VulnScope — 以套件為主體的 CVE 查詢工具

搜尋

131 筆結果

嚴重程度:CRITICAL HIGH MEDIUM LOW|生態系:npm PyPI Maven Debian Alpine|⚠ 只看 KEV

CRITICAL9.8CVE-2025-24893⚠ KEVEPSS 93.7%XWiki Platform allows remote code execution as guest via SolrSearchMacros request2025/2/20
CRITICAL9.8⚠ KEVEPSS 93.9%Craft CMS has potential RCE when PHP `register_argc_argv` config setting is enabled2024/12/18
MEDIUM6.3⚠ KEVEPSS 0.94%Apple Multiple Products Cross-Site Scripting (XSS) Vulnerability2024/11/20
MEDIUM5.5⚠ KEVEPSS 2.6%Linux Kernel Use of Uninitialized Resource Vulnerability2024/11/19
CRITICAL9.8⚠ KEVEPSS 30.8%firefox-esr - security update2024/10/9
CRITICAL9.6⚠ KEVEPSS 1.0%Google Chromium V8 Type Confusion Vulnerability2024/8/21
CRITICAL9.3⚠ KEVEPSS 90.5%RoundCube Webmail Cross-Site Scripting Vulnerability2024/8/5
CRITICAL9.8⚠ KEVEPSS 94.4%Remote Code Execution (RCE) vulnerability in geoserver2024/7/1
CRITICAL9.1⚠ KEVEPSS 93.9%Apache HTTP Server weakness in mod_rewrite when first segment of substitution matches filesystem path.2024/7/1
CRITICAL9.8⚠ KEVEPSS 94.2%Magento Open Source affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability2024/6/13
MEDIUM6.1⚠ KEVEPSS 64.5%roundcube - security update2024/6/7
CRITICAL9.6⚠ KEVEPSS 6.6%chromium - security update2024/5/28
CRITICAL9.6⚠ KEVEPSS 1.1%chromium - security update2024/5/15
CRITICAL9.6⚠ KEVEPSS 0.57%chromium - security update2024/5/14
CRITICAL9.8⚠ KEVEPSS 94.3%Apache HugeGraph-Server: Command execution in gremlin2024/4/22
CRITICAL9.8⚠ KEVEPSS 80.0%GitLab Server-Side Request Forgery (SSRF) Vulnerability2024/3/6
CRITICAL10.0⚠ KEVEPSS 94.5%GitLab Community and Enterprise Editions Remote Code Execution Vulnerability2024/3/6
CRITICAL9.8⚠ KEVEPSS 93.4%Weak Password Recovery Mechanism for Forgotten Password in GitLab2024/3/6
CRITICAL9.8⚠ KEVEPSS 94.4%Remote Code Execution Vulnerability in Packaging2024/3/6
CRITICAL9.8⚠ KEVEPSS 94.4%apisix/batch-requests plugin allows overwriting the X-REAL-IP header2024/3/6
CRITICAL9.8⚠ KEVEPSS 94.5%Arbitrary file read vulnerability through the Jenkins CLI can lead to RCE2024/1/24
MEDIUM6.5⚠ KEVEPSS 0.05%webkit2gtk - security update2023/11/30
CRITICAL9.6⚠ KEVEPSS 1.9%chromium - security update2023/11/29
CRITICAL10.0⚠ KEVEPSS 94.4%Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack2023/10/27
MEDIUM5.4⚠ KEVEPSS 83.2%roundcube - security update2023/10/18