快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358424
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-25147 |
OpenEMR is a free and open source electronic health records and medical practice management applicat
|
HIGH | 7.1 | 2026-02-27 |
open-emr openemr
|
NVD | |
| CVE-2026-24488 |
OpenEMR is a free and open source electronic health records and medical practice management applicat
|
MEDIUM | 6.5 | 2026-02-27 |
open-emr openemr
|
NVD | |
| CVE-2025-69437 |
PublicCMS v5.202506.d and earlier is vulnerable to stored XSS. Uploaded PDFs can contain JavaScript
|
HIGH | 8.7 | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-3304 |
Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior t
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-3277 |
The OpenID Connect (OIDC) authentication configuration in PowerShell
Universal before 2026.1.3 stor
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-2750 |
Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linux
|
CRITICAL | 9.1 | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-2749 |
Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centroen Open Ticket mod
|
CRITICAL | 9.9 | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-2359 |
Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior t
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-3327 |
Authenticated Iframe Injection in Dato CMS Web Previews plugin. This vulnerability permits a malicio
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-3223 |
Arbitrary file write & potential privilege escalation exploiting zip slip vulnerability in Google We
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-2751 |
Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in Ce
|
HIGH | 8.3 | 2026-02-27 |
未知
|
NVD | |
| CVE-2025-15498 |
Pro3W CMS if vulnerable to SQL injection attacks. Improper neutralization of input provided into a l
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2025-10990 |
A flaw was found in REXML. A remote attacker could exploit inefficient regular expression (regex) pa
|
HIGH | 7.5 | 2026-02-27 |
未知
|
NVD | |
| CVE-2025-11950 |
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
|
MEDIUM | 6.3 | 2026-02-27 |
eduasist eduasist
|
NVD | |
| CVE-2025-11252 |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
|
CRITICAL | 9.8 | 2026-02-27 |
signumtte windesk.fm
|
NVD | |
| CVE-2026-2831 |
The MailArchiver plugin for WordPress is vulnerable to SQL Injection via the ‘logid’ parameter in al
|
MEDIUM | 4.9 | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-24352 |
PluXml CMS allows a user's session identifier to be set before authentication. The value of this ses
|
CRITICAL | 9.8 | 2026-02-27 |
pluxml pluxml
pluxml pluxml
|
NVD | |
| CVE-2026-24351 |
PluXml CMS is vulnerable to Stored XSS in Static Pages editing functionality. Attacker with editing
|
MEDIUM | 5.4 | 2026-02-27 |
pluxml pluxml
pluxml pluxml
|
NVD | |
| CVE-2026-24350 |
PluXml CMS is vulnerable to Stored XSS in file uploading functionality. An authenticated attacker ca
|
MEDIUM | 5.4 | 2026-02-27 |
pluxml pluxml
pluxml pluxml
|
NVD | |
| CVE-2025-11251 |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
|
CRITICAL | 9.8 | 2026-02-27 |
daynex woyio
|
NVD |