config 漏洞列表
共找到 119 个与 config 相关的漏洞
📅 加载漏洞趋势中...
- 2025-11-14Windows PolicyConfiguration 计划任务特权提升漏洞(CVE-2025-60710)
- 2025-10-14(CVE-2025-61884) Oracle配置器运行时UI未授权访问漏洞
- 2025-09-01CVE-2019-16663: rConfig v3.9.2 RCE
- 2025-09-01CVE-2019-3799: Spring Cloud Config Server Directory Traversal
- POC 2025-08-01CVE-2001-0537: Cisco IOS HTTP Configuration - Authentication Bypass
- POC 2025-08-01CVE-2018-10956: IPConfigure Orchid Core VMS 2.0.5 - Local File Inclusion
- POC 2025-08-01CVE-2019-16662: rConfig 3.9.2 - Remote Code Execution
- POC 2025-08-01CVE-2019-3799: Spring Cloud Config Server - Local File Inclusion
- POC 2025-08-01CVE-2020-10220: rConfig 3.9 - SQL Injection
- POC 2025-08-01CVE-2020-10546: rConfig 3.9.4 - SQL Injection
- POC 2025-08-01CVE-2020-10547: rConfig 3.9.4 - SQL Injection
- POC 2025-08-01CVE-2020-10548: rConfig 3.9.4 - SQL Injection
- POC 2025-08-01CVE-2020-10549: rConfig <=3.9.4 - SQL Injection
- POC 2025-08-01CVE-2020-12256: rConfig 3.9.4 - Cross-Site Scripting
- POC 2025-08-01CVE-2020-12259: rConfig 3.9.4 - Cross-Site Scripting
- POC 2025-08-01CVE-2020-13638: rConfig 3.9 - Authentication Bypass(Admin Login)
- POC 2025-08-01CVE-2020-5405: Spring Cloud Config - Local File Inclusion
- POC 2025-08-01CVE-2020-5410: Spring Cloud Config Server - Local File Inclusion
- POC 2025-08-01CVE-2020-9425: rConfig <3.9.4 - Sensitive Information Disclosure
- POC 2025-08-01CVE-2021-29006: rConfig 3.9.6 - Local File Inclusion
- POC 2025-08-01CVE-2023-1893: Login Configurator <=2.1 - Cross-Site Scripting
- POC 2025-08-01CVE-2023-39108: rConfig 3.9.4 - Server-Side Request Forgery
- POC 2025-08-01CVE-2023-39109: rConfig 3.9.4 - Server-Side Request Forgery
- POC 2025-08-01CVE-2023-39110: rConfig 3.9.4 - Server-Side Request Forgery
- POC 2025-08-01CVE-2023-46818: ISPConfig - PHP Code Injection
- POC 2025-08-01CVE-2024-21644: pyLoad Flask Config - Access Control
- POC 2025-08-01CVE-2020-5410: Spring Cloud Config Server Directory Traversal
- POC 2025-08-01password-policy-length-unconfigured: RAM Password Policy requires Minimum Length 14 or Greater
- POC 2025-08-01password-policy-symbol-unconfigured: RAM Password Policy requires atleast One Symbol - Unconfigured
- POC 2025-08-01password-policy-uppercase-unconfigured: RAM Password Policy requires atleast One Uppercase - Unconfigured
- POC 2025-08-01azure-openai-private-endpoints-unconfigured: Azure OpenAI Service Instances Not Using Private Endpoints
- POC 2025-08-01alibaba-canal-config-leak: Alibaba Canal config 云密钥信息泄露漏洞
- POC 2025-08-01gcloud-secure-cors-configuration: Secure CORS Configuration for Cloud Storage Buckets
- POC 2025-08-01gcloud-vpc-service-controls-not-configured: Use VPC Service Controls for Cloud Storage Buckets
- POC 2025-08-01linux-rhosts-hostsequiv-misconfig: Rhosts and Hosts.equiv Misconfiguration Check
- POC 2025-08-01insecure-cors-configuration: 不安全的 CORS 配置漏洞
- POC 2025-08-01nacos-config-server-sql-inject: Naocos Config Server SQL injection
- POC 2025-08-01skype-config-csp-bypass: Content-Security-Policy Bypass - Skype Config
- POC 2025-08-01ispconfig-admin-default-login: ISPConfig Admin - Default Password
- POC 2025-08-01ispconfig-hcp-default-login: ISPConfig Hosting Control Panel - Default Login
- POC 2025-08-01rconfig-default-login: rConfig - Default Login
- POC 2025-08-013cx-config: 3CX Config - File Disclosure
- POC 2025-08-01apache-config: Apache Configuration File - Detect
- POC 2025-08-01aws-config: AWS Configuration - Detect
- POC 2025-08-01behat-config: Behat Configuration File - Detect
- POC 2025-08-01cakephp-config: CakePHP Configuration File - Detect
- POC 2025-08-01config-json-exposure-fuzz: Exposed JSON Configuration Files
- POC 2025-08-01config-json: Configuration File - Detect
- POC 2025-08-01config-properties: Config Properties Exposure
- POC 2025-08-01config-rb: Ruby Configuration File - Detect
- POC 2025-08-01configuration-listing: Sensitive Configuration Files Listing - Detect
- POC 2025-08-01cpanel-config: cPanel Configuration - File Disclosure
- POC 2025-08-01fastcgi-config: FastCGI Configuration - File Disclosure
- POC 2025-08-01git-config-nginxoffbyslash: Nginx - Git Configuration Exposure
- POC 2025-08-01git-config: Git Configuration - Detect
