📊 2026-06-08 漏洞情报日报 · 200 条 · 高危 88
每日漏洞情报汇总 · 2026-06-08
📊 2026-06-08 漏洞情报日报
📋 共 200 条
🔥 高危/严重 88 条
💣 Exploit-DB-RSS 1 条
🐙 GitHub-Advisory 50 条 🔥24
🛡️ NVD-Latest 64 条 🔥64
⚔️ Sploitus 85 条
🤖 今日安全态势分析
🎯 今日重点关注
- DbGate 多漏洞链 (CVE-2026-47668/669/670):数据库管理工具 DbGate 出现三个严重漏洞,包括未授权远程代码执行 (RCE)、Zip Slip 任意文件写入和授权RCE。攻击者无需认证或仅需低权限用户凭证即可完全控制服务器,风险极高。
- NASA AMMOS 路径遍历 (CVE-2026-47731):NASA 航天仪器工具包中的未授权HTTP API存在路径遍历漏洞,远程攻击者可绕过配置限制,实现任意文件读写,可能导致敏感数据泄露或系统沦陷。
- Mobe MobaXterm 缓冲区溢出 (CVE-2019-25741):老牌终端软件 MobaXterm 12.1 版本在解析恶意会话文件时存在基于SEH的缓冲区溢出,远程攻击者可通过诱导用户打开恶意文件执行任意代码。
- Morse Micro HaLow Wi-Fi 驱动漏洞 (CVE-2026-7762/763):HaLow Wi-Fi 内核驱动存在两处堆缓冲区溢出漏洞,未经认证的邻近攻击者可在无交互的情况下触发拒绝服务 (DoS) 或潜在RCE,威胁物联网设备安全。
📈 威胁趋势
- 远程代码执行 (RCE):今日最严重威胁,涉及 DbGate、MobaXterm、PDF Signer 等多个产品。攻击向量包括参数注入、缓冲区溢出、模板注入和恶意文件解析,部分漏洞无需认证即可利用。
- 权限提升与授权绕过:Shopper 系统存在RBAC权限提升漏洞,Omni 产品允许低权限用户窃取高敏感CA密钥,均直接威胁身份与访问控制安全。
- 拒绝服务 (DoS) 与资源耗尽:Klever-Go KVM 的P2P请求存在哈希数组放大攻击,仅需442字节数据即可导致200,000次解码操作;Morse Micro Wi-Fi 驱动也存在拒绝服务风险。
- 信息泄露与文件操作:路径遍历、Zip Slip 和认证缺失漏洞集中出现,导致敏感文件被任意读写,涉及NASA工具和工业路由器(Redline WR3200)。
🛡️ 缓解建议
- 立即隔离或升级 DbGate:检查并禁用
/runners/start及/runners/load-reader接口的外部访问,并关注官方补丁更新。同时检查是否存在因Zip Slip漏洞被写入的恶意文件。 - 紧急修补工业与物联网设备:针对 Morse Micro HaLowLink 2 设备、DTS Electronics Redline WR3200 路由器,请立即联系厂商获取固件更新;若无法更新,应考虑禁用相关无线功能或隔离网络。
- 升级或替换老版本软件:立即升级 Google Chrome 至149.0.7827.53以上版本;对 MobaXterm 12.1、PDF Signer 3.0 等老版本软件,建议升级或替换为替代产品,并警惕来源不明的文件。
- 强化访问控制与监控:对已发现授权绕过漏洞的 Shopper 和 Omni 系统,立即审查并修正权限配置。同时开启WAF和入侵检测规则,重点监控对API管理接口的异常访问和参数注入行为。
💣 Exploit-DB-RSS(1 条)
Unknown (1 条)
- [webapps] WordPress Contest Gallery 28.1.4 - Unauthenticated Blind SQL Injection
# Exploit Title: WordPress Contest Gallery 28.1.4 - Unauthenticated Blind SQL Injection # Google Dork: N/A # Date: 2026-06-02 # Exploit Author: cardosource #…
🐙 GitHub-Advisory(50 条)
Critical (5 条)
- CVE-2026-47668 - DbGate: Unauthenticated Remote Code Execution via JSON Script Runner
CVE-2026-47668Critical
Summary DbGate's JSON script runner (`POST /runners/start`) allows remote code execution via code injection in the `functionName` parameter of JSON script… - CVE-2026-47669 - DbGate: Zip Slip in archive/unzip allows arbitrary file write leading to RCE
CVE-2026-47669Critical
The `unzipDirectory()` function in `packages/api/src/shell/unzipDirectory.js` (line 27) does not validate that extracted file paths stay within the output… - CVE-2026-47670 - Authenticated Remote Code Execution via loadReader functionName code injection i
CVE-2026-47670Critical
Summary DbGate is vulnerable to authenticated Remote Code Execution (RCE). Any user with valid DbGate credentials can execute arbitrary OS commands as root by… - CVE-2026-47731 - NASA AMMOS Instrument Toolkit: Path traversal resulting in arbitrary file append
CVE-2026-47731Critical
## 1. Summary The Binary Stream Capture (BSC) component exposes an unauthenticated HTTP API for dynamically creating packet capture “handlers.” Because the… - CVE-2026-47744 - Shopper: Authorization bypass and RBAC privilege escalation in team settings
CVE-2026-47744Critical
## Impact Two distinct authorization defects in the team settings allowed any authenticated panel user to take over the RBAC system: - `Settings/Team/Index`…
High (19 条)
- CVE-2026-45726 - Omni: Reader-level users can retrieve imported cluster CA keys via ResourceServi
CVE-2026-45726High
## Summary Omni supports importing standalone Talos clusters. During this process, an ImportedClusterSecrets resource is created, which contains the full CA… - CVE-2026-47249 - Klever-Go KVM: Hash-array amplification in P2P resolver request handling
CVE-2026-47249High
Summary A connected peer can send a compressed `RequestDataType_HashArrayType` direct request that is only `442` bytes on the wire but expands into `200000`… - CVE-2026-47261 - wasmtime-wasi: WASI path_open(TRUNCATE) bypasses `FilePerms::WRITE` host restric
