快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353084
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-12571 |
Allocation of Resources Without Limits or Throttling in GitLab
|
HIGH | 7.5 | 2025-11-26 |
GitLab GitLab
gitlab gitlab
+1个
|
CVE NVD | |
| CVE-2025-12653 |
Authentication Bypass by Spoofing in GitLab
|
MEDIUM | 6.5 | 2025-11-26 |
GitLab GitLab
gitlab gitlab
+1个
|
CVE NVD | |
| CVE-2025-13611 |
Insertion of Sensitive Information into Log File in GitLab
|
LOW | 2.0 | 2025-11-26 |
GitLab GitLab
gitlab gitlab
+1个
|
CVE NVD | |
| CVE-2021-4472 |
Python-mistralclient: mistral-dashboard: local file inclusion through the 'create workbook' feature
|
MEDIUM | 6.5 | 2025-11-26 |
Red Hat Red Hat OpenStack Platform 13 (Queens)
Red Hat Red Hat OpenStack Platform 16.2
+1个
|
CVE NVD | |
| CVE-2025-66028 |
OneUptime is Vulnerable to Privilege Escalation via Login Response Manipulation
|
MEDIUM | 6.9 | 2025-11-26 |
OneUptime oneuptime
hackerbay oneuptime
|
CVE NVD | |
| CVE-2025-65966 |
OneUptime Unauthorized User Creation via API
|
HIGH | 8.8 | 2025-11-26 |
OneUptime oneuptime
hackerbay oneuptime
|
CVE NVD | |
| CVE-2025-20373 |
Sensitive Information Disclosure in “_internal“ index through Splunk Add-On for Palo Alto Networks
|
LOW | 2.7 | 2025-11-26 |
Splunk Splunk Add-on for Palo Alto Networks
|
CVE NVD | |
| CVE-2025-64130 |
Zenitel TCIV-3+ Cross-site Scripting
|
CRITICAL | 9.3 | 2025-11-26 |
Zenitel TCIV-3+
|
CVE NVD | |
| CVE-2025-64129 |
Zenitel TCIV-3+ Out-of-bounds Write
|
HIGH | 7.0 | 2025-11-26 |
Zenitel TCIV-3+
|
CVE NVD | |
| CVE-2025-64128 |
Zenitel TCIV-3+ OS Command Injection
|
CRITICAL | 10.0 | 2025-11-26 |
Zenitel TCIV-3+
|
CVE NVD | |
| CVE-2025-64127 |
Zenitel TCIV-3+ OS Command Injection
|
CRITICAL | 10.0 | 2025-11-26 |
Zenitel TCIV-3+
|
CVE NVD | |
| CVE-2025-64126 |
Zenitel TCIV-3+ OS Command Injection
|
CRITICAL | 10.0 | 2025-11-26 |
Zenitel TCIV-3+
|
CVE NVD | |
| CVE-2025-11461 |
Frappe CRM 1.53.1 — Multiple SQL Injections in Dashboard Controller
|
HIGH | 7.1 | 2025-11-26 |
Frappe Frappe CRM
frappe frappe_crm
|
CVE NVD | |
| CVE-2025-13084 |
Opto 22 groov View Exposure of Sensitive Information Through Metadata
|
MEDIUM | 6.1 | 2025-11-26 |
Opto 22 groov View Server
Opto 22 GRV-EPIC-PR1 Firmware
+1个
|
CVE NVD | |
| CVE-2025-2486 |
UEFI Shell accessible in AAVMF with Secure Boot enabled on Ubuntu
|
LOW | 3.7 | 2025-11-26 |
Ubuntu edk2
tianocore edk2
+1个
|
CVE NVD | |
| CVE-2025-62354 |
Improper neutralization of special elements used in an OS command ('command injection') in Cursor al...
|
CRITICAL | 9.8 | 2025-11-26 |
cursor cursor
|
CVE NVD | |
| CVE-2025-13601 |
Glib: integer overflow in in g_escape_uri_string()
|
HIGH | 7.7 | 2025-11-26 |
Red Hat Red Hat Enterprise Linux 10
Red Hat Red Hat Enterprise Linux 6
+4个
|
CVE NVD | |
| CVE-2025-9163 |
Houzez <= 4.1.6 - Unauthenticated Stored Cross-Site Scripting via SVG File Upload
|
MEDIUM | 6.1 | 2025-11-26 |
favethemes Houzez
|
CVE NVD | |
| CVE-2025-9191 |
Houzez <= 4.1.6 - Authenticated (Subscriber+) PHP Object Injection via Saved Search
|
MEDIUM | 6.3 | 2025-11-26 |
favethemes Houzez
|
CVE NVD | |
| CVE-2025-13674 |
Wireshark 缓冲区错误漏洞
|
MEDIUM | 5.5 | 2025-11-26 |
Wireshark Foundation Wireshark
wireshark wireshark
|
CVE NVD +1 |