| CVE-2026-22522 |
WordPress Block Slider插件授权绕过漏洞 |
中危 |
6.5 |
2026-01-08 |
| CVE-2026-22521 |
Handmade Framework本地文件包含漏洞 |
高危 |
7.5 |
2026-01-08 |
| CVE-2026-22519 |
MediaPress插件存储型XSS漏洞 |
中危 |
6.5 |
2026-01-08 |
| CVE-2026-22518 |
| X Addons for Elementor插件DOM型XSS漏洞 |
中危 |
6.5 |
2026-01-08 |
| CVE-2026-22517 |
WordPress GA4WP插件缺失授权访问控制漏洞 |
中危 |
5.4 |
2026-01-08 |
| CVE-2026-22492 |
WordPress Docket Cache插件缺失授权漏洞 |
中危 |
4.3 |
2026-01-08 |
| CVE-2026-22490 |
WordPress LPagery插件缺失授权访问控制漏洞 |
中危 |
5.4 |
2026-01-08 |
| CVE-2026-22489 |
| WordPress Image Slider Slideshow 插件 IDOR 授权绕过漏洞 |
中危 |
4.3 |
2026-01-08 |
| CVE-2026-22488 |
WordPress Dashboard Welcome for Beaver Builder插件存在... |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-22487 |
baqend Speed Kit WordPress插件缺失授权漏洞 |
中危 |
4.3 |
2026-01-08 |
| CVE-2026-22486 |
WordPress Re Gallery插件缺失授权访问控制漏洞 |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-22257 |
Salvo框架list_html函数跨站脚本(XSS)漏洞 |
高危 |
8.8 |
2026-01-08 |
| CVE-2026-22256 |
Salvo框架list_html函数反射型XSS漏洞 |
高危 |
8.8 |
2026-01-08 |
| CVE-2026-22255 |
iccDEV库CIccCLUT::Init()堆缓冲区溢出漏洞 |
高危 |
8.8 |
2026-01-08 |
| CVE-2026-22253 |
Soft Serve LFS锁删除授权绕过漏洞 |
中危 |
5.4 |
2026-01-08 |
| CVE-2026-22246 |
Mastodon断绝关系通知功能未授权访问漏洞 |
中危 |
6.5 |
2026-01-08 |
| CVE-2026-22245 |
Mastodon私有地址保护绕过漏洞(CVE-2026-22245) |
高危 |
7.5 |
2026-01-08 |
| CVE-2026-22244 |
OpenMetadata FreeMarker SSTI远程代码执行漏洞 |
高危 |
7.2 |
2026-01-08 |
| CVE-2026-22242 |
CoreShop 4.1.8前版本盲注SQL注入漏洞 |
中危 |
4.9 |
2026-01-08 |
| CVE-2026-22241 |
Open eClass主题导入功能任意文件上传漏洞 |
高危 |
7.2 |
2026-01-08 |
| CVE-2026-22235 |
OPEXUS eComplaint 9.0.45.0前版本存在未授权文件访问漏洞 |
高危 |
7.5 |
2026-01-08 |
| CVE-2026-22234 |
OPEXUS eCasePortal 未授权任意文件操作漏洞 |
严重 |
9.8 |
2026-01-08 |
| CVE-2026-22233 |
OPEXUS eCASE Audit存储型XSS漏洞 |
中危 |
5.5 |
2026-01-08 |
| CVE-2026-22232 |
OPEXUS eCASE Audit存储型XSS漏洞 |
中危 |
5.5 |
2026-01-08 |
| CVE-2026-22231 |
OPEXUS eCASE Audit存储型XSS漏洞 |
中危 |
5.5 |
2026-01-08 |
| CVE-2026-22230 |
OPEXUS eCASE Audit 访问控制绕过漏洞 |
高危 |
7.6 |
2026-01-08 |
| CVE-2026-22043 |
| RustFS deny_only权限提升漏洞 |
严重 |
9.8 |
2026-01-08 |
| CVE-2026-22042 |
RustFS ImportIam权限绕过漏洞 |
高危 |
8.8 |
2026-01-08 |
| CVE-2026-22041 |
Logging Redactor库 %d转换类型错误漏洞 |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-22035 |
Greenshot命令注入漏洞 |
高危 |
7.7 |
2026-01-08 |
| CVE-2026-22034 |
Snuffleupagus上传验证远程代码执行漏洞 |
严重 |
9.8 |
2026-01-08 |
| CVE-2026-22032 |
Directus SAML认证开放重定向漏洞 |
中危 |
4.3 |
2026-01-08 |
| CVE-2026-22028 |
Preact框架JSON序列化保护回归导致HTML注入漏洞 |
中危 |
6.1 |
2026-01-08 |
| CVE-2026-21896 |
Kirby CMS内容修改API权限绕过漏洞 |
中危 |
5.7 |
2026-01-08 |
| CVE-2026-21895 |
Rust RSA库素数为1时panic拒绝服务漏洞 |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-21894 |
n8n Stripe Trigger节点认证绕过漏洞 |
中危 |
6.5 |
2026-01-08 |
| CVE-2026-21892 |
Parsl parsl-visualize SQL注入漏洞 |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-21891 |
ZimaOS 认证绕过漏洞(CVSS 9.4) |
严重 |
9.4 |
2026-01-08 |
| CVE-2026-21885 |
Miniflux 2 媒体代理端点SSRF漏洞 |
中危 |
6.5 |
2026-01-08 |
| CVE-2026-21883 |
Bokeh WebSocket Origin验证绕过漏洞 |
中危 |
5.4 |
2026-01-08 |
| CVE-2026-21881 |
Kanboard认证绕过漏洞分析 |
严重 |
9.1 |
2026-01-08 |
| CVE-2026-21880 |
Kanboard LDAP注入漏洞 |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-21879 |
Kanboard开放重定向漏洞 |
中危 |
4.7 |
2026-01-08 |
| CVE-2026-21877 |
n8n工作流自动化平台远程代码执行漏洞 |
严重 |
9.9 |
2026-01-08 |
| CVE-2026-21876 |
OWASP CRS规则922110 multipart请求检测绕过漏洞 |
严重 |
9.3 |
2026-01-08 |
| CVE-2026-21875 |
ClipBucket v5 Blind SQL Injection漏洞 |
严重 |
9.8 |
2026-01-08 |
| CVE-2026-21874 |
NiceGUI Redis连接耗尽拒绝服务漏洞 |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-21873 |
NiceGUI pushstate事件监听器URL片段标识符操纵漏洞 |
高危 |
7.2 |
2026-01-08 |
| CVE-2026-21872 |
NiceGUI ui.sub_pages跨站脚本漏洞 |
中危 |
6.1 |
2026-01-08 |
| CVE-2026-21871 |
NiceGUI ui.navigate.history XSS跨站脚本漏洞 |
中危 |
6.1 |
2026-01-08 |