Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-67549	6.5 (3.1)	WordPress oik plugin <= 4.15.3 - Cross Site Scripting …	bobbingwide	oik	2025-12-09T14:14:06.739Z	2026-01-20T14:28:25.728Z
CVE-2025-67548	6.5 (3.1)	WordPress WP Delicious plugin <= 1.9.1 - Broken Access…	WP Delicious	WP Delicious	2025-12-09T14:14:06.510Z	2026-01-20T14:28:25.675Z
CVE-2025-67550	6.5 (3.1)	WordPress Donation Thermometer plugin <= 2.2.6 - Cross…	rhewlif	Donation Thermometer	2025-12-09T14:14:06.957Z	2026-01-20T14:28:25.624Z
CVE-2025-67468	4.3 (3.1)	WordPress Integration for Salesforce and Contact Form …	CRM Perks	Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms	2025-12-09T14:13:55.664Z	2026-01-20T14:28:25.574Z
CVE-2025-67546	6.5 (3.1)	WordPress WP ERP plugin <= 1.16.6 - Sensitive Data Exp…	weDevs	WP ERP	2025-12-18T07:22:19.542Z	2026-01-20T14:28:25.565Z
CVE-2025-67545	6.5 (3.1)	WordPress FireBox plugin <= 3.1.0-free - Cross Site Sc…	FirePlugins	FireBox	2025-12-09T14:14:06.130Z	2026-01-20T14:28:25.532Z
CVE-2025-67538	6.5 (3.1)	WordPress JNews Gallery plugin < 12.0.1 - Cross Site S…	jegtheme	JNews Gallery	2025-12-09T14:14:04.582Z	2026-01-20T14:28:25.508Z
CVE-2025-67473	8.8 (3.1)	WordPress CWW Companion plugin <= 1.3.2 - Cross Site R…	codeworkweb	CWW Companion	2025-12-09T14:13:56.814Z	2026-01-20T14:28:25.508Z
CVE-2025-67544	6.5 (3.1)	WordPress Shopkeeper Extender plugin < 7.0 - Cross Sit…	Get Bowtied	Shopkeeper Extender	2025-12-09T14:14:05.870Z	2026-01-20T14:28:25.495Z
CVE-2025-67526	9.8 (3.1)	WordPress Sailing theme < 4.4.6 - Local File Inclusion…	ThimPress	Sailing	2025-12-09T14:14:00.209Z	2026-01-20T14:28:25.493Z
CVE-2025-67529	9.8 (3.1)	WordPress Fashion theme < 5.3.0 - Local File Inclusion…	Opal_WP	Fashion	2025-12-09T14:14:01.047Z	2026-01-20T14:28:25.463Z
CVE-2025-67543	6.5 (3.1)	WordPress Essential Widgets plugin <= 2.2.2 - Cross Si…	Catch Themes	Essential Widgets	2025-12-09T14:14:05.667Z	2026-01-20T14:28:25.440Z
CVE-2025-67518	9.8 (3.1)	WordPress Accordion Slider PRO plugin <= 1.2 - SQL Inj…	LambertGroup	Accordion Slider PRO	2025-12-09T14:13:57.826Z	2026-01-20T14:28:25.371Z
CVE-2025-67542	6.5 (3.1)	WordPress Multi-Step Checkout for WooCommerce plugin <…	SilkyPress	Multi-Step Checkout for WooCommerce	2025-12-09T14:14:05.482Z	2026-01-20T14:28:25.370Z
CVE-2025-67528	5.1 (3.1)	WordPress Urna theme <= 2.5.12 - Local File Inclusion …	thembay	Urna	2025-12-09T14:14:00.840Z	2026-01-20T14:28:25.332Z
CVE-2025-67516	9.8 (3.1)	WordPress Store Locator WordPress plugin <= 1.6.2 - SQ…	Agile Logix	Store Locator WordPress	2025-12-09T14:13:57.425Z	2026-01-20T14:28:25.331Z
CVE-2025-67472	8.8 (3.1)	WordPress Online Booking & Scheduling Calendar for Wor…	vcita	Online Booking & Scheduling Calendar for WordPress by vcita	2025-12-09T14:13:56.599Z	2026-01-20T14:28:25.295Z
CVE-2025-67539	6.5 (3.1)	WordPress Select Core plugin < 2.6 - Cross Site Script…	Select-Themes	Select Core	2025-12-09T14:14:04.804Z	2026-01-20T14:28:25.256Z
CVE-2025-67524	9.8 (3.1)	WordPress Jobmonster Elementor Addon plugin <= 1.1.4 -…	NooTheme	Jobmonster Elementor Addon	2025-12-09T14:13:59.520Z	2026-01-20T14:28:25.256Z
CVE-2025-67540	6.5 (3.1)	WordPress Animation Addons for Elementor plugin <= 2.4…	Wealcoder	Animation Addons for Elementor	2025-12-09T14:14:05.024Z	2026-01-20T14:28:25.249Z
CVE-2025-67541	7.1 (3.1)	WordPress WP-ShowHide plugin <= 1.05 - Cross Site Scri…	Lester Chan	WP-ShowHide	2025-12-09T14:14:05.260Z	2026-01-20T14:28:25.235Z
CVE-2025-67530	9.8 (3.1)	WordPress Besa theme <= 2.3.15 - Local File Inclusion …	thembay	Besa	2025-12-09T14:14:01.260Z	2026-01-20T14:28:25.221Z
CVE-2025-67471	8.8 (3.1)	WordPress Quick Contact Form plugin <= 8.2.5 - Cross S…	Saad Iqbal	Quick Contact Form	2025-12-09T14:13:56.242Z	2026-01-20T14:28:25.221Z
CVE-2025-67469	8.8 (3.1)	WordPress PDF Thumbnail Generator plugin <= 1.4 - Cros…	kubiq	PDF Thumbnail Generator	2025-12-09T14:13:55.861Z	2026-01-20T14:28:25.210Z
CVE-2025-67466	8.1 (3.1)	WordPress Trinity Audio plugin <= 5.23.3 - Broken Acce…	sergiotrinity	Trinity Audio	2025-12-09T14:13:55.460Z	2026-01-20T14:28:25.210Z
CVE-2025-67517	9.8 (3.1)	WordPress ArtPlacer Widget plugin <= 2.22.9.2 - SQL In…	artplacer	ArtPlacer Widget	2025-12-09T14:13:57.629Z	2026-01-20T14:28:25.209Z
CVE-2025-67533	6.5 (3.1)	WordPress Themify Portfolio Post plugin <= 1.3.0 - Cro…	themifyme	Themify Portfolio Post	2025-12-09T14:14:03.414Z	2026-01-20T14:28:25.206Z
CVE-2025-67535	6.5 (3.1)	WordPress WP Maps plugin <= 4.8.6 - PHP Object Injecti…	WePlugins - WordPress Development Company	WP Maps	2025-12-09T14:14:03.841Z	2026-01-20T14:28:25.201Z
CVE-2025-67515	9.8 (3.1)	WordPress Wilmër theme < 3.5 - Local File Inclusion vu…	Mikado-Themes	Wilmër	2025-12-09T14:13:57.222Z	2026-01-20T14:28:25.187Z
CVE-2025-67534	7.1 (3.1)	WordPress Rencontre plugin <= 3.13.7 - Cross Site Requ…	Jacques Malgrange	Rencontre	2025-12-09T14:14:03.622Z	2026-01-20T14:28:25.186Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2024-39551	7.5 (3.1) 8.7 (4.0)	Junos OS: SRX Series and MX Series with SPC3 and MS-MP…	Juniper Networks	Junos OS	2024-07-11T16:29:46.607Z	2024-08-02T04:26:15.947Z
CVE-2024-39516	7.5 (3.1) 8.7 (4.0)	Junos OS and Junos OS Evolved: With certain BGP option…	Juniper Networks	Junos OS	2024-10-09T20:00:59.383Z	2024-10-16T21:11:11.721Z
CVE-2024-39525	7.5 (3.1) 8.7 (4.0)	Junos OS and Junos OS Evolved: When BGP traceoptions i…	Juniper Networks	Junos OS	2024-10-09T20:01:20.604Z	2024-10-11T15:15:51.339Z
CVE-2026-22241	7.3 (4.0)	Open eClass has Unrestricted File Upload that Leads to…	gunet	openeclass	2026-01-08T15:07:02.350Z	2026-01-23T18:18:44.253Z
CVE-2026-21867	N/A	Reason: This candidate was issued in error.	N/A	N/A		2026-01-23T18:19:39.118Z
CVE-2025-67004	6.5 (3.1)	Disputed An Information Disclosure vulnerab…	n/a	n/a	2026-01-09T00:00:00.000Z	2026-01-23T18:51:03.315Z
CVE-2025-11346	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	ILIAS Base64 Decoding unserialize deserialization	n/a	ILIAS	2025-10-06T19:32:05.171Z	2026-01-23T18:24:41.363Z
CVE-2025-11345	5.1 (4.0) 5.5 (3.1) 5.5 (3.0)	ILIAS Test Import unserialize deserialization	n/a	ILIAS	2025-10-06T19:02:05.514Z	2026-01-23T18:24:14.342Z
CVE-2025-11344	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	ILIAS Certificate Import code injection	n/a	ILIAS	2025-10-06T18:32:05.924Z	2026-01-23T18:23:44.521Z
CVE-2024-22087	9.8 (3.1)	route in main.c in Pico HTTP Server in C through …	n/a	n/a	2024-01-05T00:00:00.000Z	2026-01-23T18:09:08.762Z
CVE-2025-70302	5.5 (3.1)	A heap overflow in the ghi_dmx_declare_opid_bin()…	n/a	n/a	2026-01-15T00:00:00.000Z	2026-01-15T18:36:26.740Z
CVE-2025-70303	5.5 (3.1)	A heap overflow in the uncv_parse_config() functi…	n/a	n/a	2026-01-15T00:00:00.000Z	2026-01-15T18:49:42.651Z
CVE-2026-0227	6.6 (4.0)	PAN-OS: Firewall Denial of Service (DoS) in GlobalProt…	Palo Alto Networks	Cloud NGFW	2026-01-15T18:45:08.579Z	2026-01-15T19:10:59.388Z
CVE-2024-48077	7.5 (3.1)	An issue in nanomq v0.22.7 allows attackers to ca…	n/a	n/a	2026-01-15T00:00:00.000Z	2026-01-15T19:28:59.364Z
CVE-2025-15265	5.3 (4.0)	Svelte 5.46.0 - Hydratable Key Script-Breakout XSS (SSR)	Svelte	Svelte	2026-01-15T19:59:41.683Z	2026-01-15T20:28:16.479Z
CVE-2025-65349	5.4 (3.1)	A Stored Cross-Site Scripting (XSS) vulnerability…	n/a	n/a	2026-01-15T00:00:00.000Z	2026-01-15T20:25:22.255Z
CVE-2026-23519	8.9 (4.0)	RustCrypto cmov: thumbv6m-none-eabi compiler emits non…	RustCrypto	utils	2026-01-15T19:13:54.440Z	2026-01-15T19:57:48.741Z
CVE-2025-25063	4.4 (3.1)	An XSS issue was discovered in Backdrop CMS 1.28.…	backdropcms	backdrop	2025-02-03T00:00:00.000Z	2025-02-12T20:41:38.109Z
CVE-2024-39526	6.5 (3.1) 7.1 (4.0)	Junos OS and Junos OS Evolved: MX Series with MPC10/MP…	Juniper Networks	Junos OS	2024-10-11T15:16:49.788Z	2024-10-11T19:01:50.987Z
CVE-2024-39527	5.5 (3.1) 6.8 (4.0)	Junos OS: SRX Series: Low privileged user able to acce…	Juniper Networks	Junos OS	2024-10-11T15:17:27.424Z	2024-10-11T19:01:22.194Z
CVE-2024-39534	5.4 (3.1) 5.3 (4.0)	Junos OS Evolved: Connections to the network and broad…	Juniper Networks	Junos OS Evolved	2024-10-11T15:18:08.326Z	2024-10-11T19:00:54.386Z