CVE-2026-47261High
## Summary In `wasmtime-wasi`, when a filesystem preopen is given `DirPerms::all()` and `FilePerms::READ` without `FilePerms::WRITE`, this wasmtime-wasi… - CVE-2026-47383 - NocoDB: Stored Cross-Site Scripting via Row Comments
CVE-2026-47383High
Summary An authenticated commenter could store HTML in row comments that executed as script when other users hovered over the comment in the expanded form… - CVE-2026-47387 - NocoDB: Stored Cross-Site Scripting via Form View Redirect URL
CVE-2026-47387High
Summary The shared form-view submit handler in NocoDB writes the form's `redirect_url` to `window.location.href` after a same-host check that does not validate… - CVE-2026-47419 - praisonai-platform: Agent endpoints accept any agent_id without workspace owners
CVE-2026-47419High
## Summary **Type:** Insecure Direct Object Reference. The agent CRUD endpoints (`GET / PATCH / DELETE /workspaces/{workspace_id}/agents/{agent_id}`) gate… - CVE-2026-47684 - Sync-in Server: SSRF protection bypass via IPv4-mapped IPv6 addresses in regExpP
CVE-2026-47684High
Summary: The private IP blocklist regex used in the URL download feature does not match IPv4-mapped IPv6 addresses (e.g. ::ffff:127.0.0.1), allowing SSRF… - CVE-2026-48017 - DbGate: Remote Code Execution via functionName injection in loadReader endpoint
CVE-2026-48017High
Summary The `POST /runners/load-reader` endpoint in DbGate accepts a `functionName` parameter that is directly interpolated into a JavaScript code template… - GHSA-hf2g-6j7h-98wg - klever-go: Unbounded goroutine spawn on direct-message ingress enables peer-driv High
Summary `networkMessenger.directMessageHandler` in `network/p2p/libp2p/netMessenger.go` spawns a fresh goroutine for every incoming direct message before the… - GHSA-w4c6-7r69-w7j9 - klever-go: REST API slow-header connection exhaustion via Gin Engine.Run High
Summary The Klever seednode REST API starts a Gin engine with `Engine.Run(restAPIInterface)`. In Gin v1.9.1, `Engine.Run` calls Go's default… - GHSA-rm5c-5x2p-48wr - Klever-Go KVM: Unauthenticated remote node crash (nil-pointer DoS) in klever-go
CVE-2026-46403CVE-2026-44697High
## Summary Every transaction gossiped on the klever-go P2P network is decoded and validated synchronously inside the libp2p pubsub topic-validator callback.… - GHSA-wx3m-whqv-xv47 - skillctl: Path traversal and symlink-follow in skillctl allow arbitrary file dis High
## Impact `skillctl` 0.1.0 and 0.1.1 contained four path-safety vulnerabilities that, in combination, allowed an attacker to: 1. **Exfiltrate arbitrary files… - CVE-2026-47760 - TinyMCE Cross-Site Scripting (XSS) vulnerability using sanitization bypass throu
CVE-2026-47760High
Impact TinyMCE 6.8.x contains an XSS vulnerability caused by improper SVG namespace scope handling in the sanitizer. A crafted payload using nested <svg>… - CVE-2026-47759 - TinyMCE Cross-Site Scripting (XSS) vulnerability using through data-mce- prefixe
CVE-2026-47759High
Impact Stored XSS vulnerability via unsanitized data-mce-* attributes (data-mce-href, data-mce-src, data-mce-style). Allows attackers to inject malicious… - CVE-2026-47762 - TinyMCE Cross-Site Scripting (XSS) vulnerability through `mce:protected` comment
CVE-2026-47762High
Impact Stored XSS vulnerability via forged mce:protected comments. Allows attackers to bypass sanitization and inject scripts that execute when content is… - CVE-2026-47761 - TinyMCE Cross-Site Scripting (XSS) vulnerability using media plugin `data-mce-ob
CVE-2026-47761High
Impact Stored XSS vulnerability in the media plugin. Attackers can inject malicious scripts via crafted `data-mce-*` attributes, which are executed when… - CVE-2026-47743 - Shopper: Multiple data integrity and disclosure issues in admin Livewire compone
CVE-2026-47743High
