📊 2026-06-02 漏洞情报日报 · 200 条 · 高危 106
每日漏洞情报汇总 · 2026-06-02
📊 2026-06-02 漏洞情报日报
📋 共 200 条
🔥 高危/严重 106 条
🚨 CISA-KEV 1 条
💣 Exploit-DB-RSS 2 条
🐙 GitHub-Advisory 13 条 🔥10
🛡️ NVD-Latest 96 条 🔥96
⚔️ Sploitus 88 条
🤖 今日安全态势分析
🎯 今日重点关注
- CVE-2026-45312 (CVSS 9.9):RAGFlow 0.24.0 及更早版本存在 Jinja2 模板注入漏洞,任何已认证用户均可利用该漏洞在服务器上执行任意代码,对基于 RAG 的 AI 应用构成严重威胁。
- CVE-2026-9559 / CVE-2026-9558 (CVSS 9.9):Mautic 7 存在两个严重漏洞,包括路径遍历(允许通过恶意 ZIP 文件实现远程代码执行)和 SSTI 模板注入(绕过沙箱限制),拥有主题上传权限的用户可利用。
- CVE-2026-47429 / CVE-2026-47428:Vitest UI 服务器存在两个致命漏洞。攻击者可读取任意文件(特别是在 Windows 上),或通过未转义的查询参数注入恶意脚本(XSS),威胁开发环境安全。
- CVE-2026-10187 (CVSS 9.8):Totolink N300RH 路由器 Web 管理界面存在未经身份验证的栈溢出漏洞,攻击者可远程执行任意代码,直接影响家庭及小型办公网络设备。
- CVE-2026-8732 (CVSS 9.8):WordPress WP Maps Pro 插件由于 AJAX 动作不安全,允许未经身份验证的攻击者创建管理员账户,实现权限提升。
📈 威胁趋势
- 远程代码执行(RCE)与任意代码执行:今日高危漏洞的主要类型。RAGFlow (SSTI) 和 Mautic (SSTI与路径遍历) 暴露了 AI 与开源框架的安全短板;Totolink 路由器指出物联网设备仍是高危攻击面。
- 权限提升:WP Maps Pro 和 praisonai-platform 的多个漏洞(IDOR、成员越权)表明,Web 应用在授权校验机制的隔离上存在普遍缺陷。
- 信息泄露与文件读取:Vitest 的任意文件读取漏洞暴露了前端开发工具的远程攻击风险;同时,Nezha 监控工具可被恶意代理伪造监控结果。
- XSS 与绕过:DOMPurify 新版被发现可通过浏览器重克隆机制绕过 XSS 过滤,反映了前端安全防御与浏览器解析行为之间的博弈。
🛡️ 缓解建议
- 立即更新关键组件:请优先将 RAGFlow、Mautic、Vitest、DOMPurify 以及所有列出的 WordPress 插件更新至最新版本,以修复已知的 RCE、XSS 和权限提升漏洞。
- 隔离开发环境与网络:对于 Vitest UI 等开发工具,禁止将其暴露在公网或不受信任的网络段中,并使用防火墙策略限制对管理端口(如 /mcp)的访问。
- 强化身份验证与授权:检查所有 Web 应用(特别是 praisonai-platform 类平台)的后台 API 端点是否严格验证用户角色及资源所有权,及时修复 IDOR 和租户成员注入漏洞。
- 限制上传与模板功能:对于存在路径遍历和 SSTI 风险的功能(如 Mautic 的主题上传、RAGFlow 的提示词模板),启用严格的文件类型过滤、沙箱机制及最小权限原则。
🚨 CISA-KEV(1 条)
Unknown (1 条)
- CVE-2024-21182 - Oracle WebLogic Server Unspecified Vulnerability
CVE-2024-21182
CVE-2024-21182 Oracle WebLogic Server Unspecified Vulnerability 产品: Oracle WebLogic Server 描述: Oracle WebLogic contains an unspecified vulnerability that could…
💣 Exploit-DB-RSS(2 条)
Unknown (2 条)
- [webapps] WordPress OrderConvo 14 - Path Traversal
CVE-2025-10162
# Exploit Title: WordPress OrderConvo 14 - Path Traversal # Date: 05-31-2026 # Exploit Author: Diamorphine # Vendor Homepage: https://www.najeebmedia.com/ #… - [webapps] Drupal Core 10.5.5 - Error-Based SQL Injection
CVE-2026-9082
# Exploit Title: Drupal Core 10.5.5 - Error-Based SQL Injection # Google Dork: N/A # Date: 2026-05-31 # Exploit Author: cardosource # Vendor Homepage:…
🐙 GitHub-Advisory(13 条)
Critical (3 条)
- CVE-2026-47429 - When Vitest UI server is listening, arbitrary file can be read and executed
CVE-2026-47429Critical
Summary Arbitrary file can be read on Windows when Vitest UI server is listening, especially when exposed to the network. Impact Only users that match either… - CVE-2026-47428 - Vitest browser mode serves unsanitized otelCarrier query parameter as inline scr
CVE-2026-47428Critical
## Summary Vitest browser mode served `/__vitest_test__/` with the `otelCarrier` query parameter inserted directly into an inline module script. Because this… - CVE-2026-47413 - praisonai-platform: Any workspace member can add arbitrary user as owner via POS
CVE-2026-47413Critical
## Summary **Type:** Privilege escalation / cross-tenant member injection. The `POST /workspaces/{workspace_id}/members` endpoint is gated only by…
High (7 条)
- GHSA-63gr-g7jc-v8rg - @agenticmail/mcp Missing Authentication for Critical Function High
# AgenticMail MCP HTTP authorization bypass ## Summary `@agenticmail/mcp` exposes a Streamable HTTP transport when started with `--http` or `MCP_HTTP=1`. In… - CVE-2026-48119 - Nezha's authenticated agents can forge service-monitor results for other users'
CVE-2026-48119High
#### Summary Nezha accepts service-monitor `TaskResult` messages from an authenticated agent based only on whether the reported service ID exists. The… - CVE-2026-47423 - DOMPurify XSS via selectedcontent re-clone
CVE-2026-47423High
