快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 359293
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-27595 |
Parse Dashboard has incomplete authentication on AI Agent endpoint
|
CRITICAL | 9.9 | 2026-02-25 |
parse-community parse-dashboard
parseplatform parse_dashboard
+12个
|
CVE NVD | |
| CVE-2026-27610 |
Parse Dashboard Has a Cache Key Collision that Leaks Master Key to Read-Only Sessions
|
HIGH | 7.0 | 2026-02-25 |
parse-community parse-dashboard
parseplatform parse_dashboard
+12个
|
CVE NVD | |
| CVE-2026-27609 |
Parse Dashboard Missing CSRF Protection on Agent Endpoint
|
HIGH | 8.3 | 2026-02-25 |
parse-community parse-dashboard
parseplatform parse_dashboard
+13个
|
CVE NVD | |
| CVE-2026-27608 |
Parse Dashboard Missing Authorization on Agent Endpoint
|
CRITICAL | 9.3 | 2026-02-25 |
parse-community parse-dashboard
parseplatform parse_dashboard
+12个
|
CVE NVD | |
| CVE-2026-27822 |
Rust has Critical Stored XSS in Preview Modal, leading to Administrative Account Takeover
|
CRITICAL | 9.1 | 2026-02-25 |
rustfs rustfs
rustfs rustfs
|
CVE NVD | |
| CVE-2026-27607 |
RustFS's Missing Post Policy Validation leads to Arbitrary Object Write
|
HIGH | 8.1 | 2026-02-25 |
rustfs rustfs
rustfs rustfs
|
CVE NVD | |
| CVE-2026-27606 |
Rollup 4 has Arbitrary File Write via Path Traversal
|
HIGH | 8.8 | 2026-02-25 |
rollup rollup
rollup rollup
+2个
|
CVE NVD | |
| CVE-2026-25135 |
OpenEMR's location resource for Group.$export operation returns entire patient/user population contact information
|
MEDIUM | 4.5 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2026-3145 |
libvips matrixload.c vips_foreign_load_matrix_header memory corruption
|
MEDIUM | 4.8 | 2026-02-25 |
libvips libvips
|
CVE NVD | |
| CVE-2026-25131 |
OpenEMR has Broken Access Control in Procedures Configuration
|
HIGH | 8.8 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2026-25127 |
OpenEMR has Broken Access Control on Care Coordination Module
|
HIGH | 7.0 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2026-25124 |
OpenEMR has Broken Access Control in Report/Clients/Message List CSV Export
|
MEDIUM | 6.5 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2026-24896 |
OpenEMR has Broken Access Control that allows unauthorized access to EDI Logs
|
MEDIUM | 6.5 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2026-24849 |
OpenEMR Arbitrary File Read Vulnerability
|
CRITICAL | 10.0 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2026-24847 |
OpenEMR has Open Redirect in Eye Exam Form
|
MEDIUM | 6.1 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2026-2914 |
CyberArk Endpoint Privilege Manager Agent versions 25.10.0 and lower allow potential unauthorized pr...
|
HIGH | 8.5 | 2026-02-25 |
CyberArk Software, a Palo Alto Networks Company Endpoint Privilege Manager Agent
cyberark endpoint_privilege_manager
|
CVE NVD | |
| CVE-2026-21443 |
OpenEMR allows inconsistent escaping of translation function output
|
LOW | 1.2 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2025-69231 |
OpenEMR has a Stored XSS in GAD-7 Form that Enables Session Hijacking and Privilege Escalation
|
HIGH | 8.7 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2025-68277 |
OpenEMR allows links sent via Secure Messaging to be opened in OpenEMR and Portal
|
HIGH | 7.2 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2025-67752 |
OpenEMR Has Disabled SSL Certificate Verification in HTTP Client
|
HIGH | 8.1 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD |