Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-62757 |
6.5 (3.1)
|
WordPress WebMan Amplifier plugin <= 1.5.12 - Cross Si… |
WebMan Design | Oliver Juhas |
WebMan Amplifier |
2025-12-31T11:53:12.910Z | 2026-01-20T14:28:16.035Z |
| CVE-2025-62761 |
6.5 (3.1)
|
WordPress Knowledge Base documentation & wiki plugin –… |
BasePress |
Knowledge Base documentation & wiki plugin – BasePress |
2025-12-31T08:44:22.540Z | 2026-01-20T14:28:16.034Z |
| CVE-2025-62738 |
5.3 (3.1)
|
WordPress Formstack Online Forms plugin <= 2.0.2 - Bro… |
mmattax |
Formstack Online Forms |
2025-12-09T14:52:22.583Z | 2026-01-20T14:28:16.034Z |
| CVE-2025-62760 |
6.5 (3.1)
|
WordPress BuddyPress Activity Shortcode plugin <= 1.1.… |
BuddyDev |
BuddyPress Activity Shortcode |
2025-12-31T08:52:04.460Z | 2026-01-20T14:28:16.033Z |
| CVE-2025-62756 |
6.5 (3.1)
|
WordPress The Moneytizer plugin <= 10.0.6 - Cross Site… |
lvaudore |
The Moneytizer |
2025-12-31T11:54:40.487Z | 2026-01-20T14:28:16.033Z |
| CVE-2025-62753 |
7.5 (3.1)
|
WordPress MAS Videos plugin <= 1.3.2 - Local File Incl… |
MadrasThemes |
MAS Videos |
2025-12-30T22:37:03.420Z | 2026-01-20T14:28:15.848Z |
| CVE-2025-62750 |
5.9 (3.1)
|
WordPress WooCommerce Parcelas plugin <= 1.3.5 - Cross… |
Filipe Seabra |
WooCommerce Parcelas |
2025-12-31T13:32:33.519Z | 2026-01-20T14:28:15.793Z |
| CVE-2025-62143 |
4.3 (3.1)
|
WordPress Post Video Players plugin <= 1.163 - Sensiti… |
nicashmu |
Post Video Players |
2025-12-31T15:49:17.340Z | 2026-01-20T14:28:15.769Z |
| CVE-2025-62752 |
6.5 (3.1)
|
WordPress Calendar.online / Kalender.digital plugin <=… |
kalender.digital |
Calendar.online / Kalender.digital |
2025-12-31T11:57:50.214Z | 2026-01-20T14:28:15.737Z |
| CVE-2025-62742 |
6.5 (3.1)
|
WordPress Curator.io plugin <= 1.9.5 - Cross Site Scri… |
Curator.io |
Curator.io |
2025-12-31T13:03:08.340Z | 2026-01-20T14:28:15.700Z |
| CVE-2025-62733 |
4.3 (3.1)
|
WordPress Custom Sidebars by ProteusThemes plugin <= 1… |
ProteusThemes |
Custom Sidebars by ProteusThemes |
2025-12-09T14:52:21.585Z | 2026-01-20T14:28:15.669Z |
| CVE-2025-62751 |
4.3 (3.1)
|
WordPress Vireo theme <= 1.0.24 - Broken Access Contro… |
Extend Themes |
Vireo |
2025-12-31T16:02:50.502Z | 2026-01-20T14:28:15.653Z |
| CVE-2025-62743 |
6.5 (3.1)
|
WordPress MyBookTable Bookstore plugin <= 3.5.5 - Cros… |
zookatron |
MyBookTable Bookstore |
2025-12-31T12:51:39.424Z | 2026-01-20T14:28:15.645Z |
| CVE-2025-62737 |
5.3 (3.1)
|
WordPress Image Cleanup plugin <= 1.9.2 - Sensitive Da… |
opicron |
Image Cleanup |
2025-12-09T14:52:22.392Z | 2026-01-20T14:28:15.641Z |
| CVE-2025-62151 |
8.8 (3.1)
|
WordPress Virtuaria PagBank / PagSeguro para Woocommer… |
Virtuaria |
Virtuaria PagBank / PagSeguro para Woocommerce |
2025-12-09T14:52:20.912Z | 2026-01-20T14:28:15.640Z |
| CVE-2025-62746 |
6.5 (3.1)
|
WordPress Featured Video for WordPress – VideographyWP… |
CodeFlavors |
Featured Video for WordPress & VideographyWP |
2025-12-30T16:13:59.784Z | 2026-01-20T14:28:15.635Z |
| CVE-2025-62740 |
5.3 (3.1)
|
WordPress WP-CRM System plugin <= 3.4.5 - Broken Acces… |
Mario Peshev |
WP-CRM System |
2025-12-09T14:52:22.982Z | 2026-01-20T14:28:15.621Z |
| CVE-2025-62749 |
6.5 (3.1)
|
WordPress User Specific Content plugin <= 1.0.6 - Cros… |
Bainternet |
User Specific Content |
2025-12-31T11:59:31.689Z | 2026-01-20T14:28:15.605Z |
| CVE-2025-62146 |
6.5 (3.1)
|
WordPress MX Time Zone Clocks plugin <= 5.1.1 - Cross … |
Maksym Marko |
MX Time Zone Clocks |
2025-12-31T08:47:52.280Z | 2026-01-20T14:28:15.559Z |
| CVE-2025-62747 |
5.3 (3.1)
|
WordPress Featured Image Generator plugin <= 1.3.3 - B… |
Aum Watcharapon |
Featured Image Generator |
2025-12-31T15:33:59.438Z | 2026-01-20T14:28:15.556Z |
| CVE-2025-62739 |
8.8 (3.1)
|
WordPress Add Custom Codes plugin <= 4.80 - Cross Site… |
SaifuMak |
Add Custom Codes |
2025-12-09T14:52:22.791Z | 2026-01-20T14:28:15.551Z |
| CVE-2025-62744 |
6.5 (3.1)
|
WordPress Page Title Splitter plugin <= 2.5.9 - Cross … |
Chris Steman |
Page Title Splitter |
2025-12-31T12:49:47.870Z | 2026-01-20T14:28:15.542Z |
| CVE-2025-62736 |
4.3 (3.1)
|
WordPress Image Cleanup plugin <= 1.9.2 - Broken Acces… |
opicron |
Image Cleanup |
2025-12-09T14:52:22.205Z | 2026-01-20T14:28:15.541Z |
| CVE-2025-62734 |
4.3 (3.1)
|
WordPress Media Library Downloader plugin <= 1.4.0 - C… |
Michael Revellin-Clerc |
Media Library Downloader |
2025-12-09T14:52:21.803Z | 2026-01-20T14:28:15.531Z |
| CVE-2025-62735 |
5.3 (3.1)
|
WordPress User Spam Remover plugin <= 1.1 - Sensitive … |
Joel |
User Spam Remover |
2025-12-09T14:52:22.012Z | 2026-01-20T14:28:15.525Z |
| CVE-2025-62154 |
4.3 (3.1)
|
WordPress AI Content Writing Assistant (Content Writer… |
Recorp |
AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One |
2025-12-31T15:41:50.974Z | 2026-01-20T14:28:15.491Z |
| CVE-2025-62153 |
8.8 (3.1)
|
WordPress Quick Interest Slider plugin <= 3.1.5 - Brok… |
Graham |
Quick Interest Slider |
2025-12-09T14:52:21.381Z | 2026-01-20T14:28:15.484Z |
| CVE-2025-62138 |
5.3 (3.1)
|
WordPress WP Advanced PDF plugin <= 1.1.7 - Other vuln… |
CedCommerce |
WP Advanced PDF |
2025-12-31T13:51:42.207Z | 2026-01-20T14:28:15.477Z |
| CVE-2025-62147 |
5.3 (3.1)
|
WordPress Realbig plugin <= 1.1.3 - Broken Access Cont… |
Nik Melnik |
Realbig |
2025-12-31T15:01:16.790Z | 2026-01-20T14:28:15.466Z |
| CVE-2025-62148 |
4.3 (3.1)
|
WordPress Robots.txt rewrite plugin <= 1.6.1 - Cross S… |
Eugen Bobrowski |
Robots.txt rewrite |
2025-12-31T15:45:54.708Z | 2026-01-20T14:28:15.450Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-38514 |
N/A
|
rxrpc: Fix oops due to non-existence of prealloc backl… |
Linux |
Linux |
2025-08-16T10:55:01.150Z | 2026-01-02T15:30:47.217Z |
| CVE-2025-38503 |
N/A
|
btrfs: fix assertion when building free space tree |
Linux |
Linux |
2025-08-16T10:54:41.004Z | 2026-01-02T15:30:44.208Z |
| CVE-2022-49509 |
N/A
|
media: i2c: max9286: fix kernel oops when removing module |
Linux |
Linux |
2025-02-26T02:13:40.134Z | 2025-05-04T08:39:28.147Z |
| CVE-2024-50394 |
7.7 (4.0)
|
Helpdesk |
QNAP Systems Inc. |
Helpdesk |
2025-03-07T16:13:11.034Z | 2025-03-07T18:02:58.278Z |
| CVE-2024-39538 |
6.5 (3.1)
7.1 (4.0)
|
Junos OS Evolved: ACX7000 Series: When multicast traff… |
Juniper Networks |
Junos OS Evolved |
2024-07-11T16:14:51.304Z | 2024-08-02T04:26:15.171Z |
| CVE-2024-39537 |
6.5 (3.1)
6.9 (4.0)
|
Junos OS Evolved: ACX7000 Series: Ports which have bee… |
Juniper Networks |
Junos OS Evolved |
2024-07-11T16:14:13.477Z | 2024-08-02T04:26:15.676Z |
| CVE-2025-11837 |
8.1 (4.0)
|
Malware Remover |
QNAP Systems Inc. |
Malware Remover |
2026-01-02T15:51:28.839Z | 2026-01-05T20:38:25.200Z |
| CVE-2025-59384 |
8.1 (4.0)
|
Qfiling |
QNAP Systems Inc. |
Qfiling |
2026-01-02T15:19:19.626Z | 2026-01-05T20:38:45.353Z |
| CVE-2025-59389 |
8.1 (4.0)
|
Hyper Data Protector |
QNAP Systems Inc. |
Hyper Data Protector |
2026-01-02T15:51:48.998Z | 2026-01-02T19:09:42.304Z |
| CVE-2026-22643 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-01-15T13:13:47.961Z | 2026-01-22T17:06:57.703Z |
| CVE-2026-22642 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-01-15T13:13:30.146Z | 2026-01-22T17:06:43.807Z |
| CVE-2025-63391 |
7.5 (3.1)
|
An authentication bypass vulnerability exists in … |
n/a |
n/a |
2025-12-18T00:00:00.000Z | 2026-01-22T17:42:31.996Z |
| CVE-2025-63390 |
5.3 (3.1)
|
An authentication bypass vulnerability exists in … |
n/a |
n/a |
2025-12-18T00:00:00.000Z | 2026-01-22T17:52:51.983Z |
| CVE-2025-63389 |
9.8 (3.1)
|
A critical authentication bypass vulnerability ex… |
n/a |
n/a |
2025-12-18T00:00:00.000Z | 2026-01-22T17:51:26.485Z |
| CVE-2025-0634 |
5.1 (4.0)
|
Use After Free vulnerability in Samsung Open Sour… |
Samsung Open Source |
rLottie |
2025-06-30T01:44:57.595Z | 2026-01-22T18:06:37.778Z |
| CVE-2017-16932 |
7.5 (3.1)
|
parser.c in libxml2 before 2.9.5 does not prevent… |
n/a |
n/a |
2017-11-23T21:00:00.000Z | 2026-01-22T18:00:13.271Z |
| CVE-2026-0747 |
3.3 (3.1)
|
Exposure of sensitive information in the TeamView… |
Devolutions |
Remote Desktop Manager |
2026-01-08T19:55:58.944Z | 2026-01-08T20:07:40.198Z |
| CVE-2025-20936 |
8.8 (3.1)
|
Improper access control in HDCP trustlet prior to… |
Samsung Mobile |
Samsung Mobile Devices |
2025-04-08T04:39:49.851Z | 2025-04-09T04:00:29.590Z |
| CVE-2026-22050 |
6.9 (4.0)
|
ONTAP versions 9.16.1 prior to 9.16.1P9 and 9.17.… |
NETAPP |
ONTAP 9 |
2026-01-12T17:15:07.484Z | 2026-01-13T17:30:51.952Z |
| CVE-2025-61939 |
8.7 (4.0)
8.8 (3.1)
|
Columbia Weather Systems MicroServer Improper Restrict… |
Columbia Weather Systems |
MicroServer |
2026-01-07T19:56:52.386Z | 2026-01-07T20:07:45.479Z |
| CVE-2025-66620 |
8.6 (4.0)
8 (3.1)
|
Columbia Weather Systems MicroServer Command Shell in … |
Columbia Weather Systems |
MicroServer |
2026-01-07T20:08:33.137Z | 2026-01-07T20:16:28.659Z |
| CVE-2025-5591 |
7.7 (4.0)
|
Stored Cross-site Scripting (XSS) in Kentico Xperience 13 |
Kentico |
Kentico Xperience |
2026-01-05T00:02:51.266Z | 2026-01-05T20:34:18.323Z |
| CVE-2026-0641 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
TOTOLINK WA300 cstecgi.cgi sub_401510 command injection |
TOTOLINK |
WA300 |
2026-01-06T19:02:07.258Z | 2026-01-06T19:20:43.130Z |
| CVE-2025-10569 |
6.5 (3.1)
|
Allocation of Resources Without Limits or Throttling i… |
GitLab |
GitLab |
2026-01-09T10:04:26.275Z | 2026-01-09T19:12:12.768Z |
| CVE-2025-11246 |
5.4 (3.1)
|
Insufficient Granularity of Access Control in GitLab |
GitLab |
GitLab |
2026-01-09T10:04:21.283Z | 2026-01-09T19:13:17.900Z |
| CVE-2025-13761 |
8 (3.1)
|
Improper Neutralization of Input During Web Page Gener… |
GitLab |
GitLab |
2026-01-09T10:04:01.331Z | 2026-01-10T04:55:46.858Z |
| CVE-2025-13772 |
7.1 (3.1)
|
Missing Authorization in GitLab |
GitLab |
GitLab |
2026-01-09T10:04:06.293Z | 2026-01-09T19:13:28.846Z |
| CVE-2026-0597 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Campcodes Supplier Management System edit_profile.php … |
Campcodes |
Supplier Management System |
2026-01-05T14:32:06.278Z | 2026-01-05T20:05:46.411Z |
| CVE-2026-0582 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
itsourcecode Society Management System edit_activity_q… |
itsourcecode |
Society Management System |
2026-01-05T08:32:06.107Z | 2026-01-05T21:14:21.827Z |
| CVE-2025-9222 |
8.7 (3.1)
|
Improper Neutralization of Input During Web Page Gener… |
GitLab |
GitLab |
2026-01-09T10:04:36.272Z | 2026-01-10T04:55:47.964Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-70890 | A stored cross-site scripting (XSS) vulnerability exists in Cyber Cafe Management System v1.0. An a… | 2026-01-15T21:16:04.733 | 2026-01-22T16:01:53.427 |
| fkie_cve-2025-70891 | A stored cross-site scripting (XSS) vulnerability exists in Phpgurukul Cyber Cafe Management System… | 2026-01-15T21:16:04.903 | 2026-01-22T16:01:16.537 |
| fkie_cve-2025-70892 | Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user man… | 2026-01-15T21:16:05.010 | 2026-01-22T16:00:53.547 |
| fkie_cve-2025-68474 | ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.5.1, 5.4.3, … | 2025-12-27T00:15:42.490 | 2026-01-22T16:00:51.717 |
| fkie_cve-2025-70893 | A time-based blind SQL Injection vulnerability exists in PHPGurukul Cyber Cafe Management System v1… | 2026-01-15T21:16:05.117 | 2026-01-22T16:00:26.627 |
| fkie_cve-2026-0803 | A vulnerability was found in PHPGurukul Online Course Registration System up to 3.1. This affects a… | 2026-01-09T16:16:07.840 | 2026-01-22T16:00:08.943 |
| fkie_cve-2025-66802 | Sourcecodester Covid-19 Contact Tracing System 1.0 is vulnerable to RCE (Remote Code Execution). Th… | 2026-01-12T20:15:53.060 | 2026-01-22T15:56:20.700 |
| fkie_cve-2026-0729 | A vulnerability was detected in code-projects Intern Membership Management System 1.0. Impacted is … | 2026-01-08T22:16:02.560 | 2026-01-22T15:52:37.870 |
| fkie_cve-2025-68622 | Espressif ESP-IDF USB Host UVC Class Driver allows video streaming from USB cameras. Prior to 2.4.0… | 2026-01-12T17:15:53.050 | 2026-01-22T15:50:31.880 |
| fkie_cve-2025-68656 | Espressif ESP-IDF USB Host HID (Human Interface Device) Driver allows access to HID devices. Prior … | 2026-01-12T18:15:48.467 | 2026-01-22T15:47:56.317 |
| fkie_cve-2025-68657 | Espressif ESP-IDF USB Host HID (Human Interface Device) Driver allows access to HID devices. Prior … | 2026-01-12T18:15:48.610 | 2026-01-22T15:47:26.980 |
| fkie_cve-2026-22249 | Docmost is an open-source collaborative wiki and documentation software. From 0.21.0 to before 0.24… | 2026-01-15T19:16:05.527 | 2026-01-22T15:44:51.040 |
| fkie_cve-2026-0728 | A security vulnerability has been detected in code-projects Intern Membership Management System 1.0… | 2026-01-08T21:15:44.053 | 2026-01-22T15:43:11.683 |
| fkie_cve-2025-15493 | A flaw has been found in RainyGao DocSys up to 2.02.36. The impacted element is an unknown function… | 2026-01-09T17:15:51.987 | 2026-01-22T15:42:18.810 |
| fkie_cve-2025-65368 | SparkyFitness v0.15.8.2 is vulnerable to Cross Site Scripting (XSS) via user input and LLM output. | 2026-01-15T21:16:04.290 | 2026-01-22T15:42:00.053 |
| fkie_cve-2025-15492 | A vulnerability was detected in RainyGao DocSys up to 2.02.36. The affected element is an unknown f… | 2026-01-09T16:16:06.213 | 2026-01-22T15:41:28.443 |
| fkie_cve-2026-22779 | BlackSheep is an asynchronous web framework to build event based web applications with Python. Prio… | 2026-01-14T17:16:09.150 | 2026-01-22T15:39:31.557 |
| fkie_cve-2025-15494 | A vulnerability has been found in RainyGao DocSys up to 2.02.37. This affects an unknown function o… | 2026-01-09T17:15:52.180 | 2026-01-22T15:37:38.203 |
| fkie_cve-2026-22690 | pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible… | 2026-01-10T05:16:01.847 | 2026-01-22T15:35:23.627 |
| fkie_cve-2025-61937 | The vulnerability, if exploited, could allow an unauthenticated miscreant to achieve remote code e… | 2026-01-16T02:16:42.833 | 2026-01-22T15:20:43.010 |
| fkie_cve-2025-61943 | The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Stan… | 2026-01-16T02:16:45.093 | 2026-01-22T15:19:41.990 |
