Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-67971 |
7.1 (3.1)
|
WordPress FluentCart plugin < 1.3.0 - Cross Site Scrip… |
WPManageNinja |
FluentCart |
2026-02-20T15:46:28.917Z | 2026-02-23T21:48:06.125Z |
| CVE-2025-67972 |
7.1 (3.1)
|
WordPress Prague plugin <= 2.2.8 - Cross Site Scriptin… |
fox-themes |
Prague |
2026-02-20T15:46:29.103Z | 2026-02-23T21:48:05.989Z |
| CVE-2025-67978 |
7.1 (3.1)
|
WordPress Educare plugin <= 1.6.1 - Cross Site Scripti… |
FixBD |
Educare |
2026-02-20T15:46:30.665Z | 2026-02-23T21:48:05.850Z |
| CVE-2025-67984 |
7.1 (3.1)
|
WordPress NPS computy plugin <= 2.8.2 - Cross Site Scr… |
calliko |
NPS computy |
2026-02-20T15:46:31.564Z | 2026-02-23T21:48:05.709Z |
| CVE-2025-67990 |
7.1 (3.1)
|
WordPress GMap Targeting plugin <= 1.1.7 - Cross Site … |
RealMag777 |
GMap Targeting |
2026-02-20T15:46:32.120Z | 2026-02-23T21:48:05.571Z |
| CVE-2025-67991 |
7.1 (3.1)
|
WordPress User Extra Fields plugin <= 16.8 - Cross Sit… |
vanquish |
User Extra Fields |
2026-02-20T15:46:32.315Z | 2026-02-23T21:48:05.306Z |
| CVE-2025-68031 |
7.1 (3.1)
|
WordPress افزونه پیامک حرفه ای فراز اس ام اس plugin <=… |
faraz sms |
افزونه پیامک حرفه ای فراز اس ام اس |
2026-02-20T15:46:36.305Z | 2026-02-23T21:48:05.070Z |
| CVE-2025-68495 |
7.1 (3.1)
|
WordPress JetEngine plugin <= 3.8.0 - Reflected Cross … |
Crocoblock |
JetEngine |
2026-02-20T15:46:38.333Z | 2026-02-23T21:48:04.885Z |
| CVE-2025-68501 |
7.1 (3.1)
|
WordPress Mollie Payments for WooCommerce plugin <= 8.… |
Mollie |
Mollie Payments for WooCommerce |
2026-02-20T15:46:38.572Z | 2026-02-23T21:48:04.608Z |
| CVE-2025-68842 |
7.1 (3.1)
|
WordPress Widget Logic Visual plugin <= 1.52 - Reflect… |
totalbounty |
Widget Logic Visual |
2026-02-20T15:46:41.871Z | 2026-02-23T21:48:04.312Z |
| CVE-2025-68843 |
7.1 (3.1)
|
WordPress FeedWordPress Advanced Filters plugin <= 0.6… |
Bas Schuiling |
FeedWordPress Advanced Filters |
2026-02-20T15:46:42.104Z | 2026-02-23T21:48:04.149Z |
| CVE-2025-68844 |
7.1 (3.1)
|
WordPress Membee Login plugin <= 2.3.6 - Cross Site Sc… |
DaleAB |
Membee Login |
2026-02-20T15:46:42.323Z | 2026-02-23T21:48:03.999Z |
| CVE-2025-68845 |
7.1 (3.1)
|
WordPress eDS Responsive Menu plugin <= 1.2 - Reflecte… |
aThemeArt Translations |
eDS Responsive Menu |
2026-02-20T15:46:42.521Z | 2026-02-23T21:48:03.842Z |
| CVE-2025-68846 |
7.1 (3.1)
|
WordPress Asynchronous Javascript plugin <= 1.3.5 - Re… |
Paris Holley |
Asynchronous Javascript |
2026-02-20T15:46:42.712Z | 2026-02-23T21:48:03.675Z |
| CVE-2025-68847 |
7.1 (3.1)
|
WordPress iSape plugin <= 0.72 - Reflected Cross Site … |
itex |
iSape |
2026-02-20T15:46:42.884Z | 2026-02-23T21:48:03.435Z |
| CVE-2025-68848 |
7.1 (3.1)
|
WordPress amr cron manager plugin <= 2.3 - Reflecte dC… |
anmari |
amr cron manager |
2026-02-20T15:46:43.083Z | 2026-02-23T21:48:03.275Z |
| CVE-2025-68852 |
7.1 (3.1)
|
WordPress Court Reservation plugin <= 1.10.9 - Cross S… |
webmuehle |
Court Reservation |
2026-02-20T15:46:43.282Z | 2026-02-23T21:48:03.134Z |
| CVE-2025-68856 |
7.1 (3.1)
|
WordPress Mopinion Feedback Form plugin <= 1.1.1 - Ref… |
keeswolters |
Mopinion Feedback Form |
2026-02-20T15:46:44.011Z | 2026-02-23T21:48:02.937Z |
| CVE-2025-68863 |
7.1 (3.1)
|
WordPress iContact for Gravity Forms plugin <= 1.3.2 -… |
Zack Katz |
iContact for Gravity Forms |
2026-02-20T15:46:44.401Z | 2026-02-23T21:48:02.760Z |
| CVE-2025-68880 |
7.1 (3.1)
|
WordPress Simple Archive Generator plugin <= 5.2 - Ref… |
peterwsterling |
Simple Archive Generator |
2026-02-20T15:46:44.624Z | 2026-02-23T21:48:01.693Z |
| CVE-2019-25458 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi Firma Rehberi v1 SQL Injection via firmalar.html |
Web-ofisi |
Firma Rehberi |
2026-02-22T14:12:12.162Z | 2026-02-23T21:41:41.098Z |
| CVE-2019-25459 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi Emlak V2 SQL Injection via emlak-ara.html |
Web-ofisi |
Emlak |
2026-02-22T14:12:13.169Z | 2026-02-23T21:41:11.665Z |
| CVE-2019-25460 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi Platinum E-Ticaret v5 SQL Injection via q Pa… |
Web-ofisi |
Ticaret |
2026-02-22T14:12:14.220Z | 2026-02-23T21:40:41.608Z |
| CVE-2019-25461 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi Platinum E-Ticaret v5 SQL Injection via ajax… |
Web-ofisi |
Ticaret |
2026-02-22T14:12:15.148Z | 2026-02-23T21:40:17.722Z |
| CVE-2025-69296 |
7.1 (3.1)
|
WordPress Aardvark theme <= 4.6.3 - Reflected Cross Si… |
GhostPool |
Aardvark |
2026-02-20T15:46:45.930Z | 2026-02-23T21:38:01.784Z |
| CVE-2025-69302 |
7.1 (3.1)
|
WordPress DesignThemes Core Features plugin <= 2.3 - R… |
designthemes |
DesignThemes Core Features |
2026-02-20T15:46:46.906Z | 2026-02-23T21:38:01.523Z |
| CVE-2025-69323 |
7.1 (3.1)
|
WordPress Slimstat Analytics plugin <= 5.3.2 - Reflect… |
VeronaLabs |
Slimstat Analytics |
2026-02-20T15:46:48.922Z | 2026-02-23T21:38:01.362Z |
| CVE-2025-69324 |
7.1 (3.1)
|
WordPress NEX-Forms plugin <= 9.1.7 - Cross Site Scrip… |
Basix |
NEX-Forms |
2026-02-20T15:46:49.111Z | 2026-02-23T21:38:01.158Z |
| CVE-2025-69326 |
7.1 (3.1)
|
WordPress NEX-Forms plugin <= 9.1.7 - Reflected Cross … |
Basix |
NEX-Forms |
2026-02-20T15:46:49.532Z | 2026-02-23T21:38:00.997Z |
| CVE-2025-69330 |
7.1 (3.1)
|
WordPress Prestige theme < 1.4.1 - Reflected Cross Sit… |
Jthemes |
Prestige |
2026-02-20T15:46:50.026Z | 2026-02-23T21:38:00.786Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-58466 |
1.2 (4.0)
|
QTS, QuTS hero |
QNAP Systems Inc. |
QTS |
2026-02-11T12:16:55.139Z | 2026-02-11T16:54:52.712Z |
| CVE-2025-66277 |
9.2 (4.0)
|
QTS, QuTS hero |
QNAP Systems Inc. |
QTS |
2026-02-11T12:15:43.851Z | 2026-02-26T14:44:26.986Z |
| CVE-2025-52026 |
7.5 (3.1)
|
An information disclosure vulnerability exists in… |
n/a |
n/a |
2026-01-23T00:00:00.000Z | 2026-01-26T16:02:50.863Z |
| CVE-2026-24128 |
6.5 (4.0)
|
XWiki Affected by Reflected Cross-Site Scripting (XSS)… |
xwiki |
xwiki-platform |
2026-01-23T23:18:31.366Z | 2026-01-26T17:12:52.761Z |
| CVE-2025-15551 |
5.9 (4.0)
|
LAN Code Execution on TP-Link Archer MR200, Archer C20… |
TP-Link Systems Inc. |
Archer MR200 v5.2 |
2026-02-05T17:22:55.600Z | 2026-02-05T20:31:56.005Z |
| CVE-2026-2073 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
itsourcecode School Management System index.php sql in… |
itsourcecode |
School Management System |
2026-02-07T03:32:07.333Z | 2026-02-23T09:29:14.617Z |
| CVE-2026-2083 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Social Networking Site delete_post.php s… |
code-projects |
Social Networking Site |
2026-02-07T10:32:06.454Z | 2026-02-23T09:31:30.099Z |
| CVE-2026-2085 |
8.6 (4.0)
7.2 (3.1)
7.2 (3.0)
|
D-Link DWR-M921 USSD Configuration Endpoint formUSSDSe… |
D-Link |
DWR-M921 |
2026-02-07T12:02:08.316Z | 2026-02-23T09:32:00.509Z |
| CVE-2026-2214 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
code-projects for Plugin AdminAddAlbum.php cross site … |
code-projects |
for Plugin |
2026-02-09T04:02:06.833Z | 2026-02-23T09:56:18.577Z |
| CVE-2026-2059 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
SourceCodester Medical Center Portal Management System… |
SourceCodester |
Medical Center Portal Management System |
2026-02-06T17:02:07.494Z | 2026-02-23T09:26:16.347Z |
