快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358424
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-28778 |
International Datacasting Corporation (IDC) SFX Series SuperFlex Satellite Receiver contains undocum
|
UNKNOWN | N/A | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-28777 |
International Datacasting Corporation (IDC)
SFX2100 Satellite Receiver, trivial password for the `
|
UNKNOWN | N/A | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-28776 |
International Datacasting Corporation (IDC) SFX Series SuperFlex SatelliteReceiver contains hardcode
|
UNKNOWN | N/A | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-28775 |
An unauthenticated Remote Code Execution (RCE) vulnerability exists in the SNMP service of Internati
|
UNKNOWN | N/A | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-28774 |
An OS Command Injection vulnerability exists in the web-based Traceroute diagnostic utility of Inter
|
UNKNOWN | N/A | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-28773 |
The web-based Ping diagnostic utility (/IDC_Ping/main.cgi) in International Datacasting Corporation
|
UNKNOWN | N/A | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-28772 |
A Reflected Cross-Site Scripting (XSS) vulnerability in the /IDC_Logging/index.cgi endpoint of Inter
|
UNKNOWN | N/A | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-28771 |
A Reflected Cross-Site Scripting (XSS) vulnerability exists in the /index.cgi endpoint of Internatio
|
UNKNOWN | N/A | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-2732 |
The Enable Media Replace plugin for WordPress is vulnerable to unauthorized modification of data due
|
MEDIUM | 5.4 | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-2363 |
The WP-Members Membership Plugin plugin for WordPress is vulnerable to SQL Injection via the 'order_
|
MEDIUM | 6.5 | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-28770 |
Improper neutralization of special elements in the /IDC_Logging/checkifdone.cgi script in Internatio
|
UNKNOWN | N/A | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-28769 |
A path traversal vulnerability exists in the /IDC_Logging/checkifdone.cgi script in International Da
|
UNKNOWN | N/A | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-2025 |
The Mail Mint WordPress plugin before 1.19.5 does not have authorization in one of its REST API end
|
HIGH | 7.5 | 2026-03-04 |
未知
|
NVD | |
| CVE-2026-3242 |
In Concrete CMS below version 9.4.8, a rogue administrator can add stored XSS via the Switch Languag
|
MEDIUM | 4.8 | 2026-03-04 |
concretecms concrete_cms
|
NVD | |
| CVE-2026-3241 |
In Concrete CMS below version 9.4.8, a stored cross-site scripting (XSS) vulnerability exists in the
|
MEDIUM | 4.8 | 2026-03-04 |
concretecms concrete_cms
|
NVD | |
| CVE-2026-3240 |
In Concrete CMS below version 9.4.8, a user with permission to edit a page with element Legacy form
|
MEDIUM | 4.8 | 2026-03-04 |
concretecms concrete_cms
|
NVD | |
| CVE-2026-2994 |
Concrete CMS below version 9.4.8 is subject to CSRF by a Rogue Administrator using the Anti-Spam All
|
MEDIUM | 6.8 | 2026-03-04 |
concretecms concrete_cms
|
NVD | |
| CVE-2026-3452 |
Concrete CMS below version 9.4.8 is vulnerable to Remote Code Execution by stored PHP object injecti
|
HIGH | 7.2 | 2026-03-04 |
concretecms concrete_cms
|
NVD | |
| CVE-2026-3244 |
In Concrete CMS below version 9.4.8, A stored cross-site scripting (XSS) vulnerability exists in the
|
MEDIUM | 4.8 | 2026-03-04 |
concretecms concrete_cms
|
NVD | |
| CVE-2026-2292 |
The Morkva UA Shipping plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin s
|
MEDIUM | 4.4 | 2026-03-04 |
未知
|
NVD |