Vi 漏洞列表
共找到 200 个与 Vi 相关的漏洞
📅 加载漏洞趋势中...
- POC 2025-12-12CVE-2021-37415: Zoho ManageEngine ServiceDesk Plus - Authentication Bypass
- 2025-12-09Ilevia EVE X1 Server存在信息泄露漏洞
- 2025-12-09Ilevia EVE X1 Server存在远程命令执行
- 2025-12-09Ilevia EVE X1 Server存在远程命令执行
- 2025-12-05GeoVision /DateSetting.cgi 命令执行漏洞(CVE-2024-11120)
- POC 2025-12-02cluster-trino-admin-login: Cluster Overview Trino - Admin Login
- POC 2025-12-02unauth-supervisor-dashboard: Unauth Supervisor Dashboard - Detect
- 2025-11-28ilevia EVE X1 Server /ajax/php/ping.php 命令执行漏洞(CVE-2025-60738)
- 2025-11-28Vite /.env/. 目录遍历漏洞(CVE-2025-46565)
- POC 2025-11-21CVE-2021-34427: Eclipse BIRT Viewer - Remote Code Execution
- POC 2025-11-21CVE-2025-61757: Oracle Identity Manager REST WebServices - Authentication Bypass
- 2025-11-21ilevia EVE X1 Server 远程命令执行 CVE-2025-60738
- 2025-11-21(CVE-2025-60738)Ilevia EVE X1 Server ping.php IP参数过滤不足导致远程代码执行漏洞
- POC 2025-11-11CVE-2025-31486: Vite server.fs.deny Bypass - Local File Inclusion
- POC 2025-11-07CVE-2021-41419: QVIS NVR/DVR - Remote Code Execution
- 2025-10-22(CVE-2025-62522)Vite开发服务器Windows环境下文件泄露漏洞
- 2025-10-13Vite 文件读取权限绕过(CVE-2025-46565)
- 2025-10-10(CVE-2025-36604)Dell Unity OS命令注入漏洞
- 2025-09-28NVIDIA Triton Inference Server 未授权 命令注入漏洞
- 2025-09-19万户OA freemarkeService 远程命令执行漏洞
- 2025-09-18QNAP VioStor 授权问题漏洞
- 2025-09-18QNAP VioStor 路径遍历漏洞
- 2025-09-12Ilevia EVE X1 Server /login/login.php 权限绕过漏洞
- 2025-09-09(CVE-2025-58751) Vite server.fs 安全绕过漏洞
- POC 2025-09-05用友NC IMsgCenterWebService 命令执行漏洞
- 2025-09-05Ilevia EVE X1 Server /ajax/php/dbcheck.php 文件读取漏洞
- 2025-09-05Ilevia EVE X1 服务器 login.php 身份认证绕过漏洞
- 2025-09-01trilithic-viewpoint-default-password: Trilithic Viewpoint Default Login
- 2025-09-01consul-service-rce: Consul Service RCE
- 2025-09-01e-weaver-eoffice-webservice-upload-fileupload: E-Weaver EOffice webservice upload file upload
- 2025-09-01esafenet-cdgserver3-autosignservice1-rce: 亿赛通电子文档系统 AutoSignService1 RCE
- 2025-09-01esafenet-cdgserver3-fileauditservice-rce: 亿赛通电子文档系统 FileAuditService RCE
- 2025-09-01hikvision-center-fastjson-rce: 海康威视综合安防-运行管理中心-Fastjson-远程命令执行漏洞
- 2025-09-01hikvision-files-upload: Hikvision Files Upload
- 2025-09-01idocview-cmd-rce: I Doc View cmd.json命令执行漏洞
- 2025-09-01spon-ip-intercom-ping-rce: Hikvision SPON IP网络对讲广播系统存在命令执行漏洞
- 2025-08-29Ilevia EVE X1 Server /ajax/php/login.php 命令执行漏洞
- 2025-08-29Ilevia EVE X1 Server /80-history/eve-server.log 信息泄露漏洞
- 2025-08-28Network Technologies Inc ENVIROMUX存在默认口令
- 2025-08-21VICIdial /VERM/VERM_AJAX_functions.php SQL 注入漏洞(CVE-2024-8503)
- 2025-08-20Ilevia EVE X1 Server 存在信息泄露漏洞
- 2025-08-15ilevia EVE X1 Server get_file_content 接口存在任意文件读取漏洞
- 2025-08-07InvisionCommunity存在代码注入漏洞(CVE-2025-47916)
- 2025-08-06Ilevia EVE X1 Server存在任意文件读取漏洞
- 2025-08-06Ilevia EVE X1 Server存在远程命令执行
- 2025-08-04Richmail 邮件系统openapiservice 存在任意文件上传漏洞
- POC 2025-08-01CVE-2024-12356: Privileged Remote Access & Remote Support - Command Injection
- POC 2025-08-01CVE-2010-2918: Joomla! Component Visites 1.1 - MosConfig_absolute_path Remote File Inclusion
- POC 2025-08-01CVE-2013-4117: WordPress Plugin Category Grid View Gallery 2.3.1 - Cross-Site Scripting
