CVE 清單 – 發現高風險與在野利用漏洞

聚合 NVD、CVE 及多源情資,深度解析 RCE 等高危風險。系統整合 CVSS 與 EPSS 模型,動態追蹤 Exploit 資源與 PoC 公開狀態,研判可利用性。結合官方修補與修復方案,優化漏洞管理優先級,縮短回應週期,保障資產安全。

指派機構(CNA / 來源):[email protected] 移除此篩選

顯示 1201205 筆結果
«« 第一頁 « 上一頁 第 1 / 61 頁 下一頁 »
CVE 描述 最高 CVSS EPSS % 公開時間 更新時間
CVE-2026-57683 Unauthenticated SQL Injection in WP Fast Total Search <= 1.80.280 versions. 9.3 2026-07-02 2026-07-02
CVE-2026-57679 Unauthenticated SQL Injection in GeekyBot <= 1.2.5 versions. 9.3 2026-07-02 2026-07-02
CVE-2026-57677 Unauthenticated PHP Object Injection in Novalnet Payment Gateway for WooCommerce <= 12.10.3 versions. 9.8 2026-07-02 2026-07-02
CVE-2026-57625 Unauthenticated Cross Site Scripting (XSS) in Admin and Site Enhancements (ASE) Pro <= 8.8.5 versions. 9.6 2026-07-02 2026-07-02
CVE-2026-57624 Unauthenticated Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.46 versions. 10.0 2026-07-02 2026-07-02
CVE-2026-57623 Unauthenticated Arbitrary Code Execution in W3 Total Cache <= 2.9.4 versions. 9.0 2026-07-02 2026-07-02
CVE-2026-57621 Unauthenticated PHP Object Injection in Booktics <= 1.0.21 versions. 9.8 2026-07-02 2026-07-02
CVE-2026-27436 Editor Arbitrary Code Execution in Five Star Business Profile and Schema <= 2.3.19 versions. 9.1 2026-07-02 2026-07-02
CVE-2026-27419 Subscriber Arbitrary File Upload in Zegen <= 1.1.9 versions. 9.9 2026-07-02 2026-07-02
CVE-2026-57692 Incorrect Privilege Assignment vulnerability in LCweb PrivateContent allows Privilege Escalation. This issue affects PrivateContent: from n/a through 9.9.2. 9.8 2026-07-01 2026-07-01
CVE-2026-57331 Performer Arbitrary File Deletion in Paid Videochat Turnkey Site <= 7.4.8 versions. 9.9 0.34% 2026-06-29 2026-06-29
CVE-2026-57658 Administrator Arbitrary File Upload in TemplateSpare <= 4.2.0 versions. 9.1 0.28% 2026-06-26 2026-06-26
CVE-2026-56070 Unauthenticated SQL Injection in Advance Product Search <= 1.4.4 versions. 9.3 0.24% 2026-06-26 2026-06-26
CVE-2026-56068 Unauthenticated SQL Injection in JetEngine <= 3.8.10.2 versions. 9.3 0.24% 2026-06-26 2026-06-29
CVE-2026-56067 Unauthenticated SQL Injection in JetSmartFilters <= 3.8.3 versions. 9.3 0.24% 2026-06-26 2026-06-26
CVE-2026-56062 Unauthenticated SQL Injection in Quotes llama <= 3.1.5 versions. 9.3 0.24% 2026-06-26 2026-06-26
CVE-2026-56059 Subscriber Arbitrary File Upload in Travel Booking <= 2.2.5 versions. 9.9 0.36% 2026-06-26 2026-06-26
CVE-2026-56058 Subscriber Arbitrary File Upload in Quform <= 2.23.0 versions. 9.9 0.36% 2026-06-26 2026-06-26
CVE-2026-56057 Subscriber PHP Object Injection in Uncanny Automator Pro <= 7.3.0.6 versions. 9.8 0.43% 2026-06-26 2026-06-26
CVE-2026-56036 Unauthenticated SQL Injection in 워드프레스 결제 심플페이 <= 5.5.6 versions. 9.3 0.24% 2026-06-26 2026-06-26
«« 第一頁 « 上一頁 第 1 / 61 頁 下一頁 »
cvelogic Threat Intelligence