momo安全漏洞库

多模块数据检索平台

登录 注册
Intelligence Digest

威胁情报

统一威胁情报视图,聚合漏洞监控、网安开源项目与官方源情报

共聚合 5032 条情报 漏洞监控 3233 / 网安开源项目 1553 / 威胁情报 246

漏洞监控

来自 GitHub Issues、仓库检索和关键词命中的 CVE / RCE / POC 动态。

3233总量

网安开源项目

优先展示中文安全团队维护的开源项目,兼顾工具落地场景和最近更新时间。

1553总量

威胁情报

来自 360、奇安信、斗象等官方站点的公开情报聚合。

246总量
Upgrade to Jackson Bom 2.21.1
GitHub Issues/spring-projects/spring-boot spring-projects/spring-boot#49365 发布时间 2026-03-03 入库 2026-03-03 19:38
`jackson-core` 2.19.4, as used in Spring Boot 3.5.11, is affected by [Number Length Constraint Bypass in Async Parser Leads to Potential DoS Condition](https://github.com/advisories/GHSA-72hv-8253-57qq). I've [asked](ht...
本页此列暂无更多数据
本页此列暂无更多数据
Upgrade to Jackson Bom 3.1.0
GitHub Issues/spring-projects/spring-boot spring-projects/spring-boot#49383 发布时间 2026-03-03 入库 2026-03-03 19:38
Spring Boot 4.0.x includes `tools.jackson.core:jackson-core:3.0.4`, which is affected by the vulnerability GHSA-72hv-8253-57qq (CVSS 8.7). This is the same async parser `maxNumberLength` bypass issue that is being addres...
boot-redis(webflux)4.1 IllegalStateException
GitHub Issues/spring-projects/spring-boot spring-projects/spring-boot#49382 发布时间 2026-03-03 入库 2026-03-03 18:38
boot-redis(webflux)4.1 -> lettuce7.2.1 -> netty4.2.10 -> netty4.2.10.final IllegalStateException: incompatible event loop type: io.netty.channel.SingleThreadIoEventLoop temporary fixed: implementation ('org.springframew...
boot-redis webflux-4.1SNAPSHOT
GitHub Issues/spring-projects/spring-boot spring-projects/spring-boot#49381 发布时间 2026-03-03 入库 2026-03-03 18:38
boot-redis-4.1 -> lettuce7.2.1 -> netty4.2.10.final -> SingleThreadIoEventLoop -> IllegalStateException: incompatible event loop type: io.netty.channel.SingleThreadIoEventLoop temporary fixed: implementation ('org.spri...
KOSEC-LLC/BYOVD-Research
GitHub Repos/search KOSEC-LLC/BYOVD-Research 发布时间 2026-03-03 入库 2026-03-14 02:41
BYOVD research performed by KOSEC. Includes vulnerable drivers and writeups (CVE-2026-0828). | language: C
DeathShotXD/0xKern3lCrush-Foreverday-BYOVD-CVE-2026-0828
GitHub Repos/search DeathShotXD/0xKern3lCrush-Foreverday-BYOVD-CVE-2026-0828 发布时间 2026-03-03 入库 2026-03-14 02:41
Advanced PoC & Research for CVE-2026-0828 (Safetica) and CVE-2025-7771 (ThrottleStop). Analysis of BYOVD (Bring Your Own Vulnerable Driver) TTPs for Ring 0 process termination and physical memory R/W. Researching EDR-Kil...
standard-profile/zsskolni-rce
GitHub Repos/search standard-profile/zsskolni-rce 发布时间 2026-03-03 入库 2026-03-14 02:42
language: CSS
Alpastx/CVE-2023-3452---WordPress-Canto-Plugin-RCE
GitHub Repos/search Alpastx/CVE-2023-3452---WordPress-Canto-Plugin-RCE 发布时间 2026-03-03 入库 2026-03-14 02:42
CVE-2023-3452 exploit for WordPress Canto plugin RCE, HTTPS support included | language: Python
agustfricke/erlang-ssh-rce-CVE-2025-32433
GitHub Repos/search agustfricke/erlang-ssh-rce-CVE-2025-32433 发布时间 2026-03-03 入库 2026-03-14 02:42
language: Go
Nixon-H/PHP-Unrestricted-Upload-RCE
GitHub Repos/search 高危 Nixon-H/PHP-Unrestricted-Upload-RCE 发布时间 2026-03-03 入库 2026-03-14 02:42
A Critical (CVSS 10.0) RCE vulnerability in a PHP e-commerce platform. The app trusts client-side MIME types and preserves extensions during upload. Attackers can bypass checks to upload web shells, gaining full system a...