Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-66061 |
4.3 (3.1)
|
WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-11-21T12:29:54.807Z | 2026-01-20T14:28:23.136Z |
| CVE-2025-66066 |
6.1 (3.1)
|
WordPress Envo Extra plugin <= 1.9.11 - Cross Site Scr… |
EnvoThemes |
Envo Extra |
2025-11-21T12:29:55.680Z | 2026-01-20T14:28:23.127Z |
| CVE-2025-66070 |
7.5 (3.1)
|
WordPress wpForo Forum plugin <= 2.4.10 - Broken Acces… |
Tomdever |
wpForo Forum |
2025-12-18T07:22:17.491Z | 2026-01-20T14:28:23.120Z |
| CVE-2025-64634 |
8.8 (3.1)
|
WordPress Avada theme <= 7.13.1 - Broken Access Contro… |
ThemeFusion |
Avada |
2025-12-16T08:12:51.156Z | 2026-01-20T14:28:23.104Z |
| CVE-2025-66058 |
6.5 (3.1)
|
WordPress Post Grid and Gutenberg Blocks plugin <= 2.3… |
PickPlugins |
Post Grid and Gutenberg Blocks |
2025-12-18T16:15:15.498Z | 2026-01-20T14:28:23.035Z |
| CVE-2025-64633 |
5.3 (3.1)
|
WordPress Norebro Extra plugin <= 1.6.8 - Content Inje… |
colabrio |
Norebro Extra |
2025-12-16T08:12:50.943Z | 2026-01-20T14:28:23.014Z |
| CVE-2025-66053 |
6.5 (3.1)
|
WordPress Enfold theme <= 7.1.2 - Cross Site Scripting… |
Kriesi |
Enfold |
2025-11-21T12:29:53.446Z | 2026-01-20T14:28:22.999Z |
| CVE-2025-66063 |
5.4 (3.1)
|
WordPress WP Google Review Slider plugin <= 17.4 - Bro… |
jgwhite33 |
WP Google Review Slider |
2025-11-21T12:29:55.169Z | 2026-01-20T14:28:22.981Z |
| CVE-2025-64632 |
5.3 (3.1)
|
WordPress Google XML Sitemaps plugin <= 4.1.21 - Broke… |
Auctollo |
Google XML Sitemaps |
2025-12-16T08:12:50.749Z | 2026-01-20T14:28:22.956Z |
| CVE-2025-64639 |
5.3 (3.1)
|
WordPress WP Compress for MainWP plugin <= 6.50.07 - B… |
WP Compress |
WP Compress for MainWP |
2025-12-16T08:12:52.102Z | 2026-01-20T14:28:22.952Z |
| CVE-2025-64630 |
4.7 (3.1)
|
WordPress Business Directory plugin <= 6.4.19 - Broken… |
Strategy11 Team |
Business Directory |
2025-12-16T08:12:50.318Z | 2026-01-20T14:28:22.925Z |
| CVE-2025-64382 |
4.3 (3.1)
|
WordPress Order Export & Order Import for WooCommerce … |
WebToffee |
Order Export & Order Import for WooCommerce |
2025-11-13T09:24:35.435Z | 2026-01-20T14:28:22.800Z |
| CVE-2025-64378 |
7.5 (3.1)
|
WordPress ListingPro theme < 2.9.10 - Broken Access Co… |
CridioStudio |
ListingPro |
2025-12-18T07:22:16.946Z | 2026-01-20T14:28:22.742Z |
| CVE-2025-64379 |
4.3 (3.1)
|
WordPress Booster for WooCommerce plugin <= 7.4.0 - Br… |
Pluggabl |
Booster for WooCommerce |
2025-11-13T09:24:34.101Z | 2026-01-20T14:28:22.712Z |
| CVE-2025-64377 |
8.1 (3.1)
|
WordPress ListingPro theme < 2.9.10 - Local File Inclu… |
CridioStudio |
ListingPro |
2025-12-18T07:22:16.752Z | 2026-01-20T14:28:22.647Z |
| CVE-2025-64376 |
7.1 (3.1)
|
WordPress ListingPro theme < 2.9.10 - Cross Site Scrip… |
CridioStudio |
ListingPro |
2025-12-18T07:22:16.555Z | 2026-01-20T14:28:22.643Z |
| CVE-2025-64366 |
7.6 (3.1)
|
WordPress MasterStudy LMS plugin <= 3.6.27 - SQL Injec… |
Stylemix |
MasterStudy LMS |
2025-10-31T11:42:39.301Z | 2026-01-20T14:28:22.594Z |
| CVE-2025-64375 |
6.5 (3.1)
|
WordPress WP Social Ninja plugin <= 3.20.1 - Broken Ac… |
Mahmudul Hasan Arif |
WP Social Ninja |
2025-12-18T07:22:16.373Z | 2026-01-20T14:28:22.576Z |
| CVE-2025-64374 |
9.9 (3.1)
|
WordPress Motors theme <= 5.6.81 - Arbitrary File Uplo… |
StylemixThemes |
Motors |
2025-12-18T07:22:16.202Z | 2026-01-20T14:28:22.572Z |
| CVE-2025-64360 |
7.5 (3.1)
|
WordPress Consulting Elementor Widgets plugin <= 1.4.2… |
StylemixThemes |
Consulting Elementor Widgets |
2025-10-31T11:42:32.330Z | 2026-01-20T14:28:22.556Z |
| CVE-2025-64373 |
8.1 (3.1)
|
WordPress Traveler theme < 3.2.6 - Local File Inclusio… |
shinetheme |
Traveler |
2025-12-18T07:22:16.006Z | 2026-01-20T14:28:22.551Z |
| CVE-2025-64363 |
7.5 (3.1)
|
WordPress Kleo theme < 5.5.0 - Local File Inclusion vu… |
SeventhQueen |
Kleo |
2025-10-31T11:42:37.131Z | 2026-01-20T14:28:22.551Z |
| CVE-2025-64367 |
6.5 (3.1)
|
WordPress Groundhogg plugin <= 4.2.6 - Cross Site Scri… |
Adrian Tobey |
Groundhogg |
2025-10-31T11:42:40.076Z | 2026-01-20T14:28:22.541Z |
| CVE-2025-64370 |
5.3 (3.1)
|
WordPress YOP Poll plugin <= 6.5.38 - Broken Access Co… |
YOP |
YOP Poll |
2025-11-13T09:24:33.651Z | 2026-01-20T14:28:22.538Z |
| CVE-2025-64368 |
5.4 (3.1)
|
WordPress Bard theme <= 1.6 - Cross Site Request Forge… |
Mikado-Themes |
Bard |
2025-10-31T11:42:40.843Z | 2026-01-20T14:28:22.538Z |
| CVE-2025-64361 |
6.5 (3.1)
|
WordPress Consulting Elementor Widgets plugin <= 1.4.2… |
StylemixThemes |
Consulting Elementor Widgets |
2025-10-31T11:42:33.072Z | 2026-01-20T14:28:22.533Z |
| CVE-2025-64359 |
7.5 (3.1)
|
WordPress Consulting theme < 6.7.5 - Local File Inclus… |
StylemixThemes |
Consulting |
2025-10-31T11:42:31.602Z | 2026-01-20T14:28:22.532Z |
| CVE-2025-64352 |
2.7 (3.1)
|
WordPress Essential Addons for Elementor plugin <= 6.2… |
WPDeveloper |
Essential Addons for Elementor |
2025-10-31T11:42:23.045Z | 2026-01-20T14:28:22.531Z |
| CVE-2025-64369 |
6.5 (3.1)
|
WordPress Contact Form Email plugin <= 1.3.58 - Broken… |
codepeople |
Contact Form Email |
2025-11-13T09:24:33.215Z | 2026-01-20T14:28:22.528Z |
| CVE-2025-64371 |
8.5 (3.1)
|
WordPress Traveler theme < 3.2.6 - SQL Injection vulne… |
shinetheme |
Traveler |
2025-12-18T07:22:15.635Z | 2026-01-20T14:28:22.518Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-59094 |
8.4 (4.0)
|
Local Privilege Escalation in dormakaba Kaba exos 9300… |
dormakaba |
Kaba exos 9300 |
2026-01-26T10:04:05.551Z | 2026-01-26T17:18:41.650Z |
| CVE-2025-59093 |
8.5 (4.0)
|
Insecure Password Derivation Function for Database Adm… |
dormakaba |
Kaba exos 9300 |
2026-01-26T10:03:54.991Z | 2026-01-26T17:24:52.738Z |
| CVE-2025-59092 |
8.7 (4.0)
|
Unauthenticated RPC Service in dormakaba Kaba exos 9300 |
dormakaba |
Kaba exos 9300 |
2026-01-26T10:03:44.324Z | 2026-01-26T17:25:26.111Z |
| CVE-2025-59091 |
9.3 (4.0)
|
Hardcoded Legacy Accounts Allowing Control Over Access… |
dormakaba |
Kaba exos 9300 |
2026-01-26T10:03:34.142Z | 2026-01-26T17:26:08.713Z |
| CVE-2025-59090 |
9.3 (4.0)
|
Unauthenticated SOAP API in dormakaba Kaba exos 9300 |
dormakaba |
Kaba exos 9300 |
2026-01-26T10:03:21.868Z | 2026-01-26T15:38:17.362Z |
| CVE-2025-41083 |
5.1 (4.0)
|
Improper Neutralization in Altitude Communication Server |
Altitude |
Altitude Communication Server |
2026-01-26T09:42:42.532Z | 2026-01-26T13:49:41.248Z |
| CVE-2025-41082 |
6.9 (4.0)
|
HTTP Request/Response Smuggling in Altitude Communicat… |
Altitude |
Altitude Communication Server |
2026-01-26T09:24:20.607Z | 2026-01-26T13:55:47.853Z |
| CVE-2025-15516 |
4.3 (3.1)
|
All-in-One Video Gallery 4.1.0 - 4.6.4 - Missing Autho… |
plugins360 |
All-in-One Video Gallery |
2026-01-24T08:26:33.155Z | 2026-01-26T18:05:35.718Z |
| CVE-2025-14985 |
6.4 (3.1)
|
Alpha Blocks <= 1.5.0 - Authenticated (Contributor+) S… |
robiulawal40 |
Alpha Blocks |
2026-01-24T07:26:44.302Z | 2026-01-26T18:19:43.352Z |
| CVE-2025-14947 |
6.5 (3.1)
|
All-in-One Video Gallery <= 4.6.4 - Missing Authorizat… |
plugins360 |
All-in-One Video Gallery |
2026-01-23T17:26:06.739Z | 2026-01-23T18:20:37.750Z |
| CVE-2025-14941 |
6.4 (3.1)
|
GZSEO <= 2.0.11 - Authenticated (Contributor+) Authori… |
aminhashemy |
GZSEO |
2026-01-24T07:26:46.942Z | 2026-01-26T15:44:33.238Z |
| CVE-2025-14907 |
4.3 (3.1)
|
Moderate Selected Posts <= 1.4 - Cross-Site Request Fo… |
