搜尋

74,962 筆結果

嚴重程度:CRITICAL HIGH MEDIUM LOW|生態系:npm PyPI Maven Debian Alpine|⚠ 只看 KEV

—CVE-2026-44487Axios: Proxy-Authorization Credential Leak to Origin Server Across HTTP-to-HTTPS Redirect in Axios Node.js HTTP Adapter2026/6/4
HIGH7.5CVE-2026-44486Axios: Proxy-Authorization header leaks to redirect target when proxy is re-evaluated to direct connection2026/6/4
MEDIUM5.9CVE-2026-48681OpenStack Ironic through before 35.0.2 allows file overwrite via directory traversal during deployment with a crafted ISO image.2026/6/4
HIGH8.8CVE-2026-49143EPSS 0.15%browserstack-runner vulnerable to Remote Code Execution via vm sandbox escape in _log HTTP handler2026/6/3
MEDIUM6.5CVE-2026-49144EPSS 0.02%browserstack-runner has an unauthenticated arbitrary file read via path traversal in HTTP server2026/6/3
MEDIUM5.5CVE-2026-44022Docling: Potential Path Traversal via LaTeX \includegraphics and \input Commands2026/6/3
HIGH7.5CVE-2026-42342EPSS 0.05%React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint2026/6/3
HIGH8.1CVE-2026-42211EPSS 0.25%React Router's vendored turbo-stream v2 allows arbitrary constructor invocation via TYPE_ERROR deserialization leading to Unauth RCE2026/6/3
HIGH7.6CVE-2026-41234Froxlor: BIND Zone File Injection via TXT Record Content2026/6/3
—CVE-2026-40181EPSS 0.04%React Router's same-origin redirect with path starting // causes open redirect via protocol-relative URL reinterpretation2026/6/3
HIGH8.0CVE-2026-33245EPSS 0.03%React Router vulnerable to XSS in unstable RSC redirect handling via javascript: redirect targets2026/6/3
MEDIUM5.4CVE-2026-33244EPSS 0.03%React Router has stored XSS via unescaped Location header in prerendered redirect HTML2026/6/3
—CVE-2022-31114EPSS 0.05%backpack/crud is vulnerable to Cross-Site Scripting (XSS)2026/6/3
—CVE-2026-46272In the Linux kernel, the following vulnerability has been resolved: coresight: tmc-etr: Fix race condition between sysfs and perf mode When…2026/6/3
—CVE-2026-46267In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work before freeing context llc_shdlc_…2026/6/3
—CVE-2026-46260In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bound access in fib6_add_rt2node().2026/6/3
—CVE-2026-46254In the Linux kernel, the following vulnerability has been resolved: AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables…2026/6/3
—CVE-2026-46253In the Linux kernel, the following vulnerability has been resolved: pstore/ram: fix buffer overflow in persistent_ram_save_old() persistent…2026/6/3
—CVE-2026-46252In the Linux kernel, the following vulnerability has been resolved: regulator: core: fix locking in regulator_resolve_supply() error path I…2026/6/3
—CVE-2026-46248In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: clear stale link mapping of ahvif->links_map When an arvi…2026/6/3
—CVE-2024-52011EPSS 0.06%launch-editor vulnerable to command injection via the crafted request on Windows2026/6/3
—CVE-2026-10770This module provides spam protection using the CleanTalk cloud service.2026/6/3
—CVE-2026-10769The module doesn't sufficiently sanitize customer comments in the order receipt email template; this could be exploited to achieve Cross-si…2026/6/3
—CVE-2026-10768This module configures default editorial workflows for LocalGov Drupal content types.2026/6/3
—CVE-2026-6873An issue was discovered in Django 6.0 before 6.0.6 and 5.2 before 5.2.15.2026/6/3

← 上一頁第 3 / 2999 頁下一頁 →