| CVE-2026-44109 | OpenClaw <2026.4.15 飞书Webhook和卡片操作验证认证绕过漏洞 | OpenClaw | OpenClaw | 超危 | 9.8 | 2026-05-06 19:49:28 | 深度分析 |
| CVE-2026-44110 | OpenClaw <2026.4.15 矩阵房间授权绕过漏洞 | OpenClaw | OpenClaw | 高危 | 8.8 | 2026-05-06 19:49:28 | 深度分析 |
| CVE-2026-43585 | OpenClaw < 2026.4.15 Bearer Token验证绕过漏洞 | OpenClaw | OpenClaw | 高危 | 8.1 | 2026-05-06 19:49:27 | 深度分析 |
| CVE-2026-43584 | OpenClaw < 2026.4.10 执行策略环境变量黑名单不足漏洞 | OpenClaw | OpenClaw | 高危 | 8.8 | 2026-05-06 19:49:26 | 深度分析 |
| CVE-2026-43583 | OpenClaw 2026.4.10至2026.4.14群策略上下文丢失漏洞 | OpenClaw | OpenClaw | 中危 | 5.3 | 2026-05-06 19:49:25 | 深度分析 |
| CVE-2026-43582 | OpenClaw < 2026.4.10 DNS重绑定绕过主机验证漏洞 | OpenClaw | OpenClaw | 中危 | 6.3 | 2026-05-06 19:49:25 | 深度分析 |
| CVE-2026-43581 | OpenClaw < 2026.4.10 Chrome DevTools 协议暴露漏洞 | OpenClaw | OpenClaw | 超危 | 9.6 | 2026-05-06 19:49:24 | 深度分析 |
| CVE-2026-43579 | OpenClaw <2026.4.10 Nostr资料变更路由访问控制不足漏洞 | OpenClaw | OpenClaw | 中危 | 6.5 | 2026-05-06 19:49:23 | 深度分析 |
| CVE-2026-43580 | OpenClaw < 2026.4.10 浏览器交互导航守卫不完整漏洞 | OpenClaw | OpenClaw | 高危 | 7.7 | 2026-05-06 19:49:23 | 深度分析 |
| CVE-2026-43578 | OpenClaw 权限提升漏洞 | OpenClaw | OpenClaw | 超危 | 9.1 | 2026-05-06 19:49:22 | 深度分析 |
| CVE-2026-43577 | OpenClaw < 2026.4.9 任意文件读取漏洞 | OpenClaw | OpenClaw | 中危 | 6.5 | 2026-05-06 19:49:21 | 深度分析 |
| CVE-2026-43576 | OpenClaw <2026.4.5 通过CDP WebSocket的二次跳转SSRF漏洞 | OpenClaw | OpenClaw | 高危 | 7.7 | 2026-05-06 19:49:20 | 深度分析 |
| CVE-2026-43575 | OpenClaw 沙箱 noVNC 辅助路由认证绕过漏洞 | OpenClaw | OpenClaw | 超危 | 9.8 | 2026-05-06 19:49:20 | 深度分析 |
| CVE-2026-40309 | Masa CMS 垃圾管理 CSRF 导致未授权永久删除内容 | MasaCMS | MasaCMS | - | - | 2026-05-06 19:42:24 | 深度分析 |
| CVE-2026-40174 | Masa CMS 用户地址管理 CSRF 漏洞 | MasaCMS | MasaCMS | - | - | 2026-05-06 19:40:24 | 深度分析 |
| CVE-2026-40171 | Jupyter Notebook 和 JupyterLab 存储型XSS令牌窃取漏洞 | jupyter | notebook | - | - | 2026-05-06 19:36:32 | 深度分析 |
| CVE-2026-40076 | OpenMRS Core 模块上传任意文件写入及代码执行漏洞 | openmrs | openmrs-core | - | - | 2026-05-06 19:32:14 | 深度分析 |
| CVE-2026-8033 | PicoTronica e-Clinic ECHS响应头信息泄露漏洞 | PicoTronica | e-Clinic Healthcare System ECHS | 中危 | 5.3 | 2026-05-06 19:30:17 | 深度分析 |
| CVE-2026-8032 | PicoTronica e-Clinic echs.js硬编码凭据漏洞 | PicoTronica | e-Clinic Healthcare System ECHS | 高危 | 7.3 | 2026-05-06 19:00:21 | 深度分析 |
| CVE-2026-0300 | PAN-OS User-ID认证门户缓冲区溢出漏洞 | Palo Alto Networks | Cloud NGFW | - | - | 2026-05-06 18:57:40 | 深度分析 |