## Impact Three related defects on admin Livewire components allowed data tampering, sensitive data disclosure, and stored XSS: - **IDOR via unlocked… - CVE-2026-24425 - Twig: Possible sandbox bypass when using a source policy
CVE-2026-24425High
# Description When using the sandbox with a `SourcePolicyInterface`, Twig does not always apply the sandbox restriction that forbids non-`Closure` callbacks… - CVE-2026-47732 - Twig: Sandbox: multiple `__toString()` policy bypasses via unguarded string coer
CVE-2026-47732High
Description `SandboxNodeVisitor` enforces `SecurityPolicy::checkMethodAllowed()` for implicit `__toString()` calls by wrapping selected AST nodes in…
Medium (21 条)
- CVE-2026-47250 - MCP Server Kubernetes: kubectl-generic flag injection enables Kubernetes bearer
CVE-2026-47250Medium
Summary The `kubectl_generic` tool in `mcp-server-kubernetes` passes user-supplied flags directly to kubectl without any allowlist, enabling a **privilege… - CVE-2026-47279 - NocoDB: Hidden LTAR Column Exposure in Public Shared-View Relation Endpoints
CVE-2026-47279Medium
Summary The public shared-view relation endpoints accepted a caller-supplied column ID without verifying that the column was visible in the shared view, so… - CVE-2026-47375 - NocoDB: Postgres SQL Injection in Formula `ARRAYSORT`
CVE-2026-47375Medium
Summary An authenticated user with `columnAdd` permission on a Postgres-backed base can inject arbitrary SQL into the formula engine via the optional… - CVE-2026-47376 - NocoDB: Reflected Cross-Site Scripting via Password Reset Token
CVE-2026-47376Medium
Summary The password-reset page rendered the URL token directly into a JavaScript string literal in a server-rendered EJS template. EJS `<%= %>`… - CVE-2026-47377 - NocoDB: Open Redirect via Hash Fragment in hashRedirect Plugin
CVE-2026-47377Medium
Summary The client-side `hashRedirect` plugin called `window.location.replace()` on a path extracted from the URL hash fragment after only checking… - CVE-2026-47378 - NocoDB: Hidden Column Exposure in Public Shared View Endpoints
CVE-2026-47378Medium
Summary Public shared-view endpoints exposed values from columns that the view owner had hidden, via three independent paths: groupBy returned raw values for… - CVE-2026-47379 - NocoDB: Plaintext Password Comparison in Shared Views
CVE-2026-47379Medium
Summary The shared-view password check fell back to strict-equality (`===`) comparison for legacy plaintext passwords, leaking the password's length and… - CVE-2026-47381 - NocoDB: Cross-Workspace Integration Use in Connection Test
CVE-2026-47381Medium
Summary A user in one workspace could exercise another workspace's integration through the `testConnection` endpoint by supplying its ID, because the…
…另有 13 条 Medium 级漏洞(已省略)
Low (5 条)
- CVE-2026-47380 - NocoDB: User Enumeration via Sign-In Timing
CVE-2026-47380Low
Summary Sign-in response timing differed between known and unknown email addresses because the unknown-user branch returned without performing a password hash… - CVE-2026-47388 - NocoDB: Missing Ownership Check in MCP Attachment Read
CVE-2026-47388Low
Summary A low-privilege MCP token holder with knowledge of an attachment path could read any file in shared storage, including attachments belonging to other… - CVE-2026-47715 - Bugsink: Issue event views can show an event from another project if its UUID is
CVE-2026-47715Low
Description Bugsink issue event pages accept a direct event identifier from the URL and, in affected versions, look up that event without also requiring it to…
…另有 2 条 Low 级漏洞(已省略)
🛡️ NVD-Latest(64 条)
Critical (10 条)
- CVE-2026-49777 Improper Validation of Specified Quantity in Input vulnerability in ShapedPlugin
CVE-2026-49777Critical 10.0
CVE-2026-49777 CVSS:10.0 Improper Validation of Specified Quantity in Input vulnerability in ShapedPlugin, LLC Product Slider Pro for WooCommerce allows… - CVE-2026-6274 Improper Authentication, Missing authentication for critical function, Weak Auth
