Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-66093 |
6.5 (3.1)
|
WordPress Extensions for Leaflet Map plugin <= 4.8 - C… |
hupe13 |
Extensions for Leaflet Map |
2025-11-21T12:29:59.483Z | 2026-01-20T14:28:23.983Z |
| CVE-2025-66103 |
6.5 (3.1)
|
WordPress WPCal.io plugin <= 0.9.5.9 - Cross Site Scri… |
Revmakx |
WPCal.io |
2025-12-30T16:43:38.792Z | 2026-01-20T14:28:23.972Z |
| CVE-2025-66112 |
4.3 (3.1)
|
WordPress Accessibility Toolkit by WebYes plugin <= 2.… |
WebToffee |
Accessibility Toolkit by WebYes |
2025-11-21T12:30:05.704Z | 2026-01-20T14:28:23.971Z |
| CVE-2025-66096 |
4.3 (3.1)
|
WordPress Table Block by Tableberg plugin <= 0.6.9 - B… |
Imtiaz Rayhan |
Table Block by Tableberg |
2025-11-21T12:29:59.819Z | 2026-01-20T14:28:23.971Z |
| CVE-2025-66085 |
4.3 (3.1)
|
WordPress Arconix Shortcodes plugin <= 2.1.18 - Broken… |
tychesoftwares |
Arconix Shortcodes |
2025-11-21T12:29:58.133Z | 2026-01-20T14:28:23.965Z |
| CVE-2025-66110 |
5.3 (3.1)
|
WordPress Tiktok Feed plugin <= 1.0.22 - Broken Access… |
bPlugins |
Tiktok Feed |
2025-11-21T12:30:05.216Z | 2026-01-20T14:28:23.954Z |
| CVE-2025-66109 |
5.3 (3.1)
|
WordPress Cart Weight for WooCommerce plugin <= 1.9.11… |
octolize |
Cart Weight for WooCommerce |
2025-11-21T12:30:04.941Z | 2026-01-20T14:28:23.943Z |
| CVE-2025-66095 |
4.3 (3.1)
|
WordPress KiviCare plugin <= 3.6.13 - SQL Injection vu… |
Iqonic Design |
KiviCare |
2025-11-21T12:29:59.655Z | 2026-01-20T14:28:23.942Z |
| CVE-2025-66108 |
4.3 (3.1)
|
WordPress TNC Toolbox: Web Performance plugin <= 2.0.4… |
Merlot Digital (by TNC) |
TNC Toolbox: Web Performance |
2025-11-21T12:30:04.685Z | 2026-01-20T14:28:23.936Z |
| CVE-2025-66107 |
5.3 (3.1)
|
WordPress Subscriptions & Memberships for PayPal plugi… |
Scott Paterson |
Subscriptions & Memberships for PayPal |
2025-11-21T12:30:04.428Z | 2026-01-20T14:28:23.936Z |
| CVE-2025-66111 |
6.1 (3.1)
|
WordPress Nelio Popups plugin <= 1.3.0 - Cross Site Sc… |
Nelio Software |
Nelio Popups |
2025-11-21T12:30:05.445Z | 2026-01-20T14:28:23.931Z |
| CVE-2025-66106 |
4.3 (3.1)
|
WordPress Featured Post Creative plugin <= 1.5.5 - Bro… |
Essential Plugin |
Featured Post Creative |
2025-11-21T12:30:03.619Z | 2026-01-20T14:28:23.931Z |
| CVE-2025-66089 |
4.3 (3.1)
|
WordPress Product Feed for WooCommerce plugin <= 2.3.1… |
WebToffee |
Product Feed for WooCommerce |
2025-11-21T12:29:58.741Z | 2026-01-20T14:28:23.926Z |
| CVE-2025-66065 |
5.3 (3.1)
|
WordPress Gutenverse plugin <= 3.2.1 - Broken Access C… |
Jegstudio |
Gutenverse |
2025-11-21T12:29:55.513Z | 2026-01-20T14:28:23.901Z |
| CVE-2025-66081 |
5.4 (3.1)
|
WordPress Head Meta Data plugin <= 20250327 - Cross Si… |
Jeff Starr |
Head Meta Data |
2025-11-21T12:29:57.410Z | 2026-01-20T14:28:23.868Z |
| CVE-2025-66078 |
9.1 (3.1)
|
WordPress Hotel Booking Lite plugin <= 5.2.3 - Remote … |
jetmonsters |
Hotel Booking Lite |
2025-12-18T07:22:17.890Z | 2026-01-20T14:28:23.826Z |
| CVE-2025-66077 |
4.3 (3.1)
|
WordPress Legal Pages plugin <= 1.4.6 - Broken Access … |
wpWax |
Legal Pages |
2025-11-21T12:29:57.063Z | 2026-01-20T14:28:23.798Z |
| CVE-2025-66083 |
4.3 (3.1)
|
WordPress WpEvently plugin <= 5.0.4 - Broken Access Co… |
magepeopleteam |
WpEvently |
2025-11-21T12:29:57.750Z | 2026-01-20T14:28:23.721Z |
| CVE-2025-66068 |
6.5 (3.1)
|
WordPress InstaWP Connect plugin <= 0.1.1.9 - Broken A… |
InstaWP |
InstaWP Connect |
2025-12-18T07:22:17.312Z | 2026-01-20T14:28:23.688Z |
| CVE-2025-66086 |
5.3 (3.1)
|
WordPress SMS Alert Order Notifications plugin <= 3.8.… |
Cozy Vision |
SMS Alert Order Notifications |
2025-11-21T12:29:58.296Z | 2026-01-20T14:28:23.427Z |
| CVE-2025-66084 |
4.3 (3.1)
|
WordPress FluentCommunity plugin <= 2.0.0 - Broken Acc… |
Shahjahan Jewel |
FluentCommunity |
2025-11-21T12:29:57.920Z | 2026-01-20T14:28:23.392Z |
| CVE-2025-66057 |
6.3 (3.1)
|
WordPress Bold Page Builder plugin <= 5.5.2 - Cross Si… |
boldthemes |
Bold Page Builder |
2025-11-21T12:29:54.209Z | 2026-01-20T14:28:23.380Z |
| CVE-2025-66073 |
6.5 (3.1)
|
WordPress WP Webhooks plugin <= 3.3.8 - PHP Object Inj… |
Cozmoslabs |
WP Webhooks |
2025-11-21T12:29:56.667Z | 2026-01-20T14:28:23.347Z |
| CVE-2025-64638 |
5.3 (3.1)
|
WordPress OnPay.io for WooCommerce plugin <= 1.0.47 - … |
OnPay.io |
OnPay.io for WooCommerce |
2025-12-16T08:12:51.913Z | 2026-01-20T14:28:23.328Z |
| CVE-2025-66072 |
9.8 (3.1)
|
WordPress UsersWP plugin <= 1.2.47 - Broken Access Con… |
Stiofan |
UsersWP |
2025-11-21T12:29:56.382Z | 2026-01-20T14:28:23.321Z |
| CVE-2025-66059 |
5.3 (3.1)
|
WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-11-21T12:29:54.426Z | 2026-01-20T14:28:23.317Z |
| CVE-2025-66082 |
4.3 (3.1)
|
WordPress WpEvently plugin <= 5.0.4 - Broken Access Co… |
magepeopleteam |
WpEvently |
2025-11-21T12:29:57.578Z | 2026-01-20T14:28:23.316Z |
| CVE-2025-66056 |
4.3 (3.1)
|
WordPress Uncanny Automator plugin < 6.10.0 - Sensitiv… |
Uncanny Owl |
Uncanny Automator |
2025-11-21T12:29:54.000Z | 2026-01-20T14:28:23.283Z |
| CVE-2025-66062 |
3.7 (3.1)
|
WordPress WP YouTube Lyte plugin <= 1.7.28 - Open Redi… |
Frank Goossens |
WP YouTube Lyte |
2025-11-21T12:29:54.981Z | 2026-01-20T14:28:23.280Z |
| CVE-2025-66054 |
7.5 (3.1)
|
WordPress LearnPress plugin <= 4.2.9.4 - Broken Access… |
ThimPress |
LearnPress |
2025-12-18T07:22:17.129Z | 2026-01-20T14:28:23.253Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-1208 |
4.3 (3.1)
|
Friendly Functions for Welcart <= 1.2.5 - Cross-Site R… |
mainichiweb |
Friendly Functions for Welcart |
2026-01-24T09:08:07.475Z | 2026-01-26T17:41:14.150Z |
| CVE-2026-1191 |
4.4 (3.1)
|
JavaScript Notifier <= 1.2.8 - Authenticated (Administ… |
freemp |
JavaScript Notifier |
2026-01-24T09:08:07.887Z | 2026-01-26T17:40:10.418Z |
| CVE-2026-1189 |
6.4 (3.1)
|
LeadBI Plugin for WordPress <= 1.7 - Authenticated (Co… |
leadbi |
LeadBI Plugin for WordPress |
2026-01-24T09:08:06.833Z | 2026-01-26T17:41:49.672Z |
| CVE-2026-1127 |
6.1 (3.1)
|
Timeline Event History <= 3.2 - Reflected Cross-Site S… |
wpdiscover |
Timeline Event History |
2026-01-24T09:08:08.726Z | 2026-01-26T17:38:57.038Z |
| CVE-2026-1103 |
5.4 (3.1)
|
AIKTP <= 5.0.04 - Missing Authorization to Authenticat… |
aiktp |
AIKTP |
2026-01-24T07:26:44.703Z | 2026-01-26T18:19:14.889Z |
| CVE-2026-1099 |
6.4 (3.1)
|
Administrative Shortcodes <= 0.3.4 - Authenticated (Co… |
shazdeh |
Administrative Shortcodes |
2026-01-24T07:26:48.103Z | 2026-01-26T18:07:08.791Z |
| CVE-2026-1098 |
6.4 (3.1)
|
CM CSS Columns <= 1.2.1 - Authenticated (Contributor+)… |
codemacher |
CM CSS Columns |
2026-01-24T08:26:36.215Z | 2026-01-26T17:47:29.505Z |
| CVE-2026-1097 |
6.4 (3.1)
|
ThemeRuby Multi Authors <= 1.0.0 - Authenticated (Cont… |
themeruby |
ThemeRuby Multi Authors – Assign Multiple Writers to Posts |
2026-01-24T07:26:47.342Z | 2026-01-26T18:18:23.495Z |
| CVE-2026-1095 |
6.4 (3.1)
|
Canto Testimonials <= 1.0 - Authenticated (Contributor… |
cantothemes |
Canto Testimonials |
2026-01-24T07:26:43.567Z | 2026-01-26T15:45:04.535Z |
| CVE-2026-1088 |
4.3 (3.1)
|
Login Page Editor <= 1.2 - Cross-Site Request Forgery … |
zero1zerouk |
Login Page Editor |
2026-01-24T07:26:48.803Z | 2026-01-26T18:06:19.277Z |
| CVE-2026-1084 |
4.4 (3.1)
|
Cookie consent for developers <= 1.7.1 - Authenticated… |
lovor |
