Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-37166	7.5 (3.1)	Unexpected shutdown in HPE Instant On Access Points af…	Hewlett Packard Enterprise (HPE)	Instant On	2026-01-13T17:42:09.716Z	2026-02-26T21:40:42.967Z
CVE-2025-12007	8.4 (3.1)	Supermicro BMC firmware update validation bypass	SMCI	X13SEM-F	2026-01-16T08:39:41.840Z	2026-02-26T21:39:58.686Z
CVE-2025-10258	6.3 (3.1)	A time-based SQL Injection vulnerability in Infinera DNA	Nokia	Infinera DNA	2026-02-05T07:13:50.948Z	2026-02-26T21:38:18.448Z
CVE-2025-41117	6.8 (3.1)	XSS in Grafana Explore stack trace	Grafana	grafana/grafana	2026-02-12T08:49:08.545Z	2026-02-26T21:38:10.871Z
CVE-2025-41081	5.1 (4.0)	Reflected Cross-Site Scripting (XSS) in IsMyGym	Zuinq Studio	IsMyGym	2026-01-20T12:11:33.663Z	2026-02-26T21:37:18.574Z
CVE-2025-14911	7.1 (4.0) 6.5 (3.1)	Integer Overflow in GridFS chunkSize Leading to Heap A…	MongoDB	Mongo-c-driver	2026-01-27T17:29:21.423Z	2026-02-26T21:36:11.900Z
CVE-2026-26207	5.4 (3.1)	DIscourse's discourse-policy plugin lacks post access check	discourse	discourse	2026-02-26T15:04:14.557Z	2026-02-26T21:33:42.157Z
CVE-2026-25941	4.3 (3.1)	FreeRDP: vuln_1_15_1 RDPGFX WIRE_TO_SURFACE_2 Out-of-B…	FreeRDP	FreeRDP	2026-02-25T19:55:24.984Z	2026-02-26T21:33:42.006Z
CVE-2026-25929	6.5 (3.1)	OpenEMR Patient Picture Context Allows Arbitrary Patie…	openemr	openemr	2026-02-25T18:46:44.816Z	2026-02-26T21:33:41.863Z
CVE-2026-25927	7.1 (3.1)	OpenEMR Missing Authorization Checks in DICOM Viewer S…	openemr	openemr	2026-02-25T18:43:25.725Z	2026-02-26T21:33:41.716Z
CVE-2026-27736	6.1 (3.1)	BigBlueButton has Open Redirect vulnerability in ApiCo…	bigbluebutton	bigbluebutton	2026-02-25T16:27:01.507Z	2026-02-26T21:33:41.504Z
CVE-2026-27695	4.3 (3.1)	zae-limiter: DynamoDB hot partition throttling enables…	zeroae	zae-limiter	2026-02-25T14:56:27.221Z	2026-02-26T21:33:41.329Z
CVE-2026-27632	2.6 (3.1)	Talishar Vulnerable to Cross-Site Request Forgery (CSRF)	Talishar	Talishar	2026-02-25T02:52:10.061Z	2026-02-26T21:33:41.129Z
CVE-2026-27629	5.9 (3.1)	InvenTree Vulnerable to Server Side Template Injection…	inventree	InvenTree	2026-02-25T02:48:41.934Z	2026-02-26T21:33:40.971Z
CVE-2026-27612	6.1 (3.1)	Repostat Vulnerable to Reflected Cross-Site Scripting …	denpiligrim	repostat	2026-02-25T02:38:05.548Z	2026-02-26T21:33:40.838Z
CVE-2026-27117	5.5 (3.1)	bit7z has a path traversal vulnerability	rikyoz	bit7z	2026-02-24T21:46:12.714Z	2026-02-26T21:33:40.678Z
CVE-2026-27156	6.1 (3.1)	NiceGUI has XSS via Code Injection	zauberzeug	nicegui	2026-02-24T17:00:21.628Z	2026-02-26T21:33:40.507Z
CVE-2026-27571	5.9 (3.1)	nats-server websockets are vulnerable to pre-auth memory DoS	nats-io	nats-server	2026-02-24T15:59:17.926Z	2026-02-26T21:33:40.372Z
CVE-2026-26066	6.2 (3.1)	ImageMagick has infinite loop when writing IPTCTEXT le…	ImageMagick	ImageMagick	2026-02-24T01:52:30.870Z	2026-02-26T21:33:40.181Z
CVE-2026-25966	5.9 (3.1)	ImageMagick's Security Policy Bypass through config/po…	ImageMagick	ImageMagick	2026-02-24T01:27:53.943Z	2026-02-26T21:33:40.025Z
CVE-2026-25967	7.4 (3.1)	ImageMagick has stack buffer overflow in FTXT reader v…	ImageMagick	ImageMagick	2026-02-24T01:29:44.758Z	2026-02-26T21:33:39.865Z
