搜尋

130 筆結果

嚴重程度:CRITICAL HIGH MEDIUM LOW|生態系:npm PyPI Maven Debian Alpine|⚠ 只看 KEV

CRITICAL9.8CVE-2026-9082⚠ KEVEPSS 7.7%Drupal core - Highly critical - SQL injection - SA-CORE-2026-0042026/5/20
CRITICAL9.6CVE-2026-45321⚠ KEVEPSS 17.1%Malware in @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys2026/5/12
CRITICAL9.8CVE-2026-42208⚠ KEVEPSS 56.9%LiteLLM has SQL Injection in Proxy API key verification2026/4/24
CRITICAL9.8CVE-2026-39987⚠ KEVEPSS 80.7%Marimo: Pre-Auth Remote Code Execution via Terminal WebSocket Authentication Bypass2026/4/8
CRITICAL9.8CVE-2026-33017⚠ KEVEPSS 24.0%Unauthenticated Remote Code Execution in Langflow via Public Flow Build Endpoint2026/3/17
CRITICAL9.8CVE-2026-24061⚠ KEVEPSS 91.5%inetutils - security update2026/1/21
CRITICAL9.9CVE-2025-68613⚠ KEVEPSS 65.8%n8n Vulnerable to Remote Code Execution via Expression Injection2025/12/22
MEDIUM6.1CVE-2025-68461⚠ KEVEPSS 6.9%RoundCube Webmail Cross-site Scripting Vulnerability2025/12/18
CRITICAL10.0CVE-2025-55182⚠ KEVEPSS 84.5%React Server Components are Vulnerable to RCE2025/12/3
CRITICAL9.8CVE-2025-11953⚠ KEVEPSS 27.9%@react-native-community/cli has arbitrary OS command injection2025/11/3
CRITICAL9.8CVE-2025-10585⚠ KEVEPSS 1.5%Google Chromium V8 Type Confusion Vulnerability2025/9/24
CRITICAL9.1CVE-2025-54236⚠ KEVEPSS 72.2%Magento Community Edition Improper Input Validation vulnerability2025/9/9
CRITICAL9.8CVE-2024-4577⚠ KEVEPSS 94.4%Argument Injection in PHP-CGI2025/8/11
CRITICAL9.8CVE-2025-54068⚠ KEVEPSS 58.9%Livewire is vulnerable to remote command execution during component property update hydration2025/7/17
CRITICAL9.8CVE-2025-3248⚠ KEVEPSS 92.7%Langflow Unauth RCE2025/6/17
CRITICAL9.9CVE-2025-49113⚠ KEVEPSS 90.5%Roundcube Webmail Vulnerable to Authenticated RCE via PHP Object Deserialization2025/6/2
MEDIUM5.3CVE-2025-35939⚠ KEVEPSS 33.1%Craft CMS stores arbitrary content provided by unauthenticated users in session files2025/5/8
CRITICAL10.0CVE-2025-32432⚠ KEVEPSS 93.1%Craft CMS Allows Remote Code Execution2025/4/25
CRITICAL9.9CVE-2025-24016⚠ KEVEPSS 93.5%Remote code execution in Wazuh server in github.com/wazuh/wazuh2025/4/22
CRITICAL10.0CVE-2025-32433⚠ KEVEPSS 62.8%Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability2025/4/16
CRITICAL9.0CVE-2024-58136⚠ KEVEPSS 78.9%yiisoft/yii2 Mishandles the Attaching of Behavior Defined by a `__class` Array Key2025/4/10
MEDIUM5.3CVE-2023-23752⚠ KEVEPSS 94.5%[20230201] - Core - Improper access check in webservice endpoints2025/4/3
MEDIUM5.3CVE-2025-31125⚠ KEVEPSS 83.2%Vite has a `server.fs.deny` bypassed for `inline` and `raw` with `?import` query2025/3/31
CRITICAL10.0CVE-2025-24201⚠ KEVEPSS 0.21%Apple Multiple Products WebKit Out-of-Bounds Write Vulnerability2025/3/11
CRITICAL9.8CVE-2025-24813⚠ KEVEPSS 94.1%tomcat9 - security update2025/3/10

第 1 / 6 頁下一頁 →