快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352547
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-1029 |
Hardcoded Credentials in Utarit Informatics' SoliClub
|
HIGH | 7.5 | 2025-12-18 |
Utarit Information Services Inc. SoliClub
utarit soliclub
|
CVE NVD | |
| CVE-2025-9787 |
Stored XSS
|
MEDIUM | 6.1 | 2025-12-18 |
Zohocorp ManageEngine Applications Manager
|
CVE NVD | |
| CVE-2025-65000 |
Checkmk 安全漏洞
|
LOW | 2.3 | 2025-12-18 |
Checkmk GmbH Checkmk
checkmk checkmk
+2个
|
CVE NVD +1 | |
| CVE-2025-40898 |
Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0
|
HIGH | 7.2 | 2025-12-18 |
Nozomi Networks Guardian
Nozomi Networks CMC
+2个
|
CVE NVD | |
| CVE-2025-40893 |
HTML injection in Asset List in Guardian/CMC before 25.5.0
|
MEDIUM | 5.3 | 2025-12-18 |
Nozomi Networks Guardian
Nozomi Networks CMC
+2个
|
CVE NVD | |
| CVE-2025-40892 |
Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0
|
HIGH | 7.1 | 2025-12-18 |
Nozomi Networks Guardian
Nozomi Networks CMC
+2个
|
CVE NVD | |
| CVE-2025-40891 |
HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0
|
LOW | 2.3 | 2025-12-18 |
Nozomi Networks Guardian
Nozomi Networks CMC
+2个
|
CVE NVD | |
| CVE-2025-13110 |
HUSKY – Products Filter Professional for WooCommerce <= 1.3.7.3 - Authenticated (Subscriber+) Insecure Direct Object Reference via 'woof_add_subscr'
|
MEDIUM | 4.3 | 2025-12-18 |
realmag777 HUSKY – Products Filter Professional for WooCommerce
|
CVE NVD | |
| CVE-2025-14437 |
Hummingbird <= 3.18.0 - Unauthenticated Sensitive Information Exposure via Log File
|
HIGH | 7.5 | 2025-12-18 |
wpmudev Hummingbird Performance – Cache & Page Speed Optimization for Core Web Vitals | Critical CSS | Minify CSS | Defer CSS Javascript | CDN
|
CVE NVD | |
| CVE-2025-14618 |
Sweet Energy Efficiency <= 1.0.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Graph Deletion
|
MEDIUM | 4.3 | 2025-12-18 |
listingthemes Sweet Energy Efficiency
|
CVE NVD | |
| CVE-2025-14277 |
Prime Slider – Addons for Elementor <= 4.0.9 - Authenticated (Subscriber+) Server-Side Request Forgery
|
MEDIUM | 4.3 | 2025-12-18 |
bdthemes Prime Slider – Addons for Elementor
|
CVE NVD | |
| CVE-2025-10910 |
Gaining remote control over Govee devices
|
CRITICAL | 9.3 | 2025-12-18 |
Govee H6056
|
CVE NVD | |
| CVE-2025-40602 |
A local privilege escalation vulnerability due to insufficient authorization in the SonicWall SMA100...
|
MEDIUM | 6.6 | 2025-12-18 |
SonicWall SMA1000
SonicWall SMA1000
+5个
|
CVE NVD | |
| CVE-2025-14364 |
Demo Importer Plus <= 2.0.8 - Missing Authorization to Authenticated (Subscriber+) Site Reset and Privilege Escalation
|
HIGH | 8.8 | 2025-12-18 |
kraftplugins Demo Importer Plus
|
CVE NVD | |
| CVE-2025-13730 |
OpenID Connect Generic Client <= 3.10.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
|
MEDIUM | 6.4 | 2025-12-18 |
daggerhart OpenID Connect Generic Client
|
CVE NVD | |
| CVE-2025-13641 |
Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery <= 3.59.12 - Authenticated (Contributor+) Local File Inclusion via 'template'
|
HIGH | 8.8 | 2025-12-18 |
smub Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery
|
CVE NVD | |
| CVE-2025-64997 |
Insufficient permission validation when showing agent information
|
MEDIUM | 6.3 | 2025-12-18 |
Checkmk GmbH Checkmk
checkmk checkmk
+2个
|
CVE NVD | |
| CVE-2025-14874 |
Nodemailer: nodemailer: denial of service via crafted email address header
|
HIGH | 7.5 | 2025-12-18 |
nodemailer nodemailer
Red Hat Red Hat Advanced Cluster Management for Kubernetes 2
+6个
|
CVE NVD | |
| CVE-2025-14318 |
Improper access validation in M-Files Server
|
MEDIUM | 5.3 | 2025-12-18 |
M-Files Corporation M-Files Server
m-files m-files_server
|
CVE NVD | |
| CVE-2025-67546 |
WordPress WP ERP plugin <= 1.16.6 - Sensitive Data Exposure vulnerability
|
MEDIUM | 6.5 | 2025-12-18 |
weDevs WP ERP
|
CVE NVD |