| fkie_cve-2025-9458 | A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory C… | 2025-11-07T18:15:37.647 | 2026-01-22T15:16:49.870 |
| fkie_cve-2025-9457 | A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory c… | 2025-12-16T00:16:03.617 | 2026-01-22T15:16:49.720 |
| fkie_cve-2025-9456 | A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force a Memor… | 2025-12-16T00:16:03.463 | 2026-01-22T15:16:49.570 |
| fkie_cve-2025-9452 | A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force a Memor… | 2025-12-16T00:16:02.880 | 2026-01-22T15:16:49.380 |
| fkie_cve-2025-63896 | An issue in the Bluetooth Human Interface Device (HID) of JXL 9 Inch Car Android Double Din Player … | 2025-12-04T21:16:08.830 | 2026-01-22T15:16:48.053 |
| fkie_cve-2024-37006 | A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can… | 2024-06-25T04:15:16.053 | 2026-01-22T15:16:46.750 |
| fkie_cve-2024-37000 | A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can lead… | 2024-06-25T03:15:10.463 | 2026-01-22T15:16:46.560 |
| fkie_cve-2024-23157 | A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applicat… | 2024-06-25T04:15:13.723 | 2026-01-22T15:16:46.383 |
| fkie_cve-2024-23156 | A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk a… | 2024-06-25T04:15:13.450 | 2026-01-22T15:16:46.190 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-6pv4-2w6v-cvfc |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:25Z |
| ghsa-4p89-hw8h-5g25 |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-3vp5-f8x5-xvc5 |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in Hernan Villanueva Boldermail boldermail allows O… | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-3c5v-vg8q-xfjh |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:25Z |
| ghsa-2m49-jgww-vg42 |
9.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-xv5x-v758-wfgm |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-wpwc-6mhr-g8mj |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-r86c-4hwv-x6mg |
8.8 (3.1)
|
Missing Authorization vulnerability in billingo Official Integration for Billingo billingo allows P… | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-qgmx-qp5w-rr95 |
8.8 (3.1)
|
Missing Authorization vulnerability in templazee Templazee templazee allows Exploiting Incorrectly … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-phgc-j5xj-3mmq |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-mg44-32v7-gm39 |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-m9xh-frgc-6mfw |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-jfhr-pr76-74gf |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-j3h8-47pw-pgvg |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-hgqr-hjhw-98qj |
8.1 (3.1)
|
Authorization Bypass Through User-Controlled Key vulnerability in favethemes Houzez houzez allows E… | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-hfq2-ggw4-3493 |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-g4f9-vxph-xqc8 |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-fq5h-3m7r-254w |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-cw89-xfvf-3w2p |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-ccmg-rqff-c5p5 |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-9rqc-w9x8-8v7p |
4.3 (3.1)
|
Missing Authorization vulnerability in Syed Balkhi Smash Balloon Social Post Feed custom-facebook-f… | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-9r69-f28j-93c2 |
7.4 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-44vx-c3xh-577j |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-3qxw-r9qq-5f2p |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-2wp8-f786-g8mx |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-2qqp-4g8g-95g8 |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-2h9r-gmgg-grw7 |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:24Z |
| ghsa-xvmj-4x57-g9gg |
4.3 (3.1)
|
Missing Authorization vulnerability in etruel WPeMatico RSS Feed Fetcher wpematico allows Exploitin… | 2025-10-22T15:31:13Z | 2026-01-20T15:31:23Z |
| ghsa-vqhf-g8hg-f3c9 |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:13Z | 2026-01-20T15:31:23Z |
| ghsa-vm74-522r-gmh6 |
8.2 (3.1)
|
Missing Authorization vulnerability in AmentoTech Private Limited WPGuppy wpguppy-lite allows Acces… | 2025-10-22T15:31:13Z | 2026-01-20T15:31:23Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-29367 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.611865Z |
| gsd-2024-29634 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.611595Z |
| gsd-2024-29582 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.611325Z |
| gsd-2024-29721 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.611105Z |
| gsd-2024-29832 | The current_url parameter of the AJAX call to the GalleryBox action of admin-ajax.php is … | 2024-04-02T05:02:57.610611Z |
| gsd-2024-29277 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.610000Z |
| gsd-2024-29833 | The image upload component allows SVG files and the regular expression used to remove scr… | 2024-04-02T05:02:57.609526Z |
| gsd-2024-29752 | In tmu_set_tr_num_thresholds of tmu.c, there is a possible out of bounds write due to a m… | 2024-04-02T05:02:57.608984Z |
| gsd-2024-29012 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.608732Z |
| gsd-2024-29506 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.608466Z |
| gsd-2024-29733 | Improper Certificate Validation vulnerability in Apache Airflow FTP Provider. The FTP ho… | 2024-04-02T05:02:57.608193Z |
| gsd-2024-29324 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.607938Z |
| gsd-2024-29046 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | 2024-04-02T05:02:57.607686Z |
| gsd-2024-29254 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.607491Z |
| gsd-2024-29261 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.607292Z |
| gsd-2024-29520 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.607093Z |
| gsd-2024-29314 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.606712Z |
| gsd-2024-29447 | An issue was discovered in the default configurations of ROS2 Humble Hawksbill in ROS2 Hu… | 2024-04-02T05:02:57.606448Z |
| gsd-2024-29526 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.606253Z |
| gsd-2024-29329 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.606067Z |
| gsd-2024-29519 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.605818Z |
| gsd-2024-29476 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.605558Z |
| gsd-2024-29429 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.605370Z |
| gsd-2024-29556 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.605177Z |
| gsd-2024-29590 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.604925Z |
| gsd-2024-29196 | phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and oth… | 2024-04-02T05:02:57.604501Z |
| gsd-2024-29565 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.604083Z |
| gsd-2024-29621 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.603863Z |
