Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2026-27968
4.3 (3.1)
Packistry accepts expired access tokens packistry
 packistry
 2026-02-26T01:57:12.752Z 2026-02-26T14:53:10.334Z
CVE-2026-27966
9.8 (3.1)
Langflow has Remote Code Execution in CSV Agent langflow-ai
 langflow
 2026-02-26T01:55:18.580Z 2026-02-28T04:55:26.622Z
CVE-2026-27969
9.3 (4.0)
Vitess users with backup storage access can write to a… vitessio
 vitess
 2026-02-26T01:52:30.677Z 2026-02-26T19:33:53.738Z
CVE-2026-27965
8.4 (4.0)
Vitess users with backup storage access can gain unaut… vitessio
 vitess
 2026-02-26T01:49:10.071Z 2026-02-26T19:32:59.874Z
CVE-2026-27959
7.5 (3.1)
Koa has Host Header Injection via `ctx.hostname` koajs
 koa
 2026-02-26T01:45:45.668Z 2026-02-26T19:32:00.105Z
CVE-2026-27954
4.9 (4.0)
LiveHelperChat has department-level authorization bypa… LiveHelperChat
 livehelperchat
 2026-02-26T01:42:38.225Z 2026-02-26T19:30:20.351Z
CVE-2026-27961
8.8 (3.1)
Agenta's Server-Side Template Injection (SSTI) via cus… Agenta-AI
 agenta
 2026-02-26T01:39:09.997Z 2026-02-26T19:29:04.883Z
CVE-2026-27952
8.8 (3.1)
Agenta has Python Sandbox Escape, Leading to Remote Co… Agenta-AI
 agenta-api
 2026-02-26T01:38:00.760Z 2026-02-26T19:27:29.328Z
CVE-2026-27948
5.4 (3.1)
Copyparty vulnerable to eflected cross-site scripting … 9001
 copyparty
 2026-02-26T01:32:15.184Z 2026-02-26T15:07:56.702Z
CVE-2026-27943
6.5 (3.1)
OpenEMR's Eye Exam View Trusts form_id Without Verifyi… openemr
 openemr
 2026-02-26T01:30:31.363Z 2026-02-26T15:28:13.472Z
CVE-2026-2499
4.4 (3.1)
Custom Logo <= 2.2 - Authenticated (Administrator+) St… tgrk
 Custom Logo
 2026-02-26T01:24:15.718Z 2026-02-26T15:10:28.820Z
CVE-2026-2029
6.4 (3.1)
Livemesh Addons for Beaver Builder <= 3.9.2 - Authenti… livemesh
 Livemesh Addons for Beaver Builder
 2026-02-26T01:24:15.342Z 2026-02-26T15:13:24.583Z
CVE-2026-2489
4.4 (3.1)
TP2WP Importer <= 1.1 - Authenticated (Administrator+)… readymadeweb
 TP2WP Importer
 2026-02-26T01:24:14.916Z 2026-02-26T15:29:15.546Z
CVE-2026-2498
4.4 (3.1)
WP Social Meta <= 1.0.1 - Authenticated (Administrator… bulktheme
 WP Social Meta
 2026-02-26T01:24:14.553Z 2026-02-26T15:29:44.068Z
CVE-2026-1557
7.5 (3.1)
WP Responsive Images <= 1.0 - Unauthenticated Path Tra… stuartbates
 WP Responsive Images
 2026-02-26T01:24:14.199Z 2026-02-26T15:31:50.388Z
CVE-2026-2506
6.1 (3.1)
EM Cost Calculator <= 2.3.1 - Unauthenticated Stored C… motahar1
 EM Cost Calculator
 2026-02-26T01:24:13.651Z 2026-02-26T15:42:01.642Z
CVE-2026-27942
2.7 (4.0)
fast-xml-parser has stack overflow in XMLBuilder with … NaturalIntelligence
 fast-xml-parser
 2026-02-26T01:22:11.383Z 2026-02-26T15:49:35.449Z
CVE-2026-27941
10 (3.1)
OpenLIT Vulnerable to Remote Code Execution and Secret… openlit
 openlit
 2026-02-26T01:17:22.532Z 2026-02-26T15:54:11.519Z
CVE-2026-27938
7.7 (3.1)
WPGraphQL Repo Vulnerable to Command Injection via Uns… wp-graphql
 wp-graphql
 2026-02-26T01:10:26.985Z 2026-02-26T19:22:46.590Z
CVE-2026-27904
7.5 (3.1)
minimatch ReDoS: nested *() extglobs generate catastro… isaacs
 minimatch
 2026-02-26T01:07:42.693Z 2026-02-26T19:21:39.006Z
CVE-2026-27903
7.5 (3.1)
minimatch has a ReDoS: matchOne() combinatorial backtr… isaacs
 minimatch
 2026-02-26T01:06:32.856Z 2026-02-26T19:20:51.517Z
CVE-2026-27902
5.3 (4.0)
Svelte Vulnerable to XSS via HTML Comment Injection in… sveltejs
 svelte
 2026-02-26T00:58:54.604Z 2026-02-26T18:51:39.142Z
CVE-2026-27901
5.3 (4.0)
Svelte vulnerable to XSS during SSR with contenteditab… sveltejs
 svelte
 2026-02-26T00:57:40.269Z 2026-02-26T14:31:00.714Z
CVE-2026-27887
6.9 (4.0)
Spin has memory leaks in various WIT interfaces spinframework
 spin
 2026-02-26T00:55:53.360Z 2026-02-26T14:34:29.169Z
CVE-2026-27900
5 (3.1)
Terraform Provider Debug Logs Vulnerable to Sensitive … linode
 terraform-provider-linode
 2026-02-26T00:53:19.168Z 2026-02-26T14:35:31.565Z
CVE-2026-22728
4.9 (3.1)
sealed-secrets /v1/rotate can widen sealing scope to c… Bitnami
 sealed-secrets
 2026-02-26T00:50:00.863Z 2026-02-26T15:58:32.372Z
CVE-2026-27899
8.8 (3.1)
WireGuard Portal Vulnerable to Privilege Escalation to… h44z
 wg-portal
 2026-02-26T00:50:00.278Z 2026-02-26T16:02:52.876Z
CVE-2026-27896
7 (4.0)
MCP Go SDK Vulnerable to Improper Handling of Case Sen… modelcontextprotocol
 go-sdk
 2026-02-26T00:47:46.967Z 2026-02-26T17:06:41.150Z
CVE-2026-27830
8.9 (4.0)
c3p0 vulnerable to Remote Code Execution via unsafe de… swaldman
 c3p0
 2026-02-26T00:45:18.222Z 2026-02-27T16:25:52.917Z
CVE-2026-27888
6.6 (4.0)
pypdf: Manipulated FlateDecode XFA streams can exhaust RAM py-pdf
 pypdf
 2026-02-26T00:42:00.542Z 2026-02-26T16:16:08.680Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-1695
5.3 (4.0)
XSS vulnerability upon unsuccessful authentication arcinfo
 PcVue
 2026-02-26T07:57:11.931Z 2026-02-26T14:21:32.290Z
CVE-2026-1694
2.3 (4.0)
Server configuration details in HTTP headers arcinfo
 PcVue
 2026-02-26T07:56:57.048Z 2026-02-26T14:22:11.880Z
CVE-2026-1693
5.3 (4.0)
Use of vulnerable Resource Owner Password Credentials flow arcinfo
 PcVue
 2026-02-26T07:56:10.326Z 2026-02-26T14:22:42.916Z
CVE-2026-1692
5.3 (4.0)
Missing origin validation in GraphicalData web service… arcinfo
 PcVue
 2026-02-26T07:55:18.433Z 2026-02-26T14:23:20.892Z
CVE-2026-25191
7.8 (3.0)
8.4 (4.0)
The installer of FinalCode Client provided by Dig… Digital Arts Inc.
 FinalCode Ver.5 series
 2026-02-26T05:39:24.457Z 2026-02-26T14:24:33.596Z
CVE-2026-23703
7.8 (3.0)
8.5 (4.0)
The installer of FinalCode Client provided by Dig… Digital Arts Inc.
 FinalCode Ver.5 series
 2026-02-26T05:39:11.471Z 2026-02-26T14:25:14.491Z
CVE-2026-1311
8.8 (3.1)
Worry Proof Backup <= 0.2.4 - Authenticated (Subscribe… bearsthemes
 Worry Proof Backup
 2026-02-26T04:36:16.923Z 2026-02-26T14:25:46.217Z
CVE-2026-2356
5.3 (3.1)
User Registration & Membership <= 5.1.2 - Insecure Dir… wpeverest
 User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder
 2026-02-26T02:23:55.847Z 2026-02-26T14:41:55.080Z
CVE-2026-27975
8.1 (4.0)
Ajenti has a potential Remote Code Execution ajenti
 ajenti
 2026-02-26T02:39:28.283Z 2026-02-27T14:13:28.184Z
CVE-2026-27974
4.8 (3.1)
Audiobooksheld VUlnerable to Stored XSS in WrappingMar… advplyr
 audiobookshelf-app
 2026-02-26T02:10:30.504Z 2026-02-26T14:42:43.253Z
CVE-2026-27963
4.8 (3.1)
Audiobookshelf has Stored XSS in Tooltip.vue via Audio… advplyr
 audiobookshelf
 2026-02-26T02:08:21.298Z 2026-02-26T14:43:59.379Z
CVE-2026-27465
1.3 (4.0)
Fleet: Sensitive Google Calendar credentials disclosed… fleetdm
 fleet
 2026-02-26T02:54:04.886Z 2026-02-26T14:26:24.835Z
CVE-2026-25963
1.2 (4.0)
Fleet: Authorization Bypass in certificate template ba… fleetdm
 fleet
 2026-02-26T02:49:21.223Z 2026-02-26T14:27:10.738Z
CVE-2026-24004
1.7 (4.0)
Fleet: Unauthenticated Android device disenrollment vu… fleetdm
 fleet
 2026-02-26T02:43:14.600Z 2026-02-26T14:33:57.282Z
CVE-2026-23999
0.6 (4.0)
Fleet: Device lock PIN can be predicted if lock time i… fleetdm
 fleet
 2026-02-26T02:45:48.099Z 2026-02-26T15:15:55.289Z
CVE-2026-1779
8.1 (3.1)
User Registration & Membership <= 5.1.2 - Authenticati… wpeverest
 User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder
 2026-02-26T02:23:56.402Z 2026-02-26T14:36:33.220Z
CVE-2026-2506
6.1 (3.1)
EM Cost Calculator <= 2.3.1 - Unauthenticated Stored C… motahar1
 EM Cost Calculator
 2026-02-26T01:24:13.651Z 2026-02-26T15:42:01.642Z
CVE-2026-2499
4.4 (3.1)
Custom Logo <= 2.2 - Authenticated (Administrator+) St… tgrk
 Custom Logo
 2026-02-26T01:24:15.718Z 2026-02-26T15:10:28.820Z
CVE-2026-2498
4.4 (3.1)
WP Social Meta <= 1.0.1 - Authenticated (Administrator… bulktheme
 WP Social Meta
 2026-02-26T01:24:14.553Z 2026-02-26T15:29:44.068Z
CVE-2026-2489
4.4 (3.1)
TP2WP Importer <= 1.1 - Authenticated (Administrator+)… readymadeweb
 TP2WP Importer
 2026-02-26T01:24:14.916Z 2026-02-26T15:29:15.546Z
CVE-2026-2029
6.4 (3.1)
Livemesh Addons for Beaver Builder <= 3.9.2 - Authenti… livemesh
 Livemesh Addons for Beaver Builder
 2026-02-26T01:24:15.342Z 2026-02-26T15:13:24.583Z
CVE-2026-27973
4 (3.1)
Audiobookshelf has Stored XSS in ItemSearchCard.vue vi… advplyr
 audiobookshelf
 2026-02-26T02:06:49.271Z 2026-02-26T14:45:25.252Z
CVE-2026-27970
7.6 (4.0)
Angular i18n vulnerable to Cross-Site Scripting (XSS) angular
 angular
 2026-02-26T02:03:43.811Z 2026-02-26T14:47:38.387Z
CVE-2026-27969
9.3 (4.0)
Vitess users with backup storage access can write to a… vitessio
 vitess
 2026-02-26T01:52:30.677Z 2026-02-26T19:33:53.738Z
CVE-2026-27968
4.3 (3.1)
Packistry accepts expired access tokens packistry
 packistry
 2026-02-26T01:57:12.752Z 2026-02-26T14:53:10.334Z
CVE-2026-27966
9.8 (3.1)
Langflow has Remote Code Execution in CSV Agent langflow-ai
 langflow
 2026-02-26T01:55:18.580Z 2026-02-28T04:55:26.622Z
CVE-2026-27965
8.4 (4.0)
Vitess users with backup storage access can gain unaut… vitessio
 vitess
 2026-02-26T01:49:10.071Z 2026-02-26T19:32:59.874Z
CVE-2026-27961
8.8 (3.1)
Agenta's Server-Side Template Injection (SSTI) via cus… Agenta-AI
 agenta
 2026-02-26T01:39:09.997Z 2026-02-26T19:29:04.883Z
CVE-2026-27959
7.5 (3.1)
Koa has Host Header Injection via `ctx.hostname` koajs
 koa
 2026-02-26T01:45:45.668Z 2026-02-26T19:32:00.105Z
CVE-2026-27954
4.9 (4.0)
LiveHelperChat has department-level authorization bypa… LiveHelperChat
 livehelperchat
 2026-02-26T01:42:38.225Z 2026-02-26T19:30:20.351Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-8h66-rpjm-6pwc
9.2 (4.0)
ServiceNow has addressed a remote code execution vulnerability that was identified in the ServiceNo… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-8c9p-4w69-6q42
8.0 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.2 before 18.7.5, 18.8… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-845x-h4jv-2v89
7.5 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.4 before 18.7.5, 18.8… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-789c-mgqf-5hwx
8.1 (3.1)
Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-35pf-5r93-c5jc
7.5 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.7.5, 18.8 … 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-2hp7-6cr6-jvxh
8.1 (3.1)
VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated acto… 2026-02-25T21:31:19Z 2026-02-26T18:31:39Z
