Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Associated Vulnerability
Clear Filters
Found 1280 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-2413 Ally – Web Accessibility & Usability <= 4.0.3 - Unauthenticated SQL Injection via URL Path elemntorAlly – Web Accessibility & Usability High 7.5 2026-03-11 04:25:46 Deep Dive
CVE-2026-30964 Webauthn Framework: allowed_origins collapses URL-like origins to host-only values, bypassing exact origin validation web-authwebauthn-framework Medium 5.4 2026-03-10 17:16:47 Deep Dive
CVE-2026-28267 Digital Arts i-フィルター 安全漏洞 Digital Arts Inc.i-フィルター 10 (Windows version only)--2026-03-09 22:28:25 Deep Dive
CVE-2026-3766 SourceCodester Web-based Pharmacy Product Management System edit-profile.php cross site scripting SourceCodesterWeb-based Pharmacy Product Management System Low 3.5 2026-03-08 20:02:11 Deep Dive
CVE-2026-3745 code-projects Student Web Portal profile.php sql injection code-projectsStudent Web Portal Medium 6.3 2026-03-08 15:32:09 Deep Dive
CVE-2026-3744 code-projects Student Web Portal signup.php valreg_passwdation sql injection code-projectsStudent Web Portal High 7.3 2026-03-08 15:02:13 Deep Dive
CVE-2018-25193 Mongoose Web Server 6.9 Denial of Service via Socket Connection CesantaMongoose Web Server High 7.5 2026-03-06 12:19:18 Deep Dive
CVE-2018-25175 Alienor Web Libre 2.0 SQL Injection via index.php AlienorAlienor Web Libre High 8.2 2026-03-06 12:19:06 Deep Dive
CVE-2026-24385 WordPress Podlove Web Player plugin <= 5.9.1 - PHP Object Injection vulnerability gerritvanaakenPodlove Web Player 中危 -2026-03-05 05:53:49 Deep Dive
CVE-2026-28774 Authenticated OS Command Injection via Traceroute Utility leads to Root RCE International Datacasting Corporation (IDC)SFX Series SuperFlex SatelliteReceiver Web Management Interface--2026-03-04 07:22:58 Deep Dive
CVE-2026-28773 Authenticated OS Command Injection via Ping Utility Leading to RCE as Root International Datacasting Corporation (IDC)SFX Series SuperFlex SatelliteReceiver Web Management Interface--2026-03-04 07:16:59 Deep Dive
CVE-2026-28772 Reflected XSS in IDC_Logging Index endpoint International Datacasting Corporation (IDC)SFX Series SuperFlex SatelliteReceiver Web Management Interface--2026-03-04 07:12:53 Deep Dive
CVE-2026-28771 Reflected XSS In /index.cgi Endpoint On IDC Satellite Receiver Web Management Interface Version 101 International Datacasting Corporation (IDC)SFX Series SuperFlex Satellite Receiver Web Management Interface--2026-03-04 07:11:37 Deep Dive
CVE-2026-28770 XML injection In /IDC_Logging/checkifdone.cgi Endpoint On IDC SFX Web Management Interface Version 101 International Datacasting Corporation (IDC)SFX Series SuperFlex Satellite Receiver Web management interface--2026-03-04 07:06:35 Deep Dive
CVE-2026-28769 LFI in /IDC_Logging/checkifdone.cgi, "file" parameter Allowing for File Existence Enumeration On IDC Satellite Receiver Web Management Interface Version 101 International Datacasting Corporation (IDC)SFX Series SuperFlex Satellite Receiver Web management interface--2026-03-04 07:02:14 Deep Dive
CVE-2026-3401 SourceCodester Web-based Pharmacy Product Management System session expiration SourceCodesterWeb-based Pharmacy Product Management System Low 3.1 2026-03-02 00:02:10 Deep Dive
CVE-2026-3327 Authenticated DatoCMS Web Previews Plugin Iframe Injection DatoCMSWeb Previews 中危 -2026-02-27 14:09:38 Deep Dive
CVE-2026-2751 Blind SQL Injection CentreonCentreon Web on Central Server High 8.3 2026-02-27 13:33:45 Deep Dive
CVE-2026-3223 Zip Slip leading to Arbitrary File Write and Privilege Escalation in Google Web Designer GoogleWeb Designer 中危 -2026-02-27 13:12:39 Deep Dive
CVE-2025-59873 Session Token Exposure via URL Query Parameters HCL SoftwareZIE for Web Medium 5.9 2026-02-23 10:56:52 Deep Dive