- 主要做 Java/Golang 开发
- 没有任何公众号和知识星球
- 2022 年毕业的本科生,目前在 长亭科技 工作
- 主要维护的项目:super-xray
- 有时间会完善的项目:jar-analyzer
- 我会在 B站 分享一些安全相关知识,也会发一些弹钢琴的视频
Vendor | Product | CVE-ID | Type |
---|---|---|---|
Apache | Log4j2 | CVE-2021-45046 | DoS & RCE |
Spring | Spring Framework | CVE-2022-22950 | DoS |
Oracle | Weblogic | CVE-2022-21441 | DoS |
Apache | Tomcat | CVE-2022-29885 | DoS |
Apache | Shiro | CVE-2022-32532 | Auth Bypass |
Oracle | Weblogic | CVE-2022-21557 | Directory Traversal |
Oracle | Weblogic | CVE-2022-21560 | DoS |
Oracle | SOA Suite | CVE-2022-21562 | Arbitrary File Write |
Oracle | Weblogic | CVE-2022-21564 | DoS |
Apache | SystemDS | CVE-2022-26477 | DoS |
Apache | InLong | CVE-2022-40955 | RCE |
Oracle | Siebel CRM | CVE-2022-21598 | Arbitrary File Write |
Oracle | Weblogic | CVE-2022-21616 | Others |
Oracle | SOA Suite | CVE-2022-21622 | Arbitrary File Write |
Oracle | Enterprise Manager | CVE-2022-21623 | Arbitrary File Write |
Apache | Isis | CVE-2022-42466 | Stored XSS |
Apache | Batik | CVE-2022-41704 | SSRF to RCE |
Apache | Batik | CVE-2022-42890 | SSRF to RCE |
Apache | Linkis | CVE-2022-39944 | RCE |
Apache | IoTDB | CVE-2022-43766 | DoS |
Apache | DolphinScheduler | CVE-2022-45875 | RCE |
Apache | ManifoldCF | CVE-2022-45910 | LDAP Injection |
Oracle | BI Publisher | CVE-2023-21832 | RCE |
Oracle | Weblogic | CVE-2023-21839 | RCE |
Oracle | BI Publisher | CVE-2023-21846 | RCE |