快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353571
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-65112 |
PubNet Critical Authentication Bypass Allows Unauthenticated Package Upload and Identity Spoofing
|
CRITICAL | 9.4 | 2025-11-29 |
ricardoboss PubNet
ricardoboss pubnet
|
CVE NVD | |
| CVE-2025-65113 |
ClipBucket v5 Unauthenticated Object Flagging Vulnerability
|
MEDIUM | 6.5 | 2025-11-29 |
MacWarrior clipbucket-v5
oxygenz clipbucket
|
CVE NVD | |
| CVE-2025-64715 |
Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic
|
MEDIUM | 4.0 | 2025-11-29 |
cilium cilium
cilium cilium
+2个
|
CVE NVD | |
| CVE-2025-65540 |
Multiple Cross-Site Scripting (XSS) vulnerabilities exist in xmall v1.1 due to improper handling of ...
|
MEDIUM | 6.1 | 2025-11-29 |
exrick xmall
|
CVE NVD | |
| CVE-2025-65892 |
Reflected Cross-Site Scripting (rXSS) in krpano before version 1.23.2 allows a remote unauthenticate...
|
MEDIUM | 6.1 | 2025-11-29 |
krpano krpano
|
CVE NVD | |
| CVE-2025-13683 |
Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on Wind...
|
MEDIUM | 6.5 | 2025-11-28 |
Devolutions Server
Devolutions Remote Desktop Manager
+2个
|
CVE NVD | |
| CVE-2025-12183 |
LZ4 Java 安全漏洞
|
HIGH | 8.8 | 2025-11-28 |
未知
|
CVE NVD +1 | |
| CVE-2025-11156 |
Improper Service Loading Vulnerability in Netskope Endpoint DLP Driver
|
MEDIUM | 5.9 | 2025-11-28 |
Netskope Netskope Client
|
CVE NVD | |
| CVE-2025-59792 |
Apache Kvrocks: MONITOR command reveals plaintext credentials to non-admins
|
MEDIUM | 5.3 | 2025-11-28 |
Apache Software Foundation Apache Kvrocks
apache kvrocks
|
CVE NVD | |
| CVE-2025-59790 |
Apache Kvrocks: RESET command grants admin privileges
|
MEDIUM | 5.4 | 2025-11-28 |
Apache Software Foundation Apache Kvrocks
apache kvrocks
|
CVE NVD | |
| CVE-2025-12638 |
Path Traversal Vulnerability in keras-team/keras via Tar Archive Extraction in keras.utils.get_file()
|
HIGH | 8.0 | 2025-11-28 |
keras-team keras-team/keras
|
CVE NVD | |
| CVE-2025-12143 |
Stack Memory Corruption Vulnerability
|
MEDIUM | 6.9 | 2025-11-28 |
ABB Terra AC wallbox
|
CVE NVD | |
| CVE-2025-13771 |
Uniong|WebITR - Arbitrary File Read
|
HIGH | 7.1 | 2025-11-28 |
Uniong WebITR
uniong webitr
|
CVE NVD | |
| CVE-2025-13770 |
Uniong|WebITR - SQL Injection
|
HIGH | 7.1 | 2025-11-28 |
Uniong WebITR
uniong webitr
|
CVE NVD | |
| CVE-2025-13769 |
Uniong|WebITR - SQL Injection
|
HIGH | 7.1 | 2025-11-28 |
Uniong WebITR
uniong webitr
|
CVE NVD | |
| CVE-2025-13768 |
Uniong|WebITR - Authorization Bypass
|
HIGH | 7.7 | 2025-11-28 |
Uniong WebITR
uniong webitr
|
CVE NVD | |
| CVE-2025-13737 |
Nextend Social Login and Register <= 3.1.21 - Cross-Site Request Forgery to Unlink User Social Login
|
MEDIUM | 4.3 | 2025-11-28 |
nextendweb Nextend Social Login and Register
|
CVE NVD | |
| CVE-2025-64312 |
Permission control vulnerability in the file management module.
Impact: Successful exploitation of t...
|
MEDIUM | 4.9 | 2025-11-28 |
Huawei HarmonyOS
Huawei HarmonyOS
+4个
|
CVE NVD | |
| CVE-2025-58311 |
UAF vulnerability in the USB driver module.
Impact: Successful exploitation of this vulnerability wi...
|
MEDIUM | 5.8 | 2025-11-28 |
Huawei HarmonyOS
Huawei HarmonyOS
+16个
|
CVE NVD | |
| CVE-2025-58308 |
Vulnerability of improper criterion security check in the call module.
Impact: Successful exploitati...
|
HIGH | 7.3 | 2025-11-28 |
Huawei HarmonyOS
Huawei HarmonyOS
+4个
|
CVE NVD |