快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 351381
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-15135 |
joey-zhou xiaozhi-esp32-server-java Cookie AuthenticationInterceptor.java tryAuthenticateWithCookies improper authentication
|
MEDIUM | 5.3 | 2025-12-28 |
joey-zhou xiaozhi-esp32-server-java
|
CVE NVD | |
| CVE-2025-15134 |
yourmaileyes MOOC Submission MainController.java subreview cross site scripting
|
MEDIUM | 5.1 | 2025-12-28 |
yourmaileyes MOOC
yourmaileyes MOOC
+16个
|
CVE NVD | |
| CVE-2025-15133 |
ZSPACE Z4Pro+ HTTP POST Request close zfilev2_api_CloseSafe command injection
|
MEDIUM | 5.3 | 2025-12-28 |
ZSPACE Z4Pro+
zspace z4pro\+_firmware
|
CVE NVD | |
| CVE-2025-15132 |
ZSPACE Z4Pro+ HTTP POST Request open zfilev2_api_open command injection
|
MEDIUM | 5.3 | 2025-12-28 |
ZSPACE Z4Pro+
zspace z4pro\+_firmware
|
CVE NVD | |
| CVE-2025-15131 |
ZSPACE Z4Pro+ HTTP POST Request status zfilev2_api_SafeStatus command injection
|
MEDIUM | 5.3 | 2025-12-28 |
ZSPACE Z4Pro+
zspace z4pro\+_firmware
|
CVE NVD | |
| CVE-2025-15130 |
shanyu SyCms Administrative Panel FileManageController.class.php addPost code injection
|
MEDIUM | 5.1 | 2025-12-28 |
shanyu SyCms
|
CVE NVD | |
| CVE-2025-15129 |
ChenJinchuang Lin-CMS-TP5 File Upload LocalUploader.php upload code injection
|
MEDIUM | 5.3 | 2025-12-28 |
ChenJinchuang Lin-CMS-TP5
ChenJinchuang Lin-CMS-TP5
+2个
|
CVE NVD | |
| CVE-2025-15128 |
ZKTeco BioTime Endpoint safe_setting credentials storage
|
MEDIUM | 6.9 | 2025-12-28 |
ZKTeco BioTime
ZKTeco BioTime
+6个
|
CVE NVD | |
| CVE-2025-15127 |
FantasticLBP Hotels_Server Room.php sql injection
|
MEDIUM | 6.9 | 2025-12-28 |
FantasticLBP Hotels_Server
|
CVE NVD | |
| CVE-2025-15126 |
JeecgBoot getPositionUserList improper authorization
|
LOW | 2.3 | 2025-12-28 |
jeecg jeecg_boot
|
CVE NVD | |
| CVE-2025-15125 |
JeecgBoot queryDepartPermission improper authorization
|
LOW | 2.3 | 2025-12-28 |
jeecg jeecg_boot
|
CVE NVD | |
| CVE-2025-15124 |
JeecgBoot list getParameterMap improper authorization
|
LOW | 2.3 | 2025-12-28 |
jeecg jeecg_boot
|
CVE NVD | |
| CVE-2025-15123 |
JeecgBoot datarule improper authorization
|
LOW | 2.3 | 2025-12-28 |
jeecg jeecg_boot
|
CVE NVD | |
| CVE-2025-15122 |
JeecgBoot datarule loadDatarule improper authorization
|
LOW | 2.3 | 2025-12-28 |
jeecg jeecg_boot
|
CVE NVD | |
| CVE-2025-15121 |
JeecgBoot getDeptRoleByUserId information disclosure
|
MEDIUM | 4.8 | 2025-12-28 |
jeecg jeecg_boot
|
CVE NVD | |
| CVE-2025-15120 |
JeecgBoot getDeptRoleList improper authorization
|
LOW | 2.3 | 2025-12-28 |
jeecg jeecg_boot
|
CVE NVD | |
| CVE-2025-15119 |
JeecgBoot list queryPageList improper authorization
|
LOW | 2.3 | 2025-12-28 |
jeecg jeecg_boot
|
CVE NVD | |
| CVE-2025-15118 |
macrozheng mall Member Endpoint update improper authorization
|
MEDIUM | 5.3 | 2025-12-28 |
macrozheng mall
macrozheng mall
+3个
|
CVE NVD | |
| CVE-2025-15117 |
Dromara Sa-Token SaJdkSerializer.java ObjectInputStream.readObject deserialization
|
LOW | 2.3 | 2025-12-28 |
Dromara Sa-Token
Dromara Sa-Token
+43个
|
CVE NVD | |
| CVE-2025-15116 |
OpenCart Single-Use Coupon race condition
|
MEDIUM | 6.3 | 2025-12-28 |
opencart opencart
|
CVE NVD |