CVE-2024-39544	5 (3.1) 5.1 (4.0)	Junos OS Evolved: Low privileged local user able to vi…	Juniper Networks	Junos OS Evolved	2024-10-11T15:18:38.836Z	2024-10-11T18:59:35.095Z
CVE-2026-21921	6.5 (3.1) 7.1 (4.0)	Junos OS and Junos OS Evolved: When telemetry collecto…	Juniper Networks	Junos OS	2026-01-15T20:28:29.656Z	2026-01-15T20:55:25.182Z
CVE-2026-21920	7.5 (3.1) 8.7 (4.0)	Junos OS: SRX Series: If a specific request is process…	Juniper Networks	Junos OS	2026-01-15T20:28:10.526Z	2026-01-15T20:59:21.070Z
CVE-2026-23527	8.9 (3.1)	Request Smuggling (TE.TE) in h3 v1	h3js	h3	2026-01-15T19:24:20.514Z	2026-01-15T20:00:06.302Z
CVE-2025-25062	4.4 (3.1)	An XSS issue was discovered in Backdrop CMS 1.28.…	backdropcms	backdrop	2025-02-03T00:00:00.000Z	2025-05-09T12:03:34.762Z
CVE-2026-22918	4.3 (3.1)	An attacker may exploit missing protection agains…	SICK AG	TDC-X401GL	2026-01-15T13:08:02.039Z	2026-01-15T14:36:41.215Z
CVE-2025-31125	5.3 (3.1)	Vite has a `server.fs.deny` bypassed for `inline` and …	vitejs	vite	2025-03-31T17:06:30.704Z	2026-01-23T16:58:37.048Z
CVE-2025-68645	8.8 (3.1)	A Local File Inclusion (LFI) vulnerability exists…	n/a	n/a	2025-12-22T00:00:00.000Z	2026-01-23T04:55:25.448Z
CVE-2025-34026	9.2 (4.0)	Versa Concerto Actuator Authentication Bypass Informat…	Versa	Concerto	2025-05-21T22:04:58.832Z	2026-01-23T14:34:06.013Z

ID	Description	Published	Updated
fkie_cve-2024-48077	An issue in nanomq v0.22.7 allows attackers to cause a Denial of Service (DoS) via a crafted reques…	2026-01-15T20:16:02.497	2026-01-23T19:06:10.223
fkie_cve-2025-15265	An SSR XSS exists in async hydration when attacker‑controlled keys are passed to hydratable. The ke…	2026-01-15T20:16:03.490	2026-01-23T19:04:53.167
fkie_cve-2025-65349	A Stored Cross-Site Scripting (XSS) vulnerability in Web management interface in Each Italy Wireles…	2026-01-15T20:16:04.467	2026-01-23T19:03:36.337
fkie_cve-2026-23519	RustCrypto CMOV provides conditional move CPU intrinsics which are guaranteed on major platforms to…	2026-01-15T20:16:05.313	2026-01-23T18:59:58.223
fkie_cve-2025-25063	An XSS issue was discovered in Backdrop CMS 1.28.x before 1.28.5 and 1.29.x before 1.29.3. It does …	2025-02-03T04:15:09.760	2026-01-23T18:54:39.280
fkie_cve-2024-39526	An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networ…	2024-10-11T16:15:06.440	2026-01-23T18:54:32.730
fkie_cve-2024-39527	An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the command-line int…	2024-10-11T16:15:06.707	2026-01-23T18:53:48.927
fkie_cve-2024-39534	An Incorrect Comparison vulnerability in the local address verification API of Juniper Networks Jun…	2024-10-11T16:15:06.970	2026-01-23T18:53:16.403
fkie_cve-2024-39544	An Incorrect Default Permissions vulnerability in the command line interface (CLI) of Juniper Netwo…	2024-10-11T16:15:07.240	2026-01-23T18:52:50.380
fkie_cve-2026-21921	A Use After Free vulnerability in the chassis daemon (chassisd) of Juniper Networks Junos OS and Ju…	2026-01-15T21:16:08.400	2026-01-23T18:52:35.070
fkie_cve-2026-21920	An Unchecked Return Value vulnerability in the DNS module of Juniper Networks Junos OS on SRX Serie…	2026-01-15T21:16:08.217	2026-01-23T18:51:59.987
fkie_cve-2026-23527	H3 is a minimal H(TTP) framework built for high performance and portability. Prior to 1.15.5, there…	2026-01-15T20:16:05.620	2026-01-23T18:50:35.587
fkie_cve-2025-25062	An XSS issue was discovered in Backdrop CMS 1.28.x before 1.28.5 and 1.29.x before 1.29.3. It doesn…	2025-02-03T04:15:09.587	2026-01-23T18:46:32.197
fkie_cve-2026-22918	An attacker may exploit missing protection against clickjacking by tricking users into performing u…	2026-01-15T13:16:06.790	2026-01-23T18:41:25.670
fkie_cve-2025-31125	Vite is a frontend tooling framework for javascript. Vite exposes content of non-allowed files usin…	2025-03-31T17:15:43.163	2026-01-23T18:39:55.027
fkie_cve-2025-68645	A Local File Inclusion (LFI) vulnerability exists in the Webmail Classic UI of Zimbra Collaboration…	2025-12-22T18:16:17.070	2026-01-23T18:39:33.290
fkie_cve-2025-34026	The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the T…	2025-05-21T22:15:50.510	2026-01-23T18:39:24.063
fkie_cve-2026-22919	An attacker with administrative access may inject malicious content into the login page, potentiall…	2026-01-15T13:16:06.923	2026-01-23T18:39:18.893
fkie_cve-2025-59980	An Authentication Bypass by Primary Weakness in the FTP server of Juniper Networks Junos OS allows…	2025-10-09T17:15:59.427	2026-01-23T18:37:47.893
fkie_cve-2025-59975	An Uncontrolled Resource Consumption vulnerability in the HTTP daemon (httpd) of Juniper Networks J…	2025-10-09T16:15:47.280	2026-01-23T18:37:40.190
fkie_cve-2025-59967	A NULL Pointer Dereference vulnerability in the PFE management daemon (evo-pfemand) of Juniper Netw…	2025-10-09T16:15:46.647	2026-01-23T18:37:28.230
fkie_cve-2026-22920	The device's passwords have not been adequately salted, making them vulnerable to password extracti…	2026-01-15T13:16:07.063	2026-01-23T18:36:58.230
fkie_cve-2025-59964	A Use of Uninitialized Resource vulnerability in the Packet Forwarding Engine (PFE) of Juniper Netw…	2025-10-09T16:15:46.443	2026-01-23T18:36:49.490
fkie_cve-2025-59962	An Access of Uninitialized Pointer vulnerability in the routing protocol daemon (rpd) of Juniper Ne…	2025-10-09T16:15:46.247	2026-01-23T18:36:28.293
fkie_cve-2025-59958	An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engi…	2025-10-09T16:15:45.950	2026-01-23T18:36:15.230
fkie_cve-2026-0897	Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google…	2026-01-15T14:16:26.890	2026-01-23T18:35:49.733
fkie_cve-2025-59957	An Origin Validation Error vulnerability in an insufficient protected file of Juniper Networks Juno…	2025-10-09T16:15:45.657	2026-01-23T18:35:32.800
fkie_cve-2025-52961	An Uncontrolled Resource Consumption vulnerability in the Connectivity Fault Management (CFM) daemo…	2025-10-09T16:15:45.247	2026-01-23T18:35:18.070
fkie_cve-2025-67081	An SQL injection vulnerability in Itflow through 25.06 has been identified in the "role_id" paramet…	2026-01-15T15:15:50.740	2026-01-23T18:35:09.720
fkie_cve-2025-52960	A Buffer Copy without Checking Size of Input vulnerability in the Session Initialization Protocol…	2025-10-09T16:15:45.033	2026-01-23T18:34:26.870

ID	Severity	Description	Published	Updated
ghsa-crqv-f66m-8q78	7.6 (3.1)	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-16T09:31:10Z	2026-01-20T15:32:16Z
ghsa-8vjc-vqf8-m223	8.5 (3.1)	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-16T09:31:10Z	2026-01-20T15:32:16Z
ghsa-8hwj-gjf6-5h2c	5.3 (3.1)	Missing Authorization vulnerability in favethemes Homey Core homey-core allows Exploiting Incorrect…	2025-12-16T09:31:09Z	2026-01-20T15:32:16Z
ghsa-88h2-6jrv-8v63	7.5 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-16T09:31:10Z	2026-01-20T15:32:16Z
ghsa-7rq2-rp8g-vmxx	5.3 (3.1)	Missing Authorization vulnerability in templateinvaders TI WooCommerce Wishlist ti-woocommerce-wish…	2025-12-16T09:31:09Z	2026-01-20T15:32:16Z
ghsa-7gcr-vc6r-wj35	8.5 (3.1)	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-16T09:31:10Z	2026-01-20T15:32:16Z
ghsa-64xg-rhvh-xhh3	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-16T09:31:09Z	2026-01-20T15:32:16Z
ghsa-526w-gq45-2f4f	4.3 (3.1)	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in SendPul…	2025-12-16T09:31:09Z	2026-01-20T15:32:16Z
ghsa-4xq4-24ch-xr3q	5.3 (3.1)	Authorization Bypass Through User-Controlled Key vulnerability in Barn2 Plugins Document Library Li…	2025-12-16T09:31:10Z	2026-01-20T15:32:16Z
