快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 355219
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-9638 |
i-Educar 安全漏洞
|
MEDIUM | 4.8 | 2025-12-09 |
Portabilis i-Educar
portabilis i-educar
|
CVE NVD +1 | |
| CVE-2025-5469 |
Dylib Hijacking in Yandex Messenger
|
HIGH | 7.3 | 2025-12-09 |
Yandex Messenger
|
CVE NVD | |
| CVE-2025-10573 |
Stored XSS in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote unauthenticated ...
|
CRITICAL | 9.6 | 2025-12-09 |
Ivanti Endpoint Manager
ivanti endpoint_manager
+1个
|
CVE NVD | |
| CVE-2025-5471 |
Dylib Hijacking in Yandex Telemost
|
HIGH | 7.3 | 2025-12-09 |
Yandex Telemost
|
CVE NVD | |
| CVE-2025-5470 |
Dylib Hijacking in Yandex Disk
|
HIGH | 7.3 | 2025-12-09 |
Yandex Disk
|
CVE NVD | |
| CVE-2025-13642 |
ProfilePress <= 4.16.7 - Authenticated (Subscriber+) Arbitrary Shortcode Execution
|
MEDIUM | 5.4 | 2025-12-09 |
properfraction Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress
|
CVE NVD | |
| CVE-2025-67467 |
WordPress GiveWP plugin <= 4.13.1 - Cross Site Request Forgery (CSRF) vulnerability
|
MEDIUM | 4.5 | 2025-12-09 |
StellarWP GiveWP
|
CVE NVD | |
| CVE-2025-66533 |
WordPress GiveWP plugin <= 4.13.1 - Arbitrary Shortocde Execution vulnerability
|
HIGH | 7.8 | 2025-12-09 |
StellarWP GiveWP
|
CVE NVD | |
| CVE-2025-2296 |
EDK2 安全漏洞
|
HIGH | 8.4 | 2025-12-09 |
TianoCore EDK2
|
CVE NVD +1 | |
| CVE-2025-14345 |
Cross-Shard Failovers May Lead to Partial Transaction Commit in MongoDB Server
|
LOW | 2.3 | 2025-12-09 |
MongoDB Inc. MongoDB Server
mongodb mongodb
+1个
|
CVE NVD | |
| CVE-2024-38798 |
Uncleared password keystrokes in circular queue can lead to information disclosure or escalation of privilege
|
MEDIUM | 5.8 | 2025-12-09 |
TianoCore EDK2
|
CVE NVD | |
| CVE-2025-63077 |
WordPress Happy Addons for Elementor plugin <= 3.20.2 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-12-09 |
HappyMonster Happy Addons for Elementor
|
CVE NVD | |
| CVE-2025-63076 |
WordPress plugin The7 Elements 安全漏洞
|
HIGH | 7.5 | 2025-12-09 |
Dream-Theme The7 Elements
|
CVE NVD +1 | |
| CVE-2025-63075 |
WordPress plugin Betheme 跨站脚本漏洞
|
MEDIUM | 6.5 | 2025-12-09 |
muffingroup Betheme
|
CVE NVD +1 | |
| CVE-2025-63074 |
WordPress The7 theme <= 12.8.0.2 - Local File Inclusion vulnerability
|
HIGH | 7.5 | 2025-12-09 |
Dream-Theme The7
|
CVE NVD | |
| CVE-2025-63073 |
WordPress The7 theme <= 12.8.0.2 - Cross Site Scripting (XSS) vulnerability
|
MEDIUM | 6.5 | 2025-12-09 |
Dream-Theme The7
|
CVE NVD | |
| CVE-2025-63072 |
WordPress plugin Cornerstone 跨站脚本漏洞
|
MEDIUM | 6.5 | 2025-12-09 |
THEMECO Cornerstone
|
CVE NVD +1 | |
| CVE-2025-63071 |
WordPress Shortcodes and extra features for Phlox theme plugin <= 2.17.12 - Sensitive Data Exposure vulnerability
|
MEDIUM | 5.3 | 2025-12-09 |
averta Shortcodes and extra features for Phlox theme
|
CVE NVD | |
| CVE-2025-63070 |
WordPress Download Manager plugin <= 3.3.32 - Sensitive Data Exposure vulnerability
|
MEDIUM | 4.3 | 2025-12-09 |
Shahjada Download Manager
|
CVE NVD | |
| CVE-2025-63069 |
WordPress plugin Ivory Search 安全漏洞
|
MEDIUM | 5.3 | 2025-12-09 |
Vinod Dalvi Ivory Search
|
CVE NVD +1 |