精确匹配,速度快(10-50ms)
常用厂商: microsoft cisco google apple oracle
10-50ms
示例: microsoft sql_server cisco ios apache http_server
漏洞列表 353571
CVE ID 标题 严重程度 CVSS 发布时间 受影响产品 数据源 操作
CVE-2024-32642
Host header poisoning allows account takeover via password reset email
HIGH 8.8 2025-12-03
MasaCMS MasaCMS MasaCMS MasaCMS +2个
CVE NVD
CVE-2025-13492
HP Image Assistant - Potential Escalation of Privilege
MEDIUM 5.4 2025-12-03
HP Inc HP Image Assistant hp image_assistant
CVE NVD
CVE-2024-32641
Masa CMS Vulnerable to Pre-Auth RCE via JSON API
CRITICAL 9.8 2025-12-03
MasaCMS MasaCMS MasaCMS MasaCMS +2个
CVE NVD
CVE-2025-13751
Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7_alpha1 through 2.7_rc2 on ...
LOW 1.3 2025-12-03
OpenVPN OpenVPN openvpn openvpn +1个
CVE NVD
CVE-2025-7044
Privilege Escalation in MAAS via Websocket Request Manipulation
HIGH 7.7 2025-12-03
Ubuntu MAAS canonical maas
CVE NVD
CVE-2025-55182
A pre-authentication remote code execution vulnerability exists in React Server Components versions ...
CRITICAL 10.0 2025-12-03
Meta react-server-dom-webpack Meta react-server-dom-turbopack +9个
CVE NVD
CVE-2025-13949
ProudMuBai GoFilm FileController.go SingleUpload unrestricted upload
MEDIUM 5.3 2025-12-03
ProudMuBai GoFilm ProudMuBai GoFilm
CVE NVD
CVE-2025-13948
opsre go-ldap-admin JWT docker-compose.yaml hard-coded key
MEDIUM 6.3 2025-12-03
opsre go-ldap-admin
CVE NVD
CVE-2025-13359
Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI <= 3.40.1 - Authenticated (Contributor+) SQL Injection
MEDIUM 6.5 2025-12-03
stevejburge Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI taxopress taxopress
CVE NVD
CVE-2025-13756
Fluent Booking – The Ultimate Appointments Scheduling, Events Booking, Events Calendar Solution <= 1.9.11 - Authenticated (Subscriber+) Missing Authorization to Calendar Import and Management
MEDIUM 4.3 2025-12-03
techjewel Fluent Booking – The Ultimate Appointments Scheduling, Events Booking, Events Calendar Solution
CVE NVD
CVE-2025-13401
Autoptimize <= 3.1.13 - Authenticated (Contributor+) Stored Cross-Site Scripting
MEDIUM 6.4 2025-12-03
optimizingmatters Autoptimize
CVE NVD
CVE-2025-13390
WP Directory Kit <= 1.4.4 - Authentication Bypass to Privilege Escalation via Account Takeover
CRITICAL 10.0 2025-12-03
listingthemes WP Directory Kit wpdirectorykit wp_directory_kit
CVE NVD
CVE-2025-13354
Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI <= 3.40.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Taxonomy Term Manipulation
MEDIUM 4.3 2025-12-03
stevejburge Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI taxopress taxopress
CVE NVD
CVE-2025-13109
HUSKY – Products Filter Professional for WooCommerce <= 1.3.7.2 - Authenticated (Subscriber+) Insecure Direct Object Reference via 'woof_add_query/woof_remove_query'
MEDIUM 4.3 2025-12-03
realmag777 HUSKY – Products Filter Professional for WooCommerce
CVE NVD
CVE-2025-12358
ShopEngine <= 4.8.5 - Cross-Site Request Forgery to Wishlist Manipulation
MEDIUM 4.3 2025-12-03
roxnor ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution
CVE NVD
CVE-2025-13342
Frontend Admin by DynamiApps <= 3.28.20 - Unauthenticated Arbitrary Options Update
CRITICAL 9.8 2025-12-03
shabti Frontend Admin by DynamiApps
CVE NVD
CVE-2025-12887
Post SMTP – Complete SMTP Solution with Logs, Alerts, Backup SMTP & Mobile App <= 3.6.1 - Missing Authorization to Authenticated (Subscriber+) OAuth Token Update
MEDIUM 5.4 2025-12-03
saadiqbal Post SMTP – Complete SMTP Solution with Logs, Alerts, Backup SMTP & Mobile App
CVE NVD
CVE-2025-39665
Livestatus Injection in dynmaps
MEDIUM 6.9 2025-12-03
Nagvis Nagvis nagvis nagvis
CVE NVD
CVE-2025-13947
Webkit: webkitgtk: remote user-assisted information disclosure via file drag-and-drop
HIGH 7.4 2025-12-03
The WebKitGTK Team webkitgtk Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support +16个
CVE NVD
CVE-2025-13472
Missing authorization in BlazeMeter Jenkins Plugin
MEDIUM 5.3 2025-12-03
Perforce BlazeMeter
CVE NVD