- POC 2025-08-01CVE-2014-4536: Infusionsoft Gravity Forms Add-on < 1.5.7 - Cross-Site Scripting
- POC 2025-08-01CVE-2014-4539: Movies <= 0.6 - Cross-Site Scripting
- POC 2025-08-01CVE-2015-2807: Navis DocumentCloud <0.1.1 - Cross-Site Scripting
- POC 2025-08-01CVE-2015-2863: Kaseya Virtual System Administrator - Open Redirect
- POC 2025-08-01CVE-2015-4455: WordPress Plugin Aviary Image Editor Addon For Gravity Forms 3.0 Beta - Arbitrary File Upload
- POC 2025-08-01CVE-2015-5354: Novius OS 5.0.1-elche - Open Redirect
- POC 2025-08-01CVE-2016-1000134: WordPress HDW Video Gallery <=1.2 - Cross-Site Scripting
- POC 2025-08-01CVE-2016-1000135: WordPress HDW Video Gallery <=1.2 - Cross-Site Scripting
- POC 2025-08-01CVE-2016-1000139: WordPress Infusionsoft Gravity Forms <=1.5.11 - Cross-Site Scripting
- POC 2025-08-01CVE-2016-1000148: WordPress S3 Video <=0.983 - Cross-Site Scripting
- POC 2025-08-01CVE-2016-10367: Opsview Monitor Pro - Local File Inclusion
- POC 2025-08-01CVE-2016-10368: Opsview Monitor Pro - Open Redirect
- POC 2025-08-01CVE-2017-11512: ManageEngine ServiceDesk 9.3.9328 - Arbitrary File Retrieval
- POC 2025-08-01CVE-2017-18537: Visitors Online by BestWebSoft < 1.0.0 - Cross-Site Scripting
- POC 2025-08-01CVE-2017-18562: Error Log Viewer by BestWebSoft < 1.0.6 - Cross-Site Scripting
- POC 2025-08-01CVE-2017-7921: Hikvision - Authentication Bypass
- POC 2025-08-01CVE-2018-10562: Dasan GPON Devices - Remote Code Execution
- POC 2025-08-01CVE-2018-10818: LG NAS Devices - Remote Code Execution
- POC 2025-08-01CVE-2018-11231: Opencart Divido - Sql Injection
- POC 2025-08-01CVE-2018-1207: Dell iDRAC7/8 Devices - Remote Code Injection
- POC 2025-08-01CVE-2019-12581: Zyxel ZyWal/USG/UAG Devices - Cross-Site Scripting
- POC 2025-08-01CVE-2019-16931: WordPress Visualizer <3.3.1 - Cross-Site Scripting
- POC 2025-08-01CVE-2019-16932: Visualizer <3.3.1 - Blind Server-Side Request Forgery
- POC 2025-08-01CVE-2019-5434: Revive Adserver 4.2 - Remote Code Execution
- POC 2025-08-01CVE-2020-0618: Microsoft SQL Server Reporting Services - Remote Code Execution
- POC 2025-08-01CVE-2020-15415: DrayTek Vigor - Command Injection
- POC 2025-08-01CVE-2020-27361: Akkadian Provisioning Manager 4.50.02 - Sensitive Information Disclosure
- POC 2025-08-01CVE-2020-28351: Mitel ShoreTel 19.46.1802.0 Devices - Cross-Site Scripting
- POC 2025-08-01CVE-2020-8115: Revive Adserver <=5.0.3 - Cross-Site Scripting
- POC 2025-08-01CVE-2020-9047: exacqVision Web Service - Remote Code Execution
- POC 2025-08-01CVE-2020-9376: D-Link DIR-610 Devices - Information Disclosure
- POC 2025-08-01CVE-2021-20123: Draytek VigorConnect 1.6.0-B - Local File Inclusion
- POC 2025-08-01CVE-2021-20124: Draytek VigorConnect 6.0-B3 - Local File Inclusion
- POC 2025-08-01CVE-2021-21978: VMware View Planner <4.6 SP1- Remote Code Execution
- POC 2025-08-01CVE-2021-22873: Revive Adserver <5.1.0 - Open Redirect
- POC 2025-08-01CVE-2021-24498: WordPress Calendar Event Multi View <1.4.01 - Cross-Site Scripting
- POC 2025-08-01CVE-2021-24750: WordPress Visitor Statistics (Real Time Traffic) <4.8 -SQL Injection
