漏洞列表 - 漏洞数据展示平台

快速搜索提示： 按厂商查询（如：microsoft）| 按产品查询（如：microsoft sql_server）

搜索关键词支持模糊搜索，但速度较慢

严重程度

数据源

排序

常用厂商： microsoft cisco google apple oracle

示例： microsoft sql_server cisco ios apache http_server

漏洞列表 352348

CVE ID	标题	严重程度	CVSS	发布时间	受影响产品	数据源
CVE-2025-62961	WordPress Sparkle FSE theme <= 1.0.9 - Broken Access Control vulnerability	MEDIUM	5.4	2025-12-18	Sparkle WP Sparkle FSE	CVE NVD
CVE-2025-62998	WordPress WP AI CoPilot plugin <= 1.2.7 - Sensitive Data Exposure vulnerability	MEDIUM	5.0	2025-12-18	WP Messiah WP AI CoPilot	CVE NVD
CVE-2025-63002	WordPress Sermon Manager plugin <= 2.30.0 - Broken Access Control vulnerability	MEDIUM	5.3	2025-12-18	wpforchurch Sermon Manager	CVE NVD
CVE-2025-63043	WordPress Post Grid and Gutenberg Blocks plugin <= 2.3.19 - Insecure Direct Object References (IDOR) vulnerability	MEDIUM	5.3	2025-12-18	PickPlugins Post Grid and Gutenberg Blocks	CVE NVD
CVE-2025-64235	WordPress Tuturn plugin < 3.6 - Arbitrary File Download vulnerability	MEDIUM	6.5	2025-12-18	AmentoTech Tuturn	CVE NVD
CVE-2025-64236	WordPress Tuturn plugin < 3.6 - Broken Authentication vulnerability	CRITICAL	9.8	2025-12-18	AmentoTech Tuturn	CVE NVD
CVE-2025-14896	due to insufficient sanitazation in Vega’s `convert()` function when `safeMode` is enabled and the s...	HIGH	8.7	2025-12-18	yuzutech kroki	CVE NVD
CVE-2025-64282	WordPress Radius Blocks plugin <= 2.2.1 - Insecure Direct Object References (IDOR) vulnerability	MEDIUM	4.3	2025-12-18	RadiusTheme Radius Blocks	CVE NVD
CVE-2025-64355	WordPress JetElements For Elementor plugin <= 2.7.12 - Cross Site Scripting (XSS) vulnerability	MEDIUM	6.5	2025-12-18	Crocoblock JetElements For Elementor	CVE NVD
CVE-2025-66058	WordPress Post Grid and Gutenberg Blocks plugin <= 2.3.17 - Broken Access Control vulnerability	MEDIUM	6.5	2025-12-18	PickPlugins Post Grid and Gutenberg Blocks	CVE NVD
CVE-2025-14878	Tenda WH450 HTTP Request wirelessRestart stack-based overflow	CRITICAL	9.3	2025-12-18	Tenda WH450 tenda wh450_firmware	CVE NVD
CVE-2025-14877	Campcodes Supplier Management System add_retailer.php sql injection	MEDIUM	6.9	2025-12-18	Campcodes Supplier Management System campcodes supplier_management_system	CVE NVD
CVE-2025-14823	Certificate Signing Extension Returns Encrypted Values	MEDIUM	5.3	2025-12-18	ConnectWise ScreenConnect connectwise screenconnect	CVE NVD
CVE-2025-68469	ImageMagick 安全漏洞	LOW	2.0	2025-12-18	ImageMagick ImageMagick imagemagick imagemagick	CVE NVD +1
CVE-2025-68278	TinaCMS 代码注入漏洞	HIGH	7.3	2025-12-18	tinacms tinacms tinacms tinacms +1个	CVE NVD +1
CVE-2025-64724	Arduino IDE for macOS has Insecure File Permissions	MEDIUM	4.8	2025-12-18	arduino arduino-ide	CVE NVD
CVE-2025-64723	Arduino IDE 安全漏洞	MEDIUM	4.8	2025-12-18	arduino arduino-ide	CVE NVD +1
CVE-2025-65011	WODESYS WD-R608U 安全漏洞	HIGH	7.1	2025-12-18	WODESYS WD-R608U WODESYS WDR28 +1个	CVE NVD +1
CVE-2025-65010	WODESYS WD-R608U 访问控制错误漏洞	HIGH	7.1	2025-12-18	WODESYS WD-R608U WODESYS WDR28 +1个	CVE NVD +1
CVE-2025-65009	WODESYS WD-R608U 安全漏洞	HIGH	7.1	2025-12-18	WODESYS WD-R608U WODESYS WDR28 +1个	CVE NVD +1

耗时统计

总耗时:	251.36 ms
构建查询耗时:	0.0 ms
统计耗时:	243.54 ms
获取数据耗时:	6.11 ms
数据转换耗时:	1.71 ms

数据统计

匹配文档数:	352348
返回文档数:	20
当前页码:	281
每页数量:	20
跳过记录数:	5600

查询详情

查询集合:	`uni_vulnerabilities`
使用过滤器:	否
搜索关键词:	-
严重程度:	-
数据源:	-
效率分析:	良好查询速度正常

优化建议：

匹配文档数量很大（352348），建议使用更精确的搜索条件
当前未使用任何过滤条件，查询全部数据可能较慢

漏洞列表 352348

参考链接