快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358915
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-27976 |
Zed Extension Sandbox Escape via Tar Symlink Following
|
HIGH | 8.8 | 2026-02-25 |
zed-industries zed
zed zed
|
CVE NVD | |
| CVE-2026-27967 |
Symlink Escape in Agent File Tools
|
HIGH | 7.1 | 2026-02-25 |
zed-industries zed
zed zed
|
CVE NVD | |
| CVE-2026-27800 |
Zed has Zip Slip Path Traversal in Extension Archive Extraction
|
HIGH | 7.4 | 2026-02-25 |
zed-industries zed
zed zed
|
CVE NVD | |
| CVE-2026-27799 |
ImageMagick has a heap Buffer Over-read in its DJVU image format handler
|
MEDIUM | 4.0 | 2026-02-25 |
ImageMagick ImageMagick
ImageMagick ImageMagick
+2个
|
CVE NVD | |
| CVE-2026-27798 |
ImageMagick: Heap Buffer Over-read in WaveletDenoise when processing small images
|
MEDIUM | 4.0 | 2026-02-25 |
ImageMagick ImageMagick
ImageMagick ImageMagick
+2个
|
CVE NVD | |
| CVE-2026-27933 |
Manyfold vulnerable to session hijack via cookie leakage in proxy caches
|
MEDIUM | 6.8 | 2026-02-25 |
manyfold3d manyfold
manyfold manyfold
|
CVE NVD | |
| CVE-2026-27635 |
Manyfold vulnerable to OS command injection via ZIP filename in f3d render
|
HIGH | 7.5 | 2026-02-25 |
manyfold3d manyfold
manyfold manyfold
|
CVE NVD | |
| CVE-2026-27633 |
TinyWeb has Unbounded Content-Length Memory Exhaustion (DoS)
|
HIGH | 8.7 | 2026-02-25 |
maximmasiutin TinyWeb
ritlabs tinyweb
|
CVE NVD | |
| CVE-2026-27630 |
TinyWeb vulnerable to Remote Denial of Service via Thread/Connection Exhaustion (Slowloris)
|
HIGH | 8.7 | 2026-02-25 |
maximmasiutin TinyWeb
ritlabs tinyweb
|
CVE NVD | |
| CVE-2026-3209 |
fosrl Pangolin Role verifyApiKeyRoleAccess access control
|
MEDIUM | 5.3 | 2026-02-25 |
fosrl Pangolin
fosrl Pangolin
+2个
|
CVE NVD | |
| CVE-2026-27613 |
CGI Parameter Injection (Bypass of STRICT_CGI_PARAMS and EscapeShellParam)
|
CRITICAL | 10.0 | 2026-02-25 |
maximmasiutin TinyWeb
ritlabs tinyweb
|
CVE NVD | |
| CVE-2026-27498 |
n8n has Arbitrary Command Execution via File Write and Git Operations
|
CRITICAL | 9.0 | 2026-02-25 |
n8n-io n8n
n8n-io n8n
+1个
|
CVE NVD | |
| CVE-2026-27578 |
n8n Vulnerable to Stored XSS via Various Nodes
|
HIGH | 8.5 | 2026-02-25 |
n8n-io n8n
n8n-io n8n
+2个
|
CVE NVD | |
| CVE-2026-27577 |
n8n: Expression Sandbox Escape Leads to RCE
|
CRITICAL | 9.4 | 2026-02-25 |
n8n-io n8n
n8n-io n8n
+2个
|
CVE NVD | |
| CVE-2026-27497 |
n8n has Potential Remote Code Execution via Merge Node
|
CRITICAL | 9.4 | 2026-02-25 |
n8n-io n8n
n8n-io n8n
+2个
|
CVE NVD | |
| CVE-2026-27495 |
n8n has a Sandbox Escape in its JavaScript Task Runner
|
CRITICAL | 9.4 | 2026-02-25 |
n8n-io n8n
n8n-io n8n
+2个
|
CVE NVD | |
| CVE-2026-27494 |
n8n has Arbitrary File Read via Python Code Node Sandbox Escape
|
HIGH | 7.1 | 2026-02-25 |
n8n-io n8n
n8n-io n8n
+2个
|
CVE NVD | |
| CVE-2026-27493 |
n8n has Unauthenticated Expression Evaluation via Form Node
|
CRITICAL | 9.5 | 2026-02-25 |
n8n-io n8n
n8n-io n8n
+2个
|
CVE NVD | |
| CVE-2026-27148 |
Storybook Dev Server Vulnerable to WebSocket Hijacking
|
HIGH | 8.9 | 2026-02-25 |
storybookjs storybook
storybookjs storybook
+2个
|
CVE NVD | |
| CVE-2026-27819 |
Vikunja has Path Traversal in CLI Restore
|
HIGH | 7.2 | 2026-02-25 |
go-vikunja vikunja
vikunja vikunja
|
CVE NVD |