Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

state:in-the-wild — CVE vulnerabilities tagged 396

396 CVE security advisories tagged "state:in-the-wild" with AI Chinese analysis, CVSS, references and POCs.

The tag "state:in-the-wild" signifies that a disclosed vulnerability has been actively exploited by attackers in real-world environments, rather than remaining theoretical or limited to controlled laboratory testing. This classification is critical because it indicates an immediate and tangible threat to public infrastructure, demanding urgent mitigation strategies from administrators and developers. Typically, these vulnerabilities involve remote code execution, authentication bypasses, or critical logic flaws that allow adversaries to compromise systems without physical access. The presence of this tag implies that exploit code is likely circulating in the wild, increasing the risk of widespread data breaches, service disruptions, or lateral movement within networks. Consequently, organizations must prioritize patching these specific CVEs to prevent active intrusion, as the window between disclosure and exploitation has effectively closed, leaving systems exposed to sophisticated threat actors seeking immediate gain.

CVE IDTitleCVSSSeverityPublished
CVE-2020-35234 WordPress 日志信息泄露漏洞 — n/a 9.1 -2020-12-14
CVE-2020-26876 WordPress 安全漏洞 — n/a--2020-10-07
CVE-2020-25213 wordpress 代码问题漏洞 — n/a 10.0 Critical2020-09-09
CVE-2020-13125 WordPress Ultimate Addons for Elementor 安全漏洞 — n/a 5.3 -2020-05-17
CVE-2020-13126 WordPress Elementor Pro 代码问题漏洞 — n/a 8.8 -2020-05-17
CVE-2020-1631 Out of Cycle Security Advisory: Junos OS: Security vulnerability in J-Web and web based (HTTP/HTTPS) services — Junos OSCWE-22 8.8 High2020-05-04
CVE-2020-12271 Sophos XG Firewall SFOS SQL注入漏洞 — n/a 9.8 -2020-04-27
CVE-2020-6819 多款Mozilla产品 竞争条件问题漏洞 — Thunderbird 7.5 -2020-04-24
CVE-2020-6820 多款Mozilla产品 竞争条件问题漏洞 — Thunderbird 7.5 -2020-04-24
CVE-2019-17026 Mozilla Firefox、Firefox ESR和Thunderbird IonMonkey JIT compiler 安全漏洞 — Firefox ESR 8.8 -2020-03-02
CVE-2014-8739 Adobe Creative Cloud Desktop Application 代码问题漏洞 — n/a 9.8 -2020-02-08
CVE-2019-17049 NETGEAR SRX5308 SQL注入漏洞 — n/a 9.1 -2019-09-30
CVE-2019-11707 Mozilla Firefox 代码问题漏洞 — Firefox ESR 9.8 -2019-07-23
CVE-2018-18472 Western Digital WD My Book Live 操作系统命令注入漏洞 — n/a 9.8 -2019-06-19
CVE-2018-18852 CERIO DT-300N 操作系统命令注入漏洞 — n/a 9.8 -2019-06-18
CVE-2019-9978 WordPress social-warfare插件跨站脚本漏洞 — n/a 6.1 -2019-03-24
CVE-2017-18362 Kaseya VSA ConnectWise ManagedITSync SQL注入漏洞 — n/a 9.8 -2019-02-05
CVE-2018-20753 Kaseya VSA RMM 权限许可和访问控制问题漏洞 — n/a 9.8 -2019-02-05
CVE-2018-19207 WordPress Van Ons WP GDPR Compliance插件安全漏洞 — n/a 9.8 -2018-11-12
CVE-2018-18956 Suricata 输入验证错误漏洞 — n/a 7.5 -2018-11-05
CVE-2017-15705 Apache SpamAssassin 安全漏洞 — Apache SpamAssassin 5.3 -2018-09-17
CVE-2018-11687 Bitcoin Red 数字错误漏洞 — n/a 7.5 -2018-08-15
CVE-2018-7602 Drupal core - Highly critical - Remote Code Execution - SA-CORE-2018-004 — core 9.8 -2018-07-19
CVE-2016-9079 Mozilla Firefox、Firefox ESR和Thunderbird 远程代码执行漏洞 — Firefox 8.8 -2018-06-11
CVE-2018-11329 Ether Cartel 安全漏洞 — n/a 7.5 -2018-05-22
CVE-2018-11239 Hexagon 数字错误漏洞 — n/a 7.5 -2018-05-19
CVE-2018-10831 Z-NOMP 安全漏洞 — n/a 7.5 -2018-05-09
CVE-2018-10657 Matrix Synapse 安全漏洞 — n/a 7.5 -2018-05-02
CVE-2018-10468 Useless Ethereum Token 安全漏洞 — n/a--2018-04-28
CVE-2018-10376 SmartMesh smart contract 数字错误漏洞 — n/a 7.5 -2018-04-25

Vulnerabilities classified as state:in-the-wild represent 396 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.