快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352547
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-65530 |
An eval injection in the malware de-obfuscation routines of CloudLinux ai-bolit before v32.7.4 allow...
|
HIGH | 8.8 | 2025-12-12 |
cloudlinux ai-bolit
|
CVE NVD | |
| CVE-2025-65854 |
Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allows attackers to execute ar...
|
CRITICAL | 9.8 | 2025-12-12 |
mineadmin mineadmin
|
CVE NVD | |
| CVE-2025-66430 |
Plesk 18.0 has Incorrect Access Control.
|
CRITICAL | 9.1 | 2025-12-12 |
plesk plesk
|
CVE NVD | |
| CVE-2025-67341 |
jshERP versions 3.5 and earlier are affected by a stored XSS vulnerability. This vulnerability allow...
|
MEDIUM | 4.6 | 2025-12-12 |
jishenghua jsherp
|
CVE NVD | |
| CVE-2025-67342 |
RuoYi versions 4.8.1 and earlier is affected by a stored XSS vulnerability in the /system/menu/edit ...
|
MEDIUM | 4.6 | 2025-12-12 |
ruoyi ruoyi
|
CVE NVD | |
| CVE-2025-67344 |
jshERP v3.5 and earlier is affected by a stored Cross Site Scripting (XSS) vulnerability via the /ms...
|
MEDIUM | 4.6 | 2025-12-12 |
jishenghua jsherp
|
CVE NVD | |
| CVE-2025-67818 |
An issue was discovered in Weaviate OSS before 1.33.4. An attacker with access to insert data into t...
|
HIGH | 7.2 | 2025-12-12 |
weaviate weaviate
|
CVE NVD | |
| CVE-2025-67819 |
An issue was discovered in Weaviate OSS before 1.33.4. Due to a lack of validation of the fileName f...
|
MEDIUM | 4.9 | 2025-12-12 |
weaviate weaviate
|
CVE NVD | |
| CVE-2025-67779 |
It was found that the fix addressing CVE-2025-55184 in React Server Components was incomplete and do...
|
HIGH | 7.5 | 2025-12-11 |
Meta react-server-dom-parcel
Meta react-server-dom-turbopack
+7个
|
CVE NVD | |
| CVE-2025-67780 |
SpaceX Starlink Dish devices with firmware 2024.12.04.mr46620 (e.g., on Mini1_prod2) allow administr...
|
MEDIUM | 4.2 | 2025-12-11 |
SpaceX Starlink Dish
|
CVE NVD | |
| CVE-2025-66452 |
LibreChat's lack of JSON parsing error handling can lead to XSS
|
MEDIUM | 5.3 | 2025-12-11 |
danny-avila LibreChat
librechat librechat
|
CVE NVD | |
| CVE-2025-66451 |
LibreChat's Improper Input Validation in Prompt Creation API Enables Unauthorized Permission Changes
|
MEDIUM | 5.3 | 2025-12-11 |
danny-avila LibreChat
librechat librechat
|
CVE NVD | |
| CVE-2025-66450 |
LibreChat JSON Injection in Chat POST Allows Remote Resource Inclusion and PXSS via Image Upload
|
HIGH | 8.6 | 2025-12-11 |
danny-avila LibreChat
librechat librechat
|
CVE NVD | |
| CVE-2025-13668 |
Quartus Prime Pro Edition Advisory
|
MEDIUM | 5.4 | 2025-12-11 |
Altera Quartus Prime Pro
intel quartus_prime
|
CVE NVD | |
| CVE-2025-66446 |
MaxKB has a Python sandbox LD_PRELOAD bypass
|
HIGH | 8.8 | 2025-12-11 |
1Panel-dev MaxKB
maxkb maxkb
|
CVE NVD | |
| CVE-2025-34506 |
WBCE CMS 代码问题漏洞
|
HIGH | 8.6 | 2025-12-11 |
WBCE WBCE CMS
wbce wbce_cms
|
CVE NVD +1 | |
| CVE-2025-34504 |
KodExplorer 4.52 Open Redirect Vulnerability via User Login Endpoint
|
MEDIUM | 5.3 | 2025-12-11 |
kodcloud KodExplorer
kodcloud kodexplorer
|
CVE NVD | |
| CVE-2025-34499 |
AnyDesk 9.0.1 Unquoted Service Path Privilege Escalation Vulnerability
|
MEDIUM | 6.9 | 2025-12-11 |
AnyDesk AnyDesk
AnyDesk AnyDesk
|
CVE NVD | |
| CVE-2024-58313 |
xbtitFM 代码问题漏洞
|
HIGH | 8.6 | 2025-12-11 |
xbtitfm xbtitFM
xbtitfm xbtitfm
|
CVE NVD +1 | |
| CVE-2024-58312 |
xbtitFM 路径遍历漏洞
|
HIGH | 8.7 | 2025-12-11 |
xbtitfm xbtitFM
xbtitfm xbtitfm
|
CVE NVD +1 |