| gsd-2024-29418 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.603559Z |
| gsd-2024-29637 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.603357Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-189643 | Malicious code in standard-apollo-tardigrade-perseus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189642 | Malicious code in standard-altair-izar-sync (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189641 | Malicious code in stack-theta-meta-index-web (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189640 | Malicious code in stack-compress-nu-zeta-mock (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189639 | Malicious code in stack-bundle-public-air-user (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189638 | Malicious code in stack-authenticate-boolean-compile-kappa (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189637 | Malicious code in sqlite-winston-scripts-uninstall (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189636 | Malicious code in sqlite-telesto-commitlint-figures (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189635 | Malicious code in sqlite-oauth-quito-graphql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189634 | Malicious code in sqlite-duplex-robotics-loglevel (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189633 | Malicious code in spy-visualize-array-spy-index (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189632 | Malicious code in spy-sun-byte-debug-import (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189631 | Malicious code in spy-fire-kappa-emulate-async (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189630 | Malicious code in spinner-uranology-terser-astrophysics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189629 | Malicious code in spinner-spectron-electron-builder-loglevel (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189628 | Malicious code in spinner-rest-standard-writable (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189627 | Malicious code in spinner-proxima-cybernetics-cosmochemistry (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189626 | Malicious code in spinner-cryptography-acamar-elara (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189625 | Malicious code in spinner-command-solis-taphonomy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189624 | Malicious code in spica-oberon-sirius-local (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189623 | Malicious code in spica-html-webpack-plugin-kronos-husky (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189622 | Malicious code in speleology-unuk-hydrogeology-supernova (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189621 | Malicious code in speleology-pipe-pino-puppeteer (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189620 | Malicious code in speleology-phenomic-nova-resonance (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189619 | Malicious code in speleology-ganymede-halley-panspermia (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189618 | Malicious code in spectroscopy-webdriver-manager-await-bootstrap (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189617 | Malicious code in spectroscopy-dotenv-cassini-sedimentology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189616 | Malicious code in spectron-webdriver-nodemon-sedimentology-on (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189615 | Malicious code in spectron-webdriver-commitlint-apollo-mysql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189614 | Malicious code in spectron-webdriver-async-primatology-canopus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-1859 | librsvg: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-07-23T22:00:00.000+00:00 | 2024-08-08T22:00:00.000+00:00 |
| wid-sec-w-2022-2259 | QEMU: Mehrere Schwachstellen ermöglichen Denial of Service | 2021-01-11T23:00:00.000+00:00 | 2024-08-08T22:00:00.000+00:00 |
| wid-sec-w-2022-1158 | QEMU: Schwachstelle ermöglicht Denial of Service | 2022-08-23T22:00:00.000+00:00 | 2024-08-08T22:00:00.000+00:00 |
| wid-sec-w-2022-0713 | QEMU: Schwachstelle ermöglicht Denial of Service | 2022-07-18T22:00:00.000+00:00 | 2024-08-08T22:00:00.000+00:00 |
| wid-sec-w-2024-1797 | Cisco Identity Services Engine (ISE): Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2024-08-07T22:00:00.000+00:00 | 2024-08-07T22:00:00.000+00:00 |
| wid-sec-w-2024-1796 | Cisco IP Phone: Mehrere Schwachstellen | 2024-08-07T22:00:00.000+00:00 | 2024-08-07T22:00:00.000+00:00 |
| wid-sec-w-2024-1794 | Poly Clariti: Mehrere Schwachstellen | 2024-08-07T22:00:00.000+00:00 | 2024-08-07T22:00:00.000+00:00 |
| wid-sec-w-2024-1793 | FreeBSD Project FreeBSD OS: Mehrere Schwachstellen | 2024-08-07T22:00:00.000+00:00 | 2024-08-07T22:00:00.000+00:00 |
| wid-sec-w-2024-1790 | Alle gängigen Browser: Schwachstelle ermöglicht Umgehung von Sicherheitsmaßnahmen | 2024-08-07T22:00:00.000+00:00 | 2024-08-07T22:00:00.000+00:00 |
| wid-sec-w-2024-1786 | Red Hat OpenStack: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-08-07T22:00:00.000+00:00 | 2024-08-07T22:00:00.000+00:00 |
| wid-sec-w-2024-1785 | Ubuntu Linux (wpa_supplicant): Schwachstelle ermöglicht Privilegieneskalation | 2024-08-06T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1784 | Mozilla Firefox für iOS: Mehrere Schwachstellen | 2024-08-06T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1782 | SmartBear SoapUI: Schwachstelle ermöglicht Codeausführung | 2024-08-06T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1781 | Aruba ArubaOS: Mehrere Schwachstellen ermöglichen Codeausführung und DOS | 2024-08-06T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1779 | ZScaler Client Connector: Mehrere Schwachstellen | 2024-08-06T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1778 | Microsoft Dynamics 365: Schwachstelle ermöglicht Cross-Site Scripting | 2024-08-06T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1776 | Apache CloudStack: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2024-08-06T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1774 | Pixel Patchday August 2024: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2024-08-06T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1773 | Apache Commons Compress: Schwachstelle ermöglicht Denial of Service | 2019-08-27T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1771 | Trellix ePolicy Orchestrator: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2024-08-06T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-0031 | Redis: Schwachstelle ermöglicht Codeausführung | 2024-01-09T23:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2023-1359 | Apache Commons: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-04-12T22:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2023-0700 | Redis: Schwachstelle ermöglicht Denial of Service | 2023-03-20T23:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2023-0113 | X.Org X11: Mehrere Schwachstellen | 2023-01-17T23:00:00.000+00:00 | 2024-08-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1769 | Hitachi Ops Center: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-08-05T22:00:00.000+00:00 | 2024-08-05T22:00:00.000+00:00 |
