CVE 列表 – 发现高风险与在野利用漏洞

聚合 NVD、CVE 及多源情报,深度解析 RCE 等高危风险。系统集成 CVSS 与 EPSS 模型,动态追踪 Exploit 资源与 PoC 公开状态,研判可利用性。结合官方补丁与修复方案,优化漏洞管理优先级,缩短响应周期,保障资产安全。

分配机构(CNA / 来源):[email protected] 移除此筛选

显示 21402912 条结果
CVE 描述 最高 CVSS EPSS % 公开时间 更新时间
CVE-2026-27414 Contributor PHP Object Injection in Werkstatt <= 4.8.3 versions. 8.8 0.29% 2026-07-02 2026-07-02
CVE-2026-27412 Unauthenticated Local File Inclusion in Pearl - Corporate Business <= 3.4.10 versions. 8.1 0.28% 2026-07-02 2026-07-02
CVE-2026-27060 Contributor PHP Object Injection in ARMember Premium <= 7.0 versions. 8.8 0.29% 2026-07-02 2026-07-02
CVE-2025-69094 Subscriber SQL Injection in Unicamp <= 2.2.2 versions. 8.5 0.28% 2026-07-02 2026-07-02
CVE-2025-58902 Unauthenticated Local File Inclusion in Lighthouse <= 1.2.12 versions. 8.1 0.28% 2026-07-02 2026-07-02
CVE-2026-57692 Incorrect Privilege Assignment vulnerability in LCweb PrivateContent allows Privilege Escalation. This issue affects PrivateContent: from n/a through 9.9.2. 9.8 0.29% 2026-07-01 2026-07-01
CVE-2026-57331 Performer Arbitrary File Deletion in Paid Videochat Turnkey Site <= 7.4.8 versions. 9.9 0.34% 2026-06-29 2026-06-29
CVE-2026-57667 Sales Representative SQL Injection in Groundhogg <= 4.5 versions. 8.5 0.21% 2026-06-26 2026-06-29
CVE-2026-57663 Contributor SQL Injection in Recipe Maker For Your Food Blog from Zip Recipes <= 8.2.7 versions. 8.5 0.21% 2026-06-26 2026-06-26
CVE-2026-57662 Contributor SQL Injection in Contest Gallery <= 30.0.0 versions. 8.5 0.21% 2026-06-26 2026-06-26
CVE-2026-57659 Unauthenticated Cross Site Request Forgery (CSRF) in Paid Memberships Pro - Add Member From Admin <= 0.7.2 versions. 8.8 0.13% 2026-06-26 2026-06-26
CVE-2026-57658 Administrator Arbitrary File Upload in TemplateSpare <= 4.2.0 versions. 9.1 0.28% 2026-06-26 2026-06-26
CVE-2026-57655 Unauthenticated Cross Site Request Forgery (CSRF) in Child Theme Wizard <= 1.4 versions. 8.2 0.11% 2026-06-26 2026-06-26
CVE-2026-57653 Contributor SQL Injection in WP Job Portal <= 2.5.2 versions. 8.5 0.21% 2026-06-26 2026-06-26
CVE-2026-57645 newsletters_subscribers Broken Access Control in Newsletters <= 4.13 versions. 8.1 0.19% 2026-06-26 2026-06-26
CVE-2026-57644 Contributor SQL Injection in Restaurant Menu by MotoPress <= 2.4.10 versions. 8.5 0.21% 2026-06-26 2026-06-26
CVE-2026-57643 Contributor SQL Injection in WP Post Author <= 3.9.1 versions. 8.5 0.21% 2026-06-26 2026-06-26
CVE-2026-57642 Contributor SQL Injection in Gallery <= 4.7.8 versions. 8.5 0.21% 2026-06-26 2026-06-29
CVE-2026-57636 Contributor SQL Injection in wpForo Forum <= 3.0.9 versions. 8.5 0.21% 2026-06-26 2026-06-26
CVE-2026-57315 Contributor Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.45 versions. 8.5 0.35% 2026-06-26 2026-06-26
cvelogic Threat Intelligence