Cookie consent for developers |
2026-01-24T07:26:46.569Z | 2026-01-26T15:44:38.666Z |
| CVE-2026-1081 |
4.3 (3.1)
|
Set Bulk Post Categories <= 1.1 - Cross-Site Request F… |
sauravrox |
Set Bulk Post Categories |
2026-01-24T07:26:45.529Z | 2026-01-26T15:44:57.721Z |
| CVE-2026-1076 |
4.3 (3.1)
|
Star Review Manager <= 1.2.2 - Cross-Site Request Forg… |
bramdnl |
Star Review Manager |
2026-01-24T07:26:42.472Z | 2026-01-26T15:45:22.768Z |
| CVE-2026-1075 |
4.3 (3.1)
|
ZT Captcha <= 1.0.4 - Cross-Site Request Forgery to Se… |
teamzt |
ZT Captcha |
2026-01-24T07:26:45.884Z | 2026-01-26T15:44:51.869Z |
| CVE-2026-1070 |
4.3 (3.1)
|
Alex User Counter <= 6.0 - Cross-Site Request Forgery … |
adzbierajewski |
Alex User Counter |
2026-01-24T07:26:40.963Z | 2026-01-26T15:45:44.741Z |
| CVE-2026-0911 |
7.5 (3.1)
|
Hustle <= 7.8.9.2 - Authenticated (Subscriber+) Arbitr… |
wpmudev |
Hustle – Email Marketing, Lead Generation, Optins, Popups |
2026-01-24T12:27:15.063Z | 2026-01-26T15:44:15.167Z |
| CVE-2026-0862 |
6.1 (3.1)
|
Save as PDF Plugin by PDFCrowd <= 4.5.5 - Reflected Cr… |
pdfcrowd |
Save as PDF Plugin by PDFCrowd |
2026-01-24T15:34:06.548Z | 2026-01-26T15:38:22.497Z |
| CVE-2026-0807 |
7.2 (3.1)
|
Frontis Blocks <= 1.1.6 - Unauthenticated Server-Side … |
wpmessiah |
Frontis Blocks — Block Library for the Block Editor |
2026-01-24T07:26:41.330Z | 2026-01-26T15:45:39.333Z |
| CVE-2026-0806 |
4.9 (3.1)
|
WP-ClanWars <= 2.0.1 - Authenticated (Administrator+) … |
andddd |
WP-ClanWars |
2026-01-24T07:26:43.201Z | 2026-01-26T15:45:10.551Z |
| CVE-2026-0800 |
7.2 (3.1)
|
User Submitted Posts – Enable Users to Submit Posts fr… |
specialk |
User Submitted Posts – Enable Users to Submit Posts from the Front End |
2026-01-24T08:26:32.494Z | 2026-01-26T18:05:59.221Z |
| CVE-2026-0687 |
4.3 (3.1)
|
Meta-box GalleryMeta <= 3.0.1 - Missing Authorization … |
shahinurislam |
Meta-box GalleryMeta |
2026-01-24T08:26:34.512Z | 2026-01-26T18:01:57.710Z |
| CVE-2026-0633 |
3.7 (3.1)
|
MetForm – Contact Form, Survey, Quiz, & Custom Form Bu… |
roxnor |
MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor |
2026-01-24T08:26:35.777Z | 2026-01-26T17:47:55.740Z |
| CVE-2026-0593 |
5.3 (3.1)
|
WP Go Maps (formerly WP Google Maps) <= 10.0.04 - Miss… |
wpgmaps |
WP Go Maps (formerly WP Google Maps) |
2026-01-24T16:25:51.700Z | 2026-01-26T17:37:40.408Z |
| CVE-2025-70983 |
9.9 (3.1)
|
Incorrect access control in the authRoutes functi… |
n/a |
n/a |
2026-01-23T00:00:00.000Z | 2026-01-23T19:46:37.743Z |
| CVE-2025-6461 |
4.3 (3.1)
|
CubeWP – All-in-One Dynamic Content Framework <= 1.1.2… |
cubewp1211 |
CubeWP Framework |
2026-01-25T02:22:37.167Z | 2026-01-26T17:37:01.515Z |
| CVE-2025-59108 |
9.2 (4.0)
|
Weak Default Passwords in dormakaba access manager |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:06:31.533Z | 2026-01-26T15:38:06.530Z |
| CVE-2025-59107 |
8.5 (4.0)
|
Static Firmware Encryption Password in dormakaba acces… |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:06:22.025Z | 2026-01-26T15:38:11.839Z |
| CVE-2025-59105 |
7 (4.0)
|
Unencrypted Flash Storage in dormakaba access manager |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:06:02.727Z | 2026-01-26T14:52:15.466Z |
| CVE-2025-59104 |
7 (4.0)
|
Unlocked Bootloader in dormakaba access manager |
dormakaba |
Access Manager 92xx-k7 |
2026-01-26T10:05:54.218Z | 2026-01-26T15:12:47.211Z |
| CVE-2025-59103 |
9.2 (4.0)
|
Weak Default Passwords for SSH Access in dormakaba acc… |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:05:45.768Z | 2026-01-26T15:13:19.837Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-1208 | The Friendly Functions for Welcart plugin for WordPress is vulnerable to Cross-Site Request Forgery… | 2026-01-24T09:15:54.017 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1191 | The JavaScript Notifier plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugi… | 2026-01-24T09:15:53.847 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1189 | The LeadBI Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting v… | 2026-01-24T09:15:53.680 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1127 | The Timeline Event History plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via… | 2026-01-24T09:15:53.517 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1103 | The AIKTP plugin for WordPress is vulnerable to unauthorized modification of data due to missing au… | 2026-01-24T08:16:09.347 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1099 | The Administrative Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via… | 2026-01-24T08:16:09.177 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1098 | The CM CSS Columns plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tag' … | 2026-01-24T09:15:53.353 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1097 | The ThemeRuby Multi Authors – Assign Multiple Writers to Posts plugin for WordPress is vulnerable t… | 2026-01-24T08:16:09.003 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1095 | The Canto Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'f… | 2026-01-24T08:16:08.823 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1088 | The Login Page Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versi… | 2026-01-24T08:16:08.650 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1084 | The Cookie consent for developers plugin for WordPress is vulnerable to Stored Cross-Site Scripting… | 2026-01-24T08:16:08.487 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1081 | The Set Bulk Post Categories plugin for WordPress is vulnerable to Cross-Site Request Forgery in al… | 2026-01-24T08:16:08.313 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1076 | The Star Review Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all ver… | 2026-01-24T08:16:08.140 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1075 | The ZT Captcha plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up … | 2026-01-24T08:16:07.963 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1070 | The Alex User Counter plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versi… | 2026-01-24T08:16:07.780 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0911 | The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to… | 2026-01-24T13:15:55.300 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0862 | The Save as PDF Plugin by PDFCrowd plugin for WordPress is vulnerable to Reflected Cross-Site Scrip… | 2026-01-24T16:15:52.697 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0807 | The Frontis Blocks plugin for WordPress is vulnerable to Server-Side Request Forgery in all version… | 2026-01-24T08:16:07.580 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0806 | The WP-ClanWars plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter in … | 2026-01-24T08:16:07.400 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0800 | The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is … | 2026-01-24T09:15:53.190 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0687 | The Meta-box GalleryMeta plugin for WordPress is vulnerable to unauthorized modification of data du… | 2026-01-24T09:15:53.023 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0633 | The MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor plugin for WordPress … | 2026-01-24T09:15:52.843 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0593 | The WP Go Maps (formerly WP Google Maps) plugin for WordPress is vulnerable to unauthorized modific… | 2026-01-24T17:15:58.997 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-70983 | Incorrect access control in the authRoutes function of SpringBlade v4.5.0 allows attackers with low… | 2026-01-23T19:15:53.793 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-6461 | The CubeWP – All-in-One Dynamic Content Framework plugin for WordPress is vulnerable to Information… | 2026-01-25T03:15:51.287 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59108 | By default, the password for the Access Manager's web interface, is set to 'admin'. In the tested v… | 2026-01-26T10:16:08.763 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59107 | Dormakaba provides the software FWServiceTool to update the firmware version of the Access Managers… | 2026-01-26T10:16:08.633 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59105 | With physical access to the device and enough time an attacker can desolder the flash memory, modif… | 2026-01-26T10:16:08.383 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59104 | With physical access to the device and enough time an attacker is able to solder test leads to the … | 2026-01-26T10:16:08.247 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59103 | The Access Manager 92xx in hardware revision K7 is based on Linux instead of Windows CE embedded in… | 2026-01-26T10:16:08.117 | 2026-01-26T15:03:33.357 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-wrpg-rcg3-gqvp |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:24Z | 2026-01-20T15:32:18Z |
| ghsa-vjgm-gc5x-m8hp |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-v2rh-m6wf-pp65 |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-rg47-rm5j-49fx |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:24Z | 2026-01-20T15:32:18Z |
| ghsa-r9pw-6xfq-5jqf |
6.5 (3.1)
|
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in jetmons… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-r7rh-fj9w-v2f9 |
5.9 (3.1)
|
Insertion of Sensitive Information Into Sent Data vulnerability in e4jvikwp VikBooking Hotel Bookin… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-mr7g-crwh-57p5 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-j747-35f5-p69m |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-hqch-xp8p-9jmj |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Huger for Elementor huger-elementor allows Exploit… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-hmh9-g2h4-x75p |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-hg55-vr9x-wv56 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:24Z | 2026-01-20T15:32:18Z |
| ghsa-hf35-jqfj-m86h |
6.5 (3.1)
|
Missing Authorization vulnerability in The African Boss Get Cash get-cash allows Exploiting Incorre… | 2025-12-18T09:30:24Z | 2026-01-20T15:32:18Z |
| ghsa-h37g-f3vg-p35h |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-gr4f-jhgx-hjhx |
6.5 (3.1)
|
Missing Authorization vulnerability in A WP Life Login Page Customizer – Customizer Login Pag… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-gjrx-9m4x-8hq8 |
5.4 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Meks Meks Quick Plugin Disabler meks-quick-plugi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-f3vg-vfv2-qq64 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Buttoner for Elementor buttoner-elementor allows E… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-f293-cv38-h9p6 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-cq3q-ph38-mjwc |
6.5 (3.1)
|
Authorization Bypass Through User-Controlled Key vulnerability in codepeople Contact Form Email con… | 2025-12-18T09:30:24Z | 2026-01-20T15:32:18Z |
| ghsa-c8ph-2xvf-c9p9 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Modalier for Elementor modalier-elementor allows E… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-9jm6-f8vm-2h74 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-9c97-mqhv-6q84 |
8.5 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-18T09:30:24Z | 2026-01-20T15:32:18Z |
| ghsa-8r89-g342-fxcq |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-8j59-pxfw-664p |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-7jg4-8pc3-8qw9 |
7.2 (3.1)
|
Incorrect Privilege Assignment vulnerability in silverplugins217 Custom Fields Account Registration… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-76hm-28jx-qx25 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:24Z | 2026-01-20T15:32:18Z |
| ghsa-6qhr-c46w-3j7m |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-5xxr-4wwq-4pgv |
5.8 (3.1)
|
Insertion of Sensitive Information Into Sent Data vulnerability in WPCenter eRoom eroom-zoom-meetin… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-5gpr-xg7c-9pmr |
5.4 (3.1)
|
Missing Authorization vulnerability in Nitesh Ultimate Auction ultimate-auction allows Exploiting … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-59jr-84cf-6w82 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-59cj-f4jq-939m |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-30674 | Unauthorized access vulnerability in ROS2 Iron Irwini in ROS_VERSION is 2 and ROS_PYTHON_… | 2024-04-03T05:02:29.244318Z |
| gsd-2024-30329 | Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vul… | 2024-04-03T05:02:29.244123Z |
| gsd-2024-30476 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.243917Z |
| gsd-2024-30090 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.243713Z |
| gsd-2024-30153 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.243520Z |
| gsd-2024-30920 | Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows a remote attacker to… | 2024-04-03T05:02:29.243317Z |
| gsd-2024-30746 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.243104Z |
| gsd-2024-30177 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-03T05:02:29.242391Z |
| gsd-2024-30692 | A issue was discovered in ROS2 Galactic Geochelone versions ROS_VERSION 2 and ROS_PYTHON_… | 2024-04-03T05:02:29.242014Z |
| gsd-2024-30929 | Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute… | 2024-04-03T05:02:29.241814Z |
| gsd-2024-30777 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.241617Z |
| gsd-2024-30773 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.241412Z |
| gsd-2024-30533 | Unrestricted Upload of File with Dangerous Type vulnerability in Techeshta Layouts for El… | 2024-04-03T05:02:29.240819Z |
| gsd-2024-30442 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-03T05:02:29.240067Z |
| gsd-2024-30756 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.239686Z |
| gsd-2024-30398 | An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability … | 2024-04-03T05:02:29.239482Z |
| gsd-2024-30625 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the entrys parameter fro… | 2024-04-03T05:02:29.239092Z |
| gsd-2024-30492 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerabil… | 2024-04-03T05:02:29.238234Z |
| gsd-2024-30320 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.237943Z |
| gsd-2024-30878 | A cross-site scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers… | 2024-04-03T05:02:29.237728Z |