hallsofmontezuma |
Moderate Selected Posts |
2026-01-24T08:26:33.683Z | 2026-01-26T18:05:17.950Z |
| CVE-2025-14906 |
4.3 (3.1)
|
WP Youtube Video Gallery <= 1.0 - Cross-Site Request F… |
waqasvickey0071 |
WP Youtube Video Gallery |
2026-01-24T07:26:42.114Z | 2026-01-26T15:45:27.882Z |
| CVE-2025-14903 |
4.3 (3.1)
|
Simple Crypto Shortcodes <= 1.0.2 - Cross-Site Request… |
stefanristic |
Simple Crypto Shortcodes |
2026-01-24T07:26:40.557Z | 2026-01-26T15:45:49.695Z |
| CVE-2025-14843 |
5.3 (3.1)
|
Wizit Gateway for WooCommerce <= 1.2.9 - Missing Authe… |
wizit |
Wizit Gateway for WooCommerce |
2026-01-24T07:26:46.217Z | 2026-01-26T15:44:44.088Z |
| CVE-2025-14797 |
5.4 (3.1)
|
Same Category Posts <= 1.1.19 - Authenticated (Author+… |
kometschuh |
Same Category Posts |
2026-01-24T07:26:43.936Z | 2026-01-26T18:20:12.658Z |
| CVE-2025-14630 |
4.3 (3.1)
|
AdminQuickbar <= 1.9.3 - Cross-Site Request Forgery to… |
rtowebsites |
AdminQuickbar |
2026-01-24T08:26:35.023Z | 2026-01-26T15:44:27.719Z |
| CVE-2025-14629 |
5.3 (3.1)
|
Alchemist Ajax Upload <= 1.1 - Missing Authorization t… |
tandubhai |
Alchemist Ajax Upload |
2026-01-24T07:26:45.155Z | 2026-01-26T18:18:54.374Z |
| CVE-2025-14609 |
5.3 (3.1)
|
Wise Analytics <= 1.1.9 - Missing Authorization to Una… |
marcinlawrowski |
Wise Analytics |
2026-01-24T07:26:47.717Z | 2026-01-26T18:17:35.427Z |
| CVE-2025-13920 |
5.3 (3.1)
|
WP Directory Kit <= 1.4.9 - Unauthenticated Email Expo… |
wpdirectorykit |
WP Directory Kit |
2026-01-24T12:27:15.684Z | 2026-01-26T15:38:27.646Z |
| CVE-2025-13676 |
6.1 (3.1)
|
JustClick registration plugin <= 0.1 - Reflected Cross… |
ostin654 |
JustClick registration plugin |
2026-01-24T07:26:48.445Z | 2026-01-26T18:06:38.909Z |
| CVE-2025-13374 |
9.8 (3.1)
|
Kalrav AI Agent <= 2.3.3 - Unauthenticated Arbitrary F… |
irisideatechsolutions |
Kalrav AI Agent |
2026-01-24T07:26:42.836Z | 2026-01-26T15:45:16.947Z |
| CVE-2025-13205 |
4.3 (3.1)
|
SurveyJS: Drag & Drop WordPress Form Builder to create… |
devsoftbaltic |
SurveyJS: Drag & Drop Form Builder |
2026-01-24T09:08:09.131Z | 2026-01-26T15:44:21.874Z |
| CVE-2025-13194 |
4.3 (3.1)
|
SurveyJS: Drag & Drop WordPress Form Builder to create… |
devsoftbaltic |
SurveyJS: Drag & Drop Form Builder |
2026-01-24T09:08:08.275Z | 2026-01-26T17:39:41.909Z |
| CVE-2025-13139 |
4.3 (3.1)
|
SurveyJS: Drag & Drop WordPress Form Builder <= 1.12.2… |
devsoftbaltic |
SurveyJS: Drag & Drop Form Builder |
2026-01-24T09:08:05.683Z | 2026-01-26T17:46:58.712Z |
| CVE-2025-12836 |
6.4 (3.1)
|
VK Google Job Posting Manager <= 1.2.20 - Authenticate… |
vektor-inc |
VK Google Job Posting Manager |
2026-01-24T07:26:41.692Z | 2026-01-26T15:45:33.120Z |
| CVE-2022-25369 |
9.8 (3.1)
|
An issue was discovered in Dynamicweb before 9.12… |
n/a |
n/a |
2026-01-23T00:00:00.000Z | 2026-01-23T18:28:45.908Z |
| CVE-2021-47906 |
5.1 (4.0)
6.4 (3.1)
|
BloofoxCMS 0.5.2.1 - 'text' Stored Cross Site Scripting |
BloofoxCMS |
BloofoxCMS |
2026-01-23T16:47:44.644Z | 2026-01-23T21:44:13.132Z |
| CVE-2021-47905 |
5.1 (4.0)
6.1 (3.1)
|
MyBB Delete Account Plugin 1.4 - Cross-Site Scripting |
vintagedaddyo |
MyBB Delete Account Plugin |
2026-01-23T16:47:44.014Z | 2026-01-23T21:47:23.266Z |
| CVE-2021-47904 |
8.7 (4.0)
8.8 (3.1)
|
PhreeBooks 5.2.3 - Remote Code Execution |
Phreesoft |
PhreeBooks |
2026-01-23T16:47:43.329Z | 2026-01-23T21:47:32.715Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-59094 | A local privilege escalation vulnerability has been identified in the Kaba exos 9300 System managem… | 2026-01-26T10:16:06.857 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59093 | Exos 9300 instances are using a randomly generated database password to connect to the configured M… | 2026-01-26T10:16:06.723 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59092 | An RPC service, which is part of exos 9300, is reachable on port 4000, run by the process FSMobileP… | 2026-01-26T10:16:06.590 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59091 | Multiple hardcoded credentials have been identified, which are allowed to sign-in to the exos 9300 … | 2026-01-26T10:16:06.450 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-59090 | On the exos 9300 server, a SOAP API is reachable on port 8002. This API does not require any authen… | 2026-01-26T10:16:06.270 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-41083 | Vulnerability in Altitude Authentication Service and Altitude Communication Server v8.5.3290.0 by A… | 2026-01-26T10:16:06.100 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-41082 | Illegal HTTP request traffic vulnerability (CL.0) in Altitude Communication Server, caused by incon… | 2026-01-26T10:16:05.870 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-15516 | The All-in-One Video Gallery plugin for WordPress is vulnerable to unauthorized modification of dat… | 2026-01-24T09:15:52.390 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14985 | The Alpha Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘alpha_b… | 2026-01-24T08:16:06.763 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14947 | The All-in-One Video Gallery plugin for WordPress is vulnerable to unauthorized modification of dat… | 2026-01-23T18:16:02.070 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14941 | The GZSEO plugin for WordPress is vulnerable to authorization bypass leading to Stored Cross-Site S… | 2026-01-24T08:16:06.593 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14907 | The Moderate Selected Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all… | 2026-01-24T09:15:52.220 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14906 | The WP Youtube Video Gallery plugin for WordPress is vulnerable to Cross-Site Request Forgery in al… | 2026-01-24T08:16:06.420 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14903 | The Simple Crypto Shortcodes plugin for WordPress is vulnerable to Cross-Site Request Forgery in ve… | 2026-01-24T08:16:06.243 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14843 | The Wizit Gateway for WooCommerce plugin for WordPress is vulnerable to Unauthenticated Arbitrary O… | 2026-01-24T08:16:06.073 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14797 | The Same Category Posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the w… | 2026-01-24T08:16:05.900 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14630 | The AdminQuickbar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions … | 2026-01-24T09:15:52.053 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14629 | The Alchemist Ajax Upload plugin for WordPress is vulnerable to unauthorized media file deletion du… | 2026-01-24T08:16:05.713 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-14609 | The Wise Analytics plugin for WordPress is vulnerable to Missing Authorization in all versions up t… | 2026-01-24T08:16:05.543 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-13920 | The WP Directory Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all ve… | 2026-01-24T13:15:54.013 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-13676 | The JustClick registration plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in … | 2026-01-24T08:16:05.367 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-13374 | The Kalrav AI Agent plugin for WordPress is vulnerable to arbitrary file uploads due to missing fil… | 2026-01-24T08:16:05.173 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-13205 | The SurveyJS: Drag & Drop WordPress Form Builder to create, style and embed multiple forms of any c… | 2026-01-24T09:15:51.880 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-13194 | The SurveyJS: Drag & Drop WordPress Form Builder to create, style and embed multiple forms of any c… | 2026-01-24T09:15:51.713 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-13139 | The SurveyJS: Drag & Drop WordPress Form Builder plugin for WordPress is vulnerable to Cross-Site R… | 2026-01-24T09:15:50.647 | 2026-01-26T15:03:33.357 |
