漏洞列表 - 漏洞数据展示平台

快速搜索提示： 按厂商查询（如：microsoft）| 按产品查询（如：microsoft sql_server）

搜索关键词支持模糊搜索，但速度较慢

严重程度

数据源

排序

常用厂商： microsoft cisco google apple oracle

示例： microsoft sql_server cisco ios apache http_server

漏洞列表 353571

CVE ID	标题	严重程度	CVSS	发布时间	受影响产品	数据源
CVE-2025-63514	kishan0725 Hospital Management System has a Cross-Site Scripting (XSS) vulnerability in appsearch.ph...	MEDIUM	6.1	2025-11-18	kishan0725 hospital_management_system	CVE NVD
CVE-2025-63602	A vulnerability was discovered in Awesome Miner thru 11.2.4 that allows arbitrary read and write to ...	HIGH	7.3	2025-11-18	awesomeminer awesome_miner	CVE NVD
CVE-2025-63603	A command injection vulnerability exists in the MCP Data Science Server's (reading-plus-ai/mcp-serve...	MEDIUM	6.5	2025-11-18	mcp_server_for_data_exploration_project mcp_server_for_data_exploration	CVE NVD
CVE-2025-63604	A code injection vulnerability exists in baryhuang/mcp-server-aws-resources-python 0.1.0 that allows...	MEDIUM	6.5	2025-11-18	baryhuang aws_resources_mcp_server	CVE NVD
CVE-2025-63693	The comment editing template (dzz/comment/template/edit_form.htm) in DzzOffice 2.3.x lacks adequate ...	MEDIUM	5.4	2025-11-18	dzzoffice dzzoffice	CVE NVD
CVE-2025-63694	DzzOffice v2.3.7 and before is vulnerable to SQL Injection in explorer/groupmanage.	CRITICAL	9.8	2025-11-18	dzzoffice dzzoffice	CVE NVD
CVE-2025-63695	DzzOffice v2.3.7 and before is vulnerable to Arbitrary File Upload in /dzz/system/ueditor/php/contro...	CRITICAL	9.8	2025-11-18	dzzoffice dzzoffice	CVE NVD
CVE-2025-63749	pnetlab 5.3.11 is vulnerable to Command Injection via the qemu_options parameter.	MEDIUM	6.5	2025-11-18	pnetlab pnetlab	CVE NVD
CVE-2025-63800	The password change endpoint in Open Source Point of Sale 3.4.1 allows users to set their account pa...	HIGH	7.5	2025-11-18	opensourcepos open_source_point_of_sale	CVE NVD
CVE-2025-63828	Host Header Injection vulnerability in Backdrop CMS 1.32.1 allows attackers to manipulate the Host h...	MEDIUM	6.1	2025-11-18	backdropcms backdrop_cms	CVE NVD
CVE-2025-63829	eProsima Fast-DDS v3.3 and before has an infinite loop vulnerability caused by integer overflow in t...	MEDIUM	5.3	2025-11-18	eprosima fast_dds	CVE NVD
CVE-2025-63883	A DOM-based cross-site scripting vulnerability exists in electic-shop v1.0 (Bhabishya-123/E-commerce...	MEDIUM	5.4	2025-11-18	未知	CVE NVD
CVE-2025-63892	A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected is t...	MEDIUM	6.8	2025-11-18	remyandrade student_grades_management_system	CVE NVD
CVE-2025-63955	A Cross-Site Request Forgery (CSRF) vulnerability in the manage-students.php component of PHPGurukul...	HIGH	7.5	2025-11-18	phpgurukul student_record_system	CVE NVD
CVE-2025-63994	An arbitrary file upload vulnerability in the /php/UploadHandler.php component of RichFilemanager v2...	CRITICAL	9.8	2025-11-18	psolom richfilemanager	CVE NVD
CVE-2025-64076	Multiple vulnerabilities exist in cbor2 through version 5.7.0 in the decode_definite_long_string() f...	HIGH	7.5	2025-11-18	agronholm cbor2	CVE NVD
CVE-2025-13306	D-Link DWR-M920/DWR-M921/DIR-822K/DIR-825M formDebugDiagnosticRun system command injection	MEDIUM	5.3	2025-11-17	D-Link DWR-M920 D-Link DWR-M921 +6个	CVE NVD
CVE-2025-13230	Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentiall...	HIGH	8.8	2025-11-17	Google Chrome google chrome	CVE NVD
CVE-2025-13229	Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentiall...	HIGH	8.8	2025-11-17	Google Chrome google chrome	CVE NVD
CVE-2025-13228	Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentiall...	HIGH	8.8	2025-11-17	Google Chrome google chrome	CVE NVD

耗时统计

总耗时:	249.78 ms
构建查询耗时:	0.0 ms
统计耗时:	237.2 ms
获取数据耗时:	11.29 ms
数据转换耗时:	1.28 ms

数据统计

匹配文档数:	353571
返回文档数:	20
当前页码:	573
每页数量:	20
跳过记录数:	11440

查询详情

查询集合:	`uni_vulnerabilities`
使用过滤器:	否
搜索关键词:	-
严重程度:	-
数据源:	-
效率分析:	良好查询速度正常

优化建议：

匹配文档数量很大（353571），建议使用更精确的搜索条件
当前未使用任何过滤条件，查询全部数据可能较慢

漏洞列表 353571

参考链接