| CVE-2021-47912 |
5.1 (4.0)
6.4 (3.1)
|
PHP Melody 3.0 Non-Persistent Cross-Site Scripting via… |
PHPSUGAR |
PHP Melody |
2026-02-01T12:15:47.948Z | 2026-02-03T16:41:37.685Z |
| CVE-2026-2250 |
7.5 (3.1)
|
Unauthenticated Data Export and Source Code Disclosure… |
METIS Cyberspace Technology SA |
METIS WIC |
2026-02-11T14:13:45.892Z | 2026-02-12T15:20:51.492Z |
| CVE-2026-2249 |
9.8 (3.1)
|
Unauthenticated Remote Command Execution via Web Conso… |
METIS Cyberspace Technology SA |
METIS DFS |
2026-02-11T14:16:19.157Z | 2026-02-12T15:20:28.314Z |
| CVE-2026-2248 |
9.8 (3.1)
|
Unauthenticated Remote Root Shell Access via Web Conso… |
METIS Cyberspace Technology SA |
METIS WIC |
2026-02-11T14:15:42.961Z | 2026-02-12T15:20:05.979Z |
| CVE-2026-26029 |
7.5 (3.1)
|
sf-mcp-server has a Command Injection in query_records… |
akutishevsky |
sf-mcp-server |
2026-02-11T21:25:57.164Z | 2026-02-12T15:41:13.182Z |
| CVE-2025-69872 |
9.8 (3.1)
|
DiskCache (python-diskcache) through 5.6.3 uses P… |
n/a |
n/a |
2026-02-11T00:00:00.000Z | 2026-02-12T15:11:44.523Z |
| CVE-2025-69871 |
8.1 (3.1)
|
A race condition vulnerability exists in MedusaJS… |
n/a |
n/a |
2026-02-11T00:00:00.000Z | 2026-02-12T15:10:00.310Z |
| CVE-2025-67135 |
9.8 (3.1)
|
Weak Security in the PF-50 1.2 keyfob of PGST PG1… |
n/a |
n/a |
2026-02-11T00:00:00.000Z | 2026-02-12T15:32:03.382Z |
| CVE-2025-15575 |
5.3 (3.1)
|
Missing Firmware Authenticity Checks in Solax Power Po… |
SolaX Power |
Pocket WiFi 3.0 |
2026-02-12T10:51:44.650Z | 2026-02-12T15:13:52.412Z |
| CVE-2025-15574 |
6.5 (3.1)
|
Insecure Credential Generation for Solax Power Pocket … |
SolaX Power |
Pocket WiFi 3.0 |
2026-02-12T10:58:29.373Z | 2026-02-12T15:15:45.817Z |
| CVE-2026-24136 |
8.7 (4.0)
|
Saleor has an Insecure Direct Object Reference (IDOR) … |
saleor |
saleor |
2026-01-23T23:38:31.414Z | 2026-01-26T17:10:16.445Z |
| CVE-2023-53557 |
N/A
|
fprobe: Release rethook after the ftrace_ops is unregistered |
Linux |
Linux |
2025-10-04T15:17:02.077Z | 2025-10-04T15:17:02.077Z |
| CVE-2026-22582 |
9.8 (3.1)
|
Improper Neutralization of Argument Delimiters in… |
Salesforce |
Marketing Cloud Engagement |
2026-01-24T00:19:26.449Z | 2026-02-26T15:04:52.985Z |
| CVE-2026-22583 |
9.8 (3.1)
|
Improper Neutralization of Argument Delimiters in… |
Salesforce |
Marketing Cloud Engagement |
2026-01-24T00:20:54.718Z | 2026-02-26T15:04:52.631Z |
| CVE-2026-22585 |
9.8 (3.1)
|
Use of a Broken or Risky Cryptographic Algorithm … |
Salesforce |
Marketing Cloud Engagement |
2026-01-24T00:15:02.891Z | 2026-02-26T15:04:53.617Z |
| CVE-2026-22586 |
9.8 (3.1)
|
Hard-coded Cryptographic Key vulnerability in Sal… |
Salesforce |
Marketing Cloud Engagement |
2026-01-24T00:17:08.285Z | 2026-02-26T15:04:53.335Z |
| CVE-2023-53558 |
N/A
|
rcu-tasks: Avoid pr_info() with spin lock in cblist_in… |
Linux |
Linux |
2025-10-04T15:17:02.822Z | 2025-10-29T10:50:31.749Z |
| CVE-2025-62676 |
6.4 (3.1)
|
An Improper Link Resolution Before File Access ('… |
Fortinet |
FortiClientWindows |
2026-02-10T15:39:12.816Z | 2026-02-26T15:04:10.922Z |
| CVE-2026-24399 |
9.3 (3.1)
|
ChatterMate has Stored Cross-Site Scripting (XSS) via … |
chattermate |
chattermate.chat |
2026-01-24T00:05:37.246Z | 2026-01-26T16:17:53.948Z |
| CVE-2023-53559 |
N/A
|
ip_vti: fix potential slab-use-after-free in decode_session6 |
Linux |
Linux |
2025-10-04T15:17:03.497Z | 2025-10-04T15:17:03.497Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-58466 | A use of uninitialized variable vulnerability has been reported to affect several QNAP operating sy… | 2026-02-11T13:15:56.447 | 2026-02-12T17:06:57.050 |
| fkie_cve-2025-66277 | A link following vulnerability has been reported to affect several QNAP operating system versions. … | 2026-02-11T13:15:58.380 | 2026-02-12T17:01:35.340 |
| fkie_cve-2025-52026 | An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the A… | 2026-01-23T21:15:50.813 | 2026-02-12T16:48:21.933 |
| fkie_cve-2026-24128 | XWiki Platform is a generic wiki platform offering runtime services for applications built on top o… | 2026-01-24T00:15:49.007 | 2026-02-12T16:47:29.200 |
| fkie_cve-2025-15551 | The response coming from TP-Link Archer MR200 v5.2, C20 v6, TL-WR850N v3, and TL-WR845N v4 for any … | 2026-02-05T18:16:09.593 | 2026-02-12T16:24:44.087 |
| fkie_cve-2026-2073 | A vulnerability was determined in itsourcecode School Management System 1.0. This affects an unknow… | 2026-02-07T04:15:54.083 | 2026-02-12T16:24:08.137 |
| fkie_cve-2026-2083 | A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an un… | 2026-02-07T11:16:06.750 | 2026-02-12T16:22:26.053 |
| fkie_cve-2026-2085 | A security vulnerability has been detected in D-Link DWR-M921 1.1.50. Affected is the function sub_… | 2026-02-07T12:15:56.723 | 2026-02-12T16:21:57.950 |
| fkie_cve-2026-2214 | A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the… | 2026-02-09T05:16:24.903 | 2026-02-12T16:21:38.093 |
| fkie_cve-2026-2059 | A vulnerability has been found in SourceCodester Medical Center Portal Management System 1.0. Affec… | 2026-02-06T17:16:28.060 | 2026-02-12T16:20:50.760 |
| fkie_cve-2021-47912 | PHP Melody version 3.0 contains multiple non-persistent cross-site scripting vulnerabilities in cat… | 2026-02-01T13:15:55.243 | 2026-02-12T16:20:23.373 |
| fkie_cve-2026-2250 | The /dbviewer/ web endpoint in METIS WIC devices is exposed without authentication. A remote attack… | 2026-02-11T15:16:17.760 | 2026-02-12T16:16:18.783 |
| fkie_cve-2026-2249 | METIS DFS devices (versions <= oscore 2.1.234-r18) expose a web-based shell at the /console endpoin… | 2026-02-11T15:16:17.600 | 2026-02-12T16:16:18.680 |
| fkie_cve-2026-2248 | METIS WIC devices (versions <= oscore 2.1.234-r18) expose a web-based shell at the /console endpoin… | 2026-02-11T15:16:17.433 | 2026-02-12T16:16:18.570 |
| fkie_cve-2026-26029 | sf-mcp-server is an implementation of Salesforce MCP server for Claude for Desktop. A command injec… | 2026-02-11T22:15:52.373 | 2026-02-12T16:16:16.927 |
| fkie_cve-2025-69872 | DiskCache (python-diskcache) through 5.6.3 uses Python pickle for serialization by default. An atta… | 2026-02-11T19:15:50.360 | 2026-02-12T16:16:05.423 |
| fkie_cve-2025-69871 | A race condition vulnerability exists in MedusaJS Medusa v2.12.2 and earlier in the registerUsage()… | 2026-02-11T19:15:50.230 | 2026-02-12T16:16:05.280 |
| fkie_cve-2025-67135 | Weak Security in the PF-50 1.2 keyfob of PGST PG107 Alarm System 1.25.05.hf allows attackers to com… | 2026-02-11T23:16:03.353 | 2026-02-12T16:16:04.620 |
| fkie_cve-2025-15575 | The firmware update functionality does not verify the authenticity of the supplied firmware update … | 2026-02-12T11:15:49.233 | 2026-02-12T16:16:03.120 |
| fkie_cve-2025-15574 | When connecting to the Solax Cloud MQTT server the username is the "registration number", which is … | 2026-02-12T11:15:49.117 | 2026-02-12T16:16:02.980 |
| fkie_cve-2026-24136 | Saleor is an e-commerce platform. Versions 3.2.0 through 3.20.109, 3.21.0-a.0 through 3.21.44 and 3… | 2026-01-24T00:15:49.167 | 2026-02-12T16:15:00.550 |
| fkie_cve-2023-53557 | In the Linux kernel, the following vulnerability has been resolved: fprobe: Release rethook after … | 2025-10-04T16:15:51.050 | 2026-02-12T16:13:33.063 |
