Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

漏洞数据库 - AI 增强中文 CVE 平台 与情报

浏览 15+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。

Clear Filters
Found 15 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-39844 NiceGUI has a Path Traversal in NiceGUI Upload Filename on Windows via Backslash Bypass of PurePosixPath Sanitization zauberzeugnicegui Medium 5.9 2026-04-08 20:13:32 Deep Dive
CVE-2026-33332 NiceGUI's unvalidated chunk size parameter in media routes can cause memory exhaustion zauberzeugnicegui 中危 -2026-03-24 19:20:53 Deep Dive
CVE-2026-27156 NiceGUI has XSS via Code Injection zauberzeugnicegui Medium 6.1 2026-02-24 17:00:22 Deep Dive
CVE-2026-25516 NiceGUI's XSS vulnerability in ui.markdown() allows arbitrary JavaScript execution through unsanitized HTML content zauberzeugnicegui Medium 6.1 2026-02-06 21:12:20 Deep Dive
CVE-2026-25732 NiceGUI's Path Traversal via Unsanitized FileUpload.name Enables Arbitrary File Write zauberzeugnicegui High 7.5 2026-02-06 21:09:58 Deep Dive
CVE-2026-21874 NiceGUI has Redis connection leak via tab storage causes service degradation zauberzeugnicegui Medium 5.3 2026-01-08 09:50:47 Deep Dive
CVE-2026-21873 Zero-click XSS in all NiceGUI apps which uses `ui.sub_pages` zauberzeugnicegui High 7.2 2026-01-08 09:50:23 Deep Dive
CVE-2026-21872 NiceGUI apps are vulnerable to XSS which uses `ui.sub_pages` and render arbitrary user-provided links zauberzeugnicegui Medium 6.1 2026-01-08 09:50:03 Deep Dive
CVE-2026-21871 NiceGUI is vulnerable to XSS via Unescaped URL in ui.navigate.history.push() / replace() zauberzeugnicegui Medium 6.1 2026-01-08 09:49:55 Deep Dive
CVE-2025-66645 NiceGUI Path Traversal Vulnerability in app.add_media_files() Allows Arbitrary File Reading zauberzeugnicegui High 7.5 2025-12-09 21:41:32 Deep Dive
CVE-2025-66470 NiceGUI Stored/Reflected XSS in ui.interactive_image via unsanitized SVG content zauberzeugnicegui Medium 6.1 2025-12-09 00:11:15 Deep Dive
CVE-2025-66469 NiceGUI Reflected XSS in ui.add_css, ui.add_scss, and ui.add_sass via Style Injection zauberzeugnicegui Medium 6.1 2025-12-08 23:54:38 Deep Dive
CVE-2025-53354 NiceGUI is vulnerable to Reflected XSS attack zauberzeugnicegui Medium 6.1 2025-10-03 19:32:22 Deep Dive
CVE-2025-21618 NiceGUI On Air authentication issue zauberzeugnicegui High 7.5 2025-01-06 16:30:11 Deep Dive
CVE-2024-32005 Local File Inclusion in NiceGUI leaflet component zauberzeugnicegui High 8.2 2024-04-12 20:38:51 Deep Dive