ghsa-289q-cmj5-r43x
4.3 (3.1)
GitLab has remediated an issue in GitLab EE affecting all versions from 17.11 before 18.7.5, 18.8 b… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-23hx-3f44-x72r
6.5 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.0 before 18.7.5, 18.8 … 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-rr3q-q2xp-f894
8.0 (3.1)
VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with… 2026-02-25T21:31:18Z 2026-02-25T21:31:19Z
ghsa-p2jg-7vxg-x4vp
4.9 (3.1)
Sensitive user account information is not encrypted in the database in Devolutions Server 2025.3.1… 2026-02-25T21:31:18Z 2026-02-26T18:31:39Z
ghsa-g3hq-7735-4x6v
4.3 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.7.5, 18.8… 2026-02-25T21:31:18Z 2026-02-25T21:31:19Z
ghsa-wxx7-mcgf-j869
9.9 (3.1)
9.4 (4.0)
n8n has Potential Remote Code Execution via Merge Node 2026-02-25T21:23:30Z 2026-02-27T21:51:29Z
ghsa-jjpj-p2wh-qf23
9.4 (4.0)
n8n has a Sandbox Escape in its JavaScript Task Runner 2026-02-25T21:23:15Z 2026-02-27T21:51:21Z
ghsa-mmgg-m5j7-f83h
9.9 (3.1)
7.1 (4.0)
n8n has Arbitrary File Read via Python Code Node Sandbox Escape 2026-02-25T21:22:39Z 2026-02-27T21:51:13Z
ghsa-75g8-rv7v-32f7
9.0 (3.1)
9.5 (4.0)
n8n has Unauthenticated Expression Evaluation via Form Node 2026-02-25T21:21:36Z 2026-02-27T21:51:05Z
ghsa-fq4f-4738-rqxm
6.1 (3.1)
Rucio WebUI has a Stored Cross-site Scripting (XSS) Vulnerability in its Custom RSE Attribute 2026-02-25T19:37:27Z 2026-02-27T21:50:31Z
ghsa-8wpv-6x3f-3rm5
6.1 (3.1)
Rucio WebUI has a Stored Cross-site Scripting (XSS) vulnerability its Identity Name 2026-02-25T19:29:37Z 2026-02-27T21:50:24Z
ghsa-h9fp-p2p9-873q
6.1 (3.1)
Rucio WebUI has Stored Cross-site Scripting (XSS) in RSE Metadata 2026-02-25T19:29:22Z 2026-02-27T21:50:14Z
ghsa-r5j5-q42h-fc93
7.6 (3.1)
Mautic is Vulnerable to SQL Injection through Contact Activity API Sorting 2026-02-25T19:28:39Z 2026-02-25T19:28:39Z
ghsa-r99p-5442-q2x2
4.0 (3.1)
ImageMagick has a heap Buffer Over-read in its DJVU image format handler 2026-02-25T19:24:24Z 2026-02-27T22:17:06Z
ghsa-qpgx-jfcq-r59f
4.0 (3.1)
ImageMagick: Heap Buffer Over-read in WaveletDenoise when processing small images 2026-02-25T19:24:05Z 2026-02-27T22:16:47Z
ghsa-x43w-ph7m-pfjx
7.2 (4.0)
hexchat crate has a Use After Free vulnerability 2026-02-25T19:23:47Z 2026-02-25T19:23:47Z
ghsa-q9hv-hpm4-hj6x
2.9 (4.0)
CIRCL has an incorrect calculation in secp384r1 CombinedMult 2026-02-25T19:17:50Z 2026-02-25T19:17:50Z
ghsa-gq5v-qf8q-fp77
3.3 (3.1)
ImageMagick: Heap-based Buffer Overflow in GetPixelIndex due to metadata-cache desynchronization 2026-02-25T19:15:56Z 2026-02-25T19:15:56Z
ghsa-wfx3-6g53-9fgc
3.7 (3.1)
ImageMagick: Memory Leak in multiple coders that write raw pixel data 2026-02-25T19:13:32Z 2026-02-25T19:13:32Z
ghsa-3q5f-gmjc-38r8
0.0 (3.1)
ImageMagick: Memory leak in coders/txt.c without freetype 2026-02-25T19:13:08Z 2026-02-25T19:13:08Z
ghsa-xpg8-7m6m-jf56
0.0 (3.1)
ImageMagick: SVG-to-MVG Command Injection via coders/svg.c 2026-02-25T19:12:48Z 2026-02-25T19:12:48Z
ghsa-wgxp-q8xq-wpp9
3.7 (3.1)
ImageMagick: Malicious PCD files trigger 1‑byte heap Out-of-bounds Read and DoS 2026-02-25T19:12:23Z 2026-02-25T19:12:23Z
ghsa-3j4x-rwrx-xxj9
3.7 (3.1)
mageMagick has a possible use-after-free write in its PDB decoder 2026-02-25T19:12:06Z 2026-02-25T19:12:07Z
ghsa-2gq3-ww97-wfjm
3.7 (3.1)
ImageMagick has a possible heap Use After Free vulnerability in its meta coder 2026-02-25T19:11:50Z 2026-02-25T19:11:50Z
ID Severity Description Package Published Updated
pysec-2024-129
7.5 (3.1)
FPE in paddle.nanmedian in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash… paddlepaddle 2024-01-03T09:15:00+00:00 2024-11-21T14:22:57.364643+00:00
pysec-2023-271
5.3 (3.1)
Hail is an open-source, general-purpose, Python-based data analysis tool with additional … hail 2023-12-29T17:16:00+00:00 2024-11-21T14:22:51.672042+00:00
pysec-2023-259
9.8 (3.1)
A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1… micropython-select 2023-12-29T05:15:00+00:00 2024-02-29T07:20:31.851255+00:00
pysec-2023-258
9.8 (3.1)
A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1… micropython-os 2023-12-29T05:15:00+00:00 2024-02-29T07:20:31.721783+00:00
pysec-2023-257
9.8 (3.1)
A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1… micropython-io 2023-12-29T05:15:00+00:00 2024-02-29T07:20:31.603749+00:00
pysec-2023-256
9.8 (3.1)
A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1… micropython-copy 2023-12-29T05:15:00+00:00 2024-02-29T07:20:31.464203+00:00
pysec-2023-248
6.1 (3.1)
An open redirect vulnerability in the python package Flask-Security-Too <=5.3.2 allows at… flask-security-too 2023-12-26T22:15:00+00:00 2024-01-17T11:19:18.188431+00:00
pysec-2023-279
9.1 (3.1)
MindsDB is a SQL Server for artificial intelligence. Prior to version 23.11.4.1, the `put… mindsdb 2023-12-22T21:15:00+00:00 2024-11-21T14:22:54.549778+00:00
pysec-2023-249
7.5 (3.1)
Gradio is an open-source Python package that allows you to quickly build a demo or web ap… gradio 2023-12-22T21:15:00+00:00 2024-01-17T11:19:18.252182+00:00
pysec-2023-287
4.3 (3.1)
Nautobot is a Network Source of Truth and Network Automation Platform built as a web appl… nautobot 2023-12-22T17:15:00+00:00 2024-11-21T14:22:55.764934+00:00
pysec-2023-267
6.5 (3.1)
Apache Airflow, versions before 2.8.0, is affected by a vulnerability that allows an auth… apache-airflow 2023-12-21T10:15:00+00:00 2024-11-21T14:22:40.744438+00:00
pysec-2023-266
6.5 (3.1)
Apache Airflow, version 2.7.0 through 2.7.3, has a vulnerability that allows an attacker … apache-airflow 2023-12-21T10:15:00+00:00 2024-11-21T14:22:40.683792+00:00
pysec-2023-265
4.3 (3.1)
Apache Airflow, in versions prior to 2.8.0, contains a security vulnerability that allows… apache-airflow 2023-12-21T10:15:00+00:00 2024-11-21T14:22:40.621314+00:00
pysec-2023-264
5.4 (3.1)
Apache Airflow, versions 2.6.0 through 2.7.3 has a stored XSS vulnerability that allows a… apache-airflow 2023-12-21T10:15:00+00:00 2024-11-21T14:22:40.559945+00:00
pysec-2023-301
7.8 (3.1)
Deserialization of Untrusted Data in GitHub repository huggingface/transformers prior to 4.36. transformers 2023-12-20T17:15:00+00:00 2024-11-21T14:23:01.933055+00:00
pysec-2023-300
8.8 (3.1)
Deserialization of Untrusted Data in GitHub repository huggingface/transformers prior to 4.36. transformers 2023-12-19T13:15:00+00:00 2024-11-21T14:23:01.871022+00:00
pysec-2023-252
7.5 (3.1)
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2. mlflow 2023-12-18T04:15:00+00:00 2024-02-06T22:20:23.832000+00:00
pysec-2023-253
8.1 (3.1)
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2. mlflow 2023-12-15T01:15:00+00:00 2024-02-14T00:26:12.242703+00:00
pysec-2023-255
8.1 (3.1)
Command Injection in GitHub repository gradio-app/gradio prior to main. gradio 2023-12-14T14:15:00+00:00 2024-02-28T16:22:37.359017+00:00
pysec-2023-307
7.5 (3.1)
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). Contr… vyper 2023-12-13T20:15:00+00:00 2024-11-21T14:23:02.808922+00:00
pysec-2023-297
7.5 (3.1)
A path traversal vulnerability has been detected in Repox, which allows an attacker to re… repox 2023-12-13T10:15:00Z 2024-11-21T14:23:00.892241Z
pysec-2023-296
7.5 (3.1)
An XEE vulnerability has been found in Repox, which allows a remote attacker to interfere… repox 2023-12-13T10:15:00Z 2024-11-21T14:23:00.841929Z
pysec-2023-295
5.4 (3.1)
An XSS vulnerability stored in Repox has been identified, which allows a local attacker t… repox 2023-12-13T10:15:00Z 2024-11-21T14:23:00.792103Z
pysec-2023-294
6.1 (3.1)
An XSS vulnerability has been detected in Repox, which allows an attacker to compromise i… repox 2023-12-13T10:15:00Z 2024-11-21T14:23:00.74018Z
pysec-2023-293
7.5 (3.1)
An authentication bypass vulnerability has been found in Repox, which allows a remote use… repox 2023-12-13T09:15:00Z 2024-11-21T14:23:00.689595Z
pysec-2023-309
8.8 (3.1)
Path Traversal in GitHub repository mlflow/mlflow prior to 2.9.2. mlflow 2023-12-13T00:15:07+00:00 2025-04-09T17:27:26.271200+00:00
pysec-2023-286
5.3 (3.1)
Nautobot is a Network Source of Truth and Network Automation Platform built as a web appl… nautobot 2023-12-12T23:15:00+00:00 2024-11-21T14:22:55.664554+00:00
pysec-2023-262
9.8 (3.1)
main.py in Searchor before 2.4.2 uses eval on CLI input, which may cause unexpected code … searchor 2023-12-12T18:15:00+00:00 2024-10-09T19:20:24.594458+00:00
pysec-2023-281
8.8 (3.1)
Improper Neutralization of Special Elements Used in a Template Engine in GitHub repositor… mlflow 2023-12-12T04:15:00+00:00 2024-11-21T14:22:54.938745+00:00
pysec-2023-261
9.8 (3.1)
SAP BTP Security Services Integration Library ([Python] sap-xssec) - versions < 4.1.0, al… sap-xssec 2023-12-12T02:15:00+00:00 2024-09-29T00:37:11.092461+00:00
ID Description Type
ID Description Updated
ID Description Published Updated
mal-2026-762 Malicious code in metadata-checker (PyPI) 2026-02-05T14:30:34Z 2026-02-05T15:20:28Z
mal-2026-761 Malicious code in digital-checkout (npm) 2026-02-05T14:22:06Z 2026-02-06T03:05:23Z
mal-2026-760 Malicious code in @helloflex/widget-next-sdk (npm) 2026-02-05T12:44:37Z 2026-02-06T03:05:22Z
mal-2026-759 Malicious code in pipelinepoision-test (PyPI) 2026-02-05T08:43:35Z 2026-02-05T08:43:35Z
mal-2026-772 Malicious code in conp-dats-editor (npm) 2026-02-05T08:16:03Z 2026-02-06T03:05:23Z
mal-2026-757 Malicious code in internallib_v157 (npm) 2026-02-05T02:24:51Z 2026-02-06T03:05:24Z
mal-2026-758 Malicious code in tailwindcss-forms-starter (npm) 2026-02-05T02:03:44Z 2026-02-06T03:05:26Z
mal-2026-756 Malicious code in cat-retail-app (npm) 2026-02-05T01:58:59Z 2026-02-06T03:05:23Z
mal-2026-755 Malicious code in @jes4l/react-pkg (npm) 2026-02-05T01:57:08Z 2026-02-06T03:05:22Z
mal-2026-751 Malicious code in express_update (npm) 2026-02-05T01:50:12Z 2026-02-06T03:05:23Z
mal-2026-753 Malicious code in log-symbols_updated (npm) 2026-02-05T01:50:11Z 2026-02-06T03:05:25Z
mal-2026-752 Malicious code in locate-path_updated (npm) 2026-02-05T01:50:11Z 2026-02-06T03:05:25Z
mal-2026-749 Malicious code in @purecore/rabbitmq (npm) 2026-02-05T01:28:01Z 2026-02-06T03:05:22Z
