Vuln
·
Scope
首頁
套件
KEV
Critical
深度報告
EN
中
Loading…
Packagist/pheditor/pheditor — 4 CVEs · VulnScope
pkg:Packagist/
pheditor/pheditor
共 4 筆 CVE
CRITICAL
2
HIGH
2
✅ 檢查你的版本
檢查
所有已知漏洞
CRITICAL
9.9
CVE-2026-48030
Pheditor: OS Command Injection in terminal handler via unsanitized 'dir' parameter
>= 2.0.1, < 2.0.4
CRITICAL
9.8
CVE-2026-55579
Pheditor: Hardcoded default password 'admin' with no forced change enables full application compromise
>= 2.0.1, < 2.0.6
HIGH
8.8
CVE-2026-55578
Pheditor: Incomplete command sanitization in terminal feature allows RCE via pipe operator, backtick substitution, and newline injection
>= 2.0.1, < 2.0.6
HIGH
8.8
Pheditor has an authenticated terminal command whitelist bypass
from 0, < 2.0.5
CVE-2026-54540