聚合 NVD、CVE 及多源情資,深度解析 RCE 等高危風險。系統整合 CVSS 與 EPSS 模型,動態追蹤 Exploit 資源與 PoC 公開狀態,研判可利用性。結合官方修補與修復方案,優化漏洞管理優先級,縮短回應週期,保障資產安全。
指派機構(CNA / 來源):[email protected] 移除此篩選
| CVE | 描述 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|
| CVE-2026-57667 | Sales Representative SQL Injection in Groundhogg <= 4.5 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57663 | Contributor SQL Injection in Recipe Maker For Your Food Blog from Zip Recipes <= 8.2.7 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57662 | Contributor SQL Injection in Contest Gallery <= 30.0.0 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57659 | Unauthenticated Cross Site Request Forgery (CSRF) in Paid Memberships Pro - Add Member From Admin <= 0.7.2 versions. | 8.8 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57658 | Administrator Arbitrary File Upload in TemplateSpare <= 4.2.0 versions. | 9.1 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57655 | Unauthenticated Cross Site Request Forgery (CSRF) in Child Theme Wizard <= 1.4 versions. | 8.2 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57653 | Contributor SQL Injection in WP Job Portal <= 2.5.2 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57645 | newsletters_subscribers Broken Access Control in Newsletters <= 4.13 versions. | 8.1 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57644 | Contributor SQL Injection in Restaurant Menu by MotoPress <= 2.4.10 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57643 | Contributor SQL Injection in WP Post Author <= 3.9.1 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57642 | Contributor SQL Injection in Gallery <= 4.7.8 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57636 | Contributor SQL Injection in wpForo Forum <= 3.0.9 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-57315 | Contributor Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.45 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56070 | Unauthenticated SQL Injection in Advance Product Search <= 1.4.4 versions. | 9.3 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56068 | Unauthenticated SQL Injection in JetEngine <= 3.8.10.2 versions. | 9.3 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56067 | Unauthenticated SQL Injection in JetSmartFilters <= 3.8.3 versions. | 9.3 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56064 | Subscriber SQL Injection in Tourfic <= 2.22.5 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56063 | Unauthenticated Broken Access Control in MailChimp Block <= 1.1.15 versions. | 8.3 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56062 | Unauthenticated SQL Injection in Quotes llama <= 3.1.5 versions. | 9.3 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56059 | Subscriber Arbitrary File Upload in Travel Booking <= 2.2.5 versions. | 9.9 | 無 | 2026-06-26 | 2026-06-26 |