Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

state:in-the-wild — CVE vulnerabilities tagged 396

396 CVE security advisories tagged "state:in-the-wild" with AI Chinese analysis, CVSS, references and POCs.

The tag "state:in-the-wild" signifies that a disclosed vulnerability has been actively exploited by attackers in real-world environments, rather than remaining theoretical or limited to controlled laboratory testing. This classification is critical because it indicates an immediate and tangible threat to public infrastructure, demanding urgent mitigation strategies from administrators and developers. Typically, these vulnerabilities involve remote code execution, authentication bypasses, or critical logic flaws that allow adversaries to compromise systems without physical access. The presence of this tag implies that exploit code is likely circulating in the wild, increasing the risk of widespread data breaches, service disruptions, or lateral movement within networks. Consequently, organizations must prioritize patching these specific CVEs to prevent active intrusion, as the window between disclosure and exploitation has effectively closed, leaving systems exposed to sophisticated threat actors seeking immediate gain.

CVE IDTitleCVSSSeverityPublished
CVE-2008-0015 Microsoft DirectShow MPEG2TuneRequest 组件栈溢出漏洞 — n/a 8.8 -2009-07-07
CVE-2009-2265 FCKeditor 路径遍历漏洞 — n/a 8.8 -2009-07-05
CVE-2009-1391 Compress::Raw::Zlib Perl模块单字节溢出漏洞 — n/a 7.5 -2009-06-16
CVE-2009-1537 Microsoft DirectX QuickTime媒体文件解析代码执行漏洞 — n/a 7.8 -2009-05-29
CVE-2009-1807 Baofeng缓冲区错误漏洞 — n/a 9.8 -2009-05-28
CVE-2009-1800 中国游戏中心游戏大厅客户端远程栈溢出漏洞 — n/a 9.8 -2009-05-28
CVE-2009-1612 暴风影音ActiveX控件OnBeforeVideoDownload()函数栈溢出漏洞 — n/a 9.8 -2009-05-11
CVE-2009-1481 Pjhome PuterJam's Blog PJBlog3 'action.asp' SQL注入漏洞 — n/a 9.8 -2009-04-29
CVE-2009-1438 Konstanty_Bialkowski libmodplug 'src/load_med.cpp'整数溢出漏洞 — n/a 8.8 -2009-04-27
CVE-2009-1308 Mozilla Firefox 跨站脚本漏洞 — n/a 6.1 -2009-04-22
CVE-2009-0556 Microsoft PowerPoint畸形文件解析代码执行漏洞 — n/a 7.8 -2009-04-03
CVE-2009-1054 Ichitaro代码执行漏洞 — n/a 7.8 -2009-03-24
CVE-2009-0238 Microsoft Excel无效对象引用代码执行漏洞 — n/a 7.8 -2009-02-25
CVE-2009-0658 Adobe Reader和Acrobat 缓冲区错误漏洞 — n/a 7.8 -2009-02-20
CVE-2009-0259 OpenOffice Word处理器 远程拒绝服务漏洞 — n/a 8.4 -2009-01-22
CVE-2008-4844 Microsoft IE对象处理内存破坏漏洞 — n/a 8.8 -2008-12-11
CVE-2008-4841 Microsoft写字板文件转换器远程代码执行漏洞 — n/a 8.4 -2008-12-10
CVE-2008-5227 PHPCow 代码注入漏洞 — n/a 9.8 -2008-11-25
CVE-2008-4250 Windows Server服务 RPC请求缓冲区错误漏洞 — n/a 9.8 -2008-10-23
CVE-2008-3919 JustSystems Ichitaro JTD文件代码执行漏洞 — n/a 7.8 -2008-09-04
CVE-2008-3873 Adobe Flash Player System.setClipboard方式 跨站脚本攻击漏洞 — n/a 8.2 -2008-08-29
CVE-2008-3704 Microsoft 多个产品中 Msmask32.ocx 栈溢出漏洞 — n/a 9.8 -2008-08-18
CVE-2008-3648 Microsoft Windows 远程代码执行漏洞 — n/a 8.8 -2008-08-12
CVE-2008-2244 Microsoft Word智能标签无效长度处理内存破坏漏洞(MS08-042) — n/a 7.8 -2008-07-09
CVE-2008-1841 Coppermine Photo Gallery bridge/coppermine.inc.php文件SQL注入漏洞 — n/a 8.1 -2008-04-16
CVE-2008-1092 Microsoft Jet数据库引擎MDB文件解析远程栈溢出漏洞 — n/a 7.8 -2008-03-25
CVE-2008-0647 Ourgame GLWorld 'HanGamePlugincn18.dll' ActiveX Control 多个缓冲区溢出漏洞 — n/a 8.8 -2008-02-07
CVE-2007-6436 Justsystem Ichitaro JSGCI.DLL 缓冲区溢出漏洞 — n/a 7.8 -2007-12-18
CVE-2007-5807 超星阅览器Pdg2 ActiveX控件栈溢出漏洞 — n/a 9.8 -2007-11-05
CVE-2007-5722 联众ConnectAndEnterRoom ActiveX控件栈溢出漏洞 — n/a 9.8 -2007-10-30

Vulnerabilities classified as state:in-the-wild represent 396 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.