汇总 showdoc 相关全部产品的 CVE 与安全漏洞情报,包括 CVSS、EPSS、公开时间与漏洞情报数据。
常见弱点模式包括 跨站脚本、CSRF、开放重定向与SQL 注入,在 软件部署与生产负载 使用场景中可能带来 会话劫持、文件覆盖与数据泄露 等风险。
相关漏洞数据主要来源于公开漏洞披露与安全公告,可用于评估历史漏洞暴露面与修复优先级。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2025-0520 | An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7. | [email protected] | 9.4 | 0.94% | 2025-04-29 | 2026-06-17 |
| CVE-2022-1034 | There is a Unrestricted Upload of File vulnerability in ShowDoc v2.10.3 in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 7.2 | 1.46% | 2022-03-22 | 2026-06-17 |
| CVE-2022-0967 | Stored XSS via File Upload in star7th/showdoc in star7th/showdoc in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 5.4 | 3.27% | 2022-03-15 | 2026-06-17 |
| CVE-2022-0966 | Stored XSS via File Upload in star7th/showdoc in GitHub repository star7th/showdoc prior to 2.4.10. | [email protected] | 5.4 | 0.53% | 2022-03-15 | 2026-06-17 |
| CVE-2022-0965 | Stored XSS viva .ofd file upload in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 5.4 | 0.89% | 2022-03-15 | 2026-06-17 |
| CVE-2022-0964 | Stored XSS viva .webmv file upload in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 5.4 | 0.83% | 2022-03-15 | 2026-06-17 |
| CVE-2022-0942 | Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 5.4 | 0.74% | 2022-03-15 | 2026-06-17 |
| CVE-2022-0957 | Stored XSS via File Upload in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 5.4 | 0.75% | 2022-03-15 | 2026-06-17 |
| CVE-2022-0956 | Stored XSS via File Upload in GitHub repository star7th/showdoc prior to v.2.10.4. | [email protected] | 5.4 | 0.73% | 2022-03-15 | 2026-06-17 |
| CVE-2022-0951 | File Upload Restriction Bypass leading to Stored XSS Vulnerability in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 6.1 | 0.87% | 2022-03-15 | 2026-06-17 |
| CVE-2022-0950 | Unrestricted Upload of File with Dangerous Type in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 5.4 | 0.62% | 2022-03-15 | 2026-06-17 |
| CVE-2022-0945 | Stored XSS viva axd and cshtml file upload in star7th/showdoc in GitHub repository star7th/showdoc prior to v2.10.4. | [email protected] | 5.4 | 0.80% | 2022-03-15 | 2026-06-17 |
| CVE-2022-0962 | Stored XSS viva .webma file upload in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 5.4 | 0.89% | 2022-03-14 | 2026-06-17 |
| CVE-2022-0960 | Stored XSS viva .properties file upload in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 5.4 | 0.84% | 2022-03-14 | 2026-06-17 |
| CVE-2022-0946 | Stored XSS viva cshtm file upload in GitHub repository star7th/showdoc prior to v2.10.4. | [email protected] | 5.4 | 0.81% | 2022-03-14 | 2026-06-17 |
| CVE-2022-0941 | Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to v2.10.4. | [email protected] | 5.4 | 0.61% | 2022-03-14 | 2026-06-17 |
| CVE-2022-0940 | Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to v2.10.4. | [email protected] | 5.4 | 0.54% | 2022-03-14 | 2026-06-17 |
| CVE-2022-0938 | Stored XSS via file upload in GitHub repository star7th/showdoc prior to v2.10.4. | [email protected] | 5.4 | 0.63% | 2022-03-14 | 2026-06-17 |
| CVE-2022-0937 | Stored xss in showdoc through file upload in GitHub repository star7th/showdoc prior to 2.10.4. | [email protected] | 5.4 | 0.54% | 2022-03-13 | 2026-06-17 |
| CVE-2022-0880 | Cross-site Scripting (XSS) - Stored in GitHub repository star7th/showdoc prior to 2.10.2. | [email protected] | 5.4 | 0.73% | 2022-03-11 | 2026-06-17 |