快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358424
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-27154 |
Discourse has XSS when editing a malicious post
|
LOW | 1.3 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-27153 |
Discourse doesn't prevent moderators from exporting user Chat DMs
|
LOW | 1.3 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-3262 |
go2ismail Asp.Net-Core-Inventory-Order-Management-System Administrative redirect
|
MEDIUM | 5.3 | 2026-02-26 |
go2ismail Asp.Net-Core-Inventory-Order-Management-System
go2ismail asp.net-core-inventory-order-management-system
|
CVE NVD | |
| CVE-2026-3261 |
itsourcecode School Management System Setting index.php sql injection
|
MEDIUM | 6.9 | 2026-02-26 |
itsourcecode School Management System
itsourcecode school_management_system
|
CVE NVD | |
| CVE-2026-22207 |
OpenViking Missing root_api_key Allows Anonymous ROOT Access
|
CRITICAL | 9.3 | 2026-02-26 |
Volcengine OpenViking
|
CVE NVD | |
| CVE-2023-31364 |
Improper handling of direct memory writes in the input-output memory management unit could allow a m...
|
HIGH | 8.3 | 2026-02-26 |
AMD AMD EPYC™ 7001 Series Processors
AMD AMD EPYC™ 7002 Series Processors
+31个
|
CVE NVD | |
| CVE-2026-22205 |
SPIP < 4.4.10 Authentication Bypass via PHP Type Juggling
|
HIGH | 8.7 | 2026-02-26 |
SPIP SPIP
spip spip
|
CVE NVD | |
| CVE-2026-22206 |
SPIP < 4.4.10 SQL Injection RCE via Union & PHP Tags
|
HIGH | 8.7 | 2026-02-26 |
SPIP SPIP
spip spip
|
CVE NVD | |
| CVE-2026-27152 |
DIscourse has DM communication-preference bypass when adding members
|
LOW | 1.3 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-27162 |
DIscourse doesn't prevent whispers to leak in excerpts
|
MEDIUM | 4.9 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-27151 |
Discourse doesn't validate destination topic when moving posts
|
LOW | 1.3 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-27150 |
Discourse doesn't ensure guardian check when creating QueryGroupBookmark
|
LOW | 1.3 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-27149 |
Discourse has SQL injection in PM tag filtering
|
MEDIUM | 4.9 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-27021 |
Discourse: Poll voters endpoint lacked post visibility checks
|
MEDIUM | 6.9 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-23939 |
Path Traversal in Local File Store Backend
|
MEDIUM | 6.9 | 2026-02-26 |
hexpm hexpm
|
CVE NVD | |
| CVE-2026-26979 |
Discourse: TL4 users are able to change status of restricted topics
|
LOW | 2.7 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-1565 |
User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration <= 4.2.8 - Authenticated (Author+) Arbitrary File Upload
|
HIGH | 8.8 | 2026-02-26 |
wedevs User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration
|
CVE NVD | |
| CVE-2026-1241 |
Authentication Bypass Using an Alternate Path or Channel in Pelco, Inc. Sarix Pro 3 Series IP Cameras
|
HIGH | 8.7 | 2026-02-26 |
Pelco, Inc. Sarix Professional IMP 3 Series
Pelco, Inc. Sarix Professional IXP 3 Series
+2个
|
CVE NVD | |
| CVE-2026-26973 |
Discourse doesn't scope reviewable notes to user-visible reviewables
|
MEDIUM | 4.3 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-27510 |
Unitree Go2 Mobile Program Tampering Enables Root RCE
|
MEDIUM | 6.4 | 2026-02-26 |
UnitreeRobotics Unitree Go2
|
CVE NVD |