快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358424
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-26078 |
Discourse has authentication bypass vulnerability in the Patreon plugin webhook endpoint
|
HIGH | 7.5 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-26077 |
Discourse doesn't ensure webhooks require a token
|
MEDIUM | 6.5 | 2026-02-26 |
discourse discourse
discourse discourse
+3个
|
CVE NVD | |
| CVE-2026-3071 |
Deserialization of untrusted data in the LanguageModel class of Flair from versions 0.4.1 to latest ...
|
HIGH | 8.4 | 2026-02-26 |
Flair Flair
|
CVE NVD | |
| CVE-2026-2244 |
Sensitive Data Exposure in Google Cloud Vertex AI Workbench
|
HIGH | 8.4 | 2026-02-26 |
Google Cloud Vertex AI Workbench
|
CVE NVD | |
| CVE-2026-2680 |
Multiple vulnerabilities in A3factura software
|
MEDIUM | 4.8 | 2026-02-26 |
A3factura A3factura
wolterskluwer a3factura
|
CVE NVD | |
| CVE-2026-2679 |
Multiple vulnerabilities in A3factura software
|
MEDIUM | 4.8 | 2026-02-26 |
A3factura A3factura
wolterskluwer a3factura
|
CVE NVD | |
| CVE-2026-2678 |
Multiple vulnerabilities in A3factura software
|
MEDIUM | 4.8 | 2026-02-26 |
A3factura A3factura
wolterskluwer a3factura
|
CVE NVD | |
| CVE-2026-2677 |
Multiple vulnerabilities in A3factura software
|
MEDIUM | 4.8 | 2026-02-26 |
A3factura A3factura
wolterskluwer a3factura
|
CVE NVD | |
| CVE-2025-14343 |
Reflected XSS in Dokuzsoft Technology's E-Commerce Product
|
HIGH | 7.6 | 2026-02-26 |
Dokuzsoft Technology Ltd. E-Commerce Product
|
CVE NVD | |
| CVE-2026-1198 |
SQL Injection in SIMPLE.ERP
|
HIGH | 8.6 | 2026-02-26 |
Simple SA Simple.ERP
|
CVE NVD | |
| CVE-2025-64999 |
Cross-site scripting in HTML logs of Synthetic Monitoring test services
|
HIGH | 7.3 | 2026-02-26 |
Checkmk GmbH Checkmk
checkmk checkmk
+1个
|
CVE NVD | |
| CVE-2026-28138 |
WordPress uListing plugin <= 2.2.0 - PHP Object Injection vulnerability
|
HIGH | 7.2 | 2026-02-26 |
Stylemix uListing
|
CVE NVD | |
| CVE-2026-28136 |
WordPress WP SMS plugin <= 6.9.12 - SQL Injection vulnerability
|
HIGH | 7.6 | 2026-02-26 |
VeronaLabs WP SMS
|
CVE NVD | |
| CVE-2026-28132 |
WordPress WooCommerce Photo Reviews plugin <= 1.4.4 - Content Injection vulnerability
|
MEDIUM | 5.3 | 2026-02-26 |
villatheme WooCommerce Photo Reviews
|
CVE NVD | |
| CVE-2026-28131 |
WordPress Elementor Addon Elements plugin <= 1.14.4 - Sensitive Data Exposure vulnerability
|
MEDIUM | 6.5 | 2026-02-26 |
WPVibes Elementor Addon Elements
|
CVE NVD | |
| CVE-2026-28083 |
WordPress Flatsome theme <= 3.20.1 - Cross Site Scripting (XSS) vulnerability
|
MEDIUM | 6.5 | 2026-02-26 |
UX-themes Flatsome
|
CVE NVD | |
| CVE-2026-1698 |
HTTP Host header vulnerability in WebClient and WebScheduler web apps
|
MEDIUM | 5.3 | 2026-02-26 |
arcinfo PcVue
|
CVE NVD | |
| CVE-2026-1697 |
Use of unsecure cookies for GraphicalData web service and WebClient web app
|
MEDIUM | 5.3 | 2026-02-26 |
arcinfo PcVue
|
CVE NVD | |
| CVE-2026-1696 |
Missing security HTTP headers
|
LOW | 2.3 | 2026-02-26 |
arcinfo PcVue
|
CVE NVD | |
| CVE-2026-1695 |
XSS vulnerability upon unsuccessful authentication
|
MEDIUM | 5.3 | 2026-02-26 |
arcinfo PcVue
|
CVE NVD |