智新資通管理系統

集中管理內部服務申請、VPN 帳號、主機監控與資安通報

VPN 管理 主機監控 CVE 通報 GCB 合規 專案管理
登入系統
2430
本期 CVE 總數
198
嚴重等級
900
高風險
7
監控產品類別
CVE 資安通報
每天 08:00 自動更新 ・ 近 120 天
CVE 編號 嚴重性 分數 產品 描述 發布日期
CVE-2026-56396 8.8 PHP phpMyFAQ before 4.1.4 contains missing authorization vulnerabilities in edi... 4.1.4 之前的 phpMyFAQ 在 editUser() 和 updateUserRights... 2026-06-21
CVE-2026-56382 7.2 PHP Craft CMS (composer package craftcms/cms) versions >= 5.5.0 and <= 5.9.13 c... Craft。 2026-06-21
CVE-2022-50972 嚴重 9.8 PHP WooCommerce 7.1.0 contains a remote code execution vulnerability that allow... WooCommerce 7.1.0 包含一個遠端程式碼執行漏洞,允許攻擊... 2026-06-20
CVE-2026-48939 N/A - PHP A vulnerability in the iCagenda extension for Joomla allows the upload of a... Joomla 的 iCagenda 擴充功能中存在允許在檔案附件功能中上... 2026-06-20
CVE-2026-48908 N/A - PHP A vulnerability in SP Page Builder for Joomla allows unauthenticated users... Joomla 的 SP Page Builder 中存在漏洞,允許未經身份驗證... 2026-06-20
CVE-2026-9843 8.1 PHP The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPr... WordPress 的聯絡表單 7、WPforms、Elementor 表單外掛程式... 2026-06-20
CVE-2026-48774 7.5 MySQL ProxySQL is a proxy for MySQL and its forks, as well as PostgreSQL. In vers... ProxySQL 是 MySQL 及其分支以及 PostgreSQL 的代理程式。... 2026-06-19
CVE-2026-48773 嚴重 9.8 MySQL ProxySQL is a proxy for MySQL and its forks, as well as PostgreSQL. Version... ProxySQL 是 MySQL 及其分支以及 PostgreSQL 的代理程式。... 2026-06-19
CVE-2026-48772 嚴重 10 MySQL ProxySQL is a proxy for MySQL and its forks, as well as PostgreSQL. In vers... ProxySQL 是 MySQL 及其分支以及 PostgreSQL 的代理程式。... 2026-06-19
CVE-2026-12238 5.3 PHP The WP Go Maps – Most Popular Map Plugin plugin for WordPress is vulnerable... WP Go Maps – WordPress 最受歡迎的地圖外掛程式在 10.1.01... 2026-06-19
共 2430 筆
第 1 / 243 頁
CVE 編號 嚴重性 分數 產品 描述 發布日期
CVE-2026-50107 8.1 Linux OS When NGINX Plus or NGINX Open Source is configured as the data plane for NG... 當 NGINX Plus 或 NGINX Open Source 配置為 NGINX Gateway... 2026-06-17
CVE-2026-32682 6.5 Linux OS When NGINX Gateway Fabric is configured using GRPCRoutes, an authenticated,... 當使用 GRPCRoutes 設定 NGINX Gateway Fabric 時,經過驗... 2026-06-17
CVE-2026-48142 4.8 Linux OS NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_chars... NGINX Plus 和 NGINX Open Source 在 ngx_http_charset_mod... 2026-06-17
CVE-2026-42530 8.1 Linux OS NGINX Open Source has a vulnerability in the ngx_http_v3_module module. Whe... NGINX 開源程式碼在 ngx_http_v3_module 模組中存在漏洞。... 2026-06-17
CVE-2026-42055 8.1 Linux OS NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy... NGINX Plus 和 NGINX Open Source 在 ngx_http_proxy_v2_mo... 2026-06-17
CVE-2026-11311 8.1 Linux OS When NGINX Plus is configured as the data plane for NGINX Gateway Fabric, a... 當 NGINX Plus 設定為 NGINX Gateway Fabric 的資料平面時... 2026-06-17
CVE-2026-46331 N/A - Linux OS In the Linux kernel, the following vulnerability has been resolved: net/sc... 在Linux核心中,以下漏洞已解決: net/sched:修復導致頁... 2026-06-16
CVE-2026-50892 6.5 Linux OS Incorrect access control in the "Let's Encrypt" certificate download endpoi... Nginx Proxy Manager v2.14.0 的「Let's Encrypt」憑證下載... 2026-06-15
CVE-2026-54231 5.5 Linux OS A content injection vulnerability was found in the ABRT post-create event h... libreport 中的 ABRT 建立後事件處理程序腳本中發現內容注... 2026-06-13
CVE-2026-50010 7.5 Linux OS Netty is a network application framework for development of protocol server... Netty是一個用於開發協定伺服器和客戶端的網路應用框架。在... 2026-06-12
