快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 360895
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-27438 |
Deserialization of Untrusted Data vulnerability in ThemeREX Kingler kingler allows Object Injection.
|
CRITICAL | 9.8 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27437 |
Deserialization of Untrusted Data vulnerability in ThemeREX Tennis Club tennis-sportclub allows Obje
|
CRITICAL | 9.8 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27428 |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
|
HIGH | 8.5 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27417 |
Deserialization of Untrusted Data vulnerability in SeventhQueen Sweet Date sweetdate allows Object I
|
CRITICAL | 9.8 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27411 |
Guessable CAPTCHA vulnerability in jp-secure SiteGuard WP Plugin siteguard allows Functionality Bypa
|
MEDIUM | 5.3 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27406 |
Insertion of Sensitive Information Into Sent Data vulnerability in Joe Dolson My Tickets my-tickets
|
HIGH | 7.5 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27396 |
Missing Authorization vulnerability in e-plugins Directory Pro directory-pro allows Exploiting Incor
|
HIGH | 7.3 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27390 |
Authentication Bypass Using an Alternate Path or Channel vulnerability in designthemes WeDesignTech
|
HIGH | 8.8 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27389 |
Authentication Bypass Using an Alternate Path or Channel vulnerability in designthemes WeDesignTech
|
CRITICAL | 9.8 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27388 |
Missing Authorization vulnerability in designthemes DesignThemes Booking Manager designthemes-bookin
|
HIGH | 7.5 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27386 |
Missing Authorization vulnerability in designthemes DesignThemes Directory Addon designthemes-direct
|
HIGH | 7.5 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27385 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
|
HIGH | 7.1 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27384 |
Improper Validation of Specified Quantity in Input vulnerability in BoldGrid W3 Total Cache w3-total
|
CRITICAL | 9.0 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27383 |
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusio
|
HIGH | 8.1 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27382 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
|
HIGH | 7.1 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27381 |
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusio
|
HIGH | 8.1 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27379 |
Deserialization of Untrusted Data vulnerability in NextScripts NextScripts social-networks-auto-post
|
HIGH | 8.8 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27376 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
|
HIGH | 7.1 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27375 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
|
HIGH | 7.1 | 2026-03-05 |
未知
|
NVD | |
| CVE-2026-27374 |
Missing Authorization vulnerability in vanquish WooCommerce Order Details woocommerce-order-details
|
HIGH | 7.5 | 2026-03-05 |
未知
|
NVD |