快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 360566
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-1574 |
The MyQtip – easy qTip2 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the pl
|
MEDIUM | 6.4 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1569 |
The Wueen plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `wueen-
|
MEDIUM | 6.4 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1087 |
The Guardian News Feed plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versi
|
MEDIUM | 4.3 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1086 |
The Font Pairing Preview For Landing Pages plugin for WordPress is vulnerable to Cross-Site Request
|
MEDIUM | 4.3 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1085 |
The True Ranker plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up
|
MEDIUM | 4.3 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1074 |
The WP App Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'app-bar-fe
|
HIGH | 7.2 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1073 |
The Purchase Button For Affiliate Link plugin for WordPress is vulnerable to Cross-Site Request Forg
|
MEDIUM | 4.3 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1071 |
The Carta Online plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin setting
|
MEDIUM | 4.4 | 2026-03-07 |
未知
|
NVD | |
| CVE-2025-14675 |
The Meta Box plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file
|
HIGH | 7.2 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-30842 |
Wallos is an open-source, self-hostable personal subscription tracker. Prior to version 4.6.2, Wallo
|
MEDIUM | 4.3 | 2026-03-07 |
wallosapp wallos
|
NVD | |
| CVE-2026-30841 |
Wallos is an open-source, self-hostable personal subscription tracker. Prior to version 4.6.2, passw
|
MEDIUM | 6.1 | 2026-03-07 |
wallosapp wallos
|
NVD | |
| CVE-2026-30840 |
Wallos is an open-source, self-hostable personal subscription tracker. Prior to version 4.6.2, there
|
HIGH | 8.8 | 2026-03-07 |
wallosapp wallos
|
NVD | |
| CVE-2026-30839 |
Wallos is an open-source, self-hostable personal subscription tracker. Prior to version 4.6.2, testw
|
MEDIUM | 4.3 | 2026-03-07 |
wallosapp wallos
|
NVD | |
| CVE-2026-30830 |
Defuddle cleans up HTML pages. Prior to version 0.9.0, the _findContentBySchemaText method in src/de
|
MEDIUM | 6.1 | 2026-03-07 |
kepano defuddle
|
NVD | |
| CVE-2026-30829 |
Checkmate is an open-source, self-hosted tool designed to track and monitor server hardware, uptime,
|
MEDIUM | 5.3 | 2026-03-07 |
bluewavelabs checkmate
|
NVD | |
| CVE-2026-30828 |
Wallos is an open-source, self-hostable personal subscription tracker. Prior to version 4.6.2, the u
|
HIGH | 7.5 | 2026-03-07 |
wallosapp wallos
|
NVD | |
| CVE-2026-30827 |
express-rate-limit is a basic rate-limiting middleware for Express. In versions starting from 8.0.0
|
HIGH | 7.5 | 2026-03-07 |
express-rate-limit_project express-rate-limit
express-rate-limit_project express-rate-limit
|
NVD | |
| CVE-2026-30825 |
hoppscotch is an open source API development ecosystem. Prior to version 2026.2.1, the DELETE /v1/ac
|
LOW | N/A | 2026-03-07 |
hoppscotch hoppscotch
|
NVD | |
| CVE-2026-30824 |
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve
|
CRITICAL | 9.8 | 2026-03-07 |
flowiseai flowise
|
NVD | |
| CVE-2026-30823 |
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve
|
HIGH | 8.8 | 2026-03-07 |
flowiseai flowise
|
NVD |