CVE 列表 – 发现高风险与在野利用漏洞

聚合 NVD、CVE 及多源情报,深度解析 RCE 等高危风险。系统集成 CVSS 与 EPSS 模型,动态追踪 Exploit 资源与 PoC 公开状态,研判可利用性。结合官方补丁与修复方案,优化漏洞管理优先级,缩短响应周期,保障资产安全。

分配机构(CNA / 来源):[email protected] 移除此筛选

显示 10112016855 条结果
CVE 描述 最高 CVSS EPSS % 公开时间 更新时间
CVE-2026-56054 Subscriber Arbitrary File Deletion in JS Help Desk <= 3.1.1 versions. 7.7 0.45% 2026-06-25 2026-06-25
CVE-2026-56053 Subscriber PHP Object Injection in EventPrime <= 4.3.4.1 versions. 8.8 0.39% 2026-06-25 2026-06-25
CVE-2026-56052 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in FunnelKit Funnel Builder by FunnelKit allows Blind SQL Injection. This issue affects Funnel Builder by FunnelKit: from n/a through 3.15.0.5. 7.6 0.23% 2026-06-24 2026-06-25
CVE-2026-56051 Unauthenticated Cross Site Scripting (XSS) in TablePress <= 3.3.1 versions. 7.1 0.18% 2026-06-25 2026-06-29
CVE-2026-56050 Improper Access Control vulnerability in Themeisle PPOM for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects PPOM for WooCommerce: from n/a through 33.0.18. 6.5 0.20% 2026-06-25 2026-06-25
CVE-2026-56049 Contributor Remote Code Execution (RCE) in Post Snippets <= 4.0.19 versions. 8.5 0.35% 2026-06-25 2026-06-25
CVE-2026-56048 Unauthenticated Insecure Direct Object References (IDOR) in Payment Gateway Based Fees and Discounts for WooCommerce <= 3.0.0 versions. 6.5 0.24% 2026-06-26 2026-06-29
CVE-2026-56047 Unauthenticated Cross Site Scripting (XSS) in perfmatters <= 2.6.3 versions. 7.1 0.18% 2026-06-26 2026-06-26
CVE-2026-56046 Subscriber Cross Site Scripting (XSS) in ListingPro <= 2.9.11 versions. 6.5 0.21% 2026-06-26 2026-06-26
CVE-2026-56045 Unauthenticated Cross Site Scripting (XSS) in Automatic < 3.135.1 versions. 7.1 0.18% 2026-06-26 2026-06-26
CVE-2026-56044 Unauthenticated Cross Site Scripting (XSS) in Blog2Social <= 8.9.2 versions. 7.1 0.18% 2026-06-26 2026-06-26
CVE-2026-56043 Unauthenticated Cross Site Scripting (XSS) in Customer Reviews for WooCommerce <= 5.110.1 versions. 7.1 0.18% 2026-06-26 2026-06-26
CVE-2026-56042 Customer Cross Site Scripting (XSS) in Advanced Order Export For WooCommerce <= 4.0.9 versions. 7.1 0.18% 2026-06-25 2026-06-25
CVE-2026-56041 Unauthenticated Cross Site Scripting (XSS) in Responsive Lightbox <= 2.7.6 versions. 7.1 0.18% 2026-06-26 2026-06-29
CVE-2026-56040 Unauthenticated Cross Site Scripting (XSS) in Gutenverse Form <= 2.4.7 versions. 7.1 0.18% 2026-06-26 2026-06-26
CVE-2026-56039 Unauthenticated Cross Site Scripting (XSS) in Quick Interest Slider <= 3.1.6 versions. 7.1 0.18% 2026-06-26 2026-06-26
CVE-2026-56038 Contributor Privilege Escalation in Frisbii Pay <= 1.8.2 versions. 8.8 0.23% 2026-06-26 2026-06-26
CVE-2026-56036 Unauthenticated SQL Injection in 워드프레스 결제 심플페이 <= 5.5.6 versions. 9.3 0.24% 2026-06-26 2026-06-26
CVE-2026-56035 Unauthenticated Multiple Vulnerabilities in BitFire Security <= 5.0.3 versions. 8.6 0.27% 2026-06-26 2026-06-26
CVE-2026-56034 Unauthenticated SQL Injection in Library Management System <= 3.5.7 versions. 9.3 0.29% 2026-06-26 2026-06-29
cvelogic Threat Intelligence