hao/websafe-kb
1
0
派生 0
代码 工单 合并请求 1 工作流 软件包 项目 发布 百科 活动

更新: 103 个文件 - 2026-03-18 19:24:37

浏览代码
这个提交包含在:
hao
2026-03-18 19:24:37 -07:00
父节点 8e13fcfbe0
当前提交 9b0d72b112
修改 103 个文件,包含 8985 行新增1381 行删除
下载 Patch 文件 下载 Diff 文件 展开所有文件 折叠所有文件

8
07-framework-security/frameworks/undici/cases/undici-cve-2026-1525.md
查看文件

@@ -4,8 +4,8 @@ system_id: "undici"
category: "frameworks"
advisory_mode: "core"
published_date: "2026-03-13T20:07:03Z"
updated_date: "2026-03-14T09:19:54.772219Z"
severity: "medium"
updated_date: "2026-03-18T22:58:59.626657Z"
severity: "low"
exploit_status: "unknown"
source_confidence: "official"
verification_status: "verified-real"
@@ -50,7 +50,7 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-2mjp-
- Canonical ID: `undici--CVE-2026-1525`
- 系统: `undici`
- 严重度: `medium`
- 严重度: `low`
- 来源置信度: `official`
- 官方主源: https://github.com/nodejs/undici/security/advisories/GHSA-2mjp-6q6p-2qxm
- 影响版本: `introduced=0, fixed<6.24.0, introduced=7.0.0, fixed<7.24.0`
@@ -58,9 +58,9 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-2mjp-
## 其他来源
- https://cna.openjsf.org/security-advisories.html
- https://nvd.nist.gov/vuln/detail/CVE-2026-1525
- https://hackerone.com/reports/3556037
- https://cna.openjsf.org/security-advisories.html
- https://cwe.mitre.org/data/definitions/444.html
- https://github.com/nodejs/undici
- https://www.rfc-editor.org/rfc/rfc9110.html#section-8.6

8
07-framework-security/frameworks/undici/cases/undici-cve-2026-1526.md
查看文件

@@ -4,8 +4,8 @@ system_id: "undici"
category: "frameworks"
advisory_mode: "core"
published_date: "2026-03-13T20:41:56Z"
updated_date: "2026-03-13T20:54:25.563997Z"
severity: "high"
updated_date: "2026-03-18T22:58:59.936049Z"
severity: "low"
exploit_status: "unknown"
source_confidence: "official"
verification_status: "verified-real"
@@ -50,7 +50,7 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-vrm6-
- Canonical ID: `undici--CVE-2026-1526`
- 系统: `undici`
- 严重度: `high`
- 严重度: `low`
- 来源置信度: `official`
- 官方主源: https://github.com/nodejs/undici/security/advisories/GHSA-vrm6-8vpv-qv8q
- 影响版本: `introduced=0, fixed<6.24.0, introduced=7.0.0, fixed<7.24.0`
@@ -58,9 +58,9 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-vrm6-
## 其他来源
- https://cna.openjsf.org/security-advisories.html
- https://nvd.nist.gov/vuln/detail/CVE-2026-1526
- https://hackerone.com/reports/3481206
- https://cna.openjsf.org/security-advisories.html
- https://datatracker.ietf.org/doc/html/rfc7692
- https://github.com/nodejs/undici
- https://owasp.org/www-community/attacks/Denial_of_Service

8
07-framework-security/frameworks/undici/cases/undici-cve-2026-1527.md
查看文件

@@ -4,8 +4,8 @@ system_id: "undici"
category: "frameworks"
advisory_mode: "core"
published_date: "2026-03-13T20:41:26Z"
updated_date: "2026-03-13T20:54:25.572106Z"
severity: "medium"
updated_date: "2026-03-18T22:58:58.996775Z"
severity: "low"
exploit_status: "unknown"
source_confidence: "official"
verification_status: "verified-real"
@@ -49,7 +49,7 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-4992-
- Canonical ID: `undici--CVE-2026-1527`
- 系统: `undici`
- 严重度: `medium`
- 严重度: `low`
- 来源置信度: `official`
- 官方主源: https://github.com/nodejs/undici/security/advisories/GHSA-4992-7rv2-5pvq
- 影响版本: `introduced=0, fixed<6.24.0, introduced=7.0.0, fixed<7.24.0`
@@ -57,9 +57,9 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-4992-
## 其他来源
- https://cna.openjsf.org/security-advisories.html
- https://nvd.nist.gov/vuln/detail/CVE-2026-1527
- https://hackerone.com/reports/3487198
- https://cna.openjsf.org/security-advisories.html
- https://github.com/nodejs/undici
## 实验层