Summary DOMPurify 3.4.4 allows `selectedcontent` by default, allowing a chain in which browsers "re-clone" an XSS payload after sanitization, effectively… - CVE-2026-47418 - praisonai-platform: Project endpoints accept any project_id without workspace ow
CVE-2026-47418High
## Summary **Type:** Insecure Direct Object Reference. The project CRUD endpoints (`GET / PATCH / DELETE /workspaces/{workspace_id}/projects/{project_id}` and… - CVE-2026-47417 - praisonai-platform: Comment endpoints accept any issue_id without workspace owne
CVE-2026-47417High
## Summary **Type:** Insecure Direct Object Reference. The comment endpoints (`POST /workspaces/{workspace_id}/issues/{issue_id}/comments` and `GET… - CVE-2026-47415 - praisonai-platform: Issue endpoints accept any issue_id without workspace owners
CVE-2026-47415High
## Summary **Type:** Insecure Direct Object Reference. The issue CRUD endpoints (`GET / PATCH / DELETE /workspaces/{workspace_id}/issues/{issue_id}`) gate… - CVE-2026-47412 - praisonai-platform: Any workspace member can delete the entire workspace via DEL
CVE-2026-47412High
## Summary **Type:** Authorization bypass enabling destructive action. The `DELETE /workspaces/{workspace_id}` endpoint is gated only by…
Medium (2 条)
- CVE-2026-47425 - rattler has an entry-point path traversal in noarch:python install (arbitrary fi
CVE-2026-47425Medium
## Summary `EntryPoint::FromStr` in `rattler_conda_types` performs only `.trim()` on the `command` field before the linker joins it onto the install prefix and… - CVE-2026-47411 - praisonai-platform: Any workspace member can rewrite workspace name, description
CVE-2026-47411Medium
## Summary **Type:** Authorization bypass enabling workspace metadata + settings tampering. The `PATCH /workspaces/{workspace_id}` endpoint is gated only by…
Low (1 条)
- CVE-2026-47191 - kas checks out SHA-like git branches as valid commits
CVE-2026-47191Low
Impact When relying solely on a git commit ID (SHA-1 or SHA-256) to qualify if a checkout of a repository is equivalent to the state validated while adding its…
🛡️ NVD-Latest(96 条)
Critical (9 条)
- CVE-2026-45312 RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. In 0.24.0
CVE-2026-45312Critical 9.9
CVE-2026-45312 CVSS:9.9 RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. In 0.24.0 and earlier, a Jinja2 template injection in the prompt… - CVE-2026-9559 A path traversal vulnerability exists in the campaign import feature of Mautic 7
CVE-2026-9559Critical 9.9
CVE-2026-9559 CVSS:9.9 A path traversal vulnerability exists in the campaign import feature of Mautic 7. When extracting uploaded ZIP files during campaign… - CVE-2026-9558 A Server-Side Template Injection (SSTI) vulnerability exists in Mautic's theme e
CVE-2026-9558Critical 9.9
CVE-2026-9558 CVSS:9.9 A Server-Side Template Injection (SSTI) vulnerability exists in Mautic's theme engine. The platform renders uploaded Twig templates… - CVE-2026-10187 A vulnerability was detected in Totolink N300RH 6.1c.1353_B20190305. Affected by
CVE-2026-10187Critical 9.8
CVE-2026-10187 CVSS:9.8 A vulnerability was detected in Totolink N300RH 6.1c.1353_B20190305. Affected by this issue is the function setWiFiBasicConfig of the… - CVE-2018-25412 Delta Sql 1.8.2 contains an arbitrary file upload vulnerability that allows unau
CVE-2018-25412Critical 9.8
CVE-2018-25412 CVSS:9.8 Delta Sql 1.8.2 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by… - CVE-2026-10071 DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, al
CVE-2026-10071Critical 9.8
