pkg:NuGet/YAFNET.Core

所有已知漏洞

• HIGH8.8CVE-2026-43937YAFNET: Pre-Handler Authorization Bypass on Admin Pages Enables Blind SQL Execution via `/Admin/RunSql`
  from 0, < 4.0.5
• HIGH8.1CVE-2026-43938YAFNET has Unauthenticated Stored Second-Order XSS in Admin Event Log via Reflected `User-Agent` Header
  >= 4.0.0-beta01, < 4.0.5
• HIGH7.3CVE-2026-43939YAFNET has Stored XSS in Forum Thread Posts/Replies that Allows Arbitrary JavaScript Execution for All Thread Viewers
  >= 4.0.0-beta01, < 4.0.5