快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 355639
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-13132 |
Dia: Increased Spoof Risk; Missing full screen toast
|
HIGH | 7.4 | 2025-11-21 |
The Browser Company of New York Dia
|
CVE NVD | |
| CVE-2025-64483 |
Wazuh API – Agent Configuration Has Improper Access Control in Agent Enrollment Endpoint
|
MEDIUM | 5.3 | 2025-11-21 |
wazuh wazuh-dashboard-plugins
|
CVE NVD | |
| CVE-2025-13470 |
RNP 0.18.0 Vulnerable PKESK session keys
|
HIGH | 7.7 | 2025-11-21 |
Ribose RNP
|
CVE NVD | |
| CVE-2025-12747 |
Tainacan <= 1.0.0 - Unauthenticated Information Exposure
|
MEDIUM | 5.3 | 2025-11-21 |
tainacan Tainacan
|
CVE NVD | |
| CVE-2025-12973 |
S2B AI Assistant – ChatBot, ChatGPT, OpenAI, Content & Image Generator <= 1.7.8 - Authenticated (Editor+) Arbitrary File Upload
|
HIGH | 7.2 | 2025-11-21 |
oc3dots S2B AI Assistant – ChatBot, ChatGPT, OpenAI, Content & Image Generator
|
CVE NVD | |
| CVE-2025-13357 |
Vault Terraform Provider Applied Incorrect Defaults for LDAP Auth Method
|
HIGH | 7.4 | 2025-11-21 |
HashiCorp Tooling
hashicorp terraform_provider
|
CVE NVD | |
| CVE-2025-41115 |
Incorrect privilege assignment
|
CRITICAL | 10.0 | 2025-11-21 |
Grafana Grafana Enterprise
grafana grafana
|
CVE NVD | |
| CVE-2025-13432 |
Terraform Enterprise state versions can be created by users with specific permissions without sufficient write access
|
MEDIUM | 4.3 | 2025-11-21 |
HashiCorp Terraform Enterprise
hashicorp terraform
+1个
|
CVE NVD | |
| CVE-2025-11127 |
Mstoreapp Mobile (App <= 2.08, Multivendor <= 9.0.1) - Unauthenticated Privilege Escalation
|
CRITICAL | 9.8 | 2025-11-21 |
Unknown Mstoreapp Mobile App
Unknown Mstoreapp Mobile Multivendor
|
CVE NVD | |
| CVE-2025-66115 |
WordPress Easy Invoice plugin <= 2.1.4 - Local File Inclusion vulnerability
|
MEDIUM | 6.6 | 2025-11-21 |
MatrixAddons Easy Invoice
|
CVE NVD | |
| CVE-2025-66114 |
WordPress Show Variations as Single Products Woocommerce plugin <= 2.0 - Broken Access Control vulnerability
|
MEDIUM | 5.3 | 2025-11-21 |
theme funda Show Variations as Single Products Woocommerce
|
CVE NVD | |
| CVE-2025-66113 |
WordPress Better Chat Support for Messenger plugin <= 1.2.18 - Broken Access Control vulnerability
|
MEDIUM | 5.4 | 2025-11-21 |
ThemeAtelier Better Chat Support for Messenger
|
CVE NVD | |
| CVE-2025-66112 |
WordPress Accessibility Toolkit by WebYes plugin <= 2.0.4 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-11-21 |
WebToffee Accessibility Toolkit by WebYes
|
CVE NVD | |
| CVE-2025-66111 |
WordPress Nelio Popups plugin <= 1.3.0 - Cross Site Scripting (XSS) vulnerability
|
MEDIUM | 6.1 | 2025-11-21 |
Nelio Software Nelio Popups
|
CVE NVD | |
| CVE-2025-66110 |
WordPress Tiktok Feed plugin <= 1.0.22 - Broken Access Control vulnerability
|
MEDIUM | 5.3 | 2025-11-21 |
bPlugins Tiktok Feed
|
CVE NVD | |
| CVE-2025-66109 |
WordPress Cart Weight for WooCommerce plugin <= 1.9.11 - Broken Access Control vulnerability
|
MEDIUM | 5.3 | 2025-11-21 |
octolize Cart Weight for WooCommerce
|
CVE NVD | |
| CVE-2025-66108 |
WordPress TNC Toolbox: Web Performance plugin <= 2.0.4 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-11-21 |
Merlot Digital (by TNC) TNC Toolbox: Web Performance
|
CVE NVD | |
| CVE-2025-66107 |
WordPress Subscriptions & Memberships for PayPal plugin <= 1.1.7 - Broken Access Control vulnerability
|
MEDIUM | 5.3 | 2025-11-21 |
Scott Paterson Subscriptions & Memberships for PayPal
|
CVE NVD | |
| CVE-2025-66106 |
WordPress Featured Post Creative plugin <= 1.5.5 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-11-21 |
Essential Plugin Featured Post Creative
|
CVE NVD | |
| CVE-2025-66101 |
WordPress CBX Bookmark & Favorite plugin <= 2.0.1 - Broken Access Control vulnerability
|
MEDIUM | 4.3 | 2025-11-21 |
Sabuj Kundu CBX Bookmark & Favorite
|
CVE NVD |