共 910 筆
第 1 / 91 頁
CVE 編號 嚴重性 分數 產品 描述 發布日期
CVE-2026-49257 嚴重 10 Apache mcp-pinot is a Python-based Model Context Protocol (MCP) server for interac... mcp-pinot 是一個基於 Python 的模型上下文協定 (MCP) 伺服... 2026-06-18
CVE-2026-50634 6.5 Apache A vulnerability in Apache CXF's JwsJsonContainerRequestFilter can be exploi... Apache CXF 的 JwsJsonContainerRequestFilter 中的漏洞可... 2026-06-12
CVE-2026-45566 6.1 Linux OS Apache Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepaliv... Roxy-WI 是一個用於管理 Haproxy、Nginx、Apache 和 Keepal... 2026-06-10
CVE-2026-45560 6.1 Linux OS Apache Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepaliv... Roxy-WI 是一個用於管理 Haproxy、Nginx、Apache 和 Keepal... 2026-06-10
CVE-2026-45550 嚴重 9.1 Linux OS Apache Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepaliv... Roxy-WI 是一個用於管理 Haproxy、Nginx、Apache 和 Keepal... 2026-06-10
CVE-2026-49975 7.5 Apache Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Se... Apache HTTP Server 的 mod_http 中存在大小值過大的記憶體... 2026-06-08
CVE-2026-48913 7.3 Apache Use After Free vulnerability in Apache HTTP Server module mod_http2 when fi... 當檔案句柄已經耗盡時,使用 Apache HTTP Server 模組 mod_... 2026-06-08
CVE-2026-44631 嚴重 9.8 Apache Buffer Underwrite vulnerability in Apache HTTP Server on crafted regular ex... Apache HTTP Server 中存在針對配置中精心設計的正規表示式... 2026-06-08
CVE-2026-44186 7.3 Apache Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in the... Apache HTTP Server 中的 mod_proxy_ftp 模組中存在無法到... 2026-06-08
CVE-2026-44185 7.3 Apache Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requ... Apache HTTP Server 中的緩衝區過度讀取漏洞,透過向攻擊者... 2026-06-08
共 76 筆
第 1 / 8 頁
CVE 編號 嚴重性 分數 產品 描述 發布日期
CVE-2026-48774 7.5 MySQL ProxySQL is a proxy for MySQL and its forks, as well as PostgreSQL. In vers... ProxySQL 是 MySQL 及其分支以及 PostgreSQL 的代理程式。... 2026-06-19
CVE-2026-48773 嚴重 9.8 MySQL ProxySQL is a proxy for MySQL and its forks, as well as PostgreSQL. Version... ProxySQL 是 MySQL 及其分支以及 PostgreSQL 的代理程式。... 2026-06-19
CVE-2026-48772 嚴重 10 MySQL ProxySQL is a proxy for MySQL and its forks, as well as PostgreSQL. In vers... ProxySQL 是 MySQL 及其分支以及 PostgreSQL 的代理程式。... 2026-06-19
CVE-2026-47847 5.3 Linux OS MySQL Bitnami MariaDB Galera container images and Helm chart are affected by a ha... Bitnami MariaDB Galera 容器映像和 Helm 圖表受到 Galera... 2026-06-18
CVE-2026-54419 嚴重 9.8 MySQL PHP claudiopizzillo PIAF-HMS (PBX-In-A-Flash Hotel Management System; no releas... claudiopizzillo PIAF-HMS(PBX-In-A-Flash飯店管理系統;... 2026-06-18
CVE-2026-55740 嚴重 9.8 MySQL PHP Nur-Alam39 bus-ticket (no released versions; latest commit 459cabdbeb99c002... Nur-Alam39 巴士票(未發布版本;最新提交 459cabdbeb99c00... 2026-06-18
CVE-2026-50267 4.7 Linux OS MySQL Steeltoe is an open source project that provides a collection of libraries... Steeltoe 是一個開源項目,提供了一系列程式庫來幫助使用者... 2026-06-17
CVE-2026-6428 7.6 MySQL SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22... Koha社群的reports/catalogue_out.pl中的SQL注入從37年11月... 2026-06-13
CVE-2026-48165 8 MySQL MSSQL MariaDB server is a community developed fork of MySQL server. From versions... MariaDB 伺服器是社群開發的 MySQL 伺服器分支。從版本10.6... 2026-06-12
CVE-2026-48163 8 MySQL MSSQL MariaDB server is a community developed fork of MySQL server. From versions... MariaDB 伺服器是社群開發的 MySQL 伺服器分支。從版本 10.... 2026-06-12