CVE-2026-6274Critical 9.8
CVE-2026-6274 CVSS:9.8 Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and… - CVE-2026-7763 A heap-based buffer overflow vulnerability in the morse.ko HaLow Wi-Fi kernel dr
CVE-2026-7763Critical 9.8
CVE-2026-7763 CVSS:9.8 A heap-based buffer overflow vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior… - CVE-2026-7762 A heap-based buffer overflow vulnerability in the dot11ah.ko HaLow Wi-Fi kernel
CVE-2026-7762Critical 9.8
CVE-2026-7762 CVSS:9.8 A heap-based buffer overflow vulnerability in the dot11ah.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions… - CVE-2019-25741 Mobatek MobaXterm 12.1 contains a structured exception handling (SEH) based buff
CVE-2019-25741Critical 9.8
CVE-2019-25741 CVSS:9.8 Mobatek MobaXterm 12.1 contains a structured exception handling (SEH) based buffer overflow vulnerability in the username field of… - CVE-2019-25738 WordPress Hybrid Composer 1.4.6 contains an unauthenticated settings change vuln
CVE-2019-25738Critical 9.8
CVE-2019-25738 CVSS:9.8 WordPress Hybrid Composer 1.4.6 contains an unauthenticated settings change vulnerability that allows unauthenticated attackers to… - CVE-2019-25729 PDF Signer 3.0 contains a server-side template injection vulnerability that allo
CVE-2019-25729Critical 9.8
CVE-2019-25729 CVSS:9.8 PDF Signer 3.0 contains a server-side template injection vulnerability that allows unauthenticated attackers to execute arbitrary code… - CVE-2026-11293 Use after free in Input in Google Chrome prior to 149.0.7827.53 allowed a remote
CVE-2026-11293Critical 9.6
CVE-2026-11293 CVSS:9.6 Use after free in Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a… - CVE-2026-11282 Insufficient policy enforcement in Sandbox in Google Chrome on Linux prior to 14
CVE-2026-11282Critical 9.6
CVE-2026-11282 CVSS:9.6 Insufficient policy enforcement in Sandbox in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially… - CVE-2026-11250 Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53
CVE-2026-11250Critical 9.6
CVE-2026-11250 CVSS:9.6 Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the…
High (54 条)
- CVE-2026-11413 A security vulnerability has been detected in JingDong JD Cloud Box AX6600 4.5.3
CVE-2026-11413High 8.8
CVE-2026-11413 CVSS:8.8 A security vulnerability has been detected in JingDong JD Cloud Box AX6600 4.5.3.r4546. The impacted element is the function… - CVE-2026-11307 Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remot
CVE-2026-11307High 8.8
CVE-2026-11307 CVSS:8.8 Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox… - CVE-2026-11306 Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remot
CVE-2026-11306High 8.8
CVE-2026-11306 CVSS:8.8 Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox… - CVE-2026-11305 Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remot
CVE-2026-11305High 8.8
CVE-2026-11305 CVSS:8.8 Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox… - CVE-2026-11304 Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remot
CVE-2026-11304High 8.8
CVE-2026-11304 CVSS:8.8 Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a… - CVE-2026-11303 Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remot
CVE-2026-11303High 8.8
CVE-2026-11303 CVSS:8.8 Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox… - CVE-2026-11301 Inappropriate implementation in LiveCaption in Google Chrome prior to 149.0.7827
CVE-2026-11301High 8.8
CVE-2026-11301 CVSS:8.8 Inappropriate implementation in LiveCaption in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform… - CVE-2026-11295 Inappropriate implementation in WebView in Google Chrome on Android prior to 149
CVE-2026-11295High 8.8
CVE-2026-11295 CVSS:8.8 Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform… - CVE-2026-11279 Out of bounds read in DevTools in Google Chrome prior to 149.0.7827.53 allowed a
