快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353084
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-63498 |
alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting (XSS) via the "userName" parameter.
|
MEDIUM | 6.1 | 2025-11-24 |
alinto sogo
debian debian_linux
|
CVE NVD | |
| CVE-2025-63674 |
An issue in Blurams Lumi Security Camera (A31C) v23.1227.472.2926 allows local physical attackers to...
|
MEDIUM | 6.1 | 2025-11-24 |
blurams a31c_firmware
|
CVE NVD | |
| CVE-2025-63914 |
An issue was discovered in Cinnamon kotaemon 0.11.0. The _may_extract_zip function in the \libs\ktem...
|
MEDIUM | 6.5 | 2025-11-24 |
cinnamon kotaemon
|
CVE NVD | |
| CVE-2025-63952 |
A Cross-Site Request Forgery (CSRF) in the /mwapi?method=add-user component of Magewell Pro Convert ...
|
MEDIUM | 5.7 | 2025-11-24 |
magewell pro_convert_hdmi_4k_plus_firmware
magewell pro_convert_hdmi_plus_firmware
+11个
|
CVE NVD | |
| CVE-2025-63953 |
A Cross-Site Request Forgery (CSRF) in the /usapi?method=add-user component of Magewell Pro Convert ...
|
MEDIUM | 6.5 | 2025-11-24 |
magewell ultra_encode_hdmi_firmware
magewell ultra_encode_sdi_firmware
+3个
|
CVE NVD | |
| CVE-2025-63958 |
MILLENSYS Vision Tools Workspace 6.5.0.2585 exposes a sensitive configuration endpoint (/MILLENSYS/s...
|
CRITICAL | 9.8 | 2025-11-24 |
millensys vision_tools_workspace
millensys vision_tools_workspace
+1个
|
CVE NVD | |
| CVE-2025-64047 |
OpenRapid RapidCMS 1.3.1 is vulnerable to Cross Site Scripting (XSS) in /user/user-move.php.
|
MEDIUM | 6.1 | 2025-11-24 |
openrapid rapidcms
|
CVE NVD | |
| CVE-2025-64048 |
YCCMS 3.4 contains a stored cross-site scripting (XSS) vulnerability in the article management funct...
|
MEDIUM | 6.1 | 2025-11-24 |
yccms yccms
|
CVE NVD | |
| CVE-2025-65493 |
NULL pointer dereference in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to caus...
|
HIGH | 7.5 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65494 |
NULL pointer dereference in get_san_or_cn_from_cert() in src/coap_openssl.c in OISM libcoap 4.3.5 al...
|
HIGH | 7.5 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65495 |
Integer signedness error in tls_verify_call_back() in src/coap_openssl.c in OISM libcoap 4.3.5 allow...
|
HIGH | 7.5 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65496 |
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 ...
|
MEDIUM | 4.3 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65497 |
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 ...
|
MEDIUM | 4.3 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65498 |
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 ...
|
MEDIUM | 4.3 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65499 |
Array index error in tls_verify_call_back() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remot...
|
MEDIUM | 4.3 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65500 |
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 ...
|
MEDIUM | 4.3 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65501 |
Null pointer dereference in coap_dtls_info_callback() in OISM libcoap 4.3.5 allows remote attackers ...
|
MEDIUM | 4.3 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65502 |
Null pointer dereference in add_ca_certs() in Cesanta Mongoose before 7.2 allows remote attackers to...
|
MEDIUM | 4.3 | 2025-11-24 |
cesanta mongoose
|
CVE NVD | |
| CVE-2025-65503 |
Use after free in endpoint destructors in Redboltz async_mqtt 10.2.5 allows local users to cause a d...
|
HIGH | 7.5 | 2025-11-24 |
redboltz async_mqtt
|
CVE NVD | |
| CVE-2025-13573 |
projectworlds can pass malicious payloads add_book.php unrestricted upload
|
MEDIUM | 5.3 | 2025-11-23 |
projectworlds can pass malicious payloads
projectworlds advanced_library_management_system
|
CVE NVD |