| fkie_cve-2025-12836 | The VK Google Job Posting Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting… | 2026-01-24T08:16:03.870 | 2026-01-26T15:03:33.357 |
| fkie_cve-2022-25369 | An issue was discovered in Dynamicweb before 9.12.8. An attacker can add a new administrator user w… | 2026-01-23T17:16:04.753 | 2026-01-26T15:03:33.357 |
| fkie_cve-2021-47906 | BloofoxCMS 0.5.2.1 contains a stored cross-site scripting vulnerability in the articles text parame… | 2026-01-23T17:16:04.383 | 2026-01-26T15:03:33.357 |
| fkie_cve-2021-47905 | MyBB Delete Account Plugin 1.4 contains a cross-site scripting vulnerability in the account deletio… | 2026-01-23T17:16:04.180 | 2026-01-26T15:03:33.357 |
| fkie_cve-2021-47904 | PhreeBooks 5.2.3 contains an authenticated file upload vulnerability in the Image Manager that allo… | 2026-01-23T17:16:03.990 | 2026-01-26T15:03:33.357 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-c9mq-fjcv-jc83 |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-62wj-77q3-24px |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-48pp-2gg2-9jj6 |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-3wxp-8m6g-m8x5 |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:17Z |
| ghsa-wr7j-j478-jx7j |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:09Z | 2026-01-20T15:32:16Z |
| ghsa-w2mg-8545-27mj |
8.5 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-16T09:31:09Z | 2026-01-20T15:32:16Z |
| ghsa-vfcp-7w22-v7fg |
6.5 (3.1)
|
Missing Authorization vulnerability in Bob Watu Quiz watu allows Exploiting Incorrectly Configured … | 2025-12-16T09:31:09Z | 2026-01-20T15:32:16Z |
| ghsa-r826-hjq2-m422 |
5.4 (3.1)
|
Server-Side Request Forgery (SSRF) vulnerability in LMPixels Kerge kerge allows Server Side Request… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:16Z |
| ghsa-m925-rw3x-7p8f |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:16Z |
| ghsa-m8v7-p7rh-pfq6 |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:16Z |
| ghsa-jxwj-7mpq-w7rj |
7.6 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-16T09:31:09Z | 2026-01-20T15:32:16Z |
| ghsa-h66q-95j9-7mxq |
8.5 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:16Z |
| ghsa-gh58-ww8q-9xhc |
8.5 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:16Z |
| ghsa-crqv-f66m-8q78 |
7.6 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:16Z |
| ghsa-8vjc-vqf8-m223 |
8.5 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:16Z |
| ghsa-8hwj-gjf6-5h2c |
5.3 (3.1)
|
Missing Authorization vulnerability in favethemes Homey Core homey-core allows Exploiting Incorrect… | 2025-12-16T09:31:09Z | 2026-01-20T15:32:16Z |
| ghsa-88h2-6jrv-8v63 |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:16Z |
| ghsa-7rq2-rp8g-vmxx |
5.3 (3.1)
|
Missing Authorization vulnerability in templateinvaders TI WooCommerce Wishlist ti-woocommerce-wish… | 2025-12-16T09:31:09Z | 2026-01-20T15:32:16Z |
| ghsa-7gcr-vc6r-wj35 |
8.5 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-16T09:31:10Z | 2026-01-20T15:32:16Z |
| ghsa-64xg-rhvh-xhh3 |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:09Z | 2026-01-20T15:32:16Z |
| ghsa-526w-gq45-2f4f |
4.3 (3.1)
|
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in SendPul… | 2025-12-16T09:31:09Z | 2026-01-20T15:32:16Z |
| ghsa-4xq4-24ch-xr3q |
5.3 (3.1)
|
Authorization Bypass Through User-Controlled Key vulnerability in Barn2 Plugins Document Library Li… | 2025-12-16T09:31:10Z | 2026-01-20T15:32:16Z |
| ghsa-vq83-vrqm-m2w4 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Masker for Elementor masker-elementor allows Explo… | 2025-12-16T09:31:09Z | 2026-01-20T15:32:15Z |
| ghsa-v3j7-9cq2-p3j3 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Spoter for Elementor spoter-elementor allows Explo… | 2025-12-16T09:31:09Z | 2026-01-20T15:32:15Z |
| ghsa-r8v7-r4ff-qv43 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Coder for Elementor coder-elementor allows Exploit… | 2025-12-16T09:31:09Z | 2026-01-20T15:32:15Z |
| ghsa-r7gx-7548-6cr2 |
6.5 (3.1)
|
Authorization Bypass Through User-Controlled Key vulnerability in FAPI Business s.r.o. FAPI Member … | 2025-12-16T09:31:09Z | 2026-01-20T15:32:15Z |
| ghsa-fm9h-7grp-38cg |
5.4 (3.1)
|
Missing Authorization vulnerability in NinjaTeam FileBird Pro filebird-pro allows Exploiting Incorr… | 2025-12-16T09:31:09Z | 2026-01-20T15:32:15Z |
| ghsa-fg4v-rm3f-jjmr |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:31:09Z | 2026-01-20T15:32:15Z |
| ghsa-ff29-qr8c-mh26 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Grider for Elementor grider-elementor allows Explo… | 2025-12-16T09:31:09Z | 2026-01-20T15:32:15Z |
| ghsa-f8cg-5944-ww59 |
5.4 (3.1)
|
Missing Authorization vulnerability in merkulove Lottier for WPBakery lottier-wpbakery allows Explo… | 2025-12-16T09:31:09Z | 2026-01-20T15:32:15Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-30940 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.223125Z |
| gsd-2024-30085 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.222910Z |
| gsd-2024-30139 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.222668Z |
| gsd-2024-30912 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.222471Z |
| gsd-2024-30250 | Astro-Shield is an integration to enhance website security with SubResource Integrity has… | 2024-04-03T05:02:29.222264Z |
| gsd-2024-30632 | Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the security_5g paramete… | 2024-04-03T05:02:29.221859Z |
| gsd-2024-30086 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.221498Z |
| gsd-2024-30099 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.221306Z |
| gsd-2024-30961 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.221106Z |
| gsd-2024-30173 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.220911Z |
| gsd-2024-30895 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.220660Z |
| gsd-2024-30400 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.220408Z |
| gsd-2024-30876 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.220165Z |
| gsd-2024-30686 | An issue was discovered in ROS2 Iron Irwini versions ROS_VERSION 2 and ROS_PYTHON_VERSION… | 2024-04-03T05:02:29.219928Z |
| gsd-2024-30027 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.219727Z |
| gsd-2024-30899 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.219476Z |
| gsd-2024-30838 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.219263Z |
| gsd-2024-30413 | Vulnerability of improper permission control in the window management module. Impact: Suc… | 2024-04-03T05:02:29.219063Z |
| gsd-2024-30098 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.218846Z |