- POC 2025-08-01CVE-2021-24934: Visual CSS Style Editor < 7.5.4 - Cross-Site Scripting
- POC 2025-08-01CVE-2021-24970: WordPress All-In-One Video Gallery <2.5.0 - Local File Inclusion
- POC 2025-08-01CVE-2021-28149: Hongdian H8922 3.0.5 Devices - Local File Inclusion
- POC 2025-08-01CVE-2021-28854: VICIdial Sensitive Information Disclosure
- POC 2025-08-01CVE-2021-31581: Akkadian Provisioning Manager - Information Disclosure
- POC 2025-08-01CVE-2021-33904: Accela Civic Platform <=21.1 - Cross-Site Scripting
- POC 2025-08-01CVE-2021-34370: Accela Civic Platform <=21.1 - Cross-Site Scripting
- POC 2025-08-01CVE-2021-36260: Hikvision IP camera/NVR - Remote Command Execution
- POC 2025-08-01CVE-2021-36356: Kramer VIAware - Remote Code Execution
- POC 2025-08-01CVE-2021-37416: Zoho ManageEngine ADSelfService Plus <=6103 - Cross-Site Scripting
- POC 2025-08-01CVE-2021-37589: Virtua Software Cobranca <12R - Blind SQL Injection
- POC 2025-08-01CVE-2021-39350: FV Flowplayer Video Player WordPress plugin - Authenticated Cross-Site Scripting
- POC 2025-08-01CVE-2021-40539: Zoho ManageEngine ADSelfService Plus v6113 - Unauthenticated Remote Command Execution
- POC 2025-08-01CVE-2021-40870: Aviatrix Controller 6.x before 6.5-1804.1922 - Remote Command Execution
- POC 2025-08-01CVE-2021-42071: Visual Tools DVR VX16 4.2.28.0 - Unauthenticated OS Command Injection
- POC 2025-08-01CVE-2021-43734: kkFileview v4.0.0 - Local File Inclusion
- POC 2025-08-01CVE-2021-44077: Zoho ManageEngine ServiceDesk Plus - Remote Code Execution
- POC 2025-08-01CVE-2021-44529: Ivanti EPM Cloud Services Appliance Code Injection
- POC 2025-08-01CVE-2021-44848: Thinfinity VirtualUI User Enumeration
- POC 2025-08-01CVE-2021-46068: Vehicle Service Management System - Stored Cross-Site Scripting
- POC 2025-08-01CVE-2021-46069: Vehicle Service Management System 1.0 - Stored Cross Site Scripting
- POC 2025-08-01CVE-2021-46071: ehicle Service Management System 1.0 - Cross-Site Scripting
- POC 2025-08-01CVE-2021-46072: Vehicle Service Management System 1.0 - Stored Cross Site Scripting
- POC 2025-08-01CVE-2021-46073: Vehicle Service Management System 1.0 - Cross Site Scripting
- POC 2025-08-01CVE-2022-0140: WordPress Visual Form Builder <3.0.8 - Information Disclosure
- POC 2025-08-01CVE-2022-0434: WordPress Page Views Count <2.4.15 - SQL Injection
- POC 2025-08-01CVE-2022-0786: WordPress KiviCare <2.3.9 - SQL Injection
- POC 2025-08-01CVE-2022-0826: WordPress WP Video Gallery <=1.7.1 - SQL Injection
- POC 2025-08-01CVE-2022-1026: Kyocera Net View Address Book Exposure
- POC 2025-08-01CVE-2022-1392: WordPress Videos sync PDF <=1.7.4 - Local File Inclusion
- POC 2025-08-01CVE-2022-22242: Juniper Web Device Manager - Cross-Site Scripting
- POC 2025-08-01CVE-2022-23178: Crestron Device - Credentials Disclosure
- POC 2025-08-01CVE-2022-24627: AudioCodes Device Manager Express - SQL Injection
- POC 2025-08-01CVE-2022-24681: ManageEngine ADSelfService Plus <6121 - Stored Cross-Site Scripting
- POC 2025-08-01CVE-2022-24900: Piano LED Visualizer 1.3 - Local File Inclusion
- POC 2025-08-01CVE-2022-2633: All-In-One Video Gallery <=2.6.0 - Server-Side Request Forgery