CVE-2026-10071 CVSS:9.8 DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and… - CVE-2026-3655 The OTP Login With Phone Number, OTP Verification plugin for WordPress is vulner
CVE-2026-3655Critical 9.8
CVE-2026-3655 CVSS:9.8 The OTP Login With Phone Number, OTP Verification plugin for WordPress is vulnerable to authentication bypass in versions 1.8.50 through… - CVE-2026-8732 The WP Maps Pro plugin for WordPress is vulnerable to Privilege Escalation via A
CVE-2026-8732Critical 9.8
CVE-2026-8732 CVSS:9.8 The WP Maps Pro plugin for WordPress is vulnerable to Privilege Escalation via Administrator Account Creation in all versions up to, and… - CVE-2026-48188 An improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition
CVE-2026-48188Critical 9.1
CVE-2026-48188 CVSS:9.1 An improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition database layer module allows an unauthenticated SQL…
High (87 条)
- CVE-2026-10206 A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1. This affects an
CVE-2026-10206High 8.8
CVE-2026-10206 CVSS:8.8 A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1. This affects an unknown function of the file /dbsrv.asp. Performing a… - CVE-2026-10192 A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element
CVE-2026-10192High 8.8
CVE-2026-10192 CVSS:8.8 A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function set_local_time_0 of the file… - CVE-2026-10191 A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the funct
CVE-2026-10191High 8.8
CVE-2026-10191 CVSS:8.8 A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function cgiWifiMacFilterSet of the file /bin/httpd. This… - CVE-2026-10189 A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability af
CVE-2026-10189High 8.8
CVE-2026-10189 CVSS:8.8 A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the function cgiSysTimeInfoSet of the file… - CVE-2026-10188 A flaw has been found in Tenda W12 3.0.0.7(4763). This affects the function cgis
CVE-2026-10188High 8.8
CVE-2026-10188 CVSS:8.8 A flaw has been found in Tenda W12 3.0.0.7(4763). This affects the function cgistaKickOff of the file /bin/httpd. Executing a… - CVE-2026-10183 A vulnerability was identified in TRENDnet TEW-432BRP 3.10B20. This affects the
CVE-2026-10183High 8.8
CVE-2026-10183 CVSS:8.8 A vulnerability was identified in TRENDnet TEW-432BRP 3.10B20. This affects the function formWlanSetup of the file… - CVE-2026-10181 A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. The affected element i
CVE-2026-10181High 8.8
CVE-2026-10181 CVSS:8.8 A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. The affected element is the function formSysCmd of the file… - CVE-2026-10179 A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This issue affects the fun
CVE-2026-10179High 8.8
CVE-2026-10179 CVSS:8.8 A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This issue affects the function formSetWlanEncrypt of the file… - CVE-2026-10165 A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is
CVE-2026-10165High 8.8
CVE-2026-10165 CVSS:8.8 A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is the function formWanTcpipSetup of the file… - CVE-2026-10164 A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function for
CVE-2026-10164High 8.8
CVE-2026-10164 CVSS:8.8 A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the… - CVE-2026-10163 A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the
CVE-2026-10163High 8.8
CVE-2026-10163 CVSS:8.8 A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file… - CVE-2026-10162 A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This vulnerability affects
CVE-2026-10162High 8.8
