快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353571
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-63214 |
An issue was discovered in bridgetech VBC Server & Element Manager, firmware version 6.5.0-10 , 6.5....
|
MEDIUM | 6.5 | 2025-11-19 |
bridgetech vbc_server
bridgetech vbc_server
|
CVE NVD | |
| CVE-2025-63218 |
The Axel Technology WOLF1MS and WOLF2MS devices (firmware versions 0.8.5 to 1.0.3) are vulnerable to...
|
CRITICAL | 9.8 | 2025-11-19 |
axeltechnology wolf1ms_firmware
axeltechnology wolf2ms_firmware
|
CVE NVD | |
| CVE-2025-63219 |
The ITEL ISO FM SFN Adapter (firmware ISO2 2.0.0.0, WebServer 2.0) is vulnerable to session hijackin...
|
HIGH | 7.5 | 2025-11-19 |
itel iso-fm_firmware
|
CVE NVD | |
| CVE-2025-63220 |
The Sound4 FIRST web-based management interface is vulnerable to Remote Code Execution (RCE) via a m...
|
HIGH | 7.2 | 2025-11-19 |
sound4 first_firmware
|
CVE NVD | |
| CVE-2025-63221 |
The Axel Technology puma devices (firmware versions 0.8.5 to 1.0.3) are vulnerable to Broken Access ...
|
CRITICAL | 9.1 | 2025-11-19 |
axeltechnology puma_firmware
|
CVE NVD | |
| CVE-2025-63223 |
The Axel Technology StreamerMAX MK II devices (firmware versions 0.8.5 to 1.0.3) are vulnerable to B...
|
CRITICAL | 9.8 | 2025-11-19 |
axeltechnology streamermax_mk_ii_firmware
|
CVE NVD | |
| CVE-2025-63224 |
The Itel DAB Encoder (IDEnc build 25aec8d) is vulnerable to Authentication Bypass due to improper JW...
|
CRITICAL | 10.0 | 2025-11-19 |
itel idenc_firmware
|
CVE NVD | |
| CVE-2025-63243 |
A reflected cross-site scripting (XSS) vulnerability exists in the password change functionality of ...
|
MEDIUM | 4.6 | 2025-11-19 |
pixeon weblaudos
|
CVE NVD | |
| CVE-2025-63371 |
Milos Paripovic OneCommander 3.102.0.0 is vulnerable to Directory Traversal. The vulnerability resid...
|
HIGH | 7.5 | 2025-11-19 |
onecommander onecommander
|
CVE NVD | |
| CVE-2025-63719 |
Campcodes Online Hospital Management System 1.0 is vulnerable to SQL Injection in /admin/index.php v...
|
HIGH | 7.3 | 2025-11-19 |
campcodes online_hospital_management_system
|
CVE NVD | |
| CVE-2025-63878 |
Github Restaurant Website Restoran v1.0 was discovered to contain a SQL injection vulnerability via ...
|
MEDIUM | 6.5 | 2025-11-19 |
hackerwhale restaurant_website_restoran
|
CVE NVD | |
| CVE-2025-63879 |
A reflected cross-site scripted (XSS) vulnerability in the /ecommerce/products.php component of E-co...
|
MEDIUM | 6.1 | 2025-11-19 |
learnwithfair php-ecommerce-project
|
CVE NVD | |
| CVE-2025-63932 |
D-Link Router DIR-868L A1 FW106KRb01.bin has an unauthenticated remote code execution vulnerability ...
|
HIGH | 7.3 | 2025-11-19 |
dlink dir-868l_firmware
|
CVE NVD | |
| CVE-2025-65015 |
joserfc has Possible Uncontrolled Resource Consumption Vulnerability Triggered by Logging Arbitrarily Large JWT Token Payloads
|
CRITICAL | 9.2 | 2025-11-18 |
authlib joserfc
authlib joserfc
+1个
|
CVE NVD | |
| CVE-2025-65093 |
LibreNMS is vulnerable to SQL Injection (Boolean-Based Blind) in hostname parameter in ajax_output.php endpoint
|
MEDIUM | 5.5 | 2025-11-18 |
librenms librenms
librenms librenms
|
CVE NVD | |
| CVE-2025-65014 |
LibreNMS has Weak Password Policy
|
LOW | 3.7 | 2025-11-18 |
librenms librenms
librenms librenms
|
CVE NVD | |
| CVE-2025-65013 |
LibreNMS vulnerable to Reflected Cross-Site Scripting (XSS) in endpoint `/maps/nodeimage` parameter `Image Name`
|
MEDIUM | 6.2 | 2025-11-18 |
librenms librenms
librenms librenms
|
CVE NVD | |
| CVE-2025-65012 |
Kirby CMS has cross-site scripting (XSS) in the changes dialog
|
MEDIUM | 5.1 | 2025-11-18 |
getkirby kirby
getkirby kirby
|
CVE NVD | |
| CVE-2025-64515 |
Open Forms prefill data in read-only components can be tampered
|
MEDIUM | 4.3 | 2025-11-18 |
open-formulieren open-forms
open-formulieren open-forms
+1个
|
CVE NVD | |
| CVE-2025-64325 |
Emby Server is Vulnerable to Remote Code Execution Through XSS in Admin Dashboard
|
HIGH | 8.4 | 2025-11-18 |
EmbySupport Emby.Security
EmbySupport Emby.Security
+1个
|
CVE NVD |