- POC 2025-08-01CVE-2022-2756: Kavita <0.5.4.1 - Server-Side Request Forgery
- POC 2025-08-01CVE-2022-28117: Navigate CMS 2.9.4 - Server-Side Request Forgery
- POC 2025-08-01CVE-2022-2863: WordPress WPvivid Backup <0.9.76 - Local File Inclusion
- POC 2025-08-01CVE-2022-29298: SolarView Compact 6.00 - Local File Inclusion
- POC 2025-08-01CVE-2022-29299: SolarView Compact 6.00 - 'time_begin' Cross-Site Scripting
- POC 2025-08-01CVE-2022-29301: SolarView Compact 6.00 - 'pow' Cross-Site Scripting
- POC 2025-08-01CVE-2022-29303: SolarView Compact 6.00 - OS Command Injection
- POC 2025-08-01CVE-2022-29349: kkFileView 4.0.0 - Cross-Site Scripting
- POC 2025-08-01CVE-2022-31373: SolarView Compact 6.00 - Cross-Site Scripting
- POC 2025-08-01CVE-2022-32770: WWBN AVideo 11.6 - Cross-Site Scripting
- POC 2025-08-01CVE-2022-32771: WWBN AVideo 11.6 - Cross-Site Scripting
- POC 2025-08-01CVE-2022-32772: WWBN AVideo 11.6 - Cross-Site Scripting
- POC 2025-08-01CVE-2022-33119: NUUO NVRsolo Video Recorder 03.06.02 - Cross-Site Scripting
- POC 2025-08-01CVE-2022-33965: WordPress Visitor Statistics <=5.7 - SQL Injection
- POC 2025-08-01CVE-2022-35151: kkFileView 4.1.0 - Cross-Site Scripting
- POC 2025-08-01CVE-2022-38463: ServiceNow - Cross-Site Scripting
- POC 2025-08-01CVE-2022-39048: ServiceNow - Cross-site Scripting
- POC 2025-08-01CVE-2022-40879: kkFileView 4.1.0 - Cross-Site Scripting
- POC 2025-08-01CVE-2022-40881: SolarView 6.00 - Remote Command Execution
- POC 2025-08-01CVE-2022-43140: kkFileView 4.1.0 - Server-Side Request Forgery
- POC 2025-08-01CVE-2022-45933: KubeView <=0.1.31 - Information Disclosure
- POC 2025-08-01CVE-2022-46934: kkFileView 4.1.0 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-0600: WP Visitor Statistics (Real Time Traffic) < 6.9 - SQL Injection
- POC 2025-08-01CVE-2023-1408: Video List Manager <= 1.7 - SQL Injection
- POC 2025-08-01CVE-2023-23333: SolarView Compact 6.00 - OS Command Injection
- POC 2025-08-01CVE-2023-2624: KiviCare WordPress Plugin - Cross-Site Scripting
- POC 2025-08-01CVE-2023-26255: STAGIL Navigation for Jira Menu & Themes <2.0.52 - Local File Inclusion
- POC 2025-08-01CVE-2023-26256: STAGIL Navigation for Jira Menu & Themes <2.0.52 - Local File Inclusion
- POC 2025-08-01CVE-2023-27482: Home Assistant Supervisor - Authentication Bypass
- POC 2025-08-01CVE-2023-29919: SolarView Compact <= 6.00 - Local File Inclusion
- POC 2025-08-01CVE-2023-30868: Tree Page View Plugin < 1.6.7 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-34124: SonicWall GMS and Analytics Web Services - Shell Injection
- POC 2025-08-01CVE-2023-36844: Juniper Devices - Remote Code Execution
- POC 2025-08-01CVE-2023-3722: Avaya Aura Device Services - OS Command Injection
- POC 2025-08-01CVE-2023-38040: Revive Adserver 5.4.1 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-4113: PHPJabbers Service Booking Script 1.0 - Cross Site Scripting
- POC 2025-08-01CVE-2023-45852: Viessmann Vitogate 300 - Remote Code Execution
- POC 2025-08-01CVE-2023-48728: WWBN AVideo 11.6 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-5074: D-Link D-View 8 v2.0.1.28 - Authentication Bypass