| gsd-2024-30798 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.218636Z |
| gsd-2024-30066 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.218433Z |
| gsd-2024-30257 | 1Panel is an open source Linux server operation and maintenance management panel. The pas… | 2024-04-03T05:02:29.218219Z |
| gsd-2024-30367 | Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulner… | 2024-04-03T05:02:29.217641Z |
| gsd-2024-30831 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.217341Z |
| gsd-2024-30893 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.217128Z |
| gsd-2024-30363 | Foxit PDF Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability… | 2024-04-03T05:02:29.216525Z |
| gsd-2024-30185 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-03T05:02:29.215691Z |
| gsd-2024-30272 | Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds write vuln… | 2024-04-03T05:02:29.215417Z |
| gsd-2024-30129 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.215224Z |
| gsd-2024-30010 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.215028Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-190940 | Malicious code in url-encode-decode (npm) | 2025-11-24T21:02:49Z | 2025-11-25T00:36:53Z |
| mal-2025-190939 | Malicious code in upload-to-play-store (npm) | 2025-11-24T21:04:30Z | 2025-11-25T00:36:53Z |
| mal-2025-190938 | Malicious code in uplandui (npm) | 2025-11-24T21:05:21Z | 2025-11-25T00:36:53Z |
| mal-2025-190936 | Malicious code in typefence (npm) | 2025-11-24T21:20:53Z | 2025-11-25T00:36:53Z |
| mal-2025-190928 | Malicious code in zapier-platform-legacy-scripting-runner (npm) | 2025-11-24T16:31:47Z | 2025-11-25T00:36:53Z |
| mal-2025-190862 | Malicious code in zuper-stream (npm) | 2025-11-24T14:52:48Z | 2025-11-25T00:36:53Z |
| mal-2025-190861 | Malicious code in zapier-scripts (npm) | 2025-11-24T14:37:56Z | 2025-11-25T00:36:53Z |
| mal-2025-190789 | Malicious code in zuper-cli (npm) | 2025-11-24T13:47:59Z | 2025-11-25T00:36:53Z |
| mal-2025-190788 | Malicious code in zapier-async-storage (npm) | 2025-11-24T14:09:53Z | 2025-11-25T00:36:53Z |
| mal-2025-190787 | Malicious code in vite-plugin-httpfile (npm) | 2025-11-24T13:33:41Z | 2025-11-25T00:36:53Z |
| mal-2025-190786 | Malicious code in typeorm-orbit (npm) | 2025-11-24T13:46:38Z | 2025-11-25T00:36:53Z |
| mal-2025-190785 | Malicious code in token.js-fork (npm) | 2025-11-24T13:56:57Z | 2025-11-25T00:36:53Z |
| mal-2025-190705 | Malicious code in zapier-platform-schema (npm) | 2025-11-24T12:33:00Z | 2025-11-25T00:36:53Z |
| mal-2025-190704 | Malicious code in zapier-platform-core (npm) | 2025-11-24T12:34:07Z | 2025-11-25T00:36:53Z |
| mal-2025-190703 | Malicious code in zapier-platform-cli (npm) | 2025-11-24T12:52:36Z | 2025-11-25T00:36:53Z |
| mal-2025-190702 | Malicious code in trigo-react-app (npm) | 2025-11-24T13:12:46Z | 2025-11-25T00:36:53Z |
| mal-2025-191024 | Malicious code in tiaan (npm) | 2025-11-24T21:22:33Z | 2025-11-25T00:36:52Z |
| mal-2025-191023 | Malicious code in tenacious-fetch (npm) | 2025-11-24T21:23:24Z | 2025-11-25T00:36:52Z |
| mal-2025-191022 | Malicious code in template-micro-service (npm) | 2025-11-24T21:25:04Z | 2025-11-25T00:36:52Z |
| mal-2025-191021 | Malicious code in template-lib (npm) | 2025-11-24T21:26:44Z | 2025-11-25T00:36:52Z |
| mal-2025-191020 | Malicious code in tcsp-test-vd (npm) | 2025-11-24T21:28:10Z | 2025-11-25T00:36:52Z |
| mal-2025-191019 | Malicious code in tcsp-draw-test (npm) | 2025-11-24T21:28:25Z | 2025-11-25T00:36:52Z |
| mal-2025-191018 | Malicious code in tanstack-shadcn-table (npm) | 2025-11-24T21:29:50Z | 2025-11-25T00:36:52Z |
| mal-2025-191017 | Malicious code in svelte-toasty (npm) | 2025-11-24T21:32:14Z | 2025-11-25T00:36:52Z |
| mal-2025-191016 | Malicious code in svelte-autocomplete-select (npm) | 2025-11-24T21:33:01Z | 2025-11-25T00:36:52Z |
| mal-2025-191015 | Malicious code in super-commit (npm) | 2025-11-24T21:33:36Z | 2025-11-25T00:36:52Z |
| mal-2025-191014 | Malicious code in stoor (npm) | 2025-11-24T21:34:09Z | 2025-11-25T00:36:52Z |
| mal-2025-191013 | Malicious code in stat-fns (npm) | 2025-11-24T21:34:41Z | 2025-11-25T00:36:52Z |
| mal-2025-191012 | Malicious code in south-african-id-info (npm) | 2025-11-24T21:34:57Z | 2025-11-25T00:36:52Z |
| mal-2025-191011 | Malicious code in sort-by-distance (npm) | 2025-11-24T21:35:30Z | 2025-11-25T00:36:52Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-0013 | Google Android: Mehrere Schwachstellen | 2025-01-06T23:00:00.000+00:00 | 2025-01-06T23:00:00.000+00:00 |
| wid-sec-w-2025-0012 | OpenVPN Connect: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-01-06T23:00:00.000+00:00 | 2025-01-06T23:00:00.000+00:00 |
| wid-sec-w-2024-1801 | SaltStack Salt: Mehrere Schwachstellen | 2020-11-03T23:00:00.000+00:00 | 2025-01-06T23:00:00.000+00:00 |
| wid-sec-w-2024-0578 | Apple macOS: Mehrere Schwachstellen | 2024-03-07T23:00:00.000+00:00 | 2025-01-06T23:00:00.000+00:00 |
| wid-sec-w-2023-0426 | IBM Spectrum Protect: Mehrere Schwachstellen | 2022-03-13T23:00:00.000+00:00 | 2025-01-06T23:00:00.000+00:00 |
| wid-sec-w-2022-0701 | Angular: Schwachstelle ermöglicht Cross-Site Scripting | 2022-07-17T22:00:00.000+00:00 | 2025-01-06T23:00:00.000+00:00 |
| wid-sec-w-2025-0010 | HCL BigFix Server Automation: Mehrere Schwachstellen | 2025-01-05T23:00:00.000+00:00 | 2025-01-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0008 | F5 BIG-IP: Schwachstelle ermöglicht Denial of Service und Informationsoffenlegung | 2025-01-05T23:00:00.000+00:00 | 2025-01-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0007 | Samsung Exynos: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-01-05T23:00:00.000+00:00 | 2025-01-05T23:00:00.000+00:00 |
| wid-sec-w-2024-3445 | Microsoft Windows: Mehrere Schwachstellen | 2024-11-12T23:00:00.000+00:00 | 2025-01-05T23:00:00.000+00:00 |
| wid-sec-w-2024-0955 | HCL Domino Blog Template: Schwachstelle ermöglicht Codeausführung und Denial of Service | 2024-04-23T22:00:00.000+00:00 | 2025-01-05T23:00:00.000+00:00 |
| wid-sec-w-2024-0022 | IBM DB2: Mehrere Schwachstellen | 2024-01-08T23:00:00.000+00:00 | 2025-01-05T23:00:00.000+00:00 |
| wid-sec-w-2023-0309 | IBM DB2: Mehrere Schwachstellen | 2023-02-08T23:00:00.000+00:00 | 2025-01-05T23:00:00.000+00:00 |
| wid-sec-w-2022-1922 | OpenSSL: Mehrere Schwachstellen | 2022-11-01T23:00:00.000+00:00 | 2025-01-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0006 | Moxa Router: Mehrere Schwachstellen | 2025-01-02T23:00:00.000+00:00 | 2025-01-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0005 | Acronis Cyber Protect: Mehrere Schwachstellen | 2025-01-02T23:00:00.000+00:00 | 2025-01-02T23:00:00.000+00:00 |
| wid-sec-w-2024-1939 | Linux Kernel (ntfs3): Schwachstelle ermöglicht Offenlegung von Informationen | 2024-08-27T22:00:00.000+00:00 | 2025-01-02T23:00:00.000+00:00 |
| wid-sec-w-2024-1264 | IBM Java: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-05-30T22:00:00.000+00:00 | 2025-01-02T23:00:00.000+00:00 |
| wid-sec-w-2023-1930 | IBM Java: Schwachstelle ermöglicht Codeausführung | 2023-07-31T22:00:00.000+00:00 | 2025-01-02T23:00:00.000+00:00 |
| wid-sec-w-2024-3711 | Foxit PDF Editor und Foxit Reader: Mehrere Schwachstellen | 2024-12-16T23:00:00.000+00:00 | 2024-12-30T23:00:00.000+00:00 |