| fkie_cve-2026-22582 | Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in… | 2026-01-24T01:15:49.920 | 2026-02-12T16:13:12.287 |
| fkie_cve-2026-22583 | Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in… | 2026-01-24T01:15:50.060 | 2026-02-12T16:12:21.877 |
| fkie_cve-2026-22585 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Salesforce Marketing Cloud Engage… | 2026-01-24T01:15:50.167 | 2026-02-12T16:08:29.020 |
| fkie_cve-2026-22586 | Hard-coded Cryptographic Key vulnerability in Salesforce Marketing Cloud Engagement (CloudPages, Fo… | 2026-01-24T01:15:50.283 | 2026-02-12T16:07:53.063 |
| fkie_cve-2023-53558 | In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Avoid pr_info() wit… | 2025-10-04T16:15:51.163 | 2026-02-12T16:06:35.690 |
| fkie_cve-2025-62676 | An Improper Link Resolution Before File Access ('Link Following') vulnerability [CWE-59] vulnerabil… | 2026-02-10T16:16:09.260 | 2026-02-12T16:06:17.343 |
| fkie_cve-2026-24399 | ChatterMate is a no-code AI chatbot agent framework. In versions 1.0.8 and below, the chatbot accep… | 2026-01-24T01:15:50.393 | 2026-02-12T16:05:57.580 |
| fkie_cve-2023-53559 | In the Linux kernel, the following vulnerability has been resolved: ip_vti: fix potential slab-use… | 2025-10-04T16:15:51.280 | 2026-02-12T16:05:48.100 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-6cqf-cfhv-659g |
8.8 (3.1)
7.2 (4.0)
|
File Browser is Vulnerable to Insecure Direct Object Reference (IDOR) in Share Deletion Function | 2025-11-13T22:34:51Z | 2026-02-03T17:23:10Z |
| ghsa-hr89-w7p6-pjmq |
8.8 (3.1)
|
express-cart allows any user to create an admin user | 2022-05-13T01:49:36Z | 2026-02-03T17:00:36Z |
| ghsa-6294-6rgp-fr7r |
5.3 (3.1)
|
jose2go vulnerable to denial of service via large p2c value | 2024-02-29T03:33:14Z | 2026-02-03T16:43:30Z |
| ghsa-vrhw-v2hw-jffx |
5.0 (3.1)
|
SignalK Server has Path Traversal leading to information disclosure | 2026-02-02T22:26:31Z | 2026-02-03T16:13:32Z |
| ghsa-9p4w-fq8m-2hp7 |
10.0 (3.1)
|
SandboxJS Vulnerable to Prototype Pollution -> Sandbox Escape -> RCE | 2026-02-02T20:17:39Z | 2026-02-03T16:13:28Z |
| ghsa-wf93-3ghh-h389 |
8.1 (3.1)
|
OpenList has Insecure TLS Default Configuration | 2026-02-02T20:12:52Z | 2026-02-03T16:13:24Z |
| ghsa-qmj2-8r24-xxcq |
8.8 (3.1)
|
OpenList vulnerable to Path Traversal in file copy and remove handlers | 2026-02-02T20:01:30Z | 2026-02-03T16:13:21Z |
| ghsa-mc68-q9jw-2h3v |
8.8 (3.1)
|
OpenClaw/Clawdbot Docker Execution has Authenticated Command Injection via PATH Environment Variable | 2026-02-02T23:39:47Z | 2026-02-03T16:13:06Z |
| ghsa-pqxr-3g65-p328 |
8.1 (3.1)
|
jsPDF has PDF Injection in AcroFormChoiceField that allows Arbitrary JavaScript Execution | 2026-02-02T18:29:49Z | 2026-02-03T16:13:01Z |
| ghsa-95fx-jjr5-f39c |
8.7 (4.0)
|
jsPDF Vulnerable to Denial of Service (DoS) via Unvalidated BMP Dimensions in BMPDecoder | 2026-02-02T18:29:13Z | 2026-02-03T16:12:57Z |
| ghsa-vm32-vv63-w422 |
6.9 (4.0)
|
jsPDF Vulnerable to Stored XMP Metadata Injection (Spoofing & Integrity Violation) | 2026-02-02T18:28:29Z | 2026-02-03T16:12:30Z |
| ghsa-cjw8-79x6-5cj4 |
6.3 (4.0)
|
jsPDF has Shared State Race Condition in addJS Plugin | 2026-02-02T18:20:02Z | 2026-02-03T16:12:26Z |
| ghsa-4v7v-7v7r-3r5h |
8.0 (3.1)
|
FacturaScripts has Stored Cross-Site Scripting (XSS) in "Observations" field via History View | 2026-02-02T18:17:33Z | 2026-02-03T16:12:21Z |
| ghsa-p8gp-2w28-mhwg |
9.9 (3.1)
|
Signal K set-system-time plugin vulnerable to RCE - Command Injection | 2026-02-02T18:10:32Z | 2026-02-03T16:12:17Z |
| ghsa-4r2x-xpjr-7cvv |
9.8 (3.1)
|
vLLM has RCE In Video Processing | 2026-02-02T17:43:45Z | 2026-02-03T16:12:12Z |
| ghsa-g6w2-q45f-xrp4 |
5.4 (3.1)
|
FacturaScripts is Vulnerable to Reflected XSS | 2026-02-02T18:00:43Z | 2026-02-03T16:09:58Z |
| ghsa-6whj-7qmg-86qj |
5.4 (3.1)
|
Khoj has an IDOR in Notion OAuth Flow that Enables Index Poisoning | 2026-02-02T17:31:33Z | 2026-02-03T16:09:54Z |
| ghsa-cwq7-3452-g85m |
5.4 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Blair Williams ThirstyAffiliates thirstyaffiliat… | 2026-02-03T15:30:27Z | 2026-02-03T15:30:27Z |
| ghsa-6h7p-3qqr-2xv3 |
4.3 (3.1)
|
Missing Authorization vulnerability in WP connect WP Sync for Notion wp-sync-for-notion allows Expl… | 2026-02-03T15:30:27Z | 2026-02-03T15:30:27Z |
| ghsa-6f9v-56p4-5qf4 |
4.3 (3.1)
|
Missing Authorization vulnerability in Nelio Software Nelio Popups nelio-popups allows Exploiting I… | 2026-02-03T15:30:27Z | 2026-02-03T15:30:27Z |
| ghsa-467f-hq3q-7jjq |
8.5 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2026-02-03T15:30:27Z | 2026-02-03T15:30:27Z |
| ghsa-jgf7-8v7j-fwwh |
7.5 (4.0)
|
Rapid7 Nexpose versions 6.4.50 and later are vulnerable to an insufficient entropy issue in the Cre… | 2026-02-03T15:30:24Z | 2026-02-03T15:30:24Z |
| ghsa-9546-pmqp-82m5 |
5.9 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-02-03T15:30:24Z | 2026-02-03T15:30:24Z |
| ghsa-pfmr-vhqj-m4f4 |
7.8 (3.1)
8.5 (4.0)
|
Disk Savvy Enterprise 12.3.18 contains an unquoted service path vulnerability in its service config… | 2026-02-03T15:30:23Z | 2026-02-03T15:30:23Z |
| ghsa-m47x-vjhq-72f3 |
9.8 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2026-02-03T15:30:23Z | 2026-02-03T15:30:23Z |
| ghsa-j79x-hc4h-rfv9 |
7.8 (3.1)
8.5 (4.0)
|
Sync Breeze Enterprise 12.4.18 contains an unquoted service path vulnerability that allows local at… | 2026-02-03T15:30:23Z | 2026-02-03T15:30:23Z |
| ghsa-7g96-p22m-8mmj |
7.8 (3.1)
8.5 (4.0)
|
Adaware Web Companion 4.9.2159 contains an unquoted service path vulnerability in the WCAssistantSe… | 2026-02-03T15:30:23Z | 2026-02-03T15:30:23Z |
| ghsa-72fx-qjwh-hwgw |
7.8 (3.1)
8.5 (4.0)
|
Disk Sorter Enterprise 12.4.16 contains an unquoted service path vulnerability that allows local at… | 2026-02-03T15:30:23Z | 2026-02-03T15:30:23Z |
| ghsa-69rq-p84j-w9cp |
8.6 (3.1)
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T15:30:23Z | 2026-02-03T15:30:23Z |
| ghsa-5ch6-f4pq-q5vf |
7.8 (3.1)
8.5 (4.0)
|
AnyDesk 5.4.0 contains an unquoted service path vulnerability in its Windows service configuration … | 2026-02-03T15:30:23Z | 2026-02-03T15:30:23Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-2798 | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cro… | 2024-04-03T05:02:25.993672Z |
| gsd-2024-2835 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:25.992562Z |
| gsd-2024-2947 | A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web… | 2024-04-03T05:02:25.991501Z |
| gsd-2024-2800 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:25.986746Z |
| gsd-2024-2880 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:25.980102Z |
| gsd-2024-2952 | BerriAI/litellm is vulnerable to Server-Side Template Injection (SSTI) via the `/completi… | 2024-04-03T05:02:25.975891Z |
| gsd-2024-2857 | The Simple Buttons Creator WordPress plugin through 1.04 does not have any authorisation … | 2024-04-03T05:02:25.975384Z |
| gsd-2024-2786 | The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Sc… | 2024-04-03T05:02:25.970067Z |
| gsd-2024-2792 | The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scri… | 2024-04-03T05:02:25.968795Z |
| gsd-2024-2833 | The Jobs for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripti… | 2024-04-03T05:02:25.968578Z |