- POC 2025-08-01CVE-2023-5222: Viessmann Vitogate 300 - Hardcoded Password
- POC 2025-08-01CVE-2023-6895: Hikvision IP ping.php - Command Execution
- POC 2025-08-01CVE-2024-1061: WordPress HTML5 Video Player - SQL Injection
- POC 2025-08-01CVE-2024-11728: KiviCare Clinic & Patient Management System (EHR) <= 3.6.4 - SQL Injection
- POC 2025-08-01CVE-2024-12849: Error Log Viewer By WP Guru <= 1.0.1.3 - Missing Authorization to Arbitrary File Read
- POC 2025-08-01CVE-2024-12987: DrayTek Vigor - Command Injection
- POC 2025-08-01CVE-2024-13624: WordPress WPMovieLibrary Plugin <= 2.1.4.8 - Cross-Site Scripting
- POC 2025-08-01CVE-2024-3850: Uniview NVR301-04S2-P4 - Cross-Site Scripting
- POC 2025-08-01CVE-2024-38653: Ivanti Avalanche SmartDeviceServer - XML External Entity
- POC 2025-08-01CVE-2024-40422: Devika v1 - Path Traversal
- POC 2025-08-01CVE-2024-45488: SafeGuard for Privileged Passwords < 7.5.2 - Authentication Bypass
- POC 2025-08-01CVE-2024-47062: Navidrome < 0.53.0 - Authenticated SQL Injection
- POC 2025-08-01CVE-2024-4879: ServiceNow UI Macros - Template Injection
- POC 2025-08-01CVE-2024-50603: Aviatrix Controller - Remote Code Execution
- POC 2025-08-01CVE-2024-5217: ServiceNow - Incomplete Input Validation
- POC 2025-08-01CVE-2024-5334: Devika - Local File Inclusion
- POC 2025-08-01CVE-2024-5522: WordPress HTML5 Video Player < 2.5.27 - SQL Injection
- POC 2025-08-01CVE-2024-6926: Viral Signup <= 2.1 - SQL Injection
- POC 2025-08-01CVE-2024-7339: TVT DVR Sensitive Device - Information Disclosure
- POC 2025-08-01CVE-2024-8503: VICIdial - SQL Injection
- POC 2025-08-01CVE-2024-8963: Ivanti Cloud Services Appliance - Path Traversal
- POC 2025-08-01CVE-2025-24963: Vitest Browser Mode - Local File Read
- POC 2025-08-01CVE-2025-27112: Navidrome <=0.54.5 - Authentication Bypass in Subsonic API
- POC 2025-08-01CVE-2025-29085: Vipshop Saturn Console <= 3.5.1 - SQL Injection via ClusterKey Component
- POC 2025-08-01CVE-2025-30208: Vite - Arbitrary File Read
- POC 2025-08-01CVE-2025-31125: Vite Development Server - Path Traversal
- POC 2025-08-01CVE-2025-31324: SAP NetWeaver Visual Composer Metadata Uploader - Deserialization
- POC 2025-08-01CVE-2025-34035: EnGenius EnShare IoT Gigabit Cloud Service 1.4.11 Root Remote Code Execution
- POC 2025-08-01CVE-2025-44148: MailEnable Mail Service < v10 - Cross-Site Scripting
- POC 2025-08-01CVE-2025-47916: Invision Community <=5.0.6 Unauthenticated RCE via Template Injection
- POC 2025-08-01CVE-2025-54125: XWiki XML View - Sensitive Information Exposure
- POC 2025-08-01CVE-2025-5961: WordPress WPvivid Backup & Migration Plugin <= 0.9.116 - Authenticated Arbitrary File Upload
- POC 2025-08-01CVE-2017-11610: Supervisor RCE
- POC 2025-08-01CVE-2017-7921: Hikvision CVE-2017-7921
- POC 2025-08-01CVE-2018-11686: FlexPaper PHP Publish Service RCE
- POC 2025-08-01CVE-2021-33044: Dahua IPC/VTH/VTO devices Authentication Bypass
- POC 2025-08-01CVE-2021-36260: Hikvision IP camera/NVR - Unauthenticated RCE
- POC 2025-08-01ack-cluster-auditing-disable: Cluster Auditing with Simple Log Service - Disabled
- POC 2025-08-01multi-region-logging-disabled: Global Service (Multi-Region) Logging - Disabled