快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 354145
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-7736 |
Incorrect Authorization in GitLab
|
LOW | 3.1 | 2025-11-15 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-11865 |
Incorrect Authorization in GitLab
|
MEDIUM | 4.3 | 2025-11-15 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-11990 |
Improper Handling of URL Encoding (Hex Encoding) in GitLab
|
LOW | 3.1 | 2025-11-15 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-13191 |
D-Link DIR-816L soap.cgi soapcgi_main stack-based overflow
|
HIGH | 8.7 | 2025-11-15 |
D-Link DIR-816L
dlink dir-816l_firmware
|
CVE NVD | |
| CVE-2025-12849 |
Contest Gallery <= 28.0.2 - Missing Authorization
|
MEDIUM | 5.3 | 2025-11-15 |
contest-gallery Contest Gallery – Upload, Vote & Sell with PayPal and Stripe
|
CVE NVD | |
| CVE-2025-13190 |
D-Link DIR-816L __ajax_exporer.sgi scandir_main stack-based overflow
|
HIGH | 8.7 | 2025-11-15 |
D-Link DIR-816L
dlink dir-816l_firmware
|
CVE NVD | |
| CVE-2025-13189 |
D-Link DIR-816L gena.cgi genacgi_main stack-based overflow
|
HIGH | 8.7 | 2025-11-15 |
D-Link DIR-816L
dlink dir-816l_firmware
|
CVE NVD | |
| CVE-2025-12494 |
Image Gallery – Photo Grid & Video Gallery <= 2.12.28 - Improper Authorization to Authenticated (Author+) Arbitrary Image File Move
|
MEDIUM | 4.3 | 2025-11-15 |
wpchill Image Gallery – Photo Grid & Video Gallery
|
CVE NVD | |
| CVE-2025-8994 |
WP Project Manager <= 2.6.26 - Authenticated (Subscriber+) SQL Injection via 'completed_at_operator'
|
MEDIUM | 6.5 | 2025-11-15 |
wedevs Project Management & Task Manager with Kanban Board & Gantt Chart – WP Project Manager
|
CVE NVD | |
| CVE-2025-12847 |
All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic <= 4.8.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Media Deletion
|
MEDIUM | 4.3 | 2025-11-15 |
smub All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic
|
CVE NVD | |
| CVE-2025-12182 |
Qi Blocks <= 1.4.3 - Missing Authorization to Arbitrary Attachment Resize
|
MEDIUM | 4.3 | 2025-11-15 |
qodeinteractive Qi Blocks
|
CVE NVD | |
| CVE-2025-8386 |
AVEVA Application Server IDE Basic Cross-site Scripting
|
HIGH | 7.2 | 2025-11-14 |
AVEVA Application Server
|
CVE NVD | |
| CVE-2025-9317 |
AVEVA Edge Use of a Broken or Risky Cryptographic Algorithm
|
HIGH | 8.3 | 2025-11-14 |
AVEVA Edge
|
CVE NVD | |
| CVE-2025-64309 |
Brightpick Mission Control / Internal Logic Control Unprotected Transport of Credentials
|
HIGH | 8.2 | 2025-11-14 |
Brightpick AI Brightpick Mission Control / Internal Logic Control
|
CVE NVD | |
| CVE-2025-64308 |
Brightpick Mission Control / Internal Logic Control Unprotected Transport of Credentials
|
HIGH | 8.7 | 2025-11-14 |
Brightpick AI Brightpick Mission Control / Internal Logic Control
|
CVE NVD | |
| CVE-2025-64307 |
Brightpick Mission Control / Internal Logic Control Missing Authentication for Critical Function
|
HIGH | 7.1 | 2025-11-14 |
Brightpick AI Brightpick Mission Control / Internal Logic Control
|
CVE NVD | |
| CVE-2025-62765 |
General Industrial Controls Lynx+ Gateway Cleartext Transmission of Sensitive Information
|
HIGH | 8.7 | 2025-11-14 |
General Industrial Controls Lynx+ Gateway
General Industrial Controls Lynx+ Gateway
+2个
|
CVE NVD | |
| CVE-2025-59780 |
General Industrial Controls Lynx+ Gateway Missing Authentication for Critical Function
|
HIGH | 8.7 | 2025-11-14 |
General Industrial Controls Lynx+ Gateway
General Industrial Controls Lynx+ Gateway
+2个
|
CVE NVD | |
| CVE-2025-58083 |
General Industrial Controls Lynx+ Gateway Missing Authentication for Critical Function
|
CRITICAL | 9.2 | 2025-11-14 |
General Industrial Controls Lynx+ Gateway
General Industrial Controls Lynx+ Gateway
+2个
|
CVE NVD | |
| CVE-2025-55034 |
General Industrial Controls Lynx+ Gateway Weak Password Requirements
|
HIGH | 8.8 | 2025-11-14 |
General Industrial Controls Lynx+ Gateway
General Industrial Controls Lynx+ Gateway
+2个
|
CVE NVD |