快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352348
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-66905 |
The Takes web framework's TkFiles take thru 2.0-SNAPSHOT fails to canonicalize HTTP request paths be...
|
HIGH | 7.5 | 2025-12-19 |
takes tkfiles
|
CVE NVD | |
| CVE-2025-66906 |
turms 安全漏洞
|
MEDIUM | 6.1 | 2025-12-19 |
turms-im turms
|
CVE NVD +1 | |
| CVE-2025-66908 |
turms 安全漏洞
|
MEDIUM | 5.3 | 2025-12-19 |
turms-im turms
|
CVE NVD +1 | |
| CVE-2025-66909 |
turms 安全漏洞
|
HIGH | 7.5 | 2025-12-19 |
turms-im turms
|
CVE NVD +1 | |
| CVE-2025-66910 |
turms 安全漏洞
|
MEDIUM | 6.0 | 2025-12-19 |
turms-im turms
|
CVE NVD +1 | |
| CVE-2025-66911 |
turms 安全漏洞
|
MEDIUM | 6.5 | 2025-12-19 |
turms-im turms
|
CVE NVD +1 | |
| CVE-2025-67442 |
EVE-NG 安全漏洞
|
HIGH | 7.6 | 2025-12-19 |
eve-ng eve-ng
|
CVE NVD +1 | |
| CVE-2025-67842 |
The Static Asset API in Mintlify Platform before 2025-11-15 allows remote attackers to inject arbitr...
|
MEDIUM | 6.4 | 2025-12-19 |
Mintlify Mintlify Platform
mintlify mintlify
|
CVE NVD | |
| CVE-2025-67843 |
A Server-Side Template Injection (SSTI) vulnerability in the MDX Rendering Engine in Mintlify Platfo...
|
HIGH | 8.3 | 2025-12-19 |
Mintlify Mintlify Platform
mintlify mintlify
|
CVE NVD | |
| CVE-2025-67844 |
The GitHub Integration API in Mintlify Platform before 2025-11-15 allows remote attackers to obtain ...
|
MEDIUM | 5.0 | 2025-12-19 |
Mintlify Mintlify Platform
mintlify mintlify
|
CVE NVD | |
| CVE-2025-67845 |
A Directory Traversal vulnerability in the Static Asset Proxy Endpoint in Mintlify Platform before 2...
|
MEDIUM | 6.4 | 2025-12-19 |
Mintlify Mintlify Platform
mintlify mintlify
|
CVE NVD | |
| CVE-2025-67846 |
The Deployment Infrastructure in Mintlify Platform before 2025-11-15 allows remote attackers to bypa...
|
MEDIUM | 4.9 | 2025-12-19 |
Mintlify Mintlify Platform
mintlify mintlify
|
CVE NVD | |
| CVE-2025-14898 |
CodeAstro Real Estate Management System Administrator Endpoint userbuilderdelete.php sql injection
|
MEDIUM | 5.1 | 2025-12-18 |
CodeAstro Real Estate Management System
codeastro real_estate_management_system
|
CVE NVD | |
| CVE-2025-14897 |
CodeAstro Real Estate Management System Administrator Endpoint useragentdelete.php sql injection
|
MEDIUM | 5.1 | 2025-12-18 |
CodeAstro Real Estate Management System
codeastro real_estate_management_system
|
CVE NVD | |
| CVE-2025-64675 |
Azure Cosmos DB Spoofing Vulnerability
|
HIGH | 8.3 | 2025-12-18 |
Microsoft Azure Cosmos DB
microsoft azure_cosmos_db
|
CVE NVD | |
| CVE-2025-68398 |
Weblate has git config file overwrite vulnerability that leads to remote code execution
|
CRITICAL | 9.1 | 2025-12-18 |
WeblateOrg weblate
weblate weblate
|
CVE NVD | |
| CVE-2025-68279 |
Weblate has an arbitrary file read via symbolic links
|
HIGH | 7.7 | 2025-12-18 |
WeblateOrg weblate
weblate weblate
|
CVE NVD | |
| CVE-2025-68422 |
Kibana Improper Authorization
|
MEDIUM | 4.3 | 2025-12-18 |
Elastic Kibana
elastic kibana
+1个
|
CVE NVD | |
| CVE-2025-68386 |
Kibana Improper Authorization
|
MEDIUM | 4.3 | 2025-12-18 |
Elastic Kibana
elastic kibana
|
CVE NVD | |
| CVE-2025-68390 |
Elasticsearch Allocation of Resources Without Limits or Throttling
|
MEDIUM | 4.9 | 2025-12-18 |
Elastic Elasticsearch
elastic elasticsearch
|
CVE NVD |