快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352871
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-12684 |
WordPress plugin URL Shortify 安全漏洞
|
HIGH | 7.1 | 2025-12-15 |
Unknown URL Shortify
|
CVE NVD +1 | |
| CVE-2025-11363 |
WordPress plugin Royal Addons for Elementor 安全漏洞
|
MEDIUM | 5.3 | 2025-12-15 |
Unknown Royal Addons for Elementor
|
CVE NVD +1 | |
| CVE-2025-14712 |
JHENG GAO|Student Learning Assessment and Support System - Exposure of Sensitive Information
|
HIGH | 8.7 | 2025-12-15 |
JHENG GAO Student Learning Assessment and Support System
|
CVE NVD | |
| CVE-2025-14549 |
OMR on Z processors Exposing a possible buffer over-read problem
|
MEDIUM | 6.9 | 2025-12-15 |
Eclipse OMR Eclipse OMR
eclipse omr
|
CVE NVD | |
| CVE-2025-14706 |
Shiguangwu sgwbox N3 NETREBOOT http_eshell_server command injection
|
CRITICAL | 9.3 | 2025-12-15 |
Shiguangwu sgwbox N3
sgwbox n3_firmware
|
CVE NVD | |
| CVE-2025-14705 |
Shiguangwu sgwbox N3 SHARESERVER Feature command injection
|
CRITICAL | 9.3 | 2025-12-15 |
Shiguangwu sgwbox N3
sgwbox n3_firmware
|
CVE NVD | |
| CVE-2025-14704 |
Shiguangwu sgwbox N3 API eshell path traversal
|
MEDIUM | 6.9 | 2025-12-15 |
Shiguangwu sgwbox N3
sgwbox n3_firmware
|
CVE NVD | |
| CVE-2025-14703 |
Shiguangwu sgwbox N3 POST Message fsnotify improper authentication
|
MEDIUM | 6.9 | 2025-12-15 |
Shiguangwu sgwbox N3
sgwbox n3_firmware
|
CVE NVD | |
| CVE-2025-67907 |
NOT_EXTRACTED
|
LOW | -1.0 | 2025-12-15 |
未知
|
CVE NVD | |
| CVE-2025-14702 |
Smartbit CommV Smartschool App be.smartschool.mobile.SplashActivity path traversal
|
MEDIUM | 4.8 | 2025-12-15 |
Smartbit CommV Smartschool App
Smartbit CommV Smartschool App
+3个
|
CVE NVD | |
| CVE-2025-67906 |
In MISP before 2.5.28, app/View/Elements/Workflows/executionPath.ctp allows XSS in the workflow exec...
|
MEDIUM | 5.4 | 2025-12-15 |
MISP MISP
misp misp
|
CVE NVD | |
| CVE-2025-13740 |
Lightweight Accordion <= 1.5.20 - Authenticated (Contributor+) Stored Cross-Site Scripting
|
MEDIUM | 6.4 | 2025-12-15 |
someguy9 Lightweight Accordion
|
CVE NVD | |
| CVE-2025-14699 |
Municorn FAX App biz.faxapp.app path traversal
|
MEDIUM | 4.8 | 2025-12-15 |
Municorn FAX App
|
CVE NVD | |
| CVE-2025-14698 |
atlaszz AI Photo Team Galleryit App gallery.photogallery.pictures.vault.album path traversal
|
MEDIUM | 4.8 | 2025-12-15 |
atlaszz AI Photo Team Galleryit App
|
CVE NVD | |
| CVE-2025-14697 |
Shenzhen Sixun Software Sixun Shanghui Group Business Management System ExportFiles file access
|
MEDIUM | 6.3 | 2025-12-15 |
Shenzhen Sixun Software Sixun Shanghui Group Business Management System
|
CVE NVD | |
| CVE-2025-14696 |
Shenzhen Sixun Software Sixun Shanghui Group Business Management System UpdatePasswordBatch password recovery
|
MEDIUM | 6.9 | 2025-12-15 |
Shenzhen Sixun Software Sixun Shanghui Group Business Management System
|
CVE NVD | |
| CVE-2025-14695 |
SamuNatsu HaloBot Inter-plugin API index.js html_renderer dynamically-managed code resources
|
MEDIUM | 5.3 | 2025-12-15 |
SamuNatsu HaloBot
|
CVE NVD | |
| CVE-2025-14694 |
ketr JEPaaS readAllPostil sql injection
|
MEDIUM | 5.1 | 2025-12-15 |
ketr JEPaaS
ketr JEPaaS
+7个
|
CVE NVD | |
| CVE-2025-14693 |
Ugreen DH2100+ USB symlink
|
HIGH | 7.0 | 2025-12-15 |
Ugreen DH2100+
Ugreen DH2100+
+2个
|
CVE NVD | |
| CVE-2023-36337 |
A reflected cross-site scripting (XSS) vulnerability in the component /index.php/cuzh4 of PHP Invent...
|
MEDIUM | 6.1 | 2025-12-15 |
inventory_management_system_project inventory_management_system
|
CVE NVD |