快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358424
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-66945 |
A path traversal vulnerability exists in the ZIP extraction API of Zdir Pro 4.x. When a crafted ZIP
|
CRITICAL | 9.1 | 2026-03-03 |
zdir zdir
|
NVD | |
| CVE-2025-36364 |
IBM DevOps Plan 3.0.0 through 3.0.5 allows web page cache to be stored locally which can be read by
|
MEDIUM | 6.2 | 2026-03-03 |
ibm devops_plan
|
NVD | |
| CVE-2025-36363 |
IBM DevOps Plan 3.0.0 through 3.0.5 uses an inadequate account lockout setting that could allow a re
|
MEDIUM | 5.9 | 2026-03-03 |
ibm devops_plan
|
NVD | |
| CVE-2025-14923 |
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application Serve
|
MEDIUM | 4.7 | 2026-03-03 |
ibm websphere_application_server
|
NVD | |
| CVE-2025-14604 |
IBM Storage Scale IBM S through rage Scale 5.2.3.0 - 5.2.3.5, and IBM S through rage Scale 6.0.0.0 -
|
MEDIUM | 6.6 | 2026-03-03 |
ibm storage_scale
|
NVD | |
| CVE-2025-13734 |
IBM Engineering Requirements Management DOORS Next 7.1, and 7.2 could allow an authenticated user to
|
MEDIUM | 5.4 | 2026-03-03 |
ibm engineering_requirements_management_doors_next
ibm engineering_requirements_management_doors_next
|
NVD | |
| CVE-2025-13616 |
IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 returns sensitive information in an HTTP res
|
MEDIUM | 6.5 | 2026-03-03 |
ibm datastage_on_cloud_pak_for_data
|
NVD | |
| CVE-2025-13490 |
IBM App Connect Operator versions CD 11.3.0 through 11.6.0 and 12.1.0 through 12.20.0, LTS versions
|
MEDIUM | 5.9 | 2026-03-03 |
ibm app_connect_enterprise_certified_containers_operands
ibm app_connect_enterprise_certified_containers_operands
+22个
|
NVD | |
| CVE-2024-55027 |
Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to stroe credentials in plaintext i
|
HIGH | 7.5 | 2026-03-03 |
weintek easyweb
weintek cmt-3072xh2_firmware
|
NVD | |
| CVE-2024-55026 |
An issue in the reset_pj.cgi endpoint of Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 allows un
|
CRITICAL | 9.8 | 2026-03-03 |
weintek easyweb
weintek cmt-3072xh2_firmware
|
NVD | |
| CVE-2024-55025 |
Incorrect access control in the VNC component of Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 a
|
MEDIUM | 6.5 | 2026-03-03 |
weintek easyweb
weintek cmt-3072xh2_firmware
|
NVD | |
| CVE-2024-55024 |
An authentication bypass vulnerability in the authorization mechanism of Weintek cMT-3072XH2 easyweb
|
HIGH | 8.8 | 2026-03-03 |
weintek easyweb
weintek cmt-3072xh2_firmware
|
NVD | |
| CVE-2024-55023 |
Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded encryption k
|
MEDIUM | 5.3 | 2026-03-03 |
未知
|
NVD | |
| CVE-2024-55022 |
Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain an authenticated command
|
HIGH | 8.8 | 2026-03-03 |
未知
|
NVD | |
| CVE-2024-55021 |
Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded password in
|
HIGH | 7.5 | 2026-03-03 |
未知
|
NVD | |
| CVE-2024-55020 |
A command injection vulnerability in the DHCP activation feature of Weintek cMT-3072XH2 easyweb Web
|
CRITICAL | 9.8 | 2026-03-03 |
weintek easyweb
weintek cmt-3072xh2_firmware
|
NVD | |
| CVE-2024-55019 |
Incorrect access control in the component download_wb.cgi of Weintek cMT-3072XH2 easyweb Web Version
|
MEDIUM | 6.5 | 2026-03-03 |
weintek easyweb
weintek cmt-3072xh2_firmware
|
NVD | |
| CVE-2026-3437 |
An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Portwell
|
UNKNOWN | N/A | 2026-03-03 |
未知
|
NVD | |
| CVE-2026-26890 |
Sourcecodester Pharmacy Point of Sale System v1.0 is vulnerable to SQL Injection in /pharmacy/manage
|
LOW | 2.7 | 2026-03-03 |
oretnom23 pharmacy_point_of_sale_system
|
NVD | |
| CVE-2026-0540 |
DOMPurify 3.1.3 through 3.3.1 and 2.5.3 through 2.5.8, fixed in commit 729097f, contain a cross-site
|
MEDIUM | 6.1 | 2026-03-03 |
cure53 dompurify
|
NVD |