漏洞描述
(CVE-2025-3214)JFinal CMS 5.2.4及之前版本路径遍历漏洞
(CVE-2025-3214)JFinal CMS 5.2.4及之前版本路径遍历漏洞
PoC代码
暂无相关漏洞推荐
- ERG2 1350W 路由器默认口令漏洞
- AirCam IP 150CAM 摄像头默认口令漏洞
- 微力同步 /rest/f/api/resources/f96956469e7be39d 文件读取漏洞
- WordPress Yoco Payments plugin /wp-json/yoco/logs 目录遍历漏洞(CVE-2025-13801)
- Frappe /api/method/frappe.automation.doctype.auto_repeat.auto_repeat.generate_message_preview SQL 注入漏洞(CVE-2025-68929)
- Frappe /files 目录遍历漏洞(CVE-2025-68953)
- POC CVE-2024-29138: WordPress Restrict User Access <= 2.5 - Cross-Site Scripting
- POC CVE-2025-52691: SmarterMail - Unrestricted File Upload
- POC CVE-2025-60188: Atarim < 4.2.2 - Sensitive Information Exposure
- POC CVE-2015-8350: WordPress Calls to Action <=2.4.3 - Authenticated Reflected XSS
- POC CVE-2016-15043: WP Mobile Detector <= 3.5 - Unrestricted File Upload
- POC CVE-2017-18580: WordPress Shortcodes Ultimate <= 5.0.0 - Authenticated Remote Code Execution
- POC CVE-2017-20192: Formidable Forms < 2.05.02 - Cross-Site Scripting