| gsd-2024-30938 | SQL Injection vulnerability in SEMCMS v.4.8 allows a remote attacker to obtain sensitive … | 2024-04-03T05:02:29.237518Z |
| gsd-2024-30105 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.237314Z |
| gsd-2024-30253 | @solana/web3.js is the Solana JavaScript SDK. Using particular inputs with `@solana/web3.… | 2024-04-03T05:02:29.237110Z |
| gsd-2024-30514 | Insertion of Sensitive Information into Log File vulnerability in Paid Memberships Pro Pa… | 2024-04-03T05:02:29.236477Z |
| gsd-2024-30648 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.236162Z |
| gsd-2024-30487 | Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & P… | 2024-04-03T05:02:29.235575Z |
| gsd-2024-30356 | Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This v… | 2024-04-03T05:02:29.234967Z |
| gsd-2024-30169 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.234623Z |
| gsd-2024-30210 | IO-1020 Micro ELD uses a default WIFI password that could allow an adjacent attacker to c… | 2024-04-03T05:02:29.234432Z |
| gsd-2024-30117 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.234234Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-191183 | Malicious code in @alexadark/gatsby-theme-wordpress-blog (npm) | 2025-11-25T00:13:09Z | 2025-12-01T04:28:26Z |
| mal-2025-191182 | Malicious code in @alexadark/gatsby-theme-events (npm) | 2025-11-25T00:12:54Z | 2025-12-01T04:28:26Z |
| mal-2025-191181 | Malicious code in @alexadark/amadeus-api (npm) | 2025-11-25T00:12:39Z | 2025-12-01T04:28:26Z |
| mal-2025-191180 | Malicious code in @afetcan/storage (npm) | 2025-11-25T00:16:49Z | 2025-12-01T04:28:26Z |
| mal-2025-191179 | Malicious code in @afetcan/api (npm) | 2025-11-25T00:16:49Z | 2025-12-01T04:28:26Z |
| mal-2025-191178 | Malicious code in @actbase/native (npm) | 2025-11-25T00:16:49Z | 2025-12-01T04:28:26Z |
| mal-2025-191177 | Malicious code in @accordproject/template-engine (npm) | 2025-11-25T00:11:49Z | 2025-12-01T04:28:26Z |
| mal-2025-191176 | Malicious code in @accordproject/markdown-it-cicero (npm) | 2025-11-25T00:11:14Z | 2025-12-01T04:28:26Z |
| mal-2025-191175 | Malicious code in @accordproject/concerto-types (npm) | 2025-11-25T00:10:43Z | 2025-12-01T04:28:26Z |
| mal-2025-191174 | Malicious code in @accordproject/concerto-metamodel (npm) | 2025-11-25T00:10:08Z | 2025-12-01T04:28:26Z |
| mal-2025-191173 | Malicious code in @accordproject/concerto-linter-default-ruleset (npm) | 2025-11-25T00:09:53Z | 2025-12-01T04:28:26Z |
| mal-2025-191172 | Malicious code in @accordproject/concerto-linter (npm) | 2025-11-25T00:09:38Z | 2025-12-01T04:28:26Z |
| mal-2025-191171 | Malicious code in @accordproject/concerto-analysis (npm) | 2025-11-25T00:09:23Z | 2025-12-01T04:28:26Z |
| mal-2025-191054 | Malicious code in @suraj_h/medium-common (npm) | 2025-11-24T23:00:38Z | 2025-12-01T04:28:26Z |
| mal-2025-191053 | Malicious code in @seezo/sdr-mcp-server (npm) | 2025-11-24T23:00:07Z | 2025-12-01T04:28:26Z |
| mal-2025-191052 | Malicious code in @relyt/mcp-server-relytone (npm) | 2025-11-24T22:59:36Z | 2025-12-01T04:28:26Z |
| mal-2025-191051 | Malicious code in @relyt/claude-context-mcp (npm) | 2025-11-24T22:59:03Z | 2025-12-01T04:28:26Z |
| mal-2025-191050 | Malicious code in @relyt/claude-context-core (npm) | 2025-11-24T22:58:31Z | 2025-12-01T04:28:26Z |
| mal-2025-191049 | Malicious code in @pruthvi21/use-debounce (npm) | 2025-11-24T22:57:59Z | 2025-12-01T04:28:26Z |
| mal-2025-191048 | Malicious code in @pradhumngautam/common-app (npm) | 2025-11-24T22:57:31Z | 2025-12-01T04:28:26Z |
| mal-2025-191047 | Malicious code in @osmanekrem/error-handler (npm) | 2025-11-24T22:57:11Z | 2025-12-01T04:28:26Z |
| mal-2025-191046 | Malicious code in @osmanekrem/bmad (npm) | 2025-11-24T22:56:23Z | 2025-12-01T04:28:26Z |
| mal-2025-191045 | Malicious code in @orbitgtbelgium/mapbox-gl-draw-cut-polygon-mode (npm) | 2025-11-24T22:54:45Z | 2025-12-01T04:28:26Z |
| mal-2025-191044 | Malicious code in @opentermsarchive/engine (npm) | 2025-11-24T23:19:53Z | 2025-12-01T04:28:26Z |
| mal-2025-191043 | Malicious code in @oku-ui/use-composable (npm) | 2025-11-24T23:18:47Z | 2025-12-01T04:28:26Z |
| mal-2025-191042 | Malicious code in @oku-ui/slot (npm) | 2025-11-24T23:17:08Z | 2025-12-01T04:28:26Z |
| mal-2025-191041 | Malicious code in @oku-ui/primitives (npm) | 2025-11-24T23:14:37Z | 2025-12-01T04:28:26Z |
| mal-2025-191040 | Malicious code in @oku-ui/motion (npm) | 2025-11-24T23:12:39Z | 2025-12-01T04:28:26Z |
| mal-2025-191039 | Malicious code in @oku-ui/label (npm) | 2025-11-24T23:12:06Z | 2025-12-01T04:28:26Z |
| mal-2025-191038 | Malicious code in @oku-ui/focus-scope (npm) | 2025-11-24T23:11:16Z | 2025-12-01T04:28:26Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-2178 | Drupal: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-09-18T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-2126 | Drupal: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen und Denial of Service | 2024-09-11T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-2055 | Drupal: Mehrere Schwachstellen | 2024-09-04T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-1943 | Drupal "Advanced Varnish" Extension: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-08-28T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-1940 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2024-08-27T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-1900 | Drupal Module: Mehrere Schwachstellen | 2024-08-21T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-1816 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2024-08-12T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-1791 | Drupal: Mehrere Schwachstellen ermöglichen Codeausführung und Cross Site Scripting | 2024-08-07T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-1740 | Drupal: Schwachstelle ermöglicht Cross-Site Scripting | 2024-07-31T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-1300 | Drupal: Schwachstelle ermöglicht Denial of Service | 2024-06-05T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-1258 | Drupal: Mehrere Schwachstellen | 2024-05-30T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-1220 | Drupal Erweiterungen: Mehrere Schwachstellen | 2024-05-22T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-1165 | Drupal: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-05-15T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0968 | Drupal: Mehrere Schwachstellen | 2024-04-24T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0739 | Drupal: Schwachstelle ermöglicht Cross-Site Scripting | 2024-03-27T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0570 | Drupal: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-03-06T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0517 | Drupal Extensions: Mehrere Schwachstellen | 2024-02-28T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0465 | Drupal: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-02-21T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0400 | Drupal: Schwachstelle ermöglicht Cross-Site Scripting | 2024-02-14T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0320 | Drupal: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-02-07T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0263 | Drupal: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-01-31T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0196 | Drupal: Mehrere Schwachstellen | 2024-01-24T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0060 | Drupal Extensions: Mehrere Schwachstellen | 2024-01-10T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2023-1503 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-06-18T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2025-0037 | PaloAlto Networks Expedition: Mehrere Schwachstellen | 2025-01-08T23:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2025-0036 | Aruba Switch: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-01-08T23:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2025-0034 | IBM App Connect Enterprise: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-01-08T23:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2025-0032 | Drupal: Mehrere Schwachstellen | 2025-01-08T23:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2025-0031 | Juniper JUNOS: Mehrere Schwachstellen ermöglichen Denial of Service und Informationsoffenlegung | 2025-01-08T23:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2025-0030 | Trend Micro Apex One: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode | 2025-01-08T23:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:23154 | Red Hat Security Advisory: rsync security update | 2025-12-15T02:06:50+00:00 | 2026-01-28T18:58:20+00:00 |
| rhsa-2025:2600 | Red Hat Security Advisory: rsync security update | 2025-03-11T00:23:51+00:00 | 2026-01-28T18:58:19+00:00 |
| rhsa-2025:23858 | Red Hat Security Advisory: rsync security update | 2025-12-22T12:57:18+00:00 | 2026-01-28T18:58:19+00:00 |
| rhsa-2025:23854 | Red Hat Security Advisory: rsync security update | 2025-12-22T12:14:03+00:00 | 2026-01-28T18:58:19+00:00 |
| rhsa-2025:23853 | Red Hat Security Advisory: rsync security update | 2025-12-22T11:41:13+00:00 | 2026-01-28T18:58:18+00:00 |
| rhsa-2025:23842 | Red Hat Security Advisory: rsync security update | 2025-12-22T09:46:13+00:00 | 2026-01-28T18:58:18+00:00 |
| rhsa-2025:23416 | Red Hat Security Advisory: rsync security update | 2025-12-17T00:12:10+00:00 | 2026-01-28T18:58:18+00:00 |
| rhsa-2025:23415 | Red Hat Security Advisory: rsync security update | 2025-12-17T01:28:40+00:00 | 2026-01-28T18:58:18+00:00 |
| rhsa-2025:23407 | Red Hat Security Advisory: rsync security update | 2025-12-17T00:15:50+00:00 | 2026-01-28T18:58:17+00:00 |
| rhsa-2025:23235 | Red Hat Security Advisory: rsync security update | 2025-12-16T11:09:39+00:00 | 2026-01-28T18:58:17+00:00 |
| rhsa-2025:0309 | Red Hat Security Advisory: libreswan security update | 2025-01-14T10:48:30+00:00 | 2026-01-28T18:58:16+00:00 |
| rhsa-2023:7052 | Red Hat Security Advisory: libreswan security update | 2023-11-14T15:51:00+00:00 | 2026-01-28T18:58:13+00:00 |
| rhsa-2023:6549 | Red Hat Security Advisory: libreswan security update | 2023-11-07T08:17:29+00:00 | 2026-01-28T18:58:11+00:00 |
| rhea-2023:7311 | Red Hat Enhancement Advisory: go-toolset-container bug fix and enhancement update | 2023-11-16T07:58:05+00:00 | 2026-01-28T18:57:55+00:00 |
| rhba-2021:3003 | Red Hat Bug Fix Advisory: Red Hat OpenShift Container Storage 4.8.0 container images bug fix and enhancement update | 2021-08-03T18:15:00+00:00 | 2026-01-28T17:01:06+00:00 |
| rhsa-2020:0652 | Red Hat Security Advisory: OpenShift Container Platform 4.2.21 openshift/installer security update | 2020-03-05T20:37:44+00:00 | 2026-01-28T16:03:07+00:00 |
| rhsa-2020:0329 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2020-02-04T13:21:59+00:00 | 2026-01-28T16:03:04+00:00 |
| rhsa-2020:0101 | Red Hat Security Advisory: go-toolset-1.12-golang security update | 2020-01-14T08:45:49+00:00 | 2026-01-28T16:03:04+00:00 |
| rhba-2020:0062 | Red Hat Bug Fix Advisory: OpenShift Container Platform 4.3 image release advisory | 2020-01-23T11:03:26+00:00 | 2026-01-28T16:03:01+00:00 |
| rhba-2019:3304 | Red Hat Bug Fix Advisory: OpenShift Container Platform 4.2.4 bug fix update | 2019-11-13T16:48:38+00:00 | 2026-01-28T16:02:58+00:00 |
| rhba-2019:3303 | Red Hat Bug Fix Advisory: OpenShift Container Platform 4.2.4 images update | 2019-11-13T18:55:26+00:00 | 2026-01-28T16:02:58+00:00 |
| rhsa-2025:0900 | Red Hat Security Advisory: Red Hat build of Quarkus 3.15.3 release and security update | 2025-02-05T12:21:00+00:00 | 2026-01-28T15:46:54+00:00 |
| rhsa-2022:7343 | Red Hat Security Advisory: pcs security update | 2022-11-02T16:34:31+00:00 | 2026-01-28T15:46:33+00:00 |
| rhsa-2021:0851 | Red Hat Security Advisory: pki-core security and bug fix update | 2021-03-16T13:53:30+00:00 | 2026-01-28T15:46:28+00:00 |
| rhba-2025:1600 | Red Hat Bug Fix Advisory: Red Hat Quay v3.10.9 bug fix release | 2025-02-24T04:48:51+00:00 | 2026-01-28T15:46:09+00:00 |
| rhba-2025:1599 | Red Hat Bug Fix Advisory: Red Hat Quay v3.11.9 bug fix release | 2025-02-24T04:06:56+00:00 | 2026-01-28T15:46:09+00:00 |
| rhba-2025:1598 | Red Hat Bug Fix Advisory: Red Hat Quay v3.12.8 bug fix release | 2025-02-24T03:44:11+00:00 | 2026-01-28T15:46:09+00:00 |
| rhba-2025:1597 | Red Hat Bug Fix Advisory: Red Hat Quay v3.9.10 bug fix release | 2025-02-24T06:54:10+00:00 | 2026-01-28T15:46:07+00:00 |
| rhba-2025:1079 | Red Hat Bug Fix Advisory: Red Hat Quay v3.13.4 bug fix release | 2025-02-24T03:42:46+00:00 | 2026-01-28T15:46:07+00:00 |
| rhsa-2025:9448 | Red Hat Security Advisory: emacs security update | 2025-06-24T06:48:50+00:00 | 2026-01-28T15:35:23+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-26664 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-26652 | Windows Standards-Based Storage Management Service Denial of Service Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-26651 | Windows Local Session Manager (LSM) Denial of Service Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-26649 | Windows Secure Channel Elevation of Privilege Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-26644 | Windows Hello Spoofing Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-26640 | Windows Digital Media Elevation of Privilege Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-26639 | Windows USB Print Driver Elevation of Privilege Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-26635 | Windows Hello Security Feature Bypass Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-26628 | Azure Local Cluster Information Disclosure Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-25002 | Azure Local Cluster Information Disclosure Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-24074 | Microsoft DWM Core Library Elevation of Privilege Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-24062 | Microsoft DWM Core Library Elevation of Privilege Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-24060 | Microsoft DWM Core Library Elevation of Privilege Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-24058 | Windows DWM Core Library Elevation of Privilege Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-21203 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-20570 | Visual Studio Code Elevation of Privilege Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-08T07:00:00.000Z |
| msrc_cve-2025-29786 | Memory Exhaustion in Expr Parser with Unrestricted Input | 2025-03-02T00:00:00.000Z | 2025-04-08T00:00:00.000Z |
| msrc_cve-2024-26939 | drm/i915/vma: Fix UAF on destroy against retire race | 2024-05-02T07:00:00.000Z | 2025-04-08T00:00:00.000Z |
| msrc_cve-2023-31130 | Buffer Underwrite in ares_inet_net_pton() | 2023-05-01T00:00:00.000Z | 2025-04-08T00:00:00.000Z |
| msrc_cve-2024-10041 | Pam: libpam: libpam vulnerable to read hashed password | 2024-10-01T07:00:00.000Z | 2025-04-05T00:00:00.000Z |
| msrc_cve-2025-29815 | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-03T07:00:00.000Z |
| msrc_cve-2025-29796 | Microsoft Edge for iOS Spoofing Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-03T07:00:00.000Z |
| msrc_cve-2025-25001 | Microsoft Edge for iOS Spoofing Vulnerability | 2025-04-08T07:00:00.000Z | 2025-04-03T07:00:00.000Z |
| msrc_cve-2025-24071 | Microsoft Windows File Explorer Spoofing Vulnerability | 2025-03-11T07:00:00.000Z | 2025-04-03T07:00:00.000Z |
| msrc_cve-2024-52949 | iptraf-ng 1.2.1 has a stack-based buffer overflow. In src/ifaces.c, the strcpy function consistently fails to control the size, and it is consequently possible to overflow memory on the stack. | 2024-12-02T00:00:00.000Z | 2025-04-03T00:00:00.000Z |
| msrc_cve-2024-22019 | A vulnerability in Node.js HTTP servers allows an attacker to send a specially crafted HTTP request with chunked encoding leading to resource exhaustion and denial of service (DoS). The server reads an unbounded number of bytes from a single connection exploiting the lack of limitations on chunk extension bytes. The issue can cause CPU and network bandwidth exhaustion bypassing standard safeguards like timeouts and body size limits. | 2024-02-02T08:00:00.000Z | 2025-04-03T00:00:00.000Z |
| msrc_cve-2024-21896 | The permission model protects itself against path traversal attacks by calling path.resolve() on any paths given by the user. If the path is to be treated as a Buffer the implementation uses Buffer.from() to obtain a Buffer from the result of path.resolve(). By monkey-patching Buffer internals namely Buffer.prototype.utf8Write the application can modify the result of path.resolve() which leads to a path traversal vulnerability. This vulnerability affects all users using the experimental permission model in Node.js 20 and Node.js 21. Please note that at the time this CVE was issued the permission model is an experimental feature of Node.js. | 2024-02-02T08:00:00.000Z | 2025-04-03T00:00:00.000Z |
| msrc_cve-2025-29806 | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 2025-03-11T07:00:00.000Z | 2025-04-02T07:00:00.000Z |
| msrc_cve-2025-21336 | Windows Cryptographic Information Disclosure Vulnerability | 2025-01-14T08:00:00.000Z | 2025-04-02T07:00:00.000Z |
| msrc_cve-2025-24855 | numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal. | 2025-03-02T00:00:00.000Z | 2025-04-01T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202506-0804 | A vulnerability classified as critical was found in TOTOLINK T10 4.1.8cu.5207. Affected b… | 2025-07-01T23:16:14.217000Z |
| var-202506-0463 | A vulnerability, which was classified as critical, was found in Tenda AC6 15.03.05.16. Th… | 2025-07-01T23:11:18.630000Z |
| var-201301-0164 | When an affected product receives a valid CIP message from an unauthorized or unintended … | 2025-07-01T23:04:31.199000Z |
| var-201301-0154 | The device does not properly authenticate users and the potential exists for a remote use… | 2025-07-01T23:04:31.157000Z |
| var-201301-0158 | An information exposure of confidential information results when the device receives a sp… | 2025-07-01T23:04:31.087000Z |
| var-201301-0157 | The Web server password authentication mechanism used by the products is vulnerable to a … | 2025-07-01T23:04:31.043000Z |
| var-201301-0159 | When an affected product receives a valid CIP message from an unauthorized or unintended … | 2025-07-01T23:04:30.999000Z |
| var-201301-0155 | The device does not properly validate the data being sent to the buffer. An attacker can … | 2025-07-01T23:04:30.950000Z |
| var-201301-0153 | The device does not properly validate the data being sent to the buffer. An attacker can … | 2025-07-01T23:04:30.882000Z |
| var-201301-0156 | When an affected product receives a valid CIP message from an unauthorized or unintended… | 2025-07-01T23:04:30.839000Z |
| var-202404-0121 | HTTP Response splitting in multiple modules in Apache HTTP Server allows an attacker that… | 2025-07-01T21:18:45.102000Z |
| var-202506-0442 | CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause Denial o… | 2025-07-01T19:32:54.288000Z |
| var-202404-0085 | OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in use… | 2025-06-30T23:13:10.349000Z |
| var-202404-0086 | Plaintext storage of a password issue exists in BUFFALO wireless LAN routers, which may a… | 2025-06-30T23:13:10.331000Z |
| var-202408-0337 | A vulnerability classified as critical has been found in TOTOLINK N350RT 9.3.5u.6139_B202… | 2025-06-29T23:22:56.274000Z |
| var-202504-3413 | A vulnerability classified as critical was found in Netgear EX6120 1.0.0.68. Affected by … | 2025-06-29T23:22:35.388000Z |
| var-202506-0539 | A vulnerability was found in D-Link DIR-632 FW103B08. It has been declared as critical. T… | 2025-06-29T23:21:13.331000Z |
| var-202407-1769 | TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulne… | 2025-06-29T23:20:19.445000Z |
| var-202412-1095 | TP-Link TL-WR845N(UN)_V4_190219 was discovered to transmit credentials in base64 encoded … | 2025-06-29T23:20:18.751000Z |
| var-202504-3377 | A vulnerability was found in Netgear WG302v2 up to 5.2.9 and classified as critical. Affe… | 2025-06-29T23:20:18.066000Z |
| var-202505-2005 | A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. Affected is… | 2025-06-29T23:18:50.690000Z |
| var-202506-0002 | A vulnerability, which was classified as critical, was found in Linksys RE6500, RE6250, R… | 2025-06-29T23:17:28.071000Z |
| var-202506-1138 | A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as c… | 2025-06-29T23:15:33.462000Z |
| var-202408-0332 | A vulnerability classified as critical was found in TOTOLINK EX200 4.0.3c.7646_B20201211.… | 2025-06-29T23:14:10.133000Z |
| var-202505-1677 | A vulnerability, which was classified as critical, has been found in TOTOLINK A3002R and … | 2025-06-29T23:14:08.809000Z |
| var-202408-0368 | A vulnerability, which was classified as critical, has been found in TOTOLINK CP900 6.3c.… | 2025-06-29T23:10:19.996000Z |
| var-202505-1723 | A vulnerability was found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. It has bee… | 2025-06-29T23:06:38.347000Z |
| var-202407-0984 | TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulne… | 2025-06-29T23:05:40.173000Z |
| var-202408-0177 | A vulnerability was found in TOTOLINK CP450 4.1.0cu.747_B20191224. It has been classified… | 2025-06-29T23:02:45.111000Z |
| var-202408-0282 | A vulnerability was found in TOTOLINK A3300R 17.0.0cu.557_B20221024 and classified as cri… | 2025-06-29T23:02:45.085000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2024:2901-1 | Security update for the Linux Kernel | 2024-08-14T07:24:46Z | 2024-08-14T07:24:46Z |
| suse-su-2024:2900-1 | Security update for python-setuptools | 2024-08-14T06:55:58Z | 2024-08-14T06:55:58Z |
