快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 360566
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-25071 |
XikeStor SKS8310-8X Network Switch firmware versions 1.04.B07 and prior contain a missing authentica
|
HIGH | 7.5 | 2026-03-07 |
seekswan zikestor_sks8310-8x_firmware
|
NVD | |
| CVE-2026-25070 |
XikeStor SKS8310-8X Network Switch firmware versions 1.04.B07 and prior contain an OS command inject
|
CRITICAL | 9.8 | 2026-03-07 |
seekswan zikestor_sks8310-8x_firmware
|
NVD | |
| CVE-2026-2371 |
The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Insecure Di
|
MEDIUM | 5.3 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1981 |
The HUMN-1 AI Website Scanner & Human Certification by Winston AI plugin for WordPress is vulnerable
|
MEDIUM | 4.3 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1644 |
The WP Frontend Profile plugin for WordPress is vulnerable to Cross-Site Request Forgery in all vers
|
MEDIUM | 4.3 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-3233 |
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
|
UNKNOWN | N/A | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-30244 |
Plane is an an open-source project management tool. Prior to version 1.2.2, unauthenticated attacker
|
HIGH | 7.5 | 2026-03-06 |
plane plane
|
NVD | |
| CVE-2026-30242 |
Plane is an an open-source project management tool. Prior to version 1.2.3, the webhook URL validati
|
HIGH | 8.5 | 2026-03-06 |
plane plane
|
NVD | |
| CVE-2026-30241 |
Mercurius is a GraphQL adapter for Fastify. Prior to version 16.8.0, Mercurius fails to enforce the
|
HIGH | 8.2 | 2026-03-06 |
mercurius_project mercurius
|
NVD | |
| CVE-2026-30238 |
Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions
|
MEDIUM | 6.1 | 2026-03-06 |
intermesh group-office
|
NVD | |
| CVE-2026-30237 |
Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions
|
MEDIUM | 6.1 | 2026-03-06 |
intermesh group-office
|
NVD | |
| CVE-2026-27142 |
Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can all
|
HIGH | 7.5 | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-27139 |
On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the r
|
LOW | 2.5 | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-27138 |
Certificate verification can panic when a certificate in the chain has an empty DNS name and another
|
MEDIUM | 5.9 | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-27137 |
When verifying a certificate chain which contains a certificate containing multiple email address co
|
HIGH | 7.5 | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-25679 |
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
|
HIGH | 7.5 | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-30835 |
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.
|
MEDIUM | 5.3 | 2026-03-06 |
parseplatform parse-server
parseplatform parse-server
|
NVD | |
| CVE-2026-30233 |
OliveTin gives access to predefined shell commands from a web interface. Prior to version 3000.11.1,
|
MEDIUM | 6.5 | 2026-03-06 |
olivetin olivetin
|
NVD | |
| CVE-2026-30231 |
Flare is a Next.js-based, self-hostable file sharing platform that integrates with screenshot tools.
|
UNKNOWN | N/A | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-30230 |
Flare is a Next.js-based, self-hostable file sharing platform that integrates with screenshot tools.
|
UNKNOWN | N/A | 2026-03-06 |
未知
|
NVD |