精确匹配,速度快(10-50ms)
常用厂商: microsoft cisco google apple oracle
10-50ms
示例: microsoft sql_server cisco ios apache http_server
漏洞列表 352348
CVE ID 标题 严重程度 CVSS 发布时间 受影响产品 数据源 操作
CVE-2025-34179
NetSupport Manager < 14.12.0001 Unauthenticated SQLi Local File Disclosure
HIGH 8.7 2025-12-15
NetSupport Software Manager
CVE NVD
CVE-2025-14156
Fox LMS – WordPress LMS Plugin 1.0.4.7 - 1.0.5.1 - Unauthenticated Privilege Escalation via 'createOrder'
CRITICAL 9.8 2025-12-15
ays-pro Fox LMS – WordPress LMS Plugin
CVE NVD
CVE-2025-13950
OneSignal – Web Push Notifications <= 3.6.1 - Missing Authorization to Unauthenticated Plugin Settings Update
MEDIUM 5.3 2025-12-15
onesignal OneSignal – Web Push Notifications
CVE NVD
CVE-2025-13728
FluentAuth - Auth Security Plugin <= 2.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'fluent_auth_reset_password' Shortcode
MEDIUM 6.4 2025-12-15
techjewel FluentAuth – The Ultimate Authorization & Security Plugin for WordPress
CVE NVD
CVE-2025-14383
Booking Calendar <= 10.14.8 - Unauthenticated SQL Injection via dates_to_check
HIGH 7.5 2025-12-15
wpdevelop Booking Calendar
CVE NVD
CVE-2025-12900
FileBird – WordPress Media Library Folders & File Manager <= 6.5.1 - Missing Authorization to Authenticated (Author+) Global Folders Tampering
MEDIUM 4.3 2025-12-15
ninjateam FileBird – WordPress Media Library Folders & File Manager
CVE NVD
CVE-2025-13610
RegistrationMagic <= 6.0.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'RM_Forms' Shortcode
MEDIUM 6.4 2025-12-15
metagauss RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login
CVE NVD
CVE-2025-14003
Image Gallery – Photo Grid & Video Gallery <= 2.13.3 - Missing Authorization to Authenticated (Author+) Arbitrary Gallery Modification
MEDIUM 4.3 2025-12-15
wpchill Image Gallery – Photo Grid & Video Gallery
CVE NVD
CVE-2025-13367
User Registration & Membership – Custom Registration Form Builder, Custom Login Form, User Profile, Content Restriction & Membership Plugin <= 4.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes
MEDIUM 6.4 2025-12-15
wpeverest User Registration & Membership – Custom Registration Form Builder, Custom Login Form, User Profile, Content Restriction & Membership Plugin
CVE NVD
CVE-2025-13608
CC Child Pages <= 2.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'child_pages' Shortcode
MEDIUM 6.4 2025-12-15
caterhamcomputing CC Child Pages
CVE NVD
CVE-2025-66388
Apache Airflow: Secrets in rendered templates not redacted properly and exposed in the UI
MEDIUM 4.3 2025-12-15
Apache Software Foundation Apache Airflow apache airflow
CVE NVD
CVE-2025-11670
NTLM Hash Exposure Vulnerability
MEDIUM 6.4 2025-12-15
Zohocorp ManageEngine ADManager Plus zohocorp manageengine_admanager_plus +1个
CVE NVD
CVE-2025-37731
Elasticsearch Improper Authentication
MEDIUM 6.8 2025-12-15
Elastic Elasticsearch elastic elasticsearch
CVE NVD
CVE-2025-14714
LibreOffice 安全漏洞
LOW 0.9 2025-12-15
The Document Foundation LibreOffice
CVE NVD +1
CVE-2025-37732
Kibana Cross-site Scripting via the Integration Package Upload Functionality
MEDIUM 5.4 2025-12-15
Elastic Kibana elastic kibana
CVE NVD
CVE-2025-14711
FantasticLBP Hotels Server hotelList.php sql injection
MEDIUM 6.9 2025-12-15
FantasticLBP Hotels Server
CVE NVD
CVE-2025-14710
FantasticLBP Hotels Server OrderList.php sql injection
MEDIUM 6.9 2025-12-15
FantasticLBP Hotels Server
CVE NVD
CVE-2025-14709
Shiguangwu sgwbox N3 WIRELESSCFGGET http_eshell_server buffer overflow
CRITICAL 9.3 2025-12-15
Shiguangwu sgwbox N3 sgwbox n3_firmware
CVE NVD
CVE-2025-14023
LINE client for iOS prior to 15.19 allows UI spoofing due to inconsistencies between the navigation ...
LOW 3.1 2025-12-15
LINE Corporation LINE client for iOS linecorp line
CVE NVD
CVE-2025-14022
LINE client for iOS prior to 15.4 allows man-in-the-middle attacks due to improper SSL/TLS certifica...
HIGH 7.7 2025-12-15
LINE Corporation LINE client for iOS linecorp line
CVE NVD