浏览 535+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-6023 | Deserialization of Untrusted Data Vulnerability in Telerik UI for ASP.NET AJAX | Progress Software | Telerik UI for ASP.NET AJAX | High | 8.1 | 2026-04-22 07:13:08 | Deep Dive |
| CVE-2026-6022 | Uncontrolled Resource Consumption Vulnerability in Telerik UI for ASP.NET AJAX | Progress Software | Telerik UI for ASP.NET AJAX | High | 7.5 | 2026-04-22 07:07:31 | Deep Dive |
| CVE-2026-40372 | ASP.NET Core Elevation of Privilege Vulnerability | Microsoft | ASP.NET Core 10.0 | Critical | 9.1 | 2026-04-21 19:20:50 | Deep Dive |
| CVE-2025-15638 | Net::Dropbear versions before 0.14 for Perl contains a vulnerable version of libtomcrypt | ATRODO | Net::Dropbear | - | - | 2026-04-21 15:34:19 | Deep Dive |
| CVE-2026-5964 | Digiwin|EasyFlow .NET - SQL Injection | Digiwin | EasyFlow .NET | Critical | 9.8 | 2026-04-20 07:36:58 | Deep Dive |
| CVE-2026-5963 | Digiwin|EasyFlow .NET - SQL Injection | Digiwin | EasyFlow .NET | Critical | 9.8 | 2026-04-20 07:32:20 | Deep Dive |
| CVE-2026-32203 | .NET and Visual Studio Denial of Service Vulnerability | Microsoft | .NET 10.0 | High | 7.5 | 2026-04-14 16:58:38 | Deep Dive |
| CVE-2026-26171 | .NET Denial of Service Vulnerability | Microsoft | .NET 10.0 | High | 7.5 | 2026-04-14 16:58:38 | Deep Dive |
| CVE-2026-23666 | .NET Framework Denial of Service Vulnerability | Microsoft | Microsoft .NET Framework 3.5 | High | 7.5 | 2026-04-14 16:57:53 | Deep Dive |
| CVE-2026-33116 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | Microsoft | .NET 10.0 | High | 7.5 | 2026-04-14 16:57:48 | Deep Dive |
| CVE-2026-32226 | .NET Framework Denial of Service Vulnerability | Microsoft | Microsoft .NET Framework 3.5 AND 4.7.2 | Medium | 5.9 | 2026-04-14 16:57:44 | Deep Dive |
| CVE-2026-32178 | .NET Spoofing Vulnerability | Microsoft | .NET 10.0 | High | 7.5 | 2026-04-14 16:57:31 | Deep Dive |
| CVE-2026-40199 | Net::CIDR::Lite versions before 0.23 for Perl mishandles IPv4 mapped IPv6 addresses, which may allow IP ACL bypass | STIGTSP | Net::CIDR::Lite | 中危 | - | 2026-04-10 21:49:48 | Deep Dive |
| CVE-2026-40198 | Net::CIDR::Lite versions before 0.23 for Perl does not validate IPv6 group count, which may allow IP ACL bypass | STIGTSP | Net::CIDR::Lite | 中危 | - | 2026-04-10 21:42:07 | Deep Dive |
| CVE-2026-1672 | BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net <= 1.1.5 - Cross-Site Request Forgery to Product Data Modification | realmag777 | BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net | Medium | 6.5 | 2026-04-08 11:16:59 | Deep Dive |
| CVE-2026-1673 | BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net <= 1.1.5 - Cross-Site Request Forgery to Taxonomy Term Deletion | realmag777 | BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net | Medium | 4.3 | 2026-04-08 11:16:57 | Deep Dive |
| CVE-2018-25205 | ASP.NET jVideo Kit 1.0 SQL Injection via query Parameter | Mediasoftpro | ASP.NET jVideo Kit | High | 8.2 | 2026-03-26 11:39:52 | Deep Dive |
| CVE-2019-25594 | ASPRunner.NET 10.1 Denial of Service via Table Name Field | Xlinesoft | ASPRunner.NET | Medium | 6.2 | 2026-03-22 13:38:32 | Deep Dive |
| CVE-2016-20024 | ZKTeco ZKTime.Net 3.0.1.6 Insecure File Permissions Privilege Escalation | ZKTeco Inc. | ZKTeco ZKTime.Net | Critical | 9.8 | 2026-03-15 13:35:11 | Deep Dive |
| CVE-2026-26130 | ASP.NET Core Denial of Service Vulnerability | Microsoft | ASP.NET Core 10.0 | High | 7.5 | 2026-03-10 17:05:22 | Deep Dive |