快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 355219
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-13073 |
WordPress plugin HandL UTM Grabber / Tracker 安全漏洞
|
HIGH | 7.1 | 2025-12-10 |
Unknown HandL UTM Grabber / Tracker
|
CVE NVD +1 | |
| CVE-2025-13072 |
WordPress plugin HandL UTM Grabber / Tracker 安全漏洞
|
HIGH | 7.1 | 2025-12-10 |
Unknown HandL UTM Grabber / Tracker
|
CVE NVD +1 | |
| CVE-2025-13339 |
Hippoo Mobile App for WooCommerce <= 1.7.1 - Unauthenticated Arbitrary File Read
|
HIGH | 7.5 | 2025-12-10 |
hippooo Hippoo Mobile App for WooCommerce
|
CVE NVD | |
| CVE-2025-9056 |
Unprotected service in the AudioLink component allows a local attacker to overwrite system files via...
|
MEDIUM | 5.3 | 2025-12-10 |
TECNO com.transsion.audiosmartconnect
tecno audiolink
|
CVE NVD | |
| CVE-2025-13677 |
Simple Download Counter <= 2.2.2 - Authenticated (Administrator+) Arbitrary File Read via Path Traversal
|
MEDIUM | 4.9 | 2025-12-10 |
specialk Simple Download Counter
|
CVE NVD | |
| CVE-2025-13613 |
Elated Membership <= 1.2 - Authentication Bypass via Social Login
|
CRITICAL | 9.8 | 2025-12-10 |
Elated Themes Elated Membership
|
CVE NVD | |
| CVE-2025-67507 |
Filament 安全漏洞
|
HIGH | 8.1 | 2025-12-10 |
filamentphp filament
|
CVE NVD +1 | |
| CVE-2025-67506 |
PipesHub Vulnerable to Path Traversal through Unauthenticated Arbitrary File Upload
|
CRITICAL | 9.8 | 2025-12-10 |
pipeshub-ai pipeshub-ai
|
CVE NVD | |
| CVE-2025-67485 |
HTTP/HTTPS Traffic Interception Bypass in mad-proxy
|
MEDIUM | 5.3 | 2025-12-10 |
machphy mad-proxy
|
CVE NVD | |
| CVE-2025-24857 |
Improper access control for volatile memory containing boot code in Universal Boot Loader (U-Boot) b...
|
HIGH | 7.6 | 2025-12-10 |
denx u-boot
|
CVE NVD | |
| CVE-2025-52493 |
PagerDuty Runbook through 2025-06-12 exposes stored secrets directly in the webpage DOM at the confi...
|
MEDIUM | 6.5 | 2025-12-10 |
pagerduty runbook_automation
|
CVE NVD | |
| CVE-2025-56429 |
Cross Site Scripting vulnerability in Fearless Geek Media FearlessCMS v.0.0.2-15 allows a remote att...
|
MEDIUM | 6.1 | 2025-12-10 |
fearlessgeekmedia fearlesscms
|
CVE NVD | |
| CVE-2025-56430 |
Directory Traversal vulnerability in Fearless Geek Media FearlessCMS v.0.0.2-15 allows a remote atta...
|
HIGH | 7.5 | 2025-12-10 |
fearlessgeekmedia fearlesscms
|
CVE NVD | |
| CVE-2025-56431 |
Directory Traversal vulnerability in Fearless Geek Media FearlessCMS v.0.0.2-15 allows a remote atta...
|
HIGH | 7.5 | 2025-12-10 |
fearlessgeekmedia fearlesscms
|
CVE NVD | |
| CVE-2025-63094 |
XiangShan Nanhu V2 and XiangShan Kunmighu V3 were discovered to use speculative execution and indire...
|
HIGH | 7.5 | 2025-12-10 |
xiangshan xiangshan
xiangshan xiangshan
|
CVE NVD | |
| CVE-2025-63895 |
An issue in the Bluetooth firmware of JXL 9 Inch Car Android Double Din Player Android v12.0 allows ...
|
HIGH | 7.5 | 2025-12-10 |
jxlindia jxl_9_inch_car_android_double_din_player_firmware
|
CVE NVD | |
| CVE-2025-65290 |
Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 fail ...
|
HIGH | 7.4 | 2025-12-10 |
aqara hub_m2_firmware
aqara hub_m3_firmware
+1个
|
CVE NVD | |
| CVE-2025-65291 |
Aqara Hub devices including Hub M2 4.3.6_0027, Hub M3 4.3.6_0025, Camera Hub G3 4.1.9_0027 fail to v...
|
HIGH | 7.4 | 2025-12-10 |
aqara hub_m2_firmware
aqara hub_m3_firmware
+1个
|
CVE NVD | |
| CVE-2025-65292 |
Command injection vulnerability in Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3....
|
HIGH | 7.3 | 2025-12-10 |
aqara hub_m2_firmware
aqara hub_m3_firmware
+1个
|
CVE NVD | |
| CVE-2025-65293 |
Command injection vulnerabilities in Aqara Camera Hub G3 4.1.9_0027 allow attackers to execute arbit...
|
MEDIUM | 6.6 | 2025-12-10 |
aqara camera_hub_g3_firmware
|
CVE NVD |