| wid-sec-w-2024-3761 | Apache Nifi: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-12-29T23:00:00.000+00:00 | 2024-12-29T23:00:00.000+00:00 |
| wid-sec-w-2024-3760 | NetApp Data ONTAP: Schwachstelle ermöglicht Denial of Service | 2024-12-29T23:00:00.000+00:00 | 2024-12-29T23:00:00.000+00:00 |
| wid-sec-w-2024-0354 | OpenSC: Schwachstelle ermöglicht Manipulation von Dateien | 2024-02-12T23:00:00.000+00:00 | 2024-12-29T23:00:00.000+00:00 |
| wid-sec-w-2023-2199 | OpenSC: Schwachstelle ermöglicht Denial of Service | 2023-08-28T22:00:00.000+00:00 | 2024-12-29T23:00:00.000+00:00 |
| wid-sec-w-2023-1967 | Linux-Kernel: Schwachstelle ermöglicht Denial of Service und Privilegienerweiterung | 2023-08-06T22:00:00.000+00:00 | 2024-12-29T23:00:00.000+00:00 |
| wid-sec-w-2024-3755 | IBM AIX und VIOS: Mehrere Schwachstellen ermöglichen Denial of Service | 2024-12-26T23:00:00.000+00:00 | 2024-12-26T23:00:00.000+00:00 |
| wid-sec-w-2024-3753 | PaloAlto Networks PAN-OS: Schwachstelle ermöglicht Denial of Service | 2024-12-26T23:00:00.000+00:00 | 2024-12-26T23:00:00.000+00:00 |
| wid-sec-w-2024-2209 | XEN, Citrix XenServer und Hypervisor: Schwachstelle ermöglicht Denial of Service | 2024-09-24T22:00:00.000+00:00 | 2024-12-26T23:00:00.000+00:00 |
| wid-sec-w-2024-1861 | Xen: Mehrere Schwachstellen | 2024-08-14T22:00:00.000+00:00 | 2024-12-26T23:00:00.000+00:00 |
| wid-sec-w-2024-1632 | Xen: Mehrere Schwachstellen | 2024-07-16T22:00:00.000+00:00 | 2024-12-26T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:10983 | Red Hat Security Advisory: python3.9:3.9.21 security update | 2024-12-12T09:23:14+00:00 | 2026-01-28T15:16:25+00:00 |
| rhsa-2024:10939 | Red Hat Security Advisory: kernel security update | 2024-12-11T16:19:52+00:00 | 2026-01-28T15:16:24+00:00 |
| rhsa-2024:10832 | Red Hat Security Advisory: postgresql:13 security update | 2024-12-05T09:15:31+00:00 | 2026-01-28T15:16:23+00:00 |
| rhsa-2024:10831 | Red Hat Security Advisory: postgresql:16 security update | 2024-12-05T09:17:51+00:00 | 2026-01-28T15:16:23+00:00 |
| rhsa-2024:10830 | Red Hat Security Advisory: postgresql:15 security update | 2024-12-05T09:15:31+00:00 | 2026-01-28T15:16:22+00:00 |
| rhsa-2024:10791 | Red Hat Security Advisory: postgresql security update | 2024-12-04T15:41:09+00:00 | 2026-01-28T15:16:20+00:00 |
| rhsa-2024:10788 | Red Hat Security Advisory: postgresql:16 security update | 2024-12-04T09:24:28+00:00 | 2026-01-28T15:16:20+00:00 |
| rhsa-2024:10787 | Red Hat Security Advisory: postgresql:15 security update | 2024-12-04T09:24:20+00:00 | 2026-01-28T15:16:19+00:00 |
| rhsa-2024:10785 | Red Hat Security Advisory: postgresql:12 security update | 2024-12-04T08:52:08+00:00 | 2026-01-28T15:16:17+00:00 |
| rhsa-2024:10779 | Red Hat Security Advisory: python3:3.6.8 security update | 2024-12-04T08:22:23+00:00 | 2026-01-28T15:16:17+00:00 |
| rhsa-2024:10773 | Red Hat Security Advisory: kernel-rt security update | 2024-12-04T00:19:12+00:00 | 2026-01-28T15:16:17+00:00 |
| rhsa-2024:10384 | Red Hat Security Advisory: tuned security update | 2024-11-26T15:52:47+00:00 | 2026-01-28T15:16:08+00:00 |
| rhsa-2024:10381 | Red Hat Security Advisory: tuned security update | 2024-11-26T15:41:27+00:00 | 2026-01-28T15:16:07+00:00 |
| rhsa-2024:10281 | Red Hat Security Advisory: kernel:4.18.0 security update | 2024-11-26T02:17:40+00:00 | 2026-01-28T15:16:03+00:00 |
| rhsa-2024:10274 | Red Hat Security Advisory: kernel security update | 2024-11-26T00:55:15+00:00 | 2026-01-28T15:16:03+00:00 |
| rhsa-2023:6901 | Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update | 2023-11-14T15:24:26+00:00 | 2026-01-28T15:15:56+00:00 |
| rhsa-2025:15389 | Red Hat Security Advisory: Red Hat OpenShift GitOps security update | 2025-09-04T19:49:38+00:00 | 2026-01-28T14:59:35+00:00 |
| rhsa-2025:15388 | Red Hat Security Advisory: Red Hat OpenShift GitOps security update | 2025-09-04T19:38:37+00:00 | 2026-01-28T14:59:33+00:00 |
| rhsa-2025:15387 | Red Hat Security Advisory: Red Hat OpenShift GitOps security update | 2025-09-04T19:38:44+00:00 | 2026-01-28T14:59:28+00:00 |
| rhsa-2024:10177 | Red Hat Security Advisory: Red Hat build of Keycloak 26.0.6 Images Update | 2024-11-21T19:24:23+00:00 | 2026-01-28T08:47:44+00:00 |
| rhsa-2024:10175 | Red Hat Security Advisory: Red Hat build of Keycloak 24.0.9 Images Update | 2024-11-21T19:23:20+00:00 | 2026-01-28T08:47:43+00:00 |
| rhsa-2024:10178 | Red Hat Security Advisory: Red Hat build of Keycloak 26.0.6 Update | 2024-11-21T19:24:44+00:00 | 2026-01-28T08:47:39+00:00 |
| rhsa-2024:10176 | Red Hat Security Advisory: Red Hat build of Keycloak 24.0.9 Update | 2024-11-21T19:23:47+00:00 | 2026-01-28T08:47:36+00:00 |
| rhsa-2020:3557 | Red Hat Security Advisory: firefox security update | 2020-08-26T08:49:30+00:00 | 2026-01-28T07:55:40+00:00 |
| rhsa-2025:23973 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-12-24T08:19:08+00:00 | 2026-01-28T05:51:33+00:00 |
| rhsa-2025:23968 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-12-24T07:39:38+00:00 | 2026-01-28T05:51:31+00:00 |
| rhsa-2025:23967 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-12-24T07:18:48+00:00 | 2026-01-28T05:51:31+00:00 |
| rhsa-2025:23974 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-12-24T09:01:38+00:00 | 2026-01-28T05:51:30+00:00 |
| rhsa-2025:23972 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-12-24T08:38:43+00:00 | 2026-01-28T05:51:29+00:00 |
| rhsa-2025:23971 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-12-24T07:59:13+00:00 | 2026-01-28T05:51:29+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-29814 | Microsoft Partner Center Elevation of Privilege Vulnerability | 2025-03-11T07:00:00.000Z | 2025-03-20T07:00:00.000Z |
| msrc_cve-2025-29807 | Microsoft Dataverse Remote Code Execution Vulnerability | 2025-03-11T07:00:00.000Z | 2025-03-20T07:00:00.000Z |
| msrc_cve-2024-49119 | Windows Remote Desktop Services Remote Code Execution Vulnerability | 2024-12-10T08:00:00.000Z | 2025-03-19T07:00:00.000Z |
| msrc_cve-2025-1182 | GNU Binutils ld elflink.c bfd_elf_reloc_symbol_deleted_p memory corruption | 2025-02-02T00:00:00.000Z | 2025-03-19T00:00:00.000Z |
| msrc_cve-2025-1176 | GNU Binutils ld elflink.c _bfd_elf_gc_mark_rsec heap-based overflow | 2025-02-02T00:00:00.000Z | 2025-03-19T00:00:00.000Z |
| msrc_cve-2024-29195 | Azure C SDK Integer Wraparound Vulnerability | 2024-03-02T08:00:00.000Z | 2025-03-19T00:00:00.000Z |
| msrc_cve-2024-25580 | An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17 6.x before 6.2.12 6.3.x through 6.5.x before 6.5.5 and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file. | 2024-03-02T08:00:00.000Z | 2025-03-19T00:00:00.000Z |
| msrc_cve-2023-34410 | An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configured CA certificate. | 2023-06-01T07:00:00.000Z | 2025-03-19T00:00:00.000Z |
| msrc_cve-2023-29932 | llvm-project commit fdbc55a5 was discovered to contain a segmentation fault via the component mlir::IROperand<mlir::OpOperand. | 2023-05-01T00:00:00.000Z | 2025-03-19T00:00:00.000Z |
| msrc_cve-2022-3162 | Unauthorized read of Custom Resources | 2023-03-10T00:00:00.000Z | 2025-03-19T00:00:00.000Z |
