| CVE-2025-62456 |
Windows ReFS堆缓冲区溢出远程代码执行漏洞 |
高危 |
8.8 |
2025-12-09 |
| CVE-2025-62455 |
Windows消息队列本地权限提升漏洞 |
高危 |
7.8 |
2025-12-09 |
| CVE-2025-62454 |
Windows云文件迷你过滤器驱动堆溢出权限提升漏洞 |
高危 |
7.8 |
2025-12-09 |
| CVE-2025-62221 |
Windows Cloud Files Mini Filter Driver释放后重用特权提升漏洞 |
高危 |
7.8 |
2025-12-09 |
| CVE-2025-62153 |
WordPress Quick Interest Slider插件缺失授权漏洞 |
中危 |
5.3 |
2025-12-09 |
| CVE-2025-62152 |
ConveyThis WordPress插件缺失授权漏洞 |
中危 |
5.3 |
2025-12-09 |
| CVE-2025-62151 |
WordPress Virtuaria PagBank插件访问控制漏洞 |
中危 |
5.3 |
2025-12-09 |
| CVE-2025-62109 |
WordPress cf-geoplugin插件敏感信息泄露漏洞 |
中危 |
5.3 |
2025-12-09 |
| CVE-2025-62103 |
WordPress Media Library File Download插件跨站请求伪造漏洞 |
中危 |
4.3 |
2025-12-09 |
| CVE-2025-62102 |
WordPress DoFollow Case by Case插件CSRF漏洞 |
中危 |
4.3 |
2025-12-09 |
| CVE-2025-62100 |
ThemeRain Core WordPress插件访问控制漏洞 |
中危 |
5.3 |
2025-12-09 |
| CVE-2025-62093 |
WordPress lbg_fullscreen_fullwidth_slider插件SQL注入漏洞 |
高危 |
8.5 |
2025-12-09 |
| CVE-2025-62090 |
Gutenverse News插件存在缺失授权访问控制漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-62086 |
WordPress boxberry插件缺失授权漏洞 |
中危 |
5.4 |
2025-12-09 |
| CVE-2025-62085 |
WordPress Bertha AI插件缺失授权漏洞 |
中危 |
5.3 |
2025-12-09 |
| CVE-2025-62082 |
Generic Elements插件存储型XSS漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-61258 |
Outsystems Platform Server拒绝服务漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-61078 |
phpIPAM v1.7.3 Request IP表单跨站脚本(XSS)漏洞 |
中危 |
6.1 |
2025-12-09 |
| CVE-2025-61075 |
| adata Mitarbeiterportal 访问控制错误漏洞 |
高危 |
8.1 |
2025-12-09 |
| CVE-2025-61074 |
adata Mitarbeiter Portal 存储型XSS漏洞 |
中危 |
4.6 |
2025-12-09 |
| CVE-2025-60024 |
FortiVoice路径遍历漏洞(高危) |
高危 |
8.8 |
2025-12-09 |
| CVE-2025-59923 |
FortiAuthenticator 访问控制不当漏洞 |
低危 |
2.7 |
2025-12-09 |
| CVE-2025-59810 |
FortiSOAR访问控制不当导致信息泄露 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-59808 |
FortiSOAR未验证密码更改漏洞 |
中危 |
6.8 |
2025-12-09 |
| CVE-2025-59719 |
FortiWeb SAML签名验证绕过漏洞 |
严重 |
9.8 |
2025-12-09 |
| CVE-2025-59718 |
FortiOS/FortiProxy SAML签名验证不当导致认证绕过 |
严重 |
9.8 |
2025-12-09 |
| CVE-2025-59517 |
Windows Storage VSP Driver权限提升漏洞 |
高危 |
7.8 |
2025-12-09 |
| CVE-2025-59516 |
Windows Storage VSP Driver权限提升漏洞 |
高危 |
7.8 |
2025-12-09 |
| CVE-2025-59132 |
WordPress Duplicate Content Cure插件跨站请求伪造漏洞 |
中危 |
4.3 |
2025-12-09 |
| CVE-2025-59030 |
PowerDNS Recursor NOTIFY查询缓存投毒漏洞 |
高危 |
7.5 |
2025-12-09 |
| CVE-2025-59029 |
PowerDNS Recursor DNS缓存断言失败拒绝服务漏洞 |
中危 |
5.3 |
2025-12-09 |
| CVE-2025-57823 |
FortiAuthenticator 强制浏览漏洞可读取设备日志 |
低危 |
2.7 |
2025-12-09 |
| CVE-2025-56704 |
LeptonCMS 7.3.0 任意文件上传漏洞导致远程代码执行 |
高危 |
8.8 |
2025-12-09 |
| CVE-2025-55233 |
Windows Projected File System越界读取本地提权漏洞 |
高危 |
7.8 |
2025-12-09 |
| CVE-2025-54838 |
FortiPortal授权错误漏洞可重启FortiGate设备 |
中危 |
6.8 |
2025-12-09 |
| CVE-2025-5471 |
Yandex Telemost MacOS搜索路径劫持漏洞 |
高危 |
7.8 |
2025-12-09 |
| CVE-2025-54353 |
FortiSandbox XSS跨站脚本漏洞 |
中危 |
5.4 |
2025-12-09 |
| CVE-2025-54100 |
Windows PowerShell命令注入漏洞 |
高危 |
7.8 |
2025-12-09 |
| CVE-2025-53949 |
FortiSandbox OS命令注入漏洞 |
高危 |
7.2 |
2025-12-09 |
| CVE-2025-53679 |
FortiSandbox OS命令注入漏洞 |
高危 |
7.2 |
2025-12-09 |
| CVE-2025-49351 |
WordPress Create Posts & Terms插件CSRF漏洞导致存储型XSS |
高危 |
7.1 |
2025-12-09 |
| CVE-2025-49350 |
WordPress Actionwear Products Sync插件访问控制漏洞 |
中危 |
4.3 |
2025-12-09 |
| CVE-2025-49348 |
WordPress Hype插件缺失授权访问控制漏洞 |
中危 |
5.3 |
2025-12-09 |
| CVE-2025-49347 |
WordPress WP sIFR插件CSRF漏洞导致存储型XSS |
高危 |
7.1 |
2025-12-09 |
| CVE-2025-49341 |
WordPress PDF Creator Lite CSRF导致存储型XSS漏洞 |
高危 |
7.1 |
2025-12-09 |
| CVE-2025-46637 |
Dell Encryption 符号链接跟随权限提升漏洞 (CVE-2025-46637) |
高危 |
7.3 |
2025-12-09 |
| CVE-2025-46636 |
Dell Encryption 符号链接跟随漏洞 |
中危 |
6.6 |
2025-12-09 |
| CVE-2025-42928 |
SAP jConnect反序列化远程代码执行漏洞(CVE-2025-42928) |
严重 |
9.1 |
2025-12-09 |
| CVE-2025-42904 |
SAP Application Server ABAP信息泄露漏洞 |
中危 |
6.5 |
2025-12-09 |
| CVE-2025-42896 |
SAP BusinessObjects BI Platform URL参数SSRF漏洞 |
中危 |
5.4 |
2025-12-09 |