快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353262
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-62687 |
Cross-site request forgery vulnerability exists in LogStare Collector. If a user views a crafted pag...
|
MEDIUM | 6.9 | 2025-11-21 |
LogStare Inc. LogStare Collector (for Windows)
LogStare Inc. LogStare Collector (for Linux)
+1个
|
CVE NVD | |
| CVE-2025-62189 |
LogStare Collector contains an incorrect authorization vulnerability in UserRegistration. If exploit...
|
MEDIUM | 5.3 | 2025-11-21 |
LogStare Inc. LogStare Collector (for Windows)
LogStare Inc. LogStare Collector (for Linux)
+1个
|
CVE NVD | |
| CVE-2025-61949 |
LogStare Collector contains a stored cross-site scripting vulnerability in UserManagement. If crafte...
|
MEDIUM | 4.8 | 2025-11-21 |
LogStare Inc. LogStare Collector (for Windows)
LogStare Inc. LogStare Collector (for Linux)
+1个
|
CVE NVD | |
| CVE-2025-58097 |
The installation directory of LogStare Collector is configured with incorrect access permissions. A ...
|
MEDIUM | 6.8 | 2025-11-21 |
LogStare Inc. LogStare Collector (for Windows)
LogStare Inc. LogStare Collector (for Linux)
+1个
|
CVE NVD | |
| CVE-2025-13499 |
Wireshark 缓冲区错误漏洞
|
HIGH | 7.8 | 2025-11-21 |
Wireshark Foundation Wireshark
wireshark wireshark
+1个
|
CVE NVD +1 | |
| CVE-2025-9825 |
Missing Authorization in GitLab
|
MEDIUM | 5.0 | 2025-11-21 |
GitLab GitLab
gitlab gitlab
|
CVE NVD | |
| CVE-2025-12169 |
ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.0 - Missing Authorization to Authenitcated (Subscriber+) to Scheduled Trigger Deletion
|
MEDIUM | 4.3 | 2025-11-21 |
elextensions ELEX WordPress HelpDesk & Customer Ticketing System
elula wsdesk
|
CVE NVD | |
| CVE-2025-12022 |
ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.1 - Missing Authorization to Authenticated (Subscriber+) Trash Restore
|
MEDIUM | 4.3 | 2025-11-21 |
elextensions ELEX WordPress HelpDesk & Customer Ticketing System
elula wsdesk
|
CVE NVD | |
| CVE-2025-12085 |
ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.1 - Missing Authorization to Authenticated (Subscriber+) Trash Empty
|
MEDIUM | 4.3 | 2025-11-21 |
elextensions ELEX WordPress HelpDesk & Customer Ticketing System
elula wsdesk
|
CVE NVD | |
| CVE-2025-12023 |
ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.1 - Missing Authorization to Authenticated (Subscriber+) Ticket Restore
|
MEDIUM | 4.3 | 2025-11-21 |
elextensions ELEX WordPress HelpDesk & Customer Ticketing System
elula wsdesk
|
CVE NVD | |
| CVE-2025-11368 |
LearnPress – WordPress LMS Plugin <= 4.2.9.4 - Missing Authorization to Unauthenticated Arbitrary Callback Execution to Information Exposure
|
MEDIUM | 5.3 | 2025-11-21 |
thimpress LearnPress – WordPress LMS Plugin
|
CVE NVD | |
| CVE-2025-64310 |
EPSON WebConfig and Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive a...
|
CRITICAL | 9.3 | 2025-11-21 |
SEIKO EPSON CORPORATION EPSON WebConfig for SEIKO EPSON Projector Products
SEIKO EPSON CORPORATION Epson Web Control for SEIKO EPSON Projector Products
|
CVE NVD | |
| CVE-2025-64762 |
authkit-nextjs may let session cookies be cached in CDNs
|
HIGH | 8.0 | 2025-11-21 |
workos authkit-nextjs
workos authkit-nextjs
|
CVE NVD | |
| CVE-2025-64751 |
OpenFGA Improper Policy Enforcement
|
MEDIUM | 5.8 | 2025-11-21 |
openfga openfga
openfga helm_charts
+1个
|
CVE NVD | |
| CVE-2025-62372 |
vLLM vulnerable to DoS with incorrect shape of multimodal embedding inputs
|
HIGH | 8.3 | 2025-11-21 |
vllm-project vllm
vllm vllm
+1个
|
CVE NVD | |
| CVE-2025-62426 |
vLLM vulnerable to DoS via large Chat Completion or Tokenization requests with specially crafted `chat_template_kwargs`
|
MEDIUM | 6.5 | 2025-11-21 |
vllm-project vllm
vllm vllm
+1个
|
CVE NVD | |
| CVE-2025-62164 |
VLLM deserialization vulnerability leading to DoS and potential RCE
|
HIGH | 8.8 | 2025-11-21 |
vllm-project vllm
vllm vllm
+1个
|
CVE NVD | |
| CVE-2025-64755 |
@anthropic-ai/claude-code has Sed Command Validation Bypass that Allows Arbitrary File Writes
|
HIGH | 8.7 | 2025-11-21 |
anthropics claude-code
anthropic claude_code
|
CVE NVD | |
| CVE-2025-13485 |
itsourcecode Online File Management System ajax.php sql injection
|
MEDIUM | 6.9 | 2025-11-21 |
itsourcecode Online File Management System
admerc file_management_system
|
CVE NVD | |
| CVE-2025-13484 |
Campcodes Complete Online Beauty Parlor Management System customer-list.php cross site scripting
|
MEDIUM | 4.8 | 2025-11-20 |
Campcodes Complete Online Beauty Parlor Management System
campcodes online_beauty_parlor_management_system
|
CVE NVD |