聚合 NVD、CVE 及多源情資,深度解析 RCE 等高危風險。系統整合 CVSS 與 EPSS 模型,動態追蹤 Exploit 資源與 PoC 公開狀態,研判可利用性。結合官方修補與修復方案,優化漏洞管理優先級,縮短回應週期,保障資產安全。
指派機構(CNA / 來源):[email protected] 移除此篩選
| CVE | 描述 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|
| CVE-2026-56068 | Unauthenticated SQL Injection in JetEngine <= 3.8.10.2 versions. | 9.3 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56067 | Unauthenticated SQL Injection in JetSmartFilters <= 3.8.3 versions. | 9.3 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56066 | Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images <= 3.11.4 versions. | 5.8 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56064 | Subscriber SQL Injection in Tourfic <= 2.22.5 versions. | 8.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56063 | Unauthenticated Broken Access Control in MailChimp Block <= 1.1.15 versions. | 8.3 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56062 | Unauthenticated SQL Injection in Quotes llama <= 3.1.5 versions. | 9.3 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56061 | Unauthenticated Broken Access Control in Subscriptions for WooCommerce <= 1.9.5 versions. | 7.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56060 | Unauthenticated Sensitive Data Exposure in Print Invoice & Delivery Notes for WooCommerce <= 7.1.1 versions. | 7.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56059 | Subscriber Arbitrary File Upload in Travel Booking <= 2.2.5 versions. | 9.9 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56058 | Subscriber Arbitrary File Upload in Quform <= 2.23.0 versions. | 9.9 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56057 | Subscriber PHP Object Injection in Uncanny Automator Pro <= 7.3.0.6 versions. | 9.8 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56055 | Subscriber PHP Object Injection in RealHomes <= 4.5.3 versions. | 8.8 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56048 | Unauthenticated Insecure Direct Object References (IDOR) in Payment Gateway Based Fees and Discounts for WooCommerce <= 3.0.0 versions. | 6.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56047 | Unauthenticated Cross Site Scripting (XSS) in perfmatters <= 2.6.3 versions. | 7.1 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56046 | Subscriber Cross Site Scripting (XSS) in ListingPro <= 2.9.11 versions. | 6.5 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56045 | Unauthenticated Cross Site Scripting (XSS) in Automatic < 3.135.1 versions. | 7.1 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56044 | Unauthenticated Cross Site Scripting (XSS) in Blog2Social <= 8.9.2 versions. | 7.1 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56043 | Unauthenticated Cross Site Scripting (XSS) in Customer Reviews for WooCommerce <= 5.110.1 versions. | 7.1 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56041 | Unauthenticated Cross Site Scripting (XSS) in Responsive Lightbox <= 2.7.6 versions. | 7.1 | 無 | 2026-06-26 | 2026-06-26 |
| CVE-2026-56040 | Unauthenticated Cross Site Scripting (XSS) in Gutenverse Form <= 2.4.7 versions. | 7.1 | 無 | 2026-06-26 | 2026-06-26 |