CVE-2023-26912
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2023-26912
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Cross site scripting (XSS) vulnerability in xenv S-mall-ssm thru commit 3d9e77f7d80289a30f67aaba1ae73e375d33ef71 on Feb 17, 2020, allows local attackers to execute arbitrary code via the evaluate button.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
xenv S-mall-ssm 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
S-mall-ssm(小小商城系统)是中国不那么空(xenv)个人开发者的一个商城系统。 xenv S-mall-ssm 存在安全漏洞,该漏洞源于允许本地攻击者通过评估按钮执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2023-26912
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2023-26912
请登录查看更多情报信息。
Same Patch Batch · n/a · 2023-03-15 · 34 CVEs total
| CVE-2023-1415 | 6.3 MEDIUM | Simple Art Gallery adminHome.php sliderPicSubmit unrestricted upload |
| CVE-2023-1416 | 6.3 MEDIUM | Simple Art Gallery adminHome.php sql injection |
| CVE-2023-26084 | AArch64cryptolib 路径遍历漏洞 | |
| CVE-2023-28461 | Array Networks ArrayOS AG 授权问题漏洞 | |
| CVE-2023-27102 | Libde265 代码问题漏洞 | |
| CVE-2023-27103 | Libde265 缓冲区错误漏洞 | |
| CVE-2023-27234 | JIZHICMS 跨站请求伪造漏洞 | |
| CVE-2023-27235 | JIZHICMS 代码问题漏洞 | |
| CVE-2023-27239 | Tenda AX3 缓冲区错误漏洞 | |
| CVE-2023-27240 | Tenda AX3 命令注入漏洞 | |
| CVE-2023-27757 | PerfreeBlog 代码问题漏洞 | |
| CVE-2023-27781 | JPEGOPTIM 缓冲区错误漏洞 | |
| CVE-2023-28337 | NETGEAR RAX30 代码问题漏洞 | |
| CVE-2023-28338 | NETGEAR RAX30 安全漏洞 | |
| CVE-2023-28371 | Stellarium 路径遍历漏洞 | |
| CVE-2023-28450 | dnsmasq 安全漏洞 | |
| CVE-2023-28460 | Array Networks APV products 命令注入漏洞 | |
| CVE-2023-25345 | swig 路径遍历漏洞 | |
| CVE-2023-25344 | swig 安全漏洞 | |
| CVE-2023-25282 | D-Link DIR820LA1 缓冲区错误漏洞 |
Showing top 20 of 34 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2023-26912
No comments yet