快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 355639
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-60915 |
An issue in the size query parameter (/views/file.py) of Austrian Archaeological Institute Openatlas...
|
HIGH | 8.1 | 2025-11-24 |
craws openatlas
|
CVE NVD | |
| CVE-2025-60916 |
A reflected cross-site scripting (XSS) vulnerability in the /overview/network/ endpoint of Austrian ...
|
MEDIUM | 5.4 | 2025-11-24 |
craws openatlas
|
CVE NVD | |
| CVE-2025-60917 |
A reflected cross-site scripting (XSS) vulnerability in the /overview/network/ endpoint of Austrian ...
|
MEDIUM | 4.6 | 2025-11-24 |
craws openatlas
|
CVE NVD | |
| CVE-2025-63432 |
Xtooltech Xtool AnyScan Android Application 4.40.40 and prior is Missing SSL Certificate Validation....
|
MEDIUM | 4.6 | 2025-11-24 |
xtooltech xtool_anyscan
|
CVE NVD | |
| CVE-2025-63433 |
Xtooltech Xtool AnyScan Android Application 4.40.40 and prior uses a hardcoded cryptographic key and...
|
MEDIUM | 4.6 | 2025-11-24 |
xtooltech xtool_anyscan
|
CVE NVD | |
| CVE-2025-63434 |
The update mechanism in Xtooltech Xtool AnyScan Android Application 4.40.40 and prior is insecure. T...
|
HIGH | 8.8 | 2025-11-24 |
xtooltech xtool_anyscan
|
CVE NVD | |
| CVE-2025-63435 |
Xtooltech Xtool AnyScan Android Application 4.40.40 is Missing Authentication for Critical Function....
|
MEDIUM | 4.3 | 2025-11-24 |
xtooltech xtool_anyscan
|
CVE NVD | |
| CVE-2025-63498 |
alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting (XSS) via the "userName" parameter.
|
MEDIUM | 6.1 | 2025-11-24 |
alinto sogo
debian debian_linux
|
CVE NVD | |
| CVE-2025-63674 |
An issue in Blurams Lumi Security Camera (A31C) v23.1227.472.2926 allows local physical attackers to...
|
MEDIUM | 6.1 | 2025-11-24 |
blurams a31c_firmware
|
CVE NVD | |
| CVE-2025-63914 |
An issue was discovered in Cinnamon kotaemon 0.11.0. The _may_extract_zip function in the \libs\ktem...
|
MEDIUM | 6.5 | 2025-11-24 |
cinnamon kotaemon
|
CVE NVD | |
| CVE-2025-63952 |
A Cross-Site Request Forgery (CSRF) in the /mwapi?method=add-user component of Magewell Pro Convert ...
|
MEDIUM | 5.7 | 2025-11-24 |
magewell pro_convert_hdmi_4k_plus_firmware
magewell pro_convert_hdmi_plus_firmware
+11个
|
CVE NVD | |
| CVE-2025-63953 |
A Cross-Site Request Forgery (CSRF) in the /usapi?method=add-user component of Magewell Pro Convert ...
|
MEDIUM | 6.5 | 2025-11-24 |
magewell ultra_encode_hdmi_firmware
magewell ultra_encode_sdi_firmware
+3个
|
CVE NVD | |
| CVE-2025-63958 |
MILLENSYS Vision Tools Workspace 6.5.0.2585 exposes a sensitive configuration endpoint (/MILLENSYS/s...
|
CRITICAL | 9.8 | 2025-11-24 |
millensys vision_tools_workspace
millensys vision_tools_workspace
+1个
|
CVE NVD | |
| CVE-2025-64047 |
OpenRapid RapidCMS 1.3.1 is vulnerable to Cross Site Scripting (XSS) in /user/user-move.php.
|
MEDIUM | 6.1 | 2025-11-24 |
openrapid rapidcms
|
CVE NVD | |
| CVE-2025-64048 |
YCCMS 3.4 contains a stored cross-site scripting (XSS) vulnerability in the article management funct...
|
MEDIUM | 6.1 | 2025-11-24 |
yccms yccms
|
CVE NVD | |
| CVE-2025-65493 |
NULL pointer dereference in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to caus...
|
HIGH | 7.5 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65494 |
NULL pointer dereference in get_san_or_cn_from_cert() in src/coap_openssl.c in OISM libcoap 4.3.5 al...
|
HIGH | 7.5 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65495 |
Integer signedness error in tls_verify_call_back() in src/coap_openssl.c in OISM libcoap 4.3.5 allow...
|
HIGH | 7.5 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65496 |
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 ...
|
MEDIUM | 4.3 | 2025-11-24 |
libcoap libcoap
|
CVE NVD | |
| CVE-2025-65497 |
NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 ...
|
MEDIUM | 4.3 | 2025-11-24 |
libcoap libcoap
|
CVE NVD |