快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353262
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-54341 |
A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6...
|
MEDIUM | 5.3 | 2025-11-24 |
desktopalert pingalert_application_server
|
CVE NVD | |
| CVE-2025-54347 |
A Directory Traversal vulnerability was found in the Application Server of Desktop Alert PingAlert v...
|
CRITICAL | 9.9 | 2025-11-24 |
desktopalert pingalert_application_server
|
CVE NVD | |
| CVE-2025-54563 |
An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingA...
|
HIGH | 7.5 | 2025-11-24 |
desktopalert pingalert_application_server
|
CVE NVD | |
| CVE-2025-56400 |
Cross-Site Request Forgery (CSRF) vulnerability in the OAuth implementation of the Tuya SDK 6.5.0 fo...
|
HIGH | 8.8 | 2025-11-24 |
tuya smartlife
tuya smartlife
+2个
|
CVE NVD | |
| CVE-2025-56401 |
ZIRA Group WBRM 7.0 is vulnerable to SQL Injection in referenceLookupsByTableNameAndColumnName.
|
HIGH | 7.6 | 2025-11-24 |
ziragroup wbrm
|
CVE NVD | |
| CVE-2025-56423 |
An issue in Austrian Academy of Sciences (AW) Austrian Archaeological Institute OpenAtlas v.8.12.0 a...
|
MEDIUM | 5.3 | 2025-11-24 |
craws openatlas
|
CVE NVD | |
| CVE-2025-60632 |
An issue was discovered in Free5GC v4.0.0 and v4.0.1 allowing an attacker to cause a denial of servi...
|
MEDIUM | 6.5 | 2025-11-24 |
free5gc free5gc
free5gc free5gc
|
CVE NVD | |
| CVE-2025-60633 |
An issue was discovered in Free5GC v4.0.0 and v4.0.1 allowing an attacker to cause a denial of servi...
|
MEDIUM | 6.5 | 2025-11-24 |
free5gc free5gc
free5gc free5gc
|
CVE NVD | |
| CVE-2025-60638 |
An issue was discovered in Free5GC v4.0.0 and v4.0.1 allowing an attacker to cause a denial of servi...
|
HIGH | 7.5 | 2025-11-24 |
free5gc free5gc
free5gc free5gc
|
CVE NVD | |
| CVE-2025-60914 |
Incorrect access control in Austrian Archaeological Institute Openatlas before v8.12.0 allows attack...
|
MEDIUM | 4.6 | 2025-11-24 |
craws openatlas
|
CVE NVD | |
| CVE-2025-60915 |
An issue in the size query parameter (/views/file.py) of Austrian Archaeological Institute Openatlas...
|
HIGH | 8.1 | 2025-11-24 |
craws openatlas
|
CVE NVD | |
| CVE-2025-60916 |
A reflected cross-site scripting (XSS) vulnerability in the /overview/network/ endpoint of Austrian ...
|
MEDIUM | 5.4 | 2025-11-24 |
craws openatlas
|
CVE NVD | |
| CVE-2025-60917 |
A reflected cross-site scripting (XSS) vulnerability in the /overview/network/ endpoint of Austrian ...
|
MEDIUM | 4.6 | 2025-11-24 |
craws openatlas
|
CVE NVD | |
| CVE-2025-63432 |
Xtooltech Xtool AnyScan Android Application 4.40.40 and prior is Missing SSL Certificate Validation....
|
MEDIUM | 4.6 | 2025-11-24 |
xtooltech xtool_anyscan
|
CVE NVD | |
| CVE-2025-63433 |
Xtooltech Xtool AnyScan Android Application 4.40.40 and prior uses a hardcoded cryptographic key and...
|
MEDIUM | 4.6 | 2025-11-24 |
xtooltech xtool_anyscan
|
CVE NVD | |
| CVE-2025-63434 |
The update mechanism in Xtooltech Xtool AnyScan Android Application 4.40.40 and prior is insecure. T...
|
HIGH | 8.8 | 2025-11-24 |
xtooltech xtool_anyscan
|
CVE NVD | |
| CVE-2025-63435 |
Xtooltech Xtool AnyScan Android Application 4.40.40 is Missing Authentication for Critical Function....
|
MEDIUM | 4.3 | 2025-11-24 |
xtooltech xtool_anyscan
|
CVE NVD | |
| CVE-2025-63498 |
alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting (XSS) via the "userName" parameter.
|
MEDIUM | 6.1 | 2025-11-24 |
alinto sogo
debian debian_linux
|
CVE NVD | |
| CVE-2025-63674 |
An issue in Blurams Lumi Security Camera (A31C) v23.1227.472.2926 allows local physical attackers to...
|
MEDIUM | 6.1 | 2025-11-24 |
blurams a31c_firmware
|
CVE NVD | |
| CVE-2025-63914 |
An issue was discovered in Cinnamon kotaemon 0.11.0. The _may_extract_zip function in the \libs\ktem...
|
MEDIUM | 6.5 | 2025-11-24 |
cinnamon kotaemon
|
CVE NVD |