| gsd-2024-2823 | A vulnerability has been found in DedeCMS 5.7 and classified as problematic. This vulnera… | 2024-04-03T05:02:25.966382Z |
| gsd-2024-2873 | A vulnerability was found in wolfSSH's server-side state machine before versions 1.4.17. … | 2024-04-03T05:02:25.963337Z |
| gsd-2024-2879 | The LayerSlider plugin for WordPress is vulnerable to SQL Injection via the ls_get_popup_… | 2024-04-03T05:02:25.962513Z |
| gsd-2024-2975 | A race condition was identified through which privilege escalation was possible in certai… | 2024-04-03T05:02:25.954984Z |
| gsd-2024-2888 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-03T05:02:25.950749Z |
| gsd-2024-2889 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-03T05:02:25.950034Z |
| gsd-2024-2890 | Unrestricted Upload of File with Dangerous Type vulnerability in Tumult Inc. Tumult Hype … | 2024-04-03T05:02:25.948045Z |
| gsd-2024-2976 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:25.945083Z |
| gsd-2024-2985 | A vulnerability was found in Tenda FH1202 1.2.0.14(408). It has been declared as critical… | 2024-04-03T05:02:25.941472Z |
| gsd-2024-2771 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:25.936461Z |
| gsd-2024-2864 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-03T05:02:25.935315Z |
| gsd-2024-2874 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:25.930791Z |
| gsd-2024-2854 | A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected… | 2024-04-03T05:02:25.929908Z |
| gsd-2024-2765 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:25.929338Z |
| gsd-2024-2809 | A vulnerability, which was classified as critical, was found in Tenda AC15 15.03.05.18/15… | 2024-04-03T05:02:25.927790Z |
| gsd-2024-2940 | A vulnerability classified as problematic was found in Campcodes Online Examination Syste… | 2024-04-03T05:02:25.926757Z |
| gsd-2024-2759 | Improper access control vulnerability in Apaczka plugin for PrestaShop allows information… | 2024-04-03T05:02:25.925736Z |
| gsd-2024-2790 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:25.920789Z |
| gsd-2024-2986 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:25.919959Z |
| gsd-2024-2871 | The Media Library Assistant plugin for WordPress is vulnerable to SQL Injection via the p… | 2024-04-03T05:02:25.919635Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-190651 | Malicious code in @alaan/s2s-auth (npm) | 2025-11-24T12:41:57Z | 2025-11-25T00:36:47Z |
| mal-2025-190648 | Malicious code in @zapier/zapier-sdk (npm) | 2025-11-24T11:25:50Z | 2025-11-25T00:36:47Z |
| mal-2025-190647 | Malicious code in @postman/tunnel-agent (npm) | 2025-11-24T11:38:32Z | 2025-11-25T00:36:47Z |
| mal-2025-190646 | Malicious code in @postman/csv-parse (npm) | 2025-11-24T11:58:14Z | 2025-11-25T00:36:47Z |
| mal-2025-190645 | Malicious code in @posthog/core (npm) | 2025-11-24T11:29:46Z | 2025-11-25T00:36:47Z |
| mal-2025-190644 | Malicious code in @posthog/ai (npm) | 2025-11-24T11:49:28Z | 2025-11-25T00:36:47Z |
| mal-2025-190643 | Malicious code in @asyncapi/specs (npm) | 2025-11-24T11:33:26Z | 2025-11-25T00:36:47Z |
| mal-2025-190642 | Malicious code in @asyncapi/react-component (npm) | 2025-11-24T11:46:58Z | 2025-11-25T00:36:47Z |
| mal-2025-190641 | Malicious code in @asyncapi/protobuf-schema-parser (npm) | 2025-11-24T11:45:53Z | 2025-11-25T00:36:47Z |
| mal-2025-190640 | Malicious code in @asyncapi/parser (npm) | 2025-11-24T11:40:47Z | 2025-11-25T00:36:47Z |
| mal-2025-190639 | Malicious code in @asyncapi/openapi-schema-parser (npm) | 2025-11-24T11:43:02Z | 2025-11-25T00:36:47Z |
| mal-2025-190638 | Malicious code in @asyncapi/modelina (npm) | 2025-11-24T11:51:43Z | 2025-11-25T00:36:47Z |
| mal-2025-190637 | Malicious code in @asyncapi/generator-react-sdk (npm) | 2025-11-24T11:52:54Z | 2025-11-25T00:36:47Z |
| mal-2025-190636 | Malicious code in @asyncapi/generator (npm) | 2025-11-24T11:48:04Z | 2025-11-25T00:36:47Z |
| mal-2025-190635 | Malicious code in @asyncapi/avro-schema-parser (npm) | 2025-11-24T11:44:09Z | 2025-11-25T00:36:47Z |
| mal-2025-190623 | Malicious code in cbre-flow-common (npm) | 2025-11-24T03:18:56Z | 2025-11-24T16:41:26Z |
| mal-2025-190916 | Malicious code in @tezign/html-webpack-plugin (npm) | 2025-11-24T16:19:35Z | 2025-11-24T16:19:35Z |
| mal-2025-190914 | Malicious code in @sauravthakur/corplib (npm) | 2025-11-24T16:19:35Z | 2025-11-24T16:19:35Z |
| mal-2025-190865 | Malicious code in @darwinex/react-custom-scrollbars (npm) | 2025-11-24T16:19:35Z | 2025-11-24T16:19:35Z |
| mal-2025-190610 | Malicious code in wishlist_dropdown (npm) | 2025-11-22T10:00:55Z | 2025-11-24T16:09:33Z |
| mal-2025-190566 | Malicious code in workingstealer (npm) | 2025-11-18T05:22:44Z | 2025-11-24T16:09:33Z |
| mal-2025-190633 | Malicious code in token-verify-passport (npm) | 2025-11-24T04:51:33Z | 2025-11-24T16:09:32Z |
| mal-2025-190632 | Malicious code in tailwind-pulse (npm) | 2025-11-24T05:12:48Z | 2025-11-24T16:09:32Z |
| mal-2025-190631 | Malicious code in tailwind-inquirer (npm) | 2025-11-24T05:13:38Z | 2025-11-24T16:09:32Z |
| mal-2025-190626 | Malicious code in vue3-transpiler (npm) | 2025-11-24T04:00:47Z | 2025-11-24T16:09:32Z |
| mal-2025-190616 | Malicious code in uber-ui (npm) | 2025-11-22T12:46:03Z | 2025-11-24T16:09:32Z |
| mal-2025-190615 | Malicious code in snapchat-ui (npm) | 2025-11-22T12:47:01Z | 2025-11-24T16:09:32Z |
| mal-2025-190575 | Malicious code in werufgugweuiguiwergqui (npm) | 2025-11-19T01:44:38Z | 2025-11-24T16:09:32Z |
| mal-2025-190565 | Malicious code in tailwindcss-setfavicon (npm) | 2025-11-18T05:25:18Z | 2025-11-24T16:09:32Z |
| mal-2025-190564 | Malicious code in tailwindcss-breezium (npm) | 2025-11-18T05:29:49Z | 2025-11-24T16:09:32Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-3216 | Oracle Virtualization: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-11-10T23:00:00.000+00:00 |
| wid-sec-w-2024-3051 | Mattermost: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-09-29T22:00:00.000+00:00 | 2024-11-10T23:00:00.000+00:00 |
| wid-sec-w-2024-1982 | QEMU: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2020-02-06T23:00:00.000+00:00 | 2024-11-10T23:00:00.000+00:00 |
| wid-sec-w-2024-1981 | QEMU: Schwachstelle ermöglicht Denial of Service | 2020-03-04T23:00:00.000+00:00 | 2024-11-10T23:00:00.000+00:00 |
| wid-sec-w-2024-1975 | QEMU: Mehrere Schwachstellen | 2020-06-03T22:00:00.000+00:00 | 2024-11-10T23:00:00.000+00:00 |
| wid-sec-w-2024-1851 | QEMU: Schwachstelle ermöglicht Codeausführung und DoS | 2024-08-13T22:00:00.000+00:00 | 2024-11-10T23:00:00.000+00:00 |
| wid-sec-w-2024-3375 | IBM DataPower Gateway: Schwachstelle ermöglicht Denial of Service | 2024-11-07T23:00:00.000+00:00 | 2024-11-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3374 | Microsoft GitHub Enterprise: Schwachstelle ermöglicht Privilegieneskalation | 2024-11-07T23:00:00.000+00:00 | 2024-11-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3372 | Epson Printer: Schwachstelle ermöglicht Übernahme der Kontrolle | 2024-11-07T23:00:00.000+00:00 | 2024-11-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3371 | PaloAlto Networks Expedition: Schwachstelle ermöglicht Erlangen von Administratorrechten | 2024-11-07T23:00:00.000+00:00 | 2024-11-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3370 | Red Hat OpenShift: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-11-07T23:00:00.000+00:00 | 2024-11-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3369 | IBM AIX und VIOS: Schwachstelle ermöglicht Codeausführung und DoS | 2024-11-07T23:00:00.000+00:00 | 2024-11-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3335 | Microsoft NuGet: Schwachstelle ermöglicht Manipulation von Dateien | 2024-11-04T23:00:00.000+00:00 | 2024-11-07T23:00:00.000+00:00 |