mal-2026-750 Malicious code in dspmobile (npm) 2026-02-05T01:07:59Z 2026-02-06T03:05:23Z
mal-2026-754 Malicious code in tailwindcss-animation-modern (npm) 2026-02-05T01:06:23Z 2026-02-06T03:05:26Z
mal-2026-747 Malicious code in react-vite-sync (npm) 2026-02-04T23:44:25Z 2026-02-06T03:05:26Z
mal-2026-748 Malicious code in web3-chain-sync (npm) 2026-02-04T23:44:24Z 2026-02-06T03:05:27Z
mal-2026-746 Malicious code in react-count-sync (npm) 2026-02-04T23:44:24Z 2026-02-06T03:05:26Z
mal-2026-745 Malicious code in statssol (PyPI) 2026-02-04T19:47:20Z 2026-02-04T19:47:20Z
mal-2026-742 Malicious code in dcf-commons (npm) 2026-02-04T17:26:21Z 2026-02-06T03:05:23Z
mal-2026-740 Malicious code in @msecscc/gaia (npm) 2026-02-04T17:18:05Z 2026-02-06T03:05:22Z
mal-2026-743 Malicious code in internationalized (npm) 2026-02-04T17:13:32Z 2026-02-06T03:05:24Z
mal-2026-744 Malicious code in mdp-client-web (npm) 2026-02-04T17:08:45Z 2026-02-06T03:05:25Z
mal-2026-741 Malicious code in confluence-analytics-support (npm) 2026-02-04T17:08:45Z 2026-02-06T03:05:23Z
mal-2026-739 Malicious code in test-for-ppe (PyPI) 2026-02-04T14:57:08Z 2026-02-04T14:57:08Z
mal-2026-738 Malicious code in tablescene (PyPI) 2026-02-04T10:24:43Z 2026-02-04T18:51:22Z
mal-2026-737 Malicious code in remark-gfm-v4 (npm) 2026-02-04T09:46:59Z 2026-02-06T03:05:26Z
mal-2026-736 Malicious code in ggajsvjsg (npm) 2026-02-04T09:46:59Z 2026-02-06T03:05:24Z
mal-2026-735 Malicious code in docusaurus-plugin-launchdarkly (npm) 2026-02-04T09:46:59Z 2026-02-06T03:05:23Z
mal-2026-734 Malicious code in xpack-subscription-test (npm) 2026-02-04T09:40:53Z 2026-02-06T03:05:27Z
ID Description Published Updated
wid-sec-w-2025-2755 util-linux: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen 2025-12-07T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-2754 Google Cloud Platform: Schwachstelle ermöglicht Codeausführung 2025-12-07T23:00:00.000+00:00 2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2753 Fortra GoAnywhere MFT: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-12-07T23:00:00.000+00:00 2025-12-07T23:00:00.000+00:00
wid-sec-w-2025-2752 Nextcloud: Mehrere Schwachstellen 2025-12-04T23:00:00.000+00:00 2025-12-07T23:00:00.000+00:00
wid-sec-w-2025-2751 WebKitGTK: Mehrere Schwachstellen 2025-12-04T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2750 Apache HTTP Server: Mehrere Schwachstellen 2025-12-04T23:00:00.000+00:00 2026-02-23T23:00:00.000+00:00
wid-sec-w-2025-2749 WatchGuard Firebox: Mehrere Schwachstellen 2025-12-04T23:00:00.000+00:00 2025-12-04T23:00:00.000+00:00
wid-sec-w-2025-2748 Red Hat Enterprise Linux (ABRT): Schwachstelle ermöglicht Privilegieneskalation 2025-12-04T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2747 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-04T23:00:00.000+00:00 2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2746 IBM InfoSphere Information Server: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-04T23:00:00.000+00:00 2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2745 Dell PowerEdge: Schwachstelle ermöglicht Denial of Service 2025-12-04T23:00:00.000+00:00 2025-12-04T23:00:00.000+00:00
wid-sec-w-2025-2744 Microsoft Edge: Schwachstelle ermöglicht Darstellen falscher Informationen 2025-12-04T23:00:00.000+00:00 2025-12-04T23:00:00.000+00:00
wid-sec-w-2025-2743 Checkmk: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-04T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2742 IBM QRadar SIEM: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-04T23:00:00.000+00:00 2025-12-04T23:00:00.000+00:00
wid-sec-w-2025-2741 cPython: Schwachstelle ermöglicht Denial of Service 2025-12-03T23:00:00.000+00:00 2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2740 ffmpeg: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-12-03T23:00:00.000+00:00 2026-01-27T23:00:00.000+00:00
wid-sec-w-2025-2739 Nextcloud: Schwachstelle ermöglicht Cross-Site Scripting 2025-12-03T23:00:00.000+00:00 2025-12-04T23:00:00.000+00:00
wid-sec-w-2025-2738 Vercel Next.js und React Server Components (React2Shell): Schwachstelle ermöglicht Codeausführung 2025-12-03T23:00:00.000+00:00 2025-12-04T23:00:00.000+00:00
wid-sec-w-2025-2737 libpng: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen 2025-12-03T23:00:00.000+00:00 2026-02-12T23:00:00.000+00:00
wid-sec-w-2025-2736 QT (Declarative module): Schwachstelle ermöglicht Denial of Service 2025-12-03T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2735 Splunk Enterprise: Mehrere Schwachstellen 2025-12-03T23:00:00.000+00:00 2025-12-03T23:00:00.000+00:00
wid-sec-w-2025-2734 PgBouncer: Schwachstelle ermöglicht SQL injection 2025-12-03T23:00:00.000+00:00 2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2733 Drupal-Module: Mehrere Schwachstellen 2025-12-03T23:00:00.000+00:00 2025-12-03T23:00:00.000+00:00
wid-sec-w-2025-2732 Dell BSAFE SSL-J: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-12-02T23:00:00.000+00:00 2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2731 HCL BigFix: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-12-02T23:00:00.000+00:00 2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2730 Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-02T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-2729 WebKitGTK: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-02T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2728 Proxmox Virtual Environment: Schwachstelle ermöglicht Denial of Service 2025-12-02T23:00:00.000+00:00 2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2727 Red Hat OpenShift Container Platform: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-02T23:00:00.000+00:00 2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2726 Google Android Pixel: Mehrere Schwachstellen 2025-12-02T23:00:00.000+00:00 2025-12-11T23:00:00.000+00:00
ID Description Published Updated
ncsc-2025-0148 Kwetsbaarheden verholpen in ASUS DriverHub 2025-05-12T13:22:18.034442Z 2025-05-12T13:22:18.034442Z
ncsc-2025-0147 Kwetsbaarheden verholpen in F5 BIG-IP 2025-05-09T08:07:32.002935Z 2025-05-09T08:07:32.002935Z
ncsc-2025-0146 Kwetsbaarheden verholpen in Cisco IOS XE Software 2025-05-08T08:43:57.415709Z 2025-05-08T08:43:57.415709Z
ncsc-2025-0145 Kwetsbaarheden verholpen in SonicWall SMA100 2025-05-08T08:40:26.301646Z 2025-05-08T08:40:26.301646Z
ncsc-2025-0144 Kwetsbaarheden verholpen in SysAid On-Prem 2025-05-08T06:56:21.378830Z 2025-05-08T06:56:21.378830Z
ncsc-2025-0143 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2025-05-07T11:19:50.517092Z 2025-05-07T11:19:50.517092Z
ncsc-2025-0142 Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird 2025-05-06T08:01:05.582708Z 2025-05-06T08:01:05.582708Z
ncsc-2025-0141 Kwetsbaarheden verholpen in Keycloak 2025-05-06T07:12:42.075830Z 2025-05-06T07:12:42.075830Z
ncsc-2025-0140 Kwetsbaarheden verholpen in Apple AirPlay zoals gebruikt door macOS, iOS en iPadOS 2025-04-30T08:45:31.426155Z 2025-04-30T08:45:31.426155Z
ncsc-2025-0139 Kwetsbaarheid verholpen in SonicWall SonicOS 2025-04-25T09:35:24.276801Z 2025-04-25T09:35:24.276801Z
ncsc-2025-0138 Kwetsbaarheid verholpen in Commvault Command Center 2025-04-24T13:09:08.399556Z 2025-05-06T06:55:31.232567Z
ncsc-2025-0137 Kwetsbaarheid verholpen in Erlang/OTP SSH-server 2025-04-18T05:33:40.823978Z 2025-04-18T05:33:40.823978Z
ncsc-2025-0136 Kwetsbaarheden verholpen in Apple macOS, iOS en iPadOS 2025-04-17T07:19:14.228835Z 2025-04-17T07:19:14.228835Z
ncsc-2025-0135 Kwetsbaarheden verholpen in Siemens TeleControl Server 2025-04-17T07:14:24.584624Z 2025-04-17T07:14:24.584624Z
ncsc-2025-0134 Kwetsbaarheid verholpen in Cisco Webex App 2025-04-17T07:11:41.369333Z 2025-04-17T07:11:41.369333Z
ncsc-2025-0133 Kwetsbaarheden verholpen in Oracle PeopleSoft 2025-04-16T15:13:33.586832Z 2025-04-16T15:13:33.586832Z
ncsc-2025-0132 Kwetsbaarheden verholpen in Oracle MySQL 2025-04-16T15:11:43.357092Z 2025-04-16T15:11:43.357092Z
ncsc-2025-0131 Kwetsbaarheden verholpen in Oracle JD Edwards 2025-04-16T15:10:06.149204Z 2025-04-16T15:10:06.149204Z
ncsc-2025-0130 Kwetsbaarheden verholpen in Oracle Java 2025-04-16T15:04:40.041941Z 2025-04-16T15:04:40.041941Z
ncsc-2025-0129 Kwetsbaarheden verholpen in Oracle Analytics 2025-04-16T15:02:22.596981Z 2025-04-16T15:02:22.596981Z
ncsc-2025-0128 Kwetsbaarheden verholpen in Oracle Fusion Middleware 2025-04-16T15:01:24.587426Z 2025-04-16T15:01:24.587426Z
ncsc-2025-0127 Kwetsbaarheden verholpen in Oracle Financial Services 2025-04-16T15:00:12.952979Z 2025-04-16T15:00:12.952979Z
ncsc-2025-0126 Kwetsbaarheden verholpen in Oracle Enterprise Manager 2025-04-16T14:59:13.973935Z 2025-04-16T14:59:13.973935Z
ncsc-2025-0125 Kwetsbaarheden verholpen in Oracle E-Business Suite 2025-04-16T14:58:05.867499Z 2025-04-16T14:58:05.867499Z
ncsc-2025-0124 Kwetsbaarheden verholpen in Oracle Communications 2025-04-16T08:39:55.217751Z 2025-04-16T08:39:55.217751Z
ncsc-2025-0123 Kwetsbaarheden verholpen in Oracle Database Producten 2025-04-16T08:37:39.412900Z 2025-04-16T08:37:39.412900Z
ncsc-2025-0122 Kwetsbaarheden verholpen in Rockwell Automation Arena 2025-04-14T11:29:22.815190Z 2025-04-14T11:29:22.815190Z
ncsc-2025-0121 Kwetsbaarheid verholpen in Gladinet CentreStack 2025-04-10T11:53:42.018541Z 2025-04-10T11:53:42.018541Z
ncsc-2025-0120 Kwetsbaarheden verholpen in Ivanti Endpoint Manager 2025-04-09T14:41:41.327208Z 2025-04-09T14:41:41.327208Z
ncsc-2025-0119 Kwetsbaarheden verholpen in SAP-producten 2025-04-09T09:12:05.705017Z 2025-04-30T13:12:27.070565Z
ID Description Published Updated
ID Description Published Updated
ssa-570294 SSA-570294: Multiple Vulnerabilities in SICAM Q100 Before V2.50 2022-11-08T00:00:00Z 2024-01-09T00:00:00Z
ssa-568428 SSA-568428: Weak Key Protection Vulnerability in SINUMERIK ONE and SINUMERIK MC 2022-11-08T00:00:00Z 2023-02-14T00:00:00Z
ssa-506569 SSA-506569: Multiple Vulnerabilities in SCALANCE W1750D 2022-11-08T00:00:00Z 2023-02-14T00:00:00Z
ssa-478960 SSA-478960: Missing CSRF Protection in the Web Server Login Page of Industrial Controllers 2022-11-08T00:00:00Z 2023-09-12T00:00:00Z
ssa-371761 SSA-371761: Arbitrary Code Execution Vulnerability in the Logback Component of SINEC NMS before V1.0.3 2022-11-08T00:00:00Z 2022-11-08T00:00:00Z
