| 310885 | Jenkins 插件 多重漏洞(2026-04-29) | critical |
| 310143 | Splunk Enterprise 9.1.x < 9.1.8 / 9.2.x < 9.2.5 / 9.3.x < 9.3.3 / 9.4.x < 9.4.1 多個弱點 (SVD-2025-0308) | high |
| 310112 | Mattermost Server 10.11.x <= 10.11.13 / 11.3.x < 11.3.3 / 11.4.x < 11.4.3 / 11.5.x < 11.5.1 / 11.6.0 多個弱點 (MMSA-2026-00624 / MMSA-2026-00625) | high |
| 310111 | Mattermost 伺服器 10.11.x < 10.11.13 不當驗證 (MMSA-2026-00603) | low |
| 309925 | Oracle Primavera Unifier (2026 年 4 月 CPU) | medium |
| 309673 | GitLab 12.3 <18.9.6/18.10 < 18.10.4/18.11 < 18.11.1 (CVE-2026-1660) | medium |
| 309672 | GitLab 18.11 < 18.11.1 (CVE-2026-5377) | medium |
| 309671 | GitLab 18.10 < 18.10.4 / 18.11 < 18.11.1 (CVE-2026-5816) | high |
| 309670 | GitLab 17.0 <18.9.6/18.10 < 18.10.4/18.11 < 18.11.1 (CVE-2026-4922) | high |
| 309669 | GitLab 18.11 < 18.11.1 (CVE-2026-3254) | low |
| 309668 | GitLab 16.1.0 <18.9.6/18.10 < 18.10.4/18.11 < 18.11.1 (CVE-2026-5262) | medium |
| 309667 | GitLab 18.2 <18.9.6/18.10 < 18.10.4/18.11 < 18.11.1 (CVE-2026-6515) | medium |
| 306778 | Splunk Universal Forwarder 9.3.0 < 9.3.11、9.4.0 < 9.4.10、10.0.0 < 10.0.4、10.2.0 < 10.2.1 (SVD-2026-0404) | medium |
| 306731 | Quest KACE SMA 13.0.x < 13.0.385 / 13.1.x < 13.1.81 / 13.2.x < 13.2.183 / 14.0.x < 14.0.341 / 14.1.x < 14.1.101 多個弱點 | critical |
| 306602 | Drupal 10.5.x < 10.5.9 / 10.6.x < 10.6.7 / 11.2.x < 11.2.11 / 11.3.x < 11.3.7 多個弱點 (drupal-2026-04-15) | medium |
| 306561 | Splunk Enterprise 9.3.0 < 9.3.11、9.4.0 < 9.4.10、10.0.0 < 10.0.5、10.2.0 < 10.2.2 (SVD-2026-0401) | medium |
| 306560 | Splunk Enterprise 9.3.0 < 9.3.11、9.4.0 < 9.4.10、10.0.0 < 10.0.5、10.2.0 < 10.2.2 (SVD-2026-0402) | medium |
| 306556 | Splunk Enterprise 9.3.0 < 9.3.11、9.4.0 < 9.4.10、10.0.0 < 10.0.5、10.2.0 < 10.2.1 (SVD-2026-0403) | high |
| 306393 | Adobe Connect <= 12.10 多個弱點 (APSB26-37) | critical |
| 306169 | Dotnetnuke < 10.2.2 已觸發安全性程式碼分析規則 (GHSA-fcpv-w245-r2q7) | high |
| 306168 | Dotnetnuke < 10.2.2 透過 SVG 上傳發生已儲存跨網站指令碼 (XSS) (CVE-2026-40321) | high |
| 305982 | Dotnetnuke < 10.2.2 所有新安裝的 HostGUID 相同 (CVE-2026-40306) | medium |
| 305981 | Dotnetnuke 6.0.x < 10.2.2 Force Friend 要求接受 (CVE-2026-40305) | medium |
| 305964 | Dotnetnuke < 10.2.2 所有新安裝的 HostGUID 相同 (GHSA-2rhw-gw3f-477j) | high |
| 305963 | Dotnetnuke < 10.2.2 透過 SVG 上傳的已存跨網站指令碼 (XSS) (GHSA-ffq7-898w-9jc4) | high |
