快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 355986
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-12891 |
Survey Maker <= 5.1.9.4 - Missing Authorization to Unauthenticated Information Exposure
|
MEDIUM | 5.3 | 2025-11-13 |
ays-pro Survey Maker
|
CVE NVD | |
| CVE-2025-11923 |
LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes - Various Versions - Authenticated (Student+) Privilege Escalation
|
HIGH | 8.8 | 2025-11-13 |
chrisbadgett LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes
|
CVE NVD | |
| CVE-2025-12536 |
SureForms <= 1.13.1 - Missing Authorization to Unauthenticated Sensitive Information Exposure
|
MEDIUM | 5.3 | 2025-11-13 |
brainstormforce SureForms – Contact Form, Custom Form Builder, Calculator & More
|
CVE NVD | |
| CVE-2025-12733 |
Import any XML, CSV or Excel File to WordPress (WP All Import) <= 3.9.6 - Authenticated (Administrator+) Remote Code Execution via Conditional Logic
|
HIGH | 8.8 | 2025-11-13 |
wpallimport Import any XML, CSV or Excel File to WordPress
|
CVE NVD | |
| CVE-2025-12892 |
Survey Maker <= 5.1.9.4 - Missing Authorization Unauthenticated Limited Option Update
|
MEDIUM | 5.3 | 2025-11-13 |
ays-pro Survey Maker
|
CVE NVD | |
| CVE-2025-12979 |
Welcart e-Commerce <= 2.11.24 - Missing Authorization to Unauthenticated Information Exposure
|
MEDIUM | 5.3 | 2025-11-13 |
uscnanbu Welcart e-Commerce
|
CVE NVD | |
| CVE-2025-12366 |
Page Builder: Pagelayer – Drag and Drop website builder <= 2.0.5 - Authenticated (Author+) Insecure Direct Object Reference
|
MEDIUM | 4.3 | 2025-11-13 |
softaculous Page Builder: Pagelayer – Drag and Drop website builder
|
CVE NVD | |
| CVE-2025-12089 |
Data Tables Generator by Supsystic <= 1.10.45 - Authenticated (Admin+) Arbitrary File Deletion
|
MEDIUM | 6.5 | 2025-11-13 |
supsysticcom Data Tables Generator by Supsystic
|
CVE NVD | |
| CVE-2025-59367 |
An authentication bypass vulnerability has been identified in certain DSL series routers, may allow ...
|
CRITICAL | 9.3 | 2025-11-13 |
ASUS DSL-AC51
ASUS DSL-N16
+4个
|
CVE NVD | |
| CVE-2025-64711 |
PrivateBin vulnerable to malicious filename use for self-XSS / HTML injection locally for users
|
LOW | 3.9 | 2025-11-13 |
PrivateBin PrivateBin
privatebin privatebin
|
CVE NVD | |
| CVE-2025-64716 |
Anubis vulnerable to possible XSS via redir parameter when using subrequest auth mode
|
MEDIUM | 5.1 | 2025-11-13 |
TecharoHQ anubis
|
CVE NVD | |
| CVE-2025-64710 |
bit platform 跨站脚本漏洞
|
MEDIUM | 5.3 | 2025-11-13 |
bitfoundation bitplatform
|
CVE NVD +1 | |
| CVE-2025-47220 |
A local file enumeration was found in Keyfactor SignServer versions prior to 7.3.2 .The property VIS...
|
MEDIUM | 5.3 | 2025-11-13 |
keyfactor signserver
|
CVE NVD | |
| CVE-2025-47221 |
An arbitrary file write was found in Keyfactor SignServer versions prior to 7.3.2. The properties AR...
|
MEDIUM | 5.3 | 2025-11-13 |
keyfactor signserver
|
CVE NVD | |
| CVE-2025-47222 |
A class name enumeration was found in Keyfactor SignServer versions prior to 7.3.2. Setting any chos...
|
MEDIUM | 6.5 | 2025-11-13 |
keyfactor signserver
|
CVE NVD | |
| CVE-2025-52186 |
Lichess lila before commit 11b4c0fb00f0ffd823246f839627005459c8f05c (2025-06-02) contains a Server-S...
|
MEDIUM | 6.5 | 2025-11-13 |
lichess lila
|
CVE NVD | |
| CVE-2025-55810 |
A vulnerability was found in Alaga Home Security WiFi Camera 3K (model S-CW2503C-H) with hardware ve...
|
MEDIUM | 6.8 | 2025-11-13 |
alagaai s-cw2503c-h_firmware
|
CVE NVD | |
| CVE-2025-60671 |
A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0.2B05_20...
|
MEDIUM | 5.4 | 2025-11-13 |
dlink dir-823g_firmware
|
CVE NVD | |
| CVE-2025-60672 |
An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW...
|
MEDIUM | 6.5 | 2025-11-13 |
dlink dir-878_firmware
|
CVE NVD | |
| CVE-2025-60673 |
An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW...
|
MEDIUM | 6.5 | 2025-11-13 |
dlink dir-878_firmware
|
CVE NVD |