ssa-120378 SSA-120378: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go 2022-11-08T00:00:00Z 2023-06-13T00:00:00Z
ssa-928782 SSA-928782: Firmware Authenticity Vulnerability in LOGO! 8 BM Devices 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-836027 SSA-836027: Client-side Authentication in Desigo CC and Cerberus DMS 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-649853 SSA-649853: Improper Certificate Validation Vulnerability in Industrial Edge Management 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-611756 SSA-611756: JT File Parsing Vulnerability in JTTK and Simcenter Femap 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-572005 SSA-572005: Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices 2022-10-11T00:00:00Z 2023-06-13T00:00:00Z
ssa-552702 SSA-552702: Privilege Escalation Vulnerability in the Web Interface of SCALANCE and RUGGEDCOM Products 2022-10-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-501891 SSA-501891: Cross-Site Scripting Vulnerability in SCALANCE X-200 and X-200IRT Families 2022-10-11T00:00:00Z 2022-11-08T00:00:00Z
ssa-384224 SSA-384224: Denial of Service Vulnerability in SIMATIC HMI Panels 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-360783 SSA-360783: Multiple Webserver Vulnerabilities in Desigo PXM Devices 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-313313 SSA-313313: Denial of Service Vulnerability in the FTP Server of Nucleus RTOS 2022-10-11T00:00:00Z 2023-02-14T00:00:00Z
ssa-258115 SSA-258115: DWG File Parsing Vulnerability in Solid Edge before SE2022MP9 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-638652 SSA-638652: Authentication Bypass Vulnerability in Mendix SAML Module 2022-09-13T00:00:00Z 2022-12-13T00:00:00Z
ssa-518824 SSA-518824 Multiple File Parsing Vulnerabilities in Simcenter Femap and Parasolid 2022-09-13T00:00:00Z 2022-09-13T00:00:00Z
ssa-459643 SSA-459643: Denial of Service Vulnerability in RUGGEDCOM ROS before V5.6.0 2022-09-13T00:00:00Z 2023-04-11T00:00:00Z
ssa-759952 SSA-759952: Command Injection and Denial of Service Vulnerability in Teamcenter 2022-08-09T00:00:00Z 2022-08-09T00:00:00Z
ssa-710008 SSA-710008: Multiple Web Vulnerabilities in SCALANCE Products 2022-08-09T00:00:00Z 2023-10-10T00:00:00Z
ssa-555707 SSA-555707: Information Disclosure Vulnerability in Simcenter STAR-CCM+ 2022-08-09T00:00:00Z 2022-08-09T00:00:00Z
ssa-185638 SSA-185638: Authentication Bypass Vulnerability in SICAM A8000 Web Server Module 2022-08-09T00:00:00Z 2022-08-09T00:00:00Z
ssa-944952 SSA-944952: Authentication Bypass Vulnerability in Opcenter Quality 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-910883 SSA-910883: DHCP Client Vulnerability in SINAMICS PERFECT HARMONY GH180 Drives 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-610768 SSA-610768: XML Entity Expansion Injection Vulnerability in Mendix Excel Importer Module 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-580125 SSA-580125: Multiple Vulnerabilities in SIMATIC eaSie 2022-07-12T00:00:00Z 2022-08-09T00:00:00Z
ssa-517377 SSA-517377: Multiple Vulnerabilities in the SRCS VPN Feature in SIMATIC CP Devices 2022-07-12T00:00:00Z 2023-03-14T00:00:00Z
ssa-439148 SSA-439148: File Parsing Vulnerabilities in PADS Standard/Plus Viewer 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ID Description Published Updated
rhsa-2026:1629 Red Hat Security Advisory: gnupg2 security update 2026-02-02T01:57:21+00:00 2026-02-11T15:13:30+00:00
rhsa-2026:1628 Red Hat Security Advisory: php security update 2026-02-02T01:57:01+00:00 2026-02-11T01:04:00+00:00
rhsa-2026:1608 Red Hat Security Advisory: glib2 security update 2026-02-02T01:55:56+00:00 2026-02-13T19:06:52+00:00
rhsa-2026:1625 Red Hat Security Advisory: glib2 security update 2026-02-02T01:53:11+00:00 2026-02-13T19:06:52+00:00
rhsa-2026:1621 Red Hat Security Advisory: gpsd security update 2026-02-02T01:52:11+00:00 2026-02-02T03:06:36+00:00
rhsa-2026:1624 Red Hat Security Advisory: glib2 security update 2026-02-02T01:49:21+00:00 2026-02-13T19:06:51+00:00
rhsa-2026:1627 Red Hat Security Advisory: glib2 security update 2026-02-02T01:40:16+00:00 2026-02-13T19:06:50+00:00
rhsa-2026:1626 Red Hat Security Advisory: glib2 security update 2026-02-02T01:36:56+00:00 2026-02-13T19:06:50+00:00
rhsa-2026:1620 Red Hat Security Advisory: python3 security update 2026-02-02T01:25:56+00:00 2026-02-16T14:23:01+00:00
rhsa-2026:1618 Red Hat Security Advisory: python-urllib3 security update 2026-02-02T01:17:06+00:00 2026-02-17T12:41:23+00:00
rhsa-2026:1623 Red Hat Security Advisory: kernel-rt security update 2026-02-02T01:17:00+00:00 2026-02-05T01:34:00+00:00
rhsa-2026:1610 Red Hat Security Advisory: Red Hat OpenShift Lightspeed 1.0.9 security update 2026-01-30T18:51:47+00:00 2026-02-17T09:57:37+00:00
rhsa-2026:1609 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Container Release Update 2026-01-30T15:48:57+00:00 2026-02-17T12:41:23+00:00
rhsa-2026:0995 Red Hat Security Advisory: OpenShift Container Platform 4.14.61 packages and security update 2026-01-30T15:14:34+00:00 2026-02-17T12:41:14+00:00
rhsa-2026:0996 Red Hat Security Advisory: OpenShift Container Platform 4.14.61 bug fix and security update 2026-01-30T14:21:04+00:00 2026-02-05T19:46:38+00:00
rhsa-2026:0985 Red Hat Security Advisory: OpenShift Container Platform 4.16.56 bug fix and security update 2026-01-30T13:58:09+00:00 2026-02-05T19:46:35+00:00
rhsa-2026:1004 Red Hat Security Advisory: OpenShift Container Platform 4.14.61 security and extras update 2026-01-30T09:50:08+00:00 2026-02-17T08:01:09+00:00
rhsa-2026:1600 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Container Release Update 2026-01-29T19:41:57+00:00 2026-02-17T09:27:32+00:00
rhsa-2026:1599 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Container Release Update 2026-01-29T19:16:21+00:00 2026-02-17T12:41:22+00:00
rhsa-2026:1597 Red Hat Security Advisory: iperf3 security update 2026-01-29T18:54:32+00:00 2026-02-10T19:02:25+00:00
rhsa-2026:1596 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Container Release Update 2026-01-29T18:40:37+00:00 2026-02-17T12:41:22+00:00
rhsa-2026:1595 Red Hat Security Advisory: iperf3 security update 2026-01-29T18:34:21+00:00 2026-02-10T19:02:27+00:00
rhsa-2026:1594 Red Hat Security Advisory: openssl security update 2026-01-29T17:22:14+00:00 2026-02-12T19:28:13+00:00
rhsa-2026:1592 Red Hat Security Advisory: iperf3 security update 2026-01-29T16:46:50+00:00 2026-02-10T19:02:34+00:00
rhsa-2026:1586 Red Hat Security Advisory: gimp security update 2026-01-29T16:33:33+00:00 2026-01-29T21:09:33+00:00
rhsa-2026:1583 Red Hat Security Advisory: python3.12 security update 2026-01-29T16:33:33+00:00 2026-02-16T14:15:20+00:00
rhsa-2026:1582 Red Hat Security Advisory: python3.12 security update 2026-01-29T14:28:17+00:00 2026-02-16T14:15:20+00:00
rhsa-2026:1590 Red Hat Security Advisory: gimp security update 2026-01-29T14:17:57+00:00 2026-01-29T21:07:54+00:00
rhsa-2026:1588 Red Hat Security Advisory: gimp:2.8 security update 2026-01-29T14:17:19+00:00 2026-01-29T21:09:15+00:00
rhsa-2026:1589 Red Hat Security Advisory: gimp:2.8 security update 2026-01-29T14:15:05+00:00 2026-01-29T21:09:19+00:00
ID Description Published Updated
icsa-25-189-01 Emerson ValveLink Products 2025-07-08T06:00:00.000000Z 2025-07-08T06:00:00.000000Z
icsa-25-203-06 Schneider Electric EcoStruxture IT Data Center Expert 2025-07-08T04:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-203-05 Schneider Electric System Monitor Application 2025-07-08T04:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-203-03 Schneider Electric EcoStruxure 2025-07-08T04:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-294-04 Siemens RUGGEDCOM ROS Devices 2025-07-08T00:00:00.000000Z 2025-10-14T00:00:00.000000Z
icsa-25-191-06 Siemens SIPROTEC 5 2025-07-08T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-191-05 Siemens TIA Project-Server and TIA Portal 2025-07-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-191-04 Siemens SIMATIC CN 4100 2025-07-08T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-191-03 Siemens TIA Administrator 2025-07-08T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-191-02 Siemens Solid Edge 2025-07-08T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-191-01 Siemens SINEC NMS 2025-07-08T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-184-04 Mitsubishi Electric MELSEC iQ-F Series 2025-07-03T06:00:00.000000Z 2025-07-03T06:00:00.000000Z
icsa-25-184-03 Mitsubishi Electric MELSOFT Update Manager (Update B) 2025-07-03T06:00:00.000000Z 2026-02-05T07:00:00.000000Z
icsa-25-184-02 Hitachi Energy MicroSCADA X SYS600 2025-07-03T06:00:00.000000Z 2025-07-03T06:00:00.000000Z
va-25-169-01 Versa Networks Versa Director multiple vulnerabilities 2025-07-02T20:57:00Z 2025-07-02T20:57:00Z
icsa-25-182-05 Voltronic Power and PowerShield UPS monitoring software 2025-07-01T06:00:00.000000Z 2025-07-01T06:00:00.000000Z
icsa-25-177-01 Mitsubishi Electric Air Conditioning Systems (Update B) 2025-06-26T06:00:00.000000Z 2025-12-23T07:00:00.000000Z
icsa-25-177-02 TrendMakers Sight Bulb Pro 2025-06-26T05:00:00.000000Z 2025-06-26T05:00:00.000000Z
icsa-25-182-07 Hitachi Energy MSM 2025-06-24T12:30:00.000000Z 2025-06-24T12:30:00.000000Z
icsa-25-182-06 Hitachi Energy Relion 670/650 and SAM600-IO Series (Update A) 2025-06-24T12:30:00.000000Z 2025-08-26T10:00:00.000000Z
icsa-25-175-07 MICROSENS NMP Web+ 2025-06-24T06:00:00.000000Z 2025-06-24T06:00:00.000000Z
icsa-25-175-06 Parsons AccuWeather widget 2025-06-24T06:00:00.000000Z 2025-06-24T06:00:00.000000Z
icsa-25-175-05 ControlID iDSecure On-premises 2025-06-24T06:00:00.000000Z 2025-06-24T06:00:00.000000Z
icsa-25-175-02 Delta Electronics CNCSoft 2025-06-24T06:00:00.000000Z 2025-06-24T06:00:00.000000Z
icsa-25-175-01 Kaleris Navis N4 Terminal Operating System 2025-06-24T06:00:00.000000Z 2025-06-24T06:00:00.000000Z
icsa-25-184-01 Hitachi Energy Relion 670/650 and SAM600-IO Series 2025-06-24T00:00:00.000000Z 2026-02-05T07:00:00.000000Z
va-25-171-01 ClamAV 2025-06-20T00:00:00Z 2025-06-20T00:00:00Z
icsa-25-168-05 Dover Fueling Solutions ProGauge MagLink LX consoles 2025-06-17T06:00:00.000000Z 2025-06-17T06:00:00.000000Z
