浏览 329,212+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-7090 | code-projects Chat System send_message.php cross site scripting | code-projects | Chat System | Low | 2.4 | 2026-04-27 05:15:09 | Deep Dive |
| CVE-2026-7089 | code-projects Home Service System Appointment Booking booking.php cross site scripting | code-projects | Home Service System | Medium | 4.3 | 2026-04-27 05:00:18 | Deep Dive |
| CVE-2026-7088 | SourceCodester Pharmacy Sales and Inventory System ajax.php sql injection | SourceCodester | Pharmacy Sales and Inventory System | High | 7.3 | 2026-04-27 04:45:12 | Deep Dive |
| CVE-2026-7087 | SourceCodester Pharmacy Sales and Inventory System ajax.php sql injection | SourceCodester | Pharmacy Sales and Inventory System | High | 7.3 | 2026-04-27 04:30:14 | Deep Dive |
| CVE-2026-7086 | HBAI-Ltd Toonflow-app Storyboard Export replaceUrl.ts updateStoryboardUrl path traversal | HBAI-Ltd | Toonflow-app | Medium | 4.3 | 2026-04-27 04:15:12 | Deep Dive |
| CVE-2026-7085 | HBAI-Ltd Toonflow-app downloadApp Endpoint downloadApp.ts z.url path traversal | HBAI-Ltd | Toonflow-app | Medium | 5.0 | 2026-04-27 04:00:14 | Deep Dive |
| CVE-2026-7084 | HBAI-Ltd Toonflow-app getCodeByLink Endpoint getCodeByLink.ts fetch server-side request forgery | HBAI-Ltd | Toonflow-app | Medium | 6.3 | 2026-04-27 03:45:12 | Deep Dive |
| CVE-2026-7083 | likeadmin-likeshop likeadmin_php dataTable Admin API DataTableLists.php queryResult sql injection | likeadmin-likeshop | likeadmin_php | Medium | 4.7 | 2026-04-27 03:30:15 | Deep Dive |
| CVE-2026-7082 | Tenda F456 httpd WrlExtraSet formWrlExtraSet buffer overflow | Tenda | F456 | High | 8.8 | 2026-04-27 03:15:13 | Deep Dive |
| CVE-2026-7081 | Tenda F456 httpd GstDhcpSetSer fromGstDhcpSetSer buffer overflow | Tenda | F456 | High | 8.8 | 2026-04-27 03:00:19 | Deep Dive |
| CVE-2026-3868 | Moxa Secure Router HTTPS缓冲区溢出致拒绝服务 | Moxa | EDR-8010 Series | - | - | 2026-04-27 02:56:34 | Deep Dive |
| CVE-2026-3867 | Moxa Secure Router配置越权漏洞 | Moxa | EDR-8010 Series | - | - | 2026-04-27 02:54:01 | Deep Dive |
| CVE-2026-7080 | Tenda F456 httpd PPTPUserSetting fromPPTPUserSetting buffer overflow | Tenda | F456 | High | 8.8 | 2026-04-27 02:45:12 | Deep Dive |
| CVE-2026-3006 | Race Condition Vulnerability | WinFSP | WinFSP | High | 7.0 | 2026-04-27 02:35:18 | Deep Dive |
| CVE-2026-7079 | Tenda F456 httpd AdvSetWan fromAdvSetWan buffer overflow | Tenda | F456 | High | 8.8 | 2026-04-27 02:30:16 | Deep Dive |
| CVE-2026-7106 | Highland Software Custom Role Manager <= 1.0.0 - Authenticated (Subscriber+) Privilege Escalation | jgrodgers | Highland Software Custom Role Manager | High | 8.8 | 2026-04-27 02:26:24 | Deep Dive |
| CVE-2026-7078 | Tenda F456 httpd SetIpBind fromSetIpBind buffer overflow | Tenda | F456 | High | 8.8 | 2026-04-27 02:15:12 | Deep Dive |
| CVE-2026-7077 | itsourcecode Courier Management System edit_parcel.php sql injection | itsourcecode | Courier Management System | High | 7.3 | 2026-04-27 02:00:22 | Deep Dive |
| CVE-2026-7076 | itsourcecode Courier Management System edit_branch.php sql injection | itsourcecode | Courier Management System | High | 7.3 | 2026-04-27 01:45:11 | Deep Dive |
| CVE-2026-7075 | itsourcecode Construction Management System locations.php sql injection | itsourcecode | Construction Management System | High | 7.3 | 2026-04-27 01:30:32 | Deep Dive |