CWE-94 对生成代码的控制不恰当(代码注入) 类弱点 1295 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | 发布日期 |
|---|---|---|---|---|
| CVE-2026-6951 | simple-git<3.36.0 RCE漏洞因--config未修复 — simple-git | 9.8 | Critical | 2026-04-25 |
| CVE-2026-41414 | Skim pr.yml 任意代码执行漏洞 影响版本未明 — skim | 7.4 | High | 2026-04-24 |
| CVE-2026-41137 | Flowise 代码注入漏洞 — Flowise | 8.8AI | HighAI | 2026-04-23 |
| CVE-2026-41138 | Flowise 代码注入漏洞 — Flowise | 9.8AI | CriticalAI | 2026-04-23 |
| CVE-2026-41246 | Contour 代码注入漏洞 — contour | 8.1 | High | 2026-04-23 |
| CVE-2026-39440 | WordPress plugin FunnelFormsPro 代码注入漏洞 — FunnelFormsPro | 9.9 | Critical | 2026-04-23 |
| CVE-2026-3960 | H2O 代码注入漏洞 — h2oai/h2o-3 | 9.8AI | CriticalAI | 2026-04-23 |
| CVE-2026-41229 | Froxlor 代码注入漏洞 — froxlor | 9.1 | Critical | 2026-04-23 |
| CVE-2026-41196 | Luanti 代码注入漏洞 — luanti | 9.3AI | CriticalAI | 2026-04-23 |
| CVE-2026-41134 | Kiota 代码注入漏洞 — kiota | 9.8AI | CriticalAI | 2026-04-22 |
| CVE-2026-40911 | WWBN AVideo 代码注入漏洞 — AVideo | 10.0 | Critical | 2026-04-21 |
| CVE-2026-40602 | Home Assistant 代码注入漏洞 — home-assistant-cli | 5.6 | Medium | 2026-04-21 |
| CVE-2026-32613 | Spinnaker 安全漏洞 — spinnaker | 10.0 | Critical | 2026-04-20 |
| CVE-2026-39918 | Vvveb 安全漏洞 — Vvveb | 9.8 | Critical | 2026-04-20 |
| CVE-2026-41282 | Nuclei 安全漏洞 — Nuclei | 4.0 | Medium | 2026-04-20 |
| CVE-2026-6603 | AgentScope 安全漏洞 — agentscope | 7.3 | High | 2026-04-20 |
| CVE-2026-41242 | protobuf.js 安全漏洞 — protobuf.js | 8.1AI | HighAI | 2026-04-18 |
| CVE-2026-40316 | OWASP BLT 安全漏洞 — BLT | 8.8 | High | 2026-04-15 |
| CVE-2026-1509 | WordPress plugin Avada (Fusion) Builder 安全漏洞 — Avada (Fusion) Builder | 5.4 | Medium | 2026-04-15 |
| CVE-2025-54550 | Apache Airflow 安全漏洞 — Apache Airflow | 8.8 | - | 2026-04-15 |
| CVE-2026-39842 | OpenRemote 安全漏洞 — openremote | 10.0 | Critical | 2026-04-14 |
| CVE-2026-2582 | WordPress plugin Germanized for WooCommerce 代码注入漏洞 — Germanized for WooCommerce | 6.5 | Medium | 2026-04-14 |
| CVE-2026-40287 | PraisonAI 安全漏洞 — PraisonAI | 8.4 | High | 2026-04-14 |
| CVE-2026-27675 | SAP Landscape Transformation 代码注入漏洞 — SAP Landscape Transformation | 2.0 | Low | 2026-04-14 |
| CVE-2026-27674 | SAP NetWeaver Application Server Java 代码注入漏洞 — SAP NetWeaver Application Server Java (Web Dynpro Java) | 6.1 | Medium | 2026-04-14 |
| CVE-2026-6125 | Warm-Flow 代码注入漏洞 — warm-flow | 6.3 | Medium | 2026-04-12 |
| CVE-2026-6110 | MetaGPT 代码注入漏洞 — MetaGPT | 7.3 | High | 2026-04-12 |
| CVE-2026-40158 | PraisonAI 安全漏洞 — PraisonAI | 8.6 | High | 2026-04-10 |
| CVE-2026-40156 | PraisonAI 安全漏洞 — PraisonAI | 7.8 | High | 2026-04-10 |
| CVE-2026-5970 | MetaGPT 代码注入漏洞 — MetaGPT | 7.3 | High | 2026-04-09 |
CWE-94(对生成代码的控制不恰当(代码注入)) 是常见的弱点类别,本平台收录该类弱点关联的 1295 条 CVE 漏洞。