icsa-25-168-04 Fuji Electric Smart Editor 2025-06-17T06:00:00.000000Z 2025-06-17T06:00:00.000000Z
icsa-25-168-02 LS Electric GMWin 4 2025-06-17T06:00:00.000000Z 2025-06-17T06:00:00.000000Z
ID Description Published Updated
cisco-sa-nxos-cmd-injection-xd9ohyop Cisco NX-OS Software CLI Command Injection Vulnerability 2024-07-01T16:00:00+00:00 2024-09-17T18:05:20+00:00
cisco-sa-finesse-ssrf-rfi-um7wt8ew Cisco Finesse Web-Based Management Interface Vulnerabilities 2024-06-05T16:00:00+00:00 2024-06-14T21:44:14+00:00
cisco-sa-webex-june-2024 Cisco Webex Meetings Meeting Information and Metadata Issue June 2024 2024-06-04T21:00:00+00:00 2024-06-11T19:41:36+00:00
cisco-sa-snort3-ips-bypass-ue69kbmd Multiple Cisco Products Snort 3 HTTP Intrusion Prevention System Rule Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
cisco-sa-ftd-archive-bypass-z4wqjwcn Cisco Firepower Threat Defense Software Encrypted Archive File Policy Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
cisco-sa-fmc-sqli-wffdnnos Cisco Firepower Management Center Software SQL Injection Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T17:39:28+00:00
cisco-sa-fmc-object-bypass-fth8tdjq Cisco Firepower Management Center Software Object Group Access Control List Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
cisco-sa-asaftd-saml-bypass-kknvxykw Cisco Adaptive Security Appliance and Firepower Threat Defense Software Authorization Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
cisco-sa-asaftd-ogsnsg-aclbyp-3xb8q6jx Cisco Adaptive Security Appliance and Firepower Threat Defense Software Inactive-to-Active ACL Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
cisco-sa-opendns-pulse-dos-dd8l3szq Cisco OpenDNS Pulsing DNS Denial of Service Attack 2024-05-20T16:00:00+00:00 2024-05-23T16:28:32+00:00
cisco-sa-secure-nam-priv-esc-szu2vypz Cisco Secure Client for Windows with Network Access Manager Module Privilege Escalation Vulnerability 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-nso-rwpesc-qrqgnh3f Cisco Crosswork Network Services Orchestrator Vulnerabilities 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-nso-ordir-mnm8yqzo Cisco Crosswork Network Services Orchestrator Open Redirect Vulnerability 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-nso-hcc-priv-esc-owbwcs5d Cisco Crosswork Network Services Orchestrator Privilege Escalation Vulnerability 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-esa-sma-wsa-xss-bgg5whod Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Cross-Site Scripting Vulnerabilities 2024-05-15T16:00:00+00:00 2024-06-12T15:37:50+00:00
cisco-sa-esa-http-split-glrnnows Cisco Secure Email Gateway HTTP Response Splitting Vulnerability 2024-05-15T16:00:00+00:00 2024-06-12T15:14:33+00:00
cisco-sa-cnfd-rwpesc-zaoufyx8 ConfD CLI Privilege Escalation and Arbitrary File Read and Write Vulnerabilities 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-appd-netvisdos-9znbsjtk Cisco AppDynamics Network Visibility Service Denial of Service Vulnerability 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-ipphone-multi-vulns-cxahcvs Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Vulnerabilities 2024-05-01T16:00:00+00:00 2024-05-01T16:00:00+00:00
cisco-sa-asaftd-websrvs-dos-x8gnucd2 Cisco Adaptive Security Appliance and Firepower Threat Defense Software Web Services Denial of Service Vulnerability 2024-04-24T16:00:00+00:00 2024-04-24T16:00:00+00:00
cisco-sa-asaftd-persist-rce-flsnxf4h Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability 2024-04-24T16:00:00+00:00 2024-04-24T16:00:00+00:00
cisco-sa-asaftd-cmd-inj-zjv8wysm Cisco Adaptive Security Appliance and Firepower Threat Defense Software Command Injection Vulnerability 2024-04-24T16:00:00+00:00 2024-04-24T16:00:00+00:00
cisco-sa-snmp-uwbxfqww Cisco IOS and IOS XE Software SNMP Extended Named Access Control List Bypass Vulnerability 2024-04-17T16:00:00+00:00 2024-04-17T16:00:00+00:00
cisco-sa-cimc-cmd-inj-mux4c5aj Cisco Integrated Management Controller CLI Command Injection Vulnerability 2024-04-17T16:00:00+00:00 2024-06-28T15:22:08+00:00
cisco-sa-cimc-cmd-inj-blupcb Cisco Integrated Management Controller Web-Based Management Interface Command Injection Vulnerability 2024-04-17T16:00:00+00:00 2024-06-28T15:22:37+00:00
cisco-sa-tms-xss-kgw4dx9y Cisco TelePresence Management Suite Cross-Site Scripting Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-sbiz-rv-xss-oqertup Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Cross-Site Scripting Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-ndru-pesc-kz2pqlzh Cisco Nexus Dashboard Privilege Escalation Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-ndo-upav-yrqsccsp Cisco Nexus Dashboard Orchestrator Unauthorized Policy Actions Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-ndidv-lmxdvaf2 Cisco Nexus Dashboard Information Disclosure Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
msrc_cve-2025-71074 functionfs: fix the open/removal races 2026-01-02T00:00:00.000Z 2026-02-21T04:23:33.000Z
msrc_cve-2025-71073 Input: lkkbd - disable pending work before freeing device 2026-01-02T00:00:00.000Z 2026-02-18T14:20:48.000Z
msrc_cve-2025-71072 shmem: fix recovery on rename failures 2026-01-02T00:00:00.000Z 2026-02-18T14:30:28.000Z
msrc_cve-2025-71069 f2fs: invalidate dentry cache on failed whiteout creation 2026-01-02T00:00:00.000Z 2026-02-18T14:37:03.000Z
msrc_cve-2025-71068 svcrdma: bound check rq_pages index in inline path 2026-01-02T00:00:00.000Z 2026-02-18T14:24:21.000Z
msrc_cve-2025-71067 ntfs: set dummy blocksize to read boot_block when mounting 2026-01-02T00:00:00.000Z 2026-02-21T04:15:26.000Z
msrc_cve-2025-71066 net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change 2026-01-02T00:00:00.000Z 2026-02-21T04:13:59.000Z
msrc_cve-2025-71065 f2fs: fix to avoid potential deadlock 2026-01-02T00:00:00.000Z 2026-02-18T14:25:46.000Z
msrc_cve-2025-71064 net: hns3: using the num_tqps in the vf driver to apply for resources 2026-01-02T00:00:00.000Z 2026-02-21T04:20:16.000Z
msrc_cve-2025-69195 Wget2: gnu wget2: memory corruption and crash via filename sanitization logic with attacker-controlled urls 2026-01-02T00:00:00.000Z 2026-01-20T14:47:11.000Z
msrc_cve-2025-69194 Wget2: arbitrary file write via metalink path traversal in gnu wget2 2026-01-02T00:00:00.000Z 2026-01-20T14:46:58.000Z
msrc_cve-2025-68823 ublk: fix deadlock when reading partition table 2026-01-02T00:00:00.000Z 2026-02-21T03:58:26.000Z
msrc_cve-2025-68822 Input: alps - fix use-after-free bugs caused by dev3_register_work 2026-01-02T00:00:00.000Z 2026-02-18T14:13:48.000Z
msrc_cve-2025-68819 media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() 2026-01-02T00:00:00.000Z 2026-02-21T04:18:59.000Z
msrc_cve-2025-68818 scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path" 2026-01-02T00:00:00.000Z 2026-02-18T14:28:43.000Z
msrc_cve-2025-68817 ksmbd: fix use-after-free in ksmbd_tree_connect_put under concurrency 2026-01-02T00:00:00.000Z 2026-02-28T01:02:28.000Z
msrc_cve-2025-68816 net/mlx5: fw_tracer, Validate format string parameters 2026-01-02T00:00:00.000Z 2026-02-18T14:31:44.000Z
msrc_cve-2025-68815 net/sched: ets: Remove drr class from the active list if it changes to strict 2026-01-02T00:00:00.000Z 2026-02-18T14:31:18.000Z
msrc_cve-2025-68814 io_uring: fix filename leak in __io_openat_prep() 2026-01-02T00:00:00.000Z 2026-02-18T14:25:17.000Z
msrc_cve-2025-68809 ksmbd: vfs: fix race on m_flags in vfs_cache 2026-01-02T00:00:00.000Z 2026-02-18T14:30:53.000Z
msrc_cve-2025-68808 media: vidtv: initialize local pointers upon transfer of memory ownership 2026-01-02T00:00:00.000Z 2026-02-21T04:07:10.000Z
msrc_cve-2025-68806 ksmbd: fix buffer validation by including null terminator size in EA length 2026-01-02T00:00:00.000Z 2026-02-18T14:15:10.000Z
msrc_cve-2025-68803 NFSD: NFSv4 file creation neglects setting ACL 2026-01-02T00:00:00.000Z 2026-02-18T14:13:26.000Z
msrc_cve-2025-68801 mlxsw: spectrum_router: Fix neighbour use-after-free 2026-01-02T00:00:00.000Z 2026-02-18T14:22:51.000Z
msrc_cve-2025-68800 mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats 2026-01-02T00:00:00.000Z 2026-02-18T14:24:48.000Z
msrc_cve-2025-68799 caif: fix integer underflow in cffrml_receive() 2026-01-02T00:00:00.000Z 2026-02-18T14:43:30.000Z
msrc_cve-2025-68798 perf/x86/amd: Check event before enable to avoid GPF 2026-01-02T00:00:00.000Z 2026-02-18T14:21:19.000Z
msrc_cve-2025-68797 char: applicom: fix NULL pointer dereference in ac_ioctl 2026-01-02T00:00:00.000Z 2026-02-18T14:34:42.000Z
msrc_cve-2025-68796 f2fs: fix to avoid updating zero-sized extent in extent cache 2026-01-02T00:00:00.000Z 2026-02-18T14:14:46.000Z
msrc_cve-2025-68795 ethtool: Avoid overflowing userspace buffer on stats query 2026-01-02T00:00:00.000Z 2026-02-18T14:29:10.000Z
ID Description Published Updated
ID Description Updated
var-201110-0384 Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK… 2025-12-22T22:45:35.787000Z
var-201806-1466 An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari be… 2025-12-22T22:45:33.043000Z
var-200411-0172 The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, all… 2025-12-22T22:45:01.114000Z
var-202201-0104 In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtt… 2025-12-22T22:44:26.002000Z
var-201904-1341 A memory corruption issue was addressed with improved memory handling. This issue affecte… 2025-12-22T22:44:24.861000Z
var-200904-0798 The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.1… 2025-12-22T22:43:53.030000Z
var-201203-0200 Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers … 2025-12-22T22:43:52.654000Z
var-201412-0615 The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configur… 2025-12-22T22:43:21.768000Z
var-200810-0394 Unspecified vulnerability in Script Editor in Mac OS X 10.4.11 and 10.5.5 allows local us… 2025-12-22T22:42:50.944000Z
var-201806-1468 An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef… 2025-12-22T22:42:50.262000Z
var-200106-0199 banners.php in PHP-Nuke 4.4 and earlier allows remote attackers to modify banner ad URLs … 2025-12-22T22:42:14.233000Z
var-201310-0343 Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u40 and ear… 2025-12-22T22:41:42.481000Z
