目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

state:has-public-poc 标签下的 CVE 漏洞 36

state:has-public-poc 类型相关 36 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“state:has-public-poc”标签标识已公开概念验证代码的漏洞。这意味着攻击者无需逆向工程即可直接利用漏洞,极大降低了攻击门槛,使非专业黑客也能发起有效攻击。该状态表明漏洞利用风险极高,企业需立即优先修复。典型场景包括远程代码执行或权限提升,攻击者通过运行公开脚本即可快速入侵系统,导致数据泄露或服务中断,对网络安全构成紧迫威胁。

CVE ID标题CVSS风险等级Published
CVE-2026-8128 SourceCodester SUP Online Shopping viewmsg.php SQL注入漏洞 — SUP Online ShoppingCWE-89 7.3 High2026-05-08
CVE-2026-8116 xiaozhi-mcphub dxtController.ts 路径遍历漏洞 — xiaozhi-mcphubCWE-22 6.3 Medium2026-05-07
CVE-2026-8088 GDAL GDfieldinfo 越界读写漏洞 — gdalCWE-125 3.3 Low2026-05-07
CVE-2026-7700 LangFlow LambdaFilterComponent eval代码注入漏洞 — langflowCWE-94 6.3 Medium2026-05-03
CVE-2026-7691 Wavlink WL-WN570HA1 adm.cgi命令注入漏洞 — WL-WN570HA1CWE-77 6.3 Medium2026-05-03
CVE-2026-7679 芋道 yudao-cloud OAuth2TokenServiceImpl 认证绕过漏洞 — yudao-cloudCWE-287 7.3 High2026-05-03
CVE-2026-7645 ruvnet sublinear-time-solver 路径遍历漏洞 — sublinear-time-solverCWE-22 6.5 Medium2026-05-02
CVE-2026-7602 JeecgBoot FillRuleUtil 编辑不当授权漏洞 — JeecgBootCWE-285 6.3 Medium2026-05-02
CVE-2026-7553 Gym Management System edit_exercises.php SQL注入漏洞 — Gym Management SystemCWE-89 4.7 Medium2026-05-01
CVE-2026-7502 LinkStack saveLink越权漏洞 — LinkStackCWE-639 5.4 Medium2026-04-30
CVE-2026-7388 EyouCMS 注入漏洞 — EyouCMSCWE-94 4.7 Medium2026-04-29
CVE-2026-7234 browser-operator-core 路径遍历漏洞 — browser-operator-coreCWE-22 7.3 High2026-04-28
CVE-2026-7227 SourceCodester Pizzafy Ecommerce System 注入漏洞 — Pizzafy Ecommerce SystemCWE-89 7.3 High2026-04-28
CVE-2026-7093 Code-Projects Invoice System in Laravel 安全漏洞 — Invoice System in LaravelCWE-285 6.3 Medium2026-04-27
CVE-2026-7081 Tenda F456 缓冲区错误漏洞 — F456CWE-120 8.8 High2026-04-27
CVE-2026-7063 Code-Projects Employee Management System 注入漏洞 — Employee Management SystemCWE-89 7.3 High2026-04-26
CVE-2026-7038 SSH MCP Server 安全漏洞 — ssh-mcpCWE-522 3.3 Low2026-04-26
CVE-2026-5557 OSS Weekend 安全漏洞 — pi-monoCWE-288 6.3 Medium2026-04-05
CVE-2026-5484 BookStack 访问控制错误漏洞 — BookStackCWE-284 5.3 Medium2026-04-03
CVE-2026-5320 Vanna 访问控制错误漏洞 — vannaCWE-306 7.3 High2026-04-02
CVE-2026-5125 consult-llm-mcp 操作系统命令注入漏洞 — consult-llm-mcpCWE-78 5.3 Medium2026-03-30
CVE-2026-4963 smolagents 安全漏洞 — smolagentsCWE-94 6.3 Medium2026-03-27
CVE-2026-4467 Comfast CF-AC100 命令注入漏洞 — CF-AC100CWE-77 4.7 Medium2026-03-20
CVE-2026-4015 GPAC 安全漏洞 — GPACCWE-121 5.3 Medium2026-03-12
CVE-2026-1589 itsourcecode School Management System SQL注入漏洞 — School Management SystemCWE-89 7.3 High2026-01-29
CVE-2026-1119 itsourcecode Society Management System SQL注入漏洞 — Society Management SystemCWE-89 7.3 High2026-01-18
CVE-2025-14096 Radiometer Products 安全漏洞 — ABL90 FLEX and ABL90 FLEX PLUS AnalyzersCWE-798 8.4 High2025-12-17
CVE-2025-13236 itsourcecode Inventory Management System SQL注入漏洞 — Inventory Management SystemCWE-89 6.3 Medium2025-11-16
CVE-2025-12745 QuickJS 安全漏洞 — QuickJSCWE-126 5.3 Medium2025-11-05
CVE-2025-11317 Tipray Data Leakage Prevention System 安全漏洞 — Data Leakage Prevention System 天锐数据泄露防护系统CWE-89 7.3 High2025-10-06

state:has-public-poc 是常见的弱点类别,本平台收录该类弱点关联的 36 条 CVE 漏洞。