| CVE-2025-55752 |
Apache Tomcat相对路径遍历漏洞 |
高危 |
7.5 |
2025-10-27 |
| CVE-2025-54970 |
BAE SOCET GXP Job Status Service 认证绕过漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-54969 |
BAE SOCET GXP Job Status Service 跨站请求伪造漏洞 |
中危 |
6.1 |
2025-10-27 |
| CVE-2025-54968 |
BAE SOCET GXP Job Service 认证缺失漏洞 |
高危 |
8.8 |
2025-10-27 |
| CVE-2025-54967 |
BAE SOCET GXP XXE注入漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-54965 |
BAE SOCET GXP Job Status Service XSS漏洞 |
中危 |
6.1 |
2025-10-27 |
| CVE-2025-53533 |
Pi-hole Admin Interface 6.2.1及更早版本反射型XSS漏洞 |
中危 |
6.1 |
2025-10-27 |
| CVE-2025-52268 |
StarCharge Artemis AC Charger 硬编码AES密钥漏洞 |
高危 |
7.5 |
2025-10-27 |
| CVE-2025-52264 |
StarCharge Artemis AC Charger download.cgi栈溢出漏洞 |
高危 |
8.0 |
2025-10-27 |
| CVE-2025-52263 |
Startcharge Artemis AC Charger 固件上传远程代码执行漏洞 |
高危 |
8.0 |
2025-10-27 |
| CVE-2025-50055 |
OpenVPN Access Server SAML模块XSS漏洞 |
中危 |
6.4 |
2025-10-27 |
| CVE-2025-48088 |
WordPress Ultimate Addons for WPBakery存储型XSS漏洞 |
中危 |
6.5 |
2025-10-27 |
| CVE-2025-46602 |
Dell SupportAssist OS Recovery 信息泄露漏洞 |
中危 |
4.4 |
2025-10-27 |
| CVE-2025-46583 |
ZTE MC889A Pro 短信服务拒绝服务漏洞 |
中危 |
5.3 |
2025-10-27 |
| CVE-2025-46582 |
ZTE ZXMP M721 私钥泄露漏洞 |
高危 |
7.7 |
2025-10-27 |
| CVE-2025-41384 |
SuiteCRM v7.14.1 反射型XSS漏洞 |
中危 |
6.1 |
2025-10-27 |
| CVE-2025-41068 |
Open5GS NRF可达断言拒绝服务漏洞 |
高危 |
7.5 |
2025-10-27 |
| CVE-2025-41067 |
Open5GS NRF可达性断言拒绝服务漏洞 |
高危 |
7.5 |
2025-10-27 |
| CVE-2025-36170 |
IBM QRadar SIEM存储型跨站脚本漏洞 |
中危 |
6.4 |
2025-10-27 |
| CVE-2025-36138 |
IBM QRadar SIEM 7.5 存储型跨站脚本漏洞 (CVE-2025-36138) |
中危 |
6.4 |
2025-10-27 |
| CVE-2025-36121 |
IBM OpenPages HTML注入漏洞 |
中危 |
5.4 |
2025-10-27 |
| CVE-2025-36007 |
IBM QRadar SIEM 7.5 Update脚本权限提升漏洞 |
高危 |
7.8 |
2025-10-27 |
| CVE-2025-32785 |
Pi-hole Admin Interface 跨站脚本漏洞 |
中危 |
5.4 |
2025-10-27 |
| CVE-2025-27225 |
TRUfusion Enterprise 未授权访问敏感信息漏洞 |
高危 |
7.5 |
2025-10-27 |
| CVE-2025-27224 |
TRUfusion Enterprise路径遍历导致任意文件上传远程代码执行 |
严重 |
9.8 |
2025-10-27 |
| CVE-2025-27223 |
TRUfusion Enterprise 静态密钥认证绕过漏洞 |
高危 |
7.5 |
2025-10-27 |
| CVE-2025-27222 |
| TRUfusion Enterprise路径遍历漏洞导致敏感信息泄露 |
高危 |
8.6 |
2025-10-27 |
| CVE-2025-12365 |
BLU-IC2/IC4 HTTP头信息泄露漏洞 |
中危 |
5.3 |
2025-10-27 |
| CVE-2025-12364 |
BLU-IC2/IC4弱密码策略漏洞 |
严重 |
9.8 |
2025-10-27 |
| CVE-2025-12363 |
BLU-IC2/BLU-IC4 邮件密码泄露漏洞 |
高危 |
7.5 |
2025-10-27 |
| CVE-2025-12351 |
Honeywell S35系列摄像头授权绕过漏洞 |
中危 |
6.8 |
2025-10-27 |
| CVE-2025-12334 |
code-projects E-Commerce Website 1.0 跨站脚本(XSS)漏洞 |
中危 |
4.3 |
2025-10-27 |
| CVE-2025-12333 |
code-projects E-Commerce Website 1.0 跨站脚本漏洞 |
中危 |
4.3 |
2025-10-27 |
| CVE-2025-12331 |
Willow CMS 1.4.0 管理员无限制文件上传漏洞 |
中危 |
4.7 |
2025-10-27 |
| CVE-2025-12330 |
Willow CMS存储型XSS漏洞 |
低危 |
2.4 |
2025-10-27 |
| CVE-2025-12329 |
shawon100 RUET OJ /details.php ID参数SQL注入漏洞 |
中危 |
6.3 |
2025-10-27 |
| CVE-2025-12328 |
shawon100 RUET OJ contestproblem.php SQL注入漏洞 |
中危 |
6.3 |
2025-10-27 |
| CVE-2025-12327 |
shawon100 RUET OJ /description.php SQL注入漏洞 |
中危 |
6.3 |
2025-10-27 |
| CVE-2025-12326 |
shawon100 RUET OJ SQL注入漏洞 |
高危 |
7.3 |
2025-10-27 |
| CVE-2025-12325 |
SourceCodester Best Salon Management System 1.0 SQ... |
高危 |
7.3 |
2025-10-27 |
| CVE-2025-12322 |
| Tenda CH22路由器fromNatStaticSetting缓冲区溢出漏洞 |
高危 |
8.8 |
2025-10-27 |
| CVE-2025-12316 |
code-projects Courier Management System 1.0 SQL注入漏... |
高危 |
7.3 |
2025-10-27 |
| CVE-2025-12315 |
Food Ordering System 1.0 SQL注入漏洞 |
中危 |
4.7 |
2025-10-27 |
| CVE-2025-12314 |
Food Ordering System 1.0 /admin/deleteitem.php SQL... |
中危 |
4.7 |
2025-10-27 |
| CVE-2025-12313 |
D-Link DI-7001 MINI路由器命令注入漏洞 |
中危 |
6.3 |
2025-10-27 |
| CVE-2025-12312 |
PHPGurukul Curfew e-Pass Management System 1.0 跨站脚... |
低危 |
2.4 |
2025-10-27 |
| CVE-2025-12311 |
PHPGurukul Curfew e-Pass Management System 存储型XSS漏... |
低危 |
2.4 |
2025-10-27 |
| CVE-2025-12310 |
VirtFusion <= 6.0.2 Email Change Handler 过度认证尝试限制不... |
中危 |
5.3 |
2025-10-27 |
| CVE-2025-12309 |
Nero Social Networking Site 1.0 SQL注入漏洞 |
高危 |
7.3 |
2025-10-27 |
| CVE-2025-12308 |
Nero Social Networking Site 1.0 /deletemessage.php... |
高危 |
7.3 |
2025-10-27 |