var-200703-0017 Stack-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted a… 2025-12-22T22:41:11.175000Z
var-200904-0817 Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS … 2025-12-22T22:41:09.605000Z
var-201506-0496 Race condition in the ssl3_get_new_session_ticket function in ssl/s3_clnt.c in OpenSSL be… 2025-12-22T22:41:09.056000Z
var-201903-0926 An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4, 2.8.11.2, and 2.9… 2025-12-22T22:40:37.555000Z
var-201108-0147 Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before … 2025-12-22T22:40:33.025000Z
var-201304-0378 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T22:40:24.906000Z
var-200904-0811 Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier… 2025-12-22T22:40:17.651000Z
var-201110-0388 Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK… 2025-12-22T22:40:15.013000Z
var-202201-0468 build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. E… 2025-12-22T22:40:08.647000Z
var-201210-0144 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T22:39:44.393000Z
var-200704-0740 The IPv6 protocol allows remote attackers to cause a denial of service via crafted IPv6 t… 2025-12-22T22:39:43.370000Z
var-200611-0417 Buffer overflow in the shared_region_make_private_np function in vm/vm_unix.c in Mac OS X… 2025-12-22T22:39:42.998000Z
var-200312-0218 OpenSSL 0.9.6k allows remote attackers to cause a denial of service (crash via large recu… 2025-12-22T22:39:40.737000Z
var-201912-0582 A logic issue was addressed with improved state management. This issue is fixed in iOS 12… 2025-12-22T22:39:37.859000Z
var-201904-0347 In systemd before v242-rc4, it was discovered that pam_systemd does not properly sanitize… 2025-12-22T22:39:37.447000Z
var-202104-0334 curl 7.1.1 to and including 7.75.0 is vulnerable to an "Exposure of Private Personal Info… 2025-12-22T22:39:37.199000Z
var-201208-0343 libxslt 1.1.26 and earlier, as used in Google Chrome before 21.0.1180.89, does not proper… 2025-12-22T22:39:36.059000Z
var-201009-0230 bgpd in Quagga before 0.99.17 does not properly parse AS paths, which allows remote attac… 2025-12-22T22:39:35.115000Z
ID Description Published Updated
jvndb-2024-003831 Multiple TP-Link products vulnerable to OS command injection 2024-06-28T17:38+09:00 2024-06-28T17:38+09:00
jvndb-2024-000067 "Piccoma" App uses a hard-coded API key for an external service 2024-06-28T13:18+09:00 2024-06-28T13:18+09:00
jvndb-2024-000066 WordPress plugins "WP Tweet Walls" and "Sola Testimonials" vulnerable to cross-site request forgery 2024-06-26T14:25+09:00 2024-06-26T14:25+09:00
jvndb-2024-003699 LINE client for iOS vulnerable to universal cross-site scripting 2024-06-24T11:05+09:00 2024-06-24T11:05+09:00
jvndb-2024-003645 Multiple vulnerabilities in multiple Trend Micro products 2024-06-20T14:59+09:00 2024-06-20T14:59+09:00
jvndb-2024-000065 "ZOZOTOWN" App for Android fails to restrict custom URL schemes properly 2024-06-19T16:04+09:00 2024-06-19T16:04+09:00
jvndb-2024-000064 WordPress plugin "SiteGuard WP Plugin" may leak the customized path to the login page 2024-06-19T14:25+09:00 2024-06-19T14:25+09:00
jvndb-2024-000061 Multiple vulnerabilities in Ricoh Streamline NX PC Client 2024-06-18T14:56+09:00 2024-06-18T14:56+09:00
jvndb-2024-000063 Multiple vulnerabilities in ID Link Manager and FUJITSU Software TIME CREATOR 2024-06-18T13:43+09:00 2024-06-18T13:43+09:00
jvndb-2024-003539 Multiple vulnerabilities in Toshiba Tec and Oki Electric Industry MFPs 2024-06-17T15:21+09:00 2024-06-17T15:21+09:00
jvndb-2024-000062 Denial-of-service (DoS) vulnerability in IPCOM WAF function 2024-06-12T15:03+09:00 2024-06-12T15:03+09:00
jvndb-2024-000058 WordPress Plugin "Music Store - WordPress eCommerce" vulnerable to SQL injection 2024-06-07T15:24+09:00 2024-06-10T17:08+09:00
jvndb-2024-000060 Multiple vulnerabilities in "FreeFrom - the nostr client" App 2024-06-07T14:51+09:00 2024-06-07T14:51+09:00
jvndb-2024-000057 Multiple vulnerabilities in UNIVERSAL PASSPORT RX 2024-06-03T15:32+09:00 2024-06-03T15:32+09:00
jvndb-2024-003254 Seiko Solutions SkyBridge MB-A100/MB-A110 and SkyBridge BASIC MB-A130 vulnerable to OS command injection 2024-06-03T14:53+09:00 2024-06-03T14:53+09:00
jvndb-2024-003253 Multiple vulnerabilities in Sharp and Toshiba Tec MFPs 2024-06-03T14:36+09:00 2024-06-03T14:36+09:00
jvndb-2024-000056 awkblog vulnerable to OS command injection 2024-05-30T14:39+09:00 2024-05-30T14:39+09:00
jvndb-2024-000055 Redmine DMSF Plugin vulnerable to path traversal 2024-05-29T14:13+09:00 2024-05-29T14:13+09:00
jvndb-2024-000054 EC-Orange vulnerable to authorization bypass 2024-05-29T14:06+09:00 2024-05-29T14:06+09:00
jvndb-2024-003249 ELECOM wireless LAN routers vulnerable to OS command injection 2024-05-29T12:33+09:00 2024-05-29T12:33+09:00
jvndb-2024-000053 Multiple vulnerabilities in Unifier and Unifier Cast 2024-05-28T14:47+09:00 2024-05-28T14:47+09:00
jvndb-2024-000052 Multiple vulnerabilities in UTAU 2024-05-28T14:23+09:00 2024-05-28T14:23+09:00
jvndb-2024-003242 OMRON NJ/NX series vulnerable to insufficient verification of data authenticity 2024-05-28T12:28+09:00 2024-07-26T16:27+09:00
jvndb-2024-000051 Splunk Config Explorer vulnerable to cross-site scripting 2024-05-24T13:50+09:00 2024-05-24T13:50+09:00
jvndb-2024-000050 WordPress Plugin "WP Booking" vulnerable to cross-site scripting 2024-05-24T13:41+09:00 2024-05-24T13:41+09:00
jvndb-2024-000046 Android App "TP-Link Tether" and "TP-Link Tapo" vulnerable to improper server certificate verification 2024-05-21T13:33+09:00 2024-05-21T13:33+09:00
jvndb-2024-003188 Panasonic KW Watcher vulnerable to memory buffer error 2024-05-17T15:46+09:00 2024-05-17T15:46+09:00
jvndb-2023-021762 Ruijie BCR810W/BCR860 vulnerable to OS command injection 2024-05-17T13:54+09:00 2024-05-17T13:54+09:00
jvndb-2024-000049 WordPress Plugin "Download Plugins and Themes from Dashboard" vulnerable to path traversal 2024-05-17T13:33+09:00 2024-05-17T13:33+09:00
jvndb-2024-003187 Multiple vulnerabilities in Field Logic DataCube 2024-05-17T12:05+09:00 2024-05-17T12:05+09:00
ID Description Updated
ID Description Published Updated
suse-su-2026:0180-1 Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5) 2026-01-20T07:04:14Z 2026-01-20T07:04:14Z
suse-su-2026:0176-1 Security update for the Linux Kernel (Live Patch 44 for SUSE Linux Enterprise 15 SP4) 2026-01-19T19:03:59Z 2026-01-19T19:03:59Z
suse-su-2026:20099-1 Security update for rust1.91, rust1.92 2026-01-19T18:30:57Z 2026-01-19T18:30:57Z
suse-su-2026:0168-1 Security update for the Linux Kernel (Live Patch 40 for SUSE Linux Enterprise 15 SP4) 2026-01-19T18:04:39Z 2026-01-19T18:04:39Z
suse-su-2026:0174-1 Security update for the Linux Kernel (Live Patch 34 for SUSE Linux Enterprise 15 SP4) 2026-01-19T18:04:30Z 2026-01-19T18:04:30Z
suse-su-2026:0173-1 Security update for the Linux Kernel (Live Patch 21 for SUSE Linux Enterprise 15 SP5) 2026-01-19T17:33:53Z 2026-01-19T17:33:53Z
suse-su-2026:0171-1 Security update for the Linux Kernel RT (Live Patch 1 for SUSE Linux Enterprise 15 SP7) 2026-01-19T16:34:41Z 2026-01-19T16:34:41Z
suse-su-2026:0169-1 Security update for the Linux Kernel RT (Live Patch 5 for SUSE Linux Enterprise 15 SP7) 2026-01-19T16:04:33Z 2026-01-19T16:04:33Z
suse-su-2026:0166-1 Security update for the Linux Kernel (Live Patch 35 for SUSE Linux Enterprise 15 SP4) 2026-01-19T15:05:22Z 2026-01-19T15:05:22Z
suse-su-2026:0163-1 Security update for the Linux Kernel (Live Patch 36 for SUSE Linux Enterprise 15 SP4) 2026-01-19T14:34:24Z 2026-01-19T14:34:24Z
suse-su-2026:0155-1 Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5) 2026-01-19T12:11:10Z 2026-01-19T12:11:10Z
suse-su-2026:0154-1 Security update for the Linux Kernel (Live Patch 63 for SUSE Linux Enterprise 12 SP5) 2026-01-19T12:08:42Z 2026-01-19T12:08:42Z
suse-su-2026:0153-1 Security update for MozillaThunderbird 2026-01-19T11:14:01Z 2026-01-19T11:14:01Z
suse-su-2026:20096-1 Security update for cargo-c 2026-01-19T10:38:15Z 2026-01-19T10:38:15Z
suse-su-2026:0151-1 Security update for libsoup 2026-01-19T09:56:33Z 2026-01-19T09:56:33Z
suse-su-2026:20112-1 Security update for docker 2026-01-17T13:20:31Z 2026-01-17T13:20:31Z
suse-su-2026:20095-1 Security update for docker 2026-01-17T13:20:31Z 2026-01-17T13:20:31Z
suse-su-2026:0148-1 Security update for the Linux Kernel RT (Live Patch 0 for SUSE Linux Enterprise 15 SP7) 2026-01-17T12:04:20Z 2026-01-17T12:04:20Z
suse-su-2026:0147-1 Security update for the Linux Kernel RT (Live Patch 6 for SUSE Linux Enterprise 15 SP7) 2026-01-17T11:33:38Z 2026-01-17T11:33:38Z
suse-su-2026:0146-1 Security update for the Linux Kernel RT (Live Patch 3 for SUSE Linux Enterprise 15 SP7) 2026-01-17T11:33:35Z 2026-01-17T11:33:35Z
suse-su-2026:0145-1 Security update for the Linux Kernel RT (Live Patch 4 for SUSE Linux Enterprise 15 SP7) 2026-01-17T11:04:25Z 2026-01-17T11:04:25Z
suse-su-2026:0144-1 Security update for the Linux Kernel RT (Live Patch 2 for SUSE Linux Enterprise 15 SP7) 2026-01-17T11:04:22Z 2026-01-17T11:04:22Z
suse-su-2026:0143-1 Security update for avahi 2026-01-17T11:04:15Z 2026-01-17T11:04:15Z
suse-su-2026:0133-1 Security update for python 2026-01-16T09:19:41Z 2026-01-16T09:19:41Z
suse-su-2026:20090-1 Security update for cpp-httplib 2026-01-15T22:11:51Z 2026-01-15T22:11:51Z
suse-su-2026:20089-1 Security update for alloy 2026-01-15T17:57:53Z 2026-01-15T17:57:53Z
suse-su-2026:20088-1 Security update for erlang 2026-01-15T17:32:55Z 2026-01-15T17:32:55Z
suse-su-2026:20086-1 Security update for MozillaFirefox 2026-01-15T16:33:38Z 2026-01-15T16:33:38Z
suse-su-2026:0130-1 Security update for python310 2026-01-15T13:11:09Z 2026-01-15T13:11:09Z
suse-su-2026:20085-1 Security update for bind 2026-01-15T10:43:50Z 2026-01-15T10:43:50Z
ID Description Published Updated
opensuse-su-2025:15836-1 kernel-devel-6.18.2-1.1 on GA media 2025-12-20T00:00:00Z 2025-12-20T00:00:00Z
opensuse-su-2025:15835-1 duc-1.4.6-1.1 on GA media 2025-12-20T00:00:00Z 2025-12-20T00:00:00Z
opensuse-su-2025:15834-1 busybox-1.37.0-8.1 on GA media 2025-12-20T00:00:00Z 2025-12-20T00:00:00Z
opensuse-su-2025:15833-1 MozillaFirefox-146.0.1-1.1 on GA media 2025-12-20T00:00:00Z 2025-12-20T00:00:00Z