- POC 2025-08-01javascript-env-config: JavaScript Environment Configuration - Detect
- POC 2025-08-01joomla-config-dist-file: Joomla! Configuration File - Detect
- POC 2025-08-01karma-config-js: Karma Configuration File - Detect
- POC 2025-08-01msmtp-config: Msmtp - Config Exposure
- POC 2025-08-01parameters-config: Parameters.yml - File Discovery
- POC 2025-08-01protractor-config: Protractor Configuration Exposure
- POC 2025-08-01psalm-config: Psalm Configuration Exposure - Detect
- POC 2025-08-01redis-config: Redis Configuration File - Detect
- POC 2025-08-01s3cfg-config: S3CFG Configuration - Detect
- POC 2025-08-01sftp-credentials-exposure: SFTP Configuration File - Credentials Exposure
- POC 2025-08-01sphinxsearch-config: Sphinx Search Config - Exposure
- POC 2025-08-01symfony-database-config: Symfony Database Configuration File - Detect
- POC 2025-08-01ventrilo-config: Ventrilo Configuration File - Detect
- POC 2025-08-01vite-config: Vite Configuration - File Exposure
- POC 2025-08-01wpconfig-aws-keys: AWS S3 keys Leak
- POC 2025-08-01zend-config-file: Zend Configuration File
- POC 2025-08-01cloud-config: Cloud Config File Exposure
- POC 2025-08-01elastic-kibana-config: Elastic Kibana Config - File Disclosure
- POC 2025-08-01icecast-config: Icecast Config - File Disclosure
- POC 2025-08-01next-js-config-file: Next JS Config - File Disclosure
- POC 2025-08-01nuxtjs-config-file: Nuxtjs Config File - File Disclosure
- POC 2025-08-01raspberry-shake-config: Raspberry Shake Config Detection
- POC 2025-08-01django-debug-config-enabled: Django Debug Configuration Enabled
- POC 2025-08-01gocd-cruise-configuration: GoCd Cruise Configuration disclosure
- POC 2025-08-01ms-front-page-misconfig: Microsoft FrontPage Configuration - Exposure
- POC 2025-08-01salesforce-community-misconfig: Salesforce Community Misconfiguration
- POC 2025-08-01springboot-autoconfig: Detect Springboot autoconfig Actuator
- POC 2025-08-01springboot-configprops: Detect Springboot Configprops Actuator
- POC 2025-08-01tcpconfig: Rockwell Automation TCP/IP Configuration Information - Detect
- POC 2025-08-01esafenet-netsecconfigajax-sqli: Esafenet CDG NetSecConfigAjax - Sql Injection
- POC 2025-08-01rconfig-file-upload: rConfig 3.9.5 - Arbitrary File Upload
- 2025-07-29Exposed JSON Configuration Files 信息泄露漏洞
- 2024-10-09Microsoft Configuration Manager SQL注入漏洞 可导致远程代码执行
- 2024-10-08rConfig 弱口令漏洞
- 2024-08-01Allegra SiteConfigAction 认证绕过漏洞
- 2024-06-24Apache Commons Configuration 远程命令执行漏洞(CVE-2022-33980)
- 2024-05-31电信网关配置管理系统 /manager/teletext/material/rewrite.php 文件 文件上传漏洞
- 2024-05-31Spring Cloud Config CVE-2020-5410 目录遍历漏洞
- 2024-04-11Spring Cloud Config Server 路径穿越导致文件读取漏洞(CVE-2020-5405)
- 2024-04-11Rconfig configcompare.crud.php 服务端请求伪造漏洞
- 2024-04-11Rconfig ajaxGetFileByPath CVE-2023-39110 服务端请求伪造漏洞
- 2024-04-09U+畅捷 sysconfig2_set 存在任意密码修改漏洞
- 2024-02-29F5 BIG-IP Configuration Utility目录遍历漏洞
- 2024-02-22Delta Electronics InfraSuite Device Master CheckLoadingStartupConfig 目录遍历漏洞
- 2024-02-07rConfig Network Device Configuration Tool configDevice.php跨站脚本漏洞
- 2024-02-07rConfig Network Device Configuration ajaxCompareGetCmdDates.php SQL注入漏洞
- 2024-01-26Apache Commons Configuration 远程代码执行漏洞
- 2023-06-12Aerohive NetConfig 10.0r8a 命令执行漏洞(CVE-2020-16152)
- 2023-05-25中保無限Modem Configuration Interface 默认口令漏洞
- 2023-04-12IPConfigure Orchid Core VMS 2.0.5 任意文件读取(CVE-2018-10956)
- 2023-03-20rConfig小于等于3.9.4版本compliancepolicies.inc.php存在SQL注入(CVE-2020-10546)
- 2023-03-20rConfig小于等于3.9.4版本compliancepolicyelements.inc.php存在SQL注入(CVE-2020-10547)
- 2023-03-20rConfig小于等于3.9.4版本devices.inc.php存在SQL注入(CVE-2020-10548)
- 2023-03-20rConfig小于等于3.9.4版本snippets.inc.php存在SQL注入(CVE-2020-10549)
- 2021-12-30rConfig settings.php 未经验证的敏感信息披露(CVE-2020-9425)
- 2021-12-21rConfig ajaxArchiveFiles 后台远程命令执行漏洞
- 2021-08-19rConfig 后台远程命令执行漏洞
- 2021-05-31rConfig /useradmin.inc.php 信息泄露漏洞
- 2021-05-10rConfig userprocess.php 任意用户创建漏洞
- 2021-01-19rConfig远程命令执行漏洞(CVE-2019-16662)
- 2021-01-19ISPconfig虚拟主机管理程序-默认口令
- 2020-06-02(CVE-2020-5410) Spring Cloud Config 目录遍历漏洞
- 2013-03-30Novell ZENworks Configuration Management Control Center 任意文件上传漏洞
- 2012-11-28EMC Smarts Network Configuration Manager 硬编码密钥漏洞