8
07-framework-security/frameworks/undici/cases/undici-cve-2026-1528.md
查看文件

@@ -4,8 +4,8 @@ system_id: "undici"
category: "frameworks"
advisory_mode: "core"
published_date: "2026-03-13T20:07:26Z"
updated_date: "2026-03-14T09:17:45.838435Z"
severity: "high"
updated_date: "2026-03-18T22:58:59.863318Z"
severity: "low"
exploit_status: "unknown"
source_confidence: "official"
verification_status: "verified-real"
@@ -49,7 +49,7 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-f269-
- Canonical ID: `undici--CVE-2026-1528`
- 系统: `undici`
- 严重度: `high`
- 严重度: `low`
- 来源置信度: `official`
- 官方主源: https://github.com/nodejs/undici/security/advisories/GHSA-f269-vfmq-vjvj
- 影响版本: `introduced=6.0.0, fixed<6.24.0, introduced=7.0.0, fixed<7.24.0`
@@ -57,9 +57,9 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-f269-
## 其他来源
- https://cna.openjsf.org/security-advisories.html
- https://nvd.nist.gov/vuln/detail/CVE-2026-1528
- https://hackerone.com/reports/3537648
- https://cna.openjsf.org/security-advisories.html
- https://github.com/nodejs/undici
## 实验层

8
07-framework-security/frameworks/undici/cases/undici-cve-2026-2229.md
查看文件

@@ -4,8 +4,8 @@ system_id: "undici"
category: "frameworks"
advisory_mode: "core"
published_date: "2026-03-13T20:41:41Z"
updated_date: "2026-03-13T20:54:26.149214Z"
severity: "high"
updated_date: "2026-03-18T22:58:58.908047Z"
severity: "low"
exploit_status: "unknown"
source_confidence: "official"
verification_status: "verified-real"
@@ -50,7 +50,7 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-v9p9-
- Canonical ID: `undici--CVE-2026-2229`
- 系统: `undici`
- 严重度: `high`
- 严重度: `low`
- 来源置信度: `official`
- 官方主源: https://github.com/nodejs/undici/security/advisories/GHSA-v9p9-hfj2-hcw8
- 影响版本: `introduced=0, fixed<6.24.0, introduced=7.0.0, fixed<7.24.0`
@@ -58,9 +58,9 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-v9p9-
## 其他来源
- https://cna.openjsf.org/security-advisories.html
- https://nvd.nist.gov/vuln/detail/CVE-2026-2229
- https://hackerone.com/reports/3487486
- https://cna.openjsf.org/security-advisories.html
- https://datatracker.ietf.org/doc/html/rfc7692
- https://github.com/nodejs/undici
- https://nodejs.org/api/zlib.html#class-zlibinflateraw

8
07-framework-security/frameworks/undici/cases/undici-cve-2026-2581.md
查看文件

@@ -4,8 +4,8 @@ system_id: "undici"
category: "frameworks"
advisory_mode: "core"
published_date: "2026-03-13T20:37:58Z"
updated_date: "2026-03-13T20:54:25.417862Z"
severity: "medium"
updated_date: "2026-03-18T23:58:57.714731Z"
severity: "low"
exploit_status: "unknown"
source_confidence: "official"
verification_status: "verified-real"
@@ -47,7 +47,7 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-phc3-
- Canonical ID: `undici--CVE-2026-2581`
- 系统: `undici`
- 严重度: `medium`
- 严重度: `low`
- 来源置信度: `official`
- 官方主源: https://github.com/nodejs/undici/security/advisories/GHSA-phc3-fgpg-7m6h
- 影响版本: `introduced=7.17.0, fixed<7.24.0`
@@ -55,9 +55,9 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-phc3-
## 其他来源
- https://cna.openjsf.org/security-advisories.html
- https://nvd.nist.gov/vuln/detail/CVE-2026-2581
- https://hackerone.com/reports/3513473
- https://cna.openjsf.org/security-advisories.html
- https://github.com/nodejs/undici
## 实验层