Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

漏洞数据库 - AI 增强中文 CVE 平台 与情报

浏览 267+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。

Clear Filters
Found 267 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-5709 AWS Research and Engineering Studio (RES) FileBrowser Command Injection AWSResearch and Engineering Studio (RES) High 8.8 2026-04-06 21:32:04 Deep Dive
CVE-2026-5708 Improper Control of User-Modifiable Attributes in RES CreateSession API AWSResearch and Engineering Studio (RES) High 8.8 2026-04-06 21:28:04 Deep Dive
CVE-2026-5707 Command Injection via Virtual Desktop Session Name in AWS Research and Engineering Studio (RES) AWSResearch and Engineering Studio (RES) High 8.8 2026-04-06 21:25:48 Deep Dive
CVE-2025-13734 IBM Engineering Requirements Management DOORS Next could allow an authenticated user to access and modify data beyond authorized permissions IBMEngineering Requirements Management DOORS Next Medium 5.4 2026-03-03 19:51:48 Deep Dive
CVE-2026-3437 Improper Restriction of Operations within the Bounds of a Memory Buffer in Portwell Engineering Toolkits PortwellPortwell Engineering Toolkits--2026-03-03 17:45:00 Deep Dive
CVE-2025-9062 IDOR in MeCODE Informatics' Envanty MeCODE Informatics and Engineering Services Ltd.Envanty High 7.3 2026-02-19 10:57:15 Deep Dive
CVE-2025-8668 Reflected XSS in E-Kalite Software Hardware Engineering's Turboard E-Kalite Software Hardware Engineering Design and Internet Services Industry and Trade Ltd. Co.Turboard Critical 9.4 2026-02-11 13:34:33 Deep Dive
CVE-2025-36033 IBM Engineering Lifecycle Management - Global Configuration Management is vulnerable to cross-site scripting IBMEngineering Lifecycle Management - Global Configuration Management Medium 5.4 2026-02-03 22:12:30 Deep Dive
CVE-2025-35029 Medical Informatics Engineering Enterprise Health stored cross site scripting via Demographic Information page Medical Informatics EngineeringEnterprise Health Low 3.5 2025-11-20 19:34:31 Deep Dive
CVE-2025-10437 SQLi in Exagate's Webpack Management System Eksagate Electronic Engineering and Computer Industry Trade Inc.Webpack Management System Critical 9.8 2025-11-19 11:41:06 Deep Dive
CVE-2025-12815 Amazon Web Services Research and Engineering Studio 安全漏洞 AWSResearch and Engineering Studio (RES) Medium 4.3 2025-11-06 17:10:35 Deep Dive
CVE-2025-60243 WordPress Selling Commander for WooCommerce plugin <= 1.2.46 - Privilege Escalation vulnerability Holest EngineeringSelling Commander for WooCommerce 中危 -2025-11-06 15:55:16 Deep Dive
CVE-2025-2138 IBM Engineering Requirements Management Doors Next data modification IBMEngineering Requirements Management Doors Next Low 3.5 2025-10-12 13:37:02 Deep Dive
CVE-2025-2139 IBM Engineering Requirements Management Doors Next security bypass IBMEngineering Requirements Management Doors Next Low 3.5 2025-10-12 13:35:25 Deep Dive
CVE-2025-2140 IBM Engineering Requirements Management Doors Next spoofing IBMEngineering Requirements Management Doors Next Medium 5.7 2025-10-12 13:33:23 Deep Dive
CVE-2025-33096 IBM Engineering Requirements Management Doors Next denial of service IBMEngineering Requirements Management Doors Next Medium 6.5 2025-10-12 13:31:05 Deep Dive
CVE-2025-35034 Medical Informatics Engineering Enterprise Health reflected cross site scripting via portlet_user_id Medical Informatics EngineeringEnterprise Health Medium 4.3 2025-09-29 20:01:58 Deep Dive
CVE-2025-35033 Medical Informatics Engineering Enterprise Health CSV injection Medical Informatics EngineeringEnterprise Health Medium 4.1 2025-09-29 20:01:38 Deep Dive
CVE-2025-35032 Medical Informatics Engineering Enterprise Health arbitrary file upload Medical Informatics EngineeringEnterprise Health Low 3.4 2025-09-29 20:01:09 Deep Dive
CVE-2025-35031 Medical Informatics Engineering Enterprise Health includes session token in debug output Medical Informatics EngineeringEnterprise Health Low 3.3 2025-09-29 20:00:43 Deep Dive