CVE-2026-11279High 8.8
CVE-2026-11279 CVSS:8.8 Out of bounds read in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a… - CVE-2026-11272 Insufficient validation of untrusted input in Reading List in Google Chrome on i
CVE-2026-11272High 8.8
CVE-2026-11272 CVSS:8.8 Insufficient validation of untrusted input in Reading List in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who… - CVE-2026-11262 Use after free in TabStrip in Google Chrome prior to 149.0.7827.53 allowed a rem
CVE-2026-11262High 8.8
CVE-2026-11262 CVSS:8.8 Use after free in TabStrip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted… - CVE-2026-11248 Inappropriate implementation in Google Lens in Google Chrome prior to 149.0.7827
CVE-2026-11248High 8.8
CVE-2026-11248 CVSS:8.8 Inappropriate implementation in Google Lens in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation… - CVE-2026-26422 clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading
CVE-2026-26422High 8.4
CVE-2026-26422 CVSS:8.4 clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation. 产品: - CVE-2019-25736 LabF nfsAxe 3.7 Ping Client contains a buffer overflow vulnerability that allows
CVE-2019-25736High 8.4
CVE-2019-25736 CVSS:8.4 LabF nfsAxe 3.7 Ping Client contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying… - CVE-2019-25735 AllPlayer 7.4 contains a local buffer overflow vulnerability in URL handling tha
CVE-2019-25735High 8.4
CVE-2019-25735 CVSS:8.4 AllPlayer 7.4 contains a local buffer overflow vulnerability in URL handling that allows attackers to overwrite structured exception… - CVE-2019-25733 NetShareWatcher 1.5.8.0 contains a structured exception handler buffer overflow
CVE-2019-25733High 8.4
CVE-2019-25733 CVSS:8.4 NetShareWatcher 1.5.8.0 contains a structured exception handler buffer overflow vulnerability that allows local attackers to execute… - CVE-2026-11256 Integer overflow in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote
CVE-2026-11256High 8.3
CVE-2026-11256 CVSS:8.3 Integer overflow in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to… - CVE-2019-25745 WordPress Plugin Google Review Slider 6.1 contains a time-based blind SQL inject
CVE-2019-25745High 8.2
CVE-2019-25745 CVSS:8.2 WordPress Plugin Google Review Slider 6.1 contains a time-based blind SQL injection vulnerability that allows unauthenticated attackers… - CVE-2019-25732 PHP EI-Tube Script 3 contains an SQL injection vulnerability that allows unauthe
CVE-2019-25732High 8.2
CVE-2019-25732 CVSS:8.2 PHP EI-Tube Script 3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2019-25730 Listing Hub CMS 1.0 contains a SQL injection vulnerability that allows unauthent
CVE-2019-25730High 8.2
CVE-2019-25730 CVSS:8.2 Listing Hub CMS 1.0 contains a SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by… - CVE-2019-25728 Care2x 2.7 contains multiple SQL injection vulnerabilities that allow unauthenti
CVE-2019-25728High 8.2
CVE-2019-25728 CVSS:8.2 Care2x 2.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL commands by… - CVE-2025-59874 HCL Hive Telco Observability is affected by a Required directives missing from
CVE-2025-59874High 8.1
CVE-2025-59874 CVSS:8.1 HCL Hive Telco Observability is affected by a Required directives missing from the CSP issue is detected in keycloak component of the… - CVE-2026-11241 Insufficient validation of untrusted input in Cast in Google Chrome prior to 149
CVE-2026-11241High 8.0
CVE-2026-11241 CVSS:8.0 Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network… - CVE-2026-11332 A flaw was found in ansible-core. The ansible-galaxy role install command proces
CVE-2026-11332High 7.8
CVE-2026-11332 CVSS:7.8 A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency specifications from a role's… - CVE-2026-11297 Insufficient validation of untrusted input in Reader Mode in Google Chrome on An
CVE-2026-11297High 7.7
