漏洞描述
SAP Sybase Event Stream Processor(ESP)中存在多个非法指针引用漏洞,这些漏洞是由于监听服务对XMLRPC请求中的指针变量检验不足导致的。
SAP Sybase Event Stream Processor多个非法指针引用漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2025-9808: The Events Calendar <= 6.15.2 - Information Disclosure
- POC wp-the-events-calendar-fpd: WordPress The Events Calendar - Full Path Disclosure
- POC CVE-2025-47445: WordPress Eventin (Themewinter) ≤ 4.0.26 - Arbitrary File Download
- 用友NC /portal/pt/oacoSchedulerEvents/uncancelEvent SQL 注入漏洞
- WordPress Events Manager /wp-admin/admin-ajax.php SQL 注入漏洞(CVE-2025-6970)
- Wordpress Plugin Eventin /wp-admin/admin-ajax.php proxy_image 文件读取漏洞(CVE-2025-3419)
- WordPress plugin Events Addon for Elementor 跨站脚本漏洞
- 用友NC /portal/pt/oacoSchedulerEvents/changeEvent SQL 注入漏洞
- WordPress Events Manager <= 7.0.3 SQL注入漏洞(CVE-2025-6970)
- POC CVE-2012-1835: WordPress Plugin All-in-One Event Calendar 1.4 - Cross-Site Scripting
- POC CVE-2013-7285: XStream <1.4.6/1.4.10 - Remote Code Execution
- POC CVE-2018-16761: Eventum <3.4.0 - Open Redirect
- POC CVE-2018-19365: Wowza Streaming Engine Manager 4.7.4.01 - Directory Traversal