Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-66106 |
4.3 (3.1)
|
WordPress Featured Post Creative plugin <= 1.5.5 - Bro… |
Essential Plugin |
Featured Post Creative |
2025-11-21T12:30:03.619Z | 2026-01-20T14:28:23.931Z |
| CVE-2025-66089 |
4.3 (3.1)
|
WordPress Product Feed for WooCommerce plugin <= 2.3.1… |
WebToffee |
Product Feed for WooCommerce |
2025-11-21T12:29:58.741Z | 2026-01-20T14:28:23.926Z |
| CVE-2025-66065 |
5.3 (3.1)
|
WordPress Gutenverse plugin <= 3.2.1 - Broken Access C… |
Jegstudio |
Gutenverse |
2025-11-21T12:29:55.513Z | 2026-01-20T14:28:23.901Z |
| CVE-2025-66081 |
5.4 (3.1)
|
WordPress Head Meta Data plugin <= 20250327 - Cross Si… |
Jeff Starr |
Head Meta Data |
2025-11-21T12:29:57.410Z | 2026-01-20T14:28:23.868Z |
| CVE-2025-66078 |
9.1 (3.1)
|
WordPress Hotel Booking Lite plugin <= 5.2.3 - Remote … |
jetmonsters |
Hotel Booking Lite |
2025-12-18T07:22:17.890Z | 2026-01-20T14:28:23.826Z |
| CVE-2025-66077 |
4.3 (3.1)
|
WordPress Legal Pages plugin <= 1.4.6 - Broken Access … |
wpWax |
Legal Pages |
2025-11-21T12:29:57.063Z | 2026-01-20T14:28:23.798Z |
| CVE-2025-66083 |
4.3 (3.1)
|
WordPress WpEvently plugin <= 5.0.4 - Broken Access Co… |
magepeopleteam |
WpEvently |
2025-11-21T12:29:57.750Z | 2026-01-20T14:28:23.721Z |
| CVE-2025-66068 |
6.5 (3.1)
|
WordPress InstaWP Connect plugin <= 0.1.1.9 - Broken A… |
InstaWP |
InstaWP Connect |
2025-12-18T07:22:17.312Z | 2026-01-20T14:28:23.688Z |
| CVE-2025-66086 |
5.3 (3.1)
|
WordPress SMS Alert Order Notifications plugin <= 3.8.… |
Cozy Vision |
SMS Alert Order Notifications |
2025-11-21T12:29:58.296Z | 2026-01-20T14:28:23.427Z |
| CVE-2025-66084 |
4.3 (3.1)
|
WordPress FluentCommunity plugin <= 2.0.0 - Broken Acc… |
Shahjahan Jewel |
FluentCommunity |
2025-11-21T12:29:57.920Z | 2026-01-20T14:28:23.392Z |
| CVE-2025-66057 |
6.3 (3.1)
|
WordPress Bold Page Builder plugin <= 5.5.2 - Cross Si… |
boldthemes |
Bold Page Builder |
2025-11-21T12:29:54.209Z | 2026-01-20T14:28:23.380Z |
| CVE-2025-66073 |
6.5 (3.1)
|
WordPress WP Webhooks plugin <= 3.3.8 - PHP Object Inj… |
Cozmoslabs |
WP Webhooks |
2025-11-21T12:29:56.667Z | 2026-01-20T14:28:23.347Z |
| CVE-2025-64638 |
5.3 (3.1)
|
WordPress OnPay.io for WooCommerce plugin <= 1.0.47 - … |
OnPay.io |
OnPay.io for WooCommerce |
2025-12-16T08:12:51.913Z | 2026-01-20T14:28:23.328Z |
| CVE-2025-66072 |
9.8 (3.1)
|
WordPress UsersWP plugin <= 1.2.47 - Broken Access Con… |
Stiofan |
UsersWP |
2025-11-21T12:29:56.382Z | 2026-01-20T14:28:23.321Z |
| CVE-2025-66059 |
5.3 (3.1)
|
WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-11-21T12:29:54.426Z | 2026-01-20T14:28:23.317Z |
| CVE-2025-66082 |
4.3 (3.1)
|
WordPress WpEvently plugin <= 5.0.4 - Broken Access Co… |
magepeopleteam |
WpEvently |
2025-11-21T12:29:57.578Z | 2026-01-20T14:28:23.316Z |
| CVE-2025-66056 |
4.3 (3.1)
|
WordPress Uncanny Automator plugin < 6.10.0 - Sensitiv… |
Uncanny Owl |
Uncanny Automator |
2025-11-21T12:29:54.000Z | 2026-01-20T14:28:23.283Z |
| CVE-2025-66062 |
3.7 (3.1)
|
WordPress WP YouTube Lyte plugin <= 1.7.28 - Open Redi… |
Frank Goossens |
WP YouTube Lyte |
2025-11-21T12:29:54.981Z | 2026-01-20T14:28:23.280Z |
| CVE-2025-66054 |
7.5 (3.1)
|
WordPress LearnPress plugin <= 4.2.9.4 - Broken Access… |
ThimPress |
LearnPress |
2025-12-18T07:22:17.129Z | 2026-01-20T14:28:23.253Z |
| CVE-2025-66060 |
5.3 (3.1)
|
WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-11-21T12:29:54.618Z | 2026-01-20T14:28:23.244Z |
| CVE-2025-66055 |
7.2 (3.1)
|
WordPress Email Subscribers & Newsletters plugin <= 5.… |
Icegram |
Email Subscribers & Newsletters |
2025-11-21T12:29:53.666Z | 2026-01-20T14:28:23.237Z |
| CVE-2025-66064 |
5.3 (3.1)
|
WordPress Giveaways and Contests by RafflePress plugin… |
Syed Balkhi |
Giveaways and Contests by RafflePress |
2025-11-21T12:29:55.338Z | 2026-01-20T14:28:23.234Z |
| CVE-2025-66067 |
5.4 (3.1)
|
WordPress Funnel Builder by FunnelKit plugin <= 3.13.1… |
FunnelKit |
Funnel Builder by FunnelKit |
2025-11-21T12:29:55.849Z | 2026-01-20T14:28:23.233Z |
| CVE-2025-66075 |
4.2 (3.1)
|
WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy C… |
WP Legal Pages |
WP Cookie Notice for GDPR, CCPA & ePrivacy Consent |
2025-11-21T12:29:56.896Z | 2026-01-20T14:28:23.221Z |
| CVE-2025-66080 |
5.3 (3.1)
|
WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy C… |
WP Legal Pages |
WP Cookie Notice for GDPR, CCPA & ePrivacy Consent |
2025-12-30T16:10:40.664Z | 2026-01-20T14:28:23.215Z |
| CVE-2025-66069 |
4.3 (3.1)
|
WordPress PPOM for WooCommerce plugin <= 33.0.16 - Bro… |
Themeisle |
PPOM for WooCommerce |
2025-11-21T12:29:56.025Z | 2026-01-20T14:28:23.215Z |
| CVE-2025-64384 |
6.3 (3.1)
|
WordPress JetFormBuilder plugin <= 3.5.3 - Broken Acce… |
jetmonsters |
JetFormBuilder |
2025-11-13T09:24:36.292Z | 2026-01-20T14:28:23.177Z |
| CVE-2025-66074 |
9 (3.1)
|
WordPress WP Webhooks plugin <= 3.3.8 - Arbitrary File… |
Cozmoslabs |
WP Webhooks |
2025-12-18T07:22:17.689Z | 2026-01-20T14:28:23.166Z |
| CVE-2025-66061 |
4.3 (3.1)
|
WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-11-21T12:29:54.807Z | 2026-01-20T14:28:23.136Z |
| CVE-2025-66066 |
6.1 (3.1)
|
WordPress Envo Extra plugin <= 1.9.11 - Cross Site Scr… |
EnvoThemes |
Envo Extra |
2025-11-21T12:29:55.680Z | 2026-01-20T14:28:23.127Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-1081 |
4.3 (3.1)
|
Set Bulk Post Categories <= 1.1 - Cross-Site Request F… |
sauravrox |
Set Bulk Post Categories |
2026-01-24T07:26:45.529Z | 2026-01-26T15:44:57.721Z |
| CVE-2026-1076 |
4.3 (3.1)
|
Star Review Manager <= 1.2.2 - Cross-Site Request Forg… |
bramdnl |
Star Review Manager |
2026-01-24T07:26:42.472Z | 2026-01-26T15:45:22.768Z |
| CVE-2026-1075 |
4.3 (3.1)
|
ZT Captcha <= 1.0.4 - Cross-Site Request Forgery to Se… |
teamzt |
ZT Captcha |
2026-01-24T07:26:45.884Z | 2026-01-26T15:44:51.869Z |
| CVE-2026-1070 |
4.3 (3.1)
|
Alex User Counter <= 6.0 - Cross-Site Request Forgery … |
adzbierajewski |
Alex User Counter |
2026-01-24T07:26:40.963Z | 2026-01-26T15:45:44.741Z |
| CVE-2026-0911 |
7.5 (3.1)
|
Hustle <= 7.8.9.2 - Authenticated (Subscriber+) Arbitr… |
wpmudev |
Hustle – Email Marketing, Lead Generation, Optins, Popups |
2026-01-24T12:27:15.063Z | 2026-01-26T15:44:15.167Z |
| CVE-2026-0862 |
6.1 (3.1)
|
Save as PDF Plugin by PDFCrowd <= 4.5.5 - Reflected Cr… |
pdfcrowd |
Save as PDF Plugin by PDFCrowd |
2026-01-24T15:34:06.548Z | 2026-01-26T15:38:22.497Z |
| CVE-2026-0807 |
7.2 (3.1)
|
Frontis Blocks <= 1.1.6 - Unauthenticated Server-Side … |
wpmessiah |
Frontis Blocks — Block Library for the Block Editor |
2026-01-24T07:26:41.330Z | 2026-01-26T15:45:39.333Z |
| CVE-2026-0806 |
4.9 (3.1)
|
WP-ClanWars <= 2.0.1 - Authenticated (Administrator+) … |
andddd |
WP-ClanWars |
2026-01-24T07:26:43.201Z | 2026-01-26T15:45:10.551Z |
| CVE-2026-0800 |
7.2 (3.1)
|
User Submitted Posts – Enable Users to Submit Posts fr… |
specialk |
User Submitted Posts – Enable Users to Submit Posts from the Front End |
2026-01-24T08:26:32.494Z | 2026-01-26T18:05:59.221Z |
| CVE-2026-0687 |
4.3 (3.1)
|
Meta-box GalleryMeta <= 3.0.1 - Missing Authorization … |
shahinurislam |
Meta-box GalleryMeta |
2026-01-24T08:26:34.512Z | 2026-01-26T18:01:57.710Z |
| CVE-2026-0633 |
3.7 (3.1)
|
MetForm – Contact Form, Survey, Quiz, & Custom Form Bu… |
roxnor |
MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor |
2026-01-24T08:26:35.777Z | 2026-01-26T17:47:55.740Z |
| CVE-2026-0593 |
5.3 (3.1)
|
WP Go Maps (formerly WP Google Maps) <= 10.0.04 - Miss… |
wpgmaps |
WP Go Maps (formerly WP Google Maps) |
2026-01-24T16:25:51.700Z | 2026-01-26T17:37:40.408Z |
| CVE-2025-70983 |
9.9 (3.1)
|
Incorrect access control in the authRoutes functi… |
n/a |
n/a |
2026-01-23T00:00:00.000Z | 2026-01-23T19:46:37.743Z |
| CVE-2025-6461 |
4.3 (3.1)
|
CubeWP – All-in-One Dynamic Content Framework <= 1.1.2… |
cubewp1211 |
CubeWP Framework |
2026-01-25T02:22:37.167Z | 2026-01-26T17:37:01.515Z |
| CVE-2025-59108 |
9.2 (4.0)
|
Weak Default Passwords in dormakaba access manager |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:06:31.533Z | 2026-01-26T15:38:06.530Z |
| CVE-2025-59107 |
8.5 (4.0)
|
Static Firmware Encryption Password in dormakaba acces… |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:06:22.025Z | 2026-01-26T15:38:11.839Z |
| CVE-2025-59105 |
7 (4.0)
|
Unencrypted Flash Storage in dormakaba access manager |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:06:02.727Z | 2026-01-26T14:52:15.466Z |
| CVE-2025-59104 |
7 (4.0)
|
Unlocked Bootloader in dormakaba access manager |
dormakaba |
Access Manager 92xx-k7 |
2026-01-26T10:05:54.218Z | 2026-01-26T15:12:47.211Z |
| CVE-2025-59103 |
9.2 (4.0)
|
Weak Default Passwords for SSH Access in dormakaba acc… |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:05:45.768Z | 2026-01-26T15:13:19.837Z |
| CVE-2025-59102 |
6.9 (4.0)
|
Secrets Stored in Plaintext in Database in dormakaba a… |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:05:31.292Z | 2026-01-26T15:15:13.733Z |
| CVE-2025-59101 |
7.7 (4.0)
|
Insufficient Session Management in dormakaba access manager |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:05:20.665Z | 2026-01-26T16:00:07.304Z |
| CVE-2025-59100 |
5.9 (4.0)
|
Unauthenticated Access to the SQLite Database in dorma… |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:05:11.306Z | 2026-01-26T16:00:38.237Z |
| CVE-2025-59099 |
8.8 (4.0)
|
Unauthenticated Path Traversal in dormakaba access manager |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:05:02.663Z | 2026-01-26T16:07:15.856Z |
| CVE-2025-59098 |
8.7 (4.0)
|
Trace Functionality Leaking Sensitive Data in dormakab… |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:04:51.022Z | 2026-01-26T16:07:50.727Z |
| CVE-2025-59097 |
9.3 (4.0)
|
Unauthenticated SOAP API in dormakaba access manager |
dormakaba |
Access Manager 92xx-k5 |
2026-01-26T10:04:38.742Z | 2026-01-26T16:09:59.007Z |
| CVE-2025-59096 |
4.6 (4.0)
|
Weak Default Password in dormakaba Kaba exos 9300 |
dormakaba |
Kaba exos 9300 |
2026-01-26T10:04:24.548Z | 2026-01-26T16:10:20.331Z |
| CVE-2025-59095 |
6.8 (4.0)
|
Hard-coded Key for PIN Encryption in dormakaba Kaba ex… |
dormakaba |
Kaba exos 9300 |
2026-01-26T10:04:15.107Z | 2026-01-26T17:16:38.862Z |
| CVE-2025-59094 |
8.4 (4.0)
|
Local Privilege Escalation in dormakaba Kaba exos 9300… |
dormakaba |
Kaba exos 9300 |
2026-01-26T10:04:05.551Z | 2026-01-26T17:18:41.650Z |
| CVE-2025-59093 |
8.5 (4.0)
|
Insecure Password Derivation Function for Database Adm… |
dormakaba |
Kaba exos 9300 |
2026-01-26T10:03:54.991Z | 2026-01-26T17:24:52.738Z |
| CVE-2025-59092 |
8.7 (4.0)
|
Unauthenticated RPC Service in dormakaba Kaba exos 9300 |
dormakaba |
Kaba exos 9300 |
2026-01-26T10:03:44.324Z | 2026-01-26T17:25:26.111Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-1081 | The Set Bulk Post Categories plugin for WordPress is vulnerable to Cross-Site Request Forgery in al… | 2026-01-24T08:16:08.313 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1076 | The Star Review Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all ver… | 2026-01-24T08:16:08.140 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1075 | The ZT Captcha plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up … | 2026-01-24T08:16:07.963 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-1070 | The Alex User Counter plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versi… | 2026-01-24T08:16:07.780 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0911 | The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to… | 2026-01-24T13:15:55.300 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0862 | The Save as PDF Plugin by PDFCrowd plugin for WordPress is vulnerable to Reflected Cross-Site Scrip… | 2026-01-24T16:15:52.697 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0807 | The Frontis Blocks plugin for WordPress is vulnerable to Server-Side Request Forgery in all version… | 2026-01-24T08:16:07.580 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0806 | The WP-ClanWars plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter in … | 2026-01-24T08:16:07.400 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0800 | The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is … | 2026-01-24T09:15:53.190 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0687 | The Meta-box GalleryMeta plugin for WordPress is vulnerable to unauthorized modification of data du… | 2026-01-24T09:15:53.023 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0633 | The MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor plugin for WordPress … | 2026-01-24T09:15:52.843 | 2026-01-26T15:03:33.357 |
| fkie_cve-2026-0593 | The WP Go Maps (formerly WP Google Maps) plugin for WordPress is vulnerable to unauthorized modific… | 2026-01-24T17:15:58.997 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-70983 | Incorrect access control in the authRoutes function of SpringBlade v4.5.0 allows attackers with low… | 2026-01-23T19:15:53.793 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-6461 | The CubeWP – All-in-One Dynamic Content Framework plugin for WordPress is vulnerable to Information… | 2026-01-25T03:15:51.287 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59108 | By default, the password for the Access Manager's web interface, is set to 'admin'. In the tested v… | 2026-01-26T10:16:08.763 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59107 | Dormakaba provides the software FWServiceTool to update the firmware version of the Access Managers… | 2026-01-26T10:16:08.633 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59105 | With physical access to the device and enough time an attacker can desolder the flash memory, modif… | 2026-01-26T10:16:08.383 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59104 | With physical access to the device and enough time an attacker is able to solder test leads to the … | 2026-01-26T10:16:08.247 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59103 | The Access Manager 92xx in hardware revision K7 is based on Linux instead of Windows CE embedded in… | 2026-01-26T10:16:08.117 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59102 | The web server of the Access Manager offers a functionality to download a backup of the local datab… | 2026-01-26T10:16:07.983 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59101 | Instead of typical session tokens or cookies, it is verified on a per-request basis if the originat… | 2026-01-26T10:16:07.850 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59100 | The web interface offers a functionality to export the internal SQLite database. After executing th… | 2026-01-26T10:16:07.710 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59099 | The Access Manager is using the open source web server CompactWebServer written in C#. This web ser… | 2026-01-26T10:16:07.580 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59098 | The Access Manager is offering a trace functionality to debug errors and issues with the device. Th… | 2026-01-26T10:16:07.437 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59097 | The exos 9300 application can be used to configure Access Managers (e.g. 92xx, 9230 and 9290). The … | 2026-01-26T10:16:07.293 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59096 | The default password for the extended admin user mode in the application U9ExosAdmin.exe ("Kaba 930… | 2026-01-26T10:16:07.113 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59095 | The program libraries (DLL) and binaries used by exos 9300 contain multiple hard-coded secrets. One… | 2026-01-26T10:16:06.987 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59094 | A local privilege escalation vulnerability has been identified in the Kaba exos 9300 System managem… | 2026-01-26T10:16:06.857 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59093 | Exos 9300 instances are using a randomly generated database password to connect to the configured M… | 2026-01-26T10:16:06.723 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59092 | An RPC service, which is part of exos 9300, is reachable on port 4000, run by the process FSMobileP… | 2026-01-26T10:16:06.590 | 2026-01-26T15:03:33.357 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-gr4f-jhgx-hjhx |
6.5 (3.1)
|
Missing Authorization vulnerability in A WP Life Login Page Customizer – Customizer Login Pag… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-gjrx-9m4x-8hq8 |
5.4 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Meks Meks Quick Plugin Disabler meks-quick-plugi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-f3vg-vfv2-qq64 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Buttoner for Elementor buttoner-elementor allows E… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-f293-cv38-h9p6 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-cq3q-ph38-mjwc |
6.5 (3.1)
|
Authorization Bypass Through User-Controlled Key vulnerability in codepeople Contact Form Email con… | 2025-12-18T09:30:24Z | 2026-01-20T15:32:18Z |
| ghsa-c8ph-2xvf-c9p9 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Modalier for Elementor modalier-elementor allows E… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-9jm6-f8vm-2h74 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-9c97-mqhv-6q84 |
8.5 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-18T09:30:24Z | 2026-01-20T15:32:18Z |
| ghsa-8r89-g342-fxcq |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-8j59-pxfw-664p |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-7jg4-8pc3-8qw9 |
7.2 (3.1)
|
Incorrect Privilege Assignment vulnerability in silverplugins217 Custom Fields Account Registration… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-76hm-28jx-qx25 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:24Z | 2026-01-20T15:32:18Z |
| ghsa-6qhr-c46w-3j7m |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-5xxr-4wwq-4pgv |
5.8 (3.1)
|
Insertion of Sensitive Information Into Sent Data vulnerability in WPCenter eRoom eroom-zoom-meetin… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-5gpr-xg7c-9pmr |
5.4 (3.1)
|
Missing Authorization vulnerability in Nitesh Ultimate Auction ultimate-auction allows Exploiting … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-59jr-84cf-6w82 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-59cj-f4jq-939m |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-3rgf-x42q-9hg8 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Reformer for Elementor reformer-elementor allows E… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:18Z |
| ghsa-32jg-xqp8-jrc4 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-3223-3v8m-44cp |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-2x2x-xcc2-p46h |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-2fv4-c5wh-p3p5 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T09:30:25Z | 2026-01-20T15:32:18Z |
| ghsa-xgx6-92f3-rhqf |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-mrq7-p548-587h |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-hjv3-73x3-fw6v |
6.5 (3.1)
|
Authorization Bypass Through User-Controlled Key vulnerability in g5theme Essential Real Estate ess… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-c9mq-fjcv-jc83 |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-62wj-77q3-24px |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-48pp-2gg2-9jj6 |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-3wxp-8m6g-m8x5 |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-wr7j-j478-jx7j |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:09Z | 2026-01-20T15:32:16Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-30053 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.234037Z |
| gsd-2024-30908 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.233839Z |
| gsd-2024-30073 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.233634Z |
| gsd-2024-30349 | Foxit PDF Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability… | 2024-04-03T05:02:29.233110Z |
| gsd-2024-30911 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.232843Z |
| gsd-2024-30470 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.232646Z |
| gsd-2024-30087 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.232443Z |
| gsd-2024-30449 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-03T05:02:29.231841Z |
| gsd-2024-30553 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-03T05:02:29.231076Z |
| gsd-2024-30765 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.230690Z |
| gsd-2024-30249 | Cloudburst Network provides network components used within Cloudburst projects. A vulnera… | 2024-04-03T05:02:29.230487Z |
| gsd-2024-30494 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-03T05:02:29.229894Z |
| gsd-2024-30003 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.229602Z |
| gsd-2024-30743 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.229387Z |
| gsd-2024-30661 | An unauthorized access vulnerability has been discovered in ROS Melodic Morenia versions … | 2024-04-03T05:02:29.229163Z |
| gsd-2024-30201 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-03T05:02:29.228561Z |
| gsd-2024-30006 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.228098Z |
| gsd-2024-30715 | A buffer overflow vulnerability has been discovered in the C++ components of ROS2 Dashing… | 2024-04-03T05:02:29.227886Z |
| gsd-2024-30556 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-03T05:02:29.227294Z |
| gsd-2024-30626 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the schedEndTime paramet… | 2024-04-03T05:02:29.226322Z |
| gsd-2024-30387 | A Missing Synchronization vulnerability in the Packet Forwarding Engine (PFE) of Juniper … | 2024-04-03T05:02:29.225876Z |
| gsd-2024-30115 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.225602Z |
| gsd-2024-30511 | Insertion of Sensitive Information into Log File vulnerability in Frédéric GILLES FG Pres… | 2024-04-03T05:02:29.224847Z |
| gsd-2024-30108 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.224522Z |
| gsd-2024-30669 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.224333Z |
