查看最近更新的CVE列表 (90883)

CVE-2015-5383(发布:2017-05-23 00:29:00)NM
CVSSN/A

[原文]Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory.

CVE-2015-5401(发布:2017-05-23 00:29:00)NM
CVSSN/A

[原文]Teradata Gateway before 15.00.03.02-1 and 15.10.x before 15.10.00.01-1 and TD Express before 15.00.02.08_Sles10 and 15.00.02.08_Sles11 allow remote attackers to cause a denial of service (database crash) via a malformed CONFIG REQUEST message.

CVE-2015-5468(发布:2017-05-23 00:29:00)NM
CVSSN/A

[原文]Directory traversal vulnerability in the WP e-Commerce Shop Styling plugin before 2.6 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter to includes/download.php.

CVE-2015-5469(发布:2017-05-23 00:29:00)NM
CVSSN/A

[原文]Absolute path traversal vulnerability in the MDC YouTube Downloader plugin 2.1.0 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter to includes/download.php.

CVE-2015-5609(发布:2017-05-23 00:29:00)NM
CVSSN/A

[原文]Absolute path traversal vulnerability in the Image Export plugin 1.1 for WordPress allows remote attackers to read and delete arbitrary files via a full pathname in the file parameter to download.php.

CVE-2015-5682(发布:2017-05-23 00:29:00)NM
CVSSN/A

[原文]upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to create arbitrary directories via vectors related to the targetDir variable.

首页上一页12345678下一页尾页 第3页 / 共15148页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站