Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

CVE Database & AI Vulnerability Analysis

Browse 170+ CVEs from NVD & CNNVD with AI-powered analysis, AI-generated PoCs, KEV/EPSS tracking, and daily security intelligence. Filter by vendor, product, severity, or CWE.

Clear Filters
Found 170 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-32312 GLPI: Unauthorized export of form structure glpi-projectglpi--2026-05-18 23:46:26 Deep Dive
CVE-2026-29047 GLPI has an Authenticated SQL Injection via log exports glpi-projectglpi High 7.2 2026-04-06 14:39:16 Deep Dive
CVE-2026-26263 GLPI has an Unauthenticated SQL Injection via Search engine glpi-projectglpi High 8.1 2026-04-06 14:36:57 Deep Dive
CVE-2026-26027 GLPI has an Unauthenticated Stored XSS via inventory glpi-projectglpi High 7.5 2026-04-06 14:35:54 Deep Dive
CVE-2026-26026 GLPI has a Server-Side Template Injection via Double-Compilation glpi-projectglpi Critical 9.1 2026-04-06 14:33:05 Deep Dive
CVE-2026-25932 GLPI has Stored XSS in Supplier 'Website' field glpi-projectglpi High 7.2 2026-04-06 14:31:02 Deep Dive
CVE-2026-26001 GLPI Inventory Plugin has SQL Injection on dropdown_calendar Report glpi-projectglpi-inventory-plugin High 7.1 2026-03-17 23:18:01 Deep Dive
CVE-2026-25937 GLPI has a MFA bypass glpi-projectglpi Medium 6.5 2026-03-17 23:16:38 Deep Dive
CVE-2026-25936 GLPI Vulnerable to Authenticated SQL Injection glpi-projectglpi Medium 6.5 2026-03-17 19:41:32 Deep Dive
CVE-2026-22248 GLPI affected by Remote Code Execution via malicious upload glpi-projectglpi High 8.0 2026-03-11 15:27:05 Deep Dive
CVE-2026-25590 GLPI Inventory Plugin has Reflected XSS in task jobs glpi-projectglpi-inventory-plugin Medium 4.5 2026-03-03 22:14:02 Deep Dive
CVE-2026-22044 GLPI is Vulnerable to Authenticated SQL Injection glpi-projectglpi Medium 6.5 2026-02-04 17:15:39 Deep Dive
CVE-2026-23624 GLPI is vulnerable to session stealing on externally authenticated user change glpi-projectglpi Medium 4.3 2026-02-04 17:15:34 Deep Dive
CVE-2026-22247 GLPI is Vulnerable to SSRF via Webhooks glpi-projectglpi Medium 4.1 2026-02-04 17:10:30 Deep Dive
CVE-2025-66417📌 GLPI has an unauthenticated SQL injection through the inventory endpoint glpi-projectglpi High 7.5 2026-01-15 16:25:03 Deep Dive
CVE-2025-64516📌 GLPI incorrectly authorizes access to documents glpi-projectglpi High 7.5 2026-01-15 16:01:03 Deep Dive
CVE-2023-53943 GLPI 9.5.7 Username Enumeration Vulnerability via Lost Password Endpoint Glpi-ProjectGLPI Medium 5.3 2025-12-18 19:53:36 Deep Dive
CVE-2025-64520 GLPI vulnerable to unauthorized access to restricted Knowledge Base items through the API glpi-projectglpi Medium 6.5 2025-12-16 21:59:03 Deep Dive
CVE-2025-59935 GLPI Vulnerable to Unauthenticated Stored XSS on the Inventory page glpi-projectglpi Medium 6.5 2025-12-16 16:34:46 Deep Dive
CVE-2025-32786🧪 GLPI Inventory Plugin is Vulnerable to Unauthenticated SQL Injection glpi-projectglpi-inventory-plugin High 7.5 2025-11-04 20:18:44 Deep Dive

Frequently Asked Questions

340,000+ CVEs aggregated from NVD and CNNVD, updated daily with AI-generated Chinese translations.

Basic CVE data is completely free. AI PoC generation and premium intelligence features require a Pro or Pro+ subscription.

When a CVE has no public proof-of-concept, Shenlong AI automatically generates exploit code and a technical analysis report based on the vulnerability description and references.

Yes. Shenlong AI has translated NVD English descriptions into Chinese, so you can search CVEs using Chinese keywords directly.