快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352871
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-53960 |
Apache StreamPark: Uses the user’s password as the secret key
|
MEDIUM | 5.9 | 2025-12-12 |
Apache Software Foundation Apache StreamPark
apache streampark
|
CVE NVD | |
| CVE-2025-54947 |
Apache StreamPark: Use hard-coded key vulnerability
|
MEDIUM | 5.3 | 2025-12-12 |
Apache Software Foundation Apache StreamPark
apache streampark
|
CVE NVD | |
| CVE-2025-54981 |
Apache StreamPark: Weak Encryption Algorithm in StreamPark
|
HIGH | 7.5 | 2025-12-12 |
Apache Software Foundation Apache StreamPark
apache streampark
|
CVE NVD | |
| CVE-2025-36746 |
SolarEdge Monitoring Platform contains a XSS upon report deletion
|
MEDIUM | 4.8 | 2025-12-12 |
SolarEdge SolarEdge Monitoring platform (SaaS)
solaredge solaredge_monitoring_platform
|
CVE NVD | |
| CVE-2025-36743 |
SolarEdge SE3680H - Exposed Debug interface
|
HIGH | 8.6 | 2025-12-12 |
SolarEdge SE3680H
solaredge se3680h_firmware
|
CVE NVD | |
| CVE-2025-36744 |
SolarEdge SE3680H 安全漏洞
|
LOW | 2.4 | 2025-12-12 |
SolarEdge SE3680H
solaredge se3680h_firmware
|
CVE NVD +1 | |
| CVE-2025-36745 |
SolarEdge SE3680H contains Linux Kernel vulnerabilities
|
HIGH | 8.6 | 2025-12-12 |
SolarEdge SE3680H
solaredge se3680h_firmware
|
CVE NVD | |
| CVE-2025-58770 |
AMI AptioV 安全漏洞
|
HIGH | 7.2 | 2025-12-12 |
AMI AptioV
ami aptio_v
|
CVE NVD +1 | |
| CVE-2025-36755 |
CleverDisplay BlueOne 安全漏洞
|
LOW | 2.4 | 2025-12-12 |
CleverDisplay B.V. BlueOne (CleverDisplay Hardware Player)
|
CVE NVD +1 | |
| CVE-2025-13506 |
Improper Authorization in Nebim Neyir's Nebim V3 ERP
|
HIGH | 8.8 | 2025-12-12 |
Nebim Neyir Computer Industry and Services Inc. Nebim V3 ERP
|
CVE NVD | |
| CVE-2025-14030 |
AI Feeds <= 1.0.22 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'aife_post_meta' Shortcode
|
MEDIUM | 6.4 | 2025-12-12 |
soportecibeles AI Feeds
|
CVE NVD | |
| CVE-2025-12407 |
Events Manager – Calendar, Bookings, Tickets, and more! <= 7.2.2.2 - Cross-Site Request Forgery to Location Deletion
|
MEDIUM | 4.3 | 2025-12-12 |
netweblogic Events Manager – Calendar, Bookings, Tickets, and more!
|
CVE NVD | |
| CVE-2025-12408 |
Events Manager <= 7.2.2.2 - Unauthenticated Information Exposure
|
MEDIUM | 5.3 | 2025-12-12 |
netweblogic Events Manager – Calendar, Bookings, Tickets, and more!
|
CVE NVD | |
| CVE-2025-12965 |
Magical Posts Display <= 1.2.54 - Authenticated (Author+) Stored Cross-Site Scripting via Magical Posts Accordion Widget
|
MEDIUM | 6.4 | 2025-12-12 |
nalam-1 Magical Posts Display – Elementor Advanced Posts widgets
|
CVE NVD | |
| CVE-2025-14159 |
Secure Copy Content Protection and Content Locking <= 4.9.2 - Cross-Site Request Forgery to Data Export
|
MEDIUM | 4.3 | 2025-12-12 |
ays-pro Secure Copy Content Protection and Content Locking
|
CVE NVD | |
| CVE-2025-14442 |
Secure Copy Content Protection and Content Locking <= 4.9.2 - Unauthenticated Sensitive Information Exposure via Exposed CSV Export File
|
MEDIUM | 5.3 | 2025-12-12 |
ays-pro Secure Copy Content Protection and Content Locking
|
CVE NVD | |
| CVE-2025-14065 |
Simple Bike Rental <= 1.0.6 - Missing Authorization to Authenticated (Subscriber+) Sensitive Booking Data Exposure
|
MEDIUM | 5.3 | 2025-12-12 |
rodolforizzo76 Simple Bike Rental
|
CVE NVD | |
| CVE-2025-12835 |
WooMulti <= 1.7 - Subscriber+ Arbitrary File Deletion
|
HIGH | 7.3 | 2025-12-12 |
Unknown WooMulti
|
CVE NVD | |
| CVE-2025-12841 |
Bookit < 2.5.1 – Unauthenticated Settings Update
|
MEDIUM | 5.3 | 2025-12-12 |
Unknown Bookit
|
CVE NVD | |
| CVE-2025-26866 |
Apache HugeGraph-Server: RAFT and deserialization vulnerability
|
HIGH | 8.8 | 2025-12-12 |
Apache Software Foundation Apache HugeGraph-Server
apache hugegraph
|
CVE NVD |