| CVE-2025-13720 |
Google Chrome Loader 坏类型转换漏洞 |
高危 |
8.8 |
2025-12-02 |
| CVE-2025-13697 |
| WordPress BlockArt Blocks插件存储型XSS漏洞 |
中危 |
6.4 |
2025-12-02 |
| CVE-2025-13696 |
WordPress Zigaform插件敏感信息泄露漏洞 |
中危 |
5.3 |
2025-12-02 |
| CVE-2025-13685 |
WordPress Photo Gallery插件CSRF漏洞 |
中危 |
4.3 |
2025-12-02 |
| CVE-2025-13640 |
Google Chrome密码管理不当实现导致本地认证绕过 |
低危 |
3.5 |
2025-12-02 |
| CVE-2025-13639 |
Google Chrome WebRTC不当实现导致任意读写漏洞 |
高危 |
8.1 |
2025-12-02 |
| CVE-2025-13638 |
Google Chrome Media Stream 释放后重用漏洞 |
高危 |
8.8 |
2025-12-02 |
| CVE-2025-13637 |
Google Chrome Downloads下载保护绕过漏洞 |
中危 |
4.3 |
2025-12-02 |
| CVE-2025-13636 |
Google Chrome Split View UI欺骗漏洞 |
中危 |
4.3 |
2025-12-02 |
| CVE-2025-13635 |
Google Chrome Downloads组件UI欺骗漏洞 |
中危 |
4.4 |
2025-12-02 |
| CVE-2025-13634 |
Google Chrome Windows Downloads组件Mark of the Web绕过... |
中危 |
4.4 |
2025-12-02 |
| CVE-2025-13633 |
Google Chrome Digital Credentials 释放后重用漏洞 (CVE-202... |
高危 |
8.8 |
2025-12-02 |
| CVE-2025-13632 |
Google Chrome DevTools沙箱逃逸漏洞 |
中危 |
5.4 |
2025-12-02 |
| CVE-2025-13631 |
Google Chrome Mac版Google Updater权限提升漏洞 |
高危 |
8.8 |
2025-12-02 |
| CVE-2025-13630 |
Google Chrome V8类型混淆远程代码执行漏洞 |
高危 |
8.8 |
2025-12-02 |
| CVE-2025-13606 |
WordPress Export All Posts插件CSRF漏洞导致敏感数据导出 |
中危 |
6.5 |
2025-12-02 |
| CVE-2025-13542 |
WordPress DesignThemes LMS插件权限提升漏洞 |
严重 |
9.8 |
2025-12-02 |
| CVE-2025-13534 |
WordPress ELEX HelpDesk插件特权提升漏洞 |
中危 |
6.3 |
2025-12-02 |
| CVE-2025-13516 |
WordPress SureMail插件任意文件上传漏洞导致RCE |
高危 |
8.1 |
2025-12-02 |
| CVE-2025-13505 |
Datactive存储型XSS跨站脚本漏洞 |
中危 |
4.8 |
2025-12-02 |
| CVE-2025-13387 |
Kadence WooCommerce Email Designer插件存储型XSS漏洞 |
高危 |
7.2 |
2025-12-02 |
| CVE-2025-13372 |
Django FilteredRelation SQL注入漏洞 |
中危 |
4.3 |
2025-12-02 |
| CVE-2025-13353 |
gokey种子解密逻辑缺陷导致密码熵值降低 |
中危 |
5.5 |
2025-12-02 |
| CVE-2025-13295 |
Argus BILGER 消息标识符选择导致敏感信息泄露 |
高危 |
7.5 |
2025-12-02 |
| CVE-2025-13140 |
SurveyJS WordPress插件CSRF漏洞导致调查被删除 |
中危 |
4.3 |
2025-12-02 |
| CVE-2025-13090 |
