浏览 5+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-2289 | Taskbuilder <= 5.0.3 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Block Emails' Field | taskbuilder | Taskbuilder – Project Management & Task Management Tool With Kanban Board | Medium | 4.4 | 2026-03-04 01:21:59 | Deep Dive |
| CVE-2026-1640 | Taskbuilder <= 5.0.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Project/Task Comment Creation | taskbuilder | Taskbuilder – Project Management & Task Management Tool With Kanban Board | Medium | 4.3 | 2026-02-18 06:42:42 | Deep Dive |
| CVE-2026-1639 | Taskbuilder <= 5.0.2 - Authenticated (Subscriber+) SQL Injection via 'order' and 'sort_by' Parameters | taskbuilder | Taskbuilder – Project Management & Task Management Tool With Kanban Board | Medium | 6.5 | 2026-02-18 05:29:17 | Deep Dive |
| CVE-2024-11930 | Taskbuilder – WordPress Project & Task Management plugin <= 3.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via wppm_tasks Shortcode | taskbuilder | Taskbuilder – Project Management & Task Management Tool With Kanban Board | Medium | 6.4 | 2025-01-04 08:22:52 | Deep Dive |
| CVE-2022-3137 | TaskBuilder < 1.0.8 - Subscriber+ Stored XSS via SVG file upload | Unknown | Taskbuilder – WordPress Project & Task Management plugin | 中危 | - | 2022-10-10 00:00:00 | Deep Dive |