| msrc_cve-2024-53427 | decNumberCopy in decNumber.c in jq through 1.7.1 does not properly consider that NaN is interpreted as numeric, which has a resultant stack-based buffer overflow and out-of-bounds write, as demonstrated by use of --slurp with subtraction, such as a filter of .-. when the input has a certain form of digit string with NaN (e.g., "1 NaN123" immediately followed by many more digits). | 2025-02-02T00:00:00.000Z | 2025-03-18T00:00:00.000Z |
| msrc_cve-2024-26651 | sr9800: Add check for usbnet_get_endpoints | 2024-03-02T08:00:00.000Z | 2025-03-17T00:00:00.000Z |
| msrc_cve-2025-27363 | An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a static value causing it to wrap around and allocate too small of a heap buffer. The code then writes up to 6 signed long integers out of bounds relative to this buffer. This may result in arbitrary code execution. This vulnerability may have been exploited in the wild. | 2025-03-02T00:00:00.000Z | 2025-03-15T00:00:00.000Z |
| msrc_cve-2024-53899 | virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287. | 2024-11-02T00:00:00.000Z | 2025-03-15T00:00:00.000Z |
| msrc_cve-2023-35945 | Envoy vulnerable to HTTP/2 memory leak in nghttp2 codec | 2023-07-01T07:00:00.000Z | 2025-03-15T00:00:00.000Z |
| msrc_cve-2025-27423 | Improper Input Validation in Vim | 2025-03-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-27113 | libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c. | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-26603 | heap-use-after-free in function str_to_reg in vim/vim | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-26601 | Xorg: xwayland: use-after-free in syncinittrigger() | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-26600 | Xorg: xwayland: use-after-free in playreleasedevents() | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-26599 | Xorg: xwayland: use of uninitialized pointer in compredirectwindow() | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-26598 | Xorg: xwayland: out-of-bounds write in createpointerbarrierclient() | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-26597 | Xorg: xwayland: buffer overflow in xkbchangetypesofkey() | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-26596 | Xorg: xwayland: heap overflow in xkbwritekeysyms() | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-26595 | Xorg: xwayland: buffer overflow in xkbvmodmasktext() | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-26594 | X.org: xwayland: use-after-free of the root cursor | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-24928 | libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047. | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-23359 | NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability when used with default configuration, where a crafted container image could gain access to the host file system. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-21820 | tty: xilinx_uartps: split sysrq handling | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-21814 | ptp: Ensure info->enable callback is always set | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202506-2791 | H3C N12 is a wireless router of H3C, a Chinese company. H3C N12 of H3C Technologies Co.,… | 2025-06-27T23:18:35.893000Z |
| var-202506-2183 | HP Color LaserJet Pro MFP M477fdn is a color laser multifunction printer launched by HP. … | 2025-06-27T23:17:42.031000Z |
| var-202506-2792 | Tatung World Technology Co., Ltd. has two main entities: one is a listed company headquar… | 2025-06-27T23:17:41.738000Z |
| var-202506-3002 | H3C Magic NX15000 is a 10G Wi-Fi 6 router. H3C Magic NX15000 of H3C Technologies Co., Lt… | 2025-06-27T23:17:41.635000Z |
| var-202506-2576 | Neterbit NW-431F is a router developed by Neterbit. Neterbit NW-431F has an unauthorized… | 2025-06-27T23:16:54.015000Z |
| var-202506-2786 | HP Color LaserJet M254nw is a color laser printer. HP Color LaserJet M254nw of HP Tradin… | 2025-06-27T23:16:53.904000Z |
| var-202506-2996 | Founded in 2009, Phicomm Data Communication Technology Co., Ltd. is a high-tech enterpris… | 2025-06-27T23:16:53.802000Z |
| var-202505-1362 | An issue was discovered on Tenda RX2 Pro 16.03.30.14 devices. Improper network isolation … | 2025-06-27T23:15:32.264000Z |
| var-202505-3719 | SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of datab… | 2025-06-27T23:15:32.104000Z |
| var-202505-3887 | Stored Cross Site Scripting vulnerabilities exist in ASPECT if administrator creden-tials… | 2025-06-27T23:15:32.084000Z |
| var-202506-2181 | LB-LINK X26 is a Wi-Fi 5 wireless router. Shenzhen Bilian Electronics Co., Ltd. LB-LIN… | 2025-06-27T23:15:31.253000Z |
| var-202506-2580 | e-STUDIO409S is a printer. Toshiba (China) Co., Ltd. Shanghai Branch e-STUDIO409S has an… | 2025-06-27T23:15:31.050000Z |
| var-202506-2790 | H3C NX15 is a home wireless router. H3C NX15 of H3C Technologies Co., Ltd. has a command… | 2025-06-27T23:15:30.888000Z |
| var-202506-3000 | Fujifilm (China) Investment Co., Ltd. was established in 2001. It is a branch of Fujifilm… | 2025-06-27T23:15:30.780000Z |
| var-202502-1766 | A vulnerability, which was classified as critical, has been found in D-Link DAP-1320 1.00… | 2025-06-27T23:14:19.941000Z |
| var-202506-1775 | SAMSUNG is a multinational company from South Korea, with businesses in electronics, fina… | 2025-06-27T23:14:18.661000Z |
| var-202506-2995 | Canon iR-ADV C5535 is a high-performance color digital multifunction machine with multipl… | 2025-06-27T23:14:18.054000Z |
| var-202506-3205 | RG-EW1200G is a home wireless router suitable for use in flat homes, villas, small shops … | 2025-06-27T23:14:17.941000Z |
| var-202207-0996 | An issue in Netgear WNR2000 v1 1.2.3.7 and earlier allows authenticated attackers to caus… | 2025-06-27T23:13:53.208000Z |
| var-202505-3302 | File upload and execute vulnerabilities in ASPECT allow PHP script injection if session a… | 2025-06-27T23:13:48.496000Z |
| var-202505-3533 | Windows permissions for ASPECT configuration toolsets are not fully secured allow-ing exp… | 2025-06-27T23:13:48.458000Z |
| var-202505-4268 | TEW-751DR is a dual-band wireless router. TRENDnet TEW-751DR has an unauthorized access … | 2025-06-27T23:13:48.422000Z |
| var-202506-2185 | Xerox Corporation is a long-established American multinational company, originally known … | 2025-06-27T23:13:47.684000Z |
| var-202506-2584 | H3C Magic NX15000 is a 10G Wi-Fi 6 router. H3C Magic NX15000 of H3C Technologies Co., Lt… | 2025-06-27T23:13:47.483000Z |
| var-202506-2794 | DIR-823X (AX3000) is a dual-band wireless router that supports the WiFi 6 standard and ha… | 2025-06-27T23:13:47.378000Z |
| var-202506-0828 | A vulnerability classified as critical has been found in TOTOLINK A3002R 4.0.0-B20230531.… | 2025-06-27T23:13:17.148000Z |
| var-202506-1773 | HL-L2360D series is a multi-function all-in-one printer. Brother (China) Commercial Co.,… | 2025-06-27T23:13:16.579000Z |
| var-202506-2993 | ZT199 is a mobile phone. ZTE Corporation's ZT199 has a weak password vulnerability, whic… | 2025-06-27T23:13:15.958000Z |
| var-202506-1774 | H3C NX54 is a Gigabit dual-band router that supports Wi-Fi 6 (802.11ax) protocol. H3C NX… | 2025-06-27T23:12:41.925000Z |
| var-202506-2385 | LOYTEC LINX-202 is a building automation server, mainly used in building automation syste… | 2025-06-27T23:12:41.623000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2024:2805-1 | Security update for shadow | 2024-08-07T07:48:49Z | 2024-08-07T07:48:49Z |