ghsa-vq83-vrqm-m2w4	5.4 (3.1)	Missing Authorization vulnerability in merkulove Masker for Elementor masker-elementor allows Explo…	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-v3j7-9cq2-p3j3	5.4 (3.1)	Missing Authorization vulnerability in merkulove Spoter for Elementor spoter-elementor allows Explo…	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-r8v7-r4ff-qv43	5.4 (3.1)	Missing Authorization vulnerability in merkulove Coder for Elementor coder-elementor allows Exploit…	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-r7gx-7548-6cr2	6.5 (3.1)	Authorization Bypass Through User-Controlled Key vulnerability in FAPI Business s.r.o. FAPI Member …	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-fm9h-7grp-38cg	5.4 (3.1)	Missing Authorization vulnerability in NinjaTeam FileBird Pro filebird-pro allows Exploiting Incorr…	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-fg4v-rm3f-jjmr	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-ff29-qr8c-mh26	5.4 (3.1)	Missing Authorization vulnerability in merkulove Grider for Elementor grider-elementor allows Explo…	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-f8cg-5944-ww59	5.4 (3.1)	Missing Authorization vulnerability in merkulove Lottier for WPBakery lottier-wpbakery allows Explo…	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-8gjh-4454-qcrx	5.3 (3.1)	Missing Authorization vulnerability in WP Legal Pages WP Cookie Notice for GDPR, CCPA & ePrivacy Co…	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-6wm3-j776-8hfm	5.4 (3.1)	Missing Authorization vulnerability in merkulove Lottier for Elementor lottier-elementor allows Exp…	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-6ccm-r89r-8q3j	5.4 (3.1)	Missing Authorization vulnerability in merkulove Lottier lottier-gutenberg allows Exploiting Incorr…	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-255v-hc9m-54wv	5.4 (3.1)	Missing Authorization vulnerability in merkulove Laser laser allows Exploiting Incorrectly Configur…	2025-12-16T09:31:09Z	2026-01-20T15:32:15Z
ghsa-xxh2-5857-h7jc	5.3 (3.1)	Missing Authorization vulnerability in WP Compress WP Compress for MainWP wp-compress-mainwp allows…	2025-12-16T09:31:09Z	2026-01-20T15:32:14Z
ghsa-wqpx-wp8j-gw7r	9.1 (3.1)	Missing Authorization vulnerability in yaadsarig Yaad Sarig Payment Gateway For WC yaad-sarig-payme…	2025-12-16T09:31:09Z	2026-01-20T15:32:14Z
ghsa-wqf3-6pf2-m6r6	5.3 (3.1)	Missing Authorization vulnerability in Brevo Sendinblue for WooCommerce woocommerce-sendinblue-news…	2025-12-16T09:31:09Z	2026-01-20T15:32:14Z
ghsa-v59c-vg6g-v8m3	5.3 (3.1)	Insertion of Sensitive Information Into Sent Data vulnerability in wowpress.host Fix Media Library …	2025-12-16T09:31:09Z	2026-01-20T15:32:14Z
ghsa-rmjq-8jc4-xxp7	5.3 (3.1)	Missing Authorization vulnerability in CatFolders CatFolders catfolders allows Exploiting Incorrect…	2025-12-16T09:31:09Z	2026-01-20T15:32:14Z
ghsa-qhxj-pmgp-x4mp	5.0 (3.1)	Missing Authorization vulnerability in WC Lovers WCFM Marketplace wc-multivendor-marketplace allows…	2025-12-16T09:31:08Z	2026-01-20T15:32:14Z
ghsa-mw5j-qg7p-945p	5.3 (3.1)	Insertion of Sensitive Information Into Sent Data vulnerability in Nitesh Ultimate Auction ultimat…	2025-12-16T09:31:09Z	2026-01-20T15:32:14Z
ghsa-j9wm-m2fc-3vmp	5.3 (3.1)	Missing Authorization vulnerability in SiteGround SiteGround Security sg-security allows Exploiting…	2025-12-16T09:31:09Z	2026-01-20T15:32:14Z
ghsa-j354-f8vh-j5jv	5.3 (3.1)	Missing Authorization vulnerability in Auctollo Google XML Sitemaps google-sitemap-generator allows…	2025-12-16T09:31:08Z	2026-01-20T15:32:14Z

ID	Description	Package	Published	Updated
pysec-2020-163	A flaw was found in all python-ecdsa versions before 0.13.3, where it did not correctly v…	ecdsa	2020-01-02T15:15:00Z	2020-12-08T18:32:00Z
pysec-2020-68	OAuthenticator is an OAuth login mechanism for JupyterHub. In oauthenticator from version…	oauthenticator	2020-12-01T21:15:00Z	2020-12-08T17:50:00Z
pysec-2020-69	Python oic is a Python OpenID Connect implementation. In Python oic before version 1.2.1,…	oic	2020-12-02T20:15:00Z	2020-12-08T02:37:00Z
pysec-2020-108	DISPUTED svm_predict_values in svm.cpp in Libsvm v324, as used in scikit-learn 0.23…	scikit-learn	2020-11-21T21:15:00Z	2020-12-03T18:50:00Z
pysec-2020-75	petl before 1.68, in some configurations, allows resolution of entities in an XML document.	petl	2020-11-26T05:15:00Z	2020-12-03T16:48:00Z
pysec-2020-74	Multiple cross-site scripting (XSS) vulnerabilities in Papermerge before 1.5.2 allow remo…	papermerge	2020-12-02T08:15:00Z	2020-12-02T16:29:00Z
pysec-2020-29	A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker …	brotli	2020-09-15T10:15:00Z	2020-12-02T12:15:00Z
pysec-2020-157	Open redirect vulnerability in werkzeug before 0.11.6 via a double slash in the URL.	werkzeug	2020-11-18T15:15:00Z	2020-12-01T16:05:00Z
pysec-2020-18	The previous default setting for Airflow's Experimental API was to allow all API requests…	apache-airflow	2020-11-10T16:15:00Z	2020-11-24T17:29:00Z
pysec-2020-67	The cache action in action/cache.py in MoinMoin through 1.9.10 allows directory traversal…	moin	2020-11-10T17:15:00Z	2020-11-24T17:20:00Z
pysec-2020-159	In Alerta before version 8.1.0, users may be able to bypass LDAP authentication if they p…	alerta-server	2020-11-06T18:15:00Z	2020-11-17T21:08:00Z
pysec-2020-60	A stored cross-site scripting (XSS) vulnerability affects the Web UI in Locust before 1.3…	locust	2020-11-09T21:15:00Z	2020-11-17T20:37:00Z
pysec-2020-61	In lookatme (python/pypi package) versions prior to 2.3.0, the package automatically load…	lookatme	2020-10-26T18:15:00Z	2020-11-13T16:40:00Z
pysec-2020-142	A mis-handling of invalid unicode characters in the Java implementation of Tink versions …	tink	2020-10-19T13:15:00Z	2020-10-29T22:16:00Z
pysec-2020-134	In TensorFlow Lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, saved models in…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-133	In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, if a TFLite sav…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-132	In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, a crafted TFLit…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-131	In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, when determinin…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-130	In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, to mimic Python…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-129	In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, changing the TensorF…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-128	In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `data_splits` ar…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-127	In eager mode, TensorFlow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1 does not …	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-126	In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, by controlling the `…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-125	In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `Shard` API in T…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-118	In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the implementation o…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-113	In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `tf.raw_ops.Swit…	tensorflow	2020-09-25T19:15:00Z	2020-10-29T16:15:00Z
pysec-2020-59	DISPUTED TAXII libtaxii through 1.1.117, as used in EclecticIQ OpenTAXII through 0.…	libtaxii	2020-10-17T20:15:00Z	2020-10-27T19:51:00Z
pysec-2020-174	In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from d…	postfix-mta-sts-resolver	2020-01-22T02:15:00Z	2020-10-23T18:18:00Z
pysec-2020-158	In xmpp-http-upload before version 0.4.0, when the GET method is attacked, attackers can …	xmpp-http-upload	2020-10-06T19:15:00Z	2020-10-23T03:09:00Z
pysec-2019-78	A vulnerability was found in ceilometer before version 12.0.0.0rc1. An Information Exposu…	ceilometer	2019-03-26T18:29:00Z	2020-10-22T14:44:00Z

ID	Description	Type

ID	Description	Updated
gsd-2024-31936	Cross-Site Request Forgery (CSRF) vulnerability in AyeCode Ltd UsersWP.This issue affects…	2024-04-11T05:03:20.826036Z
gsd-2024-31582	FFmpeg version n6.1 was discovered to contain a heap buffer overflow vulnerability in the…	2024-04-11T05:03:20.825839Z
gsd-2024-31475	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.825640Z
gsd-2024-31786	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.825435Z
gsd-2024-31839	Cross Site Scripting vulnerability in tiagorlampert CHAOS v.5.0.1 allows a remote attacke…	2024-04-11T05:03:20.825218Z