| suse-su-2024:2899-1 | Security update for python-setuptools | 2024-08-14T00:38:03Z | 2024-08-14T00:38:03Z |
| suse-su-2024:2898-1 | Security update for gtk3 | 2024-08-13T14:58:06Z | 2024-08-13T14:58:06Z |
| suse-su-2024:2897-1 | Security update for gtk2 | 2024-08-13T14:57:25Z | 2024-08-13T14:57:25Z |
| suse-su-2024:2896-1 | Security update for the Linux Kernel | 2024-08-13T14:09:50Z | 2024-08-13T14:09:50Z |
| suse-su-2024:2895-1 | Security update for the Linux Kernel | 2024-08-13T14:08:42Z | 2024-08-13T14:08:42Z |
| suse-su-2024:2894-1 | Security update for the Linux Kernel | 2024-08-13T14:07:49Z | 2024-08-13T14:07:49Z |
| suse-su-2024:2893-1 | Security update for the Linux Kernel | 2024-08-13T14:06:26Z | 2024-08-13T14:06:26Z |
| suse-su-2024:2892-1 | Security update for the Linux Kernel | 2024-08-13T14:05:51Z | 2024-08-13T14:05:51Z |
| suse-su-2024:2876-1 | Security update for MozillaFirefox | 2024-08-13T10:01:46Z | 2024-08-13T10:01:46Z |
| suse-su-2024:2891-1 | Security update for openssl-1_1 | 2024-08-13T09:39:54Z | 2024-08-13T09:39:54Z |
| suse-su-2024:2890-1 | Security update for libqt5-qtbase | 2024-08-13T09:38:11Z | 2024-08-13T09:38:11Z |
| suse-su-2024:1166-2 | Security update for kubernetes1.23 | 2024-08-13T09:03:51Z | 2024-08-13T09:03:51Z |
| suse-su-2024:2883-1 | Security update for libqt5-qtbase | 2024-08-12T15:41:26Z | 2024-08-12T15:41:26Z |
| suse-su-2024:2882-1 | Security update for libqt5-qtbase | 2024-08-12T15:40:48Z | 2024-08-12T15:40:48Z |
| suse-su-2024:2881-1 | Security update for python-gunicorn | 2024-08-12T15:40:08Z | 2024-08-12T15:40:08Z |
| suse-su-2024:2880-1 | Security update for python-Twisted | 2024-08-12T15:39:09Z | 2024-08-12T15:39:09Z |
| suse-su-2024:2879-1 | Security update for python-urllib3 | 2024-08-12T13:19:48Z | 2024-08-12T13:19:48Z |
| suse-su-2024:2875-1 | Security update for qt6-base | 2024-08-12T08:04:10Z | 2024-08-12T08:04:10Z |
| suse-su-2024:2874-1 | Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP6) | 2024-08-12T08:03:55Z | 2024-08-12T08:03:55Z |
| suse-su-2024:2873-1 | Security update for qt6-base | 2024-08-12T08:03:19Z | 2024-08-12T08:03:19Z |
| suse-su-2024:2869-1 | Security update for ca-certificates-mozilla | 2024-08-09T13:59:59Z | 2024-08-09T13:59:59Z |
| suse-su-2024:2868-1 | Security update for bind | 2024-08-09T13:32:01Z | 2024-08-09T13:32:01Z |
| suse-su-2024:2864-1 | Security update for ffmpeg-4 | 2024-08-09T07:21:31Z | 2024-08-09T07:21:31Z |
| suse-su-2024:2863-1 | Security update for bind | 2024-08-09T07:21:18Z | 2024-08-09T07:21:18Z |
| suse-su-2024:2862-1 | Security update for bind | 2024-08-09T07:20:35Z | 2024-08-09T07:20:35Z |
| suse-su-2024:2861-1 | Security update for python-Django | 2024-08-09T07:18:39Z | 2024-08-09T07:18:39Z |
| suse-su-2024:2860-1 | Security update for python3-Twisted | 2024-08-09T05:34:13Z | 2024-08-09T05:34:13Z |
| suse-su-2024:2859-1 | Security update for kubernetes1.24 | 2024-08-08T14:20:41Z | 2024-08-08T14:20:41Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:11775-1 | kernel-devel-5.16.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11774-1 | usbview-3.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11773-1 | pure-ftpd-1.0.50-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11772-1 | zabbix-agent-4.0.37-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11771-1 | python3-virtualbox-6.1.32-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11770-1 | libvirglrenderer1-0.9.1-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11769-1 | cargo1.58-1.58.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11768-1 | cargo1.57-1.57.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11767-1 | cargo1.56-1.56.1-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11766-1 | python38-distributed-2022.1.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11765-1 | phpMyAdmin-5.1.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11764-1 | lighttpd-1.4.64-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11763-1 | python310-ipython-8.0.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11762-1 | expat-2.4.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11761-1 | chromedriver-97.0.4692.99-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11760-1 | mailman3-3.3.5-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11759-1 | log4j12-1.2.17-7.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11758-1 | libvirt-8.0.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11757-1 | libcontainers-common-20210626-7.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11756-1 | flatpak-1.12.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11755-1 | flatpak-builder-1.2.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11754-1 | cryptsetup-2.4.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11753-1 | libmruby3-3.0.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11752-1 | libmbedcrypto7-2.28.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11751-1 | afterburn-5.0.0-6.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11750-1 | ncat-7.92-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11749-1 | libsubid-devel-4.11.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11748-1 | clamav-0.103.5-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11747-1 | python310-numba-0.55.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11746-1 | corepack16-16.13.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-django-2022-34265 | 2024-03-06T10:52:46.204Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2022-28347 | 2024-03-06T10:52:57.760Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2022-28346 | 2024-03-06T10:53:06.178Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2022-23833 | 2024-03-06T10:53:17.707Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2022-22818 | 2024-03-06T10:53:28.699Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-45452 | 2024-03-06T10:53:37.905Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-45116 | 2024-03-06T10:53:49.679Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-45115 | 2024-03-06T10:53:58.206Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-44420 | 2024-03-06T10:54:09.079Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-35042 | 2024-03-06T10:54:20.393Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-33571 | 2024-03-06T10:54:33.880Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-33203 | 2024-03-06T10:54:44.570Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-3281 | 2024-03-06T10:54:53.404Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-32052 | 2024-03-06T10:55:03.094Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-31542 | 2024-03-06T10:55:14.593Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-28658 | 2024-03-06T10:55:24.264Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2020-9402 | 2024-03-06T10:55:44.167Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2020-7471 | 2024-03-06T10:55:54.362Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2020-24584 | 2024-03-06T10:56:03.488Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2020-24583 | 2024-03-06T10:56:12.583Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2020-13596 | 2024-03-06T10:56:25.690Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2020-13254 | 2024-03-06T10:56:35.291Z | 2025-04-03T14:40:37.652Z | |