| gsd-2024-30803 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.224146Z |
| gsd-2024-30155 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.223950Z |
| gsd-2024-30703 | An arbitrary file upload vulnerability has been discovered in ROS2 (Robot Operating Syste… | 2024-04-03T05:02:29.223758Z |
| gsd-2024-30019 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.223509Z |
| gsd-2024-30690 | An unauthorized node injection vulnerability has been identified in ROS2 Galactic Geochel… | 2024-04-03T05:02:29.223321Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-191037 | Malicious code in @oku-ui/accordion (npm) | 2025-11-24T23:05:27Z | 2025-12-01T04:28:26Z |
| mal-2025-191035 | Malicious code in @ntnx/passport-wso2 (npm) | 2025-11-24T22:53:50Z | 2025-12-01T04:28:26Z |
| mal-2025-191034 | Malicious code in @lpdjs/firestore-repo-service (npm) | 2025-11-24T22:53:10Z | 2025-12-01T04:28:26Z |
| mal-2025-191033 | Malicious code in @louisle2/core (npm) | 2025-11-24T22:52:45Z | 2025-12-01T04:28:26Z |
| mal-2025-191032 | Malicious code in @lessondesk/schoolbus (npm) | 2025-11-24T22:51:40Z | 2025-12-01T04:28:26Z |
| mal-2025-191031 | Malicious code in @lessondesk/react-table-context (npm) | 2025-11-24T22:51:19Z | 2025-12-01T04:28:26Z |
| mal-2025-191030 | Malicious code in @lessondesk/material-icons (npm) | 2025-11-24T22:50:34Z | 2025-12-01T04:28:26Z |
| mal-2025-191029 | Malicious code in @lessondesk/eslint-config (npm) | 2025-11-24T22:50:17Z | 2025-12-01T04:28:26Z |
| mal-2025-191028 | Malicious code in @lessondesk/electron-group-api-client (npm) | 2025-11-24T22:49:44Z | 2025-12-01T04:28:26Z |
| mal-2025-191027 | Malicious code in @lessondesk/babel-preset (npm) | 2025-11-24T22:49:11Z | 2025-12-01T04:28:26Z |
| mal-2025-191026 | Malicious code in @lessondesk/api-client (npm) | 2025-11-24T22:48:39Z | 2025-12-01T04:28:26Z |
| mal-2025-191025 | Malicious code in 02-echo (npm) | 2025-11-24T22:41:42Z | 2025-12-01T04:28:26Z |
| mal-2025-190921 | Malicious code in capacitor-voice-recorder-wav (npm) | 2025-11-24T16:31:47Z | 2025-11-28T18:26:19Z |
| mal-2025-190845 | Malicious code in github-action-for-generator (npm) | 2025-11-24T14:58:18Z | 2025-11-28T17:24:30Z |
| mal-2025-190927 | Malicious code in web-types-lit (npm) | 2025-11-24T16:31:47Z | 2025-11-27T22:24:34Z |
| mal-2025-191470 | Malicious code in org.mvnpm:posthog-node (Maven) | 2025-11-26T04:39:24Z | 2025-11-26T04:39:24Z |
| mal-2025-190782 | Malicious code in shinhan-limit-scrap (npm) | 2025-11-24T03:59:38Z | 2025-11-26T04:12:49Z |
| mal-2025-190823 | Malicious code in @quick-start-soft/quick-markdown-image (npm) | 2025-11-24T03:40:26Z | 2025-11-26T04:12:45Z |
| mal-2025-190803 | Malicious code in @ensdomains/cypress-metamask (npm) | 2025-11-24T06:02:42Z | 2025-11-26T04:12:45Z |
| mal-2025-191009 | Malicious code in sa-id-gen (npm) | 2025-11-24T21:37:46Z | 2025-11-26T03:39:29Z |
| mal-2025-191010 | Malicious code in set-nested-prop (npm) | 2025-11-24T21:36:05Z | 2025-11-26T02:52:21Z |
| mal-2025-191005 | Malicious code in react-native-view-finder (npm) | 2025-11-24T22:05:55Z | 2025-11-26T02:52:21Z |
| mal-2025-191003 | Malicious code in react-native-phone-call (npm) | 2025-11-24T22:09:31Z | 2025-11-26T02:52:21Z |
| mal-2025-190937 | Malicious code in undefsafe-typed (npm) | 2025-11-24T21:08:08Z | 2025-11-25T00:49:09Z |
| mal-2025-190860 | Malicious code in test-foundry-app (npm) | 2025-11-24T14:25:04Z | 2025-11-25T00:49:09Z |
| mal-2025-190780 | Malicious code in redux-router-kit (npm) | 2025-11-24T14:01:46Z | 2025-11-25T00:49:08Z |
| mal-2025-190944 | Malicious code in wellness-expert-ng-gallery (npm) | 2025-11-24T20:58:37Z | 2025-11-25T00:36:53Z |
| mal-2025-190943 | Malicious code in web-scraper-mcp (npm) | 2025-11-24T20:59:27Z | 2025-11-25T00:36:53Z |
| mal-2025-190942 | Malicious code in valid-south-african-id (npm) | 2025-11-24T21:01:09Z | 2025-11-25T00:36:53Z |
| mal-2025-190941 | Malicious code in use-unsaved-changes (npm) | 2025-11-24T21:02:17Z | 2025-11-25T00:36:53Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-0029 | Ivanti Connect Secure: Mehrere Schwachstellen ermöglichen Codeausführung und Privilegienerweiterung | 2025-01-08T23:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2024-3140 | Juniper JUNOS: Mehrere Schwachstellen | 2024-10-09T22:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2024-1892 | Red Hat OpenShift: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-08-21T22:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2024-1398 | Red Hat Enterprise Linux (Flatpak): Schwachstelle ermöglicht Codeausführung | 2024-06-17T22:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2024-0182 | Linux Kernel: Mehrere Schwachstellen | 2024-01-23T23:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2023-2476 | Ruby: Mehrere Schwachstellen | 2020-03-31T22:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2023-2462 | Ruby: Mehrere Schwachstellen | 2021-04-05T22:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2022-0877 | Ruby: Mehrere Schwachstellen | 2021-11-24T23:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2022-0876 | Ruby: Schwachstelle ermöglicht Denial of Service | 2021-11-14T23:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2022-0119 | Ruby: Mehrere Schwachstellen | 2022-04-12T22:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2025-0027 | Joomla: Mehrere Schwachstellen | 2025-01-07T23:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2025-0024 | Dell PowerScale: Schwachstelle ermöglicht Denial of Service | 2025-01-07T23:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2025-0023 | ABB AC-500: Mehrere Schwachstellen | 2025-01-07T23:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2025-0022 | VMware Cloud Foundation: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-01-07T23:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2025-0021 | SonicWall SSL-VPN: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-01-07T23:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2025-0019 | Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen | 2020-10-13T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2025-0018 | Ruby: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-01-07T23:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3405 | Broadcom Fabric OS: Mehrere Schwachstellen | 2024-11-11T23:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3141 | Mitel MiCollab: Mehrere Schwachstellen | 2024-10-09T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3049 | Apache Lucene Replicator: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2024-09-29T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-2208 | CODESYS: Schwachstelle ermöglicht Denial of Service | 2024-09-23T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-2207 | Red Hat Enterprise Linux: Mehrere Schwachstellen ermöglichen Privilegieneskalation und Codeausführung | 2024-09-23T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-1310 | IBM Java SDK: Schwachstelle ermöglicht Denial of Service | 2024-06-06T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-1285 | CODESYS: Mehrere Schwachstellen | 2024-06-03T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-0997 | Tinyproxy: Mehrere Schwachstellen | 2024-05-01T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-0943 | CODESYS: Mehrere Schwachstellen | 2024-04-21T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2023-1272 | Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen | 2021-03-16T23:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2022-0179 | E2FSProgs: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-05-16T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2025-0015 | Progress Software Sitefinity: Mehrere Schwachstellen | 2025-01-06T23:00:00.000+00:00 | 2025-01-06T23:00:00.000+00:00 |
| wid-sec-w-2025-0014 | Samsung Android: Mehrere Schwachstellen | 2025-01-06T23:00:00.000+00:00 | 2025-01-06T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:7437 | Red Hat Security Advisory: avahi security update | 2025-05-13T14:13:01+00:00 | 2026-01-28T15:35:22+00:00 |
| rhsa-2025:4794 | Red Hat Security Advisory: emacs security update | 2025-05-12T10:04:02+00:00 | 2026-01-28T15:35:22+00:00 |
| rhsa-2025:4793 | Red Hat Security Advisory: emacs security update | 2025-05-12T10:29:22+00:00 | 2026-01-28T15:35:22+00:00 |
| rhsa-2025:4787 | Red Hat Security Advisory: emacs security update | 2025-05-12T01:33:16+00:00 | 2026-01-28T15:35:21+00:00 |
| rhsa-2025:11030 | Red Hat Security Advisory: emacs security update | 2025-07-15T01:37:44+00:00 | 2026-01-28T15:35:11+00:00 |
| rhsa-2025:11487 | Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage | 2025-07-21T19:25:21+00:00 | 2026-01-28T15:35:08+00:00 |
| rhsa-2025:0064 | Red Hat Security Advisory: kernel-rt security update | 2025-01-08T00:24:16+00:00 | 2026-01-28T15:35:00+00:00 |
| rhsa-2025:0063 | Red Hat Security Advisory: kernel security update | 2025-01-08T02:56:21+00:00 | 2026-01-28T15:35:00+00:00 |
| rhsa-2024:8161 | Red Hat Security Advisory: kernel security update | 2024-10-16T00:36:58+00:00 | 2026-01-28T15:34:57+00:00 |
| rhsa-2024:10941 | Red Hat Security Advisory: kernel security update | 2024-12-11T16:19:38+00:00 | 2026-01-28T15:34:40+00:00 |
| rhsa-2025:1802 | Red Hat Security Advisory: tuned security update | 2025-02-25T11:35:07+00:00 | 2026-01-28T15:17:28+00:00 |
| rhsa-2025:1785 | Red Hat Security Advisory: tuned security update | 2025-02-25T07:26:06+00:00 | 2026-01-28T15:17:27+00:00 |
| rhsa-2025:0881 | Red Hat Security Advisory: tuned security update | 2025-02-03T00:09:45+00:00 | 2026-01-28T15:17:26+00:00 |
| rhsa-2025:11810 | Red Hat Security Advisory: kernel security update | 2025-07-28T03:13:16+00:00 | 2026-01-28T15:17:24+00:00 |
| rhsa-2025:0880 | Red Hat Security Advisory: tuned security update | 2025-02-03T00:09:45+00:00 | 2026-01-28T15:17:20+00:00 |
| rhsa-2025:0879 | Red Hat Security Advisory: tuned security update | 2025-02-03T00:09:34+00:00 | 2026-01-28T15:17:19+00:00 |
| rhsa-2025:0327 | Red Hat Security Advisory: tuned security update | 2025-01-15T09:47:02+00:00 | 2026-01-28T15:17:16+00:00 |
| rhsa-2025:0368 | Red Hat Security Advisory: tuned security update | 2025-01-16T11:46:25+00:00 | 2026-01-28T15:17:14+00:00 |
| rhsa-2025:0195 | Red Hat Security Advisory: tuned security update | 2025-01-09T14:56:20+00:00 | 2026-01-28T15:17:12+00:00 |
| rhsa-2024:9605 | Red Hat Security Advisory: kernel security update | 2024-11-14T00:29:34+00:00 | 2026-01-28T15:17:06+00:00 |
| rhsa-2024:9546 | Red Hat Security Advisory: kernel security update | 2024-11-13T15:59:33+00:00 | 2026-01-28T15:17:06+00:00 |
| rhsa-2024:9500 | Red Hat Security Advisory: kernel security update | 2024-11-13T00:31:50+00:00 | 2026-01-28T15:17:04+00:00 |
| rhsa-2024:9498 | Red Hat Security Advisory: kernel-rt security update | 2024-11-13T00:14:10+00:00 | 2026-01-28T15:17:03+00:00 |
| rhsa-2024:9497 | Red Hat Security Advisory: kernel security update | 2024-11-13T00:34:10+00:00 | 2026-01-28T15:17:02+00:00 |
| rhsa-2024:6998 | Red Hat Security Advisory: kernel security update | 2024-09-24T01:17:32+00:00 | 2026-01-28T15:16:50+00:00 |
| rhsa-2024:6753 | Red Hat Security Advisory: kernel security update | 2024-09-18T11:46:50+00:00 | 2026-01-28T15:16:48+00:00 |
| rhsa-2024:4352 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2024-07-08T02:05:47+00:00 | 2026-01-28T15:16:36+00:00 |
| rhsa-2024:4211 | Red Hat Security Advisory: kernel security and bug fix update | 2024-07-02T09:02:14+00:00 | 2026-01-28T15:16:30+00:00 |
| rhsa-2024:1188 | Red Hat Security Advisory: kernel security, bug fix, and enhancement update | 2024-03-06T12:44:15+00:00 | 2026-01-28T15:16:28+00:00 |
| rhsa-2024:11161 | Red Hat Security Advisory: tuned security update | 2024-12-17T19:06:56+00:00 | 2026-01-28T15:16:26+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-55549 | xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue | 2025-03-02T00:00:00.000Z | 2025-04-01T00:00:00.000Z |
| msrc_cve-2024-45337 | Misuse of connection.serverAuthenticate may cause authorization bypass in golang.org/x/crypto | 2024-12-02T00:00:00.000Z | 2025-04-01T00:00:00.000Z |
| msrc_cve-2024-3652 | IKEv1 default AH/ESP responder can cause libreswan to abort and restart | 2024-04-02T07:00:00.000Z | 2025-04-01T00:00:00.000Z |
| msrc_cve-2024-2002 | Libdwarf: crashes randomly on fuzzed object | 2024-03-02T08:00:00.000Z | 2025-04-01T00:00:00.000Z |
| msrc_cve-2023-30570 | pluto in Libreswan before 4.11 allows a denial of service (responder SPI mishandling and daemon crash) via unauthenticated IKEv1 Aggressive Mode packets. The earliest affected version is 3.28. | 2023-05-01T00:00:00.000Z | 2025-04-01T00:00:00.000Z |
| msrc_cve-2021-22569 | Denial of Service of protobuf-java parsing procedure | 2022-01-02T00:00:00.000Z | 2025-04-01T00:00:00.000Z |
| msrc_cve-2025-26683 | Azure Playwright Elevation of Privilege Vulnerability | 2025-03-11T07:00:00.000Z | 2025-03-31T07:00:00.000Z |
| msrc_cve-2025-21384 | Azure Health Bot Elevation of Privilege Vulnerability | 2025-03-11T07:00:00.000Z | 2025-03-31T07:00:00.000Z |
| msrc_cve-2025-24055 | Windows USB Video Class System Driver Information Disclosure Vulnerability | 2025-03-11T07:00:00.000Z | 2025-03-30T07:00:00.000Z |
| msrc_cve-2024-31580 | PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in the component /runtime/vararg_functions.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. | 2024-04-02T07:00:00.000Z | 2025-03-29T00:00:00.000Z |
| msrc_cve-2025-29768 | Vim vulnerable to potential data loss with zip.vim and special crafted zip files | 2025-03-02T00:00:00.000Z | 2025-03-28T00:00:00.000Z |
| msrc_cve-2023-29942 | llvm-project commit a0138390 was discovered to contain a segmentation fault via the component mlir::Type::isa<mlir::LLVM::LLVMVoidType. | 2023-05-01T00:00:00.000Z | 2025-03-28T00:00:00.000Z |
| msrc_cve-2023-29941 | llvm-project commit a0138390 was discovered to contain a segmentation fault via the component matchAndRewriteSortOp<mlir::sparse_tensor::SortOp>(mlir::sparse_tensor::SortOp. | 2023-05-01T00:00:00.000Z | 2025-03-28T00:00:00.000Z |
| msrc_cve-2023-29935 | llvm-project commit a0138390 was discovered to contain an assertion failure at !replacements.count(op) && "operation was already replaced. | 2023-05-01T00:00:00.000Z | 2025-03-28T00:00:00.000Z |
| msrc_cve-2023-29933 | llvm-project commit bd456297 was discovered to contain a segmentation fault via the component mlir::Block::getArgument. | 2023-05-01T00:00:00.000Z | 2025-03-28T00:00:00.000Z |
