| CVE-2026-21869 |
llama.cpp n_discard参数整数溢出导致远程代码执行 |
高危 |
8.8 |
2026-01-08 |
| CVE-2026-21868 |
Flag Forge CTF平台ReDoS拒绝服务漏洞 |
高危 |
7.5 |
2026-01-08 |
| CVE-2026-21860 |
Werkzeug safe_join Windows设备名路径穿越漏洞 |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-21859 |
Mailpit /proxy端点SSRF服务器端请求伪造漏洞 |
中危 |
5.8 |
2026-01-08 |
| CVE-2026-21858 |
n8n工作流自动化平台敏感信息泄露漏洞 |
严重 |
10.0 |
2026-01-08 |
| CVE-2026-21695 |
Titra时间追踪软件Mass Assignment批量赋值漏洞 |
中危 |
4.3 |
2026-01-08 |
| CVE-2026-21694 |
Titra不正确的访问控制漏洞 |
中危 |
6.8 |
2026-01-08 |
| CVE-2026-21639 |
Ubiquiti airMAX无线协议远程代码执行漏洞 |
中危 |
5.4 |
2026-01-08 |
| CVE-2026-21638 |
Ubiquiti airMAX无线协议远程代码执行漏洞 |
高危 |
8.8 |
2026-01-08 |
| CVE-2026-21427 |
PIONEER多产品安装程序DLL搜索路径劫持漏洞 |
高危 |
7.8 |
2026-01-08 |
| CVE-2026-0747 |
Devolutions Remote Desktop Manager密码掩码缺陷漏洞 |
低危 |
3.3 |
2026-01-08 |
| CVE-2026-0731 |
TOTOLINK WA1200 cstecgi.cgi 空指针解引用漏洞 (CVE-2026-073... |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-0730 |
PHPGurukul Staff Leave Management System XSS漏洞 |
低危 |
2.4 |
2026-01-08 |
| CVE-2026-0729 |
Intern Membership Management System 1.0 add_activi... |
中危 |
4.7 |
2026-01-08 |
| CVE-2026-0728 |
code-projects Intern Membership Management System ... |
中危 |
4.7 |
2026-01-08 |
| CVE-2026-0719 |
libsoup NTLM认证整数溢出导致拒绝服务漏洞 |
高危 |
8.6 |
2026-01-08 |
| CVE-2026-0707 |
Keycloak Authorization Header解析器规范违规漏洞 |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-0701 |
Intern Membership Management System SQL注入漏洞 |
中危 |
4.7 |
2026-01-08 |
| CVE-2026-0700 |
Intern Membership Management System 1.0 check_admi... |
高危 |
7.3 |
2026-01-08 |
| CVE-2026-0699 |
Intern Membership Management System 1.0 SQL注入漏洞 |
中危 |
4.7 |
2026-01-08 |
| CVE-2026-0698 |
Intern Membership Management System SQL注入漏洞 |
中危 |
4.7 |
2026-01-08 |
| CVE-2026-0697 |
Intern Membership Management System SQL注入漏洞 |
中危 |
4.7 |
2026-01-08 |
| CVE-2026-0676 |
WordPress Zorka主题存在访问控制缺陷漏洞 |
中危 |
5.3 |
2026-01-08 |
| CVE-2026-0674 |
WordPress Campaign Monitor插件授权缺失漏洞 |
中危 |
4.3 |
2026-01-08 |
| CVE-2026-0671 |
MediaWiki UploadWizard跨站脚本(XSS)漏洞 |
中危 |
6.1 |
2026-01-08 |
| CVE-2025-69260 |
Trend Micro Apex Central 消息越界读取漏洞导致拒绝服务 |
高危 |
7.5 |
2026-01-08 |
| CVE-2025-69259 |
Trend Micro Apex Central 消息NULL返回值未检查DoS漏洞 |
高危 |
7.5 |
2026-01-08 |
| CVE-2025-69258 |
Trend Micro Apex Central LoadLibraryEX远程代码执行漏洞 |
严重 |
9.8 |
2026-01-08 |
| CVE-2025-69169 |
WordPress Easy Media Download插件反射型XSS漏洞 |
中危 |
5.4 |
2026-01-08 |
| CVE-2025-68892 |
WordPress Scroll RSS Excerpt插件反射型XSS漏洞 |
高危 |
7.1 |
2026-01-08 |
| CVE-2025-68891 |
WordPress WP App Bar插件反射型XSS漏洞 |
高危 |
7.1 |
2026-01-08 |
| CVE-2025-68890 |
WordPress e-shops-cart2插件DOM型XSS漏洞 |
高危 |
7.1 |
2026-01-08 |
| CVE-2025-68889 |
- Pinpoll WordPress插件反射型XSS漏洞 |
高危 |
7.1 |
2026-01-08 |
| CVE-2025-68887 |
WP-BusinessDirectory插件反射型XSS漏洞 |
高危 |
7.1 |
2026-01-08 |
| CVE-2025-68875 |
WordPress Flaming Password Reset插件存储型XSS漏洞 |
中危 |
6.5 |
2026-01-08 |
| CVE-2025-68874 |
WordPress Visitor Stats Widget反射型XSS漏洞 |
高危 |
7.1 |
2026-01-08 |
| CVE-2025-68873 |
PRIMER by chloédigital WordPress插件反射型XSS漏洞 |
高危 |
7.1 |
2026-01-08 |
| CVE-2025-68867 |
Effect Maker插件DOM型XSS跨站脚本漏洞 |
中危 |
6.5 |
2026-01-08 |
| CVE-2025-68719 |
| KAYSUS KS-WR3600路由器敏感配置文件泄露漏洞 |
高危 |
8.8 |
2026-01-08 |
| CVE-2025-68718 |
KAYSUS KS-WR1200路由器硬编码Root凭证漏洞 |
中危 |
5.4 |
2026-01-08 |
| CVE-2025-68717 |
KAYSUS KS-WR3600路由器认证绕过漏洞 |
严重 |
9.4 |
2026-01-08 |
| CVE-2025-68716 |
KAYSUS KS-WR3600路由器root账户无密码导致未授权访问 |
高危 |
8.4 |
2026-01-08 |
| CVE-2025-68715 |
Panda Wireless PWRU0 固件2.2.9认证绕过漏洞 |
严重 |
9.1 |
2026-01-08 |
| CVE-2025-68158 |
Authlib OAuth库缓存状态存储CSRF漏洞 |
中危 |
5.7 |
2026-01-08 |
| CVE-2025-68151 |
CoreDNS资源耗尽拒绝服务漏洞 |
高危 |
7.5 |
2026-01-08 |
| CVE-2025-67937 |
Mikado Themes Hendon主题本地文件包含漏洞 |
高危 |
8.1 |
2026-01-08 |
| CVE-2025-67936 |
| WordPress Curly主题本地文件包含漏洞 |
高危 |
8.1 |
2026-01-08 |
| CVE-2025-67935 |
OptimizeWP主题存在本地文件包含高危漏洞 |
高危 |
8.1 |
2026-01-08 |
| CVE-2025-67934 |
WordPress Wellspring主题本地文件包含漏洞 |
高危 |
8.1 |
2026-01-08 |
| CVE-2025-67933 |
WordPress Taskbuilder插件反射型XSS漏洞 |
高危 |
7.1 |
2026-01-08 |