快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 350426
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-0600 |
Nexus Repository 3 - Server-Side Request Forgery in Proxy Repository Configuration
|
MEDIUM | 6.2 | 2026-01-14 |
Sonatype Nexus Repository
|
CVE NVD | |
| CVE-2025-12166 |
Simply Schedule Appointments <= 1.6.9.9 - Unauthenticated SQL Injection via `order` and `append_where_sql` Parameters
|
HIGH | 7.5 | 2026-01-14 |
croixhaug Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin
|
CVE NVD | |
| CVE-2025-14058 |
A potential missing authentication vulnerability was reported in some Lenovo Tablets that could allo...
|
LOW | 2.4 | 2026-01-14 |
Lenovo Tab M11 TB330FU TB330XU
Lenovo Tab K11 TB330FU
+29个
|
CVE NVD | |
| CVE-2026-0421 |
A potential vulnerability was reported in the BIOS of L13 Gen 6, L13 Gen 6 2-in-1, L14 Gen 6, and L1...
|
HIGH | 7.0 | 2026-01-14 |
Lenovo ThinkPad L13 Gen 6 BIOS
Lenovo ThinkPad L13 Gen 6 2 in 1 BIOS
+2个
|
CVE NVD | |
| CVE-2025-13455 |
A vulnerability was reported in ThinkPlus configuration software that could allow a local authentica...
|
HIGH | 7.3 | 2026-01-14 |
Lenovo ThinkPlus FU100
Lenovo ThinkPlus FU200
+2个
|
CVE NVD | |
| CVE-2025-13454 |
A potential vulnerability was reported in ThinkPlus configuration software that could allow a local ...
|
MEDIUM | 5.7 | 2026-01-14 |
Lenovo ThinkPlus FU100
Lenovo ThinkPlus FU200
+2个
|
CVE NVD | |
| CVE-2025-13453 |
A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with phy...
|
HIGH | 7.0 | 2026-01-14 |
Lenovo ThinkPlus FU100
Lenovo ThinkPlus FU200
+2个
|
CVE NVD | |
| CVE-2025-13154 |
An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vantag...
|
MEDIUM | 6.8 | 2026-01-14 |
Lenovo Vantage
|
CVE NVD | |
| CVE-2026-0601 |
Nexus Repository 3 - Cross-Site Scripting
|
MEDIUM | 5.1 | 2026-01-14 |
Sonatype Nexus Repository
|
CVE NVD | |
| CVE-2026-0861 |
Integer overflow in memalign leads to heap corruption
|
HIGH | 8.4 | 2026-01-14 |
The GNU C Library glibc
|
CVE NVD | |
| CVE-2026-23512 |
SumatraPDF has an Untrusted Search Path in sumatrapdf/src/AppTools.cpp
|
HIGH | 8.6 | 2026-01-14 |
sumatrapdfreader sumatrapdf
|
CVE NVD | |
| CVE-2026-0961 |
Out-of-bounds Write in Wireshark
|
MEDIUM | 5.5 | 2026-01-14 |
Wireshark Foundation Wireshark
|
CVE NVD | |
| CVE-2026-0962 |
Out-of-bounds Write in Wireshark
|
MEDIUM | 5.3 | 2026-01-14 |
Wireshark Foundation Wireshark
|
CVE NVD | |
| CVE-2026-0960 |
Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark
|
MEDIUM | 4.7 | 2026-01-14 |
Wireshark Foundation Wireshark
|
CVE NVD | |
| CVE-2026-0959 |
Out-of-bounds Write in Wireshark
|
MEDIUM | 5.3 | 2026-01-14 |
Wireshark Foundation Wireshark
|
CVE NVD | |
| CVE-2026-22036 |
Undici has an unbounded decompression chain in HTTP responses on Node.js Fetch API via Content-Encoding leads to resource exhaustion
|
LOW | 3.7 | 2026-01-14 |
nodejs undici
nodejs undici
|
CVE NVD | |
| CVE-2025-11224 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
|
HIGH | 7.7 | 2026-01-14 |
GitLab GitLab
|
CVE NVD | |
| CVE-2025-14557 |
XSS in Drupal 7 Facebook Pixel Module
|
MEDIUM | 4.8 | 2026-01-14 |
Drupal Facebook Pixel
|
CVE NVD | |
| CVE-2025-14556 |
XSS in Drupal 7 Flag Module
|
MEDIUM | 4.8 | 2026-01-14 |
Drupal Flag
|
CVE NVD | |
| CVE-2026-23498 |
Shopware Improper Control of Generation of Code in Twig rendered views
|
HIGH | 7.2 | 2026-01-14 |
shopware shopware
|
CVE NVD |