| msrc_cve-2022-45142 | The fix for CVE-2022-3437 included changing memcmp to be constant time and a workaround for a compiler bug by adding "!= 0" comparisons to the result of memcmp. When these patches were backported to the heimdal-7.7.1 and heimdal-7.8.0 branches (and possibly other branches) a logic inversion sneaked in causing the validation of message integrity codes in gssapi/arcfour to be inverted. | 2023-03-10T00:00:00.000Z | 2025-03-28T00:00:00.000Z |
| msrc_cve-2025-22869 | Potential denial of service in golang.org/x/crypto | 2025-02-02T00:00:00.000Z | 2025-03-27T00:00:00.000Z |
| msrc_cve-2025-22868 | Unexpected memory consumption during token parsing in golang.org/x/oauth2 | 2025-02-02T00:00:00.000Z | 2025-03-27T00:00:00.000Z |
| msrc_cve-2024-53920 | In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point (for code completion) on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. (This unsafe expansion also occurs if a user chooses to enable on-the-fly diagnosis that byte compiles untrusted Emacs Lisp source code.) | 2024-11-02T00:00:00.000Z | 2025-03-27T00:00:00.000Z |
| msrc_cve-2024-34397 | An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a shared computer, other users of the same computer can send spoofed D-Bus signals that the GDBus-based client will wrongly interpret as having been sent by the trusted system service. This could lead to the GDBus-based client behaving incorrectly, with an application-dependent impact. | 2024-05-02T07:00:00.000Z | 2025-03-27T00:00:00.000Z |
| msrc_cve-2023-6918 | Libssh: missing checks for return values for digests | 2023-12-01T08:00:00.000Z | 2025-03-27T00:00:00.000Z |
| msrc_cve-2023-6004 | Libssh: proxycommand/proxyjump features allow injection of malicious code through hostname | 2024-01-01T08:00:00.000Z | 2025-03-27T00:00:00.000Z |
| msrc_cve-2023-46137 | twisted.web has disordered HTTP pipeline response | 2023-10-01T00:00:00.000Z | 2025-03-27T00:00:00.000Z |
| msrc_cve-2020-8565 | Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9 | 2020-12-02T00:00:00.000Z | 2025-03-27T00:00:00.000Z |
| msrc_cve-2023-5088 | Qemu: improper ide controller reset can lead to mbr overwrite | 2023-11-01T07:00:00.000Z | 2025-03-26T00:00:00.000Z |
| msrc_cve-2023-31147 | Insufficient randomness in generation of DNS query IDs in c-ares | 2023-05-01T00:00:00.000Z | 2025-03-25T00:00:00.000Z |
| msrc_cve-2024-1013 | Unixodbc: out of bounds stack write due to pointer-to-integer types conversion | 2024-03-02T08:00:00.000Z | 2025-03-24T00:00:00.000Z |
| msrc_cve-2025-26645 | Remote Desktop Client Remote Code Execution Vulnerability | 2025-03-11T07:00:00.000Z | 2025-03-23T07:00:00.000Z |
| msrc_cve-2025-25008 | Windows Server Elevation of Privilege Vulnerability | 2025-03-11T07:00:00.000Z | 2025-03-23T07:00:00.000Z |
| msrc_cve-2025-29795 | Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability | 2025-03-11T07:00:00.000Z | 2025-03-21T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202407-1133 | TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulne… | 2025-06-29T22:58:20.838000Z |
| var-202407-1770 | TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulne… | 2025-06-29T22:51:23.885000Z |
| var-202407-2337 | A vulnerability was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102. It has been classifi… | 2025-06-29T22:51:23.812000Z |
| var-202407-2400 | A vulnerability has been found in TOTOLINK A3600R 4.1.2cu.5182_B20201102 and classified a… | 2025-06-29T22:51:23.784000Z |
| var-202408-0320 | A vulnerability classified as critical has been found in TOTOLINK EX200 4.0.3c.7646_B2020… | 2025-06-29T22:51:23.690000Z |
| var-202409-0140 | A vulnerability has been found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 and classified… | 2025-06-29T22:51:23.184000Z |
| var-202505-1655 | A vulnerability classified as critical has been found in TOTOLINK A3002R and A3002RU 3.0.… | 2025-06-29T19:33:16.793000Z |
| var-202506-0573 | A vulnerability was found in Tenda FH1202 1.2.0.14. It has been classified as critical. A… | 2025-06-29T19:33:16.641000Z |
| var-202506-0015 | A vulnerability, which was classified as critical, has been found in Linksys RE6500, RE62… | 2025-06-28T23:42:37.577000Z |
| var-202403-2113 | There is stack-based buffer overflow vulnerability in pc_change_act function in Linksys E… | 2025-06-28T23:40:25.365000Z |
| var-202506-0010 | A vulnerability classified as critical was found in Linksys RE6500, RE6250, RE6300, RE635… | 2025-06-28T23:38:46.259000Z |
| var-202411-2400 | An issue in TOTOLINK Bluetooth Wireless Adapter A600UB allows a local attacker to execute… | 2025-06-28T23:35:40.616000Z |
| var-202505-0993 | Initialization vector (IV) reuse in the web management portal of the Tenda RX2 Pro 16.03.… | 2025-06-28T23:33:02.695000Z |
| var-202503-0647 | In wl_notify_gscan_event of wl_cfgscan.c, there is a possible out of bounds write due to … | 2025-06-28T23:30:38.785000Z |
| var-202505-1738 | A vulnerability was found in Tenda A15 15.13.07.13. It has been declared as problematic. … | 2025-06-28T23:28:29.503000Z |
| var-202503-0652 | In ppcfw_deny_sec_dram_access of ppcfw.c, there is a possible arbitrary read from TEE mem… | 2025-06-28T23:25:43.389000Z |
| var-202505-4269 | TRENDnet is a leading global network equipment supplier, focusing on providing innovative… | 2025-06-28T23:25:42.787000Z |
| var-201805-0937 | Medtronic N'Vision Clinician Programmer 8840 N'Vision Clinician Programme and 8870 N'Visi… | 2025-06-28T23:14:03.579000Z |
| var-202506-1768 | HP LaserJet Pro MFP M126nw is a black and white laser all-in-one printer. HP LaserJet Pr… | 2025-06-27T23:19:23.993000Z |
| var-202506-2186 | NETGEAR Gateway C6300BD is a cable modem and router in one device, designed to provide qu… | 2025-06-27T23:19:23.805000Z |
| var-202506-2585 | D-link DWR-M961 is a 4G AC1200 LTE router. D-Link Electronics (Shanghai) Co., Ltd. DWR-M… | 2025-06-27T23:19:23.600000Z |
| var-202506-2795 | Suzhou Keda Technology Co., Ltd. is a leading provider of video and security products and… | 2025-06-27T23:19:23.501000Z |
| var-202502-1799 | A vulnerability classified as critical was found in D-Link DAP-1320 1.00. Affected by thi… | 2025-06-27T23:18:59.186000Z |
| var-202505-4073 | An Unchecked Loop Condition in ASPECT provides an attacker the ability to maliciously con… | 2025-06-27T23:18:58.580000Z |
| var-202506-2578 | Samsung SL-J3560FW is a multi-function inkjet printer. Samsung (China) Investment Co.,… | 2025-06-27T23:18:57.619000Z |
| var-202506-2788 | Logger1000 is a data collection, power control and protocol conversion device used in pho… | 2025-06-27T23:18:57.521000Z |
| var-202506-2998 | H3C Magic NX15000 10G Wi-Fi 6 Router is a high-end router for users and groups who pursue… | 2025-06-27T23:18:57.407000Z |
| var-201903-0002 | The potential exists for exposure of the product's password used to restrict unauthorized… | 2025-06-27T23:18:48.353000Z |
| var-202505-4266 | Device commissioning parameters in ASPECT may be modified by an external source if admini… | 2025-06-27T23:18:36.908000Z |
| var-202506-2182 | MP C3004ex is a color digital multifunction printer. Ricoh (China) Investment Co., Ltd. … | 2025-06-27T23:18:36.187000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2024:2862-1 | Security update for bind | 2024-08-09T07:20:35Z | 2024-08-09T07:20:35Z |
| suse-su-2024:2861-1 | Security update for python-Django | 2024-08-09T07:18:39Z | 2024-08-09T07:18:39Z |
| suse-su-2024:2860-1 | Security update for python3-Twisted | 2024-08-09T05:34:13Z | 2024-08-09T05:34:13Z |
