265'203

条目总数

123.2

每日新增数量 ø

126.3

每日更新数量 ø

8'818

每日提交数量 ø

73'887

覆盖产品数量

社区

自1970年以来，记录和解释安全漏洞，威胁和漏洞的第一大漏洞数据库。

VulDB Mod Team just queued a new entry to be reviewed

hfbtty and 3 others joined the community

VulDB CTI Team identified activities by APT actor "Cobalt Strike"

VulDB Mod Team merged 6 submitted duplicates

VulDB Dev Team improved the web code

本日漏洞

Microsoft Windows Hyper-V 内存损坏

在Microsoft Windows 中曾发现分类为致命的漏洞。此漏洞会影响某些未知进程的组件Hyper-V。手动调试的不合法输入可导致内存损坏。分享公告的网址是msrc.microsoft.com。该漏洞被标识为CVE-2024-30017，攻击可以远程发起，没有可利用漏洞。建议采用一个补丁来修正此问题。

威胁情报

5.07

SourceCodester Best House Rental Management System view_payment.php SQL注入

4.93

TikiWiki tiki-register.php 权限升级

4.88

code-projects Simple Chat System register.php SQL注入

4.83

code-projects Simple Chat System register.php 跨网站脚本

4.47

SourceCodester Best House Rental Management System login.php SQL注入

最近

SourceCodester Event Registration System 跨网站脚本

SourceCodester Event Registration System SQL注入

SourceCodester Event Registration System 跨网站脚本

SourceCodester Event Registration System SQL注入

SourceCodester Event Registration System SQL注入

更新

Microsoft Internet Explorer VBScript 内存损坏

Microsoft Windows GDI+ 内存损坏

Microsoft Windows Win32k 信息公开

Microsoft Office Access Connectivity Engine 内存损坏

Microsoft Windows JET Database Engine 内存损坏

CVSS当前Top

9.8

Agentejo Cockpit CMS POST Request api 权限升级

9.7

Intel Neural Compressor Software 弱身份验证

9.7

Cacti cmd_realtime.php 权限升级

9.6

parisneo lollms unInstall_binding 权限升级

9.6

parisneo lollms-webui apply_settings Remote Code Execution

攻击价格当前Top

$25k-$50k

IEEE 802.11 Standard Home WEP/Home WPA3 SAE SSID Confusion 内存损坏

$10k-$25k

Microsoft Windows Routing/Remote Access Service Remote Code Execution

$10k-$25k

Google Chrome Dawn 内存损坏

$10k-$25k

Microsoft Windows Mark of the Web 未知漏洞

$10k-$25k

Google Chrome Downloads 权限升级

最新攻击

POC

SourceCodester Event Registration System 未知漏洞

POC

SourceCodester Event Registration System 未知漏洞

POC

SourceCodester Event Registration System 未知漏洞

POC

SourceCodester Event Registration System 未知漏洞

POC

SourceCodester Event Registration System 未知漏洞

最新视频

YouTube

Sikka SSCWindowsService SSCService 权限升级

YouTube

Adobe Acrobat Reader 内存损坏

YouTube

NCR Terminal Handler WSDL 跨网站请求伪造

YouTube

Gabriels FTP Server 拒绝服务

YouTube

Totolink N200RE V5 cstecgi.cgi 弱身份验证

Might our Artificial Intelligence support you?

Check our Alexa App!