| 305962 | Dotnetnuke 6.0.x < 10.2.2 Force Friend 要求接受 (GHSA-fpj4-9qhx-5m6m) | high |
| 305955 | Apache ActiveMQ < 5.19.4 / 6.x < 6.2.3 不當輸入驗證程式碼插入 | high |
| 305954 | Apache ActiveMQ < 5.19.3 / 5.19.4, 6.x < 6.2.2 / 6.2.3 Classpath 路徑遊走 | medium |
| 305940 | SonicWall SMA 1000 系列 <= 12.4.3-03245 / 12.5.x <= 12.5.0-02283 多個弱點 (SNWLID-2026-0003) | high |
| 305938 | Kibana 8.x < 8.19.14 / 9.0.x < 9.2.8 / 9.3.x < 9.3.3 多個弱點 (ESA-2026-21 / ESA-2026-24 / ESA-2026-25 / ESA-2026-26) | medium |
| 305638 | GitLab 18.2 <18.8.9/18.9 < 18.9.5/18.10 < 18.10.3 (CVE-2026-1101) | medium |
| 305637 | GitLab 11.3 <18.8.9/18.9 < 18.9.5/18.10 < 18.10.3 (CVE-2026-1752) | medium |
| 305636 | GitLab 16.9.6 <18.8.9/18.9 < 18.9.5/18.10 < 18.10.3 (CVE-2026-5173) | high |
| 305635 | GitLab 18.0.0 <18.8.9/18.9 < 18.9.5/18.10 < 18.10.3 (CVE-2026-1516) | medium |
| 305634 | GitLab 18.2 <18.8.9/18.9 < 18.9.5/18.10 < 18.10.3 (CVE-2026-4332) | medium |
| 305633 | GitLab 18.6 <18.8.9/18.9 < 18.9.5/18.10 < 18.10.3 (CVE-2026-2619) | medium |
| 305632 | GitLab 18.2 <18.8.9/18.9 < 18.9.5/18.10 < 18.10.3 (CVE-2026-4916) | low |
| 305631 | GitLab 12.10 <18.8.9/18.9 < 18.9.5/18.10 < 18.10.3 (CVE-2026-1092) | high |
| 305630 | GitLab 18.2 <18.8.9/18.9 < 18.9.5/18.10 < 18.10.3 (CVE-2026-2104) | medium |
| 305301 | Atlassian Confluence 9.0.1 < 9.0.2 / 9.2.5 < 9.2.15 / 9.5.1 < 10.2.7 (CONFSERVER-102542) | high |
| 304414 | Joomla 4.0.x < 5.4.4 / 6.0.x < 6.0.4 Joomla 6.0.4 和 5.4.4 安全性和錯誤修正版本 (5944-joomla-6-0-4-5-4-4-security-bugfix-release) | high |
| 304390 | Metabase Enterprise < 1.54.22 / 1.55.x < 1.55.22 / 1.56.x < 1.56.22 / 1.57.x < 1.57.16 / 1.58.x < 1.58.10 / 1.59.x < 1.59.4 RCE (GHSA-fppj-vcm3-w229) | high |
| 304265 | GitLab 14.3 <18.8.7/18.9 < 18.9.3/18.10 < 18.10.1 (CVE-2026-2370) | high |
| 303800 | NetScaler ADC 和 NetScaler Gateway 記憶體過度讀取 (CTX696300 / CVE-2026-3055) | critical |
| 303799 | NetScaler ADC 和 NetScaler Gateway 爭用情形 (CTX696300 / CVE-2026-4368) | high |
| 303627 | GitLab 17.10 <18.8.7/18.9 < 18.9.3/18.10 < 18.10.1 (CVE-2026-3857) | high |
| 303626 | GitLab 18.5 <18.8.7/18.9 < 18.9.3/18.10 < 18.10.1 (CVE-2026-1724) | high |
| 303625 | GitLab 11.10 <18.8.7/18.9 < 18.9.3/18.10 < 18.10.1 (CVE-2026-2726) | medium |
| 303624 | GitLab 15.4 <18.8.7/18.9 < 18.9.3/18.10 < 18.10.1 (CVE-2026-2995) | medium |
| 303623 | GitLab 7.11 <18.8.7/18.9 < 18.9.3/18.10 < 18.10.1 (CVE-2026-2745) | high |
