映射到 CWE-77,CWE-89,CWE-564 的搜索结果 (4278)

CVE-2016-2034(发布:2017-06-08 14:29:00)NM
CVSS7.5

[原文]SQL injection vulnerability in ClearPass Policy Manager 6.5.x through 6.5.6 and 6.6.0.

CVE-2015-7346(发布:2017-06-07 17:29:00)NM
CVSS7.5

[原文]SQL injection vulnerability in ZCMS 1.1.

CVE-2015-4046(发布:2017-05-23 00:29:00)NMS
CVSS6.5

[原文]The asset discovery scanner in AlienVault OSSIM before 5.0.1 allows remote authenticated users to execute arbitrary commands via the assets array parameter to netscan/do_scan.php.

CVE-2016-4905(发布:2017-05-22 12:29:00)NM
CVSS7.5

[原文]SQL injection vulnerability in the WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows attackers with administrator rights to execute arbitrary SQL commands via unspecified vectors.

CVE-2015-8257(发布:2017-05-02 10:59:00)NMPS
CVSS9.0

[原文]The devtools.sh script in AXIS network cameras allows remote authenticated users to execute arbitrary commands via shell metacharacters in the app parameter to (1) app_license.shtml, (2) app_license_custom.shtml, (3) app_index.shtml, or (4) app_params.shtml.

CVE-2015-7568(发布:2017-04-24 14:59:00)NM
CVSS7.5

[原文]SQL injection vulnerability in the password recovery feature in Yeager CMS 1.2.1 allows remote attackers to change the account credentials of known users via the "userEmail" parameter.

12345678下一页尾页 第1页 / 共713页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站