| wid-sec-w-2024-1768 | Kibana: Schwachstelle ermöglicht Codeausführung | 2024-08-05T22:00:00.000+00:00 | 2024-08-05T22:00:00.000+00:00 |
| wid-sec-w-2024-1767 | Red Hat OpenStack: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-08-05T22:00:00.000+00:00 | 2024-08-05T22:00:00.000+00:00 |
| wid-sec-w-2024-1766 | Podman: Schwachstelle ermöglicht Denial of Service | 2024-08-05T22:00:00.000+00:00 | 2024-08-05T22:00:00.000+00:00 |
| wid-sec-w-2024-1765 | JFrog Artifactory: Schwachstelle ermöglicht Manipulation von Dateien | 2024-08-05T22:00:00.000+00:00 | 2024-08-05T22:00:00.000+00:00 |
| wid-sec-w-2024-1763 | Samsung Android: Mehrere Schwachstellen | 2024-08-05T22:00:00.000+00:00 | 2024-08-05T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:4836 | Red Hat Security Advisory: RHACS 4.5 enhancement and security update | 2024-07-24T16:18:41+00:00 | 2026-01-21T23:23:24+00:00 |
| rhsa-2024:3708 | Red Hat Security Advisory: Red Hat Build of Apache Camel 3.20.6 for Spring Boot security update. | 2024-06-06T16:42:04+00:00 | 2026-01-21T23:22:21+00:00 |
| rhsa-2024:3550 | Red Hat Security Advisory: HawtIO 4.0.0 for Red Hat build of Apache Camel 4 Release and security update. | 2024-06-03T11:52:35+00:00 | 2026-01-21T23:22:12+00:00 |
| rhsa-2024:11094 | Red Hat Security Advisory: python36:3.6 security update | 2024-12-16T08:11:53+00:00 | 2026-01-21T23:20:33+00:00 |
| rhsa-2024:11093 | Red Hat Security Advisory: python36:3.6 security update | 2024-12-16T08:01:03+00:00 | 2026-01-21T23:20:30+00:00 |
| rhsa-2024:11091 | Red Hat Security Advisory: python36:3.6 security update | 2024-12-16T07:24:43+00:00 | 2026-01-21T23:20:27+00:00 |
| rhsa-2024:11048 | Red Hat Security Advisory: python-virtualenv security update | 2024-12-16T02:38:00+00:00 | 2026-01-21T23:20:26+00:00 |
| rhsa-2024:10953 | Red Hat Security Advisory: python36:3.6 security update | 2024-12-11T16:20:04+00:00 | 2026-01-21T23:20:17+00:00 |
| rhsa-2024:10952 | Red Hat Security Advisory: php:7.4 security update | 2024-12-11T16:20:37+00:00 | 2026-01-21T23:20:17+00:00 |
| rhsa-2024:10865 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.1 bug fixes and container updates | 2024-12-05T19:46:00+00:00 | 2026-01-21T23:20:12+00:00 |
| rhsa-2024:10183 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.8.8 bug fixes and container updates | 2024-11-21T23:23:53+00:00 | 2026-01-21T23:19:53+00:00 |
| rhsa-2024:10179 | Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.3.8 bug fixes and container updates | 2024-11-21T21:05:09+00:00 | 2026-01-21T23:19:51+00:00 |
| rhsa-2024:0793 | Red Hat Security Advisory: Red Hat Integration Camel for Spring Boot 4.0.3 release security update | 2024-02-12T18:01:12+00:00 | 2026-01-21T23:19:41+00:00 |
| rhsa-2024:0722 | Red Hat Security Advisory: Red Hat build of Quarkus 3.2.10 release and security update | 2024-02-12T15:24:12+00:00 | 2026-01-21T23:19:34+00:00 |
| rhsa-2024:0474 | Red Hat Security Advisory: tomcat security update | 2024-01-25T10:59:50+00:00 | 2026-01-21T23:19:22+00:00 |
| rhsa-2024:0387 | Red Hat Security Advisory: php:8.1 security update | 2024-01-24T09:59:57+00:00 | 2026-01-21T23:19:19+00:00 |
| rhsa-2024:0125 | Red Hat Security Advisory: tomcat security update | 2024-01-10T11:32:48+00:00 | 2026-01-21T23:19:17+00:00 |
| rhsa-2023:5927 | Red Hat Security Advisory: php:8.0 security update | 2023-10-19T13:33:11+00:00 | 2026-01-21T23:18:23+00:00 |
| rhsa-2023:5926 | Red Hat Security Advisory: php security update | 2023-10-19T13:19:20+00:00 | 2026-01-21T23:18:21+00:00 |
| rhea-2024:3997 | Red Hat Enhancement Advisory: Red Hat OpenShift Pipelines Operator Bundle 1.15.0 release | 2024-06-20T01:49:37+00:00 | 2026-01-21T23:17:31+00:00 |
| rhba-2024:2862 | Red Hat Bug Fix Advisory: Multicluster Engine for Kubernetes 2.5.3 bug fixes and container updates | 2024-05-15T22:17:03+00:00 | 2026-01-21T23:17:19+00:00 |
| rhba-2024:2034 | Red Hat Bug Fix Advisory: Red Hat Advanced Cluster Management 2.10.2 bug fixes and container updates | 2024-04-24T13:19:08+00:00 | 2026-01-21T23:17:16+00:00 |
| rhsa-2026:0293 | Red Hat Security Advisory: pki-servlet-engine security update | 2026-01-08T07:28:53+00:00 | 2026-01-21T23:05:01+00:00 |
| rhsa-2026:0292 | Red Hat Security Advisory: pki-servlet-engine security update | 2026-01-08T07:23:28+00:00 | 2026-01-21T23:04:59+00:00 |
| rhsa-2025:23053 | Red Hat Security Advisory: tomcat9 security update | 2025-12-10T14:39:58+00:00 | 2026-01-21T23:02:20+00:00 |
| rhsa-2025:23052 | Red Hat Security Advisory: tomcat9 security update | 2025-12-10T14:44:53+00:00 | 2026-01-21T23:02:20+00:00 |
| rhsa-2025:23051 | Red Hat Security Advisory: tomcat security update | 2025-12-10T14:38:53+00:00 | 2026-01-21T23:02:18+00:00 |
| rhsa-2025:23050 | Red Hat Security Advisory: tomcat security update | 2025-12-10T14:45:33+00:00 | 2026-01-21T23:02:17+00:00 |
| rhsa-2025:23049 | Red Hat Security Advisory: tomcat security update | 2025-12-10T15:15:23+00:00 | 2026-01-21T23:02:14+00:00 |
| rhsa-2025:23048 | Red Hat Security Advisory: tomcat security update | 2025-12-10T17:45:03+00:00 | 2026-01-21T23:02:14+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-10978 | PostgreSQL SET ROLE SET SESSION AUTHORIZATION reset to wrong user ID | 2024-11-02T00:00:00.000Z | 2024-11-26T00:00:00.000Z |
| msrc_cve-2023-7256 | Double-free in libpcap before 1.10.5 with remote packet capture support. | 2024-08-02T00:00:00.000Z | 2024-11-26T00:00:00.000Z |
| msrc_cve-2024-52533 | gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character. | 2024-11-02T00:00:00.000Z | 2024-11-23T00:00:00.000Z |
| msrc_cve-2024-20506 | ClamAV Privilege Handling Escalation Vulnerability | 2024-09-01T07:00:00.000Z | 2024-11-23T00:00:00.000Z |
| msrc_cve-2024-20505 | ClamAV Memory Handling DoS | 2024-09-01T07:00:00.000Z | 2024-11-23T00:00:00.000Z |
| msrc_cve-2023-5870 | Postgresql: role pg_signal_backend can signal certain superuser processes. | 2023-12-01T08:00:00.000Z | 2024-11-23T00:00:00.000Z |
| msrc_cve-2023-39804 | In GNU tar before 1.35 mishandled extension attributes in a PAX archive can lead to an application crash in xheader.c. | 2024-03-02T08:00:00.000Z | 2024-11-23T00:00:00.000Z |
| msrc_cve-2022-48303 | GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump | 2023-01-04T00:00:00.000Z | 2024-11-23T00:00:00.000Z |
| msrc_cve-2020-28458 | All versions of package datatables.net are vulnerable to Prototype Pollution | 2020-12-02T00:00:00.000Z | 2024-11-23T00:00:00.000Z |
| msrc_cve-2024-49054 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-22T08:00:00.000Z |
| msrc_cve-2024-49050 | Visual Studio Code Python Extension Remote Code Execution Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-22T08:00:00.000Z |
| msrc_cve-2024-43637 | Windows USB Video Class System Driver Elevation of Privilege Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-21T08:00:00.000Z |
| msrc_cve-2024-30022 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | 2024-05-14T07:00:00.000Z | 2024-11-21T08:00:00.000Z |
| msrc_cve-2024-34088 | In FRRouting (FRR) through 9.1 it is possible for the get_edge() function in ospf_te.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value the OSPF daemon crashes leading to denial of service. | 2024-04-02T07:00:00.000Z | 2024-11-21T00:00:00.000Z |
| msrc_cve-2023-27538 | An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connection despite the fact that an SSH option was modified which should have prevented reuse. libcurl maintains a pool of previously used connections to reuse them for subsequent transfers if the configurations match. However two SSH settings were omitted from the configuration check allowing them to match easily potentially leading to the reuse of an inappropriate connection. | 2023-03-10T00:00:00.000Z | 2024-11-20T00:00:00.000Z |
| msrc_cve-2023-27536 | An authentication bypass vulnerability exists libcurl <8.0.0 in the connection reuse feature which can reuse previously established connections with incorrect user permissions due to a failure to check for changes in the CURLOPT_GSSAPI_DELEGATION option. This vulnerability affects krb5/kerberos/negotiate/GSSAPI transfers and could potentially result in unauthorized access to sensitive information. The safest option is to not reuse connections if the CURLOPT_GSSAPI_DELEGATION option has been changed. | 2023-03-10T00:00:00.000Z | 2024-11-20T00:00:00.000Z |
| msrc_cve-2023-27535 | An authentication bypass vulnerability exists in libcurl <8.0.0 in the FTP connection reuse feature that can result in wrong credentials being used during subsequent transfers. Previously created connections are kept in a connection pool for reuse if they match the current setup. However certain FTP settings such as CURLOPT_FTP_ACCOUNT CURLOPT_FTP_ALTERNATIVE_TO_USER CURLOPT_FTP_SSL_CCC and CURLOPT_USE_SSL were not included in the configuration match checks causing them to match too easily. This could lead to libcurl using the wrong credentials when performing a transfer potentially allowing unauthorized access to sensitive information. | 2023-03-10T00:00:00.000Z | 2024-11-20T00:00:00.000Z |
| msrc_cve-2023-23916 | An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms meaning that a server response can be compressed multiple times and potentially with differentalgorithms. The number of acceptable "links" in this "decompression chain" wascapped but the cap was implemented on a per-header basis allowing a maliciousserver to insert a virtually unlimited number of compression steps simply byusing many headers. The use of such a decompression chain could result in a "malloc bomb" making curl end up spending enormous amounts of allocated heap memory or trying to and returning out of memory errors. | 2023-02-01T00:00:00.000Z | 2024-11-20T00:00:00.000Z |
| msrc_cve-2022-43552 | A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET curl would use a heap-allocated struct after it had been freed in its transfer shutdown code path. | 2023-02-01T00:00:00.000Z | 2024-11-20T00:00:00.000Z |
| msrc_cve-2024-43639 | Windows KDC Proxy Remote Code Execution Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-18T08:00:00.000Z |
| msrc_cve-2024-30202 | In Emacs before 29.3 arbitrary Lisp code is evaluated as part of turning on Org mode. This affects Org Mode before 9.6.23. | 2024-03-02T08:00:00.000Z | 2024-11-15T00:00:00.000Z |
| msrc_cve-2024-2379 | QUIC certificate check bypass with wolfSSL | 2024-03-02T08:00:00.000Z | 2024-11-15T00:00:00.000Z |
| msrc_cve-2024-49039 | Windows Task Scheduler Elevation of Privilege Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-14T08:00:00.000Z |
| msrc_cve-2024-49025 | Microsoft Edge (Chromium-based) Information Disclosure Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-14T08:00:00.000Z |
| msrc_cve-2024-43598 | LightGBM Remote Code Execution Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-14T08:00:00.000Z |
| msrc_cve-2024-5187 | Arbitrary File Overwrite in download_model_with_test_data in onnx/onnx | 2024-06-02T07:00:00.000Z | 2024-11-14T00:00:00.000Z |
| msrc_cve-2024-31228 | Denial-of-service due to unbounded pattern matching in Redis | 2024-10-01T07:00:00.000Z | 2024-11-14T00:00:00.000Z |
| msrc_cve-2024-31227 | Denial-of-service due to malformed ACL selectors in Redis | 2024-10-01T07:00:00.000Z | 2024-11-14T00:00:00.000Z |
| msrc_cve-2024-24795 | Apache HTTP Server: HTTP Response Splitting in multiple modules | 2024-04-02T07:00:00.000Z | 2024-11-13T00:00:00.000Z |
| msrc_cve-2024-49056 | Airlift.microsoft.com Elevation of Privilege Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-12T08:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202210-1468 | This issue was addressed with improved data protection. This issue is fixed in iOS 16, ma… | 2025-05-07T21:34:58.894000Z |
| var-202205-0812 | Uncontrolled resource consumption in the Linux kernel drivers for Intel(R) SGX may allow … | 2025-05-07T21:33:24.806000Z |
| var-202202-0448 | Access of uninitialized pointer in the Intel(R) Trace Analyzer and Collector before versi… | 2025-05-07T21:33:12.061000Z |
| var-202201-0426 | Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function. - - -… | 2025-05-07T21:33:07.954000Z |
| var-202206-1079 | Incomplete cleanup in specific special register read operations for some Intel(R) Process… | 2025-05-07T21:33:03.271000Z |
| var-202202-0500 | Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple… | 2025-05-07T21:32:59.789000Z |
| var-202208-0714 | Insufficiently protected credentials for Intel(R) AMT and Intel(R) Standard Manageability… | 2025-05-07T21:32:59.741000Z |
| var-202202-0519 | Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel(R) … | 2025-05-07T21:31:51.934000Z |
| var-202202-0517 | Exposure of Sensitive Information to an Unauthorized Actor in firmware for some Intel(R) … | 2025-05-07T21:29:12.336000Z |
| var-202208-1489 | Improper input validation in the Intel(R) Data Center Manager software before version 4.1… | 2025-05-07T21:27:59.351000Z |
| var-202202-0447 | Out-of-bounds read in the Intel(R) Trace Analyzer and Collector before version 2021.5 may… | 2025-05-07T21:26:23.744000Z |
| var-202202-0504 | Improper Validation of Specified Index, Position, or Offset in Input in software for some… | 2025-05-07T21:25:07.031000Z |
| var-202202-0453 | Improper input validation in a third-party component for Intel(R) Quartus(R) Prime Pro Ed… | 2025-05-07T21:22:31.995000Z |
| var-202202-0033 | Improper locking in the Power Management Controller (PMC) for some Intel Chipset firmware… | 2025-05-07T21:21:51.077000Z |
| var-202202-0082 | Improper initialization of shared resources in some Intel(R) Processors may allow an auth… | 2025-05-07T21:21:49.927000Z |
| var-202202-0509 | Improper Validation of Consistency within input in software for Intel(R) PROSet/Wireless … | 2025-05-07T21:21:48.709000Z |
| var-202210-1487 | The issue was addressed with improved memory handling. This issue is fixed in iOS 15.7 an… | 2025-05-07T21:21:42.039000Z |
| var-202210-2056 | A logic issue was addressed with improved state management. This issue is fixed in iOS 16… | 2025-05-07T21:20:59.227000Z |
| var-202210-2060 | A configuration issue was addressed with additional restrictions. This issue is fixed in … | 2025-05-07T21:20:58.976000Z |
| var-202210-1465 | The issue was addressed with improved memory handling. This issue is fixed in macOS Big S… | 2025-05-07T21:20:56.041000Z |
| var-202210-2055 | This issue was addressed with improved checks. This issue is fixed in tvOS 16, iOS 16, wa… | 2025-05-07T21:20:18.464000Z |
| var-202205-0755 | Improper input validation in the Intel(R) In-Band Manageability software before version 2… | 2025-05-07T21:18:49.963000Z |
| var-202205-0780 | Improper buffer access in firmware for some Intel(R) NUCs may allow a privileged user to … | 2025-05-07T21:17:37.437000Z |
| var-202202-0446 | Uncaught exception in the Intel(R) Trace Analyzer and Collector before version 2021.5 may… | 2025-05-07T21:17:22.207000Z |
| var-202202-0480 | Improper conditions check in the Intel(R) IPP Crypto library before version 2021.2 may al… | 2025-05-07T21:16:01.817000Z |
| var-202202-1330 | Improper access control in the Intel(R) RealSense(TM) DCM before version 20210625 may all… | 2025-05-07T21:13:30.637000Z |
| var-202210-1525 | The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.1, … | 2025-05-07T21:13:25.571000Z |
| var-202210-1479 | A type confusion issue was addressed with improved checks. This issue is fixed in macOS V… | 2025-05-07T21:12:39.100000Z |
| var-202202-0053 | Improper access control in the firmware for some Intel(R) Processors may allow an unauthe… | 2025-05-07T21:11:59.395000Z |
| var-202210-1461 | A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13… | 2025-05-07T21:10:47.866000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2023:4907-1 | Security update for mariadb | 2023-12-19T14:58:20Z | 2023-12-19T14:58:20Z |
| suse-su-2023:4905-1 | Security update for openssh | 2023-12-19T12:32:34Z | 2023-12-19T12:32:34Z |
| suse-su-2023:4904-1 | Security update for openssh | 2023-12-19T12:28:51Z | 2023-12-19T12:28:51Z |
| suse-su-2023:4903-1 | Security update for openssh | 2023-12-19T12:25:02Z | 2023-12-19T12:25:02Z |
| suse-su-2023:4902-1 | Security update for openssh | 2023-12-19T12:10:16Z | 2023-12-19T12:10:16Z |
| suse-su-2023:4901-1 | Security update for avahi | 2023-12-19T10:26:59Z | 2023-12-19T10:26:59Z |
| suse-su-2023:4895-1 | Security update for libsass | 2023-12-18T17:04:19Z | 2023-12-18T17:04:19Z |
| suse-su-2023:4893-1 | Security update for freerdp | 2023-12-18T15:34:34Z | 2023-12-18T15:34:34Z |
| suse-su-2023:4892-1 | Security update for ncurses | 2023-12-18T15:33:34Z | 2023-12-18T15:33:34Z |
| suse-su-2023:4891-1 | Security update for ncurses | 2023-12-18T15:32:17Z | 2023-12-18T15:32:17Z |
| suse-su-2023:4883-1 | Security update for the Linux Kernel | 2023-12-15T10:41:00Z | 2023-12-15T10:41:00Z |
| suse-su-2023:4882-1 | Security update for the Linux Kernel | 2023-12-15T10:40:45Z | 2023-12-15T10:40:45Z |
| suse-su-2023:4875-1 | Security update for gstreamer-plugins-bad | 2023-12-14T19:05:55Z | 2023-12-14T19:05:55Z |
| suse-su-2023:4874-1 | Security update for gstreamer-plugins-bad | 2023-12-14T19:04:28Z | 2023-12-14T19:04:28Z |
| suse-su-2023:4873-1 | Security update for xrdp | 2023-12-14T18:52:09Z | 2023-12-14T18:52:09Z |
| suse-su-2023:4872-1 | Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP4) | 2023-12-14T18:33:33Z | 2023-12-14T18:33:33Z |
| suse-su-2023:4871-1 | Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP3) | 2023-12-14T16:33:42Z | 2023-12-14T16:33:42Z |
| suse-su-2023:4870-1 | Security update for cosign | 2023-12-14T15:28:47Z | 2023-12-14T15:28:47Z |
| suse-su-2023:4869-1 | Security update for tiff | 2023-12-14T15:26:46Z | 2023-12-14T15:26:46Z |
| suse-su-2023:4868-1 | Security update for tracker-miners | 2023-12-14T15:24:04Z | 2023-12-14T15:24:04Z |
| suse-su-2023:4866-1 | Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP2) | 2023-12-14T15:03:37Z | 2023-12-14T15:03:37Z |
| suse-su-2023:4867-1 | Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP5) | 2023-12-14T14:04:15Z | 2023-12-14T14:04:15Z |
| suse-su-2023:4863-1 | Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP5) | 2023-12-14T14:04:05Z | 2023-12-14T14:04:05Z |
| suse-su-2023:4862-1 | Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP3) | 2023-12-14T14:03:53Z | 2023-12-14T14:03:53Z |
| suse-su-2023:4848-1 | Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP5) | 2023-12-14T13:06:05Z | 2023-12-14T13:06:05Z |
| suse-su-2023:4849-1 | Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP4) | 2023-12-14T12:04:03Z | 2023-12-14T12:04:03Z |
| suse-su-2023:4847-1 | Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP5) | 2023-12-14T12:03:43Z | 2023-12-14T12:03:43Z |
| suse-su-2023:4844-1 | Security update for python-cryptography | 2023-12-14T11:23:23Z | 2023-12-14T11:23:23Z |
| suse-su-2023:4843-1 | Security update for python3-cryptography | 2023-12-14T11:22:51Z | 2023-12-14T11:22:51Z |
| suse-su-2023:4842-1 | Security update for python-cryptography | 2023-12-14T11:22:17Z | 2023-12-14T11:22:17Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:10309-1 | libcrypto38-2.5.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10308-1 | libplib0-1.8.5+svn.2173-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10307-1 | squid-3.5.22-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10306-1 | tnftp-20151004-1.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10305-1 | libmikmod-devel-3.3.7-1.7 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10304-1 | libzrtpcpp-devel-4.6.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10303-1 | curl-7.51.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10302-1 | gc-devel-7.4.2-3.5 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10301-1 | lib3ds-1-3-1.3.0-29.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10300-1 | libupnp-devel-1.6.19-1.8 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10299-1 | libXfont-devel-1.5.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10298-1 | libpgf-devel-6.14.12-4.6 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10297-1 | mozilla-nspr-32bit-4.12-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10296-1 | ctags-5.8-8.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10295-1 | libXrandr-devel-1.5.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10294-1 | gimp-2.8.18-1.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10293-1 | cppi-1.18-2.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10292-1 | uudeview-0.5.20-257.9 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10291-1 | salt-2016.3.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10290-1 | apache2-mod_php7-7.0.14-1.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10289-1 | stunnel-5.38-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10288-1 | libunwind-1.2~rc1-2.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10287-1 | qt3-3.3.8c-140.6 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10286-1 | mysql-connector-java-5.1.35-2.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10285-1 | qemu-linux-user-2.6.1-1.5 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10284-1 | argyllcms-1.8.3-1.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10283-1 | libminizip1-1.2.8-13.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10282-1 | cobbler-2.6.6-4.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10281-1 | jasper-1.900.14-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10280-1 | dbus-1-glib-0.108-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-17014 | Tenda O3V2 /goform/setPing文件缓冲区溢出漏洞 | 2025-07-18 | 2025-07-29 |
