聚合 NVD、CVE 及多源情資,深度解析 RCE 等高危風險。系統整合 CVSS 與 EPSS 模型,動態追蹤 Exploit 資源與 PoC 公開狀態,研判可利用性。結合官方修補與修復方案,優化漏洞管理優先級,縮短回應週期,保障資產安全。
指派機構(CNA / 來源):[email protected] 移除此篩選
| CVE | 描述 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|
| CVE-2026-57667 | Sales Representative SQL Injection in Groundhogg <= 4.5 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-29 |
| CVE-2026-57663 | Contributor SQL Injection in Recipe Maker For Your Food Blog from Zip Recipes <= 8.2.7 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57662 | Contributor SQL Injection in Contest Gallery <= 30.0.0 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57659 | Unauthenticated Cross Site Request Forgery (CSRF) in Paid Memberships Pro - Add Member From Admin <= 0.7.2 versions. | 8.8 | 0.13% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57658 | Administrator Arbitrary File Upload in TemplateSpare <= 4.2.0 versions. | 9.1 | 0.28% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57655 | Unauthenticated Cross Site Request Forgery (CSRF) in Child Theme Wizard <= 1.4 versions. | 8.2 | 0.11% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57653 | Contributor SQL Injection in WP Job Portal <= 2.5.2 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57647 | Contributor Local File Inclusion in Panorama Viewer – 360 Degree Image + Video Viewer <= 1.6.1 versions. | 7.5 | 0.26% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57645 | newsletters_subscribers Broken Access Control in Newsletters <= 4.13 versions. | 8.1 | 0.19% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57644 | Contributor SQL Injection in Restaurant Menu by MotoPress <= 2.4.10 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57643 | Contributor SQL Injection in WP Post Author <= 3.9.1 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57642 | Contributor SQL Injection in Gallery <= 4.7.8 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-29 |
| CVE-2026-57636 | Contributor SQL Injection in wpForo Forum <= 3.0.9 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57631 | Administrator SQL Injection in Popup box <= 6.0.1 versions. | 7.6 | 0.28% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57628 | Administrator SQL Injection in WP All Import <= 4.0.1 versions. | 7.6 | 0.28% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57325 | Unauthenticated Cross Site Scripting (XSS) in NanoMag <= 1.8 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57322 | Unauthenticated Cross Site Scripting (XSS) in weMail <= 2.1.2 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57321 | Contributor Arbitrary File Deletion in H5P <= 1.17.7 versions. | 7.1 | 0.29% | 2026-06-26 | 2026-06-29 |
| CVE-2026-57319 | Unauthenticated Cross Site Scripting (XSS) in FOX <= 1.4.8 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57317 | Unauthenticated Cross Site Scripting (XSS) in Simply Schedule Appointments <= 1.6.12.2 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |