Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-68038 |
9.8 (3.1)
|
WordPress Icegram Express Pro plugin <= 5.9.11 - PHP O… |
Icegram |
Icegram Express Pro |
2025-12-24T13:10:25.043Z | 2026-01-20T14:28:27.423Z |
| CVE-2025-68082 |
5.4 (3.1)
|
WordPress Semrush Content Toolkit plugin <= 1.1.32 - C… |
SEMrush CY LTD |
Semrush Content Toolkit |
2025-12-16T08:13:05.169Z | 2026-01-20T14:28:27.416Z |
| CVE-2025-67985 |
5.3 (3.1)
|
WordPress Document Library Lite plugin <= 1.1.7 - Inse… |
Barn2 Plugins |
Document Library Lite |
2025-12-16T08:12:58.770Z | 2026-01-20T14:28:27.390Z |
| CVE-2025-68054 |
8.5 (3.1)
|
WordPress CountDown With Image or Video Background plu… |
LambertGroup |
CountDown With Image or Video Background |
2025-12-16T08:12:59.794Z | 2026-01-20T14:28:27.382Z |
| CVE-2025-68079 |
6.5 (3.1)
|
WordPress Salient Shortcodes plugin <= 1.5.4 - Cross S… |
ThemeNectar |
Salient Shortcodes |
2025-12-16T08:13:04.760Z | 2026-01-20T14:28:27.378Z |
| CVE-2025-68067 |
7.5 (3.1)
|
WordPress Stockholm Core plugin <= 2.4.6 - Local File … |
Select-Themes |
Stockholm Core |
2025-12-16T08:13:03.257Z | 2026-01-20T14:28:27.343Z |
| CVE-2025-68077 |
6.5 (3.1)
|
WordPress Stockholm theme <= 9.14.1 - Cross Site Scrip… |
Select-Themes |
Stockholm |
2025-12-16T08:13:04.375Z | 2026-01-20T14:28:27.340Z |
| CVE-2025-68080 |
6.5 (3.1)
|
WordPress User Avatar - Reloaded plugin <= 1.2.2 - Cro… |
Saad Iqbal |
User Avatar - Reloaded |
2025-12-16T08:13:04.939Z | 2026-01-20T14:28:27.336Z |
| CVE-2025-67965 |
5.3 (3.1)
|
WordPress Homey Core plugin <= 2.4.3 - Broken Access C… |
favethemes |
Homey Core |
2025-12-16T08:12:58.164Z | 2026-01-20T14:28:27.313Z |
| CVE-2025-68061 |
7.5 (3.1)
|
WordPress EduMall theme <= 4.4.7 - Local File Inclusio… |
ThemeMove |
EduMall |
2025-12-16T08:13:00.884Z | 2026-01-20T14:28:27.305Z |
| CVE-2025-68014 |
6.5 (3.1)
|
WordPress AweBooking plugin <= 3.2.26 - Sensitive Data… |
Awethemes |
AweBooking |
2026-01-05T10:36:24.385Z | 2026-01-20T14:28:27.299Z |
| CVE-2025-68029 |
6.3 (3.1)
|
WordPress Wallet System for WooCommerce plugin <= 2.7.… |
WP Swings |
Wallet System for WooCommerce |
2026-01-05T10:37:18.929Z | 2026-01-20T14:28:27.295Z |
| CVE-2025-68068 |
7.5 (3.1)
|
WordPress Stockholm theme <= 9.14.1 - Local File Inclu… |
Select-Themes |
Stockholm |
2025-12-16T08:13:03.502Z | 2026-01-20T14:28:27.289Z |
| CVE-2025-67999 |
7.6 (3.1)
|
WordPress Newsletter plugin <= 9.0.9 - SQL Injection v… |
Stefano Lissa |
Newsletter |
2025-12-16T08:12:59.398Z | 2026-01-20T14:28:27.287Z |
| CVE-2025-67962 |
7.6 (3.1)
|
WordPress Broken Link Checker plugin <= 1.2.6 - SQL In… |
AIOSEO Plugin Team |
Broken Link Checker |
2025-12-16T08:12:57.962Z | 2026-01-20T14:28:27.286Z |
| CVE-2025-68066 |
7.5 (3.1)
|
WordPress Soledad theme <= 8.7.0 - Local File Inclusio… |
PenciDesign |
Soledad |
2025-12-16T08:13:01.813Z | 2026-01-20T14:28:27.278Z |
| CVE-2025-68071 |
6.5 (3.1)
|
WordPress Essential Real Estate plugin <= 5.2.2 - Inse… |
g5theme |
Essential Real Estate |
2025-12-16T08:13:03.975Z | 2026-01-20T14:28:27.277Z |
| CVE-2025-68053 |
8.5 (3.1)
|
WordPress xPromoter plugin <= 1.3.4 - SQL Injection vu… |
LambertGroup |
xPromoter |
2025-12-16T08:12:59.596Z | 2026-01-20T14:28:27.273Z |
| CVE-2025-67950 |
8.5 (3.1)
|
WordPress All In One SEO Pack plugin <= 4.9.1 - SQL In… |
Syed Balkhi |
All In One SEO Pack |
2025-12-16T08:12:57.565Z | 2026-01-20T14:28:27.273Z |
| CVE-2025-68062 |
7.5 (3.1)
|
WordPress MinimogWP theme <= 3.9.6 - Local File Inclus… |
ThemeMove |
MinimogWP |
2025-12-16T08:13:01.103Z | 2026-01-20T14:28:27.271Z |
| CVE-2025-68033 |
7.5 (3.1)
|
WordPress Custom Related Posts plugin <= 1.8.0 - Sensi… |
Brecht |
Custom Related Posts |
2026-01-05T10:39:01.024Z | 2026-01-20T14:28:27.271Z |
| CVE-2025-67948 |
4.3 (3.1)
|
WordPress SendPulse Email Marketing Newsletter plugin … |
SendPulse |
SendPulse Email Marketing Newsletter |
2025-12-16T08:12:57.382Z | 2026-01-20T14:28:27.268Z |
| CVE-2025-68056 |
8.5 (3.1)
|
WordPress LBG Zoominoutslider plugin <= 5.4.5 - SQL In… |
LambertGroup |
LBG Zoominoutslider |
2025-12-16T08:13:00.522Z | 2026-01-20T14:28:27.264Z |
| CVE-2025-68044 |
8.6 (3.1)
|
WordPress Five Star Restaurant Reservations plugin <= … |
Rustaurius |
Five Star Restaurant Reservations |
2026-01-05T10:40:55.539Z | 2026-01-20T14:28:27.250Z |
| CVE-2025-67976 |
6.5 (3.1)
|
WordPress Watu Quiz plugin <= 3.4.5 - Broken Access Co… |
Bob |
Watu Quiz |
2025-12-16T08:12:58.348Z | 2026-01-20T14:28:27.243Z |
| CVE-2025-68055 |
8.5 (3.1)
|
WordPress Hydra Booking plugin <= 1.1.32 - SQL Injecti… |
Themefic |
Hydra Booking |
2025-12-16T08:12:59.985Z | 2026-01-20T14:28:27.212Z |
| CVE-2025-68036 |
7.5 (3.1)
|
WordPress CubeWP plugin <= 1.1.27 - Broken Access Cont… |
Emraan Cheema |
CubeWP |
2025-12-29T23:26:17.386Z | 2026-01-20T14:28:27.210Z |
| CVE-2025-67933 |
6.1 (3.1)
|
WordPress Taskbuilder plugin <= 4.0.9 - Cross Site Scr… |
taskbuilder |
Taskbuilder |
2026-01-08T09:17:49.199Z | 2026-01-20T14:28:27.168Z |
| CVE-2025-67989 |
5.4 (3.1)
|
WordPress Kerge theme <= 4.1.3 - Server Side Request F… |
LMPixels |
Kerge |
2025-12-16T08:12:59.145Z | 2026-01-20T14:28:27.164Z |
| CVE-2025-67934 |
8.1 (3.1)
|
WordPress Wellspring theme < 2.8 - Local File Inclusio… |
Mikado-Themes |
Wellspring |
2026-01-08T09:17:49.408Z | 2026-01-20T14:28:27.041Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-0755 |
9.8 (3.0)
|
gemini-mcp-tool execAsync Command Injection Remote Cod… |
Gemini MCP Tool |
gemini-mcp-tool |
2026-01-23T03:26:16.000Z | 2026-01-23T19:35:07.197Z |
| CVE-2026-0710 |
8.4 (3.1)
|
Sipp/sipp: sipp: denial of service and potential arbit… |
|
|
2026-01-23T03:47:44.867Z | 2026-01-23T19:04:04.032Z |
| CVE-2026-0603 |
8.3 (3.1)
|
Org.hibernate/hibernate-core: hibernate: information d… |
|
|
2026-01-23T06:31:38.975Z | 2026-01-26T09:26:32.074Z |
| CVE-2025-71161 |
N/A
|
dm-verity: disable recursive forward error correction |
Linux |
Linux |
2026-01-23T15:23:59.464Z | 2026-01-26T06:52:34.622Z |
| CVE-2025-71160 |
N/A
|
netfilter: nf_tables: avoid chain re-validation if possible |
Linux |
Linux |
2026-01-23T15:23:58.652Z | 2026-01-26T06:52:33.346Z |
| CVE-2025-71159 |
N/A
|
btrfs: fix use-after-free warning in btrfs_get_or_crea… |
Linux |
Linux |
2026-01-23T15:23:57.824Z | 2026-01-23T15:23:57.824Z |
| CVE-2025-71158 |
N/A
|
gpio: mpsse: ensure worker is torn down |
Linux |
Linux |
2026-01-23T15:23:57.016Z | 2026-01-26T06:52:32.070Z |
| CVE-2025-71157 |
N/A
|
RDMA/core: always drop device refcount in ib_del_sub_d… |
Linux |
Linux |
2026-01-23T14:25:56.458Z | 2026-01-23T14:25:56.458Z |
| CVE-2025-71156 |
N/A
|
gve: defer interrupt enabling until NAPI registration |
Linux |
Linux |
2026-01-23T14:25:55.456Z | 2026-01-23T14:25:55.456Z |
| CVE-2025-71155 |
N/A
|
KVM: s390: Fix gmap_helper_zap_one_page() again |
Linux |
Linux |
2026-01-23T14:25:54.663Z | 2026-01-23T14:25:54.663Z |
| CVE-2025-71154 |
N/A
|
net: usb: rtl8150: fix memory leak on usb_submit_urb()… |
Linux |
Linux |
2026-01-23T14:25:53.818Z | 2026-01-23T14:25:53.818Z |
| CVE-2025-71153 |
N/A
|