| suse-su-2024:2859-1 | Security update for kubernetes1.24 | 2024-08-08T14:20:41Z | 2024-08-08T14:20:41Z |
| suse-su-2024:2858-1 | Security update for kubernetes1.23 | 2024-08-08T14:20:13Z | 2024-08-08T14:20:13Z |
| suse-su-2024:2853-1 | Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP5) | 2024-08-08T12:35:24Z | 2024-08-08T12:35:24Z |
| suse-su-2024:2852-1 | Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP5) | 2024-08-08T12:35:12Z | 2024-08-08T12:35:12Z |
| suse-su-2024:2851-1 | Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP5) | 2024-08-08T12:35:01Z | 2024-08-08T12:35:01Z |
| suse-su-2024:2850-1 | Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP5) | 2024-08-08T12:34:49Z | 2024-08-08T12:34:49Z |
| suse-su-2024:2843-1 | Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP5) | 2024-08-08T12:06:34Z | 2024-08-08T12:06:34Z |
| suse-su-2024:2827-1 | Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP5) | 2024-08-08T12:06:23Z | 2024-08-08T12:06:23Z |
| suse-su-2024:2841-1 | Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP4) | 2024-08-08T12:06:12Z | 2024-08-08T12:06:12Z |
| suse-su-2024:2840-1 | Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP4) | 2024-08-08T12:06:02Z | 2024-08-08T12:06:02Z |
| suse-su-2024:2823-1 | Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP4) | 2024-08-08T11:34:48Z | 2024-08-08T11:34:48Z |
| suse-su-2024:2825-1 | Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP4) | 2024-08-08T11:34:36Z | 2024-08-08T11:34:36Z |
| suse-su-2024:2824-1 | Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP4) | 2024-08-08T11:34:25Z | 2024-08-08T11:34:25Z |
| suse-su-2024:2822-1 | Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5) | 2024-08-08T11:34:04Z | 2024-08-08T11:34:04Z |
| suse-su-2024:2821-1 | Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5) | 2024-08-08T11:33:55Z | 2024-08-08T11:33:55Z |
| suse-su-2024:2818-1 | Security update for the Linux Kernel (Live Patch 45 for SLE 12 SP5) | 2024-08-08T11:33:30Z | 2024-08-08T11:33:30Z |
| suse-su-2024:2817-1 | Security update for python-Django | 2024-08-07T13:32:44Z | 2024-08-07T13:32:44Z |
| suse-su-2024:2816-1 | Security update for python-Django | 2024-08-07T13:32:24Z | 2024-08-07T13:32:24Z |
| suse-su-2024:2815-1 | Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP3) | 2024-08-07T10:33:31Z | 2024-08-07T10:33:31Z |
| suse-su-2024:2814-1 | Security update for ffmpeg | 2024-08-07T10:02:37Z | 2024-08-07T10:02:37Z |
| suse-su-2024:2813-1 | Security update for libnbd | 2024-08-07T10:01:38Z | 2024-08-07T10:01:38Z |
| suse-su-2024:2811-1 | Security update for bind | 2024-08-07T07:51:15Z | 2024-08-07T07:51:15Z |
| suse-su-2024:2810-1 | Security update for bind | 2024-08-07T07:50:37Z | 2024-08-07T07:50:37Z |
| suse-su-2024:2809-1 | Security update for shadow | 2024-08-07T07:49:50Z | 2024-08-07T07:49:50Z |
| suse-su-2024:2808-1 | Security update for shadow | 2024-08-07T07:49:33Z | 2024-08-07T07:49:33Z |
| suse-su-2024:2807-1 | Security update for shadow | 2024-08-07T07:49:21Z | 2024-08-07T07:49:21Z |
| suse-su-2024:2806-1 | Security update for shadow | 2024-08-07T07:49:09Z | 2024-08-07T07:49:09Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:11747-1 | python310-numba-0.55.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11746-1 | corepack16-16.13.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11745-1 | libQt5Pdf5-5.15.8-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11744-1 | ghostscript-9.54.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11743-1 | netty-4.1.72-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11742-1 | libQt5Bootstrap-devel-static-32bit-5.15.2+kde268-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11741-1 | htmldoc-1.9.14-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11740-1 | flatpak-1.12.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11739-1 | chromedriver-97.0.4692.71-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11738-1 | busybox-1.35.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11737-1 | gvim-8.2.4063-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11736-1 | prosody-0.11.12-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11735-1 | kubevirt-container-disk-0.49.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11734-1 | gajim-1.3.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11733-1 | MozillaThunderbird-91.5.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11732-1 | MozillaFirefox-96.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11731-1 | libsystemd0-249.7-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11730-1 | corepack17-17.3.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11729-1 | zram-generator-1.1.1~git5.8612dbb-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11728-1 | python3-watchman-1.4.0-6.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11727-1 | liburiparser1-0.9.6-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11726-1 | rke-1.3.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11725-1 | python310-Django-4.0.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11724-1 | pcmanfm-1.3.2-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11723-1 | gnuplot-5.4.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11722-1 | spotifyd-0.3.3-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11721-1 | librav1e0-0.5.1+0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11720-1 | cargo-c-0.8.1~git0.cce1b08-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11719-1 | neomutt-20211029-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11718-1 | jawn-ast-0.14.1-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-consul-2021-41803 | 2024-03-06T10:52:42.202Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2021-38698 | 2024-03-06T10:52:52.988Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2021-37219 | 2024-03-06T10:53:02.967Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2021-36213 | 2024-03-06T10:53:11.575Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2021-32574 | 2024-03-06T10:53:21.700Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2021-3121 | 2024-03-06T10:53:33.669Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2021-28156 | 2024-03-06T10:53:45.007Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2020-7955 | 2024-03-06T10:53:55.191Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2020-7219 | 2024-03-06T10:54:04.970Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2020-28053 | 2024-03-06T10:54:15.090Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2020-25864 | 2024-03-06T10:54:23.598Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2020-13250 | 2024-03-06T10:54:43.689Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2020-13170 | 2024-03-06T10:54:54.162Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2020-12797 | 2024-03-06T10:55:03.903Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2020-12758 | 2024-03-06T10:55:15.268Z | 2025-04-03T14:40:37.652Z | |
| bit-concourse-2022-31683 | 2024-03-06T10:50:52.308Z | 2025-04-03T14:40:37.652Z | |
| bit-clickhouse-2020-26759 | 2024-03-06T10:50:51.666Z | 2025-04-03T14:40:37.652Z | |
| bit-cassandra-2020-17516 | 2024-03-06T10:51:09.067Z | 2025-04-03T14:40:37.652Z | |
| bit-cassandra-2020-13946 | 2024-03-06T10:51:19.779Z | 2025-04-03T14:40:37.652Z | |
