快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353084
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-65300 |
Coohom SaaS Platform 安全漏洞
|
MEDIUM | 5.4 | 2025-12-09 |
coohom coohom
|
CVE NVD +1 | |
| CVE-2025-65513 |
fetch-mcp v1.0.2 and before is vulnerable to Server-Side Request Forgery (SSRF) vulnerability, which...
|
HIGH | 7.5 | 2025-12-09 |
zcaceres fetch_mcp_server
|
CVE NVD | |
| CVE-2025-65572 |
Allsky Camera 安全漏洞
|
MEDIUM | 6.1 | 2025-12-09 |
allskyteam allsky
|
CVE NVD +1 | |
| CVE-2025-65573 |
Allsky Camera 安全漏洞
|
HIGH | 8.8 | 2025-12-09 |
allskyteam allsky
|
CVE NVD +1 | |
| CVE-2025-65594 |
Open Solutions For Education openSIS 安全漏洞
|
HIGH | 8.1 | 2025-12-09 |
os4ed opensis
|
CVE NVD +1 | |
| CVE-2025-65741 |
Sublime Text 3 Build 3208 or prior for MacOS is vulnerable to Dylib Injection. An attacker could com...
|
CRITICAL | 9.8 | 2025-12-09 |
sublimetext sublime_text_3
|
CVE NVD | |
| CVE-2025-65882 |
An issue was discovered in openmptcprouter thru 0.64 in file common/package/utils/sys-upgrade-helper...
|
CRITICAL | 9.8 | 2025-12-09 |
openmptcprouter openmptcprouter
|
CVE NVD | |
| CVE-2022-50632 |
Linux kernel 安全漏洞
|
UNKNOWN | N/A | 2025-12-08 |
Linux Linux
Linux Linux
|
CVE NVD +1 | |
| CVE-2022-50631 |
Linux kernel 安全漏洞
|
UNKNOWN | N/A | 2025-12-08 |
Linux Linux
Linux Linux
|
CVE NVD +1 | |
| CVE-2025-66469 |
NiceGUI Reflected XSS in ui.add_css, ui.add_scss, and ui.add_sass via Style Injection
|
MEDIUM | 6.1 | 2025-12-08 |
zauberzeug nicegui
zauberzeug nicegui
|
CVE NVD | |
| CVE-2025-66204 |
WBCE CMS 安全漏洞
|
MEDIUM | 6.3 | 2025-12-08 |
WBCE WBCE_CMS
wbce wbce_cms
|
CVE NVD +1 | |
| CVE-2025-66202 |
Astro has an Authentication Bypass via Double URL Encoding, a bypass for CVE-2025-64765
|
MEDIUM | 6.5 | 2025-12-08 |
withastro astro
astro astro
|
CVE NVD | |
| CVE-2025-65964 |
n8n Vulnerable to Remote Code Execution via Git Node Custom Pre-Commit Hook
|
CRITICAL | 9.4 | 2025-12-08 |
n8n-io n8n
n8n n8n
|
CVE NVD | |
| CVE-2025-65962 |
Tuleap has missing CSRF protections its in tracker field dependencies
|
MEDIUM | 4.6 | 2025-12-08 |
Enalean tuleap
Enalean tuleap
+2个
|
CVE NVD | |
| CVE-2025-64760 |
Tuleap has missing CSRF protections in its tracker trigger management system
|
MEDIUM | 4.6 | 2025-12-08 |
Enalean tuleap
Enalean tuleap
+2个
|
CVE NVD | |
| CVE-2025-64499 |
Tuleap is missing CSRF protections for its planning management API
|
MEDIUM | 4.6 | 2025-12-08 |
Enalean tuleap
Enalean tuleap
+3个
|
CVE NVD | |
| CVE-2025-64498 |
Tuleap has a Cross-Site Request Forgery (CSRF) vulnerability
|
MEDIUM | 4.6 | 2025-12-08 |
Enalean tuleap
Enalean tuleap
+3个
|
CVE NVD | |
| CVE-2025-64497 |
Tuleap exposes releases for all projects to File Release System project administrators
|
MEDIUM | 6.5 | 2025-12-08 |
Enalean tuleap
Enalean tuleap
+3个
|
CVE NVD | |
| CVE-2025-36140 |
IBM watsonx.data Denial of Service
|
MEDIUM | 6.5 | 2025-12-08 |
IBM watsonx.data
ibm watsonx.data
|
CVE NVD | |
| CVE-2025-62408 |
c-ares has a Use After Free vulnerability when connection is cleaned up after error
|
MEDIUM | 5.9 | 2025-12-08 |
c-ares c-ares
|
CVE NVD |