ksmbd: Fix memory leak in get_file_all_info() |
Linux |
Linux |
2026-01-23T14:25:52.988Z | 2026-01-23T14:25:52.988Z |
| CVE-2025-71152 |
N/A
|
net: dsa: properly keep track of conduit reference |
Linux |
Linux |
2026-01-23T14:25:52.022Z | 2026-01-23T14:25:52.022Z |
| CVE-2025-71151 |
N/A
|
cifs: Fix memory and information leak in smb3_reconfigure() |
Linux |
Linux |
2026-01-23T14:15:17.916Z | 2026-01-23T14:15:17.916Z |
| CVE-2025-71150 |
N/A
|
ksmbd: Fix refcount leak when invalid session is found… |
Linux |
Linux |
2026-01-23T14:15:16.898Z | 2026-01-26T06:52:30.374Z |
| CVE-2025-71149 |
N/A
|
io_uring/poll: correctly handle io_poll_add() return v… |
Linux |
Linux |
2026-01-23T14:15:15.878Z | 2026-01-23T14:15:15.878Z |
| CVE-2025-71148 |
N/A
|
net/handshake: restore destructor on submit failure |
Linux |
Linux |
2026-01-23T14:15:14.963Z | 2026-01-23T14:15:14.963Z |
| CVE-2025-71147 |
N/A
|
KEYS: trusted: Fix a memory leak in tpm2_load_cmd |
Linux |
Linux |
2026-01-23T14:15:13.945Z | 2026-01-23T14:15:13.945Z |
| CVE-2025-71146 |
N/A
|
netfilter: nf_conncount: fix leaked ct in error paths |
Linux |
Linux |
2026-01-23T14:15:12.998Z | 2026-01-23T14:15:12.998Z |
| CVE-2025-71145 |
N/A
|
usb: phy: isp1301: fix non-OF device reference imbalance |
Linux |
Linux |
2026-01-23T13:39:17.857Z | 2026-01-23T13:39:17.857Z |
| CVE-2025-69908 |
7.5 (3.1)
|
An unauthenticated information disclosure vulnera… |
n/a |
n/a |
2026-01-23T00:00:00.000Z | 2026-01-23T15:43:24.471Z |
| CVE-2025-69907 |
7.5 (3.1)
|
An unauthenticated information disclosure vulnera… |
n/a |
n/a |
2026-01-23T00:00:00.000Z | 2026-01-23T21:53:33.121Z |
| CVE-2025-67847 |
8.8 (3.1)
|
Moodle: moodle: remote code execution via insufficient… |
|
|
2026-01-23T04:35:12.044Z | 2026-02-03T10:51:55.564Z |
| CVE-2025-67125 |
4.4 (3.1)
|
A signed integer overflow in docopt.cpp v0.6.2 (L… |
n/a |
n/a |
2026-01-23T00:00:00.000Z | 2026-01-23T16:14:32.425Z |
| CVE-2025-67124 |
6.8 (3.1)
|
A TOCTOU and symlink race in svenstaro/miniserve … |
n/a |
n/a |
2026-01-23T00:00:00.000Z | 2026-01-23T18:51:54.527Z |
| CVE-2025-66720 |
7.5 (3.1)
|
Null pointer dereference in free5gc pcf 1.4.0 in … |
n/a |
n/a |
2026-01-23T00:00:00.000Z | 2026-01-23T18:56:02.014Z |
| CVE-2025-66719 |
9.1 (3.1)
|
An issue was discovered in Free5gc NRF 1.4.0. In … |
n/a |
n/a |
2026-01-23T00:00:00.000Z | 2026-01-23T19:24:55.108Z |
| CVE-2025-4320 |
10 (3.1)
|
Information Disclosure in Birebirsoft's Sufirmam |
Birebirsoft Software and Technology Solutions |
Sufirmam |
2026-01-23T12:26:46.557Z | 2026-01-23T14:15:47.913Z |
| CVE-2025-4319 |
9.4 (3.1)
|
Improper Access Control in Birebirsoft's Sufirmam |
Birebirsoft Software and Technology Solutions |
Sufirmam |
2026-01-23T12:23:24.949Z | 2026-01-23T14:16:15.720Z |
| CVE-2025-3839 |
8 (3.1)
|
Epiphany: insecure external protocol invocation in epiphany |
|
|
2026-01-23T03:55:58.802Z | 2026-01-23T18:54:44.742Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-67124 | A TOCTOU and symlink race in svenstaro/miniserve 0.32.0 upload finalization (when uploads are enabl… | 2026-01-23T16:15:52.247 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-66720 | Null pointer dereference in free5gc pcf 1.4.0 in file internal/sbi/processor/ampolicy.go in functio… | 2026-01-23T16:15:52.140 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-66719 | An issue was discovered in Free5gc NRF 1.4.0. In the access-token generation logic of free5GC, the … | 2026-01-23T16:15:51.220 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-4320 | Authentication Bypass by Primary Weakness, Weak Password Recovery Mechanism for Forgotten Password … | 2026-01-23T13:15:49.123 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-4319 | Improper Restriction of Excessive Authentication Attempts, Weak Password Recovery Mechanism for For… | 2026-01-23T13:15:48.967 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-3839 | A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications… | 2026-01-23T05:16:21.753 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-2204 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-01-23T12:15:48.463 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-15522 | The Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin for… | 2026-01-23T05:16:21.043 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-15351 | Anritsu VectorStar CHX File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnera… | 2026-01-23T04:16:01.710 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-15350 | Anritsu VectorStar CHX File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnera… | 2026-01-23T04:16:01.580 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-15349 | Anritsu ShockLine SCPI Race Condition Remote Code Execution Vulnerability. This vulnerability allow… | 2026-01-23T04:16:01.450 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-15348 | Anritsu ShockLine CHX File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerab… | 2026-01-23T04:16:01.310 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-15063 | Ollama MCP Server execAsync Command Injection Remote Code Execution Vulnerability. This vulnerabili… | 2026-01-23T04:16:01.170 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-15062 | Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerab… | 2026-01-23T04:16:01.033 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-15061 | Framelink Figma MCP Server fetchWithRetry Command Injection Remote Code Execution Vulnerability. Th… | 2026-01-23T04:16:00.893 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-14866 | The Melapress Role Editor plugin for WordPress is vulnerable to Privilege Escalation in all version… | 2026-01-23T13:15:47.983 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-14745 | The RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging plugin for WordPress is… | 2026-01-23T06:15:50.030 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-14069 | The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Site S… | 2026-01-23T06:15:48.953 | 2026-01-26T15:03:51.687 |
| fkie_cve-2025-13921 | The weDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot plugin for WordPress … | 2026-01-23T14:16:12.663 | 2026-01-26T15:03:51.687 |
| fkie_cve-2024-11976 | The The BuddyPress plugin for WordPress is vulnerable to arbitrary shortcode execution in all versi… | 2026-01-23T07:15:51.857 | 2026-01-26T15:03:51.687 |
| fkie_cve-2026-24474 | Dioxus Components is a shadcn-style component library for the Dioxus app framework. Prior to commit… | 2026-01-24T00:15:49.603 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-24469 | C++ HTTP Server is an HTTP/1.1 server built to handle client connections and serve HTTP requests. V… | 2026-01-24T03:16:01.150 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-24423 | SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execut… | 2026-01-23T17:16:13.483 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-24401 | Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protoc… | 2026-01-24T02:15:48.760 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-24399 | ChatterMate is a no-code AI chatbot agent framework. In versions 1.0.8 and below, the chatbot accep… | 2026-01-24T01:15:50.393 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-24136 | Saleor is an e-commerce platform. Versions 3.2.0 through 3.20.109, 3.21.0-a.0 through 3.21.44 and 3… | 2026-01-24T00:15:49.167 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-24128 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top o… | 2026-01-24T00:15:49.007 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-23013 | In the Linux kernel, the following vulnerability has been resolved: net: octeon_ep_vf: fix free_ir… | 2026-01-25T15:15:56.173 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-23012 | In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: remove call_con… | 2026-01-25T15:15:56.073 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-23009 | In the Linux kernel, the following vulnerability has been resolved: xhci: sideband: don't derefere… | 2026-01-25T15:15:55.767 | 2026-01-26T15:03:33.357 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-vq4g-pvpg-cp9j |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-vjf3-755p-p4fr |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in TieLabs Jannah jannah allows Object Injection.Th… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-v8x2-mjpx-fx33 |
9.1 (3.1)
|
Improper Control of Generation of Code ('Code Injection') vulnerability in jetmonsters Hotel Bookin… | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-v895-7m89-39v8 |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in BoldThemes Codiqa codiqa allows Object Injection… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-v3v9-4r58-fj96 |
7.5 (3.1)
|
Missing Authorization vulnerability in FantasticPlugins WooCommerce Recover Abandoned Cart rac allo… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-rmjr-p44g-h485 |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in BoldGrid Client Invoicing by Sprout Invoices spr… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-r65w-qfqm-5mfj |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-qq4w-v87v-445v |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-q23c-5fvr-w9pv |
8.2 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-prrr-cqjj-3chg |
7.5 (3.1)
|
Missing Authorization vulnerability in GetResponse Email marketing for WordPress by GetResponse Off… | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-pqwp-hq22-pr35 |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in magepeopleteam Booking and Rental Manager bookin… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-pjq9-7r7j-39gf |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-mjcc-xmv3-j3fr |
9.8 (3.1)
|
Unrestricted Upload of File with Dangerous Type vulnerability in RedefiningTheWeb WordPress Contact… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-jx6h-6wm8-5q45 |
7.5 (3.1)
|
Insertion of Sensitive Information Into Sent Data vulnerability in WP Chill Passster content-protec… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-jwqw-35vc-8x2r |
7.5 (3.1)
|
Missing Authorization vulnerability in ThimPress LearnPress learnpress allows Exploiting Incorrectl… | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-hghr-9h74-29qx |
6.5 (3.1)
|
Missing Authorization vulnerability in Mahmudul Hasan Arif WP Social Ninja wp-social-reviews allows… | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-h52q-675m-rq36 |
7.5 (3.1)
|
Missing Authorization vulnerability in CridioStudio ListingPro listingpro allows Exploiting Incorre… | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-h2rj-px8j-567v |
7.5 (3.1)
|
Missing Authorization vulnerability in StylemixThemes MasterStudy LMS Pro masterstudy-lms-learning-… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-g6hf-85r7-3mpx |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-fc3q-wv5m-7rxx |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-f8gr-377p-fqrf |
6.5 (3.1)
|
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in masteri… | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-cvfv-fcrr-4w22 |
7.5 (3.1)
|
Insertion of Sensitive Information Into Sent Data vulnerability in StylemixThemes MasterStudy LMS P… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-cr7v-vx2r-rr66 |
6.5 (3.1)
|
Insertion of Sensitive Information Into Sent Data vulnerability in Syed Balkhi All In One SEO Pack … | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-cqwx-j629-783w |
6.5 (3.1)
|
Missing Authorization vulnerability in InstaWP InstaWP Connect instawp-connect allows Exploiting In… | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-cc2c-m325-gwh6 |
6.5 (3.1)
|
Missing Authorization vulnerability in CridioStudio ListingPro listingpro allows Exploiting Incorre… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-c958-3983-v9mj |
7.5 (3.1)
|
Missing Authorization vulnerability in Property Hive PropertyHive propertyhive allows Exploiting In… | 2025-12-18T09:30:30Z | 2026-01-20T15:32:31Z |
| ghsa-c866-rqmw-mvmh |
7.5 (3.1)
|
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in wpweb F… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-8rv3-8wpv-wmp2 |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-8qhj-5m76-2hx4 |
7.5 (3.1)
|
Missing Authorization vulnerability in StylemixThemes Masterstudy masterstudy allows Accessing Func… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ghsa-8mg4-fgcp-95f7 |
7.5 (3.1)
|
Missing Authorization vulnerability in Arraytics Timetics timetics allows Exploiting Incorrectly Co… | 2025-12-18T09:30:29Z | 2026-01-20T15:32:31Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-3094 | Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0… | 2024-04-03T05:02:29.955063Z |
| gsd-2024-3148 | A vulnerability, which was classified as critical, has been found in DedeCMS 5.7.112. Thi… | 2024-04-03T05:02:29.954149Z |
| gsd-2024-3128 | ** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which w… | 2024-04-03T05:02:29.953309Z |
| gsd-2024-3064 | The Elementor Addons, Widgets and Enhancements – Stax plugin for WordPress is vulnerable … | 2024-04-03T05:02:29.953026Z |
| gsd-2024-3101 | In mintplex-labs/anything-llm, an improper input validation vulnerability allows attacker… | 2024-04-03T05:02:29.952819Z |
| gsd-2024-3138 | ** DISPUTED ** ** DISPUTED ** A vulnerability was found in francoisjacquet RosarioSIS 11.… | 2024-04-03T05:02:29.952133Z |
| gsd-2024-3060 | The ENL Newsletter WordPress plugin through 1.0.1 does not sanitize and escape a paramete… | 2024-04-03T05:02:29.951841Z |
| gsd-2024-3030 | The Announce from the Dashboard plugin for WordPress is vulnerable to Stored Cross-Site S… | 2024-04-03T05:02:29.951644Z |
| gsd-2024-3246 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.951444Z |
| gsd-2024-3123 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.951246Z |
| gsd-2024-3234 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.951049Z |
| gsd-2024-3036 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.950791Z |
| gsd-2024-3171 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.950584Z |
