快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 359293
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-3137 |
CodeAstro Food Ordering System food_ordering.exe stack-based overflow
|
MEDIUM | 4.8 | 2026-02-25 |
CodeAstro Food Ordering System
codeastro food_ordering_system
|
CVE NVD | |
| CVE-2025-67491 |
OpenEMR has Stored XSS in ub04 helper
|
HIGH | 8.5 | 2026-02-25 |
openemr openemr
open-emr openemr
|
CVE NVD | |
| CVE-2026-27598 |
Dagu: Path traversal in DAG creation allows arbitrary YAML file write outside DAGs directory
|
HIGH | 7.1 | 2026-02-25 |
dagu-org dagu
dagu dagu
|
CVE NVD | |
| CVE-2026-3135 |
itsourcecode News Portal Project add-category.php sql injection
|
MEDIUM | 6.9 | 2026-02-25 |
itsourcecode News Portal Project
clive_21 news_portal_project
|
CVE NVD | |
| CVE-2025-69771 |
An arbitrary file upload vulnerability in the subtitle loading function of asbplayer v1.13.0 allows ...
|
CRITICAL | 9.6 | 2026-02-25 |
killergerbah asbplayer
|
CVE NVD | |
| CVE-2026-26717 |
An issue in OpenFUN Richie (LMS) in src/richie/apps/courses/api.py. The application used the non-con...
|
MEDIUM | 4.8 | 2026-02-25 |
未知
|
CVE NVD | |
| CVE-2026-3134 |
itsourcecode News Portal Project edit-category.php sql injection
|
MEDIUM | 6.9 | 2026-02-24 |
itsourcecode News Portal Project
clive_21 news_portal_project
|
CVE NVD | |
| CVE-2026-3133 |
itsourcecode Document Management System Login loging.php sql injection
|
MEDIUM | 6.9 | 2026-02-24 |
itsourcecode Document Management System
admerc document_management_system
|
CVE NVD | |
| CVE-2026-26351 |
GetSimpleCMS-CE < 3.3.22 Stored XSS via components.php
|
MEDIUM | 4.8 | 2026-02-24 |
GetSimpleCMS-CE GetSimpleCMS-CE
getsimple-ce getsimple_cms
|
CVE NVD | |
| CVE-2026-27117 |
bit7z has a path traversal vulnerability
|
MEDIUM | 5.5 | 2026-02-24 |
rikyoz bit7z
rikyoz bit7z
|
CVE NVD | |
| CVE-2026-27593 |
Statamic is vulnerable to account takeover via password reset link injection
|
CRITICAL | 9.3 | 2026-02-24 |
statamic cms
statamic cms
+1个
|
CVE NVD | |
| CVE-2026-27572 |
Wasmtime can panic when adding excessive fields to a `wasi:http/types.fields` instance
|
MEDIUM | 6.9 | 2026-02-24 |
bytecodealliance wasmtime
bytecodealliance wasmtime
+3个
|
CVE NVD | |
| CVE-2026-27204 |
Wasmtime WASI implementations are vulnerable to guest-controlled resource exhaustion
|
MEDIUM | 6.9 | 2026-02-24 |
bytecodealliance wasmtime
bytecodealliance wasmtime
+3个
|
CVE NVD | |
| CVE-2026-27195 |
Wasmtime is vulnerable to panic when dropping a `[Typed]Func::call_async` future
|
MEDIUM | 6.9 | 2026-02-24 |
bytecodealliance wasmtime
bytecodealliance wasmtime
+1个
|
CVE NVD | |
| CVE-2026-25899 |
Fiber is Vulnerable to Denial of Service via Flash Cookie Unbounded Allocation
|
HIGH | 7.5 | 2026-02-24 |
gofiber fiber
gofiber fiber
|
CVE NVD | |
| CVE-2026-25891 |
Fiber has an Arbitrary File Read in Static Middleware on Windows
|
HIGH | 7.7 | 2026-02-24 |
gofiber fiber
gofiber fiber
|
CVE NVD | |
| CVE-2026-25882 |
Fiber has a Denial of Service Vulnerability via Route Parameter Overflow
|
MEDIUM | 5.5 | 2026-02-24 |
gofiber fiber
gofiber fiber
+1个
|
CVE NVD | |
| CVE-2026-22553 |
InSAT MasterSCADA BUK-TS OS Command Injection
|
CRITICAL | 9.3 | 2026-02-24 |
InSAT MasterSCADA BUK-TS
insat masterscada
|
CVE NVD | |
| CVE-2026-21410 |
InSAT MasterSCADA BUK-TS SQL Injection
|
CRITICAL | 9.3 | 2026-02-24 |
InSAT MasterSCADA BUK-TS
insat masterscada
|
CVE NVD | |
| CVE-2025-46320 |
A cross-site scripting (XSS) vulnerability in a FileMaker WebDirect custom homepage could lead to un...
|
MEDIUM | 6.1 | 2026-02-24 |
Claris FileMaker Server
claris filemaker_server
|
CVE NVD |