| bit-discourse-2022-37458 | 2024-03-06T11:04:36.097Z | 2025-04-03T14:40:37.652Z | |
| bit-discourse-2022-23548 | 2024-03-06T11:07:21.771Z | 2025-04-03T14:40:37.652Z | |
| bit-discourse-2020-24327 | 2024-03-06T11:10:18.981Z | 2025-04-03T14:40:37.652Z | |
| bit-couchdb-2020-1955 | 2024-03-06T10:51:42.871Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2022-40716 | 2024-03-06T10:51:50.990Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2022-29153 | 2024-03-06T10:52:10.905Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2022-24687 | 2024-03-06T10:52:21.903Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2021-41805 | 2024-03-06T10:52:33.477Z | 2025-04-03T14:40:37.652Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-20906 | Huawei HarmonyOS home screen模块权限校验漏洞 | 2025-09-09 | 2025-09-10 |
| cnvd-2025-20905 | Huawei HarmonyOS device standby模块竞争条件漏洞 | 2025-09-09 | 2025-09-10 |
| cnvd-2025-20904 | Huawei HarmonyOS runtime interpreter模块越界读取漏洞 | 2025-09-09 | 2025-09-10 |
| cnvd-2025-20903 | Huawei HarmonyOS audio模块竞争条件漏洞 | 2025-09-09 | 2025-09-10 |
| cnvd-2025-20929 | Online Course Registration coursecode参数SQL注入漏洞 | 2025-05-22 | 2025-09-09 |
| cnvd-2025-20928 | Online Course Registration会话劫持漏洞 | 2025-07-30 | 2025-09-09 |
| cnvd-2025-20927 | Online Course Registration sesssion参数SQL注入漏洞 | 2025-08-26 | 2025-09-09 |
| cnvd-2025-20926 | Online Course Registration admin/student-registration.php文件SQL注入漏洞 | 2025-09-02 | 2025-09-09 |
| cnvd-2025-20925 | Online Course Registration semester参数SQL注入漏洞 | 2025-09-09 | 2025-09-09 |
| cnvd-2025-20924 | Beauty Parlour Management System search-appointment.php跨站脚本漏洞 | 2024-06-21 | 2025-09-09 |
| cnvd-2025-20923 | Beauty Parlour Management System跨站脚本漏洞(CNVD-2025-20923) | 2024-11-08 | 2025-09-09 |
| cnvd-2025-20922 | Beauty Parlour Management System跨站脚本漏洞 | 2024-12-20 | 2025-09-09 |
| cnvd-2025-20921 | Beauty Parlour Management System login.php文件SQL注入漏洞 | 2024-12-20 | 2025-09-09 |
| cnvd-2025-20920 | Beauty Parlour Management System /forgot-password.php文件SQL注入漏洞 | 2025-05-22 | 2025-09-09 |
| cnvd-2025-20919 | Beauty Parlour Management System /contact.php文件SQL注入漏洞 | 2025-05-22 | 2025-09-09 |
| cnvd-2025-20918 | Beauty Parlour Management System /admin/admin-profile.php文件SQL注入漏洞 | 2025-05-22 | 2025-09-09 |
| cnvd-2025-20917 | Beauty Parlour Management System book-appointment.php文件SQL注入漏洞 | 2025-08-20 | 2025-09-09 |
| cnvd-2025-20916 | Beauty Parlour Management System signup.php文件SQL注入漏洞 | 2025-09-04 | 2025-09-09 |
| cnvd-2025-20915 | Beauty Parlour Management System edit-services.php文件SQL注入漏洞 | 2025-09-04 | 2025-09-09 |
| cnvd-2025-20914 | Beauty Parlour Management System contact-us.php文件SQL注入漏洞 | 2025-09-04 | 2025-09-09 |
| cnvd-2025-20913 | Beauty Parlour Management System add-customer-services.php文件SQL注入漏洞 | 2025-09-04 | 2025-09-09 |
| cnvd-2025-20875 | Apache CloudStack权限提升漏洞 | 2025-06-23 | 2025-09-09 |
| cnvd-2025-20874 | Apache CloudStack权限提升漏洞(CNVD-2025-20874) | 2025-06-23 | 2025-09-09 |
| cnvd-2025-20873 | Apache Apisix权限提升漏洞(CNVD-2025-20873) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20872 | Apache Jena路径遍历漏洞 | 2025-07-23 | 2025-09-09 |
| cnvd-2025-20871 | Apache Commons OGNL任意代码执行漏洞 | 2025-08-25 | 2025-09-09 |
| cnvd-2025-20870 | Apache OFBiz代码执行漏洞(CNVD-2025-20870) | 2025-08-26 | 2025-09-09 |
| cnvd-2025-20869 | Apache StreamPark SQL注入漏洞 | 2025-08-26 | 2025-09-09 |
| cnvd-2025-20868 | Apache Log4cxx输入验证错误漏洞(CNVD-2025-20868) | 2025-08-26 | 2025-09-09 |
| cnvd-2025-20867 | Apache Log4cxx跨站脚本漏洞 | 2025-08-26 | 2025-09-09 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-avi-044 | Vulnérabilité dans Juniper Junos | 2022-01-17T00:00:00.000000 | 2022-01-17T00:00:00.000000 |
| certfr-2022-avi-043 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-01-17T00:00:00.000000 | 2022-01-17T00:00:00.000000 |
| certfr-2022-avi-042 | Vulnérabilité dans Junos OS et Junos OS Evolved | 2022-01-14T00:00:00.000000 | 2022-01-14T00:00:00.000000 |
| certfr-2022-avi-041 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-01-14T00:00:00.000000 | 2022-01-14T00:00:00.000000 |
| certfr-2022-avi-040 | Multiples vulnérabilités dans les produits Juniper | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-039 | Multiples vulnérabilités dans Moxa VPort | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-038 | Multiples vulnérabilités dans Tenable.sc | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-037 | Multiples vulnérabilités dans Citrix Hypervisor | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-036 | Vulnérabilité dans ClamAV | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-035 | Multiples vulnérabilités dans IBM WebSphere | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-034 | Vulnérabilité dans Apple iOS et iPadOS | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-033 | Multiples vulnérabilités dans les produits QNAP | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-032 | Multiples vulnérabilités dans Palo Alto Cortex XDR | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-031 | Vulnérabilité dans Cisco Unified Contact Center | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-030 | Multiples vulnérabilités dans Synology DiskStation Manager | 2022-01-13T00:00:00.000000 | 2022-01-13T00:00:00.000000 |
| certfr-2022-avi-029 | Multiples vulnérabilités dans les produits Microsoft | 2022-01-12T00:00:00.000000 | 2022-01-12T00:00:00.000000 |
| certfr-2022-avi-028 | Vulnérabilité dans Microsoft .Net | 2022-01-12T00:00:00.000000 | 2022-01-12T00:00:00.000000 |
| certfr-2022-avi-027 | Multiples vulnérabilités dans Microsoft Windows | 2022-01-12T00:00:00.000000 | 2022-01-12T00:00:00.000000 |
| certfr-2022-avi-026 | Multiples vulnérabilités dans Microsoft Office | 2022-01-12T00:00:00.000000 | 2022-01-12T00:00:00.000000 |
| certfr-2022-avi-025 | Multiples vulnérabilités dans les produits GitLab | 2022-01-12T00:00:00.000000 | 2022-01-12T00:00:00.000000 |
| certfr-2022-avi-024 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-01-12T00:00:00.000000 | 2022-01-12T00:00:00.000000 |
| certfr-2022-avi-023 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-01-12T00:00:00.000000 | 2022-01-12T00:00:00.000000 |
| certfr-2022-avi-022 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2022-01-12T00:00:00.000000 | 2022-01-12T00:00:00.000000 |
| certfr-2022-avi-021 | Multiples vulnérabilités dans Thunderbird | 2022-01-12T00:00:00.000000 | 2022-01-12T00:00:00.000000 |
| certfr-2022-avi-020 | Multiples vulnérabilités dans Mozilla Firefox et Firefox ESR | 2022-01-12T00:00:00.000000 | 2022-01-12T00:00:00.000000 |
| certfr-2022-avi-019 | Vulnérabilité dans Citrix Workspace App | 2022-01-11T00:00:00.000000 | 2022-01-11T00:00:00.000000 |
| certfr-2022-avi-018 | Multiples vulnérabilités dans les produits Siemens | 2022-01-11T00:00:00.000000 | 2022-01-11T00:00:00.000000 |
| certfr-2022-avi-017 | Multiples vulnérabilités dans les produits Schneider | 2022-01-11T00:00:00.000000 | 2022-01-11T00:00:00.000000 |
| certfr-2022-avi-016 | Multiples vulnérabilités dans les produits SAP | 2022-01-11T00:00:00.000000 | 2022-01-11T00:00:00.000000 |
| certfr-2022-avi-015 | Multiples vulnérabilités dans Belden Tofino | 2022-01-11T00:00:00.000000 | 2022-01-11T00:00:00.000000 |