CVE-2026-11297 CVSS:7.7 Insufficient validation of untrusted input in Reader Mode in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker… - CVE-2026-49494 Comodo Internet Security's firewall driver Inspect.sys contains an integer under
CVE-2026-49494High 7.5
CVE-2026-49494 CVSS:7.5 Comodo Internet Security's firewall driver Inspect.sys contains an integer underflow in its IPv6 packet parser. The parser decrements… - CVE-2026-9290 The WP User Manager – User Profile Builder & Membership plugin for WordPress is
CVE-2026-9290High 7.5
CVE-2026-9290 CVSS:7.5 The WP User Manager – User Profile Builder & Membership plugin for WordPress is vulnerable to Local File Inclusion in all versions up… - CVE-2026-11296 Inappropriate implementation in ImageCapture in Google Chrome prior to 149.0.782
CVE-2026-11296High 7.5
CVE-2026-11296 CVSS:7.5 Inappropriate implementation in ImageCapture in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the… - CVE-2026-11265 Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.53
CVE-2026-11265High 7.5
CVE-2026-11265 CVSS:7.5 Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data… - CVE-2026-11255 Insufficient validation of untrusted input in Storage Access API in Google Chrom
CVE-2026-11255High 7.5
CVE-2026-11255 CVSS:7.5 Insufficient validation of untrusted input in Storage Access API in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who… - CVE-2026-11242 Insufficient validation of untrusted input in Plugins in Google Chrome prior to
CVE-2026-11242High 7.5
CVE-2026-11242 CVSS:7.5 Insufficient validation of untrusted input in Plugins in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had… - CVE-2026-11239 Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.
CVE-2026-11239High 7.5
CVE-2026-11239 CVSS:7.5 Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the… - CVE-2025-46638 Dell BSAFE SSL-J contains an allocation of resources without limits or throttlin
CVE-2025-46638High 7.5
CVE-2025-46638 CVSS:7.5 Dell BSAFE SSL-J contains an allocation of resources without limits or throttling vulnerability. An unauthenticated remote attacker… - CVE-2026-11463 A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unk
CVE-2026-11463High 7.3
CVE-2026-11463 CVSS:7.3 A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler.… - CVE-2026-11462 A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up t
CVE-2026-11462High 7.3
CVE-2026-11462 CVSS:7.3 A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This impacts the function callback of the… - CVE-2026-11460 A flaw has been found in Boost Serialization up to 1.91. The impacted element is
CVE-2026-11460High 7.3
CVE-2026-11460 CVSS:7.3 A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown function. This manipulation causes improper… - CVE-2026-11457 A security flaw has been discovered in erzhongxmu JeeWMS up to 141740afb2ba14d44
CVE-2026-11457High 7.3
CVE-2026-11457 CVSS:7.3 A security flaw has been discovered in erzhongxmu JeeWMS up to 141740afb2ba14d441c82a833d0a418d07ca2d69. This vulnerability affects… - CVE-2026-11456 A vulnerability was identified in Chanjet CRM 1.0. This affects an unknown part
CVE-2026-11456High 7.3
CVE-2026-11456 CVSS:7.3 A vulnerability was identified in Chanjet CRM 1.0. This affects an unknown part of the file /tools/jxf_dump_systable.php of the… - CVE-2026-11452 A vulnerability has been found in GL.iNet GL-MT3000 up to 4.4.5. Affected is the
CVE-2026-11452High 7.3
CVE-2026-11452 CVSS:7.3 A vulnerability has been found in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function FUN_0042e200 of the file /cgi-bin/glc of the… - CVE-2026-11451 A flaw has been found in GL.iNet GL-MT3000 4.4.5. This impacts the function snpr
CVE-2026-11451High 7.3
CVE-2026-11451 CVSS:7.3 A flaw has been found in GL.iNet GL-MT3000 4.4.5. This impacts the function snprintf of the file /cgi-bin/glc of the component FTP… - CVE-2026-11450 A vulnerability was detected in GL.iNet GL-MT3000 4.4.5. This affects the functi
