快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352348
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-52023 |
A vulnerability in the PHP backend of gemscms.aptsys.com.sg thru 2025-05-28 allows unauthenticated r...
|
MEDIUM | 5.3 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-52024 |
A vulnerability exists in the Aptsys POS Platform Web Services module thru 2025-05-28, which exposes...
|
CRITICAL | 9.4 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-52025 |
An SQL Injection vulnerability exists in the GetServiceByRestaurantID endpoint of the Aptsys gemscms...
|
CRITICAL | 9.4 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-52026 |
An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the Ap...
|
HIGH | 7.5 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-66719 |
An issue was discovered in Free5gc NRF 1.4.0. In the access-token generation logic of free5GC, the A...
|
CRITICAL | 9.1 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-66720 |
Null pointer dereference in free5gc pcf 1.4.0 in file internal/sbi/processor/ampolicy.go in function...
|
HIGH | 7.5 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-67124 |
A TOCTOU and symlink race in svenstaro/miniserve 0.32.0 upload finalization (when uploads are enable...
|
MEDIUM | 6.8 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-67125 |
A signed integer overflow in docopt.cpp v0.6.2 (LeafPattern::match in docopt_private.h) when merging...
|
MEDIUM | 4.4 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-67229 |
An improper certificate validation vulnerability exists in ToDesktop Builder v0.32.1 This vulnerabil...
|
CRITICAL | 9.8 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-67230 |
Improper permissions in the handler for the Custom URL Scheme in ToDesktop Builder v0.33.0 allows at...
|
HIGH | 7.1 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-67231 |
A reflected cross-site scripting (XSS) vulnerability in ToDesktop Builder v0.33.1 allows attackers t...
|
MEDIUM | 5.9 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-67264 |
An OS command injection vulnerability in the com.sprd.engineermode component in Doogee Note59, Note5...
|
HIGH | 7.8 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-69907 |
An unauthenticated information disclosure vulnerability exists in Newgen OmniDocs due to missing aut...
|
HIGH | 7.5 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-69908 |
An unauthenticated information disclosure vulnerability in Newgen OmniApp allows attackers to enumer...
|
HIGH | 7.5 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-70457 |
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 w...
|
CRITICAL | 9.8 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-70458 |
A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within dom...
|
MEDIUM | 5.4 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-70983 |
Incorrect access control in the authRoutes function of SpringBlade v4.5.0 allows attackers with low-...
|
CRITICAL | 9.9 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-70985 |
Incorrect access control in the update function of RuoYi v4.8.2 allows unauthorized attackers to arb...
|
CRITICAL | 9.1 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2025-70986 |
Incorrect access control in the selectDept function of RuoYi v4.8.2 allows unauthorized attackers to...
|
HIGH | 7.5 | 2026-01-23 |
未知
|
CVE NVD | |
| CVE-2026-20613 |
The ArchiveReader.extractContents() function used by cctl image load and container image load perfor...
|
HIGH | 7.8 | 2026-01-22 |
Apple Container
Apple Containerization
|
CVE NVD |