快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353262
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-63371 |
Milos Paripovic OneCommander 3.102.0.0 is vulnerable to Directory Traversal. The vulnerability resid...
|
HIGH | 7.5 | 2025-11-19 |
onecommander onecommander
|
CVE NVD | |
| CVE-2025-63719 |
Campcodes Online Hospital Management System 1.0 is vulnerable to SQL Injection in /admin/index.php v...
|
HIGH | 7.3 | 2025-11-19 |
campcodes online_hospital_management_system
|
CVE NVD | |
| CVE-2025-63878 |
Github Restaurant Website Restoran v1.0 was discovered to contain a SQL injection vulnerability via ...
|
MEDIUM | 6.5 | 2025-11-19 |
hackerwhale restaurant_website_restoran
|
CVE NVD | |
| CVE-2025-63879 |
A reflected cross-site scripted (XSS) vulnerability in the /ecommerce/products.php component of E-co...
|
MEDIUM | 6.1 | 2025-11-19 |
learnwithfair php-ecommerce-project
|
CVE NVD | |
| CVE-2025-63932 |
D-Link Router DIR-868L A1 FW106KRb01.bin has an unauthenticated remote code execution vulnerability ...
|
HIGH | 7.3 | 2025-11-19 |
dlink dir-868l_firmware
|
CVE NVD | |
| CVE-2025-65015 |
joserfc has Possible Uncontrolled Resource Consumption Vulnerability Triggered by Logging Arbitrarily Large JWT Token Payloads
|
CRITICAL | 9.2 | 2025-11-18 |
authlib joserfc
authlib joserfc
+1个
|
CVE NVD | |
| CVE-2025-65093 |
LibreNMS is vulnerable to SQL Injection (Boolean-Based Blind) in hostname parameter in ajax_output.php endpoint
|
MEDIUM | 5.5 | 2025-11-18 |
librenms librenms
librenms librenms
|
CVE NVD | |
| CVE-2025-65014 |
LibreNMS has Weak Password Policy
|
LOW | 3.7 | 2025-11-18 |
librenms librenms
librenms librenms
|
CVE NVD | |
| CVE-2025-65013 |
LibreNMS vulnerable to Reflected Cross-Site Scripting (XSS) in endpoint `/maps/nodeimage` parameter `Image Name`
|
MEDIUM | 6.2 | 2025-11-18 |
librenms librenms
librenms librenms
|
CVE NVD | |
| CVE-2025-65012 |
Kirby CMS has cross-site scripting (XSS) in the changes dialog
|
MEDIUM | 5.1 | 2025-11-18 |
getkirby kirby
getkirby kirby
|
CVE NVD | |
| CVE-2025-64515 |
Open Forms prefill data in read-only components can be tampered
|
MEDIUM | 4.3 | 2025-11-18 |
open-formulieren open-forms
open-formulieren open-forms
+1个
|
CVE NVD | |
| CVE-2025-64325 |
Emby Server is Vulnerable to Remote Code Execution Through XSS in Admin Dashboard
|
HIGH | 8.4 | 2025-11-18 |
EmbySupport Emby.Security
EmbySupport Emby.Security
+1个
|
CVE NVD | |
| CVE-2025-62406 |
Piwigo is vulnerable to one-click account takeover by modifying the password-reset link
|
HIGH | 8.1 | 2025-11-18 |
Piwigo Piwigo
piwigo piwigo
|
CVE NVD | |
| CVE-2025-54990 |
XWiki AdminTools application doesn't set permissions on the AdminTools space
|
MEDIUM | 5.3 | 2025-11-18 |
xwikisas application-admintools
|
CVE NVD | |
| CVE-2025-64324 |
KubeVirt Vulnerable to Arbitrary Host File Read and Write
|
HIGH | 8.5 | 2025-11-18 |
kubevirt kubevirt
kubevirt kubevirt
+1个
|
CVE NVD | |
| CVE-2025-12119 |
Bulk write with options may read invalid memory
|
MEDIUM | 6.9 | 2025-11-18 |
MongoDB C Driver
MongoDB PHP Driver
+2个
|
CVE NVD | |
| CVE-2025-37162 |
HPE Aruba Networking 100 Series Cellular Bridge 安全漏洞
|
MEDIUM | 6.5 | 2025-11-18 |
Hewlett Packard Enterprise (HPE) HPE Aruba Networking 100 Series Cellular Bridge
|
CVE NVD +1 | |
| CVE-2025-37161 |
HPE Aruba Networking 100 Series Cellular Bridge 安全漏洞
|
HIGH | 7.5 | 2025-11-18 |
Hewlett Packard Enterprise (HPE) HPE Aruba Networking 100 Series Cellular Bridge
|
CVE NVD +1 | |
| CVE-2025-37163 |
Authenticated Command Injection Vulnerability in HPE Aruba Networking Management Software (AirWave) CLI
|
HIGH | 7.2 | 2025-11-18 |
Hewlett Packard Enterprise (HPE) HPE Aruba Networking Management Software (Airwave)
arubanetworks airwave
|
CVE NVD | |
| CVE-2025-52639 |
HCL Connections is vulnerable to sensitive information disclosure
|
LOW | 3.5 | 2025-11-18 |
HCL Software Connections
hcltech connections
|
CVE NVD |