共 57 筆
第 1 / 6 頁
CVE 編號 嚴重性 分數 產品 描述 發布日期
CVE-2026-56396 8.8 PHP phpMyFAQ before 4.1.4 contains missing authorization vulnerabilities in edi... 4.1.4 之前的 phpMyFAQ 在 editUser() 和 updateUserRights... 2026-06-21
CVE-2026-56382 7.2 PHP Craft CMS (composer package craftcms/cms) versions >= 5.5.0 and <= 5.9.13 c... Craft。 2026-06-21
CVE-2022-50972 嚴重 9.8 PHP WooCommerce 7.1.0 contains a remote code execution vulnerability that allow... WooCommerce 7.1.0 包含一個遠端程式碼執行漏洞,允許攻擊... 2026-06-20
CVE-2026-48939 N/A - PHP A vulnerability in the iCagenda extension for Joomla allows the upload of a... Joomla 的 iCagenda 擴充功能中存在允許在檔案附件功能中上... 2026-06-20
CVE-2026-48908 N/A - PHP A vulnerability in SP Page Builder for Joomla allows unauthenticated users... Joomla 的 SP Page Builder 中存在漏洞,允許未經身份驗證... 2026-06-20
CVE-2026-9843 8.1 PHP The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPr... WordPress 的聯絡表單 7、WPforms、Elementor 表單外掛程式... 2026-06-20
CVE-2026-12238 5.3 PHP The WP Go Maps – Most Popular Map Plugin plugin for WordPress is vulnerable... WP Go Maps – WordPress 最受歡迎的地圖外掛程式在 10.1.01... 2026-06-19
CVE-2026-49359 6.5 PHP PhpWeasyPrint is a PHP library allowing PDF generation from a URL or an HTM... PhpWeasyPrint 是一個 PHP 函式庫,允許從 URL 或 HTML 頁... 2026-06-19
CVE-2026-49286 8.1 PHP PhpWeasyPrint is a PHP library allowing PDF generation from a URL or an HTM... PhpWeasyPrint 是一個 PHP 函式庫,允許從 URL 或 HTML 頁... 2026-06-19
CVE-2019-25758 8.8 PHP Joomla! Component vBizz 1.0.7 contains an unrestricted file upload vulnerab... 喬姆拉!元件vBizz 1.0.7包含一個不受限制的檔案上傳漏洞,... 2026-06-19
共 385 筆
第 1 / 39 頁
CVE 編號 嚴重性 分數 產品 描述 發布日期
CVE-2026-25879 嚴重 9.8 MySQL MSSQL Langroid is a framework for building large-language-model-powered applicati... Langroid 是一個用於建立大型語言模型驅動的應用程式的框架... 2026-06-01
CVE-2026-45721 嚴重 9 MSSQL Algernon is a small self-contained pure-Go web server. Prior to 1.17.7, whe... Algernon 是一個小型獨立的純 Go Web 伺服器。在 1.17.7 之... 2026-05-26
CVE-2026-6093 N/A - MSSQL Corteza contains a SQL injection vulnerability in its Microsoft SQL Server... 當按元欄位過濾 Compose 記錄時,Corteza 的 Microsoft SQL... 2026-05-11
CVE-2026-33375 6.5 MSSQL The Grafana MSSQL data source plugin contains a logic flaw that allows a lo... Grafana MSSQL 資料來源外掛程式包含一個邏輯缺陷,允許低... 2026-03-26
CVE-2019-25598 6.2 MSSQL HeidiSQL Portable 10.1.0.5464 contains a denial of service vulnerability th... HeidiSQL Portable 10.1.0.5464 包含拒絕服務漏洞,允許本... 2026-03-22
CVE-2025-58112 8.8 MSSQL Microsoft Dynamics 365 Customer Engagement (on-premises) 1612 (9.0.2.3034)... Microsoft Dynamics 365 Customer Engagement (on-premises... 2026-03-18
CVE-2026-32628 8.8 MySQL MSSQL AnythingLLM is an application that turns pieces of content into context tha... AnythingLLM 是一個將內容片段轉換為上下文的應用程序,任... 2026-03-16
CVE-2025-15560 8.8 MSSQL An authenticated attacker with minimal permissions can exploit a SQL inject... 具有最小權限的經過驗證的攻擊者可以利用 WorkTime 伺服器... 2026-02-19
CVE-2025-59095 N/A - MSSQL The program libraries (DLL) and binaries used by exos 9300 contain multiple... exos 9300 所使用的程式庫 (DLL) 和二進位檔案包含多個硬編... 2026-01-26
CVE-2025-59093 N/A - MSSQL Exos 9300 instances are using a randomly generated database password to con... Exos 9300 執行個體使用隨機產生的資料庫密碼連接到設定的... 2026-01-26
共 10 筆
CVE 編號 嚴重性 分數 產品 描述 發布日期
