漏洞列表 - 漏洞数据展示平台

快速搜索提示： 按厂商查询（如：microsoft）| 按产品查询（如：microsoft sql_server）

搜索关键词支持模糊搜索，但速度较慢

严重程度

数据源

排序

常用厂商： microsoft cisco google apple oracle

示例： microsoft sql_server cisco ios apache http_server

漏洞列表 354145

CVE ID	标题	严重程度	CVSS	发布时间	受影响产品	数据源
CVE-2025-67846	The Deployment Infrastructure in Mintlify Platform before 2025-11-15 allows remote attackers to bypa...	MEDIUM	4.9	2025-12-19	Mintlify Mintlify Platform mintlify mintlify	CVE NVD
CVE-2025-14898	CodeAstro Real Estate Management System Administrator Endpoint userbuilderdelete.php sql injection	MEDIUM	5.1	2025-12-18	CodeAstro Real Estate Management System codeastro real_estate_management_system	CVE NVD
CVE-2025-14897	CodeAstro Real Estate Management System Administrator Endpoint useragentdelete.php sql injection	MEDIUM	5.1	2025-12-18	CodeAstro Real Estate Management System codeastro real_estate_management_system	CVE NVD
CVE-2025-64675	Azure Cosmos DB Spoofing Vulnerability	HIGH	8.3	2025-12-18	Microsoft Azure Cosmos DB microsoft azure_cosmos_db	CVE NVD
CVE-2025-68398	Weblate has git config file overwrite vulnerability that leads to remote code execution	CRITICAL	9.1	2025-12-18	WeblateOrg weblate weblate weblate	CVE NVD
CVE-2025-68279	Weblate has an arbitrary file read via symbolic links	HIGH	7.7	2025-12-18	WeblateOrg weblate weblate weblate	CVE NVD
CVE-2025-68422	Kibana Improper Authorization	MEDIUM	4.3	2025-12-18	Elastic Kibana elastic kibana +1个	CVE NVD
CVE-2025-68386	Kibana Improper Authorization	MEDIUM	4.3	2025-12-18	Elastic Kibana elastic kibana	CVE NVD
CVE-2025-68390	Elasticsearch Allocation of Resources Without Limits or Throttling	MEDIUM	4.9	2025-12-18	Elastic Elasticsearch elastic elasticsearch	CVE NVD
CVE-2025-68389	Kibana Allocation of Resources Without Limits or Throttling	MEDIUM	6.5	2025-12-18	Elastic Kibana elastic kibana	CVE NVD
CVE-2025-68387	Kibana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	MEDIUM	6.1	2025-12-18	Elastic Kibana elastic kibana	CVE NVD
CVE-2025-68385	Kibana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	HIGH	7.2	2025-12-18	Elastic Kibana elastic kibana	CVE NVD
CVE-2025-68384	Elastic Elasticsearch 安全漏洞	MEDIUM	6.5	2025-12-18	Elastic Elasticsearch elastic elasticsearch	CVE NVD +1
CVE-2025-64677	Office Out-of-Box Experience Spoofing Vulnerability	HIGH	8.2	2025-12-18	Microsoft Office Out-of-Box Experience microsoft office_out-of-box_experience	CVE NVD
CVE-2025-64676	Microsoft Purview eDiscovery Remote Code Execution Vulnerability	HIGH	7.2	2025-12-18	Microsoft Microsoft Purview microsoft purview	CVE NVD
CVE-2025-65037	Azure Container Apps Remote Code Execution Vulnerability	CRITICAL	10.0	2025-12-18	Microsoft Azure Container Apps microsoft azure_container_apps	CVE NVD
CVE-2025-65041	Microsoft Partner Center Elevation of Privilege Vulnerability	CRITICAL	10.0	2025-12-18	Microsoft Microsoft Partner Center microsoft partner_center	CVE NVD
CVE-2025-64663	Custom Question Answering Elevation of Privilege Vulnerability	CRITICAL	9.9	2025-12-18	Microsoft Azure Cognitive Service for Language microsoft azure_language	CVE NVD
CVE-2025-65046	Microsoft Edge (Chromium-based) Spoofing Vulnerability	LOW	3.1	2025-12-18	Microsoft Microsoft Edge for Android microsoft edge_chromium	CVE NVD
CVE-2025-68383	Filebeat Improper Validation of Specified Index, Position, or Offset in Input	MEDIUM	6.5	2025-12-18	Elastic Filebeat elastic filebeat	CVE NVD

耗时统计

总耗时:	245.84 ms
构建查询耗时:	0.0 ms
统计耗时:	239.12 ms
获取数据耗时:	6.1 ms
数据转换耗时:	0.62 ms

数据统计

匹配文档数:	354145
返回文档数:	20
当前页码:	365
每页数量:	20
跳过记录数:	7280

查询详情

查询集合:	`uni_vulnerabilities`
使用过滤器:	否
搜索关键词:	-
严重程度:	-
数据源:	-
效率分析:	良好查询速度正常

优化建议：

匹配文档数量很大（354145），建议使用更精确的搜索条件
当前未使用任何过滤条件，查询全部数据可能较慢

漏洞列表 354145

参考链接