CVE-2026-25968	7.4 (3.1)	ImageMagick has MSL attribute stack buffer overflow th…	ImageMagick	ImageMagick	2026-02-24T01:30:58.881Z	2026-02-26T21:33:39.723Z
CVE-2026-25969	5.3 (3.1)	ImageMagick has Memory Leak in coders/ashlar.c	ImageMagick	ImageMagick	2026-02-24T01:33:00.362Z	2026-02-26T21:33:39.566Z
CVE-2026-25970	5.3 (3.1)	ImageMagick SIXEL Decoder Has Signed Integer Overflow,…	ImageMagick	ImageMagick	2026-02-24T01:35:36.727Z	2026-02-26T21:33:39.346Z
CVE-2026-25971	6.2 (3.1)	ImageMagick's MSL: Stack overflow in ProcessMSLScript	ImageMagick	ImageMagick	2026-02-24T01:39:21.685Z	2026-02-26T21:33:39.136Z
CVE-2025-59873	5.9 (3.1)	Session Token Exposure via URL Query Parameters	HCL Software	ZIE for Web	2026-02-23T10:56:52.305Z	2026-02-26T21:33:31.510Z
CVE-2026-3263	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	go2ismail Asp.Net-Core-Inventory-Order-Management-Syst…	go2ismail	Asp.Net-Core-Inventory-Order-Management-System	2026-02-26T21:32:08.766Z	2026-02-26T21:32:08.766Z
CVE-2026-27520	8.7 (4.0) 7.5 (3.1)	Binardat 10G08-0800GSM Network Switch Base64-encoded P…	Binardat Ltd.	10G08-0800GSM Network Switch	2026-02-24T15:07:41.085Z	2026-02-26T21:28:10.307Z
CVE-2026-28227	1.2 (4.0)	Discourse Vulnerable to Unauthorized Topic Creation in…	discourse	discourse	2026-02-26T21:27:38.926Z	2026-02-26T21:27:38.926Z
CVE-2026-28219	1.3 (4.0)	Privilege Escalation via Mass Assignment Allows Regula…	discourse	discourse	2026-02-26T21:25:36.635Z	2026-02-26T21:25:36.635Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-2506	6.1 (3.1)	EM Cost Calculator <= 2.3.1 - Unauthenticated Stored C…	motahar1	EM Cost Calculator	2026-02-26T01:24:13.651Z	2026-02-26T15:42:01.642Z
CVE-2026-2499	4.4 (3.1)	Custom Logo <= 2.2 - Authenticated (Administrator+) St…	tgrk	Custom Logo	2026-02-26T01:24:15.718Z	2026-02-26T15:10:28.820Z
CVE-2026-2498	4.4 (3.1)	WP Social Meta <= 1.0.1 - Authenticated (Administrator…	bulktheme	WP Social Meta	2026-02-26T01:24:14.553Z	2026-02-26T15:29:44.068Z
CVE-2026-2489	4.4 (3.1)	TP2WP Importer <= 1.1 - Authenticated (Administrator+)…	readymadeweb	TP2WP Importer	2026-02-26T01:24:14.916Z	2026-02-26T15:29:15.546Z
CVE-2026-24005	0 (3.1)	OpenKruise PodProbeMarker is Vulnerable to SSRF via Un…	openkruise	kruise	2026-02-25T18:53:30.170Z	2026-02-26T20:44:09.282Z
CVE-2026-24004	1.7 (4.0)	Fleet: Unauthenticated Android device disenrollment vu…	fleetdm	fleet	2026-02-26T02:43:14.600Z	2026-02-26T14:33:57.282Z
CVE-2026-23999	0.6 (4.0)	Fleet: Device lock PIN can be predicted if lock time i…	fleetdm	fleet	2026-02-26T02:45:48.099Z	2026-02-26T15:15:55.289Z
CVE-2026-23703	7.8 (3.0) 8.5 (4.0)	The installer of FinalCode Client provided by Dig…	Digital Arts Inc.	FinalCode Ver.5 series	2026-02-26T05:39:11.471Z	2026-02-26T14:25:14.491Z
CVE-2026-2356	5.3 (3.1)	User Registration & Membership <= 5.1.2 - Insecure Dir…	wpeverest	User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder	2026-02-26T02:23:55.847Z	2026-02-26T14:41:55.080Z
CVE-2026-22866	2.7 (4.0)	ENS DNSSEC Oracle Vulnerable to RSA Signature Forgery …	ensdomains	ens-contracts	2026-02-25T15:47:16.230Z	2026-02-25T20:34:05.144Z