gsd-2024-31665	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.824747Z
gsd-2024-31901	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.823663Z
gsd-2024-31774	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.823448Z
gsd-2024-31837	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.823187Z
gsd-2024-31975	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.822986Z
gsd-2024-31898	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.822715Z
gsd-2024-31504	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.822500Z
gsd-2024-31801	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.822018Z
gsd-2024-31800	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.821394Z
gsd-2024-31783	Cross Site Scripting (XSS) vulnerability in Typora v.1.6.7 and before, allows a local att…	2024-04-11T05:03:20.820859Z
gsd-2024-31701	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.820574Z
gsd-2024-31570	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.820077Z
gsd-2024-31969	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.819847Z
gsd-2024-31732	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.819539Z
gsd-2024-31833	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.819230Z
gsd-2024-31926	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-11T05:03:20.815264Z
gsd-2024-31681	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.814350Z
gsd-2024-31902	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.814140Z
gsd-2024-31748	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.812421Z
gsd-2024-31932	Cross-Site Request Forgery (CSRF) vulnerability in CreativeThemes Blocksy Companion.This …	2024-04-11T05:03:20.812206Z
gsd-2024-31497	In PuTTY 0.68 through 0.80 before 0.81, biased ECDSA nonce generation allows an attacker …	2024-04-11T05:03:20.811992Z
gsd-2024-31909	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.811770Z
gsd-2024-31533	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.811090Z
gsd-2024-31692	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:20.810876Z
gsd-2024-31818	Directory Traversal vulnerability in DerbyNet v.9.0 allows a remote attacker to execute a…	2024-04-11T05:03:20.810632Z

ID	Description	Published	Updated
mal-2024-11564	Malicious code in crypto-format-checking (PyPI)	2024-10-07T22:16:18Z	2025-12-11T09:27:52Z
mal-2024-11563	Malicious code in control4d-multiview (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-11562	Malicious code in cometlogger (PyPI)	2024-11-24T11:52:50Z	2025-12-11T09:27:52Z
mal-2024-11558	Malicious code in cmdb-worker-pckg (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2024-11556	Malicious code in check-codeowners (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2024-11550	Malicious code in cblines (PyPI)	2024-09-04T21:25:32Z	2025-12-11T09:27:52Z
mal-2024-11549	Malicious code in byteqs (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-11548	Malicious code in bytepps (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-11547	Malicious code in byteff (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-11546	Malicious code in bytedsp (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-11545	Malicious code in byted-flux (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-11544	Malicious code in byted-flex (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-11543	Malicious code in bytebs (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-11542	Malicious code in byte-flux-3822a6dd00d6414daba3ae0de3930a5a (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-11540	Malicious code in botoceor (PyPI)	2024-09-20T11:29:31Z	2025-12-11T09:27:52Z
mal-2024-11539	Malicious code in botnetv2 (PyPI)	2024-09-24T11:12:05Z	2025-12-11T09:27:52Z
mal-2024-11538	Malicious code in bo3to (PyPI)	2024-09-20T11:29:31Z	2025-12-11T09:27:52Z
mal-2024-11537	Malicious code in blackamerxs (PyPI)	2024-11-22T00:12:43Z	2025-12-11T09:27:52Z
mal-2024-11534	Malicious code in backwwi (PyPI)	2024-11-12T07:40:55Z	2025-12-11T09:27:52Z
mal-2024-11533	Malicious code in asyncmodules (PyPI)	2024-08-29T10:57:16Z	2025-12-11T09:27:52Z
mal-2024-11532	Malicious code in assulthimars (PyPI)	2024-08-29T10:57:16Z	2025-12-11T09:27:52Z
mal-2024-11531	Malicious code in assaulthimars (PyPI)	2024-08-29T10:57:16Z	2025-12-11T09:27:52Z
mal-2024-11530	Malicious code in asn1tool (PyPI)	2024-11-10T22:28:42Z	2025-12-11T09:27:52Z
mal-2024-11529	Malicious code in aslmutetion (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-11525	Malicious code in arnold-toolbox (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2024-11523	Malicious code in appsec-script-py (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2024-11520	Malicious code in akh-py (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2024-11517	Malicious code in agent-user-generate (PyPI)	2024-10-07T22:16:18Z	2025-12-11T09:27:52Z
mal-2024-10833	Malicious code in deadiff (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z
mal-2024-10832	Malicious code in affinequant (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:52Z

ID	Description	Published	Updated
wid-sec-w-2025-1336	Liferay Liferay DXP: Mehrere Schwachstellen ermöglichen Denial of Service	2025-06-16T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2025-1332	D-LINK Router: Mehrere Schwachstellen ermöglichen Denial of Service	2025-06-16T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2025-1331	BeyondTrust Remote Support: Schwachstelle ermöglicht Codeausführung	2025-06-16T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2025-1330	IBM App Connect Enterprise: Schwachstelle ermöglicht Manipulation der Konfiguration	2025-06-16T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2025-1326	M-Files Server: Schwachstelle ermöglicht Offenlegung von Informationen	2025-06-15T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2023-2552	Grub2: Mehrere Schwachstellen ermöglichen Codeausführung	2023-10-03T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2025-1329	OTRS: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-06-15T22:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2023-3043	Bluetooth Spezifikation: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2023-11-30T23:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2025-1324	xwiki: Mehrere Schwachstellen	2025-06-12T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1320	Tenable Security Nessus: Mehrere Schwachstellen	2025-06-12T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1317	xwiki: Schwachstelle ermöglicht SQL Injection	2025-06-12T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1316	Dell integrated Dell Remote Access Controller: Schwachstelle ermöglicht Privilegieneskalation	2025-06-12T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-0789	QT: Schwachstelle ermöglicht Denial of Service	2025-04-10T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-0786	IBM Installation Manager: Mehrere Schwachstellen	2025-04-10T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-0645	Exim: Schwachstelle ermöglicht Privilegieneskalation	2025-03-26T23:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-0353	GNU Emacs: Schwachstelle ermöglicht Codeausführung	2025-02-11T23:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-0028	LibreOffice: Mehrere Schwachstellen	2025-01-07T23:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2024-3272	GStreamer: Schwachstelle ermöglicht Denial of Service	2024-10-24T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2024-1015	QT: Schwachstelle ermöglicht Manipulation von Dateien	2024-05-02T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1315	GitLab: Mehrere Schwachstellen	2025-06-11T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00
wid-sec-w-2025-1314	Apple Produkte: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-06-11T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00
wid-sec-w-2025-1313	PaloAlto Networks PAN-OS: Mehrere Schwachstellen	2025-06-11T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00
wid-sec-w-2025-1311	QT: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-06-11T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00
