快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358219
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-2750 |
Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linux
|
CRITICAL | 9.1 | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-2749 |
Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centroen Open Ticket mod
|
CRITICAL | 9.9 | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-2359 |
Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior t
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-3327 |
Authenticated Iframe Injection in Dato CMS Web Previews plugin. This vulnerability permits a malicio
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-3223 |
Arbitrary file write & potential privilege escalation exploiting zip slip vulnerability in Google We
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-2751 |
Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in Ce
|
HIGH | 8.3 | 2026-02-27 |
未知
|
NVD | |
| CVE-2025-15498 |
Pro3W CMS if vulnerable to SQL injection attacks. Improper neutralization of input provided into a l
|
UNKNOWN | N/A | 2026-02-27 |
未知
|
NVD | |
| CVE-2025-10990 |
A flaw was found in REXML. A remote attacker could exploit inefficient regular expression (regex) pa
|
HIGH | 7.5 | 2026-02-27 |
未知
|
NVD | |
| CVE-2025-11950 |
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
|
MEDIUM | 6.3 | 2026-02-27 |
eduasist eduasist
|
NVD | |
| CVE-2025-11252 |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
|
CRITICAL | 9.8 | 2026-02-27 |
signumtte windesk.fm
|
NVD | |
| CVE-2026-2831 |
The MailArchiver plugin for WordPress is vulnerable to SQL Injection via the ‘logid’ parameter in al
|
MEDIUM | 4.9 | 2026-02-27 |
未知
|
NVD | |
| CVE-2026-24352 |
PluXml CMS allows a user's session identifier to be set before authentication. The value of this ses
|
CRITICAL | 9.8 | 2026-02-27 |
pluxml pluxml
pluxml pluxml
|
NVD | |
| CVE-2026-24351 |
PluXml CMS is vulnerable to Stored XSS in Static Pages editing functionality. Attacker with editing
|
MEDIUM | 5.4 | 2026-02-27 |
pluxml pluxml
pluxml pluxml
|
NVD | |
| CVE-2026-24350 |
PluXml CMS is vulnerable to Stored XSS in file uploading functionality. An authenticated attacker ca
|
MEDIUM | 5.4 | 2026-02-27 |
pluxml pluxml
pluxml pluxml
|
NVD | |
| CVE-2025-11251 |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
|
CRITICAL | 9.8 | 2026-02-27 |
daynex woyio
|
NVD | |
| CVE-2026-1434 |
Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a malicious
|
MEDIUM | 6.1 | 2026-02-27 |
pw omega-psir
|
NVD | |
| CVE-2026-21660 |
Hardcoded Email Credentials Saved as Plaintext in Firmware (CWE-256: Plaintext Storage of a Password
|
CRITICAL | 9.8 | 2026-02-27 |
johnsoncontrols frick_controls_quantum_hd_firmware
|
NVD | |
| CVE-2026-21659 |
Unauthenticated Remote Code Execution and Information Disclosure due to Local File Inclusion (LFI) v
|
CRITICAL | 9.8 | 2026-02-27 |
johnsoncontrols frick_controls_quantum_hd_firmware
|
NVD | |
| CVE-2026-1305 |
The Japanized for WooCommerce plugin for WordPress is vulnerable to Improper Authentication in versi
|
MEDIUM | 5.3 | 2026-02-27 |
未知
|
NVD | |
| CVE-2025-14142 |
The Electric Enquiries plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bu
|
MEDIUM | 6.4 | 2026-02-27 |
未知
|
NVD |