快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 340282
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-12953 |
Classified Listing – AI-Powered Classified ads & Business Directory Plugin <= 5.2.0 - Missing Authorization to Authenticated (Subscriber+) Listing Types Tampering
|
MEDIUM | 4.3 | 2025-11-11 |
techlabpro1 Classified Listing – AI-Powered Classified ads & Business Directory Plugin
|
CVE NVD | |
| CVE-2025-12787 |
Hydra Booking – All in One Appointment Booking System | Appointment Scheduling, Booking Calendar & WooCommerce Bookings <= 1.1.27 - Unauthenticated Arbitrary Booking Cancellation via Weak Hash Generation
|
MEDIUM | 5.3 | 2025-11-11 |
themefic Hydra Booking — Appointment Scheduling & Booking Calendar
|
CVE NVD | |
| CVE-2025-12539 |
TNC Toolbox: Web Performance <= 1.4.2 - Unauthenticated Sensitive Information Exposure to Privilege Escalation/cPanel Account Takeover
|
CRITICAL | 10.0 | 2025-11-11 |
leopardhost TNC Toolbox: Web Performance
|
CVE NVD | |
| CVE-2025-7633 |
Stored XSS
|
HIGH | 7.3 | 2025-11-11 |
Zohocorp ManageEngine Exchange Reporter Plus
|
CVE NVD | |
| CVE-2025-7632 |
Stored XSS
|
HIGH | 7.3 | 2025-11-11 |
Zohocorp ManageEngine Exchange Reporter Plus
|
CVE NVD | |
| CVE-2025-7430 |
Stored XSS
|
HIGH | 7.3 | 2025-11-11 |
Zohocorp ManageEngine Exchange Reporter Plus
|
CVE NVD | |
| CVE-2017-20210 |
Photo Station
|
MEDIUM | -1.0 | 2025-11-11 |
QNAP Systems Inc. Photo Station
|
CVE NVD | |
| CVE-2025-5317 |
Improper access restriction to critical folder in Bitdefender Endpoint Security Tools for Mac
|
MEDIUM | 6.8 | 2025-11-11 |
Bitdefender Endpoint Security Tools for Mac
|
CVE NVD | |
| CVE-2025-7429 |
Stored XSS
|
HIGH | 7.3 | 2025-11-11 |
Zohocorp ManageEngine Exchange Reporter Plus
|
CVE NVD | |
| CVE-2025-9055 |
The VAPIX Edge storage API that allowed a privilege escalation, enabling a VAPIX administrator-privi...
|
MEDIUM | 6.4 | 2025-11-11 |
Axis Communications AB AXIS OS
|
CVE NVD | |
| CVE-2025-8998 |
It was possible to upload files with a specific name to a temporary directory, which may result in p...
|
LOW | 3.1 | 2025-11-11 |
Axis Communications AB AXIS OS
|
CVE NVD | |
| CVE-2025-9524 |
The VAPIX API port.cgi did not have sufficient input validation, which may result in process crashes...
|
MEDIUM | 4.3 | 2025-11-11 |
Axis Communications AB AXIS OS
|
CVE NVD | |
| CVE-2025-10714 |
AXIS Optimizer was vulnerable to an unquoted search path vulnerability, which could potentially lead...
|
HIGH | 8.4 | 2025-11-11 |
Axis Communications AB AXIS Optimizer
|
CVE NVD | |
| CVE-2025-8108 |
An ACAP configuration file has improper permissions and lacks input validation, which could potentia...
|
MEDIUM | 6.7 | 2025-11-11 |
Axis Communications AB AXIS OS
|
CVE NVD | |
| CVE-2025-6779 |
An ACAP configuration file has improper permissions, which could allow command injection and potenti...
|
MEDIUM | 6.7 | 2025-11-11 |
Axis Communications AB AXIS OS
|
CVE NVD | |
| CVE-2025-6571 |
A 3rd-party component exposed its password in process arguments, allowing for low-privileged users t...
|
MEDIUM | 6.0 | 2025-11-11 |
Axis Communications AB AXIS OS
|
CVE NVD | |
| CVE-2025-5452 |
A malicious ACAP application can gain access to admin-level service account credentials used by legi...
|
MEDIUM | 6.6 | 2025-11-11 |
Axis Communications AB AXIS OS
|
CVE NVD | |
| CVE-2025-6298 |
ACAP applications can gain elevated privileges due to improper input validation, potentially leading...
|
MEDIUM | 6.7 | 2025-11-11 |
Axis Communications AB AXIS OS
|
CVE NVD | |
| CVE-2025-5718 |
The ACAP Application framework could allow privilege escalation through a symlink attack. This vulne...
|
MEDIUM | 6.8 | 2025-11-11 |
Axis Communications AB AXIS OS
|
CVE NVD | |
| CVE-2025-5454 |
An ACAP configuration file lacked sufficient input validation, which could allow a path traversal at...
|
MEDIUM | 6.4 | 2025-11-11 |
Axis Communications AB AXIS OS
|
CVE NVD |