-23862</td>
+       <td>2024-11-26 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>YSoft SAFEQ访问控制错误漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106807">详情</a></td>
       </tr>
 
       <tr>
-       <td>0bb4968eeb955bf74de1e98e9e4f1318</td>
-       <td>CVE-2024-46327</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>Vonets VAP11G-300目录遍历漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106558">详情</a></td>
+       <td>70f05a07e97f58f46832e1d4fcbabb19</td>
+       <td>CVE-2024-42585</td>
+       <td>2024-11-26 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Warehouse Inventory System跨站请求伪造漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106806">详情</a></td>
       </tr>
 
       <tr>
-       <td>8fd6e0987c41583f81e1f14e6fe63efc</td>
-       <td>CVE-2024-45984</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>Blood Bank And Donation Management System跨站脚本漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106557">详情</a></td>
+       <td>5224b97219e6a11b7862ce0d996f712d</td>
+       <td>CVE-2024-49210</td>
+       <td>2024-11-26 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Archer Platform反射型跨站脚本漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106805">详情</a></td>
       </tr>
 
       <tr>
-       <td>da639f65ffcbb2c59bb77220bf1a3078</td>
-       <td>CVE-2024-45985</td>
-       <td>2024-11-25 09:25:51 <img src="imgs/new.gif" /></td>
-       <td>Blood Bank And Donation Management System跨站脚本漏洞</td>
-       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106556">详情</a></td>
+       <td>2e5a87cf7da9edfd55c79f753626c14d</td>
+       <td>CVE-2024-46240</td>
+       <td>2024-11-26 03:35:03 <img src="imgs/new.gif" /></td>
+       <td>Collabtive跨站脚本漏洞</td>
+       <td><a target="_blank" href="http://www.nsfocus.net/vulndb/106804">详情</a></td>
       </tr>
 
      </tbody>