CVE-2026-22728	4.9 (3.1)	sealed-secrets /v1/rotate can widen sealing scope to c…	Bitnami	sealed-secrets	2026-02-26T00:50:00.863Z	2026-02-26T15:58:32.372Z
CVE-2026-22721	6.2 (3.1)	VMware Aria Operations privilege escalation vulnerability	VMware	VMware Aria Operations	2026-02-25T20:00:15.719Z	2026-02-27T04:55:47.793Z
CVE-2026-22720	8 (3.1)	VMware Aria Operations stored cross-site scripting vul…	VMware	VMware Aria Operations	2026-02-25T19:33:14.729Z	2026-02-26T14:44:05.372Z
CVE-2026-22719	8.1 (3.1)	VMware Aria Operations command injection vulnerability	VMware	Aria Operations	2026-02-25T19:18:59.269Z	2026-02-26T15:50:38.075Z
CVE-2026-21902	9.8 (3.1) 9.3 (4.0)	Junos OS Evolved: PTX Series: A vulnerability allows a…	Juniper Networks	Junos OS Evolved	2026-02-25T16:59:10.672Z	2026-02-26T14:44:05.553Z
CVE-2026-2029	6.4 (3.1)	Livemesh Addons for Beaver Builder <= 3.9.2 - Authenti…	livemesh	Livemesh Addons for Beaver Builder	2026-02-26T01:24:15.342Z	2026-02-26T15:13:24.583Z
CVE-2026-20133	6.5 (3.1)	Cisco Catalyst SD-WAN Manager Information Disclosure V…	Cisco	Cisco Catalyst SD-WAN Manager	2026-02-25T16:13:56.017Z	2026-02-25T19:05:52.915Z
CVE-2026-20129	9.8 (3.1)	Cisco Catayst SD-WAN Authentication Bypass Vulnerability	Cisco	Cisco Catalyst SD-WAN Manager	2026-02-25T16:14:09.046Z	2026-02-26T14:44:06.393Z
CVE-2026-20128	7.5 (3.1)	Cisco Catalyst SD-WAN Manager Information Disclosure V…	Cisco	Cisco Catalyst SD-WAN Manager	2026-02-25T16:14:12.353Z	2026-02-26T14:44:06.220Z
CVE-2026-20126	8.8 (3.1)	Cisco Catalyst SD-WAN Manager Privilege Escalation Vul…	Cisco	Cisco Catalyst SD-WAN Manager	2026-02-25T16:13:58.856Z	2026-02-26T14:44:06.591Z
CVE-2026-20122	5.4 (3.1)	Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite…	Cisco	Cisco Catalyst SD-WAN Manager	2026-02-25T16:14:21.256Z	2026-02-25T18:14:27.915Z
CVE-2026-20107	5.5 (3.1)	Cisco Application Policy Infrastructure Controller Den…	Cisco	Cisco Application Policy Infrastructure Controller (APIC)	2026-02-25T16:14:33.988Z	2026-02-25T19:05:49.359Z
CVE-2026-20099	6.7 (3.1)	Cisco UCS Manager and FXOS Software Command Injection …	Cisco	Cisco Firepower Extensible Operating System (FXOS)	2026-02-25T16:25:38.517Z	2026-02-26T14:44:05.716Z
CVE-2026-20091	4.8 (3.1)	Cisco UCS Manager and FXOS Software Stored Cross-Site …	Cisco	Cisco Firepower Extensible Operating System (FXOS)	2026-02-25T16:24:44.412Z	2026-02-25T19:05:48.712Z
CVE-2026-20051	7.4 (3.1)	Cisco Nexus 3600-R and 9500-R Series Switching Platfor…	Cisco	Cisco NX-OS Software	2026-02-25T16:14:33.859Z	2026-02-25T19:05:49.650Z
CVE-2026-20048	7.7 (3.1)	Cisco NX-OS Software SNMP Denial of Service Vulnerability	Cisco	Cisco NX-OS System Software in ACI Mode	2026-02-25T16:26:28.329Z	2026-02-25T19:05:48.366Z
CVE-2026-20037	4.4 (3.1)	Cisco UCS Manager File Write Vulnerability	Cisco	Cisco Unified Computing System (Managed)	2026-02-25T16:24:09.650Z	2026-02-25T19:05:48.855Z
CVE-2026-20036	6.5 (3.1)	Cisco UCS Manager Software Command Injection Vulnerability	Cisco	Cisco Unified Computing System (Managed)	2026-02-25T16:14:43.296Z	2026-02-26T14:44:05.885Z
