快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353084
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-42616 |
CSRF vulnerability in CIRCL Vulnerability-Lookup
|
HIGH | 7.0 | 2025-12-08 |
CIRCL Vulnerability-Lookup
|
CVE NVD | |
| CVE-2025-14244 |
GreenCMS Menu Management CustomController.class.php cross site scripting
|
MEDIUM | 4.8 | 2025-12-08 |
njtech greencms
|
CVE NVD | |
| CVE-2025-42615 |
Improper Restriction of Excessive Authentication Attempts vulnerability in CIRCL Vulnerability-Lookup
|
HIGH | 8.1 | 2025-12-08 |
CIRCL Vulnerability-Lookup
|
CVE NVD | |
| CVE-2025-14230 |
code-projects Daily Time Recording System add_payroll.php sql injection
|
MEDIUM | 5.3 | 2025-12-08 |
code-projects Daily Time Recording System
carmelo daily_time_recording_system
|
CVE NVD | |
| CVE-2025-14229 |
SourceCodester Inventory Management System SVC Report Export csv injection
|
MEDIUM | 5.1 | 2025-12-08 |
SourceCodester Inventory Management System
warren-daloyan inventory_management_system
|
CVE NVD | |
| CVE-2025-14228 |
Yealink SIP-T21P E2 Local Directory cross site scripting
|
MEDIUM | 5.1 | 2025-12-08 |
Yealink SIP-T21P E2
|
CVE NVD | |
| CVE-2025-14227 |
Philipinho Simple-PHP-Blog edit.php sql injection
|
MEDIUM | 5.3 | 2025-12-08 |
Philipinho Simple-PHP-Blog
philipinho simple-php-blog
|
CVE NVD | |
| CVE-2025-14262 |
Jobs can be saved as workflows with wrong permissions on KNIME Business Hub
|
MEDIUM | 5.3 | 2025-12-08 |
KNIME KNIME Business Hub
|
CVE NVD | |
| CVE-2025-14226 |
itsourcecode Student Management System edit_user.php sql injection
|
MEDIUM | 6.9 | 2025-12-08 |
itsourcecode Student Management System
angeljudesuarez student_management_system
|
CVE NVD | |
| CVE-2025-66461 |
FULLBACK Manager Pro provided by GS Yuasa International Ltd. registers two Windows services with un...
|
HIGH | 8.4 | 2025-12-08 |
GS Yuasa International Ltd. FULLBACK Manager Pro (for Windows)
GS Yuasa International Ltd. FULLBACK Manager Pro for Network (for Windows)
|
CVE NVD | |
| CVE-2025-27020 |
Improper configuration of SSH service in Infinera MTC-9
|
CRITICAL | 9.8 | 2025-12-08 |
Infinera MTC-9
nokia infinera_mtc-9_firmware
|
CVE NVD | |
| CVE-2025-27019 |
Remote shell service (RSH) in Infinera MTC-9
|
CRITICAL | 9.8 | 2025-12-08 |
Infinera MTC-9
nokia infinera_mtc-9_firmware
|
CVE NVD | |
| CVE-2025-14225 |
D-Link DCS-930L alphapd setSystemAdmin command injection
|
MEDIUM | 5.3 | 2025-12-08 |
D-Link DCS-930L
dlink dcs-930l_firmware
|
CVE NVD | |
| CVE-2025-26489 |
Improper input validation in Netconf service in Infinera MTC-9
|
MEDIUM | 6.5 | 2025-12-08 |
Infinera MTC-9
nokia infinera_mtc-9_firmware
|
CVE NVD | |
| CVE-2025-26488 |
Improper input validation in XML Management service in Infinera MTC-9
|
HIGH | 7.5 | 2025-12-08 |
Infinera MTC-9
nokia infinera_mtc-9_firmware
|
CVE NVD | |
| CVE-2025-26487 |
Server Side Request Forgery (SSRF) in the web server of Infinera MTC-9
|
HIGH | 8.6 | 2025-12-08 |
Infinera MTC-9
nokia infinera_mtc-9_firmware
|
CVE NVD | |
| CVE-2025-12956 |
Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x
|
HIGH | 8.7 | 2025-12-08 |
Dassault Systèmes ENOVIA Collaborative Industry Innovator
3ds 3dexperience_enovia
|
CVE NVD | |
| CVE-2025-66330 |
App lock verification bypass vulnerability in the file management app. Impact: Successful exploitati...
|
MEDIUM | 4.9 | 2025-12-08 |
Huawei HarmonyOS
Huawei HarmonyOS
+4个
|
CVE NVD | |
| CVE-2025-66329 |
Permission control vulnerability in the window management module. Impact: Successful exploitation of...
|
MEDIUM | 4.0 | 2025-12-08 |
Huawei HarmonyOS
Huawei HarmonyOS
+22个
|
CVE NVD | |
| CVE-2025-14224 |
Yottamaster DM2/DM3/DM200 File Upload path traversal
|
MEDIUM | 5.3 | 2025-12-08 |
Yottamaster DM2
Yottamaster DM2
+112个
|
CVE NVD |