浏览 39+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-41233 | Froxlor has a Reseller Domain Quota Bypass via Unvalidated adminid Parameter in Domains.add() | froxlor | froxlor | Medium | 5.4 | 2026-04-23 04:00:19 | Deep Dive |
| CVE-2026-41232 | Froxlor has an Email Sender Alias Domain Ownership Bypass via Wrong Array Index that Allows Cross-Customer Email Spoofing | froxlor | froxlor | Medium | 5.0 | 2026-04-23 03:54:56 | Deep Dive |
| CVE-2026-41231 | Froxlor has Incomplete Symlink Validation in DataDump.add() that Allows Arbitrary Directory Ownership Takeover via Cron | froxlor | froxlor | High | 7.5 | 2026-04-23 03:52:43 | Deep Dive |
| CVE-2026-41230 | Froxlor has a BIND Zone File Injection via Unsanitized DNS Record Content in DomainZones::add() | froxlor | froxlor | High | 8.5 | 2026-04-23 03:47:11 | Deep Dive |
| CVE-2026-41229 | Froxlor has a PHP Code Injection via Unescaped Single Quotes in userdata.inc.php Generation (MysqlServer API) | froxlor | froxlor | Critical | 9.1 | 2026-04-23 03:44:26 | Deep Dive |
| CVE-2026-41228 | Froxlor has Local File Inclusion via path traversal in API `def_language` parameter that leads to Remote Code Execution | froxlor | froxlor | Critical | 9.9 | 2026-04-23 03:41:47 | Deep Dive |
| CVE-2026-30932 | Froxlor is vulnerable to BIND zone file injection via unsanitized DNS record content in DomainZones API | froxlor | froxlor | 中危 | - | 2026-03-24 18:46:13 | Deep Dive |
| CVE-2026-26279 | Froxlor Admin-to-Root Privilege Escalation via Input Validation Bypass + OS Command Injection | froxlor | Froxlor | Critical | 9.1 | 2026-03-03 22:31:59 | Deep Dive |
| CVE-2020-36978 | Froxlor Froxlor Server Management Panel 0.10.16 - Persistent Cross-Site Scripting | Froxlor | Froxlor Froxlor Server Management Panel | Medium | 6.4 | 2026-01-27 18:51:04 | Deep Dive |
| CVE-2025-48958 | Froxlor has an HTML Injection Vulnerability | froxlor | Froxlor | Medium | 5.5 | 2025-06-02 11:18:27 | Deep Dive |
| CVE-2025-29773 | Froxlor allows Multiple Accounts to Share the Same Email Address Leading to Potential Privilege Escalation or Account Takeover | froxlor | Froxlor | Medium | 5.8 | 2025-03-13 17:07:29 | Deep Dive |
| CVE-2024-34070 | Froxlor Vulnerable to Blind XSS Leading to Froxlor Application Compromise | froxlor | Froxlor | Critical | 9.6 | 2024-05-10 15:21:38 | Deep Dive |
| CVE-2023-50256 | Froxlor username/surname AND company field Bypass | Froxlor | Froxlor | High | 7.5 | 2024-01-03 22:34:47 | Deep Dive |
| CVE-2023-6069 | Improper Link Resolution Before File Access in froxlor/froxlor | froxlor | froxlor/froxlor | Critical | 9.9 | 2023-11-10 00:00:33 | Deep Dive |
| CVE-2023-4829 | Cross-site Scripting (XSS) - Stored in froxlor/froxlor | froxlor | froxlor/froxlor | 中危 | - | 2023-10-13 12:24:05 | Deep Dive |
| CVE-2023-5564 | Cross-site Scripting (XSS) - Stored in froxlor/froxlor | froxlor | froxlor/froxlor | 中危 | - | 2023-10-13 00:00:20 | Deep Dive |
| CVE-2023-4304 | Business Logic Errors in froxlor/froxlor | froxlor | froxlor/froxlor | Low | 3.8 | 2023-08-11 00:00:20 | Deep Dive |
| CVE-2023-3668 | Improper Encoding or Escaping of Output in froxlor/froxlor | froxlor | froxlor/froxlor | 高危 | - | 2023-07-14 00:00:20 | Deep Dive |
| CVE-2023-3192 | Session Fixation in froxlor/froxlor | froxlor | froxlor/froxlor | 中危 | - | 2023-06-11 00:00:00 | Deep Dive |
| CVE-2023-3172 | Path Traversal in froxlor/froxlor | froxlor | froxlor/froxlor | 高危 | - | 2023-06-09 00:00:00 | Deep Dive |