wid-sec-w-2025-1310	PaloAlto Networks GlobalProtect: Mehrere Schwachstellen	2025-06-11T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00
wid-sec-w-2025-1309	IBM Tivoli Netcool/OMNIbus: Schwachstelle ermöglicht Denial of Service	2025-06-11T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00
wid-sec-w-2025-1307	Mitel OpenScape Accounting Management: Schwachstelle ermöglicht Codeausführung	2025-06-11T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00
wid-sec-w-2025-1306	PaloAlto Networks Cortex XSOAR: Schwachstelle ermöglicht Privilegieneskalation	2025-06-11T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00
wid-sec-w-2025-1305	Microsoft 365 Copilot: Schwachstelle ermöglicht Offenlegung von Informationen	2025-06-11T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00
wid-sec-w-2025-1304	IBM Security Guardium: Schwachstelle ermöglicht Privilegieneskalation	2025-06-11T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00
wid-sec-w-2025-1006	Mattermost: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen	2025-05-12T22:00:00.000+00:00	2025-06-11T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2013:1526	Red Hat Security Advisory: nagios security update	2013-11-18T19:24:00+00:00	2026-01-28T22:35:04+00:00
rhsa-2014:0400	Red Hat Security Advisory: Red Hat JBoss Fuse 6.1.0 update	2014-04-14T13:46:50+00:00	2026-01-28T22:35:03+00:00
rhsa-2014:0230	Red Hat Security Advisory: mongodb security update	2014-03-04T19:11:08+00:00	2026-01-28T22:35:03+00:00
rhsa-2014:0212	Red Hat Security Advisory: Red Hat JBoss SOA Platform 5.3.1 update	2014-02-25T16:41:26+00:00	2026-01-28T22:35:03+00:00
rhsa-2014:0150	Red Hat Security Advisory: gc security update	2014-02-10T17:29:19+00:00	2026-01-28T22:35:02+00:00
rhsa-2014:0149	Red Hat Security Advisory: gc security update	2014-02-10T17:29:25+00:00	2026-01-28T22:35:02+00:00
rhsa-2014:0029	Red Hat Security Advisory: Red Hat JBoss Data Grid 6.2.0 update	2014-01-15T17:45:50+00:00	2026-01-28T22:35:02+00:00
rhsa-2013:1853	Red Hat Security Advisory: Red Hat JBoss Operations Network 3.2.0 update	2013-12-17T18:30:00+00:00	2026-01-28T22:35:02+00:00
rhsa-2013:1451	Red Hat Security Advisory: java-1.7.0-openjdk security update	2013-10-22T17:13:00+00:00	2026-01-28T22:35:02+00:00
rhsa-2013:1771	Red Hat Security Advisory: Red Hat JBoss Web Framework Kit 2.4.0 update	2013-11-27T17:08:00+00:00	2026-01-28T22:35:01+00:00
rhsa-2013:1505	Red Hat Security Advisory: java-1.6.0-openjdk security update	2013-11-05T17:58:00+00:00	2026-01-28T22:35:01+00:00
rhsa-2013:1500	Red Hat Security Advisory: gc security update	2013-11-04T18:10:00+00:00	2026-01-28T22:35:00+00:00
rhsa-2013:1428	Red Hat Security Advisory: jakarta-commons-fileupload security update	2013-10-15T18:18:00+00:00	2026-01-28T22:35:00+00:00
rhsa-2013:1448	Red Hat Security Advisory: Red Hat JBoss Operations Network 3.1.2 update	2013-10-21T17:22:00+00:00	2026-01-28T22:34:59+00:00
rhsa-2013:1447	Red Hat Security Advisory: java-1.7.0-openjdk security update	2013-10-21T17:37:00+00:00	2026-01-28T22:34:59+00:00
rhsa-2013:1442	Red Hat Security Advisory: commons-fileupload security update	2013-10-17T17:17:00+00:00	2026-01-28T22:34:59+00:00
rhsa-2013:1440	Red Hat Security Advisory: java-1.7.0-oracle security update	2013-10-17T17:31:00+00:00	2026-01-28T22:34:59+00:00
rhsa-2013:1437	Red Hat Security Advisory: Red Hat JBoss Portal 6.1.0 update	2013-10-16T16:45:00+00:00	2026-01-28T22:34:59+00:00
rhsa-2013:1430	Red Hat Security Advisory: commons-fileupload security update	2013-10-15T18:31:00+00:00	2026-01-28T22:34:59+00:00
rhsa-2013:1429	Red Hat Security Advisory: jakarta-commons-fileupload security update	2013-10-15T18:30:00+00:00	2026-01-28T22:34:58+00:00
rhsa-2013:1375	Red Hat Security Advisory: Red Hat JBoss BRMS 5.3.1 update	2013-09-30T17:48:00+00:00	2026-01-28T22:34:57+00:00
rhsa-2013:1284	Red Hat Security Advisory: ruby193-puppet security update	2013-09-24T18:02:00+00:00	2026-01-28T22:34:57+00:00
rhsa-2013:1283	Red Hat Security Advisory: puppet security update	2013-09-24T18:01:00+00:00	2026-01-28T22:34:57+00:00
rhsa-2013:1221	Red Hat Security Advisory: Fuse Message Broker 5.5.1 security update	2013-09-09T16:54:00+00:00	2026-01-28T22:34:57+00:00
rhsa-2013:1220	Red Hat Security Advisory: xml-security security update	2013-09-09T16:51:00+00:00	2026-01-28T22:34:57+00:00
rhsa-2013:1219	Red Hat Security Advisory: xml-security security update	2013-09-09T16:51:00+00:00	2026-01-28T22:34:57+00:00
rhsa-2013:1218	Red Hat Security Advisory: xml-security security update	2013-09-09T16:50:00+00:00	2026-01-28T22:34:56+00:00
rhsa-2013:1217	Red Hat Security Advisory: xml-security security update	2013-09-09T16:50:00+00:00	2026-01-28T22:34:56+00:00
rhsa-2013:1209	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.1.1 update	2013-09-04T18:46:00+00:00	2026-01-28T22:34:56+00:00
rhsa-2013:1208	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.1.1 update	2013-09-04T18:45:00+00:00	2026-01-28T22:34:55+00:00

ID	Description	Published	Updated
icsa-20-014-02	Siemens SINEMA Server	2020-01-14T00:00:00.000000Z	2020-01-14T00:00:00.000000Z
icsa-20-014-01	GE PACSystems RX3i	2020-01-14T00:00:00.000000Z	2020-01-14T00:00:00.000000Z
icsa-19-344-07	Siemens EN100 Ethernet Module (Update A)	2019-12-10T00:00:00.000000Z	2020-01-14T00:00:00.000000Z
icsa-19-281-03	Siemens SIMATIC WinAC RTX (F) 2010 (Update A)	2019-10-08T00:00:00.000000Z	2020-01-14T00:00:00.000000Z
icsma-19-274-01	Interpeak IPnet TCP/IP Stack (Update D)	2019-10-01T00:00:00.000000Z	2020-01-07T00:00:00.000000Z
icsma-19-353-01	Philips Veradius Unity, Pulsera, and Endura Dual WAN Routers	2019-12-19T00:00:00.000000Z	2019-12-19T00:00:00.000000Z
icsa-19-353-04	Reliable Controls MACH-ProWebCom/Sys	2019-12-19T00:00:00.000000Z	2019-12-19T00:00:00.000000Z
icsa-19-353-03	WECON PLC Editor	2019-12-19T00:00:00.000000Z	2019-12-19T00:00:00.000000Z
icsa-19-353-02	Equinox Control Expert	2019-12-19T00:00:00.000000Z	2019-12-19T00:00:00.000000Z
icsa-19-353-01	Moxa EDS Ethernet Switches	2019-12-19T00:00:00.000000Z	2019-12-19T00:00:00.000000Z
icsa-19-318-04	Omron CX-Supervisor (Update A)	2019-11-14T00:00:00.000000Z	2019-12-19T00:00:00.000000Z
icsa-19-290-01	AVEVA Vijeo Citect and Citect SCADA (Update A)	2019-10-17T00:00:00.000000Z	2019-12-19T00:00:00.000000Z
icsa-19-351-01	GE S2020/S2020G Fast Switch 61850	2019-12-17T00:00:00.000000Z	2019-12-17T00:00:00.000000Z
icsma-19-318-01	Philips IntelliBridge EC40/80 (Update A)	2019-11-14T00:00:00.000000Z	2019-12-12T00:00:00.000000Z
icsa-19-346-03	Omron PLC CJ, CS and NJ Series	2019-12-12T00:00:00.000000Z	2019-12-12T00:00:00.000000Z
icsa-19-346-02	Omron PLC CJ and CS Series	2019-12-12T00:00:00.000000Z	2019-12-12T00:00:00.000000Z
icsa-19-346-01	Advantech DiagAnywhere Server	2019-12-12T00:00:00.000000Z	2019-12-12T00:00:00.000000Z
icsa-19-106-03	PLC Cycle Time Influences (Update A)	2019-04-16T00:00:00.000000Z	2019-12-12T00:00:00.000000Z
icsa-19-344-05	Siemens XHQ Operations Intelligence	2019-12-10T00:00:00.000000Z	2019-12-10T00:00:00.000000Z
icsa-19-344-01	Siemens SCALANCE W700 and W1700	2019-12-10T00:00:00.000000Z	2019-12-10T00:00:00.000000Z
icsa-19-339-02	Weidmueller Industrial Ethernet Switches	2019-12-05T00:00:00.000000Z	2019-12-05T00:00:00.000000Z
icsa-19-339-01	Thales DIS SafeNet Sentinel LDK License Manager Runtime	2019-12-05T00:00:00.000000Z	2019-12-05T00:00:00.000000Z
icsa-19-337-02	Moxa AWK-3121	2019-12-03T00:00:00.000000Z	2019-12-03T00:00:00.000000Z
icsa-19-337-01	Reliable Controls LicenseManager	2019-12-03T00:00:00.000000Z	2019-12-03T00:00:00.000000Z
icsa-19-330-02	ABB Relion 650 and 670 Series	2019-11-26T00:00:00.000000Z	2019-11-26T00:00:00.000000Z
icsa-19-330-01	ABB Relion 670 Series	2019-11-26T00:00:00.000000Z	2019-11-26T00:00:00.000000Z
icsa-19-323-01	Flexera FlexNet Publisher	2019-11-19T00:00:00.000000Z	2019-11-19T00:00:00.000000Z
icsa-19-318-05	ABB Power Generation Information Manager (PGIM) and Plant Connect	2019-11-14T00:00:00.000000Z	2019-11-14T00:00:00.000000Z
icsa-19-318-03	Siemens Desigo PX Devices	2019-11-12T00:00:00.000000Z	2019-11-12T00:00:00.000000Z
