快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 360566
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-3589 |
The WooCommerce WordPress plugin from versions 5.4.0 to 10.5.2 does not properly handle batch reques
|
HIGH | 7.5 | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-23925 |
An authenticated Zabbix user (User role) with template/host write permissions is able to create obje
|
UNKNOWN | N/A | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-2830 |
The WP All Import – Drag & Drop Import for CSV, XML, Excel & Google Sheets plugin for WordPress is v
|
MEDIUM | 6.1 | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-2331 |
An attacker may perform unauthenticated read and write operations on sensitive filesystem areas via
|
CRITICAL | 9.8 | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-2330 |
An attacker may access restricted filesystem areas on the device via the CROWN REST interface due to
|
CRITICAL | 9.4 | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-29183 |
SiYuan is a personal knowledge management system. Prior to version 3.5.9, an unauthenticated reflect
|
CRITICAL | 9.3 | 2026-03-06 |
b3log siyuan
|
NVD | |
| CVE-2026-29074 |
SVGO, short for SVG Optimizer, is a Node.js library and command-line application for optimizing SVG
|
HIGH | 7.5 | 2026-03-06 |
svgo svgo
|
NVD | |
| CVE-2026-29073 |
SiYuan is a personal knowledge management system. Prior to version 3.6.0, the /api/query/sql lets a
|
HIGH | 8.8 | 2026-03-06 |
b3log siyuan
|
NVD | |
| CVE-2026-29062 |
jackson-core contains core low-level incremental ("streaming") parser and generator abstractions use
|
HIGH | 7.5 | 2026-03-06 |
fasterxml jackson-core
|
NVD | |
| CVE-2026-29059 |
Windmill is an open-source developer platform for internal code: APIs, background jobs, workflows an
|
UNKNOWN | N/A | 2026-03-06 |
未知
|
NVD | |
| CVE-2026-29068 |
PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17
|
HIGH | 7.5 | 2026-03-06 |
pjsip pjsip
|
NVD | |
| CVE-2026-29065 |
changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, a
|
CRITICAL | 9.1 | 2026-03-06 |
webtechnologies changedetection
|
NVD | |
| CVE-2026-29058 |
AVideo is a video-sharing Platform software. Prior to version 7.0, an unauthenticated attacker can e
|
CRITICAL | 9.8 | 2026-03-06 |
wwbn avideo-encoder
|
NVD | |
| CVE-2026-29049 |
melange allows users to build apk packages using declarative pipelines. In version 0.40.5 and prior,
|
MEDIUM | 4.3 | 2026-03-06 |
chainguard melange
|
NVD | |
| CVE-2026-29048 |
HumHub is an Open Source Enterprise Social Network. In version 1.18.0, a cross-site scripting vulner
|
MEDIUM | 6.1 | 2026-03-06 |
humhub humhub
|
NVD | |
| CVE-2026-29042 |
Nuclio is a "Serverless" framework for Real-Time Events and Data Processing. Prior to version 1.15.2
|
CRITICAL | 9.8 | 2026-03-06 |
iguazio nuclio
|
NVD | |
| CVE-2026-29039 |
changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, th
|
HIGH | 7.5 | 2026-03-06 |
webtechnologies changedetection
|
NVD | |
| CVE-2026-29038 |
changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, th
|
MEDIUM | 6.1 | 2026-03-06 |
webtechnologies changedetection
|
NVD | |
| CVE-2026-28804 |
pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.5, an attacker who use
|
MEDIUM | 5.3 | 2026-03-06 |
pypdf_project pypdf
|
NVD | |
| CVE-2026-28802 |
Authlib is a Python library which builds OAuth and OpenID Connect servers. From version 1.6.5 to bef
|
CRITICAL | 9.8 | 2026-03-06 |
authlib authlib
|
NVD |