| gsd-2024-3206 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.950380Z |
| gsd-2024-3133 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.950179Z |
| gsd-2024-3102 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.949971Z |
| gsd-2024-3034 | The BackUpWordPress plugin for WordPress is vulnerable to Directory Traversal in all vers… | 2024-04-03T05:02:29.949757Z |
| gsd-2024-3015 | A vulnerability classified as critical was found in SourceCodester Simple Subscription We… | 2024-04-03T05:02:29.949072Z |
| gsd-2024-3116 | pgAdmin <= 8.4 is affected by a Remote Code Execution (RCE) vulnerability through the va… | 2024-04-03T05:02:29.948684Z |
| gsd-2024-3075 | The MM-email2image WordPress plugin through 0.2.5 does not validate and escape some of it… | 2024-04-03T05:02:29.948474Z |
| gsd-2024-3000 | A vulnerability classified as critical was found in code-projects Online Book System 1.0.… | 2024-04-03T05:02:29.947812Z |
| gsd-2024-3129 | A vulnerability was found in SourceCodester Image Accordion Gallery App 1.0. It has been … | 2024-04-03T05:02:29.947041Z |
| gsd-2024-3013 | A vulnerability was found in FLIR AX8 up to 1.46.16. It has been rated as critical. This … | 2024-04-03T05:02:29.946069Z |
| gsd-2024-3009 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.945463Z |
| gsd-2024-3014 | A vulnerability classified as critical has been found in SourceCodester Simple Subscripti… | 2024-04-03T05:02:29.944738Z |
| gsd-2024-3007 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.944153Z |
| gsd-2024-3117 | A vulnerability classified as critical was found in YouDianCMS up to 9.5.12. This vulnera… | 2024-04-03T05:02:29.943316Z |
| gsd-2024-3048 | The Bannerlid WordPress plugin through 1.1.0 does not escape generated URLs before output… | 2024-04-03T05:02:29.942986Z |
| gsd-2024-3135 | The web server lacked CSRF tokens allowing an attacker to host malicious JavaScript on a … | 2024-04-03T05:02:29.942412Z |
| gsd-2024-3106 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.942124Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-48926 | Malicious code in four-sdk-aes-ipheriv (npm) | 2025-10-28T02:17:36Z | 2025-12-02T09:12:14Z |
| mal-2025-48924 | Malicious code in energy-portal (npm) | 2025-10-28T02:04:25Z | 2025-12-02T09:12:14Z |
| mal-2025-48521 | Malicious code in hari-zzz (npm) | 2025-10-20T03:33:37Z | 2025-12-02T09:12:14Z |
| mal-2025-48459 | Malicious code in iwf-ant-design-draggable-modal (npm) | 2025-10-18T14:03:26Z | 2025-12-02T09:12:14Z |
| mal-2025-48400 | Malicious code in graphorbit (npm) | 2025-10-13T20:41:37Z | 2025-12-02T09:12:14Z |
| mal-2025-48324 | Malicious code in internallib_v125 (npm) | 2025-10-13T02:56:39Z | 2025-12-02T09:12:14Z |
| mal-2025-48323 | Malicious code in eslint-config-jest (npm) | 2025-10-13T03:10:31Z | 2025-12-02T09:12:14Z |
| mal-2025-48292 | Malicious code in flight-suit (npm) | 2025-10-06T21:19:23Z | 2025-12-02T09:12:14Z |
| mal-2025-48291 | Malicious code in eslint-js-config (npm) | 2025-10-10T03:38:41Z | 2025-12-02T09:12:14Z |
| mal-2025-48283 | Malicious code in internal-checkout-bricks (npm) | 2025-10-10T02:24:21Z | 2025-12-02T09:12:14Z |
| mal-2025-48282 | Malicious code in frontend-prevent-open-redirect (npm) | 2025-10-10T02:24:21Z | 2025-12-02T09:12:14Z |
| mal-2025-48281 | Malicious code in frontend-photoswipe (npm) | 2025-10-10T02:24:21Z | 2025-12-02T09:12:14Z |
| mal-2025-48280 | Malicious code in frontend-metrics-collector-sdk (npm) | 2025-10-10T02:24:21Z | 2025-12-02T09:12:14Z |
| mal-2025-48279 | Malicious code in frontend-layout (npm) | 2025-10-10T02:24:21Z | 2025-12-02T09:12:14Z |
| mal-2025-48278 | Malicious code in frontend-google-tag-manager (npm) | 2025-10-10T02:24:21Z | 2025-12-02T09:12:14Z |
| mal-2025-47992 | Malicious code in incommincentives (npm) | 2025-10-07T04:27:51Z | 2025-12-02T09:12:14Z |
| mal-2025-47976 | Malicious code in eslint-plugin-consumerweb (npm) | 2025-10-07T04:11:14Z | 2025-12-02T09:12:14Z |
| mal-2025-47926 | Malicious code in gestion-usuarios (npm) | 2025-10-07T00:11:55Z | 2025-12-02T09:12:14Z |
| mal-2025-47924 | Malicious code in eslint-plugin-paysafe (npm) | 2025-10-07T00:11:55Z | 2025-12-02T09:12:14Z |
| mal-2025-47669 | Malicious code in express-xmlrequest (npm) | 2025-09-26T09:31:07Z | 2025-12-02T09:12:14Z |
| mal-2025-44144 | Malicious code in epxreso (npm) | 2025-09-05T16:38:20Z | 2025-12-02T09:12:14Z |
| mal-2025-41568 | Malicious code in func-logger (npm) | 2025-08-28T07:29:18Z | 2025-12-02T09:12:14Z |
| mal-2025-41562 | Malicious code in financial-utils (npm) | 2025-08-28T07:28:41Z | 2025-12-02T09:12:14Z |
| mal-2025-41558 | Malicious code in ethrs.js (npm) | 2025-08-28T07:27:59Z | 2025-12-02T09:12:14Z |
| mal-2025-41556 | Malicious code in eslint-validation-cli (npm) | 2025-08-28T07:27:42Z | 2025-12-02T09:12:14Z |
| mal-2025-41555 | Malicious code in eslint-ts-view (npm) | 2025-08-28T07:27:41Z | 2025-12-02T09:12:14Z |
| mal-2025-19891 | Malicious code in etherres (npm) | 2025-08-14T18:52:04Z | 2025-12-02T09:12:14Z |
| mal-2025-19796 | Malicious code in error-loggerjs (npm) | 2025-08-14T18:52:04Z | 2025-12-02T09:12:14Z |
| mal-2025-19729 | Malicious code in epxresso (npm) | 2025-08-14T18:52:04Z | 2025-12-02T09:12:14Z |
| mal-2025-1826 | Malicious code in google-payment (npm) | 2025-03-03T13:27:37Z | 2025-12-02T09:12:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-0637 | Hitachi Energy RTU500: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-03-25T23:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2025-0636 | IBM SPSS Statistics: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-03-25T23:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2025-0634 | VMware Tools: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-03-25T23:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2025-0450 | Red Hat OpenShift Service Mesh Containers: Schwachstelle ermöglicht Cross-Site Scripting | 2025-02-26T23:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2025-0231 | MELDUNG ZURÜCKGEZOGEN | 2025-01-30T23:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2025-0091 | Microsoft Windows: Mehrere Schwachstellen | 2025-01-14T23:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2024-3712 | Trend Micro Apex One: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2024-12-16T23:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2024-1812 | Red Hat Enterprise Linux (389-ds-base ldap server): Schwachstelle ermöglicht Denial of Service | 2024-08-11T22:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2024-0954 | FreeRDP: Mehrere Schwachstellen | 2024-04-23T22:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2024-0905 | FreeRDP: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-04-16T22:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2024-0426 | Python: Mehrere Schwachstellen ermöglichen Denial of Service | 2016-09-15T22:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2022-2036 | Varnish HTTP Cache: Mehrere Schwachstellen ermöglichen Manipulation von Dateien | 2022-11-08T23:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2022-0865 | Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation | 2022-07-31T22:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2022-0841 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2022-07-26T22:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2022-0734 | Linux Kernel: Mehrere Schwachstellen ermöglichen Codeausführung | 2022-07-19T22:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2025-0631 | Octopus Deploy: Schwachstelle ermöglicht Manipulation von Dateien | 2025-03-24T23:00:00.000+00:00 | 2025-03-24T23:00:00.000+00:00 |