CVE-2026-10162 CVSS:8.8 A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This vulnerability affects the function formSetPassword of the file… - CVE-2026-10161 A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. This affects the fu
CVE-2026-10161High 8.8
CVE-2026-10161 CVSS:8.8 A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. This affects the function formResetStatistic of the file… - CVE-2026-10160 A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Affec
CVE-2026-10160High 8.8
CVE-2026-10160 CVSS:8.8 A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Affected by this issue is the function formSetEnableWizard… - CVE-2026-10159 A weakness has been identified in TRENDnet TEW-432BRP 3.10B20. Affected by this
CVE-2026-10159High 8.8
CVE-2026-10159 CVSS:8.8 A weakness has been identified in TRENDnet TEW-432BRP 3.10B20. Affected by this vulnerability is the function formSysLog of the file… - CVE-2026-10158 A security flaw has been discovered in TRENDnet TEW-432BRP 3.10B20. Affected is
CVE-2026-10158High 8.8
CVE-2026-10158 CVSS:8.8 A security flaw has been discovered in TRENDnet TEW-432BRP 3.10B20. Affected is the function formPortFw of the file /goform/formPortFw.… - CVE-2026-10126 A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this i
CVE-2026-10126High 8.8
CVE-2026-10126 CVSS:8.8 A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function formQoS of the file… - CVE-2026-10125 A vulnerability was identified in Edimax BR-6478AC 1.23. Affected by this vulner
CVE-2026-10125High 8.8
CVE-2026-10125 CVSS:8.8 A vulnerability was identified in Edimax BR-6478AC 1.23. Affected by this vulnerability is the function formPPPoESetup of the file… - CVE-2026-10124 A vulnerability was determined in Shibby Tomato up to 1.28. Affected is the func
CVE-2026-10124High 8.8
CVE-2026-10124 CVSS:8.8 A vulnerability was determined in Shibby Tomato up to 1.28. Affected is the function rip_zebra_read_ipv4 of the file /usr/sbin/ripd of… - CVE-2026-10123 A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the funct
CVE-2026-10123High 8.8
CVE-2026-10123 CVSS:8.8 A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetDomainFilter of the file… - CVE-2026-10122 A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This affects the
CVE-2026-10122High 8.8
CVE-2026-10122 CVSS:8.8 A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This affects the function formSetProtocolFilter of the file… - CVE-2026-10121 A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is th
CVE-2026-10121High 8.8
CVE-2026-10121 CVSS:8.8 A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formSetUrlFilter of the file… - CVE-2018-25409 SIM-PKH 2.4.1 contains an arbitrary file upload vulnerability that allows authen
CVE-2018-25409High 8.8
CVE-2018-25409 CVSS:8.8 SIM-PKH 2.4.1 contains an arbitrary file upload vulnerability that allows authenticated attackers to upload malicious files by… - CVE-2026-10120 A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. The affected elemen
CVE-2026-10120High 8.8
CVE-2026-10120 CVSS:8.8 A vulnerability was detected in TRENDnet TEW-432BRP 3.10B20. The affected element is the function formSetFirewallRule of the file… - CVE-2026-10119 A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Impac
CVE-2026-10119High 8.8
CVE-2026-10119 CVSS:8.8 A security vulnerability has been detected in TRENDnet TEW-432BRP 3.10B20. Impacted is the function formSetMACFilter of the file… - CVE-2026-7465 The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for W
CVE-2026-7465High 8.8
CVE-2026-7465 CVSS:8.8 The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Remote Code Execution in all… - CVE-2026-45578 WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a cl