WP Directory Kit插件SQL注入漏洞 |
中危 |
4.9 |
2025-12-02 |
| CVE-2025-13007 |
WordPress WP Social Ninja插件存储型XSS漏洞 |
中危 |
6.1 |
2025-12-02 |
| CVE-2025-13001 |
WordPress donation插件SQL注入漏洞 |
中危 |
4.1 |
2025-12-02 |
| CVE-2025-13000 |
WordPress db-access插件SQL注入漏洞 |
高危 |
7.7 |
2025-12-02 |
| CVE-2025-12630 |
WordPress Upload.am插件权限绕过导致敏感配置信息泄露(CVE-2025-12630... |
中危 |
4.9 |
2025-12-02 |
| CVE-2025-12529 |
WordPress Cost Calculator Builder 任意文件删除漏洞 |
高危 |
8.8 |
2025-12-02 |
| CVE-2025-12483 |
WordPress Visualizer插件SQL注入漏洞 |
中危 |
6.5 |
2025-12-02 |
| CVE-2025-11789 |
Circutor SGE-PLC越界读取漏洞 |
高危 |
7.5 |
2025-12-02 |
| CVE-2025-11788 |
Circutor SGE-PLC设备ShowSupervisorParameters函数堆溢出漏洞 |
严重 |
9.8 |
2025-12-02 |
| CVE-2025-11787 |
Circutor SGE-PLC命令注入漏洞 |
高危 |
8.8 |
2025-12-02 |
| CVE-2025-11786 |
Circutor SGE-PLC1000/SGE-PLC50 SetUserPassword() 远... |
严重 |
9.8 |
2025-12-02 |
| CVE-2025-11785 |
Circutor SGE-PLC1000/SGE-PLC50 ShowMeterPasswords(... |
严重 |
9.8 |
2025-12-02 |
| CVE-2025-11784 |
Circutor SGE-PLC1000/SGE-PLC50 栈缓冲区溢出漏洞 |
严重 |
9.8 |
2025-12-02 |
| CVE-2025-11783 |
Circutor SGE-PLC1000/SGE-PLC50 缓冲区溢出漏洞 |
严重 |
9.8 |
2025-12-02 |
| CVE-2025-11782 |
Circutor SGE-PLC1000/SGE-PLC50 栈缓冲区溢出漏洞 |
严重 |
9.8 |
2025-12-02 |
| CVE-2025-11781 |
Circutor SGE-PLC1000/SGE-PLC50 硬编码密钥漏洞 |
高危 |
7.8 |
2025-12-02 |
| CVE-2025-11780 |
Circutor SGE-PLC 栈缓冲区溢出漏洞 |
严重 |
9.8 |
2025-12-02 |
| CVE-2025-11779 |
Circutor SGE-PLC1000/SGE-PLC50 SetLan函数缓冲区溢出导致远程命令... |
严重 |
9.8 |
2025-12-02 |
| CVE-2025-11778 |
Circutor SGE-PLC设备TACACSPLUS栈缓冲区溢出漏洞 |
严重 |
9.8 |
2025-12-02 |
| CVE-2025-11726 |
| WordPress Beaver Builder插件授权缺失漏洞 |
中危 |
4.3 |
2025-12-02 |
| CVE-2025-10543 |
Eclipse Paho Go MQTT 缓冲区整数溢出漏洞 |
中危 |
5.3 |
2025-12-02 |
| CVE-2024-45675 |
IBM Informix Dynamic Server 本地管理员无密码认证绕过漏洞 |
高危 |
8.4 |
2025-12-02 |
| CVE-2025-8351 |
Avast Antivirus MacOS堆溢出远程代码执行漏洞 |
严重 |
9.0 |
2025-12-01 |
| CVE-2025-8045 |
Arm GPU内核驱动释放后重用漏洞 |
中危 |
4.0 |
2025-12-01 |
| CVE-2025-7007 |
Avast Antivirus Mac/Linux 零指针解引用漏洞 |
高危 |
7.5 |
2025-12-01 |