| wid-sec-w-2025-0624 | Microsoft Edge: Mehrere Schwachstellen | 2025-03-23T23:00:00.000+00:00 | 2025-03-24T23:00:00.000+00:00 |
| wid-sec-w-2024-1724 | Apple iOS und iPadOS: Mehrere Schwachstellen | 2024-07-29T22:00:00.000+00:00 | 2025-03-24T23:00:00.000+00:00 |
| wid-sec-w-2025-0623 | PyTorch: Mehrere Schwachstellen | 2025-03-23T23:00:00.000+00:00 | 2025-03-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0621 | Mattermost: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-03-23T23:00:00.000+00:00 | 2025-03-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0523 | hostapd (RADIUS): Schwachstelle ermöglicht Denial of Service | 2025-03-11T23:00:00.000+00:00 | 2025-03-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0202 | D-LINK DSL-3788 Router: Schwachstelle ermöglicht Codeausführung | 2025-01-27T23:00:00.000+00:00 | 2025-03-23T23:00:00.000+00:00 |
| wid-sec-w-2024-0036 | Microsoft Windows und Microsoft Windows Server: Mehrere Schwachstellen | 2024-01-09T23:00:00.000+00:00 | 2025-03-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0620 | libxml2: Schwachstelle ermöglicht Denial of Service | 2014-05-06T22:00:00.000+00:00 | 2025-03-20T23:00:00.000+00:00 |
| wid-sec-w-2025-0619 | libxml2: Schwachstelle ermöglicht Denial of Service | 2015-07-21T22:00:00.000+00:00 | 2025-03-20T23:00:00.000+00:00 |
| wid-sec-w-2025-0618 | libxml2: Schwachstelle ermöglicht Denial of Service | 2015-10-21T22:00:00.000+00:00 | 2025-03-20T23:00:00.000+00:00 |
| wid-sec-w-2025-0617 | libxml2: Schwachstelle ermöglicht Denial of Service | 2015-11-02T23:00:00.000+00:00 | 2025-03-20T23:00:00.000+00:00 |
| wid-sec-w-2025-0616 | libxml2: Schwachstelle ermöglicht Denial of Service | 2020-01-27T23:00:00.000+00:00 | 2025-03-20T23:00:00.000+00:00 |
| wid-sec-w-2025-0614 | Synology Replication Service: Schwachstelle ermöglicht Codeausführung | 2025-03-20T23:00:00.000+00:00 | 2025-03-20T23:00:00.000+00:00 |
| wid-sec-w-2025-0612 | IBM Security Guardium: Mehrere Schwachstellen | 2025-03-20T23:00:00.000+00:00 | 2025-03-20T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2013:0209 | Red Hat Security Advisory: openstack-glance security update | 2013-01-30T21:00:00+00:00 | 2026-01-28T22:34:40+00:00 |
| rhsa-2013:0208 | Red Hat Security Advisory: openstack-nova security and bug fix update | 2013-01-30T20:59:00+00:00 | 2026-01-28T22:34:39+00:00 |
| rhsa-2012:1594 | Red Hat Security Advisory: JBoss Enterprise Application Platform 6.0.1 update | 2012-12-18T22:43:00+00:00 | 2026-01-28T22:34:39+00:00 |
| rhsa-2012:1558 | Red Hat Security Advisory: openstack-glance security update | 2012-12-10T20:57:00+00:00 | 2026-01-28T22:34:39+00:00 |
| rhsa-2012:1557 | Red Hat Security Advisory: openstack-keystone security, bug fix, and enhancement update | 2012-12-10T20:55:00+00:00 | 2026-01-28T22:34:39+00:00 |
| rhsa-2012:1556 | Red Hat Security Advisory: openstack-keystone security, bug fix, and enhancement update | 2012-12-10T20:54:00+00:00 | 2026-01-28T22:34:38+00:00 |
| rhsa-2012:1539 | Red Hat Security Advisory: Red Hat Network Proxy server jabberd security update | 2012-12-04T18:56:00+00:00 | 2026-01-28T22:34:38+00:00 |
| rhsa-2012:1538 | Red Hat Security Advisory: Red Hat Network Satellite server jabberd security update | 2012-12-04T18:55:00+00:00 | 2026-01-28T22:34:37+00:00 |
| rhsa-2012:1537 | Red Hat Security Advisory: jasperreports-server-pro security and bug fix update | 2012-12-04T18:59:00+00:00 | 2026-01-28T22:34:37+00:00 |
| rhsa-2012:1379 | Red Hat Security Advisory: openstack-swift security update | 2012-10-16T17:44:00+00:00 | 2026-01-28T22:34:37+00:00 |
| rhsa-2012:1308 | Red Hat Security Advisory: openssl security update | 2012-09-24T15:55:00+00:00 | 2026-01-28T22:34:36+00:00 |
| rhsa-2012:1307 | Red Hat Security Advisory: openssl security update | 2012-09-24T15:53:00+00:00 | 2026-01-28T22:34:36+00:00 |
| rhsa-2012:1306 | Red Hat Security Advisory: openssl security update | 2012-09-24T15:52:00+00:00 | 2026-01-28T22:34:36+00:00 |
| rhsa-2012:1232 | Red Hat Security Advisory: JBoss Enterprise Portal Platform 5.2.2 update | 2012-09-05T16:26:00+00:00 | 2026-01-28T22:34:36+00:00 |
| rhsa-2012:1060 | Red Hat Security Advisory: cobbler security update | 2012-07-09T16:34:00+00:00 | 2026-01-28T22:34:35+00:00 |
| rhsa-2012:0731 | Red Hat Security Advisory: expat security update | 2012-06-13T13:56:00+00:00 | 2026-01-28T22:34:35+00:00 |
| rhsa-2012:0725 | Red Hat Security Advisory: JBoss Operations Network 3.1.0 update | 2012-06-12T23:19:00+00:00 | 2026-01-28T22:34:35+00:00 |
| rhsa-2012:0682 | Red Hat Security Advisory: tomcat6 security and bug fix update | 2012-05-21T16:42:00+00:00 | 2026-01-28T22:34:34+00:00 |
| rhsa-2012:0681 | Red Hat Security Advisory: tomcat6 security and bug fix update | 2012-05-21T16:32:00+00:00 | 2026-01-28T22:34:34+00:00 |
| rhsa-2012:0680 | Red Hat Security Advisory: tomcat5 security and bug fix update | 2012-05-21T16:28:00+00:00 | 2026-01-28T22:34:33+00:00 |
| rhsa-2012:0679 | Red Hat Security Advisory: tomcat5 security and bug fix update | 2012-05-21T16:19:00+00:00 | 2026-01-28T22:34:33+00:00 |
| rhsa-2012:0570 | Red Hat Security Advisory: php security update | 2012-05-11T17:34:00+00:00 | 2026-01-28T22:34:33+00:00 |
| rhsa-2012:0569 | Red Hat Security Advisory: php53 security update | 2012-05-10T15:17:00+00:00 | 2026-01-28T22:34:32+00:00 |
| rhsa-2012:0568 | Red Hat Security Advisory: php security update | 2012-05-10T15:29:00+00:00 | 2026-01-28T22:34:32+00:00 |
| rhsa-2012:0547 | Red Hat Security Advisory: php53 security update | 2012-05-07T18:23:00+00:00 | 2026-01-28T22:34:31+00:00 |
| rhsa-2012:0546 | Red Hat Security Advisory: php security update | 2012-05-07T18:28:00+00:00 | 2026-01-28T22:34:31+00:00 |
| rhsa-2012:0543 | Red Hat Security Advisory: httpd security and bug fix update | 2012-05-07T18:16:00+00:00 | 2026-01-28T22:34:30+00:00 |
| rhsa-2012:0542 | Red Hat Security Advisory: httpd security and bug fix update | 2012-05-07T18:13:00+00:00 | 2026-01-28T22:34:30+00:00 |
| rhsa-2012:0522 | Red Hat Security Advisory: openssl security update | 2012-04-25T12:39:00+00:00 | 2026-01-28T22:34:30+00:00 |