| wid-sec-w-2024-0769 | IBM Rational Build Forge: Mehrere Schwachstellen | 2024-04-02T22:00:00.000+00:00 | 2024-11-07T23:00:00.000+00:00 |
| wid-sec-w-2023-2000 | Intel Ethernet Controller: Mehrere Schwachstellen | 2023-08-08T22:00:00.000+00:00 | 2024-11-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3366 | Drupal: Mehrere Schwachstellen | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3364 | NGINX OpenID Connect: Schwachstelle ermöglicht Erlangen von Benutzerrechten | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3363 | HCL BigFix Compliance: Mehrere Schwachstellen | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3362 | Veeam Backup Enterprise Manager: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3361 | Pixel Patchday November 2024: Mehrere Schwachstellen | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3360 | Cisco IP Phone: Mehrere Schwachstellen | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3359 | Progress Software WS_FTP: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3357 | RabbitMQ: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3356 | Cisco Unified Communications Manager IM & Presence Service und Unified Communications Manager (CUCM): Mehrere Schwachstellen | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3355 | Cisco Identity Services Engine (ISE): Mehrere Schwachstellen | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3354 | Cisco Nexus Dashboard: Schwachstelle ermöglicht Codeausführung | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3353 | Cisco Nexus 3500-F: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3352 | Cisco Catalyst Access Points: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3351 | Cisco Unified Contact Center Enterprise: Schwachstelle ermöglicht Cross-Site Scripting | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3350 | Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure: Schwachstelle ermöglicht Cross-Site Scripting | 2024-11-06T23:00:00.000+00:00 | 2024-11-06T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2012:0725 | Red Hat Security Advisory: JBoss Operations Network 3.1.0 update | 2012-06-12T23:19:00+00:00 | 2026-01-28T22:34:35+00:00 |
| rhsa-2012:0682 | Red Hat Security Advisory: tomcat6 security and bug fix update | 2012-05-21T16:42:00+00:00 | 2026-01-28T22:34:34+00:00 |
| rhsa-2012:0681 | Red Hat Security Advisory: tomcat6 security and bug fix update | 2012-05-21T16:32:00+00:00 | 2026-01-28T22:34:34+00:00 |
| rhsa-2012:0680 | Red Hat Security Advisory: tomcat5 security and bug fix update | 2012-05-21T16:28:00+00:00 | 2026-01-28T22:34:33+00:00 |
| rhsa-2012:0679 | Red Hat Security Advisory: tomcat5 security and bug fix update | 2012-05-21T16:19:00+00:00 | 2026-01-28T22:34:33+00:00 |
| rhsa-2012:0570 | Red Hat Security Advisory: php security update | 2012-05-11T17:34:00+00:00 | 2026-01-28T22:34:33+00:00 |
| rhsa-2012:0569 | Red Hat Security Advisory: php53 security update | 2012-05-10T15:17:00+00:00 | 2026-01-28T22:34:32+00:00 |
| rhsa-2012:0568 | Red Hat Security Advisory: php security update | 2012-05-10T15:29:00+00:00 | 2026-01-28T22:34:32+00:00 |
| rhsa-2012:0547 | Red Hat Security Advisory: php53 security update | 2012-05-07T18:23:00+00:00 | 2026-01-28T22:34:31+00:00 |
| rhsa-2012:0546 | Red Hat Security Advisory: php security update | 2012-05-07T18:28:00+00:00 | 2026-01-28T22:34:31+00:00 |
| rhsa-2012:0543 | Red Hat Security Advisory: httpd security and bug fix update | 2012-05-07T18:16:00+00:00 | 2026-01-28T22:34:30+00:00 |
| rhsa-2012:0542 | Red Hat Security Advisory: httpd security and bug fix update | 2012-05-07T18:13:00+00:00 | 2026-01-28T22:34:30+00:00 |
| rhsa-2012:0522 | Red Hat Security Advisory: openssl security update | 2012-04-25T12:39:00+00:00 | 2026-01-28T22:34:30+00:00 |
| rhsa-2012:0518 | Red Hat Security Advisory: openssl security update | 2012-04-24T19:53:00+00:00 | 2026-01-28T22:34:30+00:00 |
| rhsa-2012:0475 | Red Hat Security Advisory: tomcat6 security update | 2012-04-11T17:12:00+00:00 | 2026-01-28T22:34:29+00:00 |
| rhsa-2012:0474 | Red Hat Security Advisory: tomcat5 security update | 2012-04-11T17:12:00+00:00 | 2026-01-28T22:34:29+00:00 |
| rhsa-2012:0451 | Red Hat Security Advisory: rpm security update | 2012-04-03T16:39:00+00:00 | 2026-01-28T22:34:28+00:00 |
| rhsa-2012:0436 | Red Hat Security Advisory: Red Hat Network Satellite spacewalk-backend security update | 2012-03-29T18:31:00+00:00 | 2026-01-28T22:34:28+00:00 |
| rhsa-2012:0406 | Red Hat Security Advisory: JBoss Operations Network 3.0.1 update | 2012-03-20T17:03:00+00:00 | 2026-01-28T22:34:28+00:00 |
| rhsa-2012:0345 | Red Hat Security Advisory: jbossweb security and bug fix update | 2012-03-01T06:45:00+00:00 | 2026-01-28T22:34:28+00:00 |
| rhsa-2012:0109 | Red Hat Security Advisory: rhev-hypervisor6 security and bug fix update | 2012-02-15T16:01:00+00:00 | 2026-01-28T22:34:28+00:00 |
| rhsa-2012:0325 | Red Hat Security Advisory: jbossweb security update | 2012-02-22T05:02:00+00:00 | 2026-01-28T22:34:27+00:00 |
| rhsa-2012:0323 | Red Hat Security Advisory: httpd security update | 2012-02-21T21:49:00+00:00 | 2026-01-28T22:34:26+00:00 |
| rhsa-2012:0128 | Red Hat Security Advisory: httpd security update | 2012-02-13T20:28:00+00:00 | 2026-01-28T22:34:26+00:00 |
| rhsa-2012:0086 | Red Hat Security Advisory: openssl security update | 2012-02-01T18:51:00+00:00 | 2026-01-28T22:34:26+00:00 |
| rhsa-2012:0091 | Red Hat Security Advisory: JBoss Enterprise Portal Platform 4.3 CP07 update | 2012-02-02T22:17:00+00:00 | 2026-01-28T22:34:25+00:00 |
| rhsa-2012:0059 | Red Hat Security Advisory: openssl security update | 2012-01-24T21:00:00+00:00 | 2026-01-28T22:34:25+00:00 |
| rhsa-2012:0089 | Red Hat Security Advisory: JBoss Operations Network 2.4.2 update | 2012-02-01T21:57:00+00:00 | 2026-01-28T22:34:24+00:00 |
| rhsa-2012:0078 | Red Hat Security Advisory: JBoss Communications Platform 5.1.3 update | 2012-01-31T22:57:00+00:00 | 2026-01-28T22:34:24+00:00 |
| rhsa-2012:0077 | Red Hat Security Advisory: jbossweb security update | 2012-01-31T22:57:00+00:00 | 2026-01-28T22:34:24+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2017-6837 | WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:59.000Z |
| msrc_cve-2017-6836 | Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:59.000Z |
| msrc_cve-2017-6835 | Vulnerability in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:58.000Z |
| msrc_cve-2017-6834 | Heap-based buffer overflow in the ulaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:58.000Z |
| msrc_cve-2017-6833 | Vulnerability in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:58.000Z |
| msrc_cve-2017-6832 | Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:58.000Z |
