| CVE-2026-35197 |
dye库任意代码执行漏洞 |
中危 |
6.6 |
2026-04-06 |
| CVE-2026-35187 |
pyLoad 服务器端请求伪造漏洞 |
高危 |
7.7 |
2026-04-06 |
| CVE-2026-35185 |
HAX CMS信息泄露漏洞 |
高危 |
7.5 |
2026-04-06 |
| CVE-2026-35184 |
EcclesiaCRM SQL注入漏洞 |
严重 |
9.8 |
2026-04-06 |
| CVE-2026-35183 |
Brave CMS IDOR漏洞 |
高危 |
7.1 |
2026-04-06 |
| CVE-2026-35182 |
Brave CMS权限提升漏洞 |
高危 |
8.8 |
2026-04-06 |
| CVE-2026-35181 |
WWBN AVideo跨站请求伪造漏洞 |
中危 |
4.3 |
2026-04-06 |
| CVE-2026-35180 |
AVideo跨站请求伪造漏洞 |
中危 |
4.3 |
2026-04-06 |
| CVE-2026-35179 |
AVideo未授权代理漏洞 |
中危 |
5.3 |
2026-04-06 |
| CVE-2026-35178 |
Workbench远程代码执行漏洞 |
严重 |
9.8 |
2026-04-06 |
| CVE-2026-35177 |
Vim路径遍历漏洞导致任意文件覆盖 |
中危 |
4.1 |
2026-04-06 |
| CVE-2026-35176 |
openFPGALoader堆缓冲区溢出漏洞 |
高危 |
7.1 |
2026-04-06 |
| CVE-2026-35175 |
Ajenti 权限提升漏洞 |
中危 |
6.5 |
2026-04-06 |
| CVE-2026-35174 |
Chyrp Lite路径遍历致远程代码执行漏洞 |
严重 |
9.1 |
2026-04-06 |
| CVE-2026-35173 |
Chyrp Lite IDOR漏洞导致文章接管 |
中危 |
6.5 |
2026-04-06 |
| CVE-2026-35172 |
Distribution信息泄露漏洞 |
高危 |
7.5 |
2026-04-06 |
| CVE-2026-35171 |
Kedro远程代码执行漏洞 |
严重 |
9.8 |
2026-04-06 |
| CVE-2026-35170 |
openFPGALoader堆缓冲区溢出漏洞 |
高危 |
7.1 |
2026-04-06 |
| CVE-2026-35167 |
Kedro路径遍历漏洞 |
高危 |
7.1 |
2026-04-06 |
| CVE-2026-35166 |
Hugo Markdown链接转义缺失导致XSS漏洞 |
中危 |
5.4 |
2026-04-06 |
| CVE-2026-35164 |
Brave CMS远程代码执行漏洞 |
高危 |
8.8 |
2026-04-06 |
| CVE-2026-35052 |
D-Tale 远程代码执行漏洞 |
严重 |
9.8 |
2026-04-06 |
| CVE-2026-35050 |
text-generation-webui 任意文件写入致RCE |
严重 |
9.1 |
2026-04-06 |
| CVE-2026-35047 |
Brave CMS远程代码执行漏洞 |
严重 |
9.8 |
2026-04-06 |
| CVE-2026-35046 |
Tandoor Recipes CSS注入漏洞 |
中危 |
5.4 |
2026-04-06 |
| CVE-2026-35045 |
Tandoor Recipes权限绕过漏洞 |
高危 |
8.1 |
2026-04-06 |
| CVE-2026-35044 |
BentoML模板注入致RCE |
高危 |
8.8 |
2026-04-06 |
| CVE-2026-35043 |
BentoML云部署命令注入漏洞 |
高危 |
7.8 |
2026-04-06 |
| CVE-2026-35042 |
fast-jwt关键头部参数验证绕过漏洞 |
高危 |
7.5 |
2026-04-06 |
| CVE-2026-35039 |
fast-jwt缓存碰撞导致认证绕过漏洞 |
严重 |
9.1 |
2026-04-06 |