CVE-2026-20033	7.4 (3.1)	Cisco NX-OS Software Denial of Service Vulnerability	Cisco	Cisco NX-OS System Software in ACI Mode	2026-02-25T16:26:29.215Z	2026-02-25T19:05:48.146Z
CVE-2026-20010	7.4 (3.1)	Cisco Nexus 3000 and 9000 Series Switches Link Layer D…	Cisco	Cisco NX-OS Software	2026-02-25T16:18:14.561Z	2026-02-25T19:05:49.108Z

ID	Description	Published	Updated
fkie_cve-2026-2498	The WP Social Meta plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin sett…	2026-02-26T02:16:25.067	2026-02-27T14:06:59.787
fkie_cve-2026-2489	The TP2WP Importer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Watch…	2026-02-26T02:16:24.890	2026-02-27T14:06:59.787
fkie_cve-2026-24005	Kruise provides automated management of large-scale applications on Kubernetes. Prior to versions 1…	2026-02-25T19:43:21.163	2026-02-27T14:06:59.787
fkie_cve-2026-24004	Fleet is open source device management software. In versions prior to 4.80.1, a vulnerability in Fl…	2026-02-26T03:16:04.183	2026-02-27T14:06:59.787
fkie_cve-2026-23999	Fleet is open source device management software. In versions prior to 4.80.1, Fleet generated devic…	2026-02-26T03:16:04.010	2026-02-27T14:06:59.787
fkie_cve-2026-23703	The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permi…	2026-02-26T06:17:15.893	2026-02-27T14:06:59.787
fkie_cve-2026-2356	The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin …	2026-02-26T03:16:05.293	2026-02-27T14:06:59.787
fkie_cve-2026-22866	Ethereum Name Service (ENS) is a distributed, open, and extensible naming system based on the Ether…	2026-02-25T16:23:25.277	2026-02-27T14:06:59.787
fkie_cve-2026-22728	Bitnami Sealed Secrets is vulnerable to a scope-widening attack during the secret rotation (/v1/rot…	2026-02-26T02:16:20.187	2026-02-27T14:06:59.787
fkie_cve-2026-22721	VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with privil…	2026-02-25T21:16:40.277	2026-02-27T14:06:59.787
fkie_cve-2026-22720	VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with…	2026-02-25T20:23:47.077	2026-02-27T14:06:59.787
fkie_cve-2026-22719	VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated acto…	2026-02-25T20:23:46.840	2026-02-27T14:06:59.787
fkie_cve-2026-21902	An Incorrect Permission Assignment for Critical Resource vulnerability in the On-Box Anomaly detect…	2026-02-25T18:23:40.360	2026-02-27T14:06:59.787
fkie_cve-2026-2029	The Livemesh Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scri…	2026-02-26T02:16:24.723	2026-02-27T14:06:59.787
fkie_cve-2026-20133	A vulnerability in Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to…	2026-02-25T17:25:30.983	2026-02-27T14:06:59.787
fkie_cve-2026-20129	A vulnerability in the API user authentication of Cisco Catalyst SD-WAN Manager could allow an unau…	2026-02-25T17:25:30.343	2026-02-27T14:06:59.787
fkie_cve-2026-20128	A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could a…	2026-02-25T17:25:30.150	2026-02-27T14:06:59.787
fkie_cve-2026-20126	A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with …	2026-02-25T17:25:28.840	2026-02-27T14:06:59.787
