快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353084
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-55174 |
In KDE Skanpage before 25.08.0, an attempt at file overwrite can result in the contents of the new f...
|
LOW | 3.2 | 2025-11-26 |
KDE Skanpage
|
CVE NVD | |
| CVE-2025-55469 |
Incorrect access control in youlai-boot v2.21.1 allows attackers to escalate privileges and access t...
|
CRITICAL | 9.8 | 2025-11-26 |
youlai youlai-boot
|
CVE NVD | |
| CVE-2025-55471 |
Incorrect access control in the getUserFormData function of youlai-boot v2.21.1 allows attackers to ...
|
HIGH | 7.5 | 2025-11-26 |
youlai youlai-boot
|
CVE NVD | |
| CVE-2025-56396 |
An issue was discovered in Ruoyi 4.8.1 allowing attackers to gain escalated privileges due to the ow...
|
HIGH | 8.8 | 2025-11-26 |
ruoyi ruoyi
|
CVE NVD | |
| CVE-2025-59820 |
In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer overf...
|
MEDIUM | 6.7 | 2025-11-26 |
KDE Krita
|
CVE NVD | |
| CVE-2025-63938 |
Tinyproxy through 1.11.2 contains an integer overflow vulnerability in the strip_return_port() funct...
|
MEDIUM | 6.5 | 2025-11-26 |
tinyproxy_project tinyproxy
|
CVE NVD | |
| CVE-2025-65202 |
TRENDnet TEW-657BRM 1.00.1 has an authenticated remote OS command injection vulnerability in the set...
|
HIGH | 8.0 | 2025-11-26 |
trendnet tew-657brm_firmware
|
CVE NVD | |
| CVE-2025-65235 |
OpenCode Systems USSD Gateway OC Release: 5 Version 6.13.11 was discovered to contain a SQL injectio...
|
CRITICAL | 9.8 | 2025-11-26 |
opencode ussd_gateway
|
CVE NVD | |
| CVE-2025-65236 |
OpenCode Systems USSD Gateway OC Release: 5 was discovered to contain a SQL injection vulnerability ...
|
CRITICAL | 9.8 | 2025-11-26 |
opencode ussd_gateway
|
CVE NVD | |
| CVE-2025-65237 |
A reflected cross-site scripted (XSS) vulnerability in OpenCode Systems USSD Gateway OC Release: 5 a...
|
MEDIUM | 6.1 | 2025-11-26 |
opencode ussd_gateway
|
CVE NVD | |
| CVE-2025-65238 |
Incorrect access control in the getSubUsersByProvider function of OpenCode Systems USSD Gateway OC R...
|
MEDIUM | 6.5 | 2025-11-26 |
opencode ussd_gateway
|
CVE NVD | |
| CVE-2025-65239 |
Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Rele...
|
MEDIUM | 4.3 | 2025-11-26 |
opencode ussd_gateway
|
CVE NVD | |
| CVE-2025-65276 |
An unauthenticated administrative access vulnerability exists in the open-source HashTech project (h...
|
CRITICAL | 9.8 | 2025-11-26 |
henzljw hashtech
|
CVE NVD | |
| CVE-2025-65278 |
An issue was discovered in file users.json in GroceryMart commit 21934e6 (2020-10-23) allowing unaut...
|
HIGH | 7.5 | 2025-11-26 |
komal97 grocerymart
|
CVE NVD | |
| CVE-2025-65669 |
An issue was discovered in classroomio 0.1.13. Student accounts are able to delete courses from the ...
|
CRITICAL | 9.1 | 2025-11-26 |
classroomio classroomio
|
CVE NVD | |
| CVE-2025-65670 |
An Insecure Direct Object Reference (IDOR) in classroomio 0.1.13 allows students to access sensitive...
|
MEDIUM | 4.3 | 2025-11-26 |
classroomio classroomio
|
CVE NVD | |
| CVE-2025-65672 |
Insecure Direct Object Reference (IDOR) in classroomio 0.1.13 allows unauthorized share and invite a...
|
HIGH | 7.5 | 2025-11-26 |
classroomio classroomio
|
CVE NVD | |
| CVE-2025-65675 |
Stored Cross site scripting (XSS) vulnerability in Classroomio LMS 0.1.13 allows authenticated attac...
|
MEDIUM | 5.4 | 2025-11-26 |
classroomio classroomio
|
CVE NVD | |
| CVE-2025-65676 |
Stored Cross site scripting (XSS) vulnerability in Classroomio LMS 0.1.13 allows authenticated attac...
|
MEDIUM | 5.4 | 2025-11-26 |
classroomio classroomio
|
CVE NVD | |
| CVE-2025-65681 |
An issue was discovered in Overhang.IO (tutor-open-edx) (overhangio/tutor) 20.0.2 allowing local una...
|
LOW | 3.3 | 2025-11-26 |
edly tutor
|
CVE NVD |