| rhsa-2012:0518 | Red Hat Security Advisory: openssl security update | 2012-04-24T19:53:00+00:00 | 2026-01-28T22:34:30+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-30715 | Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30705 | Vulnerability in the MySQL Server product of Oracle MySQL | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30704 | Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30703 | Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30699 | Vulnerability in the MySQL Server product of Oracle MySQL | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30696 | Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30695 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30693 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30689 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30688 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30687 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30685 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30684 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30683 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30682 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-30681 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 2.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-21585 | Vulnerability in the MySQL Server product of Oracle MySQL | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-21584 | Vulnerability in the MySQL Server product of Oracle MySQL | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-21581 | Vulnerability in the MySQL Server product of Oracle MySQL | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-21580 | Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-21579 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-21577 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB) | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-21575 | Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-21574 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2025-04-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2025-21490 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2025-01-02T00:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20985 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20981 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20977 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20973 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20971 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202401-0372 | A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130. It has been rated a… | 2025-08-10T23:27:57.688000Z |
| var-202404-3358 | In TOTOLINK EX200 V4.0.3c.7314_B20191204, an attacker can obtain the configuration file w… | 2025-08-10T23:27:57.128000Z |
| var-202404-2870 | TOTOLINK EX200 V4.0.3c.7646_B20201211 allows attackers to bypass login through the Form_L… | 2025-08-10T23:26:13.408000Z |
| var-202308-2939 | TOTOLINK X5000R_V9.1.0cu.2089_B20211224 and X5000R_V9.1.0cu.2350_B20230313 were discovere… | 2025-08-10T23:25:38.112000Z |
| var-202404-2850 | TOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a remote code execution (… | 2025-08-10T23:24:15.420000Z |
| var-202404-2871 | In TOTOLINK EX200 V4.0.3c.7646_B20201211, an attacker can obtain sensitive information wi… | 2025-08-10T23:24:15.399000Z |
| var-202312-2012 | TOTOLINK A3002RU version 2.0.0-B20190902.1958 has a post-authentication RCE due to incorr… | 2025-08-10T23:23:08.095000Z |
| var-202312-0942 | TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command … | 2025-08-10T23:20:39.263000Z |
| var-202312-1777 | TOTOLINK EX1800T V9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command … | 2025-08-10T23:16:26.366000Z |
| var-202406-2600 | TRENDnet TEW-814DAP v1_(FW1.01B01) was discovered to contain a stack overflow vulnerabili… | 2025-08-10T23:16:25.004000Z |
| var-202507-1786 | Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password hash in the /etc/pas… | 2025-08-10T23:16:22.643000Z |
| var-202306-2270 | NETGEAR Multiple Routers curl_post Improper Certificate Validation Remote Code Execution … | 2025-08-10T23:12:14.805000Z |
| var-202401-0052 | A vulnerability has been found in Totolink LR1200GB 9.1.0u.6619_B20230130 and classified … | 2025-08-10T23:12:13.370000Z |
| var-202507-2548 | In Netgear RAX30 V1.0.10.94, a PHP-FPM misconfiguration vulnerability is caused by not fo… | 2025-08-10T23:12:09.495000Z |
| var-200110-0400 | 2025-08-10T22:55:07.092000Z | |
| var-202507-2555 | A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Af… | 2025-08-09T23:19:48.403000Z |
| var-202211-1627 | TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via … | 2025-08-09T23:19:31.409000Z |
| var-202303-1251 | TP-Link Archer AX21 tdpServer Logging Stack-based Buffer Overflow Remote Code Execution V… | 2025-08-09T23:19:30.937000Z |
| var-202506-1128 | A vulnerability was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615/4.0.0-B2023… | 2025-08-09T23:19:26.840000Z |
| var-202507-0534 | A vulnerability was found in TOTOLINK T6 4.1.5cu.748. It has been rated as critical. This… | 2025-08-09T23:19:26.684000Z |
| var-202507-0681 | A vulnerability classified as critical was found in TOTOLINK T6 4.1.5cu.748. Affected by … | 2025-08-09T23:19:26.655000Z |
| var-202304-1960 | TP-Link AX1800 hotplugd Firewall Rule Race Condition Vulnerability. This vulnerability al… | 2025-08-09T23:19:05.648000Z |
| var-202506-1056 | A vulnerability was found in TOTOLINK N300RH 6.1c.1390_B20191101. It has been classified … | 2025-08-09T23:19:01.833000Z |
| var-202209-1118 | In TOTOLINK T6 V4.1.5cu.709_B20210518, there is an execute arbitrary command in cstecgi.c… | 2025-08-09T23:18:43.915000Z |
| var-202405-4083 | TOTOLINK LR350 V9.3.5u.6698_B20230810 was discovered to contain a stack overflow via the … | 2025-08-09T23:18:40.896000Z |
| var-202507-0410 | A vulnerability has been found in TOTOLINK T6 4.1.5cu.748_B20211015 and classified as cri… | 2025-08-09T23:18:35.055000Z |
| var-202209-1165 | TOTOLINK T6 V4.1.5cu.709_B20210518 is vulnerable to command injection via cstecgi.cgi. TO… | 2025-08-09T23:17:52.066000Z |
| var-202404-1866 | A vulnerability in the web-based management interface of Cisco Small Business RV016, RV04… | 2025-08-09T23:15:59.167000Z |
| var-202303-2602 | TP-Link AX1800 Firmware Parsing Stack-based Buffer Overflow Remote Code Execution Vulnera… | 2025-08-09T23:13:46.225000Z |
| var-202405-0178 | D-Link DIR-2150 GetDeviceSettings Target Command Injection Remote Code Execution Vulnerab… | 2025-08-09T23:13:43.881000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2024:4029-1 | Security update for SUSE Manager Salt Bundle | 2024-11-18T13:29:50Z | 2024-11-18T13:29:50Z |
| suse-su-2024:4021-1 | Security update for SUSE Manager Salt Bundle | 2024-11-18T13:25:44Z | 2024-11-18T13:25:44Z |
| suse-su-2024:4020-1 | Security update for SUSE Manager Salt Bundle | 2024-11-18T13:25:06Z | 2024-11-18T13:25:06Z |
| suse-su-2024:4019-1 | Security update for SUSE Manager Client Tools | 2024-11-18T13:24:46Z | 2024-11-18T13:24:46Z |
| suse-su-2024:4011-1 | Security update for SUSE Manager Client Tools | 2024-11-18T13:23:16Z | 2024-11-18T13:23:16Z |
| suse-su-2024:4010-1 | Security update for SUSE Manager Client Tools | 2024-11-18T13:22:17Z | 2024-11-18T13:22:17Z |
| suse-su-2024:4009-1 | Security update for SUSE Manager Server 5.0 | 2024-11-18T13:21:54Z | 2024-11-18T13:21:54Z |
