OneBlog Shiro default key Remote command execution vulnerability Vulnerability Description OneBlog is less than v2.2.1 Remote command execution vulnerability due to the use of Apache Shiro with v...

Yimi OA getfile.jsp Arbitrary file reading vulnerability Vulnerability Description One meter OA getfile.jsp file insufficient filtering, resulting in arbitrary file reading vulnerability Vulnera...

OfficeWeb365 SaveDraw Arbitrary File Upload Vulnerability Vulnerability Description There is a vulnerability to upload any file in the OfficeWeb365 SaveDraw interface. An attacker can upload any ...

OKLite 1.2.25 Backend plug-in installation Upload any file Vulnerability Description OKLite v1.2.25 The background plug-in is incomplete filtering, resulting in malicious Trojan files being uploa...

OKLite 1.2.25 Backend module import Upload any file CVE-2019-16131 Vulnerability Description OKLite v1.2.25 The import and filtering of the background module is not perfect, resulting in maliciou...

OKLite 1.2.25 Backstage Style Module Delete any file CVE-2019-16132 Vulnerability Description OKLite 1.2.25 The background style module exists. Dangerous characters are not filtered, resulting in...

O2OA open A random file reading vulnerability in the background Vulnerability Description O2OA is an open source and free enterprise and team office platform, providing four major platforms: port...

O2OA invoke background remote command execution vulnerability CNVD-2020-18740 Vulnerability Description O2OA is an open source and free enterprise and team office platform, providing four major p...

Node-RED ui_base Any file reading vulnerability Vulnerability Description Node-RED In /nodes/ui_base.js, the URL matches ‘/ui_base/js/*’ and is then passed to path.join, Lack of verification of ...

Nginx out-of-bounds read cache vulnerability CVE-2017-7529 Vulnerability Description When Nginx reverses the proxy site, it usually caches some files, especially static files. If my request conta...