icsma-19-311-02	Medtronic Valleylab FT10 and FX8	2019-11-07T00:00:00.000000Z	2019-11-07T00:00:00.000000Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2024-56599	wifi: ath10k: avoid NULL pointer error during sdio remove	2024-12-02T00:00:00.000Z	2025-09-03T20:49:34.000Z
msrc_cve-2024-53209	bnxt_en: Fix receive ring space parameters when XDP is active	2024-12-02T00:00:00.000Z	2025-09-03T20:48:26.000Z
msrc_cve-2009-5063	Memory leak in the embedded_profile_len function in pngwutil.c in libpng before 1.2.39beta5 allows context-dependent attackers to cause a denial of service (memory leak or segmentation fault) via a JPEG image containing an iCCP chunk with a negative embedded profile length. NOTE: this is due to an incomplete fix for CVE-2006-7244.	2011-08-02T00:00:00.000Z	2025-09-03T20:45:49.000Z
msrc_cve-2024-24789	Mishandling of corrupt central directory record in archive/zip	2024-06-02T07:00:00.000Z	2025-09-03T20:45:41.000Z
msrc_cve-2021-47482	net: batman-adv: fix error handling	2024-05-02T07:00:00.000Z	2025-09-03T20:44:16.000Z
msrc_cve-2020-10722	A vulnerability was found in DPDK versions 18.05 and above. A missing check for an integer overflow in vhost_user_set_log_base() could result in a smaller memory map than requested, possibly allowing memory corruption.	2020-05-02T00:00:00.000Z	2025-09-03T20:43:23.000Z
msrc_cve-2024-53085	tpm: Lock TPM chip in tpm_pm_suspend() first	2024-11-02T00:00:00.000Z	2025-09-03T20:42:04.000Z
msrc_cve-2024-26814	vfio/fsl-mc: Block calling interrupt handler without trigger	2024-04-02T07:00:00.000Z	2025-09-03T20:41:52.000Z
msrc_cve-2022-48635	fsdax: Fix infinite loop in dax_iomap_rw()	2024-04-02T07:00:00.000Z	2025-09-03T20:40:50.000Z
msrc_cve-2024-27437	vfio/pci: Disable auto-enable of exclusive INTx IRQ	2024-04-02T07:00:00.000Z	2025-09-03T20:40:38.000Z
msrc_cve-2024-26811	ksmbd: validate payload size in ipc response	2024-04-02T07:00:00.000Z	2025-09-03T20:38:05.000Z
msrc_cve-2024-47850	CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added, a different vulnerability than CVE-2024-47176. (The request is meant to probe the new printer but can be used to create DDoS amplification attacks.)	2024-10-01T07:00:00.000Z	2025-09-03T20:34:03.000Z
msrc_cve-2021-33468	An issue was discovered in yasm version 1.3.0. There is a use-after-free in error() in modules/preprocs/nasm/nasm-pp.c.	2022-07-02T00:00:00.000Z	2025-09-03T20:32:43.000Z
msrc_cve-2024-44337	The package `github.com/gomarkdown/markdown` is a Go library for parsing Markdown text and rendering as HTML. Prior to pseudoversion `v0.0.0-20240729232818-a2a9c4f`, which corresponds with commit `a2a9c4f76ef5a5c32108e36f7c47f8d310322252`, there was a logical problem in the paragraph function of the parser/block.go file, which allowed a remote attacker to cause a denial of service (DoS) condition by providing a tailor-made input that caused an infinite loop, causing the program to hang and consume resources indefinitely. Submit `a2a9c4f76ef5a5c32108e36f7c47f8d310322252` contains fixes to this problem.	2024-10-01T07:00:00.000Z	2025-09-03T20:31:17.000Z
msrc_cve-2021-33467	An issue was discovered in yasm version 1.3.0. There is a use-after-free in pp_getline() in modules/preprocs/nasm/nasm-pp.c.	2022-07-02T00:00:00.000Z	2025-09-03T20:31:09.000Z
msrc_cve-2021-33466	An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in expand_smacro() in modules/preprocs/nasm/nasm-pp.c.	2022-07-02T00:00:00.000Z	2025-09-03T20:29:53.000Z
msrc_cve-2024-42252	closures: Change BUG_ON() to WARN_ON()	2024-08-02T00:00:00.000Z	2025-09-03T20:29:32.000Z
msrc_cve-2020-14378	An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause `move_desc` to get stuck in a 4,294,967,295-count iteration loop. Depending on how `vhost_crypto` is being used this could prevent other VMs or network tasks from being serviced by the busy DPDK lcore for an extended period.	2020-09-02T00:00:00.000Z	2025-09-03T20:28:35.000Z
msrc_cve-2021-33465	An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in expand_mmacro() in modules/preprocs/nasm/nasm-pp.c.	2022-07-02T00:00:00.000Z	2025-09-03T20:28:27.000Z
msrc_cve-2024-43857	f2fs: fix null reference error when checking end of zone	2024-08-02T00:00:00.000Z	2025-09-03T20:28:26.000Z
msrc_cve-2024-49917	drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw	2024-10-01T07:00:00.000Z	2025-09-03T20:27:18.000Z
msrc_cve-2012-0883	envvars (aka envvars-std) in the Apache HTTP Server before 2.4.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse DSO in the current working directory during execution of apachectl.	2012-04-02T00:00:00.000Z	2025-09-03T20:26:28.000Z
msrc_cve-2019-20633	GNU patch through 2.7.6 contains a free(p_line[p_end]) Double Free vulnerability in the function another_hunk in pch.c that can cause a denial of service via a crafted patch file. NOTE: this issue exists because of an incomplete fix for CVE-2018-6952.	2020-03-02T00:00:00.000Z	2025-09-03T20:26:16.000Z
msrc_cve-2010-4226	cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote attackers to overwrite arbitrary files via a symlink within an RPM package archive.	2014-02-02T00:00:00.000Z	2025-09-03T20:26:05.000Z
msrc_cve-2024-50014	ext4: fix access to uninitialised lock in fc replay path	2024-10-01T07:00:00.000Z	2025-09-03T20:23:54.000Z
msrc_cve-2021-33462	An issue was discovered in yasm version 1.3.0. There is a use-after-free in expr_traverse_nodes_post() in libyasm/expr.c.	2022-07-02T00:00:00.000Z	2025-09-03T20:23:46.000Z
msrc_cve-2019-14249	dwarf_elf_load_headers.c in libdwarf before 2019-07-05 allows attackers to cause a denial of service	2019-07-02T00:00:00.000Z	2025-09-03T20:23:20.000Z
msrc_cve-2024-43849	soc: qcom: pdr: protect locator_addr with the main mutex	2024-08-02T00:00:00.000Z	2025-09-03T20:22:56.000Z
msrc_cve-2020-28163	libdwarf before 20201201 allows a dwarf_print_lines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname.	2023-04-01T00:00:00.000Z	2025-09-03T20:22:17.000Z
msrc_cve-2021-33461	An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasm_intnum_destroy() in libyasm/intnum.c.	2022-07-02T00:00:00.000Z	2025-09-03T20:22:11.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-201909-0084	An issue was discovered in 3S-Smart CODESYS before 3.5.15.0 . Crafted network packets cau…	2025-10-04T21:19:31.060000Z
var-201902-0731	Use of Insufficiently Random Values exists in CODESYS V3 products versions prior V3.5.14.…	2025-10-04T21:15:53.343000Z
var-202105-1033	CODESYS Control Runtime system before 3.5.17.0 has improper input validation. Attackers c…	2025-10-04T20:31:16.653000Z
var-201902-0732	Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.…	2025-10-04T20:15:01.065000Z
var-202509-0181	A vulnerability was found in TOTOLINK X5000R 9.1.0cu.2415_B20250515. This affects the fun…	2025-10-03T23:36:00.249000Z
var-202501-2794	ECOVACS robot lawnmowers and vacuums use a deterministic symmetric key to decrypt firmwar…	2025-10-03T23:34:16.906000Z
var-202506-2348	A command injection vulnerability has been reported to affect QHora. If an attacker gains…	2025-10-03T23:32:49.852000Z
var-202509-1494	A vulnerability was detected in D-Link DIR-823x up to 250416. The affected element is an …	2025-10-03T23:32:49.346000Z
var-202509-3042	Delta Electronics DIALink has an Directory Traversal Authentication Bypass Vulnerability.…	2025-10-03T23:32:49.250000Z
var-202501-1431	A vulnerability has been found in D-Link DIR-823X 240126/240802 and classified as critica…	2025-10-03T23:31:53.064000Z
var-202509-1480	A vulnerability was found in Tenda AC1206 15.03.06.23. This vulnerability affects the fun…	2025-10-03T23:26:53.366000Z
var-201406-0145	COPA-DATA zenon DNP3 NG driver (DNP3 master) 7.10 and 7.11 through 7.11 SP0 build 10238 a…	2025-10-03T23:21:46.315000Z
var-201406-0146	COPA-DATA zenon DNP3 NG driver (DNP3 master) 7.10 and 7.11 through 7.11 SP0 build 10238 a…	2025-10-03T23:21:46.266000Z
var-202509-0089	A vulnerability was determined in Tenda CP6 11.10.00.243. The affected element is the fun…	2025-10-03T23:20:57.695000Z
var-201405-0286	Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows remote attackers to cause …	2025-10-03T23:19:08.092000Z