| msrc_cve-2017-6831 | Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 and 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:57.000Z |
| msrc_cve-2017-6830 | Heap-based buffer overflow in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:57.000Z |
| msrc_cve-2017-6829 | The decodeSample function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:57.000Z |
| msrc_cve-2017-6828 | Heap-based buffer overflow in audiofile allows remote attackers to have unspecified impact | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:57.000Z |
| msrc_cve-2017-6827 | Heap-based buffer overflow in audiofile allows remote attackers to have unspecified impact via a crafted audio file | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:56.000Z |
| msrc_cve-2017-5836 | The plist_free_data function libplist allows attackers to cause a denial of service | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:56.000Z |
| msrc_cve-2017-5835 | libplist allows attackers to cause a denial of service (large memory allocation and crash) via vectors involving an offset size of zero. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:56.000Z |
| msrc_cve-2017-5834 | The parse_dict_node function in bplist.c in libplist allows attackers to cause a denial of service | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:56.000Z |
| msrc_cve-2017-18640 | The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564. | 2019-12-02T00:00:00.000Z | 2025-10-01T23:10:55.000Z |
| msrc_cve-2017-16754 | Bolt before 3.3.6 does not properly restrict access to _profiler routes | 2017-11-02T00:00:00.000Z | 2025-10-01T23:10:55.000Z |
| msrc_cve-2017-14176 | Bazaar through 2.7.0, when Subprocess SSH is used, allows remote attackers to execute arbitrary commands | 2017-11-02T00:00:00.000Z | 2025-10-01T23:10:55.000Z |
| msrc_cve-2017-12613 | When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 and prior, out of bounds memory may be accessed in converting this value to an apr_time_exp_t value, potentially revealing the contents of a different static heap value or resulting in program termination, and may represent an information disclosure or denial of service vulnerability to applications which call these APR functions with unvalidated external input. | 2017-10-02T00:00:00.000Z | 2025-10-01T23:10:55.000Z |
| msrc_cve-2017-11548 | The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service | 2017-07-02T00:00:00.000Z | 2025-10-01T23:10:54.000Z |
| msrc_cve-2016-4912 | The _xrealloc function in xlsp_xmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a denial of service | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:54.000Z |
| msrc_cve-2016-2568 | pkexec, when used with --user nonpriv, allows local users to escape to the parent session | 2017-02-02T00:00:00.000Z | 2025-10-01T23:10:54.000Z |
| msrc_cve-2016-1000104 | A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07. | 2019-12-02T00:00:00.000Z | 2025-10-01T23:10:54.000Z |
| msrc_cve-2015-7309 | The theme editor in Bolt allows remote authenticated users to execute arbitrary code by renaming a crafted file | 2015-09-02T00:00:00.000Z | 2025-10-01T23:10:53.000Z |
| msrc_cve-2015-2704 | realmd allows remote attackers to inject arbitrary configurations in to sssd.conf and smb.conf | 2015-05-02T00:00:00.000Z | 2025-10-01T23:10:53.000Z |
| msrc_cve-2013-7381 | libnotify before 1.0.4 for Node.js allows remote attackers to execute arbitrary commands via unspecified characters in a call to libnotify.notify. | 2020-02-02T00:00:00.000Z | 2025-10-01T23:10:53.000Z |
| msrc_cve-2012-3381 | sfcb in sblim-sfcb places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory. | 2012-08-02T00:00:00.000Z | 2025-10-01T23:10:53.000Z |
| msrc_cve-2012-2653 | arpwatch 2.1a15, as used by Red Hat, Debian, Fedora, and possibly others, does not properly drop supplementary groups, which might allow attackers to gain root privileges by leveraging other vulnerabilities in the daemon. | 2012-07-02T00:00:00.000Z | 2025-10-01T23:10:52.000Z |
| msrc_cve-2011-5244 | Multiple off-by-one errors in the (1) token and (2) linetoken functions in backend/dvi/mdvi-lib/afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a DVI file containing a crafted Adobe Font Metrics (AFM) file, different vulnerabilities than CVE-2010-2642 and CVE-2011-0433. | 2012-11-02T00:00:00.000Z | 2025-10-01T23:10:52.000Z |
| msrc_cve-2011-4966 | modules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password. | 2013-03-02T00:00:00.000Z | 2025-10-01T23:10:52.000Z |
| msrc_cve-2011-1429 | Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766. | 2011-03-02T00:00:00.000Z | 2025-10-01T23:10:51.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202501-2580 | SunGrow WiNet-SV200.001.00.P027 and earlier versions contains hardcoded MQTT credentials … | 2025-06-01T19:34:19.165000Z |
| var-202501-2797 | In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when decrypting MQTT messages, t… | 2025-06-01T19:34:19.137000Z |
| var-202505-1517 | TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerab… | 2025-06-01T19:34:18.482000Z |
| var-201907-0234 | A vulnerability in the Session Initiation Protocol (SIP) protocol implementation of Cisco… | 2025-05-31T23:03:19.621000Z |
| var-202009-0362 | A vulnerability in the Administration Web Interface of Cisco Unified Contact Center Expre… | 2025-05-31T22:58:50.499000Z |
| var-202501-1991 | SunGrow WiNet-SV200.001.00.P027 and earlier versions contains a hardcoded password that c… | 2025-05-31T22:44:02.329000Z |
| var-202501-4123 | In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when copying the timestamp read … | 2025-05-31T22:44:02.281000Z |
| var-202205-1307 | A memory corruption issue was addressed with improved state management. This issue is fix… | 2025-05-31T22:27:23.786000Z |
| var-202205-1592 | A logic issue was addressed with improved state management. This issue is fixed in iTunes… | 2025-05-31T22:14:24.856000Z |
| var-202205-1357 | A memory corruption issue was addressed with improved state management. This issue is fix… | 2025-05-31T21:59:38.739000Z |
| var-202205-1353 | The issue was addressed with additional permissions checks. This issue is fixed in macOS … | 2025-05-31T21:53:26.773000Z |
| var-202205-1591 | A logic issue was addressed with improved state management. This issue is fixed in iTunes… | 2025-05-31T21:48:00.863000Z |
| var-202205-1360 | This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.4… | 2025-05-31T21:39:35.398000Z |
| var-202205-1320 | An out-of-bounds access issue was addressed with improved bounds checking. This issue is … | 2025-05-31T21:28:04.835000Z |
| var-202207-1449 | The issue was addressed with improved memory handling. This issue is fixed in macOS Monte… | 2025-05-31T21:20:41.743000Z |
| var-202205-1330 | A memory corruption issue was addressed with improved state management. This issue is fix… | 2025-05-31T21:08:12.945000Z |
| var-202205-1288 | An integer overflow was addressed with improved input validation. This issue is fixed in … | 2025-05-31T20:42:39.799000Z |
| var-202205-1295 | A memory corruption issue was addressed with improved validation. This issue is fixed in … | 2025-05-31T20:40:05.793000Z |
| var-202205-1290 | A certificate parsing issue was addressed with improved checks. This issue is fixed in tv… | 2025-05-31T20:34:59.334000Z |
| var-202207-1498 | Multiple out-of-bounds write issues were addressed with improved bounds checking. This is… | 2025-05-31T20:34:58.982000Z |
| var-202205-1321 | A race condition was addressed with improved state handling. This issue is fixed in watch… | 2025-05-31T20:32:11.488000Z |
| var-202205-1309 | A memory corruption issue was addressed with improved input validation. This issue is fix… | 2025-05-31T20:29:07.512000Z |
| var-202205-1286 | An out-of-bounds read issue was addressed with improved input validation. This issue is f… | 2025-05-31T19:54:48.946000Z |
| var-202205-1334 | A memory corruption issue was addressed with improved memory handling. This issue is fixe… | 2025-05-31T19:34:43.236000Z |
| var-202406-0094 | NETGEAR RAX30 fing_dil Stack-based Buffer Overflow Remote Code Execution Vulnerability. T… | 2025-05-30T23:30:44.668000Z |
| var-202505-1111 | TOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerab… | 2025-05-30T23:30:39.263000Z |
| var-202505-1805 | A vulnerability was found in D-Link DAP-2695 120b36r137_ALL_en_20210528. It has been decl… | 2025-05-30T23:29:48.219000Z |
| var-202502-3527 | Buffer Overflow vulnerability in Vigor2620/LTE200 3.9.8.9 and earlier and Vigor2860/2925 … | 2025-05-30T23:29:21.699000Z |
| var-202505-0219 | NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection… | 2025-05-30T23:29:21.307000Z |
| var-202206-1903 | The administration interface of the Raytion Custom Security Manager (Raytion CSM) in Vers… | 2025-05-30T23:27:05.589000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2024:1777-1 | Security update for postgresql15 | 2024-05-24T15:39:59Z | 2024-05-24T15:39:59Z |
| suse-su-2024:1775-1 | Security update for libfastjson | 2024-05-24T13:21:13Z | 2024-05-24T13:21:13Z |
| suse-su-2024:1774-1 | Security update for python3 | 2024-05-24T13:20:36Z | 2024-05-24T13:20:36Z |
| suse-su-2024:1773-1 | Security update for opensc | 2024-05-24T10:08:24Z | 2024-05-24T10:08:24Z |
| suse-su-2024:1771-1 | Security update for ucode-intel | 2024-05-23T19:06:42Z | 2024-05-23T19:06:42Z |
| suse-su-2024:1770-1 | Security update for MozillaFirefox | 2024-05-23T14:39:42Z | 2024-05-23T14:39:42Z |
| suse-su-2024:1768-1 | Security update for postgresql14 | 2024-05-23T11:46:06Z | 2024-05-23T11:46:06Z |
| suse-su-2024:1767-1 | Security update for python-sqlparse | 2024-05-23T09:09:46Z | 2024-05-23T09:09:46Z |
| suse-su-2024:1762-1 | Security update for perl | 2024-05-22T14:14:52Z | 2024-05-22T14:14:52Z |
| suse-su-2024:1762-2 | Security update for perl | 2024-05-22T14:14:49Z | 2024-05-22T14:14:49Z |
| suse-su-2024:1760-1 | Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP5) | 2024-05-22T13:33:39Z | 2024-05-22T13:33:39Z |
| suse-su-2024:1759-1 | Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP5) | 2024-05-22T13:04:08Z | 2024-05-22T13:04:08Z |
| suse-su-2024:1757-1 | Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP5) | 2024-05-22T12:33:37Z | 2024-05-22T12:33:37Z |
| suse-su-2024:1753-1 | Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP4) | 2024-05-22T11:33:40Z | 2024-05-22T11:33:40Z |
| suse-su-2024:1748-1 | Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP5) | 2024-05-22T11:04:37Z | 2024-05-22T11:04:37Z |
| suse-su-2024:1751-1 | Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP5) | 2024-05-22T11:04:31Z | 2024-05-22T11:04:31Z |
| suse-su-2024:1750-1 | Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP4) | 2024-05-22T11:04:22Z | 2024-05-22T11:04:22Z |
| suse-su-2024:1749-1 | Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP4) | 2024-05-22T11:04:14Z | 2024-05-22T11:04:14Z |
| suse-su-2024:1746-1 | Security update for the Linux Kernel (Live Patch 39 for SLE 15 SP3) | 2024-05-22T11:03:54Z | 2024-05-22T11:03:54Z |
| suse-su-2024:1742-1 | Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP2) | 2024-05-22T10:33:41Z | 2024-05-22T10:33:41Z |
| suse-su-2024:1740-1 | Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP4) | 2024-05-21T19:03:48Z | 2024-05-21T19:03:48Z |
| suse-su-2024:1739-1 | Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP4) | 2024-05-21T18:33:36Z | 2024-05-21T18:33:36Z |
| suse-su-2024:1738-1 | Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3) | 2024-05-21T18:03:56Z | 2024-05-21T18:03:56Z |
| suse-su-2024:1736-1 | Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP3) | 2024-05-21T18:03:47Z | 2024-05-21T18:03:47Z |
| suse-su-2024:1735-1 | Security update for the Linux Kernel (Live Patch 37 for SLE 15 SP2) | 2024-05-21T17:33:40Z | 2024-05-21T17:33:40Z |
| suse-su-2024:1732-1 | Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP5) | 2024-05-21T15:29:20Z | 2024-05-21T15:29:20Z |
| suse-su-2024:1731-1 | Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP5) | 2024-05-21T15:04:04Z | 2024-05-21T15:04:04Z |
| suse-su-2024:1730-1 | Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP2) | 2024-05-21T15:03:54Z | 2024-05-21T15:03:54Z |
| suse-su-2024:1729-1 | Security update for the Linux Kernel (Live Patch 38 for SLE 15 SP2) | 2024-05-21T15:03:46Z | 2024-05-21T15:03:46Z |
| suse-su-2024:1728-1 | Security update for glibc | 2024-05-21T14:34:54Z | 2024-05-21T14:34:54Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:11146-1 | pam_yubico-2.27-1.5 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11145-1 | pam_u2f-1.1.1-1.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11144-1 | pam_radius-2.0.0-1.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11143-1 | pam_p11-0.3.1-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11142-1 | libcryptmount-devel-2.18-1.7 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11141-1 | pam_kwallet-32bit-5.22.5-2.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11140-1 | pam-1.5.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11139-1 | pagure-5.13.2-2.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11138-1 | libpacemaker-devel-2.1.0+20210816.c6a4f6e6c-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11137-1 | p7zip-16.02-11.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11136-1 | libp11-kit0-0.23.22-2.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11135-1 | owntone-28.2-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11134-1 | ovmf-202105-3.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11133-1 | osc-0.174.0-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11132-1 | libopus-devel-1.3.1-3.8 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11131-1 | optipng-0.7.7-2.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11130-1 | libwsman-devel-2.7.0-2.10 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11129-1 | libopenvswitch-2_14-0-2.14.2-11.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11128-1 | openvpn-2.5.3-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11127-1 | libopenssl-1_1-devel-1.1.1l-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11126-1 | libopenssl-1_0_0-devel-1.0.2u-6.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11125-1 | libopenssl-devel-1.1.1l-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11124-1 | openssh-8.4p1-7.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11123-1 | opensc-0.21.0-2.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11122-1 | libsaml-devel-3.2.0-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11121-1 | libldap-2_4-2-2.4.59-69.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11120-1 | libopenjp2-7-2.4.0-1.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11119-1 | openjfx-11.0.12-2.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11118-1 | openfortivpn-1.17.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:11117-1 | libIex-3_1-30-3.1.1-2.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-20006 | NVIDIA Triton Inference Server拒绝服务漏洞(CNVD-2025-20006) | 2025-08-18 | 2025-09-02 |
