快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353084
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-66221 |
Werkzeug safe_join() allows Windows special device names
|
MEDIUM | 6.3 | 2025-11-29 |
pallets werkzeug
palletsprojects werkzeug
|
CVE NVD | |
| CVE-2025-53939 |
Kiteworks Core is vulnerable to Improper Input Validation
|
MEDIUM | 6.3 | 2025-11-29 |
kiteworks security-advisories
accellion kiteworks
|
CVE NVD | |
| CVE-2025-53900 |
Kiteworks MFT has a Privilege Defined With Unsafe Actions
|
MEDIUM | 6.5 | 2025-11-29 |
kiteworks security-advisories
accellion kiteworks_managed_file_transfer
|
CVE NVD | |
| CVE-2025-53899 |
Kiteworks MFT is vulnerable to an Incorrectly Specified Destination in a Communication Channel
|
HIGH | 7.2 | 2025-11-29 |
kiteworks security-advisories
accellion kiteworks_managed_file_transfer
|
CVE NVD | |
| CVE-2025-53897 |
Kiteworks MFT has a Cross-Site Request Forgery (CSRF) vulnerability
|
MEDIUM | 6.8 | 2025-11-29 |
kiteworks security-advisories
accellion kiteworks_managed_file_transfer
|
CVE NVD | |
| CVE-2025-53896 |
Kiteworks MFT is vulnerable to Insufficient Session Expiration
|
HIGH | 7.1 | 2025-11-29 |
kiteworks security-advisories
accellion kiteworks_managed_file_transfer
|
CVE NVD | |
| CVE-2025-58436 |
OpenPrinting CUPS slow client can halt cupsd, leading to a possible DoS attack
|
MEDIUM | 5.1 | 2025-11-29 |
OpenPrinting cups
openprinting cups
|
CVE NVD | |
| CVE-2025-61915 |
OpenPrinting CUPS vulnerable to stack based out-of-bound write
|
MEDIUM | 6.0 | 2025-11-29 |
OpenPrinting cups
openprinting cups
|
CVE NVD | |
| CVE-2025-66216 |
AIS-catcher has a Buffer Overflow vulnerability in `AIS::Message` leading to DoS/RCE
|
CRITICAL | 9.3 | 2025-11-29 |
jvde-github AIS-catcher
aiscatcher ais-catcher
|
CVE NVD | |
| CVE-2025-66217 |
AIS-catcher Integer Underflow in MQTT Packet Parsing leading to Heap Buffer Overflow
|
HIGH | 8.8 | 2025-11-29 |
jvde-github AIS-catcher
aiscatcher ais-catcher
|
CVE NVD | |
| CVE-2025-66219 |
willitmerge has a command Injection vulnerability
|
MEDIUM | 6.9 | 2025-11-29 |
shama willitmerge
dontkry willitmerge
|
CVE NVD | |
| CVE-2025-66201 |
LibreChat is Vulnerable to Server-Side Request Forgery (SSRF) in Actions Capability
|
HIGH | 8.6 | 2025-11-29 |
danny-avila LibreChat
librechat librechat
+1个
|
CVE NVD | |
| CVE-2025-66036 |
Retro is vulnerable to XSS vulnerability in input handling component
|
MEDIUM | 6.1 | 2025-11-29 |
Anjaliavv51 Retro
|
CVE NVD | |
| CVE-2025-66034 |
fontTools is Vulnerable to Arbitrary File Write and XML injection in fontTools.varLib
|
MEDIUM | 6.3 | 2025-11-29 |
fonttools fonttools
fonttools fonttools
|
CVE NVD | |
| CVE-2025-66027 |
Rallly Information Disclosure Vulnerability in Participant API Leaks Names and Emails Despite Pro Privacy Settings
|
HIGH | 7.1 | 2025-11-29 |
lukevella rallly
rallly rallly
|
CVE NVD | |
| CVE-2025-65112 |
PubNet Critical Authentication Bypass Allows Unauthenticated Package Upload and Identity Spoofing
|
CRITICAL | 9.4 | 2025-11-29 |
ricardoboss PubNet
ricardoboss pubnet
|
CVE NVD | |
| CVE-2025-65113 |
ClipBucket v5 Unauthenticated Object Flagging Vulnerability
|
MEDIUM | 6.5 | 2025-11-29 |
MacWarrior clipbucket-v5
oxygenz clipbucket
|
CVE NVD | |
| CVE-2025-64715 |
Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic
|
MEDIUM | 4.0 | 2025-11-29 |
cilium cilium
cilium cilium
+2个
|
CVE NVD | |
| CVE-2025-65540 |
Multiple Cross-Site Scripting (XSS) vulnerabilities exist in xmall v1.1 due to improper handling of ...
|
MEDIUM | 6.1 | 2025-11-29 |
exrick xmall
|
CVE NVD | |
| CVE-2025-65892 |
Reflected Cross-Site Scripting (rXSS) in krpano before version 1.23.2 allows a remote unauthenticate...
|
MEDIUM | 6.1 | 2025-11-29 |
krpano krpano
|
CVE NVD |