opensuse-su-2025:20172-1 Security update for the Linux Kernel 2025-12-19T17:38:16Z 2025-12-19T17:38:16Z
opensuse-su-2025:15832-1 coredns-for-k8s1.35-1.13.1-2.1 on GA media 2025-12-19T00:00:00Z 2025-12-19T00:00:00Z
opensuse-su-2025:15831-1 chromedriver-143.0.7499.146-1.1 on GA media 2025-12-19T00:00:00Z 2025-12-19T00:00:00Z
opensuse-su-2025:15830-1 alloy-1.12.0-2.1 on GA media 2025-12-19T00:00:00Z 2025-12-19T00:00:00Z
opensuse-su-2025:15829-1 ImageMagick-7.1.2.10-2.1 on GA media 2025-12-19T00:00:00Z 2025-12-19T00:00:00Z
opensuse-su-2025:20171-1 Security update for qemu 2025-12-18T12:42:03Z 2025-12-18T12:42:03Z
opensuse-su-2025:20177-1 Security update for cheat 2025-12-18T00:17:52Z 2025-12-18T00:17:52Z
opensuse-su-2025:15828-1 libruby3_4-3_4-3.4.8-1.1 on GA media 2025-12-18T00:00:00Z 2025-12-18T00:00:00Z
opensuse-su-2025:15827-1 rsync-3.4.1-4.1 on GA media 2025-12-18T00:00:00Z 2025-12-18T00:00:00Z
opensuse-su-2025:15826-1 coredns-for-k8s1.34-1.12.1-2.1 on GA media 2025-12-18T00:00:00Z 2025-12-18T00:00:00Z
opensuse-su-2025:15825-1 coredns-for-k8s1.33-1.12.0-2.1 on GA media 2025-12-18T00:00:00Z 2025-12-18T00:00:00Z
opensuse-su-2025:15824-1 netty-4.1.130-1.1 on GA media 2025-12-17T00:00:00Z 2025-12-17T00:00:00Z
opensuse-su-2025:15823-1 clair-4.9.0-1.1 on GA media 2025-12-17T00:00:00Z 2025-12-17T00:00:00Z
opensuse-su-2025:20164-1 Security update for openssl-3 2025-12-15T18:16:15Z 2025-12-15T18:16:15Z
opensuse-su-2025:20163-1 Security update for grub2 2025-12-15T12:52:50Z 2025-12-15T12:52:50Z
opensuse-su-2025:20162-1 Security update for ImageMagick 2025-12-15T09:55:25Z 2025-12-15T09:55:25Z
opensuse-su-2025:15822-1 strongswan-6.0.4-1.1 on GA media 2025-12-15T00:00:00Z 2025-12-15T00:00:00Z
opensuse-su-2025:15821-1 qemu-10.1.3-1.1 on GA media 2025-12-15T00:00:00Z 2025-12-15T00:00:00Z
opensuse-su-2025:15820-1 chromedriver-143.0.7499.109-1.1 on GA media 2025-12-13T00:00:00Z 2025-12-13T00:00:00Z
opensuse-su-2025:20150-1 Security update for binutils 2025-12-12T15:58:27Z 2025-12-12T15:58:27Z
opensuse-su-2025:20161-1 Security update for chromium 2025-12-12T15:30:17Z 2025-12-12T15:30:17Z
opensuse-su-2025:20160-1 Security update for hauler 2025-12-12T13:20:11Z 2025-12-12T13:20:11Z
opensuse-su-2025:20159-1 Security update for keylime 2025-12-12T09:46:01Z 2025-12-12T09:46:01Z
opensuse-su-2025:20158-1 Security update for go1.24 2025-12-12T07:45:01Z 2025-12-12T07:45:01Z
opensuse-su-2025:20157-1 Security update for go1.25 2025-12-12T07:23:58Z 2025-12-12T07:23:58Z
opensuse-su-2025:15819-1 libruby4_0-4_0-4.0.0~preview2-1.1 on GA media 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
ID Description Published Updated
ID Description Published Updated
bit-postgresql-2025-12817 PostgreSQL CREATE STATISTICS does not check for schema CREATE privilege 2025-11-21T08:47:36.690Z 2025-11-21T09:06:15.683Z
bit-gitlab-2025-7736 Incorrect Authorization in GitLab 2025-11-20T09:05:14.844Z 2025-11-21T09:06:15.683Z
bit-gitlab-2025-2615 Insertion of Sensitive Information Into Sent Data in GitLab 2025-11-20T09:04:09.576Z 2025-11-21T09:06:15.683Z
bit-gitlab-2025-12983 Memory Allocation with Excessive Size Value in GitLab 2025-11-20T09:03:27.972Z 2025-11-21T09:06:15.683Z
bit-gitlab-2025-11990 Improper Handling of URL Encoding (Hex Encoding) in GitLab 2025-11-20T09:03:19.328Z 2025-11-20T09:06:46.640Z
bit-gitlab-2025-11865 Incorrect Authorization in GitLab 2025-11-20T09:03:10.744Z 2025-11-20T09:06:46.640Z
bit-moodle-2025-62401 Moodle: possible to bypass timer in timed assignments 2025-11-17T23:47:50.898Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62400 Moodle: hidden group names visible to event creators 2025-11-17T23:47:49.403Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62399 Moodle: password brute force risk when mobile/web services enabled 2025-11-17T23:47:47.926Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62398 Moodle: possible to bypass mfa 2025-11-17T23:47:46.528Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62397 Moodle: router produces json instead of 404 error for invalid course id 2025-11-17T23:47:45.012Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62396 Moodle: router (r.php) could expose application directories 2025-11-17T23:47:43.645Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62395 Moodle: external cohort search service leaks system cohort data 2025-11-17T23:47:42.131Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62394 Moodle: quiz notifications sent to suspended participants 2025-11-17T23:47:40.687Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62393 Moodle: course access permissions not properly checked in course_output_fragment_course_overview 2025-11-17T23:47:39.287Z 2025-11-18T00:06:24.423Z
bit-kibana-2025-37734 Kibana Origin Validation Error 2025-11-14T14:40:47.948Z 2025-11-14T15:09:14.122Z
bit-elk-2025-37734 Kibana Origin Validation Error 2025-11-14T14:38:05.480Z 2025-11-14T15:09:14.122Z
bit-parse-2025-64502 Parse Server allows public `explain` queries which may expose sensitive database performance information and schema details 2025-11-12T11:45:03.650Z 2026-01-08T18:07:34.629Z
bit-parse-2025-64430 Parse Server Vulnerable to Server-Side Request Forgery (SSRF) in File Upload via URI Format 2025-11-12T11:45:02.117Z 2025-11-12T12:05:53.614Z
bit-django-2025-64459 Potential SQL injection via _connector keyword argument in QuerySet and Q objects 2025-11-11T11:36:39.904Z 2025-11-11T12:05:08.739Z
bit-django-2025-64458 Potential denial-of-service vulnerability in HttpResponseRedirect and HttpResponsePermanentRedirect on Windows 2025-11-11T11:36:38.456Z 2025-11-11T12:05:08.739Z
bit-wildfly-2022-0866 2025-11-07T11:01:40.946Z 2025-11-07T11:28:28.483Z
bit-mlflow-2025-11201 MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability 2025-11-07T10:57:31.684Z 2025-11-07T11:28:28.483Z
bit-redis-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE 2025-11-07T08:49:33.083Z 2025-11-07T09:06:54.375Z
bit-keydb-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE 2025-11-07T08:40:53.783Z 2025-11-07T09:06:54.375Z
bit-mastodon-2022-2166 Improper Restriction of Excessive Authentication Attempts in mastodon/mastodon 2025-11-06T15:08:22.357Z 2025-11-06T15:44:17.098Z
bit-gitlab-2025-11702 Missing Authorization in GitLab 2025-11-06T13:22:05.051Z 2025-11-06T13:25:46.476Z
bit-tomcat-2025-61795 Apache Tomcat: Delayed cleaning of multi-part upload temporary files may lead to DoS 2025-11-06T13:00:35.478Z 2025-11-06T13:25:46.476Z
bit-tomcat-2025-55754 Apache Tomcat: console manipulation via escape sequences in log messages 2025-11-06T13:00:33.572Z 2025-11-06T13:25:46.476Z
bit-tomcat-2025-55752 Apache Tomcat: Directory traversal via rewrite with possible RCE if PUT is enabled 2025-11-06T13:00:31.694Z 2025-11-11T12:05:08.739Z
ID Description Published Updated
cleanstart-2026-kg18353 Within HostnameError 2026-01-30T14:02:50.542288Z 2026-01-29T18:58:54Z
cleanstart-2026-yk82785 Within HostnameError 2026-01-30T14:01:20.108833Z 2026-01-29T18:58:54Z
cleanstart-2026-sg80587 It was found that the cookie used for CSRF prevention in Keycloak was not unique to each session 2026-01-30T14:00:21.027172Z 2026-01-29T18:58:54Z
cleanstart-2026-bk59402 Moby is an open-source project created by Docker for software containerization 2026-01-30T14:00:20.262469Z 2026-01-29T18:58:54Z
cleanstart-2026-gy69323 Moby is an open-source project created by Docker for software containerization 2026-01-30T14:00:20.037168Z 2026-01-29T18:58:54Z
cleanstart-2026-mj64494 Redis is an open source, in-memory database that persists on disk 2026-01-30T13:59:20.370058Z 2026-01-29T18:58:54Z
cleanstart-2025-yj25356 Security fixes for CVE-2025-61729 applied in versions: 1.40.2-r0 2026-01-16T12:00:45.358320Z 2025-12-06T13:34:11Z
cleanstart-2025-jl63399 Security fixes for CVE-2025-61729 applied in versions: 0.20.2-r1 2026-01-16T12:00:43.312220Z 2025-12-06T13:34:11Z
cleanstart-2025-cn65903 Security fixes for GHSA-6v2p-p543-phr9, GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.5.0-r0, 1.7.0-r0 2026-01-16T12:00:42.667592Z 2025-09-29T13:20:40Z
cleanstart-2025-az51267 Security fixes for GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.7.0-r0 2026-01-16T12:00:40.997706Z 2025-09-29T13:20:59Z
cleanstart-2025-eu07511 Security fixes for CVE-2025-47912, CVE-2025-58183, CVE-2025-58185, CVE-2025-58186, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729 applied in versions: 1.7.0-r0, 1.7.1-r0 2026-01-16T11:58:32.440192Z 2025-12-06T13:34:11Z
cleanstart-2025-us16386 Security fixes for GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.7.2-r0 2026-01-16T11:58:18.007779Z 2025-12-23T06:02:25Z
cleanstart-2025-ob44035 Security fixes for CVE-2025-61729, GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 1.16.2-r2 2026-01-16T11:28:43.176297Z 2025-12-13T08:34:16Z
ID Description Published Updated
drupal-contrib-2021-019 2021-06-23T16:51:26.000Z 2023-08-11T17:10:31.000Z
drupal-contrib-2021-018 2021-06-23T16:47:59.000Z 2023-08-11T17:09:57.000Z
drupal-contrib-2021-017 2021-06-16T16:15:21.000Z 2023-08-11T17:09:04.000Z
drupal-contrib-2021-016 2021-06-16T16:05:14.000Z 2023-08-11T17:08:37.000Z
drupal-contrib-2021-015 2021-06-16T15:58:47.000Z 2023-08-11T17:08:06.000Z
drupal-contrib-2021-014 2021-06-02T16:59:12.000Z 2023-08-11T17:07:36.000Z
drupal-contrib-2021-013 2021-06-02T16:56:19.000Z 2023-08-11T17:07:00.000Z
drupal-contrib-2021-011 2021-06-02T16:51:10.000Z 2023-08-11T17:22:44.000Z
drupal-contrib-2021-010 2021-06-02T16:49:49.000Z 2023-08-11T17:21:33.000Z
drupal-contrib-2021-009 2021-05-12T16:23:23.000Z 2023-08-11T17:18:42.000Z
drupal-contrib-2021-008 2021-05-12T16:14:35.000Z 2023-08-11T17:17:58.000Z
drupal-contrib-2021-007 2021-05-12T16:08:34.000Z 2023-08-11T17:17:34.000Z
drupal-contrib-2021-006 2021-04-28T16:47:09.000Z 2023-08-11T17:16:38.000Z
drupal-contrib-2021-005 2021-03-17T18:36:07.000Z 2023-08-11T17:15:48.000Z
drupal-contrib-2021-004 2021-03-03T16:49:33.000Z 2023-08-11T17:15:22.000Z
drupal-contrib-2021-003 2021-01-27T17:53:09.000Z 2023-08-11T17:13:06.000Z
drupal-contrib-2021-002 2021-01-27T17:27:57.000Z 2023-08-11T17:25:36.000Z
drupal-contrib-2021-001 2021-01-27T17:17:43.000Z 2023-08-11T17:24:49.000Z
drupal-contrib-2020-038 2020-11-18T17:27:58.000Z 2023-08-11T17:45:32.000Z