CVE-2026-11450High 7.3
CVE-2026-11450 CVSS:7.3 A vulnerability was detected in GL.iNet GL-MT3000 4.4.5. This affects the function dlopen in the library /usr/lib/oui-httpd/rpc/ of the… - CVE-2026-11437 A flaw has been found in perfree go-fastdfs-web up to 1.3.7. Affected is the fun
CVE-2026-11437High 7.3
CVE-2026-11437 CVSS:7.3 A flaw has been found in perfree go-fastdfs-web up to 1.3.7. Affected is the function checkServer of the file /install/checkServer of… - CVE-2026-11435 A security vulnerability has been detected in Jinher OA 1.0. This affects an unk
CVE-2026-11435High 7.3
CVE-2026-11435 CVSS:7.3 A security vulnerability has been detected in Jinher OA 1.0. This affects an unknown function of the file nextselectplan.aspx. Such… - CVE-2026-50593 Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds writ
CVE-2026-50593High 7.3
CVE-2026-50593 CVSS:7.3 Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure… - CVE-2026-10877 A security vulnerability has been detected in SourceCodester Ship Ferry Ticket R
CVE-2026-10877High 7.3
CVE-2026-10877 CVSS:7.3 A security vulnerability has been detected in SourceCodester Ship Ferry Ticket Reservation System up to 1.0. This impacts an unknown… - CVE-2026-9851 The Booking Package plugin for WordPress is vulnerable to Privilege Escalation v
CVE-2026-9851High 7.2
CVE-2026-9851 CVSS:7.2 The Booking Package plugin for WordPress is vulnerable to Privilege Escalation via Account Takeover in versions up to, and including,… - CVE-2026-7537 The MDJM Event Management plugin for WordPress is vulnerable to Arbitrary File U
CVE-2026-7537High 7.2
CVE-2026-7537 CVSS:7.2 The MDJM Event Management plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 1.7.8.3 via… - CVE-2026-8901 The Integration for Freshsales – Contact Form 7, WPForms, Elementor, Gravity For
CVE-2026-8901High 7.2
CVE-2026-8901 CVSS:7.2 The Integration for Freshsales – Contact Form 7, WPForms, Elementor, Gravity Forms and More plugin for WordPress is vulnerable to Stored… - CVE-2026-8438 The All-In-One Security (AIOS) – Security and Firewall plugin for WordPress is v
CVE-2026-8438High 7.2
CVE-2026-8438 CVSS:7.2 The All-In-One Security (AIOS) – Security and Firewall plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up… - CVE-2026-41567 Moby is an open source container framework. In versions prior to 29.5.1 and in m
CVE-2026-41567High 7.2
CVE-2026-41567 CVSS:7.2 Moby is an open source container framework. In versions prior to 29.5.1 and in moby/moby v2 prior to v2.0.0-beta.14, when a compressed… - CVE-2026-10586 The Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns pl
CVE-2026-10586High 7.2
CVE-2026-10586 CVSS:7.2 The Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns plugin for WordPress is vulnerable to Server-Side Request… - CVE-2019-25737 Live Chat Unlimited 2.8.3 contains a stored cross-site scripting vulnerability t
CVE-2019-25737High 7.2
CVE-2019-25737 CVSS:7.2 Live Chat Unlimited 2.8.3 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject… - CVE-2019-25731 Zuz Music 2.1 contains a persistent cross-site scripting vulnerability that allo
CVE-2019-25731High 7.2
CVE-2019-25731 CVSS:7.2 Zuz Music 2.1 contains a persistent cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious… - CVE-2026-11269 Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.
CVE-2026-11269High 7.1
CVE-2026-11269 CVSS:7.1 Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position…
⚔️ Sploitus(85 条)
Unknown (85 条)
- Exploit for OS Command Injection in Redhat Openshift_Container_Platform exploit
Exploit for OS Command Injection in Redhat Openshift_Container_Platform exploit - ps4-1350-poc exploit
ps4-1350-poc exploit
…另有 83 条 Unknown 级漏洞(已省略)
🤖 漏洞情报自动汇总 · 2026-06-08 · 数据来源: NVD / GitHub Advisory / Sploitus / CISA-KEV