快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353571
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-13442 |
UTT 进取 750W formPdbUpConfig system command injection
|
MEDIUM | 6.9 | 2025-11-20 |
UTT 进取 750W
utt 750w_firmware
|
CVE NVD | |
| CVE-2025-13435 |
Dreampie Resty HttpClient HttpClient.java request path traversal
|
MEDIUM | 6.3 | 2025-11-20 |
Dreampie Resty
dreampie resty
|
CVE NVD | |
| CVE-2025-13434 |
jameschz Hush Framework HTTP Host Header Util.php http headers for scripting syntax
|
MEDIUM | 6.9 | 2025-11-20 |
jameschz Hush Framework
jameschz hush
|
CVE NVD | |
| CVE-2025-13433 |
Muse Group MuseHub Windows Service Muse.Updater.exe unquoted search path
|
HIGH | 7.3 | 2025-11-20 |
Muse Group MuseHub
|
CVE NVD | |
| CVE-2025-13424 |
Campcodes Supplier Management System add_product.php sql injection
|
MEDIUM | 5.1 | 2025-11-20 |
Campcodes Supplier Management System
campcodes supplier_management_system
|
CVE NVD | |
| CVE-2025-25613 |
FS Inc S3150-8T2F 8-Port Gigabit Ethernet L2+ Switch, 8 x Gigabit RJ45, with 2 x 1Gb SFP, Fanless. A...
|
HIGH | 7.5 | 2025-11-20 |
fs s3150-8t2f_firmware
|
CVE NVD | |
| CVE-2025-52410 |
Institute-of-Current-Students v1.0 contains a time-based blind SQL injection vulnerability in the my...
|
CRITICAL | 9.8 | 2025-11-20 |
vishalmathur institute-of-current-students
|
CVE NVD | |
| CVE-2025-60737 |
Cross Site Scripting vulnerability in Ilevia EVE X1 Server Firmware Version<= 4.7.18.0.eden:Logic Ve...
|
MEDIUM | 6.1 | 2025-11-20 |
ilevia eve_x1_server_firmware
|
CVE NVD | |
| CVE-2025-60738 |
An issue in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before Logic Version v6.00 - 20...
|
CRITICAL | 9.8 | 2025-11-20 |
ilevia eve_x1_server_firmware
|
CVE NVD | |
| CVE-2025-60794 |
Session tokens and passwords in couch-auth 0.21.2 are stored in JavaScript objects and remain in mem...
|
MEDIUM | 6.5 | 2025-11-20 |
perfood couchauth
|
CVE NVD | |
| CVE-2025-60796 |
phpPgAdmin 7.13.0 and earlier contains multiple cross-site scripting (XSS) vulnerabilities across va...
|
MEDIUM | 6.1 | 2025-11-20 |
phppgadmin_project phppgadmin
|
CVE NVD | |
| CVE-2025-60797 |
phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability in dataexport.php at line 118. ...
|
MEDIUM | 6.5 | 2025-11-20 |
phppgadmin_project phppgadmin
|
CVE NVD | |
| CVE-2025-60798 |
phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability in display.php at line 396. The...
|
MEDIUM | 6.5 | 2025-11-20 |
phppgadmin_project phppgadmin
|
CVE NVD | |
| CVE-2025-60799 |
phpPgAdmin 7.13.0 and earlier contains an incorrect access control vulnerability in sql.php at lines...
|
MEDIUM | 6.1 | 2025-11-20 |
phppgadmin_project phppgadmin
|
CVE NVD | |
| CVE-2025-61138 |
Qlik Sense Enterprise v14.212.13 was discovered to contain an information leak via the /dev-hub/ dir...
|
HIGH | 7.5 | 2025-11-20 |
qlik qlik_sense
|
CVE NVD | |
| CVE-2025-63685 |
Quark Cloud Drive v3.23.2 has a DLL Hijacking vulnerability. This vulnerability stems from the insec...
|
CRITICAL | 9.8 | 2025-11-20 |
quark quark_cloud_drive
|
CVE NVD | |
| CVE-2025-63700 |
NOT_EXTRACTED
|
LOW | -1.0 | 2025-11-20 |
未知
|
CVE NVD | |
| CVE-2025-63807 |
An issue was discovered in weijiang1994 university-bbs (aka Blogin) in commit 9e06bab430bfc729f27b42...
|
CRITICAL | 9.8 | 2025-11-20 |
2dogz blogin
|
CVE NVD | |
| CVE-2025-63848 |
Stored cross site scripting (xss) vulnerability in SWISH prolog thru 2.2.0 allowing attackers to exe...
|
MEDIUM | 6.1 | 2025-11-20 |
swi-prolog swish
|
CVE NVD | |
| CVE-2025-63888 |
The read function in file thinkphp\library\think\template\driver\File.php in ThinkPHP 5.0.24 contain...
|
CRITICAL | 9.8 | 2025-11-20 |
thinkphp thinkphp
|
CVE NVD |