var-201405-0278	Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows physically proximate attac…	2025-10-03T23:19:08.041000Z
var-202508-3091	Delta Electronics EIP Builder version 1.11 is vulnerable to a File Parsing XML External E…	2025-10-03T23:18:47.059000Z
var-202411-3168	An issue was discovered in MBed OS 6.16.0. When parsing hci reports, the hci parsing soft…	2025-10-03T23:16:13.271000Z
var-202504-0724	A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). T…	2025-10-03T23:05:30.388000Z
var-202504-0718	A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). T…	2025-10-03T23:01:46.864000Z
var-202503-0304	A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < …	2025-10-03T22:57:28.587000Z
var-202204-1265	An unauthenticated, remote attacker can disrupt existing communication channels between C…	2025-10-03T22:30:24.628000Z
var-201909-1000	3S-Smart Software Solutions GmbH CODESYS V3 OPC UA Server, all versions 3.5.11.0 to 3.5.1…	2025-10-03T22:17:04.526000Z
var-201908-0055	An issue was discovered in 3S-Smart CODESYS V3 products. The CODESYS Gateway does not cor…	2025-10-03T22:13:48.905000Z
var-202108-1804	In CODESYS Gateway V3 before 3.5.17.10, there is a NULL Pointer Dereference. Crafted comm…	2025-10-03T22:00:58.237000Z
var-202412-0348	A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14…	2025-10-03T21:58:30.428000Z
var-202212-1959	In CODESYS V3 products in all versions prior V3.5.16.0 containing the CmpUserMgr, the COD…	2025-10-03T21:55:02.035000Z
var-202105-1032	CODESYS Gateway 3 before 3.5.16.70 has a NULL pointer dereference that may result in a de…	2025-10-03T21:55:00.899000Z
var-202504-0725	A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). T…	2025-10-03T21:44:17.055000Z
var-202503-0282	A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14…	2025-10-03T21:40:51.958000Z

ID	Description	Published	Updated
jvndb-2006-000622	dotProject cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000621	RWiki cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000620	RWiki arbitrary Ruby script execution vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000619	MyWeb SQL injection vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000617	Multiple email clients vulnerable to directory traversal due to inappropriate unicode handling	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000616	DonutP and UnDonut confirmation dialog display vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000615	Apache Struts Validator allows to bypass input data validation	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000614	Winny buffer overflow vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000613	Trac cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000612	FreeStyleWiki cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000611	QUICK CART cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000610	QUICK CART OS command injection vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000609	CAFEMILK Shopping Cart CGI cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000606	Minnu's filer2 vulnerable in allowing arbitrary Ruby script execution	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000605	Hyper NIKKI System allows unauthorized email submission	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000604	Nagasaki Electronic Prefectural Office System SQL injection vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000603	Hatena Toolbar sends URL information unecnrypted	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000602	Multiple email clients vulnerable in handling an attachement inapropriately	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000601	Eudora Japanese version stops working after the application crashes	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000600	Nagasaki Electronic Prefectural Office System authentication information vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000599	Nagasaki Electronic Prefectural Office System vulnerable to bypass authentication	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000540	Microsoft Windows Indexing Service cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000392	Ruby contains a vulnerability that prevents safe level 4 from functioning as a sandbox.	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000345	Microsoft Internet Explorer address bar spoofing vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000326	Mozilla Firefox vulnerable to HTTP response splitting	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000293	Sun Java System Web Server cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2006-000251	SquirrelMail cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2005-000864	XOOPS cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2005-000805	nProtect Netizen has multiple vulnerabilities	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00
jvndb-2005-000802	BBSNote cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-05-21T00:00+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:0624-1	Security update for grafana	2025-02-21T11:00:27Z	2025-02-21T11:00:27Z
suse-su-2025:0623-1	Security update for grafana	2025-02-21T11:00:07Z	2025-02-21T11:00:07Z
suse-su-2025:0622-1	Security update for grafana	2025-02-21T10:59:56Z	2025-02-21T10:59:56Z
suse-su-2025:0619-1	Security update for postgresql13	2025-02-21T10:47:45Z	2025-02-21T10:47:45Z
suse-su-2025:0618-1	Security update for postgresql17	2025-02-21T10:44:42Z	2025-02-21T10:44:42Z
suse-su-2025:0616-1	Security update for postgresql17	2025-02-21T10:42:36Z	2025-02-21T10:42:36Z
suse-su-2025:0615-1	Security update for postgresql14	2025-02-21T10:41:20Z	2025-02-21T10:41:20Z
suse-su-2025:0614-1	Security update for postgresql15	2025-02-21T10:40:20Z	2025-02-21T10:40:20Z
suse-su-2025:0613-1	Security update for openssl-1_1	2025-02-21T10:37:55Z	2025-02-21T10:37:55Z
suse-su-2025:0611-1	Security update for google-osconfig-agent	2025-02-21T10:37:12Z	2025-02-21T10:37:12Z
suse-su-2025:0609-1	Security update for ovmf	2025-02-21T10:33:48Z	2025-02-21T10:33:48Z
suse-su-2025:0608-1	Security update for ovmf	2025-02-21T10:31:14Z	2025-02-21T10:31:14Z
suse-su-2025:0607-1	Security update for grub2	2025-02-20T21:42:16Z	2025-02-20T21:42:16Z
suse-su-2025:0606-1	Security update for postgresql13	2025-02-20T16:21:32Z	2025-02-20T16:21:32Z
suse-su-2025:0605-1	Security update for openssh	2025-02-20T14:43:20Z	2025-02-20T14:43:20Z
suse-su-2025:20224-1	Security update for cloud-regionsrv-client, python-toml	2025-02-20T12:41:47Z	2025-02-20T12:41:47Z
suse-su-2025:0603-1	Security update for the Linux Kernel	2025-02-20T10:34:39Z	2025-02-20T10:34:39Z
suse-su-2025:0602-1	Security update for helm	2025-02-20T09:15:28Z	2025-02-20T09:15:28Z
suse-su-2025:0601-1	Security update for brise	2025-02-20T09:14:11Z	2025-02-20T09:14:11Z
suse-su-2025:0599-1	Security update for emacs	2025-02-19T16:09:03Z	2025-02-19T16:09:03Z
suse-su-2025:0591-1	Security update for ucode-intel	2025-02-19T10:35:26Z	2025-02-19T10:35:26Z
suse-su-2025:0590-1	Security update for netty, netty-tcnative	2025-02-19T10:34:01Z	2025-02-19T10:34:01Z
suse-su-2025:0589-1	Security update for emacs	2025-02-19T10:31:29Z	2025-02-19T10:31:29Z
suse-su-2025:0588-1	Security update for grub2	2025-02-19T07:30:53Z	2025-02-19T07:30:53Z
suse-su-2025:0587-1	Security update for grub2	2025-02-19T07:29:35Z	2025-02-19T07:29:35Z
suse-su-2025:0586-1	Security update for grub2	2025-02-19T07:28:49Z	2025-02-19T07:28:49Z
suse-su-2025:0585-1	Security update for openssh	2025-02-18T16:42:16Z	2025-02-18T16:42:16Z
suse-su-2025:0583-1	Security update for openvswitch	2025-02-18T15:02:29Z	2025-02-18T15:02:29Z
suse-su-2025:0582-1	Security update for glibc	2025-02-18T14:55:30Z	2025-02-18T14:55:30Z
suse-su-2025:0581-1	Security update for buildah	2025-02-18T14:54:14Z	2025-02-18T14:54:14Z

ID	Description	Published	Updated