fkie_cve-2026-20122	A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote at…	2026-02-25T17:25:28.170	2026-02-27T14:06:59.787
fkie_cve-2026-20107	A vulnerability in the Object Model CLI component of Cisco Application Policy Infrastructure Contro…	2026-02-25T17:25:27.990	2026-02-27T14:06:59.787
fkie_cve-2026-20099	A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Man…	2026-02-25T17:25:27.357	2026-02-27T14:06:59.787
fkie_cve-2026-20091	A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Manager …	2026-02-25T17:25:26.830	2026-02-27T14:06:59.787
fkie_cve-2026-20051	A vulnerability with the Ethernet VPN (EVPN) Layer 2 ingress packet processing of Cisco Nexus 3600 …	2026-02-25T17:25:26.487	2026-02-27T14:06:59.787
fkie_cve-2026-20048	A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Seri…	2026-02-25T17:25:25.620	2026-02-27T14:06:59.787
fkie_cve-2026-20037	A vulnerability in the NX-OS CLI privilege levels of Cisco UCS Manager Software could allow an auth…	2026-02-25T17:25:25.190	2026-02-27T14:06:59.787
fkie_cve-2026-20036	A vulnerability in the CLI and web-based management interface of Cisco UCS Manager Software could a…	2026-02-25T17:25:24.833	2026-02-27T14:06:59.787
fkie_cve-2026-20033	A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticat…	2026-02-25T17:25:24.560	2026-02-27T14:06:59.787
fkie_cve-2026-20010	A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could a…	2026-02-25T17:25:24.110	2026-02-27T14:06:59.787
fkie_cve-2026-1779	The User Registration & Membership plugin for WordPress is vulnerable to authentication bypass in v…	2026-02-26T03:16:03.827	2026-02-27T14:06:59.787
fkie_cve-2026-1698	A HTTP Host header attack vulnerability affects WebClient and the WebScheduler web apps of PcVue in…	2026-02-26T08:16:19.897	2026-02-27T14:06:59.787

ID	Severity	Description	Published	Updated
ghsa-p5q4-qc3r-2w36	7.3 (4.0)	Improper neutralization of input in Checkmk versions 2.4.0 before 2.4.0p22, and 2.3.0 before 2.3.0p…	2026-02-26T12:30:25Z	2026-02-26T12:30:25Z
ghsa-ggxg-6g5h-6m7w	8.6 (4.0)	SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window…	2026-02-26T12:30:25Z	2026-02-26T12:30:25Z
ghsa-hrx4-rccm-xj6c	6.1 (3.1)	A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing 25…	2025-12-05T18:31:11Z	2026-02-26T09:30:27Z
ghsa-7693-hmcm-7whx	5.3 (4.0)	An XSS vulnerability affects the OAuth web services used by the WebVue, WebScheduler, TouchVue and …	2026-02-26T09:30:27Z	2026-02-26T09:30:27Z
ghsa-6hjh-5rvg-rp2f	2.3 (4.0)	HTTP headers are added by the default configuration of IIS and ASP.net, and are not removed at the …	2026-02-26T09:30:27Z	2026-02-26T09:30:27Z
ghsa-5w3f-m935-fxvq	5.3 (4.0)	The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservi…	2026-02-26T09:30:27Z	2026-02-26T09:30:27Z
ghsa-4v7c-97mg-h3wh	5.3 (4.0)	The Secure and SameSite attribute are missing in the GraphicalData web services and WebClient web a…	2026-02-26T09:30:27Z	2026-02-26T09:30:27Z
ghsa-4r52-fgmg-vqxc	2.3 (4.0)	Some HTTP security headers are not properly set by the web server when sending responses to the cli…	2026-02-26T09:30:27Z	2026-02-26T09:30:27Z