| bit-appsmith-2024-55964 | 2025-04-02T07:06:54.525Z | 2025-04-03T14:40:37.652Z | |
| bit-appsmith-2024-55963 | 2025-04-02T07:06:56.893Z | 2025-04-03T14:40:37.652Z | |
| bit-appsmith-2024-51408 | 2024-11-07T07:07:47.085Z | 2025-04-03T14:40:37.652Z | |
| bit-appsmith-2022-39824 | 2024-03-06T10:50:47.399Z | 2025-04-03T14:40:37.652Z | |
| bit-appsmith-2022-38299 | 2024-03-06T10:51:02.508Z | 2025-04-03T14:40:37.652Z | |
| bit-appsmith-2022-38298 | 2024-03-06T10:51:15.688Z | 2025-04-03T14:40:37.652Z | |
| bit-apisix-2020-13945 | 2024-03-06T10:51:26.305Z | 2025-04-03T14:40:37.652Z | |
| bit-apache-2020-9490 | 2024-03-06T10:56:35.882Z | 2025-04-03T14:40:37.652Z | |
| bit-apache-2020-1934 | 2024-03-06T10:56:53.607Z | 2025-04-03T14:40:37.652Z | |
| bit-apache-2020-1927 | 2024-03-06T10:57:05.567Z | 2025-04-03T14:40:37.652Z | |
| bit-apache-2020-11993 | 2024-03-06T10:57:38.504Z | 2025-04-03T14:40:37.652Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-20861 | lunary跨站脚本漏洞 | 2025-08-26 | 2025-09-09 |
| cnvd-2025-20855 | QNAP Systems File Station 5空指针取消引用漏洞(CNVD-2025-20855) | 2025-09-02 | 2025-09-09 |
| cnvd-2025-20854 | QNAP Systems File Station 5空指针取消引用漏洞(CNVD-2025-20854) | 2025-09-02 | 2025-09-09 |
| cnvd-2025-20853 | QNAP Systems File Station 5空指针取消引用漏洞(CNVD-2025-20853) | 2025-09-02 | 2025-09-09 |
| cnvd-2025-20852 | QNAP Systems File Station 5空指针取消引用漏洞(CNVD-2025-20852) | 2025-09-02 | 2025-09-09 |
| cnvd-2025-20844 | Huawei HarmonyOS devicemanager绑定认证绕过漏洞 | 2025-08-18 | 2025-09-09 |
| cnvd-2025-20839 | Belkin F9K1122命令注入漏洞(CNVD-2025-20839) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20838 | Belkin F9K1122堆栈缓冲区溢出漏洞(CNVD-2025-20838) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20836 | Belkin F9K1122堆栈缓冲区溢出漏洞(CNVD-2025-20836) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20835 | Belkin F9K1122堆栈缓冲区溢出漏洞(CNVD-2025-20835) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20834 | Belkin F9K1122命令注入漏洞(CNVD-2025-20834) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20833 | Belkin F9K1122堆栈缓冲区溢出漏洞(CNVD-2025-20833) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20832 | Belkin F9K1122堆栈缓冲区溢出漏洞(CNVD-2025-20832) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20831 | Belkin F9K1122堆栈缓冲区溢出漏洞(CNVD-2025-20831) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20830 | Belkin F9K1122堆栈缓冲区溢出漏洞(CNVD-2025-20830) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20829 | Belkin F9K1122堆栈缓冲区溢出漏洞(CNVD-2025-20829) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20828 | Belkin F9K1122命令注入漏洞 | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20827 | Belkin F9K1122堆栈缓冲区溢出漏洞(CNVD-2025-20827) | 2025-07-11 | 2025-09-09 |
| cnvd-2025-20826 | Complaint Management System userprofile.php文件跨站脚本漏洞 | 2025-09-05 | 2025-09-09 |
| cnvd-2025-20825 | Complaint Management System in PHP subcategory.php文件跨站脚本漏洞 | 2025-09-05 | 2025-09-09 |
| cnvd-2025-20824 | Complaint Management System in PHP reset-password.php文件SQL注入漏洞 | 2025-09-05 | 2025-09-09 |
| cnvd-2025-20823 | Complaint Management System registration.php文件SQL注入漏洞 | 2025-09-05 | 2025-09-09 |
| cnvd-2025-20822 | Complaint Management System SQL注入漏洞 | 2025-09-05 | 2025-09-09 |
| cnvd-2025-20814 | Alpine iLX-507输入验证错误漏洞 | 2025-08-10 | 2025-09-09 |
| cnvd-2025-20813 | Alpine iLX-507堆栈缓冲区溢出漏洞(CNVD-2025-20813) | 2025-08-10 | 2025-09-09 |
| cnvd-2025-20812 | Alpine iLX-507命令注入漏洞(CNVD-2025-20812) | 2025-08-10 | 2025-09-09 |
| cnvd-2025-20811 | Alpine iLX-507堆栈缓冲区溢出漏洞(CNVD-2025-20811) | 2025-08-10 | 2025-09-09 |
| cnvd-2025-20810 | Alpine iLX-507堆栈缓冲区溢出漏洞(CNVD-2025-20810) | 2025-08-10 | 2025-09-09 |
| cnvd-2025-20809 | Alpine iLX-507堆栈缓冲区溢出漏洞 | 2025-08-10 | 2025-09-09 |
| cnvd-2025-20808 | Alpine iLX-507 UPDM_wstpCBCUpdStart函数操作系统命令注入漏洞 | 2025-08-10 | 2025-09-09 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-avi-014 | Vulnérabilité dans Samba | 2022-01-11T00:00:00.000000 | 2022-01-11T00:00:00.000000 |
| certfr-2022-avi-010 | Multiples vulnérabilités dans WordPress | 2022-01-07T00:00:00.000000 | 2022-01-11T00:00:00.000000 |
| certfr-2022-avi-013 | Vulnérabilité dans la base de données H2 | 2022-01-10T00:00:00.000000 | 2022-01-10T00:00:00.000000 |
| certfr-2022-avi-012 | Multiples vulnérabilités dans Microsoft Edge | 2022-01-07T00:00:00.000000 | 2022-01-07T00:00:00.000000 |
| certfr-2022-avi-011 | Vulnérabilité dans IBM AIX | 2022-01-07T00:00:00.000000 | 2022-01-07T00:00:00.000000 |
| certfr-2022-avi-009 | Multiples vulnérabilités dans les produits QNAP | 2022-01-07T00:00:00.000000 | 2022-01-07T00:00:00.000000 |
| certfr-2022-avi-008 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-01-07T00:00:00.000000 | 2022-01-07T00:00:00.000000 |
| certfr-2022-avi-007 | Multiples vulnérabilités dans les produits Moxa | 2022-01-06T00:00:00.000000 | 2022-01-06T00:00:00.000000 |
| certfr-2022-avi-006 | Multiples vulnérabilités dans les produits Tenable | 2022-01-06T00:00:00.000000 | 2022-01-06T00:00:00.000000 |
| certfr-2022-avi-005 | Multiples vulnérabilités dans Spring Framework | 2022-01-06T00:00:00.000000 | 2022-01-06T00:00:00.000000 |
| certfr-2022-avi-004 | Multiples vulnérabilités dans SonicWall SonicOS | 2022-01-06T00:00:00.000000 | 2022-01-06T00:00:00.000000 |
| certfr-2022-avi-003 | Multiples vulnérabilités dans Google Chrome | 2022-01-05T00:00:00.000000 | 2022-01-05T00:00:00.000000 |
| certfr-2022-avi-002 | Multiples vulnérabilités dans Google Android | 2022-01-05T00:00:00.000000 | 2022-01-05T00:00:00.000000 |
| certfr-2022-avi-001 | Vulnérabilité dans les produits VMware | 2022-01-05T00:00:00.000000 | 2022-01-05T00:00:00.000000 |
| certfr-2021-avi-991 | Vulnérabilité dans le noyau Linux de SUSE | 2021-12-31T00:00:00.000000 | 2021-12-31T00:00:00.000000 |
| certfr-2021-avi-990 | Vulnérabilité dans F5 BIG-IP | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-989 | Multiples vulnérabilités dans Wireshark | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-988 | Multiples vulnérabilités dans les produits Moxa | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-987 | Vulnérabilité dans QNAP QTS | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-986 | Multiples vulnérabilités dans Trend Micro Apex One et Worry-Free Business Security | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-985 | Vulnérabilité dans Stormshield Network Security | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-984 | Vulnérabilité dans Fortinet FortiAuthenticator | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-983 | Multiples vulnérabilités dans les produits Moxa | 2021-12-28T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-982 | Vulnérabilité dans Moxa MGate | 2021-12-27T00:00:00.000000 | 2021-12-27T00:00:00.000000 |
| certfr-2021-avi-981 | Multiples vulnérabilités dans SolarWinds Web Help Desk | 2021-12-27T00:00:00.000000 | 2021-12-27T00:00:00.000000 |
| certfr-2021-avi-980 | Vulnérabilité dans les produits F-Secure | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-979 | Multiples vulnérabilités dans SonicWall SMA100 | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-978 | Vulnérabilité dans le noyau Linux de Red Hat | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-977 | Multiples vulnérabilités dans Stormshield Endpoint Security | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-976 | Vulnérabilité dans le client ownCloud | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |