Grafana认证后DuckDB-SQL注入漏洞(CVE-2024-9264) PoC #!/usr/bin/env python3 # https://github.com/nollium/CVE-2024-9264/tree/main # - Requirements (install with pip): # ten # psycopg2-binary from te...

China COSCO Kirin iAudit Fortress get_luser_by_sshport.php remote command execution vulnerability Vulnerability Description COSCO Kirin iAudit Fortress get_luser_by_sshport.php file has command s...

CMA Customer Complaint Management System upFile.ashx A vulnerability to upload any file Vulnerability Description CMA Customer Complaint Management System There is a vulnerability to upload any f...

Broadcom Linkworks GetIMDictionary SQL injection vulnerability Vulnerability Description Broadcom Linkworks Office OA GetIMDictionary interface has SQL injection vulnerability. After sending a re...

BroadLinkworks msgbroadcastuploadfile.aspx background file upload vulnerability Vulnerability Description BroadLinkworks msgbroadcastuploadfile.aspx has a background file upload vulnerability. Af...

Bohua NetDragon Firewall users.xml Unauthorized access Vulnerability Description Bohua NetDragon Firewall users.xml file can be read by any user, including the logged-in account password Vulnera...

Bohua NetDragon Firewall cmd.php Remote Command Execution Vulnerability (OEM) Vulnerability Description Bohua NetDragon firewall cmd.php is insufficient filtering, resulting in command stitching ...

Blue Ocean Excellence Billing Management System Download.php Any file reading vulnerability Vulnerability Description Blue Ocean Excellent Billing Management System There is a vulnerability to re...

Blue Ocean Excellence Billing Management System debug.php Remote Command Execution Vulnerability Vulnerability Description Blue Ocean Excellent Billing Management System debug.php has a command d...

Bitbucket Login bypass vulnerability Vulnerability Description This error has been fixed and deployed on Bitbucket Server > 4.8. Vulnerability Impact Bitbucket Server > 4.8 Network surve...