快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352231
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-66647 |
RIOT OS has buffer overflow in gnrc_ipv6_ext_frag_reass
|
LOW | 1.7 | 2025-12-17 |
RIOT-OS RIOT
riot-os riot
+1个
|
CVE NVD | |
| CVE-2025-14764 |
Missing cryptographic key commitment in the Amazon S3 Encryption Client for Go may allow a user with...
|
MEDIUM | 6.0 | 2025-12-17 |
AWS S3 Encryption Client for Go
|
CVE NVD | |
| CVE-2025-14763 |
Missing cryptographic key commitment in the Amazon S3 Encryption Client for Java may allow a user wi...
|
MEDIUM | 6.0 | 2025-12-17 |
AWS S3 Encryption Client for Java
|
CVE NVD | |
| CVE-2025-14762 |
Missing cryptographic key commitment in the AWS SDK for Ruby may allow a user with write access to t...
|
MEDIUM | 6.0 | 2025-12-17 |
AWS AWS SDK for Ruby
|
CVE NVD | |
| CVE-2025-14761 |
Missing cryptographic key commitment in the AWS SDK for PHP may allow a user with write access to th...
|
MEDIUM | 6.0 | 2025-12-17 |
AWS AWS SDK for PHP
|
CVE NVD | |
| CVE-2025-14760 |
Missing cryptographic key commitment in the AWS SDK for C++ may allow a user with write access to th...
|
MEDIUM | 6.0 | 2025-12-17 |
AWS AWS SDK for C++
|
CVE NVD | |
| CVE-2025-14759 |
Missing cryptographic key commitment in the Amazon S3 Encryption Client for .NET may allow a user wi...
|
MEDIUM | 6.0 | 2025-12-17 |
AWS S3 Encryption Client for .NET
|
CVE NVD | |
| CVE-2025-34438 |
AVideo < 20.1 IDOR Arbitrary Video Rotation
|
MEDIUM | 5.3 | 2025-12-17 |
World Wide Broadcast Network AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2025-34437 |
AVideo < 20.1 IDOR Arbitrary Comment Image Upload
|
HIGH | 8.7 | 2025-12-17 |
World Wide Broadcast Network AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2025-34435 |
AVideo < 20.1 IDOR Arbitrary File Deletion
|
HIGH | 8.7 | 2025-12-17 |
World Wide Broadcast Network AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2025-34436 |
AVideo < 20.1 IDOR Arbitrary File Upload
|
HIGH | 8.7 | 2025-12-17 |
World Wide Broadcast Network AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2025-34434 |
AVideo < 20.1 ImageGallery Plugin Unauthenticated File Upload and Deletion
|
CRITICAL | 9.3 | 2025-12-17 |
World Wide Broadcast Network AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2025-34439 |
AVideo < 20.1 Open Redirect via cancelUri Parameter
|
MEDIUM | 4.8 | 2025-12-17 |
World Wide Broadcast Network AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2025-34440 |
AVideo < 20.1 Open Redirect via siteRedirectUri Parameter
|
MEDIUM | 4.8 | 2025-12-17 |
World Wide Broadcast Network AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2025-34442 |
AVideo < 20.1 System Path Disclosure via Public API
|
MEDIUM | 6.9 | 2025-12-17 |
World Wide Broadcast Network AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2025-34441 |
AVideo < 20.1 User Information Disclosure via Public API
|
MEDIUM | 6.9 | 2025-12-17 |
World Wide Broadcast Network AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2025-66646 |
RIOT-OS has NULL pointer dereference in gnrc_ipv6_ext_frag_reass
|
LOW | 1.7 | 2025-12-17 |
RIOT-OS RIOT
riot-os riot
+1个
|
CVE NVD | |
| CVE-2025-66397 |
ChurchCRM's Kiosk Manager Functions are vulnerable to Broken Access Control
|
HIGH | 8.3 | 2025-12-17 |
ChurchCRM CRM
churchcrm churchcrm
|
CVE NVD | |
| CVE-2025-66396 |
ChurchCRM has SQL Injection in User Editor via `type` Parameter Key
|
HIGH | 7.2 | 2025-12-17 |
ChurchCRM CRM
churchcrm churchcrm
|
CVE NVD | |
| CVE-2025-66395 |
SQL Injection in Event List via `WhichType` Parameter
|
HIGH | 8.8 | 2025-12-17 |
ChurchCRM CRM
churchcrm churchcrm
|
CVE NVD |