Live
2026年7月8日
Sources: NVD · GHSA · OSV · CISA KEV · JVN
ログイン
新規登録
JA
·
EN
·
FR
SecPulse
v1
脆弱性
KEV
タグ
カテゴリ
脆弱性
KEV
タグ
カテゴリ
ホーム
/
カテゴリ
/
Webアプリケーション
🌐
Webアプリケーション
slug: web-application
🛡 関連する脆弱性
157
ID
タイトル
重要度
検知
CVE-2026-7313
CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefinity version from...
High
1ヶ月前
CVE-2026-39552
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
High
1ヶ月前
CVE-2026-39555
Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. ...
High
1ヶ月前
CVE-2025-68886
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
High
1ヶ月前
CVE-2025-69369
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
High
1ヶ月前
CVE-2024-21182
KEV
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
High
1ヶ月前
CVE-2026-48557
Spatie Laravel Media Library contains a file upload restriction bypass
High
1ヶ月前
CVE-2026-49368
In JetBrains YouTrack before 2026.1.13162 stored XSS in project notification templates was possible
High
1ヶ月前
CVE-2026-45555
csharp に コードインジェクション (CVE-2026-45555)
High
1ヶ月前
CVE-2026-45615
c の脆弱性 (CVE-2026-45615)
High
1ヶ月前
CVE-2026-44698
CVE-2026-44698 に コードインジェクション (CVE-2026-44698)
High
1ヶ月前
CVE-2026-10073
path-traversal の脆弱性 (CVE-2026-10073)
High
1ヶ月前
CVE-2026-4776
Mautic has SQL Injection in API Contact Filtering
High
1ヶ月前
CVE-2025-11262
The Link Whisper Free plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
High
1ヶ月前
CVE-2026-42760
Authentication Bypass Using an Alternate Path or Channel vulnerability in revmakx Backup and...
High
1ヶ月前
CVE-2026-42762
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
High
1ヶ月前
CVE-2026-42746
Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for...
High
1ヶ月前
CVE-2026-42753
Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows...
High
1ヶ月前
CVE-2026-42735
Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare...
High
1ヶ月前
CVE-2026-42736
Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp...
High
1ヶ月前
CVE-2026-42737
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
1ヶ月前
CVE-2026-42745
Authentication Bypass Using an Alternate Path or Channel vulnerability in ZAYTECH Smart Online...
High
1ヶ月前
CVE-2026-42730
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
1ヶ月前
CVE-2026-2253
Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.2.0.7 and 11.0.0.0,...
High
1ヶ月前
CVE-2026-5260
A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret...
High
1ヶ月前
CVE-2026-9584
A security vulnerability has been detected in code-projects Project Management System 1.0....
High
1ヶ月前
CVE-2026-42013
A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name ...
High
1ヶ月前
CVE-2026-27891
FacturaScripts is an open source accounting and invoicing software. Versions 2026 and below contain a critical vulnerability in the Plugins::add() function. The system fails to properly validate the f...
High
1ヶ月前
CVE-2026-46367
Duplicate Advisory: phpMyFAQ: Stored XSS via Utils::parseUrl() in comment rendering
High
1ヶ月前
CVE-2026-46359
phpMyFAQ has SQL Injection in CurrentUser::setTokenData through unescaped OAuth token fields
High
1ヶ月前
« Previous
Next »
Showing
61
to
90
of
157
results
1
2
3
4
5
6
🍪 Cookie について
当サイトはログイン状態の保持・言語設定・サービス改善のために Cookie を使用します。詳細は下記リンクをご確認ください。
すべて受け入れる
必須のみ
詳細 →