CVE-2026-46888 7.8 Oracle Vulnerability in the Siebel CRM Deployment product of Oracle Siebel CRM (co... Oracle Siebel CRM 的 Siebel CRM 部署產品有漏洞(元件:... 2026-06-17
CVE-2026-46793 嚴重 9.9 Oracle Vulnerability in the Identity Manager Connector product of Oracle Fusion Mi... Oracle Fusion Middleware 的 Identity Manager Connector... 2026-06-17
CVE-2026-8443 8.8 Oracle The WP Review Slider Pro plugin for WordPress is vulnerable to SQL Injectio... 適用於 WordPress 的 WP Review Slider Pro 外掛程式在 12.... 2026-06-16
CVE-2026-49952 嚴重 9.1 PHP Oracle Discuz! X5.0 releases 20260320 through 20260501 contains an authentication... 討論! X5.0 版本 20260320 到 20260501 包含一個身份驗證... 2026-06-15
CVE-2026-50636 8.8 MySQL Oracle The RemoteControl API methods invite_participants and remind_participants p... RemoteControl API 方法邀請_參與者和提醒_參與者將呼叫者... 2026-06-09
CVE-2026-46835 7.5 Oracle Vulnerability in the Net Service component of Oracle Database Server. Supp... Oracle 資料庫伺服器的網路服務元件中的漏洞。 受影響的受... 2026-05-28
CVE-2026-46834 7.5 Oracle Vulnerability in the Net Service component of Oracle Database Server. Supp... Oracle 資料庫伺服器的網路服務元件中的漏洞。 受影響的受... 2026-05-28
CVE-2026-46833 嚴重 9 Oracle Vulnerability in the Net Service component of Oracle Database Server. Supp... Oracle 資料庫伺服器的網路服務元件中的漏洞。 受影響的受... 2026-05-28
CVE-2025-69600 7.8 Oracle Command injection in Raynet rvia 12.6.4392.49-amd64.deb allows adversaries... Raynet rvia 12.6.4392.49-amd64.deb 中的命令注入允許攻擊... 2026-05-27
CVE-2026-27886 7.5 Oracle Strapi is an open source headless content management system. Strapi version... Strapi 是一個開源無頭內容管理系統。從 4.0.0 開始到 5.37... 2026-05-14
共 37 筆
第 1 / 4 頁
CVE 編號 嚴重性 分數 產品 描述 發布日期
CVE-2026-12035 8.8 Chrome Use after free in Views in Google Chrome on Windows prior to 149.0.7827.115... 149.0.7827.115 之前的 Windows 上的 Google Chrome 視圖中... 2026-06-11
CVE-2026-12034 8.3 Linux OS Chrome Insufficient validation of untrusted input in Linux Toolkit Theming in Goog... 149.0.7827.115 之前的 Linux 上的 Google Chrome 中的 Lin... 2026-06-11
CVE-2026-12033 5.3 Chrome Out of bounds read in VideoCapture in Google Chrome prior to 149.0.7827.115... 149.0.7827.115 之前的 Google Chrome 中的 VideoCapture... 2026-06-11
CVE-2026-12032 3.1 Chrome Inappropriate implementation in Passwords in Google Chrome on Android prior... 149.0.7827.115 之前的 Android 版 Google Chrome 中的密碼... 2026-06-11
CVE-2026-12031 8.3 Chrome Inappropriate implementation in Views in Google Chrome on Windows prior to... 149.0.7827.115 之前的 Windows 上的 Google Chrome 視圖中... 2026-06-11
CVE-2026-12030 8.3 Chrome Out of bounds write in GPU in Google Chrome on Android prior to 149.0.7827.... 149.0.7827.115 之前的 Android 版 Google Chrome 中的 GPU... 2026-06-11
CVE-2026-12029 8.3 Chrome Use after free in Video in Google Chrome on Windows prior to 149.0.7827.115... 在 149.0.7827.115 之前的 Windows 上的 Google Chrome 影... 2026-06-11
CVE-2026-12028 8.3 Chrome Use after free in GPU in Google Chrome on Android prior to 149.0.7827.115 a... 149.0.7827.115 之前的 Android 版 Google Chrome 中的 GPU... 2026-06-11
CVE-2026-12027 嚴重 9.6 Chrome Inappropriate implementation in Headless in Google Chrome prior to 149.0.78... 149.0.7827.115 之前的 Google Chrome 中的 Headless 實施... 2026-06-11
CVE-2026-12026 N/A - Chrome Out of bounds read in Video in Google Chrome on ChromeOS prior to 149.0.782... 149.0.7827.115 之前的 ChromeOS 上的 Google Chrome 中的... 2026-06-11
共 955 筆
第 1 / 96 頁
資料來源:NVD (National Vulnerability Database)