快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352547
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2024-58316 |
Online Shopping System Advanced 1.0 SQL Injection via Payment Success Parameter
|
HIGH | 8.7 | 2025-12-12 |
PuneethReddyHC online-shopping-system-advanced
puneethreddyhc online_shopping_system_advanced
|
CVE NVD | |
| CVE-2025-67750 |
Lightning Flow Scanner is Vulnerable to Code Injection via Unsafe Use of new Function() in APIVersion Rule
|
HIGH | 8.4 | 2025-12-12 |
Flow-Scanner lightning-flow-scanner
|
CVE NVD | |
| CVE-2025-14578 |
itsourcecode Student Management System update_account.php sql injection
|
MEDIUM | 6.9 | 2025-12-12 |
itsourcecode Student Management System
angeljudesuarez student_management_system
|
CVE NVD | |
| CVE-2024-58314 |
Atcom 2.7.x.x Authenticated Command Injection via Web Configuration CGI
|
HIGH | 8.7 | 2025-12-12 |
ATCOM Technology co., LTD. 100M IP Phones
|
CVE NVD | |
| CVE-2024-58311 |
Dormakaba Saflok System 6000 Key Generation Cryptographic Weakness
|
HIGH | 8.7 | 2025-12-12 |
dormakaba Dormakaba Saflok System 6000
|
CVE NVD | |
| CVE-2024-58305 |
WonderCMS 4.3.2 Cross-Site Scripting Remote Code Execution via Module Installation
|
HIGH | 8.6 | 2025-12-12 |
wondercms WonderCMS
|
CVE NVD | |
| CVE-2024-58299 |
PCMan FTP Server 2.0 Remote Buffer Overflow via 'pwd' Command
|
CRITICAL | 9.3 | 2025-12-12 |
PCMan FTP Server
|
CVE NVD | |
| CVE-2024-14010 |
Typora 1.7.4 OS Command Injection via Export PDF Preferences
|
HIGH | 8.5 | 2025-12-12 |
Unknown Typora
|
CVE NVD | |
| CVE-2025-67734 |
Frappe Learning Management System 跨站脚本漏洞
|
MEDIUM | 5.1 | 2025-12-12 |
frappe lms
frappe learning
|
CVE NVD +1 | |
| CVE-2025-14572 |
UTT 进取 512W formWebAuthGlobalConfig memory corruption
|
HIGH | 8.7 | 2025-12-12 |
UTT 进取 512W
utt 512w_firmware
|
CVE NVD | |
| CVE-2025-8083 |
Vuetify Prototype Pollution via Preset options
|
HIGH | 8.6 | 2025-12-12 |
N/A Vuetify
|
CVE NVD | |
| CVE-2025-14373 |
Inappropriate implementation in Toolbar in Google Chrome on Android prior to 143.0.7499.110 allowed ...
|
MEDIUM | 4.3 | 2025-12-12 |
Google Chrome
google chrome
|
CVE NVD | |
| CVE-2025-14372 |
Use after free in Password Manager in Google Chrome prior to 143.0.7499.110 allowed a remote attacke...
|
MEDIUM | 6.1 | 2025-12-12 |
Google Chrome
google chrome
|
CVE NVD | |
| CVE-2025-14174 |
Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 143.0.7499.110 allowed a remot...
|
HIGH | 8.8 | 2025-12-12 |
Google Chrome
google chrome
+8个
|
CVE NVD | |
| CVE-2025-8082 |
Vuetify XSS via unsanitized 'titleDateFormat' in 'VDatePicker'
|
MEDIUM | 6.3 | 2025-12-12 |
N/A Vuetify
|
CVE NVD | |
| CVE-2025-14571 |
projectworlds Advanced Library Management System borrow_book.php sql injection
|
MEDIUM | 6.9 | 2025-12-12 |
projectworlds Advanced Library Management System
projectworlds advanced_library_management_system
|
CVE NVD | |
| CVE-2025-14570 |
projectworlds Advanced Library Management System view_admin.php sql injection
|
MEDIUM | 6.9 | 2025-12-12 |
projectworlds Advanced Library Management System
projectworlds advanced_library_management_system
|
CVE NVD | |
| CVE-2025-14569 |
ggml-org whisper.cpp common-whisper.cpp read_audio_data use after free
|
MEDIUM | 4.8 | 2025-12-12 |
ggml-org whisper.cpp
ggml-org whisper.cpp
+1个
|
CVE NVD | |
| CVE-2025-14568 |
haxxorsid Stock-Management-System User.php sql injection
|
MEDIUM | 5.3 | 2025-12-12 |
haxxorsid Stock-Management-System
|
CVE NVD | |
| CVE-2025-40345 |
usb: storage: sddr55: Reject out-of-bound new_pba
|
MEDIUM | -1.0 | 2025-12-12 |
Linux Linux
Linux Linux
|
CVE NVD |