| suse-ru-2024:4008-1 | Security update for SUSE Manager Server 5.0 | 2024-11-18T13:20:34Z | 2024-11-18T13:20:34Z |
| suse-su-2024:4007-1 | Security update for SUSE Manager Server 4.3 | 2024-11-18T13:20:15Z | 2024-11-18T13:20:15Z |
| suse-su-2024:4006-1 | Security update for SUSE Manager Server 4.3 | 2024-11-18T13:19:53Z | 2024-11-18T13:19:53Z |
| suse-su-2024:3999-1 | Security update for apache2 | 2024-11-15T13:34:54Z | 2024-11-15T13:34:54Z |
| suse-su-2024:3998-1 | Security update for glib2 | 2024-11-15T09:12:02Z | 2024-11-15T09:12:02Z |
| suse-su-2024:3997-1 | Security update for python3-wxPython | 2024-11-15T08:36:30Z | 2024-11-15T08:36:30Z |
| suse-su-2024:3995-1 | Security update for ucode-intel | 2024-11-15T08:27:00Z | 2024-11-15T08:27:00Z |
| suse-su-2024:3988-1 | Security update for buildah | 2024-11-14T10:13:27Z | 2024-11-14T10:13:27Z |
| suse-su-2024:3987-1 | Security update for java-1_8_0-openjdk | 2024-11-13T14:56:28Z | 2024-11-13T14:56:28Z |
| suse-su-2024:3986-1 | Security update for the Linux Kernel | 2024-11-13T10:13:55Z | 2024-11-13T10:13:55Z |
| suse-su-2024:3985-1 | Security update for the Linux Kernel | 2024-11-13T10:13:36Z | 2024-11-13T10:13:36Z |
| suse-su-2024:3984-1 | Security update for the Linux Kernel | 2024-11-13T10:13:12Z | 2024-11-13T10:13:12Z |
| suse-su-2024:3983-1 | Security update for the Linux Kernel | 2024-11-13T10:12:30Z | 2024-11-13T10:12:30Z |
| suse-su-2024:3980-1 | Security update for xen | 2024-11-12T16:14:09Z | 2024-11-12T16:14:09Z |
| suse-su-2024:3979-1 | Security update for xen | 2024-11-12T16:13:52Z | 2024-11-12T16:13:52Z |
| suse-su-2024:3977-1 | Security update for xen | 2024-11-12T12:19:02Z | 2024-11-12T12:19:02Z |
| suse-su-2024:3976-1 | Security update for pcp | 2024-11-12T07:12:36Z | 2024-11-12T07:12:36Z |
| suse-ru-2024:3971-1 | Recommended update for mojo-parent | 2024-11-11T09:29:10Z | 2024-11-11T09:29:10Z |
| suse-su-2024:3968-1 | Security update for expat | 2024-11-11T08:57:56Z | 2024-11-11T08:57:56Z |
| suse-su-2024:3966-1 | Security update for expat | 2024-11-11T08:34:17Z | 2024-11-11T08:34:17Z |
| suse-su-2024:3964-1 | Security update for python-wxPython | 2024-11-09T16:39:53Z | 2024-11-09T16:39:53Z |
| suse-su-2024:3963-1 | Security update for java-17-openjdk | 2024-11-09T16:39:18Z | 2024-11-09T16:39:18Z |
| suse-su-2024:3962-1 | Security update for apache2 | 2024-11-09T16:38:24Z | 2024-11-09T16:38:24Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:12358-1 | MozillaThunderbird-102.3.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12357-1 | unzip-6.00-40.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12356-1 | bind-9.18.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12355-1 | tensorflow-lite-2.10.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12354-1 | gajim-1.5.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12353-1 | colord-1.4.6-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12352-1 | gvim-9.0.0500-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12351-1 | tinyproxy-1.11.1-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12350-1 | python310-mistune-2.0.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12349-1 | corepack18-18.9.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12348-1 | bluez-5.65-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12347-1 | libsqlite3-0-3.39.3-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12346-1 | python310-waitress-2.1.2-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12345-1 | helm-3.9.4-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12344-1 | cargo1.63-1.63.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12343-1 | cargo1.62-1.62.1-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12342-1 | python39-3.9.14-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12341-1 | python38-3.8.14-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12340-1 | python310-3.10.7-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12339-1 | python310-oauthlib-3.2.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12338-1 | jasper-3.0.6-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12337-1 | gvim-9.0.0453-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12336-1 | python311-3.11.0rc2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12335-1 | chkstat-1599_20220912-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12334-1 | nodejs-electron-19.0.17-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12333-1 | chromedriver-105.0.5195.127-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12332-1 | ffmpeg-5-5.1.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12331-1 | cosign-1.12.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12330-1 | cherrytree-0.99.49+3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12329-1 | libwireshark15-3.6.8-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-gitlab-2023-1708 | 2024-03-06T11:10:48.772Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-1621 | 2024-03-06T11:10:53.601Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-1417 | 2024-03-06T11:11:03.500Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-1265 | 2024-03-06T11:11:14.936Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-1204 | 2024-03-06T11:11:20.635Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-1178 | 2024-03-06T11:11:23.926Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-1167 | 2024-03-06T11:11:27.302Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-1098 | 2024-03-06T11:11:31.009Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-1084 | 2024-03-06T11:11:34.299Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-1072 | 2024-03-06T11:11:38.089Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-1071 | 2024-03-06T11:11:41.774Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0838 | 2024-03-06T11:11:53.397Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0805 | 2024-03-06T11:11:56.691Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0756 | 2024-03-06T11:12:00.210Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0523 | 2024-03-06T11:12:07.386Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0518 | 2024-03-06T11:12:10.572Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0485 | 2024-03-06T11:12:17.171Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0483 | 2024-03-06T11:12:20.496Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0450 | 2024-03-06T11:12:23.699Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0319 | 2024-03-06T11:12:27.103Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0223 | 2024-03-06T11:12:30.311Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0155 | 2024-03-06T11:12:33.597Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0050 | 2024-03-06T11:12:43.479Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0042 | 2024-03-06T11:12:46.968Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4462 | 2024-03-06T11:12:50.204Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4376 | 2024-03-06T11:12:53.601Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4365 | 2024-03-06T11:12:56.982Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4342 | 2024-03-06T11:13:03.284Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4335 | 2024-03-06T11:13:06.585Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4331 | 2024-03-06T11:13:09.480Z | 2025-04-03T14:40:37.652Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-22532 | Emergency Ambulance Hiring Portal forgot-password.php文件SQL注入漏洞 | 2024-04-03 | 2025-09-25 |
