WordPress – Mr.Tcsy 's Blog

发布于 2024-05-10

Warning: Invalid argument supplied for foreach() in /www/wwwroot/blog.cylovecq.top/wp/wp-content/themes/Sakurairo-2.7.2/tpl/content-thumbcard.php on line 12

ssrf-cve-2024-27954-wordpress-automatic

摘要

任意文件读取配合SSRF，直接打mysql即可

发布于 2024-05-09

Warning: Invalid argument supplied for foreach() in /www/wwwroot/blog.cylovecq.top/wp/wp-content/themes/Sakurairo-2.7.2/tpl/content-thumbcard.php on line 12

CVE-2024-33644 Customify Site Library <= 0.0.9 – Unauthenticated Remote Code Execution

摘要

漏洞描述 The Customify Site Library plugin for WordPress is vulnerabl …

发布于 2024-05-08

Warning: Invalid argument supplied for foreach() in /www/wwwroot/blog.cylovecq.top/wp/wp-content/themes/Sakurairo-2.7.2/tpl/content-thumbcard.php on line 12

CVE-2024-27956–WordPress-wp-automatic-SQL

摘要

原文:https://github.com/truonghuuphuc/CVE-2024-27956/下载存在漏洞版本的安装包 h …

发布于 2024-05-08

Warning: Invalid argument supplied for foreach() in /www/wwwroot/blog.cylovecq.top/wp/wp-content/themes/Sakurairo-2.7.2/tpl/content-thumbcard.php on line 12

CVE-2024-3280–ActiveDEMAND <= 0.2.41 – Unauthenticated Arbitrary File Upload

摘要

漏洞信息 WordPress 的 ActiveDEMAND 插件容易受到任意文件上传的攻击，因为在 0.2.41 及之前的所有版本 …

向生活弯了腰的少年

ssrf-cve-2024-27954-wordpress-automatic

CVE-2024-33644 Customify Site Library <= 0.0.9 – Unauthenticated Remote Code Execution

CVE-2024-27956–WordPress-wp-automatic-SQL

CVE-2024-3280–ActiveDEMAND <= 0.2.41 – Unauthenticated Arbitrary File Upload