CVE-2026-45578High 8.8
CVE-2026-45578 CVSS:8.8 WWBN AVideo is an open source video platform. In 29.0 and earlier, there is a classic shell-metacharacter injection. The YPTSocket… - CVE-2025-11993 The WooCommerce Infinite Scroll and Ajax Pagination plugin for WordPress is vuln
CVE-2025-11993High 8.8
CVE-2025-11993 CVSS:8.8 The WooCommerce Infinite Scroll and Ajax Pagination plugin for WordPress is vulnerable to PHP Object Injection in all versions up to,… - CVE-2026-48527 HAX CMS helps manage microsite universe with PHP or NodeJs backends. Versions up
CVE-2026-48527High 8.7
CVE-2026-48527 CVSS:8.7 HAX CMS helps manage microsite universe with PHP or NodeJs backends. Versions up to and including 26.0.0 are affected by a stored… - CVE-2026-49489 OpenCATS through 0.9.7.4 contains a sql injection vulnerability in the sortDirec
CVE-2026-49489High 8.5
CVE-2026-49489 CVSS:8.5 OpenCATS through 0.9.7.4 contains a sql injection vulnerability in the sortDirection parameter of the DataGrid component that allows… - CVE-2026-44698 Home Assistant is open source home automation software that puts local control a
CVE-2026-44698High 8.3
CVE-2026-44698 CVSS:8.3 Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2026.4.1 for iOS and… - CVE-2018-25425 Yot CMS 3.3.1 contains an SQL injection vulnerability that allows unauthenticate
CVE-2018-25425High 8.2
CVE-2018-25425 CVSS:8.2 Yot CMS 3.3.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2018-25424 Gate Pass Management System 2.1 contains an SQL injection vulnerability that all
CVE-2018-25424High 8.2
CVE-2018-25424 CVSS:8.2 Gate Pass Management System 2.1 contains an SQL injection vulnerability that allows unauthenticated attackers to bypass authentication… - CVE-2018-25422 MOGG web simulator Script contains an SQL injection vulnerability that allows un
CVE-2018-25422High 8.2
CVE-2018-25422 CVSS:8.2 MOGG web simulator Script contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL… - CVE-2018-25420 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthen
CVE-2018-25420High 8.2
CVE-2018-25420 CVSS:8.2 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2018-25419 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthen
CVE-2018-25419High 8.2
CVE-2018-25419 CVSS:8.2 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2018-25418 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthen
CVE-2018-25418High 8.2
CVE-2018-25418 CVSS:8.2 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2018-25417 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthen
CVE-2018-25417High 8.2
CVE-2018-25417 CVSS:8.2 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2018-25416 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthen
CVE-2018-25416High 8.2
CVE-2018-25416 CVSS:8.2 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2018-25415 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthen
CVE-2018-25415High 8.2
CVE-2018-25415 CVSS:8.2 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2018-25414 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthen
CVE-2018-25414High 8.2
CVE-2018-25414 CVSS:8.2 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2018-25413 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthen
CVE-2018-25413High 8.2
CVE-2018-25413 CVSS:8.2 AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2018-25411 MGB OpenSource Guestbook 0.7.0.2 contains an SQL injection vulnerability that al
CVE-2018-25411High 8.2
CVE-2018-25411 CVSS:8.2 MGB OpenSource Guestbook 0.7.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL… - CVE-2018-25407 eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow
CVE-2018-25407High 8.2
CVE-2018-25407 CVSS:8.2 eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL… - CVE-2018-25406 eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow
CVE-2018-25406High 8.2
CVE-2018-25406 CVSS:8.2 eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL… - CVE-2018-25405 eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow
CVE-2018-25405High 8.2
CVE-2018-25405 CVSS:8.2 eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL… - CVE-2026-46510 form-data-objectizer converts FormData to object. Prior to 1.0.1, form-data-obje
CVE-2026-46510High 8.2
CVE-2026-46510 CVSS:8.2 form-data-objectizer converts FormData to object. Prior to 1.0.1, form-data-objectizer walks bracket-notation form keys (e.g.… - CVE-2026-45615 mouse07410/asn1c is an ASN.1 compiler. In 1.4 and earlier, a memory safety vulne
CVE-2026-45615High 8.2
CVE-2026-45615 CVSS:8.2 mouse07410/asn1c is an ASN.1 compiler. In 1.4 and earlier, a memory safety vulnerability was identified in the OER decoding skeleton… - CVE-2026-8796 Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via
CVE-2026-8796High 8.1
CVE-2026-8796 CVSS:8.1 Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via crafted input. In Perl/Decoder/srl_decoder.c,… - CVE-2026-49490 OpenCATS from version 0.9.1a contains an SQL injection vulnerability in DataGrid
CVE-2026-49490High 8.1
CVE-2026-49490 CVSS:8.1 OpenCATS from version 0.9.1a contains an SQL injection vulnerability in DataGrid filter handling that allows authenticated attackers to… - CVE-2026-45707 n8n-MCP is an MCP server that provides AI assistants access to n8n node document
CVE-2026-45707High 8.1
CVE-2026-45707 CVSS:8.1 n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to 2.51.2,… - CVE-2026-6075 The Media Library Assistant plugin for WordPress is vulnerable to Cross-Site Req
CVE-2026-6075High 8.1
CVE-2026-6075 CVSS:8.1 The Media Library Assistant plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.35 This… - CVE-2026-20452 In wlan AP driver, there is a possible memory corruption due to a heap buffer ov
CVE-2026-20452High 8.0
CVE-2026-20452 CVSS:8.0 In wlan AP driver, there is a possible memory corruption due to a heap buffer overflow. This could lead to remote (proximal/adjacent)… - CVE-2026-20455 In geniezone, there is a possible out of bounds write due to a missing bounds ch
CVE-2026-20455High 7.8
CVE-2026-20455 CVSS:7.8 In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege… - CVE-2026-45555 Roslyn CodeLens MCP Server is a Roslyn-based MCP server providing semantic code
CVE-2026-45555High 7.8
CVE-2026-45555 CVSS:7.8 Roslyn CodeLens MCP Server is a Roslyn-based MCP server providing semantic code intelligence for .NET codebases. From 0.0.9 to 1.17.0,… - CVE-2026-42965 A flaw was found in the OpenShift Router. A user with EndpointSlice write access
CVE-2026-42965High 7.7
CVE-2026-42965 CVSS:7.7 A flaw was found in the OpenShift Router. A user with EndpointSlice write access can exploit this vulnerability by creating a Service… - CVE-2026-9809 A stored Cross-Site Scripting (XSS) vulnerability exists in the Projects compone
CVE-2026-9809High 7.6
CVE-2026-9809 CVSS:7.6 A stored Cross-Site Scripting (XSS) vulnerability exists in the Projects component of Mautic 7. When displaying project tags and… - CVE-2018-25426 WinMTR 0.91 contains a denial of service vulnerability that allows attackers to
CVE-2018-25426High 7.5
CVE-2018-25426 CVSS:7.5 WinMTR 0.91 contains a denial of service vulnerability that allows attackers to crash the application by sending a malformed payload… - CVE-2018-25408 The Open ISES Project 3.30A contains a path traversal vulnerability in the ajax/
