快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 360566
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-30917 |
Bucket is a MediaWiki extension to store and retrieve structured data on articles. Prior to 2.1.1, a
|
UNKNOWN | N/A | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-30916 |
Shescape is a simple shell escape library for JavaScript. Prior to 2.1.9, an attacker may be able to
|
UNKNOWN | N/A | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-30913 |
Flarum is open-source forum software. When the flarum/nicknames extension is enabled, a registered u
|
MEDIUM | 4.6 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-30887 |
OneUptime is a solution for monitoring and managing online services. Prior to 10.0.18, OneUptime all
|
CRITICAL | 9.9 | 2026-03-10 |
hackerbay oneuptime
|
NVD | |
| CVE-2026-30885 |
WWBN AVideo is an open source video platform. Prior to 25.0, the /objects/playlistsFromUser.json.php
|
MEDIUM | 5.3 | 2026-03-10 |
wwbn avideo
|
NVD | |
| CVE-2026-30870 |
PowerSync Service is the server-side component of the PowerSync sync engine. In version 1.20.0, when
|
MEDIUM | 6.5 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-30869 |
SiYuan is a personal knowledge management system. Prior to 3.5.10, a path traversal vulnerability in
|
CRITICAL | 9.3 | 2026-03-10 |
b3log siyuan
|
NVD | |
| CVE-2026-30862 |
Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.96, a Criti
|
CRITICAL | 9.0 | 2026-03-10 |
appsmith appsmith
|
NVD | |
| CVE-2026-2364 |
If a legitimate user confirms a self-update prompt or initiate an installation of a CODESYS Developm
|
HIGH | 7.3 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-29773 |
Kubewarden is a policy engine for Kubernetes. Kubewarden cluster operators can grant permissions to
|
MEDIUM | 4.3 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-28513 |
Pocket ID is an OIDC provider that allows users to authenticate with their passkeys to your services
|
HIGH | 8.5 | 2026-03-10 |
pocket-id pocket_id
|
NVD | |
| CVE-2026-28512 |
Pocket ID is an OIDC provider that allows users to authenticate with their passkeys to your services
|
HIGH | 7.1 | 2026-03-10 |
pocket-id pocket_id
|
NVD | |
| CVE-2026-28281 |
InstantCMS is a free and open source content management system. Prior to 2.18.1, InstantCMS does not
|
HIGH | 7.1 | 2026-03-10 |
instantcms instantcms
|
NVD | |
| CVE-2026-28267 |
Multiple i-フィルター products are configured with improper file access permission settings. Files may be
|
MEDIUM | 5.5 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-27689 |
Due to an uncontrolled resource consumption (Denial of Service) vulnerability, an authenticated atta
|
HIGH | 7.7 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-27688 |
Due to a missing authorization check in SAP NetWeaver Application Server for ABAP, an authenticated
|
MEDIUM | 5.0 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-27687 |
Due to missing authorization check in SAP S/4HANA HCM Portugal and SAP ERP HCM Portugal, a user with
|
MEDIUM | 5.8 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-27686 |
Due to a Missing Authorization Check in SAP Business Warehouse (Service API), an authenticated attac
|
MEDIUM | 5.9 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-27685 |
SAP NetWeaver Enterprise Portal Administration is vulnerable if a privileged user uploads untrusted
|
CRITICAL | 9.1 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-27684 |
SAP NetWeaver Feedback Notifications Service contains a SQL injection vulnerability that allows an a
|
MEDIUM | 6.4 | 2026-03-10 |
未知
|
NVD |