浏览 329,191+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-7073 | itsourcecode Construction Management System execute.php sql injection | itsourcecode | Construction Management System | High | 7.3 | 2026-04-27 01:00:21 | Deep Dive |
| CVE-2026-7072 | CodePanda Source canteen_management_system login.php sql injection | CodePanda Source | canteen_management_system | High | 7.3 | 2026-04-27 00:45:11 | Deep Dive |
| CVE-2026-7071 | CodeAstro Online Job Portal user-cvs file information disclosure | CodeAstro | Online Job Portal | Medium | 5.3 | 2026-04-27 00:30:12 | Deep Dive |
| CVE-2026-7070 | code-projects Inventory Management System Login sql injection | code-projects | Inventory Management System | High | 7.3 | 2026-04-27 00:15:13 | Deep Dive |
| CVE-2026-33566 | LogonTracer低于v2.0.0版本密码注入漏洞 | Japan Computer Emergency Response Team Coordination Center (JPCERT/CC) | LogonTracer | - | - | 2026-04-27 00:04:24 | Deep Dive |
| CVE-2026-33277 | LogonTracer <2.0.0远程命令执行漏洞 | Japan Computer Emergency Response Team Coordination Center (JPCERT/CC) | LogonTracer | - | - | 2026-04-27 00:03:42 | Deep Dive |
| CVE-2026-7069 | D-Link DIR-825 miniupnpd upnpsoap.c AddPortMapping buffer overflow | D-Link | DIR-825 | High | 8.0 | 2026-04-27 00:00:25 | Deep Dive |
| CVE-2026-42363 | GeoVision GV-IP Device Utility Device Authentication insufficient encryption vulnerability | GeoVision Inc. | GV-IP Device Utility | Critical | 9.3 | 2026-04-26 23:58:49 | Deep Dive |
| CVE-2026-7068 | D-Link DIR-825 nmbd sserver.c NMBD_process buffer overflow | D-Link | DIR-825 | High | 8.8 | 2026-04-26 23:45:14 | Deep Dive |
| CVE-2026-7067 | D-Link DIR-822 udhcpd DHCP Service dhcpd.c system command injection | D-Link | DIR-822 | High | 7.3 | 2026-04-26 23:30:18 | Deep Dive |
| CVE-2026-7066 | choieastsea simple-openstack-mcp server.py exec_openstack os command injection | choieastsea | simple-openstack-mcp | High | 7.3 | 2026-04-26 23:15:13 | Deep Dive |
| CVE-2026-7065 | BidingCC BuildingAI Remote Upload API file-storage.service.ts uploadRemoteFile server-side request forgery | BidingCC | BuildingAI | High | 7.3 | 2026-04-26 23:00:17 | Deep Dive |
| CVE-2026-7064 | AgentDeskAI browser-tools-mcp browser-connector.ts os command injection | AgentDeskAI | browser-tools-mcp | High | 7.3 | 2026-04-26 22:45:13 | Deep Dive |
| CVE-2026-7063 | code-projects Employee Management System Endpoint eprocess.php sql injection | code-projects | Employee Management System | High | 7.3 | 2026-04-26 22:30:15 | Deep Dive |
| CVE-2026-7062 | Intina47 context-sync Git Integration git-integration.ts os command injection | Intina47 | context-sync | High | 7.3 | 2026-04-26 22:15:13 | Deep Dive |
| CVE-2026-7061 | Toowiredd chatgpt-mcp-server MCP/HTTP docker.service.ts os command injection | Toowiredd | chatgpt-mcp-server | High | 7.3 | 2026-04-26 22:00:18 | Deep Dive |
| CVE-2026-7060 | liyupi yu-picture MyBatis-Plus PictureServiceImpl.java PageRequest sql injection | liyupi | yu-picture | High | 7.3 | 2026-04-26 20:15:19 | Deep Dive |
| CVE-2026-7059 | 666ghj MiroFish Query Parameter simulation.py get_simulation_posts path traversal | 666ghj | MiroFish | Medium | 5.3 | 2026-04-26 20:00:17 | Deep Dive |
| CVE-2026-7058 | 666ghj MiroFish Inter-Process Communication simulation_ipc.py SimulationIPCClient.send_command command injection | 666ghj | MiroFish | High | 7.3 | 2026-04-26 19:45:13 | Deep Dive |
| CVE-2026-7057 | Tenda F456 httpd setcfm buffer overflow | Tenda | F456 | High | 8.8 | 2026-04-26 18:45:15 | Deep Dive |