快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358915
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-28556 |
wpForo Forum 2.4.14 contains a missing authorization vulnerability that allows authenticated subscri
|
MEDIUM | 5.4 | 2026-02-28 |
gvectors wpforo_forum
|
NVD | |
| CVE-2026-28555 |
wpForo Forum 2.4.14 contains a missing authorization vulnerability that allows authenticated subscri
|
MEDIUM | 4.3 | 2026-02-28 |
gvectors wpforo_forum
|
NVD | |
| CVE-2026-28554 |
wpForo Forum 2.4.14 contains a missing authorization vulnerability that allows authenticated subscri
|
MEDIUM | 4.3 | 2026-02-28 |
gvectors wpforo_forum
|
NVD | |
| CVE-2026-3010 |
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
|
UNKNOWN | N/A | 2026-02-28 |
未知
|
NVD | |
| CVE-2026-2844 |
Missing Authentication for Critical Function vulnerability in Microchip TimePictra allows Configurat
|
UNKNOWN | N/A | 2026-02-28 |
未知
|
NVD | |
| CVE-2025-13673 |
The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to SQL Injec
|
HIGH | 7.5 | 2026-02-28 |
未知
|
NVD | |
| CVE-2026-2471 |
The WP Mail Logging plugin for WordPress is vulnerable to PHP Object Injection in all versions up to
|
HIGH | 7.5 | 2026-02-28 |
未知
|
NVD | |
| CVE-2026-1542 |
The Super Stage WP WordPress plugin through 1.0.1 unserializes user input via REQUEST, which could a
|
MEDIUM | 6.5 | 2026-02-28 |
未知
|
NVD | |
| CVE-2026-2647 |
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-28517 |
openDCIM version 23.04, through commit 4467e9c4, contains an OS command injection vulnerability in r
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-28516 |
openDCIM version 23.04, through commit 4467e9c4, contains a SQL injection vulnerability in Config::U
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-28515 |
openDCIM version 23.04, through commit 4467e9c4, contains a missing authorization vulnerability in i
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-28426 |
Statmatic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.11 an
|
HIGH | 8.7 | 2026-02-27 |
statamic statamic
|
NVD | |
| CVE-2026-28425 |
Statmatic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.11 an
|
HIGH | 8.0 | 2026-02-27 |
statamic statamic
|
NVD | |
| CVE-2026-28424 |
Statmatic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.11 an
|
MEDIUM | 6.5 | 2026-02-27 |
statamic statamic
|
NVD | |
| CVE-2026-28423 |
Statmatic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.11 an
|
MEDIUM | 6.8 | 2026-02-27 |
statamic statamic
|
NVD | |
| CVE-2026-27759 |
Featured Image from Content (featured-image-from-content) WordPress plugin versions prior to 1.7 con
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-28422 |
Vim is an open source, command line text editor. Prior to version 9.2.0078, a stack-buffer-overflow
|
LOW | 2.2 | 2026-02-27 |
vim vim
|
NVD | |
| CVE-2026-28421 |
Vim is an open source, command line text editor. Versions prior to 9.2.0077 have a heap-buffer-overf
|
MEDIUM | 5.3 | 2026-02-27 |
vim vim
|
NVD | |
| CVE-2026-28420 |
Vim is an open source, command line text editor. Prior to version 9.2.0076, a heap-based buffer over
|
MEDIUM | 4.4 | 2026-02-27 |
vim vim
|
NVD |