CVE-2018-25408High 7.5
CVE-2018-25408 CVSS:7.5 The Open ISES Project 3.30A contains a path traversal vulnerability in the ajax/download.php endpoint that allows unauthenticated… - CVE-2026-9757 The GEO my WP plugin for WordPress is vulnerable to SQL Injection via the 'swlat
CVE-2026-9757High 7.5
CVE-2026-9757 CVSS:7.5 The GEO my WP plugin for WordPress is vulnerable to SQL Injection via the 'swlatlng' and 'nelatlng' parameters in all versions up to,… - CVE-2026-7459 The Simple History – Track, Log, and Audit WordPress Changes plugin for WordPres
CVE-2026-7459High 7.5
CVE-2026-7459 CVSS:7.5 The Simple History – Track, Log, and Audit WordPress Changes plugin for WordPress is vulnerable to authenticated (Subscriber+) account… - CVE-2026-10073 DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allo
CVE-2026-10073High 7.5
CVE-2026-10073 CVSS:7.5 DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing unauthenticated local attackers to exploit… - CVE-2026-10056 CORS misconfiguration in the REST API of Network Optix Nx Witness VMS before ver
CVE-2026-10056High 7.5
CVE-2026-10056 CVSS:7.5 CORS misconfiguration in the REST API of Network Optix Nx Witness VMS before version 6.1.2, when running in the default Standard… - CVE-2026-46579 A flaw was found in the OpenShift Router. When a Route has `insecureEdgeTerminat
CVE-2026-46579High 7.4
CVE-2026-46579 CVSS:7.4 A flaw was found in the OpenShift Router. When a Route has `insecureEdgeTerminationPolicy` set to Allow, the HTTP frontend does not… - CVE-2026-10236 A vulnerability has been found in SourceCodester Water Billing Management System
CVE-2026-10236High 7.3
CVE-2026-10236 CVSS:7.3 A vulnerability has been found in SourceCodester Water Billing Management System 1.0. This issue affects some unknown processing of the… - CVE-2026-10227 A vulnerability has been found in raisulislamg4 student_management_system_by_php
CVE-2026-10227High 7.3
CVE-2026-10227 CVSS:7.3 A vulnerability has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16d1. The… - CVE-2026-10226 A flaw has been found in raisulislamg4 student_management_system_by_php up to 31
CVE-2026-10226High 7.3
CVE-2026-10226 CVSS:7.3 A flaw has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16d1. Impacted is an… - CVE-2026-10225 A vulnerability was detected in raisulislamg4 student_management_system_by_php u
CVE-2026-10225High 7.3
CVE-2026-10225 CVSS:7.3 A vulnerability was detected in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16d1. This… - CVE-2026-10221 A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affect
CVE-2026-10221High 7.3
CVE-2026-10221 CVSS:7.3 A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function… - CVE-2026-10220 A vulnerability was determined in NousResearch hermes-agent up to 2026.4.30. Aff
CVE-2026-10220High 7.3
CVE-2026-10220 CVSS:7.3 A vulnerability was determined in NousResearch hermes-agent up to 2026.4.30. Affected is the function _serve_plugin_skill/skill_view of… - CVE-2026-10219 A vulnerability was found in nextlevelbuilder GoClaw up to 3.11.3. This impacts
CVE-2026-10219High 7.3
CVE-2026-10219 CVSS:7.3 A vulnerability was found in nextlevelbuilder GoClaw up to 3.11.3. This impacts the function FsBridge.WriteFile of the file… - CVE-2026-10214 A weakness has been identified in zhayujie chatgpt-on-wechat up to 2.0.8. This i
CVE-2026-10214High 7.3
CVE-2026-10214 CVSS:7.3 A weakness has been identified in zhayujie chatgpt-on-wechat up to 2.0.8. This issue affects the function _get_safety_warning of the… - CVE-2026-10208 A flaw has been found in code-projects Online Hospital Management System 1.php.