| cnvd-2025-17013 | Tenda O3V2 /goform/setPingInfo文件命令注入漏洞 | 2025-07-18 | 2025-07-29 |
| cnvd-2025-17012 | Tenda O3V2 /goform/setPingInfo文件缓冲区溢出漏洞 | 2025-07-18 | 2025-07-29 |
| cnvd-2025-17011 | Tenda O3V2 /goform/operateMacFilter文件缓冲区溢出漏洞 | 2025-07-18 | 2025-07-29 |
| cnvd-2025-17010 | Tenda O3V2 /goform/getTraceroute文件命令注入漏洞 | 2025-07-18 | 2025-07-29 |
| cnvd-2025-17009 | Tenda AC20缓冲区溢出漏洞 | 2025-07-28 | 2025-07-29 |
| cnvd-2025-17008 | Tenda AC20缓冲区溢出漏洞 | 2025-07-28 | 2025-07-29 |
| cnvd-2025-17525 | Adobe Substance 3D Viewer堆缓冲区溢出漏洞 | 2025-07-15 | 2025-07-28 |
| cnvd-2025-17238 | IBM Security QRadar Network Threat Analytics资源管理错误漏洞 | 2025-07-25 | 2025-07-28 |
| cnvd-2025-17152 | JetBrains TeamCity路径遍历漏洞 | 2024-02-26 | 2025-07-28 |
| cnvd-2025-17151 | JetBrains TeamCity跨站脚本漏洞(CNVD-2025-17151) | 2024-02-26 | 2025-07-28 |
| cnvd-2025-17150 | JetBrains TeamCity目录遍历漏洞 | 2024-02-26 | 2025-07-28 |
| cnvd-2025-17149 | JetBrains TeamCity路径遍历漏洞 | 2024-03-06 | 2025-07-28 |
| cnvd-2025-17148 | JetBrains TeamCity信息泄露漏洞 | 2024-03-12 | 2025-07-28 |
| cnvd-2025-17147 | JetBrains TeamCity授权问题漏洞 | 2024-03-12 | 2025-07-28 |
| cnvd-2025-17146 | JetBrains TeamCity权限问题漏洞 | 2024-03-26 | 2025-07-28 |
| cnvd-2025-17145 | TOTOLINK N350RT缓冲区溢出漏洞 | 2025-07-25 | 2025-07-28 |
| cnvd-2025-17144 | TOTOLINK T6 serverIp参数缓冲区溢出漏洞 | 2025-07-25 | 2025-07-28 |
| cnvd-2025-17143 | TOTOLINK T6 dest参数缓冲区溢出漏洞 | 2025-07-25 | 2025-07-28 |
| cnvd-2025-17142 | Microsoft Azure Functions数据伪造问题漏洞 | 2025-05-14 | 2025-07-28 |
| cnvd-2025-17141 | Microsoft Windows Media Foundation远程代码执行漏洞 | 2025-05-20 | 2025-07-28 |
| cnvd-2025-17140 | Microsoft Windows Kernel数字错误漏洞 | 2025-05-20 | 2025-07-28 |
| cnvd-2025-17139 | Microsoft PC Manager访问控制错误漏洞(CNVD-2025-17139) | 2025-07-21 | 2025-07-28 |
| cnvd-2025-17138 | Microsoft Graphics Component代码执行漏洞 | 2025-07-21 | 2025-07-28 |
| cnvd-2025-17137 | Microsoft Graphics Component权限提升漏洞(CNVD-2025-17137) | 2025-07-21 | 2025-07-28 |
| cnvd-2025-17136 | Microsoft Azure Machine Learning权限提升漏洞(CNVD-2025-17136) | 2025-07-25 | 2025-07-28 |
| cnvd-2025-17135 | Microsoft Azure Machine Learning权限提升漏洞(CNVD-2025-17135) | 2025-07-25 | 2025-07-28 |
| cnvd-2025-17134 | Microsoft Azure Machine Learning权限提升漏洞 | 2025-07-25 | 2025-07-28 |
| cnvd-2025-17133 | Microsoft Azure DevOps权限提升漏洞 | 2025-07-25 | 2025-07-28 |
| cnvd-2025-17132 | Adobe InDesign越界读取漏洞 | 2024-11-15 | 2025-07-28 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2020-avi-399 | Multiples vulnérabilités dans F5 BIG-IP | 2020-07-01T00:00:00.000000 | 2020-07-08T00:00:00.000000 |
| certfr-2020-avi-411 | Multiples vulnérabilités dans Google Android | 2020-07-07T00:00:00.000000 | 2020-07-07T00:00:00.000000 |
| certfr-2020-avi-410 | Multiples vulnérabilités dans GitLab | 2020-07-07T00:00:00.000000 | 2020-07-07T00:00:00.000000 |
| certfr-2020-avi-409 | Vulnérabilité dans IBM Db2 | 2020-07-07T00:00:00.000000 | 2020-07-07T00:00:00.000000 |
| certfr-2020-avi-408 | Multiples vulnérabilités dans Mozilla Thunderbird | 2020-07-03T00:00:00.000000 | 2020-07-03T00:00:00.000000 |
| certfr-2020-avi-407 | Vulnérabilité dans Zimbra | 2020-07-03T00:00:00.000000 | 2020-07-03T00:00:00.000000 |
| certfr-2020-avi-404 | Vulnérabilité dans les commutateurs Cisco | 2020-07-02T00:00:00.000000 | 2020-07-03T00:00:00.000000 |
| certfr-2020-avi-400 | Multiples vulnérabilités dans Microsoft Windows | 2020-07-01T00:00:00.000000 | 2020-07-03T00:00:00.000000 |
| certfr-2020-avi-406 | Multiples vulnérabilités dans Samba | 2020-07-02T00:00:00.000000 | 2020-07-02T00:00:00.000000 |
| certfr-2020-avi-405 | Multiples vulnérabilités dans Mozilla Firefox | 2020-07-02T00:00:00.000000 | 2020-07-02T00:00:00.000000 |
| certfr-2020-avi-403 | Vulnérabilité dans Wireshark | 2020-07-02T00:00:00.000000 | 2020-07-02T00:00:00.000000 |
| certfr-2020-avi-402 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2020-07-02T00:00:00.000000 | 2020-07-02T00:00:00.000000 |
| certfr-2020-avi-401 | Multiples vulnérabilités dans GitLab | 2020-07-02T00:00:00.000000 | 2020-07-02T00:00:00.000000 |
| certfr-2020-avi-398 | Vulnérabilité dans Palo Alto PAN-OS | 2020-06-30T00:00:00.000000 | 2020-06-30T00:00:00.000000 |
| certfr-2020-avi-397 | Vulnérabilité dans Apache Tomcat | 2020-06-30T00:00:00.000000 | 2020-06-30T00:00:00.000000 |
| certfr-2020-avi-396 | Vulnérabilité dans le noyau Linux de Red Hat | 2020-06-30T00:00:00.000000 | 2020-06-30T00:00:00.000000 |
| certfr-2020-avi-395 | Multiples vulnérabilités dans les produits Fortinet | 2020-06-30T00:00:00.000000 | 2020-06-30T00:00:00.000000 |
| certfr-2020-avi-394 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-06-29T00:00:00.000000 | 2020-06-29T00:00:00.000000 |
| certfr-2020-avi-393 | Vulnérabilité dans Squid | 2020-06-29T00:00:00.000000 | 2020-06-29T00:00:00.000000 |
| certfr-2020-avi-392 | Multiples vulnérabilités dans le noyau linux d'Ubuntu | 2020-06-26T00:00:00.000000 | 2020-06-26T00:00:00.000000 |
| certfr-2020-avi-391 | Vulnérabilité dans Mozilla Firefox pour iOS | 2020-06-26T00:00:00.000000 | 2020-06-26T00:00:00.000000 |
| certfr-2020-avi-390 | Multiples vulnérabilités dans Google Chrome OS | 2020-06-25T00:00:00.000000 | 2020-06-25T00:00:00.000000 |
| certfr-2020-avi-389 | Multiples vulnérabilités dans les produits VMware | 2020-06-24T00:00:00.000000 | 2020-06-24T00:00:00.000000 |
| certfr-2020-avi-388 | Vulnérabilité dans le noyau Linux de Red Hat | 2020-06-23T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| certfr-2020-avi-387 | Multiples vulnérabilités dans Google Chrome | 2020-06-23T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| certfr-2020-avi-386 | Vulnérabilité dans Fortinet FortiAnalyzer | 2020-06-23T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| certfr-2020-avi-385 | Multiples vulnérabilités dans les produits Magento | 2020-06-23T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| certfr-2020-avi-383 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-06-22T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| certfr-2020-avi-384 | Multiples vulnérabilités dans les produits Fortinet | 2020-06-22T00:00:00.000000 | 2020-06-22T00:00:00.000000 |
| certfr-2020-avi-382 | Multiples vulnérabilités dans BIND | 2020-06-19T00:00:00.000000 | 2020-06-19T00:00:00.000000 |