快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 355518
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-34256 |
Advantech WISE-DeviceOn Server < 5.4 Hard-coded JWT Key Authentication Bypass
|
CRITICAL | 10.0 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2025-34265 |
Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via rule-engines
|
MEDIUM | 5.1 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2025-66553 |
Nextcloud Tables app allowed users to view columns metadata information of any table
|
MEDIUM | 4.3 | 2025-12-05 |
nextcloud security-advisories
nextcloud security-advisories
+1个
|
CVE NVD | |
| CVE-2020-36879 |
Flexsense DiskBoss Service Unquoted Service Path Vulnerability
|
HIGH | 8.5 | 2025-12-05 |
Flexsense DiskBoss
Flexsense DiskBoss Pro
+3个
|
CVE NVD | |
| CVE-2025-34263 |
Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via plugin-config/dashboards/menus
|
MEDIUM | 5.1 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2020-36878 |
ReQuest Serious Play F3 Media Player <= 3.0.0 Directory Traversal File Disclosure
|
HIGH | 8.7 | 2025-12-05 |
ReQuest Serious Play LLC ReQuest Serious Play Media Player
ReQuest Serious Play LLC ReQuest Serious Play Media Player
+3个
|
CVE NVD | |
| CVE-2025-34266 |
Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via plugin-config/addins/menus
|
MEDIUM | 5.1 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2025-34264 |
Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via dog/{agentId}
|
MEDIUM | 5.1 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2025-34262 |
Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via devices/name/{agent_id}
|
MEDIUM | 5.1 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2020-36877 |
ReQuest Serious Play F3 Media Server <= 7.0.3 code execution
|
CRITICAL | 9.3 | 2025-12-05 |
ReQuest Serious Play LLC ReQuest Serious Play Pro
ReQuest Serious Play LLC ReQuest Serious Play
+4个
|
CVE NVD | |
| CVE-2025-34258 |
Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via devicemap/plan
|
MEDIUM | 5.1 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2025-34259 |
Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via devicemap/building
|
MEDIUM | 5.1 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2025-34261 |
Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via devicegroups/
|
MEDIUM | 5.1 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2025-34260 |
Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via action/schedule
|
MEDIUM | 5.1 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2025-34257 |
Advantech WISE-DeviceOn Server < 5.4 Authenticated Stored XSS via action/defined
|
MEDIUM | 5.1 | 2025-12-05 |
Advantech Co., Ltd. WISE-DeviceOn Server
advantech wise-deviceon_server
|
CVE NVD | |
| CVE-2025-66551 |
Nextcloud Tables is missing an ownership check which allows moving columns into tables of other users
|
MEDIUM | 6.3 | 2025-12-05 |
nextcloud security-advisories
nextcloud security-advisories
+1个
|
CVE NVD | |
| CVE-2020-36876 |
ReQuest Serious Play F3 Media Server <= 7.0.3 Debug Log Disclosure2020
|
HIGH | 8.7 | 2025-12-05 |
ReQuest Serious Play LLC ReQuest Serious Play Pro
ReQuest Serious Play LLC ReQuest Serious Play
+4个
|
CVE NVD | |
| CVE-2025-66513 |
Nextcloud Tables app share information not limited to relevant users
|
MEDIUM | 4.3 | 2025-12-05 |
nextcloud security-advisories
nextcloud security-advisories
+2个
|
CVE NVD | |
| CVE-2025-14094 |
Edimax BR-6478AC V3 formSysCmd sub_44CCE4 os command injection
|
MEDIUM | 5.1 | 2025-12-05 |
Edimax BR-6478AC V3
edimax br-6478ac_v3_firmware
|
CVE NVD | |
| CVE-2025-66550 |
Nextcloud Calendar attachments of local files are offered to downloaded
|
MEDIUM | 5.7 | 2025-12-05 |
nextcloud security-advisories
nextcloud security-advisories
+1个
|
CVE NVD |