| CVE-2026-43644 | podinfo 6.11.2 /echo 接口反射型 XSS 漏洞 | stefanprodan | podinfo | 中危 | 5.4 | 2026-05-14 12:37:40 | 深度分析 |
| CVE-2026-4029 | WordPress Database Backup 2.5.2 未授权数据库导出漏洞 | wpengine | Database Backup for WordPress | 高危 | 7.5 | 2026-05-14 12:32:05 | 深度分析 |
| CVE-2026-4030 | WordPress Database Backup <= 2.5.2 未授权文件读取及删除漏洞 | wpengine | Database Backup for WordPress | 高危 | 8.1 | 2026-05-14 12:32:04 | 深度分析 |
| CVE-2026-4031 | WordPress Database Backup 2.5.2 缺少授权导致数据库备份被拦截 | wpengine | Database Backup for WordPress | 高危 | 7.5 | 2026-05-14 12:32:02 | 深度分析 |
| CVE-2025-12008 | APPYAP Yaay Social Media App IDOR漏洞 | APPYAP Technology and Information Inc. | Yaay Social Media App | 高危 | 8.8 | 2026-05-14 12:31:50 | 深度分析 |
| CVE-2026-5790 | Stel Order 存储型跨站脚本漏洞 | Stel Order | Stel Order | - | - | 2026-05-14 12:30:32 | 深度分析 |
| CVE-2026-5798 | Stel Order 不安全对象引用漏洞 | Stel Order | Stel Order | - | - | 2026-05-14 12:26:10 | 深度分析 |
| CVE-2026-6008 | DijiDemi 目录遍历漏洞 | Im Park Information Technology, Electronics, Press, Publishing and Advertising, Education Ltd. Co. | DijiDemi | 中危 | 6.8 | 2026-05-14 12:24:47 | 深度分析 |
| CVE-2026-45205 | Apache Commons Configuration YAML循环栈溢出漏洞 | Apache Software Foundation | Apache Commons Configuration | - | - | 2026-05-14 11:22:44 | 深度分析 |
| CVE-2025-68420 | Comarch ERP Optima 权限提升漏洞 | Comarch | ERP Optima | - | - | 2026-05-14 10:35:07 | 深度分析 |
| CVE-2025-68421 | Comarch ERP Optima 硬编码凭据漏洞 | Comarch | ERP Optima | - | - | 2026-05-14 10:35:05 | 深度分析 |
| CVE-2026-8468 | 插件中多部分头解析的无限制缓冲累加导致拒绝服务漏洞 | elixir-plug | plug | - | - | 2026-05-14 10:29:51 | 深度分析 |
| CVE-2026-8295 | simdjson整数溢出漏洞 | simdjson | simdjson | - | - | 2026-05-14 10:27:42 | 深度分析 |
| CVE-2026-2347 | Akıllı Ticaret 电商平台 IDOR 漏洞 | Akilli Commerce Software Technologies Ltd. Co. | E-Commerce Website | 超危 | 9.8 | 2026-05-14 09:25:31 | 深度分析 |
| CVE-2025-11024 | Akıllı Ticaret E-Commerce Pack SQL注入漏洞 | Akilli Commerce Software Technologies Ltd. Co. | E-Commerce Website | 超危 | 9.8 | 2026-05-14 09:21:13 | 深度分析 |
| CVE-2026-6504 | Royal Addons for Elementor <= 1.7.1058 存储型XSS漏洞 | wproyal | Royal Addons for Elementor – Addons and Templates Kit for Elementor | 中危 | 6.4 | 2026-05-14 08:24:28 | 深度分析 |
| CVE-2026-6512 | InfusedWoo Pro 5.1.2 未授权任意帖子删除漏洞 | Infused Addons | InfusedWoo Pro | 超危 | 9.1 | 2026-05-14 08:24:28 | 深度分析 |
| CVE-2026-6145 | User Registration & Membership <= 5.1.5 管理员审批绕过漏洞 | wpeverest | User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder | 中危 | 5.3 | 2026-05-14 08:24:27 | 深度分析 |
| CVE-2026-6206 | MW WP Form <= 5.1.2 越权读取敏感信息漏洞 | websoudan | MW WP Form | 中危 | 5.3 | 2026-05-14 08:24:27 | 深度分析 |
| CVE-2026-6174 | CC Child Pages 2.1.1 存储型跨站脚本漏洞 | caterhamcomputing | CC Child Pages | 中危 | 6.4 | 2026-05-14 08:24:27 | 深度分析 |