CWE-470 使用外部可控制的输入来选择类或代码(不安全的反射) 类弱点 32 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | 发布日期 |
|---|---|---|---|---|
| CVE-2026-41175 | Statamic 安全漏洞 — cms | 8.1 | High | 2026-04-22 |
| CVE-2018-25239 | Smart VPN 安全漏洞 — Smart VPN | 6.2 | Medium | 2026-04-04 |
| CVE-2026-23923 | Zabbix 安全漏洞 — Zabbix | 9.8 | - | 2026-03-24 |
| CVE-2026-33157 | Craft CMS 安全漏洞 — cms | 8.8 | - | 2026-03-24 |
| CVE-2026-32264 | Craft CMS 安全漏洞 — cms | 7.2AI | HighAI | 2026-03-16 |
| CVE-2026-32263 | Craft CMS 安全漏洞 — cms | 9.1AI | CriticalAI | 2026-03-16 |
| CVE-2026-25498 | Craft CMS 安全漏洞 — cms | 7.2AI | HighAI | 2026-02-09 |
| CVE-2025-68455 | Craft CMS 安全漏洞 — cms | 7.2 | - | 2026-01-05 |
| CVE-2025-34393 | Barracuda Service Center 安全漏洞 — RMM | 9.8AI | CriticalAI | 2025-12-10 |
| CVE-2025-12967 | Npgsql 安全漏洞 — JDBC Wrapper | 8.0 | High | 2025-11-10 |
| CVE-2025-61925 | Astro 安全漏洞 — astro | 6.5 | Medium | 2025-10-10 |
| CVE-2025-53693 | Sitecore Experience Manager 安全漏洞 — Sitecore Experience Manager (XM) | 9.8 | Critical | 2025-09-03 |
| CVE-2025-31119 | generator-jhipster-entity-audit 安全漏洞 — generator-jhipster-entity-audit | 7.7 | High | 2025-04-03 |
| CVE-2025-2794 | Kentico Xperience 安全漏洞 — Xperience | 7.5 | - | 2025-03-31 |
| CVE-2024-4990 | Yii2 安全漏洞 — yiisoft/yii2 | 9.8 | - | 2025-03-20 |
| CVE-2024-53850 | Fields GLPI plugin 安全漏洞 — addressing | 8.2 | High | 2024-12-26 |
| CVE-2024-7059 | Genetec Security Center 安全漏洞 — Genetec Security Center | 8.0 | High | 2024-11-05 |
| CVE-2024-8015 | Progress Software Telerik Report Server 安全漏洞 — Telerik Reporting | 9.1 | Critical | 2024-10-09 |
| CVE-2024-8048 | Progress Software Telerik Reporting 安全漏洞 — Telerik Reporting | 7.8 | High | 2024-10-09 |
| CVE-2024-8014 | Progress Software Telerik Report Server 安全漏洞 — Telerik Reporting | 8.8 | High | 2024-10-09 |
| CVE-2024-6096 | Progress Software Telerik Reporting 安全漏洞 — Telerik Reporting | 8.8 | High | 2024-07-24 |
| CVE-2024-1574 | Mitsubishi Electric MC Works64 安全漏洞 — GENESIS64 | 6.7 | Medium | 2024-07-04 |
| CVE-2024-28121 | StimulusReflex 安全漏洞 — stimulus_reflex | 8.8 | High | 2024-03-12 |
| CVE-2023-6943 | Mitsubishi Electric 多款产品安全漏洞 — EZSocket | 9.8 | Critical | 2024-01-30 |
| CVE-2024-0200 | GitHub Enterprise Server 安全漏洞 — Enterprise Server | 7.2 | High | 2024-01-16 |
| CVE-2023-32217 | IdentityIQ 安全漏洞 — IdentityIQ | 9.0 | Critical | 2023-05-31 |
| CVE-2023-0460 | Alphabet YouTube Embedded 安全漏洞 — YouTube Android Player API SDK | 5.1 | Medium | 2023-03-01 |
| CVE-2022-41853 | HSQLDB 安全漏洞 — hsqldb | 8.0 | High | 2022-10-06 |
| CVE-2022-23744 | Check Point Endpoint Security Client 安全漏洞 — Enterprise Endpoint Security Windows Clients. | 3.4 | - | 2022-07-07 |
| CVE-2020-7857 | Tobesoft Xplatform 输入验证错误漏洞 — XPlatform | 7.5 | High | 2021-04-20 |
CWE-470(使用外部可控制的输入来选择类或代码(不安全的反射)) 是常见的弱点类别,本平台收录该类弱点关联的 32 条 CVE 漏洞。