Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

state:in-the-wild — CVE vulnerabilities tagged 398

398 CVE security advisories tagged "state:in-the-wild" with AI Chinese analysis, CVSS, references and POCs.

The tag "state:in-the-wild" signifies that a disclosed vulnerability has been actively exploited by attackers in real-world environments, rather than remaining theoretical or limited to controlled laboratory testing. This classification is critical because it indicates an immediate and tangible threat to public infrastructure, demanding urgent mitigation strategies from administrators and developers. Typically, these vulnerabilities involve remote code execution, authentication bypasses, or critical logic flaws that allow adversaries to compromise systems without physical access. The presence of this tag implies that exploit code is likely circulating in the wild, increasing the risk of widespread data breaches, service disruptions, or lateral movement within networks. Consequently, organizations must prioritize patching these specific CVEs to prevent active intrusion, as the window between disclosure and exploitation has effectively closed, leaving systems exposed to sophisticated threat actors seeking immediate gain.

CVE IDTitleCVSSSeverityPublished
CVE-2011-1722 TYPO3 WEC Discussion Forum多个SQL注入漏洞 — n/a 9.8 -2011-04-19
CVE-2011-0611 Adobe Flash Player对象处理远程代码执行漏洞 — n/a 8.8 -2011-04-13
CVE-2011-0609 Adobe Flash Player/Reader/Acrobat SWF文件内存破坏漏洞 — n/a 8.8 -2011-03-15
CVE-2010-2743 Microsoft Windows XP Win32k键盘布局漏洞 — n/a 8.4 -2011-01-20
CVE-2010-4270 Netshinesoftware nBill组件目录遍历漏洞 — n/a 7.5 -2010-11-16
CVE-2010-3962 Microsoft Internet Explorer释放后使用漏洞 — n/a 9.8 -2010-11-05
CVE-2010-3654 Adobe Flash Player/Reader/Acrobat authplay.dll缓冲区溢出漏洞 — n/a 8.8 -2010-10-29
CVE-2010-3765 Mozilla Firefox/Thunderbird/SeaMonkey JavaScript缓冲区溢出漏洞 — n/a 7.5 -2010-10-27
CVE-2010-3653 Adobe Shockwave player Director模块缓冲区溢出漏洞 — n/a 9.8 -2010-10-26
CVE-2010-3888 Microsoft Windows未明权限提升漏洞 — n/a 7.8 -2010-10-08
CVE-2010-3889 Microsoft Windows未明权限提升漏洞 — n/a 7.8 -2010-10-08
CVE-2010-3081 Linux kernel 缓冲区错误漏洞 — n/a 7.8 -2010-09-24
CVE-2010-2729 Windows Print Spooler服务输入验证漏洞 — n/a 8.1 -2010-09-15
CVE-2010-2884 Adobe Flash Player/Reader/Acrobat代码执行漏洞 — n/a 9.8 -2010-09-15
CVE-2010-2883 Adobe Reader和Acrobat CoolType.dll栈缓冲区溢出漏洞 — n/a 9.8 -2010-09-09
CVE-2010-3035 Cisco IOS XR输入验证漏洞 — n/a 5.9 -2010-08-30
CVE-2010-2568 Microsoft Windows多个产品快捷方式LNK文件自动执行文件漏洞 — n/a 9.8 -2010-07-22
CVE-2010-2772 Siemens Simatic WinCC和PCS 7 SCADA系统硬编码密码权限许可和访问控制漏洞 — n/a 7.8 -2010-07-22
CVE-2010-1297 Adobe Flash Player/Reader/Acrobat AVM2 'newfunction()'远程代码执行漏洞 — n/a 8.8 -2010-06-08
CVE-2010-1598 Silisoftware phpThumb() phpThumb.php输入验证漏洞 — n/a 9.8 -2010-04-29
CVE-2010-1164 Atlassian JIRA多个跨站脚本攻击漏洞 — n/a 6.1 -2010-04-20
CVE-2010-1165 Atlassian JIRA 代码注入漏洞 — n/a 7.2 -2010-04-20
CVE-2010-0806 Microsoft IE Peer Objects组件畸形对象操作内存破坏漏洞 — n/a 8.8 -2010-03-10
CVE-2010-0288 DokuWiki ACL管理插件管理员权限检查权限提升漏洞 — n/a 9.1 -2010-02-15
CVE-2010-0249 Microsoft Internet Explorer非法事件操作内存破坏漏洞 — n/a 8.1 -2010-01-15
CVE-2009-4324 Adobe Reader和Acrobat ZLib压缩流特制PDF文件释放后使用漏洞 — n/a 8.8 -2009-12-15
CVE-2009-3459 Adobe Reader和Acrobat堆缓冲区溢出漏洞 — n/a 7.8 -2009-10-13
CVE-2008-7168 UUSee网络电视2008 UUUpgrade ActiveX控件Update方式任意文件下载漏洞 — n/a 7.5 -2009-09-08
CVE-2009-3041 SPIP数据库备份请求绕过认证漏洞 — n/a 9.1 -2009-09-01
CVE-2009-2055 Cisco IOS XR软件BGP更新拒绝服务漏洞 — n/a 7.5 -2009-08-19

Vulnerabilities classified as state:in-the-wild represent 398 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.