CVE-2026-10208High 7.3
CVE-2026-10208 CVSS:7.3 A flaw has been found in code-projects Online Hospital Management System 1.php. This impacts the function login_user of the file… - CVE-2026-10186 A security vulnerability has been detected in code-projects Online Hospital Mana
CVE-2026-10186High 7.3
CVE-2026-10186 CVSS:7.3 A security vulnerability has been detected in code-projects Online Hospital Management System 1.0. Affected by this vulnerability is an… - CVE-2026-10185 A weakness has been identified in SourceCodester Hospitals Patient Records Manag
CVE-2026-10185High 7.3
CVE-2026-10185 CVSS:7.3 A weakness has been identified in SourceCodester Hospitals Patient Records Management System 1.0. Affected is an unknown function of… - CVE-2026-10184 A security flaw has been discovered in SourceCodester Hospitals Patient Records
CVE-2026-10184High 7.3
CVE-2026-10184 CVSS:7.3 A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This impacts an unknown function… - CVE-2026-10178 A vulnerability was detected in code-projects Online Music Site 1.0. This vulner
CVE-2026-10178High 7.3
CVE-2026-10178 CVSS:7.3 A vulnerability was detected in code-projects Online Music Site 1.0. This vulnerability affects unknown code of the file… - CVE-2026-10167 A weakness has been identified in OUSL-GROUP-BrinaryBrains School Student Manage
CVE-2026-10167High 7.3
CVE-2026-10167 CVSS:7.3 A weakness has been identified in OUSL-GROUP-BrinaryBrains School Student Management System up to… - CVE-2026-10157 A vulnerability was identified in Open5GS up to 2.7.6. This impacts an unknown f
CVE-2026-10157High 7.3
CVE-2026-10157 CVSS:7.3 A vulnerability was identified in Open5GS up to 2.7.6. This impacts an unknown function of the file src/amf/ngap-handler.c of the… - CVE-2026-10111 A flaw has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0. This impacts a
CVE-2026-10111High 7.3
CVE-2026-10111 CVSS:7.3 A flaw has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0. This impacts an unknown function of the component Login Page.… - CVE-2026-10110 A vulnerability was detected in code-projects Student Details Management System
CVE-2026-10110High 7.3
CVE-2026-10110 CVSS:7.3 A vulnerability was detected in code-projects Student Details Management System 1.0. This affects an unknown function of the file… - CVE-2026-10072 DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, al
CVE-2026-10072High 7.2
CVE-2026-10072 CVSS:7.2 DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and… - CVE-2025-11262 The Link Whisper Free plugin for WordPress is vulnerable to Stored Cross-Site Sc
CVE-2025-11262High 7.2
CVE-2025-11262 CVSS:7.2 The Link Whisper Free plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the user_id parameter in all versions up… - CVE-2026-48209 An improper neutralization of user-controllable input in OTRS or ((OTRS)) Commun
CVE-2026-48209High 7.1
CVE-2026-48209 CVSS:7.1 An improper neutralization of user-controllable input in OTRS or ((OTRS)) Community Edition ticket handling allows authenticated… - CVE-2018-25410 SIM-PKH 2.4.1 contains an SQL injection vulnerability that allows authenticated
CVE-2018-25410High 7.1
CVE-2018-25410 CVSS:7.1 SIM-PKH 2.4.1 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting… - CVE-2026-9808 An authorization bypass vulnerability exists in the Mautic 7 API v2 endpoints (u
CVE-2026-9808High 7.1
CVE-2026-9808 CVSS:7.1 An authorization bypass vulnerability exists in the Mautic 7 API v2 endpoints (utilizing API Platform). Under certain conditions, roles… - CVE-2026-4776 An SQL injection vulnerability exists in Mautic's API contact filtering mechanis
CVE-2026-4776High 7.1
CVE-2026-4776 CVSS:7.1 An SQL injection vulnerability exists in Mautic's API contact filtering mechanism. Due to insufficient recursive sanitization of nested…
⚔️ Sploitus(88 条)
Unknown (88 条)
- htb-myexpense-writeup exploit
htb-myexpense-writeup exploit - cve-arsenal exploit
cve-arsenal exploit
…另有 86 条 Unknown 级漏洞(已省略)
🤖 漏洞情报自动汇总 · 2026-06-02 · 数据来源: NVD / GitHub Advisory / Sploitus / CISA-KEV