章管家 listUploadIntelligent.htm SQL注入漏洞

暂无

SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability

SolarWinds Web Help Desk contains a deserialization of untrusted data vulnerability that could allow for remote code execution.

Zabbix ping脚本 存在命令注入漏洞

暂无

Progress Software WhatsUp Gold命令执行漏洞(CVE-2024-4884)

在2023.1.3之前发布的WhatsUp Gold版本中，Progress WhatsUpGold存在一个未认证的远程代码执行漏洞。Apm.UI.Areas.APM.Controllers.CommunityController允许以iisapppool\nmconsole权限执行命令。

Microsoft Windows Power Dependency Coordinator Privilege Escalation Vulnerability

Microsoft Windows Power Dependency Coordinator contains an unspecified vulnerability that allows for privilege escalation, enabling a local attacker to obtain SYSTEM privileges.