支持本站 — 捐款将帮助我们持续运营

目标: 1000 元,已筹: 1000

100.0%
立即捐款

神龙 AI 精选 POC 榜

近期 50 条由神龙 Agent 完整分析的高 CVSS CVE,每条含漏洞原理、触发条件、利用链与可复现 POC。免费用户每月可解锁 3 条。 JSON

CVE-2020-25213CriticalCVSS 10.0
wordpress 代码问题漏洞
n/a / n/a
CVE-2020-35948CriticalCVSS 9.9
WordPress XCloner Backup and Restore plugin 安全漏洞
n/a / n/a
CVE-2021-42369CriticalCVSS 9.9
Imagicle Application Suite (For Cisco Uc) SQL注入漏洞
n/a / n/a
CVE-2026-6951CriticalCVSS 9.8
simple-git<3.36.0 RCE漏洞因--config未修复
n/a / simple-git
CVE-2020-7720CriticalCVSS 9.8
node-forge 输入验证错误漏洞
n/a / node-forge
CVE-2020-7782CriticalCVSS 9.8
spritesheet.js 注入漏洞
n/a / spritesheet-js
CVE-2020-7785CriticalCVSS 9.8
Neekey node-ps 注入漏洞
n/a / node-ps
CVE-2021-3120CriticalCVSS 9.8
WooCommerce for WordPress 代码问题漏洞
n/a / n/a
CVE-2021-23376CriticalCVSS 9.8
npm ffmpegdotjs 命令注入漏洞
n/a / ffmpegdotjs
CVE-2021-23378CriticalCVSS 9.8
npm picotts 命令注入漏洞
n/a / picotts
CVE-2021-23377CriticalCVSS 9.8
npm onion-oled-js 命令注入漏洞
n/a / onion-oled-js
CVE-2021-3958CriticalCVSS 9.8
iPack SCADA Automation software SQL注入漏洞
Ipack Automation Systems / Ipack SCADA Software
CVE-2026-23524CriticalCVSS 9.8
Laravel Reverb 代码问题漏洞
laravel / reverb
CVE-2026-23837CriticalCVSS 9.8
MyTube 安全漏洞
franklioxygen / MyTube
CVE-2020-27660CriticalCVSS 9.6
Synology SafeAccess SQL注入漏洞
Synology / Safe Access
CVE-2021-39185CriticalCVSS 9.1
Http4s访问控制错误漏洞
http4s / http4s
CVE-2021-43834CriticalCVSS 9.1
Elabftw 授权问题漏洞
elabftw / elabftw
CVE-2021-42114CriticalCVSS 9.0
Ddr4 Dram 安全漏洞
Micron / Micron ddr4_sdram
CVE-2020-23834HighCVSS 8.8
Real Time Logic BarracudaDrive 安全漏洞
n/a / n/a
CVE-2020-9306HighCVSS 8.8
Tesla SolarCity Solar Monitoring Gateway 信任管理问题漏洞
n/a / n/a
CVE-2021-29468HighCVSS 8.8
Cygwin 输入验证错误漏洞
me-and / Cygwin-Git
CVE-2021-32772HighCVSS 8.8
Poddycast 跨站脚本漏洞
MrChuckomo / poddycast
CVE-2021-39174HighCVSS 8.8
Cachet 安全漏洞
fiveai / Cachet
CVE-2021-39172HighCVSS 8.8
Cachet 注入漏洞
fiveai / Cachet
CVE-2021-39173HighCVSS 8.8
Cachet 代码问题漏洞
fiveai / Cachet
CVE-2021-39209HighCVSS 8.8
GLPI 跨站请求伪造漏洞
glpi-project / glpi
CVE-2021-25966HighCVSS 8.8
OrchardCMS 代码问题漏洞
OrchardCore / Users
CVE-2021-43844HighCVSS 8.8
MSEdgeRedirect 安全漏洞
rcmaehl / MSEdgeRedirect
CVE-2022-22113HighCVSS 8.8
Bottelet Daybyday Crm 代码问题漏洞
Bottelet / DaybydayCRM
CVE-2019-11043HighCVSS 8.7
PHP 安全漏洞
PHP / PHP
CVE-2022-21690HighCVSS 8.7
OnionShare 跨站脚本漏洞
onionshare / onionshare
CVE-2021-23427HighCVSS 8.6
elFinder 路径遍历漏洞
n/a / elFinder.NetCore
CVE-2021-23428HighCVSS 8.6
elFinder 输入验证错误漏洞
n/a / elFinder.NetCore
CVE-2021-41145HighCVSS 8.6
FreeSWITCH 资源管理错误漏洞
signalwire / freeswitch
CVE-2026-23949HighCVSS 8.6
jaraco.context 路径遍历漏洞
jaraco / jaraco.context
CVE-2020-27659HighCVSS 8.4
Synology SafeAccess 跨站脚本漏洞
Synology / Safe Access
CVE-2021-32737HighCVSS 8.4
SULU Sulu 跨站脚本漏洞
sulu / sulu
CVE-2026-22031HighCVSS 8.4
@fastify/middie 安全漏洞
fastify / middie
CVE-2020-5302HighCVSS 8.2
MH-WikiBot 访问控制错误漏洞
examknow / MH-WikiBot
CVE-2020-7739HighCVSS 8.2
PhantomJS 代码问题漏洞
n/a / phantomjs-seo
CVE-2020-7740HighCVSS 8.2
node-pdf-generator 输入验证错误漏洞
n/a / node-pdf-generator
CVE-2020-28502HighCVSS 8.1
Dan DeFelippi node-XMLHttpRequest 代码注入漏洞
n/a / xmlhttprequest
CVE-2021-43833HighCVSS 8.1
Elabftw 授权问题漏洞
elabftw / elabftw
CVE-2026-23846HighCVSS 8.1
Tugtainer 安全漏洞
Quenary / tugtainer
CVE-2026-23876HighCVSS 8.1
ImageMagick 输入验证错误漏洞
ImageMagick / ImageMagick
CVE-2021-32647HighCVSS 8.0
Emissary 注入漏洞
NationalSecurityAgency / emissary
CVE-2020-5256HighCVSS 7.9
BookStack 代码问题漏洞
BookStackApp / BookStack
CVE-2020-14363HighCVSS 7.8
X.Org libX11 输入验证错误漏洞
The X11 Project / libX11
CVE-2021-25985HighCVSS 7.8
Darwin Factor 代码问题漏洞
FactorJS / Factor
CVE-2021-42810HighCVSS 7.8
Thales Sentinel Protection Installer 安全漏洞
Thales / SafeNet Authentication Service

📥 拉 JSON 自动同步到你自己的工具:/api/featured-pocs.json

配套仓库:github.com/imfht/cve-cn — 每周从此榜单自动生成 README。