Express 漏洞列表

mongo-express before 0.54.0 is vulnerable to Remote Code Execution via endpoints that uses the `toBSON` method. A misuse of the `vm` dependency to perform `exec` commands in a non-safe environment. Shodan: http.title:"Mongo Express" Fofa: title="Mongo Express"

mongo-express before 0.54.0 is vulnerable to remote code execution via endpoints that uses the `toBSON` method and misuse the `vm` dependency to perform `exec` commands in a non-safe environment.

Mongo-Express before 1.0.0 is susceptible to remote code execution because it uses safer-eval to validate user supplied javascript. Unfortunately safer-eval sandboxing capabilities are easily bypassed leading to remote code execution in the context of the node server.

Express-handlebars is susceptible to local file inclusion because it mixes pure template data with engine configuration options through the Express render API. More specifically, the layout parameter may trigger file disclosure vulnerabilities in downstream applications. This potential vulnerability is somewhat restricted in that only files with existing extensions (i.e., file.extension) can be included. Files that lack an extension will have .handlebars appended to them. For complete details refer to the referenced GHSL-2021-018 report. Notes in documentation have been added to help users avoid this potential information exposure vulnerability.

An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. It is an unauthenticated SQL injection in the p parameter of the process_login.php login form.

The Email Subscribers by Icegram Express - Email Marketing, Newsletters, Automation for WordPress & WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'run' function of the 'IG_ES_Subscribers_Query' class in all versions up to, and including, 5.7.14 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

Email Subscribers by Icegram Express <= 5.7.20 contains an unauthenticated SQL injection vulnerability via the hash parameter.

WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress plugin LTL Freight Quotes – Worldwide Express Edition 5.0.21版本及之前版本存在跨站脚本漏洞，该漏洞源于网页生成过程中输入的中和不当，导致跨站脚本漏洞。

WordPress插件Icegram Express -邮件营销，新闻通讯，WordPress和WooCommerce自动化存在SQL注入漏洞。该漏洞存在于所有版本，包括5.7.14，通过'IG_ES_Subscribers_Query'类的'run'函数，由于对用户提供的参数逃逸不足以及对现有SQL查询准备不足。这使得未授权的攻击者可以将额外的SQL查询追加到已存在的查询中，从而可以提取数据库中的敏感信息。

mongo-express的某些特定版本中存在远程代码执行漏洞。该漏洞是由于checkValid接口对用户输入数据缺乏有效的过滤导致的。

Mongo Express 存在未授权访问漏洞，攻击者可利用此漏洞获取数据库敏感信息。

mongo-express是一款用于交互式管理MongoDB数据库的、基于Web的轻量级管理界面。mongo-express0.54.0之前版本中存在安全漏洞。攻击者可借助使用toBSON方法的端点利用该漏洞执行代码。

Cisco Unified Contact Center Express（Unified CCX）是美国思科（Cisco）公司的一款统一通信解决方案中的客户关系管理组件。Document Management是其中的一个文档管理应用。 Cisco Unified CCX的Document Management组件中存在安全漏洞，该漏洞源于程序没有正确验证参数。远程攻击者可通过发送特制的HTTP请求利用该漏洞上传任意到任意路径名。

IBM Tivoli Provisioning Manager允许通过服务器、存储器和网络自动化在整个数据中心实现随需应变的计算。 IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1版本中存在远程代码执行漏洞。攻击者可利用该漏洞在使用受影响控件（典型如IE）的应用程序上下文中写入任意数据到本地文件，进而执行该数据。

IBM Cognos Express是美国IBM公司的一套为满足中型企业的需求而构建的集成商业智能（BI）和计划解决方案。该方案提供报表、分析、仪表盘、记分卡、规划、预算和预测等功能。 IBM Cognos Express中的Tomcat Manager组件使用了硬编码的凭据，远程用户可以通过这个凭据获得对组件的非授权访问并执行拒绝服务攻击。