| CVE-2025-46603 |
Dell CloudBoost虚拟设备不当限制过度认证尝试漏洞 |
高危 |
7.0 |
2025-12-05 |
| CVE-2025-34291 |
Langflow CORS配置错误导致账户接管和RCE |
高危 |
8.8 |
2025-12-05 |
| CVE-2025-34266 |
Advantech WISE-DeviceOn Server 存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-34265 |
Advantech WISE-DeviceOn Server 存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-34264 |
Advantech WISE-DeviceOn Server 存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-34263 |
Advantech WISE-DeviceOn Server 存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-34262 |
Advantech WISE-DeviceOn Server存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-34261 |
Advantech WISE-DeviceOn Server 存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-34260 |
Advantech WISE-DeviceOn Server存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-34259 |
Advantech WISE-DeviceOn Server存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-34258 |
Advantech WISE-DeviceOn Server 存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-34257 |
Advantech WISE-DeviceOn Server 存储型XSS漏洞 |
中危 |
5.4 |
2025-12-05 |
| CVE-2025-34256 |
Advantech WISE-DeviceOn Server 硬编码JWT签名密钥漏洞 |
严重 |
9.8 |
2025-12-05 |
| CVE-2025-32901 |
KDE Connect Android拒绝服务漏洞 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-32900 |
KDE Connect广播UDP协议伪造设备信息漏洞 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-32899 |
KDE Connect Android伪造发现包导致设备解除配对 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-32898 |
KDE Connect验证码暴力破解漏洞 |
中危 |
4.7 |
2025-12-05 |
| CVE-2025-14116 |
Yuxi-Know 服务器端请求伪造漏洞 |
中危 |
4.7 |
2025-12-05 |
| CVE-2025-14111 |
Rarlab RAR App路径遍历漏洞 |
中危 |
5.0 |
2025-12-05 |
| CVE-2025-14108 |
ZSPACE Q2C NAS命令注入漏洞 |
高危 |
8.8 |
2025-12-05 |
| CVE-2025-14107 |
ZSPACE Q2C NAS命令注入漏洞 |
高危 |
8.8 |
2025-12-05 |
| CVE-2025-14106 |
ZSPACE Q2C NAS命令注入漏洞 |
高危 |
8.8 |
2025-12-05 |
| CVE-2025-14105 |
TOZED ZLT M30S/M30S PRO Web接口拒绝服务漏洞(CVE-2025-14105... |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-14104 |
util-linux setpwnam()函数256字节用户名堆缓冲区越界读取漏洞 |
中危 |
6.1 |
2025-12-05 |
| CVE-2025-14094 |
Edimax BR-6478AC V3 命令注入漏洞 |
中危 |
4.7 |
2025-12-05 |
| CVE-2025-14093 |
Edimax BR-6478AC V3路由器formTracerouteDiagnosticRun命... |
中危 |
4.7 |
2025-12-05 |
| CVE-2025-14092 |
Edimax BR-6478AC V3 formDebugDiagnosticRun命令注入漏洞 |
中危 |
4.7 |
2025-12-05 |
| CVE-2025-14091 |
TrippWasTaken PHP-Guitar-Shop SQL注入漏洞 |
高危 |
7.3 |
2025-12-05 |
| CVE-2025-14090 |
AMTT酒店宽带系统cardmake_down.php SQL注入漏洞 |
中危 |
4.7 |
2025-12-05 |
| CVE-2025-14089 |
Himool ERP 权限控制不当漏洞(CVSS 6.3) |
中危 |
6.3 |
2025-12-05 |
| CVE-2025-14088 |
| JEPaaS平台/je/load接口权限提升漏洞 |
中危 |
6.3 |
2025-12-05 |
| CVE-2025-14086 |
| youlai-mall 权限控制不当漏洞 |
中危 |
6.3 |
2025-12-05 |
| CVE-2025-14085 |
| youlai-mall动态变量控制不当漏洞 |
中危 |
6.3 |
2025-12-05 |
| CVE-2025-14052 |
| youlai-mall 不当访问控制漏洞 |
中危 |
6.3 |
2025-12-05 |
| CVE-2025-13860 |
WordPress Easy Jump Links Menus插件存储型XSS漏洞 |
中危 |
6.4 |
2025-12-05 |
| CVE-2025-13739 |
WordPress CryptX插件存储型XSS漏洞 |
中危 |
6.4 |
2025-12-05 |
| CVE-2025-13684 |
| WordPress ARK Related Posts插件CSRF漏洞 |
中危 |
4.3 |
2025-12-05 |
| CVE-2025-13682 |
WordPress Trail Manager插件存储型XSS漏洞 |
中危 |
4.4 |
2025-12-05 |
| CVE-2025-13678 |
WordPress Thai Lottery Widget插件存储型XSS漏洞 |
中危 |
6.4 |
2025-12-05 |
| CVE-2025-13654 |
duc磁盘管理工具buffer_get函数栈缓冲区溢出漏洞 |
高危 |
7.5 |
2025-12-05 |
| CVE-2025-13625 |
WordPress WP-SOS-Donate插件反射型XSS漏洞 |
中危 |
6.1 |
2025-12-05 |
| CVE-2025-13623 |
WordPress Twitscription插件反射型XSS漏洞 |
中危 |
6.1 |
2025-12-05 |
| CVE-2025-13622 |
WordPress Jabbernotification插件反射型XSS漏洞 |
中危 |
6.1 |
2025-12-05 |
| CVE-2025-13621 |
WordPress Dream Gallery插件CSRF漏洞可导致XSS |
中危 |
6.1 |
2025-12-05 |
| CVE-2025-13620 |
WordPress wp-social插件缺失授权漏洞 |
中危 |
5.3 |
2025-12-05 |
| CVE-2025-13614 |
WordPress Cool Tag Cloud插件存储型XSS漏洞 |
高危 |
8.1 |
2025-12-05 |
| CVE-2025-13528 |
WordPress Feedback Modal插件未授权数据导出漏洞 |
中危 |
5.3 |
2025-12-05 |
| CVE-2025-13515 |
WordPress Nouri.sh Newsletter插件反射型XSS漏洞 |
中危 |
6.1 |
2025-12-05 |
| CVE-2025-13512 |
CoSign SSO WordPress插件反射型XSS漏洞 |
中危 |
6.1 |
2025-12-05 |
| CVE-2025-13494 |
WordPress SSP Debug插件敏感信息泄露漏洞 |
中危 |
5.3 |
2025-12-05 |