opensuse-su-2024:13098-1	pgadmin4-7.4-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13097-1	libopenssl-3-devel-3.1.2-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13096-1	keylime-config-7.4.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13095-1	kernel-firmware-20230731-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13094-1	go1.20-1.20.7-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13093-1	go1.19-1.19.12-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13092-1	chromedriver-115.0.5790.170-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13091-1	MozillaThunderbird-102.14.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13090-1	libopenssl-1_1-devel-1.1.1v-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13089-1	gstreamer-plugins-ugly-1.22.5-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13088-1	gstreamer-plugins-good-1.22.5-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13087-1	gstreamer-plugins-base-1.22.5-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13086-1	gstreamer-plugins-bad-1.22.5-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13085-1	python39-3.9.17-3.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13084-1	java-1_8_0-openjdk-1.8.0.382-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13083-1	amanda-3.5.4-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13082-1	qemu-8.0.3-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13081-1	ghostscript-9.56.1-5.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13080-1	kernel-devel-6.4.6-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13079-1	libQt6Concurrent6-6.5.2-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13078-1	python310-cryptography-41.0.2-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13077-1	nodejs-electron-22.3.17-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13076-1	java-17-openjdk-17.0.8.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13075-1	java-11-openjdk-11.0.20.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13074-1	go1.20-1.20.6-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13073-1	apptainer-1.2.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13072-1	MozillaThunderbird-102.13.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13071-1	ctdb-4.18.5+git.313.c8e274c7852-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13070-1	libopenssl-1_0_0-devel-1.0.2u-21.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13069-1	curl-8.2.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
cnvd-2025-25371	F5 BIG-IP SSL/TLS拒绝服务漏洞	2025-10-17	2025-10-21
cnvd-2025-25370	F5 BIG-IP TMM拒绝服务漏洞	2025-10-17	2025-10-21
cnvd-2025-25369	F5 BIG-IP iHealth工具权限绕过漏洞	2025-10-17	2025-10-21
cnvd-2025-25368	F5 BIG-IP ePVA拒绝服务漏洞	2025-10-17	2025-10-21
cnvd-2025-25367	F5 BIG-IP Next TMM内存资源管理漏洞	2025-10-17	2025-10-21
cnvd-2025-25366	F5 BIG-IP SSL/TLS配置文件拒绝服务漏洞	2025-10-17	2025-10-21
cnvd-2025-25365	F5 BIG-IP TMM模块拒绝服务漏洞	2025-10-17	2025-10-21
cnvd-2025-24800	Centreon存在未明漏洞（CNVD-2025-24800）	2025-05-28	2025-10-21
cnvd-2025-24734	F5 BIG-IP TMM数据篡改漏洞	2025-10-17	2025-10-21
cnvd-2025-24650	Centreon命令注入漏洞（CNVD-2025-24650）	2025-10-17	2025-10-21
cnvd-2025-24648	Centreon跨站脚本漏洞（CNVD-2025-24648）	2025-10-17	2025-10-21
cnvd-2025-24647	Centreon存在未明漏洞（CNVD-2025-24647）	2025-10-17	2025-10-21
cnvd-2025-24643	DataEase SQL注入漏洞	2025-10-20	2025-10-21
cnvd-2025-24484	Tenda AC23 schedStartTime参数堆栈缓冲区溢出漏洞	2024-02-26	2025-10-21
cnvd-2025-24483	Tenda CH22 formdeleteUserName函数缓冲区溢出漏洞	2025-07-28	2025-10-21
cnvd-2025-24482	Tenda AC20硬编码凭证漏洞	2025-08-20	2025-10-21
cnvd-2025-24481	Tenda AC20 shareSpeed参数缓冲区溢出漏洞	2025-08-20	2025-10-21
cnvd-2025-24480	Tenda AC23 SetPptpServerCfg文件sscanf函数缓冲区溢出漏洞	2025-09-25	2025-10-21
cnvd-2025-24479	Tenda AC20 strcpy函数缓冲区溢出漏洞	2025-09-25	2025-10-21
cnvd-2025-24478	Tenda CH22 formWrlExtraGet函数缓冲区溢出漏洞	2025-09-29	2025-10-21
cnvd-2025-24477	Tenda CH22 formSafeEmailFilter函数内存损坏漏洞	2025-10-13	2025-10-21
cnvd-2025-24476	Tenda CH22 formWrlsafeset函数堆栈缓冲区溢出漏洞	2025-10-13	2025-10-21
cnvd-2025-24475	Tenda AC23 sscanf函数缓冲区溢出漏洞	2025-10-13	2025-10-21
cnvd-2025-24474	Tenda AC20 sscanf函数缓冲区溢出漏洞	2025-10-13	2025-10-21
cnvd-2025-24473	Tenda AC18 wanSpeed参数堆栈缓冲区溢出漏洞	2025-10-13	2025-10-21
cnvd-2025-24472	Tenda AC18 wanMTU参数栈缓冲区溢出漏洞	2025-10-13	2025-10-21
cnvd-2025-24471	Tenda AC18 mac参数栈缓冲区溢出漏洞	2025-10-13	2025-10-21
cnvd-2025-24470	Tenda AC18 cloneType参数堆栈缓冲区溢出漏洞	2025-10-13	2025-10-21
cnvd-2025-24469	Tenda AC18 wifi_chkHz参数堆栈缓冲区溢出漏洞	2025-10-13	2025-10-21
cnvd-2025-24468	Tenda AC18 upnpEn参数堆栈缓冲区溢出漏洞	2025-10-13	2025-10-21

ID	Description	Published	Updated
certfr-2023-avi-0399	Multiples vulnérabilités dans les produits NetApp HCI	2023-05-19T00:00:00.000000	2023-05-19T00:00:00.000000
certfr-2023-avi-0398	Multiples vulnérabilités dans le cadriciel VMware Spring	2023-05-19T00:00:00.000000	2023-05-19T00:00:00.000000
certfr-2023-avi-0397	Vulnérabilité dans IBM Sterling Connect	2023-05-19T00:00:00.000000	2023-05-19T00:00:00.000000
certfr-2023-avi-0396	Multiples vulnérabilités dans Microsoft Edge	2023-05-19T00:00:00.000000	2023-05-19T00:00:00.000000
certfr-2023-avi-0395	Multiples vulnérabilités dans le noyau Linux de SUSE	2023-05-19T00:00:00.000000	2023-05-19T00:00:00.000000
certfr-2023-avi-0394	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2023-05-19T00:00:00.000000	2023-05-19T00:00:00.000000
certfr-2023-avi-0393	Multiples vulnérabilités dans le noyau Linux de RedHat	2023-05-19T00:00:00.000000	2023-05-19T00:00:00.000000
certfr-2023-avi-0392	Multiples vulnérabilités dans le noyau Linux de DebianLTS	2023-05-19T00:00:00.000000	2023-05-19T00:00:00.000000
certfr-2023-avi-0391	Multiples vulnérabilités dans le noyau Linux de Debian	2023-05-19T00:00:00.000000	2023-05-19T00:00:00.000000
certfr-2023-avi-0390	Multiples vulnérabilités dans les produits Apple	2023-05-19T00:00:00.000000	2023-05-19T00:00:00.000000
certfr-2023-avi-0389	Vulnérabilité dans les produits Xen	2023-05-17T00:00:00.000000	2023-05-17T00:00:00.000000
certfr-2023-avi-0388	Multiples vulnérabilités dans les produits Google Chrome	2023-05-17T00:00:00.000000	2023-05-17T00:00:00.000000
certfr-2023-avi-0387	Multiples vulnérabilités dans TrendMicro Apex One et Apex Central	2023-05-17T00:00:00.000000	2023-05-17T00:00:00.000000
certfr-2023-avi-0386	Multiples vulnérabilités dans WordPress	2023-05-17T00:00:00.000000	2023-05-17T00:00:00.000000
certfr-2023-avi-0385	Multiples vulnérabilités dans les produits VMware Tanzu	2023-05-15T00:00:00.000000	2023-05-15T00:00:00.000000
certfr-2023-avi-0384	Multiples vulnérabilités dans TrendMicro Mobile Security (entreprise)	2023-05-15T00:00:00.000000	2023-05-15T00:00:00.000000
certfr-2023-avi-0383	Multiples vulnérabilités dans le noyau Linux de RedHat	2023-05-12T00:00:00.000000	2023-05-12T00:00:00.000000
certfr-2023-avi-0382	Multiples vulnérabilités dans le noyau Linux de SUSE	2023-05-12T00:00:00.000000	2023-05-12T00:00:00.000000
certfr-2023-avi-0381	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2023-05-12T00:00:00.000000	2023-05-12T00:00:00.000000
certfr-2023-avi-0380	Multiples vulnérabilités dans Tenable Nessus	2023-05-12T00:00:00.000000	2023-05-12T00:00:00.000000
certfr-2023-avi-0379	Multiples vulnérabilités Vmware Aria Operations	2023-05-12T00:00:00.000000	2023-05-12T00:00:00.000000
certfr-2023-avi-0378	Multiples vulnérabilités dans PostgreSQL	2023-05-12T00:00:00.000000	2023-05-12T00:00:00.000000
certfr-2023-avi-0377	Multiples vulnérabilités dans PAN-OS	2023-05-11T00:00:00.000000	2023-05-11T00:00:00.000000
certfr-2023-avi-0376	Vulnérabilité dans les produits GitLab	2023-05-11T00:00:00.000000	2023-05-11T00:00:00.000000
certfr-2023-avi-0375	Multiples vulnérabilités dans Thunderbird	2023-05-11T00:00:00.000000	2023-05-11T00:00:00.000000
certfr-2023-avi-0374	Multiples vulnérabilités dans les produits Microsoft	2023-05-10T00:00:00.000000	2023-05-10T00:00:00.000000
certfr-2023-avi-0373	Multiples vulnérabilités dans Microsoft Windows	2023-05-10T00:00:00.000000	2023-05-10T00:00:00.000000
certfr-2023-avi-0372	Multiples vulnérabilités dans Microsoft Office	2023-05-10T00:00:00.000000	2023-05-10T00:00:00.000000
certfr-2023-avi-0371	Multiples vulnérabilités dans les produits Intel	2023-05-10T00:00:00.000000	2023-05-10T00:00:00.000000
certfr-2023-avi-0370	Multiples vulnérabilités dans les produits Siemens	2023-05-10T00:00:00.000000	2023-05-10T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated