漏洞列表 - 漏洞数据展示平台

快速搜索提示： 按厂商查询（如：microsoft）| 按产品查询（如：microsoft sql_server）

搜索关键词支持模糊搜索，但速度较慢

严重程度

数据源

排序

常用厂商： microsoft cisco google apple oracle

示例： microsoft sql_server cisco ios apache http_server

漏洞列表 360566

CVE ID	标题	严重程度	CVSS	发布时间	受影响产品	数据源
CVE-2026-28454	OpenClaw versions prior to 2026.2.2 fail to validate webhook secrets in Telegram webhook mode (must	CRITICAL	9.8	2026-03-05	openclaw openclaw	NVD
CVE-2026-28453	OpenClaw versions prior to 2026.2.14 fail to validate TAR archive entry paths during extraction, all	HIGH	7.5	2026-03-05	openclaw openclaw	NVD
CVE-2026-28452	OpenClaw versions prior to 2026.2.14 contain a denial of service vulnerability in the extractArchive	MEDIUM	5.5	2026-03-05	openclaw openclaw	NVD
CVE-2026-28451	OpenClaw versions prior to 2026.2.14 contain server-side request forgery vulnerabilities in the Feis	MEDIUM	5.3	2026-03-05	openclaw openclaw	NVD
CVE-2026-28450	OpenClaw versions prior to 2026.2.12 with the optional Nostr plugin enabled expose unauthenticated H	MEDIUM	6.2	2026-03-05	openclaw openclaw	NVD
CVE-2026-28448	OpenClaw versions 2026.1.29 prior to 2026.2.1 contain a vulnerability in the Twitch plugin (must be	MEDIUM	5.6	2026-03-05	openclaw openclaw	NVD
CVE-2026-28447	OpenClaw versions 2026.1.29-beta.1 prior to 2026.2.1 contain a path traversal vulnerability in plugi	HIGH	7.5	2026-03-05	openclaw openclaw	NVD
CVE-2026-28446	OpenClaw versions prior to 2026.2.1 with the voice-call extension installed and enabled contain an a	CRITICAL	9.8	2026-03-05	openclaw openclaw	NVD
CVE-2026-28395	OpenClaw version 2026.1.14-1 prior to 2026.2.12 contain an improper network binding vulnerability in	MEDIUM	4.8	2026-03-05	openclaw openclaw	NVD
CVE-2026-28394	OpenClaw versions prior to 2026.2.15 contain a denial of service vulnerability in the web_fetch tool	MEDIUM	6.5	2026-03-05	openclaw openclaw	NVD
CVE-2026-28393	OpenClaw versions 2.0.0-beta3 prior to 2026.2.14 contain a path traversal vulnerability in hook tran	HIGH	7.5	2026-03-05	openclaw openclaw openclaw openclaw	NVD
CVE-2026-28392	OpenClaw versions prior to 2026.2.14 contain a privilege escalation vulnerability in the Slack slash	CRITICAL	9.8	2026-03-05	openclaw openclaw	NVD
CVE-2026-28391	OpenClaw versions prior to 2026.2.2 fail to properly validate Windows cmd.exe metacharacters in allo	CRITICAL	9.8	2026-03-05	openclaw openclaw	NVD
CVE-2026-21622	Insufficient Session Expiration vulnerability in hexpm hexpm/hexpm ('Elixir.Hexpm.Accounts.PasswordR	UNKNOWN	N/A	2026-03-05	未知	NVD
CVE-2026-29188	File Browser provides a file managing interface within a specified directory and it can be used to u	CRITICAL	9.1	2026-03-05	filebrowser filebrowser	NVD
CVE-2026-29081	Frappe is a full-stack web application framework. Prior to versions 14.100.1 and 15.100.0, an endpoi	MEDIUM	6.5	2026-03-05	frappe frappe	NVD
CVE-2026-29077	Frappe is a full-stack web application framework. Prior to versions 15.98.0 and 14.100.0, due to a l	HIGH	7.1	2026-03-05	frappe frappe	NVD
CVE-2026-28492	File Browser provides a file managing interface within a specified directory and it can be used to u	MEDIUM	6.5	2026-03-05	filebrowser filebrowser	NVD
CVE-2026-28443	OpenReplay is a self-hosted session replay suite. Prior to version 1.20.0, the POST /{projectId}/car	UNKNOWN	N/A	2026-03-05	未知	NVD
CVE-2026-28442	ZimaOS is a fork of CasaOS, an operating system for Zima devices and x86-64 systems with UEFI. In ve	HIGH	8.5	2026-03-05	zimaspace zimaos	NVD

耗时统计

总耗时:	237.16 ms
构建查询耗时:	0.0 ms
统计耗时:	233.87 ms
获取数据耗时:	2.81 ms
数据转换耗时:	0.48 ms

数据统计

匹配文档数:	360566
返回文档数:	20
当前页码:	87
每页数量:	20
跳过记录数:	1720

查询详情

查询集合:	`uni_vulnerabilities`
使用过滤器:	否
搜索关键词:	-
严重程度:	-
数据源:	-
效率分析:	良好查询速度正常

优化建议：

匹配文档数量很大（360566），建议使用更精确的搜索条件
当前未使用任何过滤条件，查询全部数据可能较慢

漏洞列表 360566

参考链接