聚合 NVD、CVE 及多源情报,深度解析 RCE 等高危风险。系统集成 CVSS 与 EPSS 模型,动态追踪 Exploit 资源与 PoC 公开状态,研判可利用性。结合官方补丁与修复方案,优化漏洞管理优先级,缩短响应周期,保障资产安全。
分配机构(CNA / 来源):[email protected] 移除此筛选
| CVE | 描述 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|
| CVE-2026-56054 | Subscriber Arbitrary File Deletion in JS Help Desk <= 3.1.1 versions. | 7.7 | 0.45% | 2026-06-25 | 2026-06-25 |
| CVE-2026-56053 | Subscriber PHP Object Injection in EventPrime <= 4.3.4.1 versions. | 8.8 | 0.39% | 2026-06-25 | 2026-06-25 |
| CVE-2026-56052 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in FunnelKit Funnel Builder by FunnelKit allows Blind SQL Injection. This issue affects Funnel Builder by FunnelKit: from n/a through 3.15.0.5. | 7.6 | 0.23% | 2026-06-24 | 2026-06-25 |
| CVE-2026-56051 | Unauthenticated Cross Site Scripting (XSS) in TablePress <= 3.3.1 versions. | 7.1 | 0.18% | 2026-06-25 | 2026-06-29 |
| CVE-2026-56050 | Improper Access Control vulnerability in Themeisle PPOM for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects PPOM for WooCommerce: from n/a through 33.0.18. | 6.5 | 0.20% | 2026-06-25 | 2026-06-25 |
| CVE-2026-56049 | Contributor Remote Code Execution (RCE) in Post Snippets <= 4.0.19 versions. | 8.5 | 0.35% | 2026-06-25 | 2026-06-25 |
| CVE-2026-56048 | Unauthenticated Insecure Direct Object References (IDOR) in Payment Gateway Based Fees and Discounts for WooCommerce <= 3.0.0 versions. | 6.5 | 0.24% | 2026-06-26 | 2026-06-29 |
| CVE-2026-56047 | Unauthenticated Cross Site Scripting (XSS) in perfmatters <= 2.6.3 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56046 | Subscriber Cross Site Scripting (XSS) in ListingPro <= 2.9.11 versions. | 6.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56045 | Unauthenticated Cross Site Scripting (XSS) in Automatic < 3.135.1 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56044 | Unauthenticated Cross Site Scripting (XSS) in Blog2Social <= 8.9.2 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56043 | Unauthenticated Cross Site Scripting (XSS) in Customer Reviews for WooCommerce <= 5.110.1 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56042 | Customer Cross Site Scripting (XSS) in Advanced Order Export For WooCommerce <= 4.0.9 versions. | 7.1 | 0.18% | 2026-06-25 | 2026-06-25 |
| CVE-2026-56041 | Unauthenticated Cross Site Scripting (XSS) in Responsive Lightbox <= 2.7.6 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-29 |
| CVE-2026-56040 | Unauthenticated Cross Site Scripting (XSS) in Gutenverse Form <= 2.4.7 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56039 | Unauthenticated Cross Site Scripting (XSS) in Quick Interest Slider <= 3.1.6 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56038 | Contributor Privilege Escalation in Frisbii Pay <= 1.8.2 versions. | 8.8 | 0.23% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56036 | Unauthenticated SQL Injection in 워드프레스 결제 심플페이 <= 5.5.6 versions. | 9.3 | 0.24% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56035 | Unauthenticated Multiple Vulnerabilities in BitFire Security <= 5.0.3 versions. | 8.6 | 0.27% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56034 | Unauthenticated SQL Injection in Library Management System <= 3.5.7 versions. | 9.3 | 0.29% | 2026-06-26 | 2026-06-29 |