| suse-su-2024:2804-1 | Security update for shadow | 2024-08-07T07:48:32Z | 2024-08-07T07:48:32Z |
| suse-su-2024:2803-1 | Security update for ffmpeg-4 | 2024-08-07T07:47:56Z | 2024-08-07T07:47:56Z |
| suse-su-2024:2802-1 | Security update for the Linux Kernel | 2024-08-07T07:46:03Z | 2024-08-07T07:46:03Z |
| suse-su-2024:2797-1 | Security update for the Linux Kernel (Live Patch 45 for SLE 15 SP3) | 2024-08-06T17:03:47Z | 2024-08-06T17:03:47Z |
| suse-su-2024:2793-1 | Security update for the Linux Kernel (Live Patch 37 for SLE 15 SP3) | 2024-08-06T15:33:43Z | 2024-08-06T15:33:43Z |
| suse-su-2024:2792-1 | Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3) | 2024-08-06T15:03:52Z | 2024-08-06T15:03:52Z |
| suse-su-2024:2790-1 | Security update for MozillaThunderbird | 2024-08-06T14:18:49Z | 2024-08-06T14:18:49Z |
| suse-su-2024:2789-1 | Security update for libnbd | 2024-08-06T14:10:32Z | 2024-08-06T14:10:32Z |
| suse-su-2024:2786-1 | Security update for java-1_8_0-openjdk | 2024-08-06T13:00:18Z | 2024-08-06T13:00:18Z |
| suse-su-2024:2785-1 | Security update for kernel-firmware | 2024-08-06T12:59:02Z | 2024-08-06T12:59:02Z |
| suse-su-2024:2784-1 | Security update for curl | 2024-08-06T12:58:40Z | 2024-08-06T12:58:40Z |
| suse-su-2024:2780-1 | Security update for patch | 2024-08-06T12:36:07Z | 2024-08-06T12:36:07Z |
| suse-su-2024:2776-1 | Security update for dri3proto, presentproto, wayland-protocols, xwayland | 2024-08-06T12:33:59Z | 2024-08-06T12:33:59Z |
| suse-su-2024:2773-1 | Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3) | 2024-08-06T11:03:50Z | 2024-08-06T11:03:50Z |
| suse-su-2024:2771-1 | Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP3) | 2024-08-06T11:03:41Z | 2024-08-06T11:03:41Z |
| suse-su-2024:2273-2 | Security update for podman | 2024-08-06T09:45:47Z | 2024-08-06T09:45:47Z |
| suse-su-2024:2273-1 | Security update for podman | 2024-08-06T09:45:47Z | 2024-08-06T09:45:47Z |
| suse-su-2024:2767-1 | Security update for ca-certificates-mozilla | 2024-08-06T08:55:24Z | 2024-08-06T08:55:24Z |
| suse-su-2024:2766-1 | Security update for java-1_8_0-openjdk | 2024-08-06T08:54:50Z | 2024-08-06T08:54:50Z |
| suse-su-2024:2761-1 | Security update for openssl-3-livepatches | 2024-08-06T05:18:23Z | 2024-08-06T05:18:23Z |
| suse-su-2024:2760-1 | Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP2) | 2024-08-05T20:36:14Z | 2024-08-05T20:36:14Z |
| suse-su-2024:2759-1 | Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP2) | 2024-08-05T20:03:58Z | 2024-08-05T20:03:58Z |
| suse-su-2024:2758-1 | Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP2) | 2024-08-05T20:03:50Z | 2024-08-05T20:03:50Z |
| suse-su-2024:2757-1 | Security update for python-Twisted | 2024-08-05T19:58:56Z | 2024-08-05T19:58:56Z |
| suse-su-2024:2756-1 | Security update for ksh | 2024-08-05T19:57:56Z | 2024-08-05T19:57:56Z |
| suse-su-2024:2755-1 | Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP3) | 2024-08-05T19:04:08Z | 2024-08-05T19:04:08Z |
| suse-su-2024:2754-1 | Security update for skopeo | 2024-08-05T19:03:58Z | 2024-08-05T19:03:58Z |
| suse-su-2024:2751-1 | Security update for the Linux Kernel RT (Live Patch 11 for SLE 15 SP5) | 2024-08-05T16:33:39Z | 2024-08-05T16:33:39Z |
| suse-su-2024:2750-1 | Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP5) | 2024-08-05T16:33:31Z | 2024-08-05T16:33:31Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:11717-1 | tuigreet-0.7.1-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11716-1 | sccache-0.2.15~git0.6b6d2f7-8.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11715-1 | rustup-1.24.3~git1.0a74fef5-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11714-1 | rustscan-2.0.1+0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11713-1 | python-lxml-doc-4.6.5-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11712-1 | libIex-3_1-30-3.1.3-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11711-1 | kanidm-1.1.0~alpha7~git0.c8468199-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11710-1 | greetd-0.8.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11709-1 | cflow-1.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11708-1 | cargo-audit-advisory-db-20220105-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11707-1 | libwireshark15-3.6.1-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11706-1 | perl-ExtUtils-MakeMaker-7.64-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11705-1 | libsndfile-devel-1.0.31-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11704-1 | blas-devel-3.9.0-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11703-1 | libwireshark15-3.6.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11702-1 | log4j-2.17.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11701-1 | HyperKitty-web-1.3.5-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11700-1 | grub2-2.06-13.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11699-1 | xwayland-21.1.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11698-1 | MozillaThunderbird-91.4.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11697-1 | libdxfrw-devel-1.0.1+git.20211110-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11696-1 | kafka-kit-2.1.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11695-1 | apache2-2.4.52-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11694-1 | grafana-7.5.12-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11693-1 | xml-security-2.1.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11692-1 | openvpn-2.5.4-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11691-1 | log4j-2.17.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11690-1 | epiphany-41.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11689-1 | bcm43xx-firmware-20180314-14.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11688-1 | ant-1.10.12-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-apache-2020-11985 | 2024-03-06T10:57:47.876Z | 2025-04-03T14:40:37.652Z | |
| bit-apache-2020-11984 | 2024-03-06T10:57:57.770Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2020-9485 | 2024-03-06T10:59:54.373Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2020-17526 | 2024-03-06T11:00:04.682Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2020-17515 | 2024-03-06T11:00:14.504Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2020-17513 | 2024-03-06T11:00:25.620Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2020-17511 | 2024-03-06T11:00:34.382Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2020-13944 | 2024-03-06T11:00:45.413Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2020-11983 | 2024-03-06T11:01:07.495Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2020-11982 | 2024-03-06T11:01:18.203Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2020-11981 | 2024-03-06T11:01:26.575Z | 2025-04-03T14:40:37.652Z | |
| bit-wordpress-2024-3992 | 2024-08-06T10:14:12.806Z | 2025-03-24T17:31:38.612Z | |
| bit-wordpress-2024-3756 | 2024-07-18T07:41:57.570Z | 2025-03-24T17:31:38.612Z | |
| bit-wordpress-2024-3755 | 2024-07-18T07:42:10.574Z | 2025-03-24T17:31:38.612Z | |
| bit-wordpress-2023-51474 | 2024-07-18T07:43:55.364Z | 2025-03-24T17:31:38.612Z | |
| bit-node-2025-23089 | 2025-01-27T07:15:22.512Z | 2025-03-02T07:44:48.340Z | |
