快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 354299
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-42887 |
Code Injection vulnerability in SAP Solution Manager
|
CRITICAL | 9.9 | 2025-11-11 |
SAP_SE SAP Solution Manager
|
CVE NVD | |
| CVE-2025-42886 |
Reflected Cross-Site Scripting (XSS) vulnerability in SAP Business Connector
|
MEDIUM | 6.1 | 2025-11-11 |
SAP_SE SAP Business Connector
sap business_connector
|
CVE NVD | |
| CVE-2025-42885 |
Missing authentication in SAP HANA 2.0 (hdbrss)
|
MEDIUM | 5.8 | 2025-11-11 |
SAP_SE SAP HANA 2.0 (hdbrss)
|
CVE NVD | |
| CVE-2025-42884 |
JNDI Injection vulnerability in SAP NetWeaver Enterprise Portal
|
MEDIUM | 6.5 | 2025-11-11 |
SAP_SE SAP NetWeaver Enterprise Portal
SAP_SE SAP NetWeaver Enterprise Portal
|
CVE NVD | |
| CVE-2025-42883 |
Insecure File Operations vulnerability in SAP NetWeaver Application Server for ABAP (Migration Workbench)
|
LOW | 2.7 | 2025-11-11 |
SAP_SE SAP NetWeaver Application Server for ABAP (Migration Workbench)
SAP_SE SAP NetWeaver Application Server for ABAP (Migration Workbench)
+13个
|
CVE NVD | |
| CVE-2025-42882 |
Missing Authorization check in SAP NetWeaver Application Server for ABAP
|
MEDIUM | 4.3 | 2025-11-11 |
SAP_SE SAP NetWeaver Application Server for ABAP
SAP_SE SAP NetWeaver Application Server for ABAP
+13个
|
CVE NVD | |
| CVE-2024-57695 |
An issue in Agnitum Outpost Security Suite 7.5.3 (3942.608.1810) and 7.6 (3984.693.1842) allows a lo...
|
HIGH | 7.7 | 2025-11-11 |
opswat outpost_security_suite
opswat outpost_security_suite
|
CVE NVD | |
| CVE-2025-11578 |
Pre-Receive Hook Path Collision Vulnerability in GitHub Enterprise Server Allowing Privilege Escalation
|
HIGH | 7.5 | 2025-11-10 |
GitHub Enterprise Server
github enterprise_server
|
CVE NVD | |
| CVE-2025-11892 |
DOM-based Cross-Site Scripting was identified in GitHub Enterprise Server Issues search allows privilege escalation and unauthorized workflow triggers
|
HIGH | 8.6 | 2025-11-10 |
GitHub Enterprise Server
github enterprise_server
+1个
|
CVE NVD | |
| CVE-2021-4462 |
Employee Records System v1.0 Arbitrary File Upload RCE
|
CRITICAL | 9.3 | 2025-11-10 |
Employee Records System Employee Records System
skittles employee_records_system
|
CVE NVD | |
| CVE-2018-25124 |
PacsOne Server 6.6.2 DICOM Web Viewer Directory Traversal LFI
|
HIGH | 8.7 | 2025-11-10 |
RainbowFish Software PacsOne Server
|
CVE NVD | |
| CVE-2025-64529 |
SpiceDB's WriteRelationships fails silently if payload is too big
|
LOW | 2.7 | 2025-11-10 |
authzed spicedb
authzed spicedb
|
CVE NVD | |
| CVE-2025-64519 |
TorrentPier is Vulnerable to Authenticated SQL Injection through Moderator Control Panel's topic_id parameter
|
HIGH | 8.8 | 2025-11-10 |
torrentpier torrentpier
torrentpier torrentpier
|
CVE NVD | |
| CVE-2025-64522 |
Soft Serve is vulnerable to SSRF through its Webhooks
|
CRITICAL | 9.1 | 2025-11-10 |
charmbracelet soft-serve
charm soft_serve
|
CVE NVD | |
| CVE-2025-64518 |
CycloneDX Core (Java): BOM validation is vulnerable to XML External Entity injection
|
HIGH | 7.5 | 2025-11-10 |
CycloneDX cyclonedx-core-java
|
CVE NVD | |
| CVE-2025-64513 |
Milvus Proxy has Critical Authentication Bypass Vulnerability
|
CRITICAL | 9.3 | 2025-11-10 |
milvus-io milvus
milvus-io milvus
+1个
|
CVE NVD | |
| CVE-2025-64512 |
pdfminer.six vulnerable to Arbitrary Code Execution via Crafted PDF Input
|
HIGH | 8.6 | 2025-11-10 |
pdfminer pdfminer.six
pdfminer pdfminer.six
+1个
|
CVE NVD | |
| CVE-2025-64507 |
Incus 安全漏洞
|
HIGH | 8.6 | 2025-11-10 |
lxc incus
lxc incus
+1个
|
CVE NVD +1 | |
| CVE-2025-64504 |
Langfuse vulnerable to cross‑organization enumeration of member & invitation lists via project membership APIs
|
MEDIUM | 5.0 | 2025-11-10 |
langfuse langfuse
langfuse langfuse
+1个
|
CVE NVD | |
| CVE-2025-64509 |
Bugsink vulnerable to unauthenticated remote DoS via crafted Brotli input (via CPU)
|
HIGH | 7.5 | 2025-11-10 |
bugsink bugsink
|
CVE NVD |