🟠 高危 | CVE-2026-10130 — QueryWeaver contains an authentication bypass vuln...

🟠 《高危安全漏洞:CVE202610130》 CVSS 评分: 高危(8.8) 状态: Received 发布时间: 20260718 漏洞描述 QueryWeaver contains an authentication bypass vulnerability that allows una

阅读全文

🟠 高危 | CVE-2026-12228 — A stored cross-site scripting (XSS) vulnerability ...

🟠 《高危安全漏洞:CVE202612228》 CVSS 评分: 高危(8.7) 状态: Received 发布时间: 20260718 漏洞描述 A stored crosssite scripting (XSS) vulnerability exists in the endpoint of

阅读全文

🟠 高危 | CVE-2026-11826 — OpenPLC_v3 contains a heap-based buffer overflow i...

🟠 《高危安全漏洞:CVE202611826》 CVSS 评分: 高危(8.7) 状态: Received 发布时间: 20260718 漏洞描述 OpenPLCv3 contains a heapbased buffer overflow in the getData() function in

阅读全文

🟠 高危 | CVE-2024-58368 — SurrealDB versions before 1.1.0 fail to properly p...

🟠 《高危安全漏洞:CVE202458368》 CVSS 评分: 高危(8.7) 状态: Received 发布时间: 20260718 漏洞描述 SurrealDB versions before 1.1.0 fail to properly parse the ID, DB, and NS h

阅读全文

🟠 高危 | CVE-2024-58362 — SurrealDB before 1.5.5 (and 2.0.0-beta before 2.0....

🟠 《高危安全漏洞:CVE202458362》 CVSS 评分: 高危(8.7) 状态: Received 发布时间: 20260718 漏洞描述 SurrealDB before 1.5.5 (and 2.0.0beta before 2.0.0beta.3) accepts an arbitr

阅读全文

🟠 高危 | CVE-2023-54366 — SurrealDB before 1.0.1 sets default table permissi...

🟠 《高危安全漏洞:CVE202354366》 CVSS 评分: 高危(8.7) 状态: Received 发布时间: 20260718 漏洞描述 SurrealDB before 1.0.1 sets default table permissions to FULL instead of NO

阅读全文

🔴 严重 | CVE-2024-58366 — SurrealDB before 1.1.1 contains a format string vu...

🔴 《严重安全漏洞:CVE202458366》 CVSS 评分: 严重(9.0) 状态: Received 发布时间: 20260718 漏洞描述 SurrealDB before 1.1.1 contains a format string vulnerability in the rquick

阅读全文

🔴 严重 | CVE-2026-9323 — The urwid web display backend (urwid/display/web.p...

🔴 《严重安全漏洞:CVE20269323》 CVSS 评分: 严重(9.2) 状态: Received 发布时间: 20260718 漏洞描述 The urwid web display backend (urwid/display/web.py) generates web session i

阅读全文

🔴 严重 | CVE-2025-71392 — SurrealDB before 2.0.5, 2.1.x before 2.1.5, and 2....

🔴 《严重安全漏洞:CVE202571392》 CVSS 评分: 严重(9.4) 状态: Received 发布时间: 20260718 漏洞描述 SurrealDB before 2.0.5, 2.1.x before 2.1.5, and 2.2.x before 2.2.2 fails to

阅读全文

🔴 严重 | CVE-2026-16117 — Impact: @fastify/http-proxy versions up to and inc...

🔴 《严重安全漏洞:CVE202616117》 CVSS 评分: 严重(10.0) 状态: Received 发布时间: 20260718 漏洞描述 Impact: @fastify/httpproxy versions up to and including 11.5.0 fail to rew

阅读全文