| cnvd-2025-20005 | NVIDIA Triton Inference Server安全绕过漏洞 | 2025-08-18 | 2025-09-02 |
| cnvd-2025-20004 | NVIDIA Triton Inference Server拒绝服务漏洞(CNVD-2025-20004) | 2025-08-18 | 2025-09-02 |
| cnvd-2025-20003 | NVIDIA Triton Inference Server信息泄露漏洞 | 2025-08-18 | 2025-09-02 |
| cnvd-2025-20002 | NVIDIA Triton Inference Server拒绝服务漏洞(CNVD-2025-20002) | 2025-08-18 | 2025-09-02 |
| cnvd-2025-20001 | NVIDIA Triton Inference Server拒绝服务漏洞 | 2025-08-18 | 2025-09-02 |
| cnvd-2025-20000 | Google Android TV存在未明漏洞 | 2025-08-11 | 2025-09-02 |
| cnvd-2025-19999 | Google Android信息泄露漏洞(CNVD-2025-19999) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19998 | Google Android信息泄露漏洞(CNVD-2025-19998) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19997 | Google Android信息泄露漏洞(CNVD-2025-19997) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19996 | Google Android存在未明漏洞(CNVD-2025-19996) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19995 | Google Android信息泄露漏洞(CNVD-2025-19995) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19994 | Google Android权限提升漏洞(CNVD-2025-19994) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19993 | Google Android权限提升漏洞(CNVD-2025-19993) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19992 | Google Android拒绝服务漏洞(CNVD-2025-19992) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19991 | Google Android信息泄露漏洞(CNVD-2025-19991) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19990 | Google Android信息泄露漏洞(CNVD-2025-19990) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19989 | Google Android权限提升漏洞(CNVD-2025-19989) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19988 | Google Android代码执行漏洞(CNVD-2025-19988) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19987 | Google Android拒绝服务漏洞(CNVD-2025-19987) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19986 | Google Android权限提升漏洞(CNVD-2025-19986) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19985 | Google Android代码执行漏洞(CNVD-2025-19985) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19984 | Google Android权限提升漏洞(CNVD-2025-19984) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19983 | Google Android代码执行漏洞(CNVD-2025-19983) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19982 | Google Android权限提升漏洞(CNVD-2025-19982) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-19981 | Google Android权限提升漏洞(CNVD-2025-19981) | 2025-08-28 | 2025-09-02 |
| cnvd-2025-20494 | JetBrains TeamCity跨站请求伪造漏洞(CNVD-2025-2049443) | 2023-12-19 | 2025-09-01 |
| cnvd-2025-20493 | JetBrains TeamCity身份验证绕过漏洞(CNVD-2025-20493) | 2024-02-26 | 2025-09-01 |
| cnvd-2025-20492 | JetBrains TeamCity访问控制不当漏洞 | 2024-02-26 | 2025-09-01 |
| cnvd-2025-20491 | JetBrains TeamCity身份验证绕过漏洞 | 2024-03-06 | 2025-09-01 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2021-avi-435 | Multiples vulnérabilités dans Zimbra | 2021-06-04T00:00:00.000000 | 2021-06-04T00:00:00.000000 |
| certfr-2021-avi-434 | Vulnérabilité dans Fortinet FortiWLC | 2021-06-04T00:00:00.000000 | 2021-06-04T00:00:00.000000 |
| certfr-2021-avi-433 | Multiples vulnérabilités dans Mozilla Thunderbird | 2021-06-04T00:00:00.000000 | 2021-06-04T00:00:00.000000 |
| certfr-2021-avi-432 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2021-06-04T00:00:00.000000 | 2021-06-04T00:00:00.000000 |
| certfr-2021-avi-431 | Multiples vulnérabilités dans les produits IBM | 2021-06-04T00:00:00.000000 | 2021-06-04T00:00:00.000000 |
| certfr-2021-avi-430 | Multiples vulnérabilités dans Tenable LCE | 2021-06-03T00:00:00.000000 | 2021-06-03T00:00:00.000000 |
| certfr-2021-avi-429 | Multiples vulnérabilités dans Mitel MiCollab | 2021-06-03T00:00:00.000000 | 2021-06-03T00:00:00.000000 |
| certfr-2021-avi-428 | Vulnérabilités dans Google Chrome OS | 2021-06-03T00:00:00.000000 | 2021-06-03T00:00:00.000000 |
| certfr-2021-avi-427 | Vulnérabilité dans Wireshark | 2021-06-03T00:00:00.000000 | 2021-06-03T00:00:00.000000 |
| certfr-2021-avi-426 | Multiples vulnérabilités dans les produits Qnap | 2021-06-03T00:00:00.000000 | 2021-06-03T00:00:00.000000 |
| certfr-2021-avi-425 | Multiples vulnérabilités dans les produits Cisco | 2021-06-03T00:00:00.000000 | 2021-06-03T00:00:00.000000 |
| certfr-2021-avi-424 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2021-06-03T00:00:00.000000 | 2021-06-03T00:00:00.000000 |
| certfr-2021-avi-423 | Vulnérabilité dans Apache | 2021-06-02T00:00:00.000000 | 2021-06-02T00:00:00.000000 |
| certfr-2021-avi-422 | Vulnérabilité dans les produits Cisco | 2021-06-02T00:00:00.000000 | 2021-06-02T00:00:00.000000 |
| certfr-2021-avi-421 | Multiples vulnérabilités dans les produits Gitlab | 2021-06-02T00:00:00.000000 | 2021-06-02T00:00:00.000000 |
| certfr-2021-avi-420 | Multiples vulnérabilités dans les produits Mozilla | 2021-06-02T00:00:00.000000 | 2021-06-02T00:00:00.000000 |
| certfr-2021-avi-419 | Multiples vulnérabilités dans les produits Fortinet | 2021-06-02T00:00:00.000000 | 2021-06-02T00:00:00.000000 |
| certfr-2021-avi-418 | Multiples vulnérabilités dans F5 BIG-IP | 2021-06-02T00:00:00.000000 | 2021-06-02T00:00:00.000000 |
| certfr-2021-avi-417 | Multiples vulnérabilités dans les produits IBM | 2021-06-02T00:00:00.000000 | 2021-06-02T00:00:00.000000 |
| certfr-2021-avi-416 | Vulnérabilité dans les produits Siemens | 2021-05-31T00:00:00.000000 | 2021-05-31T00:00:00.000000 |
| certfr-2021-avi-415 | Multiples vulnérabilités dans les produits Stormshield | 2021-05-28T00:00:00.000000 | 2021-05-28T00:00:00.000000 |
| certfr-2021-avi-414 | Multiples vulnérabilités dans Microsoft Edge | 2021-05-28T00:00:00.000000 | 2021-05-28T00:00:00.000000 |
| certfr-2021-avi-413 | Vulnérabilité dans SonicWall NSM On-Prem | 2021-05-28T00:00:00.000000 | 2021-05-28T00:00:00.000000 |
| certfr-2021-avi-410 | Vulnérabilité dans ISC DHCP | 2021-05-27T00:00:00.000000 | 2021-05-28T00:00:00.000000 |
| certfr-2021-avi-222 | Multiples vulnérabilités dans SolarWinds Orion | 2021-03-26T00:00:00.000000 | 2021-05-28T00:00:00.000000 |
| certfr-2021-avi-412 | Multiples vulnérabilités dans MOXA NPort | 2021-05-27T00:00:00.000000 | 2021-05-27T00:00:00.000000 |
| certfr-2021-avi-411 | Vulnérabilité dans Juniper Junos OS | 2021-05-27T00:00:00.000000 | 2021-05-27T00:00:00.000000 |
| certfr-2021-avi-409 | Vulnérabilité dans Drupal core | 2021-05-27T00:00:00.000000 | 2021-05-27T00:00:00.000000 |
| certfr-2021-avi-408 | Vulnérabilité dans IBM Spectrum Protect Snapshot | 2021-05-27T00:00:00.000000 | 2021-05-27T00:00:00.000000 |
| certfr-2021-avi-407 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2021-05-27T00:00:00.000000 | 2021-05-27T00:00:00.000000 |