| CVE-2025-12125 |
WordPress HTML Forms插件存储型XSS漏洞 (CVE-2025-12125) |
中危 |
4.4 |
2025-11-08 |
| CVE-2025-12112 |
WordPress HT Script插件存储型XSS漏洞 |
中危 |
6.4 |
2025-11-08 |
| CVE-2025-12099 |
Academy LMS WordPress插件PHP对象注入漏洞 |
高危 |
7.2 |
2025-11-08 |
| CVE-2025-12098 |
WordPress Academy LMS插件敏感信息泄露漏洞 |
中危 |
5.3 |
2025-11-08 |
| CVE-2025-12092 |
CYAN Backup WordPress插件任意文件删除漏洞 |
中危 |
6.5 |
2025-11-08 |
| CVE-2025-12064 |
WordPress WP2Social Auto Publish插件PostMessage反射型XS... |
中危 |
6.1 |
2025-11-08 |
| CVE-2025-12042 |
WordPress Course Booking System 未授权数据导出漏洞 |
中危 |
5.3 |
2025-11-08 |
| CVE-2025-12000 |
WordPress WPFunnels插件任意文件删除漏洞 |
中危 |
6.5 |
2025-11-08 |
| CVE-2025-11980 |
WordPress Quick Featured Images插件SQL注入漏洞 |
中危 |
4.9 |
2025-11-08 |
| CVE-2025-11972 |
WordPress Simple Tags插件SQL注入漏洞 |
中危 |
4.9 |
2025-11-08 |
| CVE-2025-11967 |
Mail Mint插件任意文件上传漏洞 |
高危 |
7.2 |
2025-11-08 |
| CVE-2025-11748 |
WordPress Groups插件IDOR漏洞 |
中危 |
4.3 |
2025-11-08 |
| CVE-2025-11452 |
Asgaros Forum插件SQL注入漏洞 |
高危 |
7.5 |
2025-11-08 |
| CVE-2025-11448 |
WordPress Envira Photo Gallery 权限绕过漏洞 |
中危 |
4.3 |
2025-11-08 |
| CVE-2025-9458 |
Autodesk产品PRT文件解析内存损坏漏洞 |
高危 |
7.8 |
2025-11-07 |
| CVE-2025-7700 |
FFmpeg ALS音频解码器内存分配检查不当导致拒绝服务 |
中危 |
5.3 |
2025-11-07 |
| CVE-2025-64442 |
HumHub Meta-Search跨站脚本漏洞 |
中危 |
6.1 |
2025-11-07 |
| CVE-2025-64437 |
KubeVirt virt-handler符号链接验证缺失导致本地权限提升 |
中危 |
5.0 |
2025-11-07 |
| CVE-2025-64436 |
KubeVirt virt-handler权限滥用导致强制VM迁移漏洞 |
中危 |
5.3 |
2025-11-07 |
| CVE-2025-64435 |
KubeVirt virt-controller标签欺骗导致拒绝服务漏洞 |
中危 |
5.3 |
2025-11-07 |
| CVE-2025-64434 |
KubeVirt virt-handler身份验证绕过漏洞 |
中危 |
4.7 |
2025-11-07 |
| CVE-2025-64433 |
KubeVirt符号链接遍历导致任意文件读取漏洞 |
中危 |
6.5 |
2025-11-07 |
| CVE-2025-64432 |
KubeVirt virt-api组件mTLS认证绕过漏洞 |
中危 |
4.7 |
2025-11-07 |
| CVE-2025-64430 |
Parse Server SSRF服务器端请求伪造漏洞 |
高危 |
7.5 |
2025-11-07 |
| CVE-2025-64347 |
Apollo Router Core访问控制绕过漏洞 |
高危 |
7.5 |
2025-11-07 |
| CVE-2025-64343 |
Constructor安装目录权限继承漏洞导致本地权限提升 |
高危 |
7.8 |
2025-11-07 |
| CVE-2025-64339 |
ClipBucket v5 播放列表名称存储型XSS漏洞 |
中危 |
5.4 |
2025-11-07 |
| CVE-2025-64338 |
ClipBucket v5存储型XSS漏洞 |
严重 |
9.0 |
2025-11-07 |
| CVE-2025-64336 |
ClipBucket v5 照片管理功能存储型XSS漏洞 (CVE-2025-64336) |
中危 |
5.4 |
2025-11-07 |
| CVE-2025-64329 |
containerd CRI Attach goroutine泄漏导致拒绝服务漏洞 (CVE-202... |
中危 |
5.5 |
2025-11-07 |
| CVE-2025-64328 |
FreePBX Endpoint Manager filestore模块命令注入漏洞(CVE-202... |
高危 |
7.2 |
2025-11-07 |
| CVE-2025-64323 |
kgateway xDS端口未授权访问漏洞 |
中危 |
5.3 |
2025-11-07 |
| CVE-2025-64187 |
OctoPrint Action Command XSS注入漏洞 |
中危 |
4.4 |
2025-11-07 |
| CVE-2025-64184 |
Dosage路径遍历导致任意文件写入漏洞 |
高危 |
8.8 |
2025-11-07 |
| CVE-2025-64180 |
Manager-io/Manager DNS验证TOCTOU漏洞导致网络隔离绕过 |
严重 |
10.0 |
2025-11-07 |
| CVE-2025-63785 |
Onlook文本编辑器DOM型XSS漏洞 |
中危 |
6.1 |
2025-11-07 |
| CVE-2025-63784 |
Onlook OAuth回调开放重定向漏洞 |
中危 |
6.5 |
2025-11-07 |
| CVE-2025-63783 |
Onlook Web应用tRPC API授权绕过漏洞 |
高危 |
7.6 |
2025-11-07 |
| CVE-2025-63718 |
SourceCodester PQMS SQL注入漏洞 |
中危 |
6.5 |
2025-11-07 |
| CVE-2025-63717 |
SourceCodester Pet Grooming Management Software 1.... |
中危 |
6.5 |
2025-11-07 |
| CVE-2025-63716 |
SourceCodester Leads Manager Tool v1.0 CSRF跨站请求伪造漏... |
中危 |
6.5 |
2025-11-07 |
| CVE-2025-63714 |
SourceCodester User Account Generator XSS漏洞 |
中危 |
6.1 |
2025-11-07 |
| CVE-2025-63713 |
SourceCodester MatchMaster 1.0 XSS跨站脚本漏洞 |
中危 |
6.1 |
2025-11-07 |
| CVE-2025-63691 |
Pig系统Token管理接口权限验证缺陷导致信息泄露 |
严重 |
9.6 |
2025-11-07 |
| CVE-2025-63690 |
| pig-mesh Quartz计划任务远程代码执行漏洞 |
严重 |
9.1 |
2025-11-07 |
| CVE-2025-63689 |
ycf1998 money-pos系统SQL注入漏洞 |
严重 |
10.0 |
2025-11-07 |
| CVE-2025-63687 |
rymcu forest授权绕过漏洞 - 攻击者可删除任意用户帖子 |
中危 |
6.5 |
2025-11-07 |
| CVE-2025-63686 |
GuoMinJim PersonManage 任意文件下载漏洞 |
中危 |
6.5 |
2025-11-07 |
| CVE-2025-63640 |
Sourcecodester Medicine Reminder App XSS漏洞 |
中危 |
6.1 |
2025-11-07 |
| CVE-2025-63639 |
Sourcecodester FAQ Bot with AI Assistant v1.0 XSS漏... |
中危 |
6.1 |
2025-11-07 |