| cnvd-2025-22531 | Emergency Ambulance Hiring Portal ambulance-tracking.php文件SQL注入漏洞 | 2024-04-03 | 2025-09-25 |
| cnvd-2025-22530 | Emergency Ambulance Hiring Portal ambulance tracking Page组件跨站脚本漏洞 | 2024-04-03 | 2025-09-25 |
| cnvd-2025-22529 | Emergency Ambulance Hiring Portal add ambulance Page组件跨站脚本漏洞 | 2024-04-03 | 2025-09-25 |
| cnvd-2025-22528 | Emergency Ambulance Hiring Portal searchdata参数SQL注入漏洞 | 2025-03-12 | 2025-09-25 |
| cnvd-2025-22527 | Emergency Ambulance Hiring Portal pagedes参数SQL注入漏洞 | 2025-03-12 | 2025-09-25 |
| cnvd-2025-22525 | Emergency Ambulance Hiring Portal contactnumber参数SQL注入漏洞 | 2025-03-12 | 2025-09-25 |
| cnvd-2025-22524 | Emergency Ambulance Hiring Portal ambulanceregnum参数SQL注入漏洞 | 2025-03-12 | 2025-09-25 |
| cnvd-2025-22523 | Art Gallery Management System跨站脚本漏洞 | 2025-03-27 | 2025-09-25 |
| cnvd-2025-22522 | Art Gallery Management System view-enquiry-detail.php文件SQL注入漏洞 | 2025-03-27 | 2025-09-25 |
| cnvd-2025-22521 | Art Gallery Management System search.php文件SQL注入漏洞 | 2025-03-27 | 2025-09-25 |
| cnvd-2025-22520 | Art Gallery Management System edit-art-type-detail.php文件SQL注入漏洞 | 2025-03-27 | 2025-09-25 |
| cnvd-2025-22519 | Art Gallery Management System edit-art-product-detail.php文件SQL注入漏洞 | 2025-03-27 | 2025-09-25 |
| cnvd-2025-22518 | Directory Management System admin/edit-directory.php文件 SQL注入漏洞 | 2025-05-13 | 2025-09-25 |
| cnvd-2025-22517 | Emergency Ambulance Hiring Portal /admin/edit-ambulance.php文件SQL注入漏洞 | 2025-05-13 | 2025-09-25 |
| cnvd-2025-22516 | Directory Management System /admin/forget-password.php文件SQL注入漏洞 | 2025-05-20 | 2025-09-25 |
| cnvd-2025-22515 | Directory Management System /admin/edit-directory.php文件SQL注入漏洞 | 2025-05-20 | 2025-09-25 |
| cnvd-2025-22514 | Directory Management System /searchdata.php跨站脚本漏洞 | 2025-05-22 | 2025-09-25 |
| cnvd-2025-22513 | Emergency Ambulance Hiring Portal index.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22512 | Emergency Ambulance Hiring Portal bwdates-request-report-details.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22511 | Emergency Ambulance Hiring Portal add-ambulance.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22510 | Directory Management System search-directory.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22509 | Directory Management System searchdata.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22508 | Directory Management System manage-directory.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22507 | Directory Management System admin-profile.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22506 | Directory Management System跨站脚本漏洞 | 2025-09-02 | 2025-09-25 |
| cnvd-2025-22471 | Art Gallery Management System edit-artist-detail.php文件SQL注入漏洞 | 2025-03-27 | 2025-09-25 |
| cnvd-2025-22470 | Art Gallery Management System contactus.php文件SQL注入漏洞 | 2025-03-27 | 2025-09-25 |
| cnvd-2025-22469 | Art Gallery Management System art-enquiry.php文件SQL注入漏洞 | 2025-03-27 | 2025-09-25 |
| cnvd-2025-22468 | Art Gallery Management System admin-profile.php文件SQL注入漏洞 | 2025-03-27 | 2025-09-25 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-avi-664 | Multiples vulnérabilités dans Google ChromeOS | 2022-07-21T00:00:00.000000 | 2022-07-21T00:00:00.000000 |
| certfr-2022-avi-663 | Multiples vulnérabilités dans IBM QRadar | 2022-07-20T00:00:00.000000 | 2022-07-20T00:00:00.000000 |
| certfr-2022-avi-662 | Multiples vulnérabilités dans Google Chrome | 2022-07-20T00:00:00.000000 | 2022-07-20T00:00:00.000000 |
| certfr-2022-avi-661 | Multiples vulnérabilités dans Oracle Virtualization | 2022-07-20T00:00:00.000000 | 2022-07-20T00:00:00.000000 |
| certfr-2022-avi-660 | Multiples vulnérabilités dans Oracle Systems | 2022-07-20T00:00:00.000000 | 2022-07-20T00:00:00.000000 |
| certfr-2022-avi-659 | Multiples vulnérabilités dans Oracle WebLogic | 2022-07-20T00:00:00.000000 | 2022-07-20T00:00:00.000000 |
| certfr-2022-avi-658 | Multiples vulnérabilités dans Oracle PeopleSoft | 2022-07-20T00:00:00.000000 | 2022-07-20T00:00:00.000000 |
| certfr-2022-avi-657 | Multiples vulnérabilités dans Oracle E-Business Suite | 2022-07-20T00:00:00.000000 | 2022-07-20T00:00:00.000000 |
| certfr-2022-avi-656 | Multiples vulnérabilités dans Oracle Java SE | 2022-07-20T00:00:00.000000 | 2022-07-20T00:00:00.000000 |
| certfr-2022-avi-655 | Multiples vulnérabilités dans Oracle MySQL | 2022-07-20T00:00:00.000000 | 2022-07-20T00:00:00.000000 |
| certfr-2022-avi-654 | Multiples vulnérabilités dans Oracle Database Server | 2022-07-20T00:00:00.000000 | 2022-07-20T00:00:00.000000 |
| certfr-2022-avi-653 | Multiples vulnérabilités dans Moodle | 2022-07-18T00:00:00.000000 | 2022-07-18T00:00:00.000000 |
| certfr-2022-avi-652 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-07-18T00:00:00.000000 | 2022-07-18T00:00:00.000000 |
| certfr-2022-avi-651 | Vulnérabilité dans SonicWall Switch | 2022-07-18T00:00:00.000000 | 2022-07-18T00:00:00.000000 |
| certfr-2022-avi-650 | Multiples vulnérabilités dans les produits Juniper | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-649 | Multiples vulnérabilités dans Grafana | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-648 | Multiples vulnérabilités dans les produits SonicWall | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-647 | Vulnérabilité dans IBM Tivoli Netcool/OMNIbus | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-645 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-644 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-643 | Vulnérabilité dans le noyau Linux de Red Hat | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-642 | Vulnérabilité dans les produits F-Secure | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-641 | Multiples vulnérabilités dans Xen | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-640 | Multiples vulnérabilités dans les produits Citrix | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-639 | Vulnérabilité dans Ruby on Rails | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-638 | Multiples vulnérabilités dans les produits VMware | 2022-07-15T00:00:00.000000 | 2022-07-15T00:00:00.000000 |
| certfr-2022-avi-637 | Multiples vulnérabilités dans les produits AMD | 2022-07-13T00:00:00.000000 | 2022-07-13T00:00:00.000000 |
| certfr-2022-avi-636 | Multiples vulnérabilités dans les produits Intel | 2022-07-13T00:00:00.000000 | 2022-07-13T00:00:00.000000 |
| certfr-2022-avi-635 | Multiples vulnérabilités dans les produits Microsoft | 2022-07-13T00:00:00.000000 | 2022-07-13T00:00:00.000000 |
| certfr-2022-avi-634 | Multiples vulnérabilités dans Microsoft Azure | 2022-07-13T00:00:00.000000 | 2022-07-13T00:00:00.000000 |