| bit-node-2025-23088 | 2025-01-27T07:15:29.521Z | 2025-03-02T07:44:48.340Z | |
| bit-node-2025-23087 | 2025-01-27T07:15:36.528Z | 2025-03-02T07:44:48.340Z | |
| bit-wordpress-2023-23814 | 2024-12-11T07:22:41.801Z | 2024-12-11T07:36:45.271Z | |
| bit-gitlab-2022-4315 | 2024-11-05T07:26:59.363Z | 2024-11-27T19:40:48.342Z | |
| bit-envoy-2024-7207 | 2024-09-26T07:10:09.460Z | 2024-09-26T07:51:02.528Z | |
| bit-wordpress-2023-28492 | 2024-07-18T07:44:25.068Z | 2024-07-18T07:56:34.499Z | |
| bit-solr-2023-44487 | 2024-03-06T11:05:51.759Z | 2024-06-23T19:56:34.118Z | |
| bit-kafka-2024-27309 | 2024-04-16T07:20:25.284Z | 2024-05-02T07:52:56.618Z | |
| bit-rabbitmq-2021-22117 | 2024-03-06T11:03:44.606Z | 2024-03-06T11:25:28.861Z | |
| bit-rabbitmq-2020-5419 | 2024-03-06T11:04:02.503Z | 2024-03-06T11:25:28.861Z | |
| bit-postgresql-2024-24213 | 2024-03-06T11:02:10.168Z | 2024-03-06T11:25:28.861Z | |
| bit-mariadb-2022-27458 | 2024-03-06T10:58:21.495Z | 2024-03-06T11:25:28.861Z | |
| bit-golang-2021-33194 | 2024-03-06T11:05:26.460Z | 2024-03-06T11:25:28.861Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-20807 | SAMSUNG MagicINFO 9 Server路径遍历漏洞(CNVD-2025-20807) | 2024-08-16 | 2025-09-09 |
| cnvd-2025-20806 | SAMSUNG MagicINFO 9 Server路径遍历漏洞(CNVD-2025-20806) | 2025-07-24 | 2025-09-09 |
| cnvd-2025-20805 | SAMSUNG MagicINFO 9 Server文件上传漏洞(CNVD-2025-20805) | 2025-07-24 | 2025-09-09 |
| cnvd-2025-20804 | SAMSUNG MagicINFO 9 Server文件上传漏洞(CNVD-2025-20804) | 2025-07-24 | 2025-09-09 |
| cnvd-2025-20803 | SAMSUNG MagicINFO 9 Server文件上传漏洞(CNVD-2025-20803) | 2025-07-24 | 2025-09-09 |
| cnvd-2025-20802 | SAMSUNG MagicINFO 9 Server文件上传漏洞(CNVD-2025-20802) | 2025-07-24 | 2025-09-09 |
| cnvd-2025-20801 | SAMSUNG MagicINFO 9 Server路径遍历漏洞(CNVD-2025-20801) | 2025-07-24 | 2025-09-09 |
| cnvd-2025-20800 | SAMSUNG MagicINFO 9 Server文件上传漏洞(CNVD-2025-20800) | 2025-07-24 | 2025-09-09 |
| cnvd-2025-20799 | FreeScout跨站脚本漏洞(CNVD-2025-20799) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20798 | FreeScout安全绕过漏洞(CNVD-2025-20798) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20797 | FreeScout跨站脚本漏洞(CNVD-2025-20797) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20796 | FreeScout安全绕过漏洞(CNVD-2025-20796) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20795 | FreeScout跨站脚本漏洞(CNVD-2025-20795) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20794 | Dell Digital Delivery信息泄露漏洞 | 2025-08-11 | 2025-09-09 |
| cnvd-2025-20787 | FreeScout跨站脚本漏洞(CNVD-2025-20787) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20786 | FreeScout跨站脚本漏洞(CNVD-2025-20786) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20785 | FreeScout跨站脚本漏洞(CNVD-2025-20785) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20784 | FreeScout安全绕过漏洞(CNVD-2025-20784) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20783 | FreeScout安全绕过漏洞(CNVD-2025-20783) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20782 | FreeScout信息泄露漏洞 | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20781 | FreeScout安全绕过漏洞(CNVD-2025-20781) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20780 | FreeScout安全绕过漏洞(CNVD-2025-20780) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20779 | FreeScout安全绕过漏洞 | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20778 | FreeScout跨站脚本漏洞(CNVD-2025-20778) | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20777 | FreeScout跨站脚本漏洞 | 2025-06-06 | 2025-09-09 |
| cnvd-2025-20776 | WordPress插件Abandoned Contact Form存在未明漏洞 | 2025-07-07 | 2025-09-09 |
| cnvd-2025-21056 | GNU Binutils缓冲区溢出漏洞(CNVD-2025-21056) | 2023-04-06 | 2025-09-08 |
| cnvd-2025-21055 | GNU Binutils缓冲区溢出漏洞 | 2023-04-12 | 2025-09-08 |
| cnvd-2025-21054 | GNU Binutils拒绝服务漏洞(CNVD-2025-21054) | 2023-05-29 | 2025-09-08 |
| cnvd-2025-21053 | GNU Binutils越界读取漏洞 | 2023-05-29 | 2025-09-08 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2021-avi-975 | Vulnérabilité dans NetApp StorageGRID | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-974 | Multiples vulnérabilités dans Mozilla Thunderbird | 2021-12-21T00:00:00.000000 | 2021-12-21T00:00:00.000000 |
| certfr-2021-avi-973 | Multiples vulnérabilités dans Xen | 2021-12-21T00:00:00.000000 | 2021-12-21T00:00:00.000000 |
| certfr-2021-avi-972 | Multiples vulnérabilités dans Apache httpd | 2021-12-21T00:00:00.000000 | 2021-12-21T00:00:00.000000 |
| certfr-2021-avi-971 | Multiples vulnérabilités dans SolarWinds Orion | 2021-12-21T00:00:00.000000 | 2021-12-21T00:00:00.000000 |
| certfr-2021-avi-970 | Multiples vulnérabilités dans les produits VMware | 2021-12-20T00:00:00.000000 | 2021-12-20T00:00:00.000000 |
| certfr-2021-avi-969 | Multiples vulnérabilités dans le noyau Linux de Debian | 2021-12-20T00:00:00.000000 | 2021-12-20T00:00:00.000000 |
| certfr-2021-avi-957 | Multiples vulnérabilités dans Microsoft Edge | 2021-12-15T00:00:00.000000 | 2021-12-20T00:00:00.000000 |
| certfr-2021-avi-928 | Multiples vulnérabilités dans les produits Stormshield | 2021-12-08T00:00:00.000000 | 2021-12-20T00:00:00.000000 |
| certfr-2021-avi-968 | Vulnérabilité dans RedHat OpenShift Container Platform | 2021-12-17T00:00:00.000000 | 2021-12-17T00:00:00.000000 |
| certfr-2021-avi-967 | Vulnérabilité dans F5 BIG-IP | 2021-12-17T00:00:00.000000 | 2021-12-17T00:00:00.000000 |
| certfr-2021-avi-966 | Multiples vulnérabilités dans F-Secure SAFE Browser | 2021-12-17T00:00:00.000000 | 2021-12-17T00:00:00.000000 |
| certfr-2021-avi-965 | Vulnérabilité dans VMware Workspace ONE UEM console | 2021-12-17T00:00:00.000000 | 2021-12-17T00:00:00.000000 |
| certfr-2021-avi-964 | Vulnérabilité dans F5 NGINX Swagger UI | 2021-12-16T00:00:00.000000 | 2021-12-16T00:00:00.000000 |
| certfr-2021-avi-963 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-12-16T00:00:00.000000 | 2021-12-16T00:00:00.000000 |
| certfr-2021-avi-962 | Vulnérabilité dans MongoDB | 2021-12-16T00:00:00.000000 | 2021-12-16T00:00:00.000000 |
| certfr-2021-avi-961 | Multiples vulnérabilités dans les produits Microsoft | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-960 | Multiples vulnérabilités dans Microsoft .Net | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-959 | Multiples vulnérabilités dans Microsoft Windows | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-958 | Multiples vulnérabilités dans Microsoft Office | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-956 | Multiples vulnérabilités dans Apple Safari | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-955 | Vulnérabilité dans OpenSSL | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-954 | Vulnérabilité dans Moxa NPort | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-953 | Multiples vulnérabilités dans les produits Schneider | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-952 | Multiples vulnérabilités dans les produits IBM | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-951 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-950 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-949 | Multiples vulnérabilités dans les produits Siemens | 2021-12-15T00:00:00.000000 | 2021-12-15T00:00:00.000000 |
| certfr-2021-avi-948 | Multiples vulnérabilités dans les produits SAP | 2021-12-14T00:00:00.000000 | 2021-12-14T00:00:00.000000 |
| certfr-2021-avi-946 | Multiples vulnérabilités dans Google Chrome | 2021-12-14T00:00:00.000000 | 2021-12-14T00:00:00.000000 |