Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 512 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-40778 WordPress Majestic Support plugin <= 1.1.2 - Broken Access Control vulnerability Majestic SupportMajestic Support 中危 -2026-04-15 10:21:36 Deep Dive
CVE-2026-4654 Awesome Support <= 6.3.7 - Authenticated (Subscriber+) Insecure Direct Object Reference to Unauthorized Ticket Reply Access via 'ticket_id' Parameter awesomesupportAwesome Support – WordPress HelpDesk & Support Plugin Medium 5.3 2026-04-08 07:43:03 Deep Dive
CVE-2026-4631 Cockpit: cockpit: unauthenticated remote code execution due to ssh command-line argument injection Red HatRed Hat Enterprise Linux 10 Critical 9.8 2026-04-07 16:30:28 Deep Dive
CVE-2026-5121 Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing Red HatRed Hat Enterprise Linux 7 Extended Lifecycle Support High 7.5 2026-03-30 07:47:29 Deep Dive
CVE-2026-2511 JS Help Desk – AI-Powered Support & Ticketing System <= 3.0.4 - Unauthenticated SQL Injection via 'multiformid' Parameter rabilalJS Help Desk – AI-Powered Support & Ticketing System High 7.5 2026-03-26 13:26:06 Deep Dive
CVE-2026-32522 WordPress WooCommerce Support Ticket System plugin < 18.5 - Arbitrary File Deletion vulnerability vanquishWooCommerce Support Ticket System 中危 -2026-03-25 16:15:08 Deep Dive
CVE-2026-23977 WordPress Helpdesk Support Ticket System for WooCommerce plugin <= 2.1.2 - Broken Access Control vulnerability WPFactoryHelpdesk Support Ticket System for WooCommerce High 7.5 2026-03-25 16:14:31 Deep Dive
CVE-2026-4815 SQL Injection vulnerability in Support Board SchioccoSupport Board 中危 -2026-03-25 13:31:53 Deep Dive
CVE-2026-4816 Reflected Cross Site Scripting (XSS) vulnerability in Support Board SchioccoSupport Board 中危 -2026-03-25 13:31:48 Deep Dive
CVE-2026-4424 Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing Red HatRed Hat Enterprise Linux 10 High 7.5 2026-03-19 13:50:27 Deep Dive
CVE-2026-4111 Libarchive: infinite loop denial of service in rar5 decompression via archive_read_data() in libarchive Red HatRed Hat Enterprise Linux 10 High 7.5 2026-03-13 11:45:21 Deep Dive
CVE-2026-30973 Zip Slip arbitrary file write in @appium/support ZIP extraction @appiumsupport Medium 6.5 2026-03-10 17:33:41 Deep Dive
CVE-2025-12801 Nfs-utils: rpc.mountd in the nfs-utils privilege escalation Red HatRed Hat Enterprise Linux 10 Medium 6.5 2026-03-04 15:25:53 Deep Dive
CVE-2023-7337 JS Help Desk – AI-Powered Support & Ticketing System 2.8.2 - Unauthenticated SQL Injection via 'js-support-ticket-token-tkstatus' Cookie rabilalJS Help Desk – AI-Powered Support & Ticketing System High 7.5 2026-03-04 09:24:30 Deep Dive
CVE-2026-26104 Udisks: missing authorization check allows unprivileged users to back up luks headers via udisks d-bus api Red HatRed Hat Enterprise Linux 10 Medium 5.5 2026-02-25 10:51:15 Deep Dive
CVE-2026-26103 Udisks: missing authorization check allows unprivileged users to restore luks headers via udisks d-bus api Red HatRed Hat Enterprise Linux 10 High 7.1 2026-02-25 10:31:51 Deep Dive
CVE-2025-14905 389-ds-base: 389-ds-base: remote code execution and denial of service via heap buffer overflow Red HatRed Hat Directory Server 11.5 E4S for RHEL 8 High 7.2 2026-02-23 15:41:48 Deep Dive
CVE-2025-12975 CTX Feed – WooCommerce Product Feed Manager <= 6.6.11 - Missing Authorization to Authenticated (Shop Manager+) Arbitrary Plugin Installation wahid0003Product Feed Manager for WooCommerce – CTX Feed – Support 220+ Shopping & Social Channels High 7.2 2026-02-19 04:36:11 Deep Dive
CVE-2025-12451 Easy SVG Support <= 4.0 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload benjamin_zekavicaEasy SVG Support Medium 4.4 2026-02-19 03:25:14 Deep Dive
CVE-2026-23681 Missing Authorization check in a function module in SAP Support Tools Plug-In SAP_SESAP Support Tools Plug-In Medium 4.3 2026-02-10 03:02:04 Deep Dive