drupal-contrib-2020-035 2020-11-18T17:15:24.000Z 2023-08-11T17:43:11.000Z
drupal-contrib-2020-034 2020-10-14T14:38:16.000Z 2023-08-11T17:32:53.000Z
drupal-contrib-2020-033 2020-08-05T20:05:36.000Z 2023-08-11T17:31:14.000Z
drupal-contrib-2020-032 2020-08-05T15:47:56.000Z 2023-08-11T17:31:20.000Z
drupal-contrib-2020-030 2020-07-29T12:23:17.000Z 2023-08-11T17:46:26.000Z
drupal-contrib-2020-029 2020-07-22T18:53:26.000Z 2023-08-11T17:49:52.000Z
drupal-contrib-2020-028 2020-07-22T18:48:10.000Z 2023-08-11T17:49:38.000Z
drupal-contrib-2020-027 2020-07-22T17:58:17.000Z 2023-08-11T17:49:02.000Z
drupal-contrib-2020-024 2020-06-10T16:44:34.000Z 2023-08-11T17:47:56.000Z
drupal-contrib-2020-021 2020-05-27T15:47:10.000Z 2023-08-11T17:47:04.000Z
drupal-contrib-2020-020 2020-05-27T15:32:52.000Z 2023-08-11T17:51:01.000Z
ID Description Published Updated
cnvd-2026-00557 CMSimple代码执行漏洞 2025-12-29 2026-01-06
cnvd-2026-04455 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-1203509) 2025-12-27 2026-01-21
cnvd-2026-10343 D-Link DAP-1325访问控制错误漏洞 2025-12-25 2026-02-05
cnvd-2026-07555 WordPress插件eRoom信息泄露漏洞 2025-12-25 2026-01-28
cnvd-2026-06567 中科方德软件有限公司方德桌面操作系统存在本地提权漏洞 2025-12-25 2026-01-31
cnvd-2026-05360 ChurchCRM跨站脚本漏洞(CNVD-2026-0536090) 2025-12-25 2026-01-19
cnvd-2026-05359 ChurchCRM信息泄露漏洞 2025-12-25 2026-01-19
cnvd-2026-05358 ChurchCRM代码执行漏洞(CNVD-2026-0535893) 2025-12-25 2026-01-19
cnvd-2026-05357 ChurchCRM 事件参与者编辑器SQL注入漏洞 2025-12-25 2026-01-19
cnvd-2026-05356 ChurchCRM访问控制错误漏洞 2025-12-25 2026-01-19
cnvd-2026-05355 ChurchCRM代码执行漏洞 2025-12-25 2026-01-19
cnvd-2026-05354 ChurchCRM跨站脚本漏洞(CNVD-2026-0535400) 2025-12-25 2026-01-19
cnvd-2026-05353 ChurchCRM跨站脚本漏洞 2025-12-25 2026-01-19
cnvd-2026-05352 ChurchCRM UserEditor.php文件SQL注入漏洞 2025-12-25 2026-01-19
cnvd-2026-05351 ChurchCRM ListEvents.php文件SQL注入漏洞 2025-12-25 2026-01-19
cnvd-2026-05350 ChurchCRM GroupEditor.php页面跨站脚本漏洞 2025-12-25 2026-01-19
cnvd-2026-05349 ChurchCRM eGive.php文件SQL注入漏洞 2025-12-25 2026-01-19
cnvd-2026-05348 ChurchCRM CartToFamily.php文件SQL注入漏洞 2025-12-25 2026-01-19
cnvd-2026-05344 RiteCMS存在未明漏洞 2025-12-25 2026-01-19
cnvd-2026-05343 RiteCMS文件包含漏洞 2025-12-25 2026-01-19
cnvd-2026-05342 RiteCMS访问控制不当漏洞 2025-12-25 2026-01-19
cnvd-2026-05341 RiteCMS跨站请求伪造漏洞 2025-12-25 2026-01-19
cnvd-2026-05340 RiteCMS跨站脚本漏洞 2025-12-25 2026-01-19
cnvd-2026-05339 RiteCMS代码执行漏洞 2025-12-25 2026-01-19
cnvd-2026-05332 Complete Online Beauty Parlor Management System /bwdates-reports-details.php文件跨站脚本漏洞 2025-12-25 2026-01-21
cnvd-2026-05331 Complete Online Beauty Parlor Management System /search-invoices.php文件SQL注入漏洞 2025-12-25 2026-01-21
cnvd-2026-05330 Complete Online Beauty Parlor Management System /view-appointment.php文件SQL注入漏洞 2025-12-25 2026-01-21
cnvd-2026-05130 Kentico Xperience信息泄露漏洞 2025-12-25 2026-01-20
cnvd-2026-05129 Kentico Xperience文件上传漏洞 2025-12-25 2026-01-20
cnvd-2026-05128 Kentico Xperience HTML注入漏洞 2025-12-25 2026-01-20
ID Description Published Updated
certfr-2025-avi-1039 Vulnérabilité dans Kaspersky Security Center 2025-11-25T00:00:00.000000 2025-11-25T00:00:00.000000
certfr-2025-avi-1038 Vulnérabilité dans les produits PrimX 2025-11-25T00:00:00.000000 2025-11-25T00:00:00.000000
certfr-2025-avi-1037 Multiples vulnérabilités dans Progress MOVEit Transfer 2025-11-25T00:00:00.000000 2025-11-25T00:00:00.000000
certfr-2025-avi-1036 Multiples vulnérabilités dans les produits VMware 2025-11-24T00:00:00.000000 2025-11-24T00:00:00.000000
certfr-2025-avi-1035 Multiples vulnérabilités dans les produits Synology 2025-11-24T00:00:00.000000 2025-11-24T00:00:00.000000
certfr-2025-avi-1034 Multiples vulnérabilités dans les produits IBM 2025-11-21T00:00:00.000000 2025-11-21T00:00:00.000000
certfr-2025-avi-1033 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-11-21T00:00:00.000000 2025-11-21T00:00:00.000000
certfr-2025-avi-1032 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-11-21T00:00:00.000000 2025-11-21T00:00:00.000000
certfr-2025-avi-1031 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-11-21T00:00:00.000000 2025-11-21T00:00:00.000000
certfr-2025-avi-1030 Vulnérabilité dans Microsoft Visual Studio Code 2025-11-21T00:00:00.000000 2025-11-21T00:00:00.000000
certfr-2025-avi-1029 Vulnérabilité dans les produits Kaspersky 2025-11-20T00:00:00.000000 2025-11-20T00:00:00.000000
certfr-2025-avi-1028 Vulnérabilité dans GnuTLS 2025-11-20T00:00:00.000000 2025-11-20T00:00:00.000000
certfr-2025-avi-1027 Multiples vulnérabilités dans les produits SonicWall 2025-11-20T00:00:00.000000 2025-11-20T00:00:00.000000
certfr-2025-avi-1026 Multiples vulnérabilités dans Wireshark 2025-11-20T00:00:00.000000 2025-11-20T00:00:00.000000
certfr-2025-avi-1025 Multiples vulnérabilités dans les produits Atlassian 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1024 Multiples vulnérabilités dans les produits VMware 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1023 Multiples vulnérabilités dans les produits Fortinet 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1022 Multiples vulnérabilités dans Microsoft Edge 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1021 Multiples vulnérabilités dans les produits HPE Aruba Networking 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1020 Multiples vulnérabilités dans les produits SolarWinds 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1019 Multiples vulnérabilités dans Mattermost Server 2025-11-18T00:00:00.000000 2025-11-18T00:00:00.000000
certfr-2025-avi-1018 Multiples vulnérabilités dans Google Chrome 2025-11-18T00:00:00.000000 2025-11-18T00:00:00.000000
certfr-2025-avi-1017 Multiples vulnérabilités dans Mattermost Server 2025-11-17T00:00:00.000000 2025-11-17T00:00:00.000000
certfr-2025-avi-1016 Multiples vulnérabilités dans Mozilla Thunderbird 2025-11-17T00:00:00.000000 2025-11-17T00:00:00.000000
certfr-2025-avi-1015 Multiples vulnérabilités dans les produits NetApp 2025-11-17T00:00:00.000000 2025-11-17T00:00:00.000000
certfr-2025-avi-1014 Vulnérabilité dans Fortinet FortiWeb 2025-11-14T00:00:00.000000 2025-11-14T00:00:00.000000
certfr-2025-avi-1013 Multiples vulnérabilités dans les produits IBM 2025-11-14T00:00:00.000000 2025-11-14T00:00:00.000000
certfr-2025-avi-1012 Vulnérabilité dans Microsoft Edge 2025-11-14T00:00:00.000000 2025-11-14T00:00:00.000000
certfr-2025-avi-1011 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-11-14T00:00:00.000000 2025-11-14T00:00:00.000000
certfr-2025-avi-1010 Multiples vulnérabilités dans le noyau Linux de Debian 2025-11-14T00:00:00.000000 2025-11-14T00:00:00.000000
ID Description Published Updated
certa-2004-ale-011 Diffusion de programmes exploitant la faille GDI+ 2004-09-23T00:00:00.000000 2004-09-23T00:00:00.000000
certa-2004-ale-010 Vulnérabilité du service Telnet de Cisco IOS 2004-08-30T00:00:00.000000 2004-08-30T00:00:00.000000
certa-2004-ale-009 Vulnérabilités d'Internet Explorer 2004-06-09T00:00:00.000000 2004-08-03T00:00:00.000000
certa-2004-ale-008 Vulnérabilité de Safari 2004-05-19T00:00:00.000000 2004-05-24T00:00:00.000000
certa-2004-ale-007 Exploitation de la vulnérabilité LSASS sous Windows : appration du ver Sasser 2004-05-02T00:00:00.000000 2004-05-02T00:00:00.000000
certa-2004-ale-006 Vulnérabilité SMB sous Windows 2004-04-28T00:00:00.000000 2004-04-28T00:00:00.000000
certa-2004-ale-005 Vulnérabilité d'Internet Explorer 2004-04-09T00:00:00.000000 2004-04-15T00:00:00.000000
certa-2004-ale-004 Vulnérabilité du composant dtlogin de CDE 2004-03-26T00:00:00.000000 2004-08-05T00:00:00.000000
certa-2004-ale-003 Propagation du ver Phatbot 2004-03-19T00:00:00.000000 2004-03-19T00:00:00.000000
certa-2004-ale-002 Propagation du virux Bizex 2004-02-26T00:00:00.000000 2004-02-26T00:00:00.000000
certa-2004-ale-001 Obstacles à la résolution d'incidents 2004-01-30T00:00:00.000000 2004-01-30T00:00:00.000000
certa-2003-ale-006 Vulnérabilité dans l'affichage des adresses réticulaires 2003-12-19T00:00:00.000000 2004-02-03T00:00:00.000000
certa-2003-ale-005 Vulnérabilité de sadmind sur Solaris 2003-09-19T00:00:00.000000 2003-09-19T00:00:00.000000
certa-2003-ale-004 Vulnérabilité d'Internet Explorer 2003-09-10T00:00:00.000000 2003-10-06T00:00:00.000000
certa-2003-ale-003 Exploitation massive de la vulnérabilité « include PHP » 2003-09-09T00:00:00.000000 2003-09-09T00:00:00.000000
certa-2003-ale-002 Exploitation d'une faille de Windows RPC 2003-08-01T00:00:00.000000 2003-08-19T00:00:00.000000
certa-2003-ale-001 Vulnérabilité dans l'implémentation des logiciels de lecture des documents PDF 2003-06-23T00:00:00.000000 2003-07-04T00:00:00.000000
certa-2002-ale-007 Cédérom Pages Pro 2002-09-04T00:00:00.000000 2002-09-04T00:00:00.000000
certa-2002-ale-006 Propagation du ver Spida (Microsoft SQL Server) 2002-05-22T00:00:00.000000 2002-06-04T00:00:00.000000
certa-2002-ale-005 Risque de compromission des auto-commutateurs (PABX) ALCATEL 4400 2002-02-20T00:00:00.000000 2002-02-20T00:00:00.000000
certa-2002-ale-004 Multiples implémentations de SNMP V1 vulnérables 2002-02-13T00:00:00.000000 2002-02-13T00:00:00.000000
certa-2002-ale-003 Propagation importante du virus « W32.Myparty@mm » 2002-01-29T00:00:00.000000 2002-01-29T00:00:00.000000
certa-2002-ale-002 Exploitation d'une faille de wu-ftpd 2002-01-28T00:00:00.000000 2002-01-28T00:00:00.000000
certa-2002-ale-001 Exploitation massive d'une faille de CDE 2002-01-24T00:00:00.000000 2002-01-24T00:00:00.000000
certa-2001-ale-016 Propagation du ver badtrans - variante B 2001-11-27T00:00:00.000000 2001-11-27T00:00:00.000000
certa-2001-ale-015 Exploitation massive d'une ancienne vulnérabilité de SSH 2001-11-19T00:00:00.000000 2001-11-19T00:00:00.000000
certa-2001-ale-014 Risque de divulgation de données personnelles/confidentielles par des produits Microsoft 2001-10-19T00:00:00.000000 2001-10-19T00:00:00.000000
certa-2001-ale-013 Propagation du ver/virus NIMDA (Concept Virus) 2001-09-19T00:00:00.000000 2001-09-19T00:00:00.000000
certa-2001-ale-012 Rappels concernant les virus 2001-09-13T00:00:00.000000 2002-01-09T00:00:00.000000
certa-2001-ale-011 <TT>antivirus2001</TT> est un cheval de Troie 2001-09-10T00:00:00.000000 2001-09-13T00:00:00.000000
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated