Vulnerability List
漏洞列表
用戶所提交的漏洞列表。
全部
-
某單位 tickets invitation-code update can rebind a code to another event ticket
- HZD Code:ZD-2026-00809
- Risk:中
- Status:審核中
- Date:2026/06/03
-
某單位 tickets webhook management routes authorize one event ID but operate on path eventId
- HZD Code:ZD-2026-00808
- Risk:中
- Status:審核中
- Date:2026/06/03
-
某單位 tickets ticket analytics route lacks event-scoped access check
- HZD Code:ZD-2026-00807
- Risk:中
- Status:審核中
- Date:2026/06/03
-
某單位 tickets event form-field handlers continue after failed event access
- HZD Code:ZD-2026-00806
- Risk:中
- Status:審核中
- Date:2026/06/03
-
某單位 tickets eventAdmin registration export lacks event scoping
- HZD Code:ZD-2026-00805
- Risk:中
- Status:審核中
- Date:2026/06/03
-
某單位 SCAICT-uwu /buyProduct race can return two successful purchases while persisting one point/stock decrement
- HZD Code:ZD-2026-00804
- Risk:中
- Status:審核中
- Date:2026/06/03
-
某單位 Bitmarkd registration request and response paths accept short timestamp frames and panic
- HZD Code:ZD-2026-00803
- Risk:高
- Status:審核中
- Date:2026/06/03
-
某單位 MySQL 服務暴露於網際網路,導致大量資料外洩之風險
- HZD Code:ZD-2026-00802
- Risk:嚴重
- Status:審核完成
- Date:2026/06/02
-
某單位 gift issuing endpoint allows GET-triggered privileged point/ticket balance changes
- HZD Code:ZD-2026-00801
- Risk:中
- Status:審核中
- Date:2026/06/02
-
某單位 Web 檔案管理器存在弱密碼 + 原始碼洩漏,登入後可接管整台主機之網頁根目錄操作權限
- HZD Code:ZD-2026-00800
- Risk:嚴重
- Status:審核完成
- Date:2026/06/02