快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 351381
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-52600 |
Hanwha Vision Camera 安全漏洞
|
MEDIUM | 5.2 | 2025-12-26 |
Hanwha Vision Co., Ltd. QNV-C8012
hanwhavision xno-8082r_firmware
+255个
|
CVE NVD +1 | |
| CVE-2025-68946 |
In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.
|
MEDIUM | 5.4 | 2025-12-26 |
Gitea Gitea
gitea gitea
|
CVE NVD | |
| CVE-2025-52599 |
Hanwha Vision Camera 安全漏洞
|
MEDIUM | 6.3 | 2025-12-26 |
Hanwha Vision Co., Ltd. QNV-C8012
hanwhavision xnv-l6080r_firmware
+255个
|
CVE NVD +1 | |
| CVE-2025-52598 |
Hanwha Vision Camera 安全漏洞
|
MEDIUM | 6.3 | 2025-12-26 |
Hanwha Vision Co., Ltd. QNV-C8012
hanwhavision xno-9082rz_firmware
+265个
|
CVE NVD +1 | |
| CVE-2025-15099 |
Sim Studio 安全漏洞
|
MEDIUM | 6.9 | 2025-12-26 |
simstudioai sim
simstudioai sim
+27个
|
CVE NVD +1 | |
| CVE-2025-68945 |
In Gitea before 1.21.2, an anonymous user can visit a private user's project.
|
MEDIUM | 5.8 | 2025-12-26 |
Gitea Gitea
gitea gitea
|
CVE NVD | |
| CVE-2025-68944 |
Gitea before 1.22.2 sometimes mishandles the propagation of token scope for access control within on...
|
MEDIUM | 5.0 | 2025-12-26 |
Gitea Gitea
gitea gitea
|
CVE NVD | |
| CVE-2025-68943 |
Gitea before 1.21.8 inadvertently discloses users' login times by allowing (for example) the lastlog...
|
MEDIUM | 5.3 | 2025-12-26 |
Gitea Gitea
gitea gitea
|
CVE NVD | |
| CVE-2025-15098 |
YunaiV yudao-cloud Business Process Management BpmSyncHttpRequestTrigger server-side request forgery
|
MEDIUM | 5.3 | 2025-12-26 |
YunaiV yudao-cloud
YunaiV yudao-cloud
+10个
|
CVE NVD | |
| CVE-2025-68942 |
Gitea before 1.22.2 allows XSS because the search input box (for creating tags and branches) is v-ht...
|
MEDIUM | 5.4 | 2025-12-26 |
Gitea Gitea
gitea gitea
|
CVE NVD | |
| CVE-2025-15097 |
Alteryx Server status improper authentication
|
MEDIUM | 6.9 | 2025-12-26 |
Alteryx Server
Alteryx Server
+12个
|
CVE NVD | |
| CVE-2025-68941 |
Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope l...
|
MEDIUM | 4.9 | 2025-12-26 |
Gitea Gitea
gitea gitea
|
CVE NVD | |
| CVE-2025-68940 |
In Gitea before 1.22.5, branch deletion permissions are not adequately enforced after merging a pull...
|
LOW | 3.1 | 2025-12-26 |
Gitea Gitea
gitea gitea
|
CVE NVD | |
| CVE-2025-68939 |
Gitea before 1.23.0 allows attackers to add attachments with forbidden file extensions by editing an...
|
HIGH | 8.2 | 2025-12-26 |
Gitea Gitea
gitea gitea
|
CVE NVD | |
| CVE-2025-15095 |
postmanlabs httpbin core.py cross site scripting
|
MEDIUM | 5.1 | 2025-12-26 |
postmanlabs httpbin
postmanlabs httpbin
|
CVE NVD | |
| CVE-2025-15094 |
sunkaifei FlyCMS User Login UserController.java userLogin cross site scripting
|
MEDIUM | 5.3 | 2025-12-26 |
sunkaifei FlyCMS
sunkaifei flycms
|
CVE NVD | |
| CVE-2025-68938 |
Gitea before 1.25.2 mishandles authorization for deletion of releases.
|
MEDIUM | 4.3 | 2025-12-26 |
Gitea Gitea
gitea gitea
|
CVE NVD | |
| CVE-2025-15093 |
sunkaifei FlyCms 安全漏洞
|
MEDIUM | 5.3 | 2025-12-26 |
sunkaifei FlyCMS
sunkaifei flycms
|
CVE NVD +1 | |
| CVE-2025-15092 |
UTT 512W 安全漏洞
|
HIGH | 8.7 | 2025-12-26 |
UTT 进取 512W
utt 512w_firmware
|
CVE NVD +1 | |
| CVE-2024-29720 |
Sciter 安全漏洞
|
MEDIUM | 6.2 | 2025-12-26 |
terrainformatica sciter
|
CVE NVD +1 |