快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 360566
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-27797 |
Homarr is an open-source dashboard. Prior to version 1.54.0, an unauthenticated Server-Side Request
|
MEDIUM | 5.3 | 2026-03-07 |
homarr homarr
|
NVD | |
| CVE-2026-27796 |
Homarr is an open-source dashboard. Prior to version 1.54.0, the integration.all tRPC endpoint in Ho
|
MEDIUM | 5.3 | 2026-03-07 |
homarr homarr
|
NVD | |
| CVE-2025-8899 |
The Paid Videochat Turnkey Site – HTML5 PPV Live Webcams plugin for WordPress is vulnerable to Privi
|
HIGH | 8.8 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-30822 |
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve
|
HIGH | 7.7 | 2026-03-07 |
flowiseai flowise
|
NVD | |
| CVE-2026-30821 |
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve
|
CRITICAL | 9.8 | 2026-03-07 |
flowiseai flowise
|
NVD | |
| CVE-2026-30820 |
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to ve
|
HIGH | 8.8 | 2026-03-07 |
flowiseai flowise
|
NVD | |
| CVE-2026-30247 |
WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval.
|
MEDIUM | 5.9 | 2026-03-07 |
tencent weknora
|
NVD | |
| CVE-2026-3352 |
The Easy PHP Settings plugin for WordPress is vulnerable to PHP Code Injection in all versions up to
|
HIGH | 7.2 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-2722 |
The Stock Ticker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin setting
|
MEDIUM | 4.8 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-2721 |
The MailArchiver plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin setting
|
MEDIUM | 4.8 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-2494 |
The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to Cross-
|
MEDIUM | 4.3 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-2488 |
The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to unauth
|
MEDIUM | 4.3 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-2431 |
The CM Custom Reports plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the '
|
MEDIUM | 6.1 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-2429 |
The Community Events plugin for WordPress is vulnerable to SQL Injection via the 'ce_venue_name' CSV
|
MEDIUM | 4.9 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-2020 |
The JS Archive List plugin for WordPress is vulnerable to PHP Object Injection in all versions up to
|
HIGH | 7.5 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1902 |
The Hammas Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'apix'
|
MEDIUM | 6.4 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-1650 |
The MDJM Event Management plugin for WordPress is vulnerable to unauthorized data modification due t
|
MEDIUM | 5.3 | 2026-03-07 |
未知
|
NVD | |
| CVE-2025-14353 |
The ZIP Code Based Content Protection plugin for WordPress is vulnerable to SQL Injection in all ver
|
HIGH | 7.5 | 2026-03-07 |
未知
|
NVD | |
| CVE-2026-25073 |
XikeStor SKS8310-8X Network Switch firmware versions 1.04.B07 and prior contain a stored cross-site
|
MEDIUM | 5.4 | 2026-03-07 |
seekswan zikestor_sks8310-8x_firmware
|
NVD | |
| CVE-2026-25072 |
XikeStor SKS8310-8X Network Switch firmware versions 1.04.B07 and prior contain a predictable sessio
|
CRITICAL | 9.8 | 2026-03-07 |
seekswan zikestor_sks8310-8x_firmware
|
NVD |