快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352547
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-12734 |
Improper Encoding or Escaping of Output in GitLab
|
LOW | 3.5 | 2025-12-11 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-14512 |
Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow
|
MEDIUM | 6.5 | 2025-12-11 |
GNOME glib
Red Hat Red Hat Enterprise Linux 10
+5个
|
CVE NVD | |
| CVE-2025-67738 |
squid/cachemgr.cgi in Webmin before 2.600 does not properly quote arguments. This is relevant if Web...
|
HIGH | 8.5 | 2025-12-11 |
Webmin Webmin
|
CVE NVD | |
| CVE-2025-4097 |
Allocation of Resources Without Limits or Throttling in GitLab
|
MEDIUM | 6.5 | 2025-12-11 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-8405 |
Improper Encoding or Escaping of Output in GitLab
|
HIGH | 7.7 | 2025-12-11 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-11247 |
Authorization Bypass Through User-Controlled Key in GitLab
|
MEDIUM | 4.3 | 2025-12-11 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-11984 |
Authentication Bypass Using an Alternate Path or Channel in GitLab
|
MEDIUM | 6.8 | 2025-12-11 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-12562 |
Allocation of Resources Without Limits or Throttling in GitLab
|
HIGH | 7.5 | 2025-12-11 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-12716 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
|
HIGH | 8.7 | 2025-12-11 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-13978 |
Generation of Error Message Containing Sensitive Information in GitLab
|
MEDIUM | 4.3 | 2025-12-11 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-14157 |
Allocation of Resources Without Limits or Throttling in GitLab
|
MEDIUM | 6.5 | 2025-12-11 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-9436 |
Widgets for Google Reviews <= 13.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via trustindex Shortcode
|
MEDIUM | 6.4 | 2025-12-11 |
trustindex Widgets for Google Reviews
|
CVE NVD | |
| CVE-2025-10163 |
List Category Posts <= 0.91.0 - Authenticated (Contributor+) SQL Injection via Plugin's Shortcode
|
MEDIUM | 6.5 | 2025-12-11 |
fernandobt List category posts
|
CVE NVD | |
| CVE-2025-14485 |
EFM ipTIME A3004T Administrator Password timepro.cgi show_debug_screen command injection
|
LOW | 2.3 | 2025-12-11 |
EFM ipTIME A3004T
|
CVE NVD | |
| CVE-2025-13764 |
WP CarDealer <= 1.2.16 - Unauthenticated Privilege Escalation
|
CRITICAL | 9.8 | 2025-12-11 |
ApusTheme WP CarDealer
|
CVE NVD | |
| CVE-2025-11467 |
RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator <= 5.1.1 - Unauthenticated Blind Server-Side Request Forgery
|
MEDIUM | 5.8 | 2025-12-11 |
themeisle RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator
|
CVE NVD | |
| CVE-2025-67720 |
Pyrofork has a Path Traversal in download_media Method
|
MEDIUM | 6.5 | 2025-12-11 |
Mayuri-Chan pyrofork
|
CVE NVD | |
| CVE-2025-67719 |
Ibexa User Bundle 安全漏洞
|
HIGH | 8.5 | 2025-12-11 |
ibexa user
|
CVE NVD +1 | |
| CVE-2025-67718 |
Form.io 信息泄露漏洞
|
HIGH | 8.7 | 2025-12-11 |
formio formio
formio formio
|
CVE NVD +1 | |
| CVE-2025-67717 |
Zitadel Discloses the Total Number of Instance Users
|
MEDIUM | 5.3 | 2025-12-11 |
zitadel zitadel
zitadel zitadel
+1个
|
CVE NVD |