Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Vulnerability List - Page 83

CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-49044 WordPress Advanced Custom Fields: Font Awesome Field plugin <= 5.0.2 - Cross Site Scripting (XSS) vulnerability Justin KruitAdvanced Custom Fields: Font Awesome Field Medium 6.5 2026-05-27 14:46:18 Deep Dive
CVE-2026-49045 WordPress Adminimize plugin <= 1.11.11 - Broken Access Control vulnerability WP MediaAdminimize Medium 4.3 2026-05-27 14:44:06 Deep Dive
CVE-2026-44971 GuardDog: Blind GitHub URL rewrite in remote project scanning causes SSRF and `GH_TOKEN` exfiltration DataDogguarddog High 8.2 2026-05-27 14:43:19 Deep Dive
CVE-2026-44972 GuardDog: Unsanitized human-readable scan output allows terminal escape injection from malicious package content DataDogguarddog Medium 5.0 2026-05-27 14:42:01 Deep Dive
CVE-2026-42280 Improper Permission Checking in Auth.js SDK auth0auth0.js High 7.1 2026-05-27 14:39:16 Deep Dive
CVE-2026-49103 Webmin 安全漏洞 WebminWebmin--2026-05-27 14:37:19 Deep Dive
CVE-2026-48544 Taipy 4.1.1 Path Traversal via ElementLibrary.get_resource() Avaigataipy High 7.5 2026-05-27 14:37:05 Deep Dive
CVE-2026-9712 Insecure direct object reference pretixpretix--2026-05-27 14:35:59 Deep Dive
CVE-2026-49059 WordPress Facebook for WooCommerce plugin <= 3.7.0 - Open Redirection vulnerability FacebookFacebook for WooCommerce Medium 4.7 2026-05-27 14:33:19 Deep Dive
CVE-2026-49102 Webmin 跨站脚本漏洞 WebminWebmin Medium 6.1 2026-05-27 14:31:14 Deep Dive
CVE-2026-42184 Tauri: Origin Confusion Allows Remote Pages to Invoke Local-Only IPC Commands tauri-appstauri--2026-05-27 14:29:54 Deep Dive
CVE-2026-48973 WordPress SVG Support plugin <= 2.5.14 - Broken Access Control vulnerability BenbodhiSVG Support Medium 4.3 2026-05-27 14:28:59 Deep Dive
CVE-2026-44988 LibVNCClient Tight Gradient decoding allows malicious server-triggered heap/stack OOB writes LibVNClibvncserver High 8.8 2026-05-27 14:26:50 Deep Dive
CVE-2026-47119 Agent Zero < 1.15 Stored XSS via image_get API Endpoint 3clyp50agent-zero Medium 6.1 2026-05-27 14:26:47 Deep Dive
CVE-2026-6957 Path traversal in Mattermost Legal Hold plugin via unsanitized file name from federated peer allows arbitrary file write. MattermostMattermost High 8.0 2026-05-27 14:23:51 Deep Dive
CVE-2026-47118 Agent Zero < 1.15 Path Traversal File Read via image_get API 3clyp50agent-zero Medium 6.5 2026-05-27 14:22:29 Deep Dive
CVE-2026-1248 IBM Business Automation Workflow information leak IBMBusiness Automation Workflow containers and traditional--2026-05-27 14:20:19 Deep Dive
CVE-2026-44830 Empty API_TOKEN disables authentication on network-reachable HTTP/SSE transport Dataojitorinocturne_memory--2026-05-27 14:19:55 Deep Dive
CVE-2026-9674 Jenkins Multijob Plugin 安全漏洞 Jenkins ProjectJenkins Multijob Plugin--2026-05-27 14:14:18 Deep Dive
CVE-2026-48926 Jenkins Job Import Plugin 安全漏洞 Jenkins ProjectJenkins Job Import Plugin--2026-05-27 14:13:53 Deep Dive