ghsa-3fqx-3cg9-chg9	5.3 (4.0)	A missing origin validation in WebSockets vulnerability affects the GraphicalData web services used…	2026-02-26T09:30:27Z	2026-02-26T09:30:27Z
ghsa-35x7-r658-wx7f	5.3 (4.0)	A HTTP Host header attack vulnerability affects WebClient and the WebScheduler web apps of PcVue in…	2026-02-26T09:30:27Z	2026-02-26T09:30:27Z
ghsa-xp3r-qr68-xr3w	8.8 (3.1)	The Worry Proof Backup plugin for WordPress is vulnerable to Path Traversal in all versions up to, …	2026-02-26T06:30:51Z	2026-02-26T06:30:51Z
ghsa-jx5h-hvfq-fcgj	7.8 (3.1) 8.4 (4.0)	The installer of FinalCode Client provided by Digital Arts Inc. contains an issue with the DLL sear…	2026-02-26T06:30:51Z	2026-02-26T06:30:51Z
ghsa-627f-gvh5-phrq	7.8 (3.1) 8.5 (4.0)	The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permi…	2026-02-26T06:30:51Z	2026-02-26T06:30:51Z
ghsa-xm8p-wgjh-pfxf	8.1 (3.1)	The User Registration & Membership plugin for WordPress is vulnerable to authentication bypass in v…	2026-02-26T03:31:18Z	2026-02-26T03:31:18Z
ghsa-mhrq-g838-222j	6.1 (3.1)	The EM Cost Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting in version…	2026-02-26T03:31:18Z	2026-02-26T03:31:18Z
ghsa-mfwc-76p3-m2rc	5.3 (3.1)	The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin …	2026-02-26T03:31:18Z	2026-02-26T03:31:18Z
ghsa-hvcw-qp77-8m24	7.5 (3.1)	The WP Responsive Images plugin for WordPress is vulnerable to Path Traversal in all versions up to…	2026-02-26T03:31:17Z	2026-02-26T03:31:18Z
ghsa-fq9v-x83p-g6p3	4.4 (3.1)	The WP Social Meta plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin sett…	2026-02-26T03:31:18Z	2026-02-26T03:31:18Z
ghsa-cm5v-3h7v-m7cv	4.4 (3.1)	The TP2WP Importer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Watch…	2026-02-26T03:31:18Z	2026-02-26T03:31:18Z
ghsa-9rg8-r3vc-rhj3	6.4 (3.1)	The Livemesh Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scri…	2026-02-26T03:31:18Z	2026-02-26T03:31:18Z
ghsa-2rhh-26wh-jr9r	4.4 (3.1)	The Custom Logo plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin setting…	2026-02-26T03:31:18Z	2026-02-26T03:31:18Z
ghsa-8c83-cvgq-pp7w	8.8 (3.1) 8.6 (4.0)	EventSentry versions prior to 6.0.1.20 contain an unverified password change vulnerability in the a…	2026-02-24T21:31:47Z	2026-02-26T03:31:17Z
ghsa-36vc-76hh-jxcp	5.3 (3.1) 5.3 (4.0)	User Interface (UI) Misrepresentation of Critical Information vulnerability in OpenText™ Directory …	2026-02-20T00:31:53Z	2026-02-26T03:31:17Z
ghsa-jv85-6mgr-3w99	6.3 (3.1) 2.1 (4.0)	A vulnerability has been found in fosrl Pangolin up to 1.15.4-s.3. This affects the function verify…	2026-02-26T00:31:24Z	2026-02-26T00:31:25Z
ghsa-jmvf-vwrm-vhw5	5.4 (3.1)	The The Events Calendar plugin for WordPress is vulnerable to unauthorized modification of data and…	2026-02-26T00:31:24Z	2026-02-26T00:31:24Z
ghsa-wvhq-3h88-rf6g	9.8 (3.1)	Issue summary: Parsing CMS AuthEnvelopedData message with maliciously crafted AEAD parameters can t…	2026-01-27T18:32:15Z	2026-02-26T00:31:23Z
ghsa-jhr5-g8vv-6x3q	6.5 (3.1)	Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart al…	2026-02-20T18:31:34Z	2026-02-26T00:31:23Z
ghsa-h886-6wvm-63qx	8.8 (3.1)	Authentication Bypass Using an Alternate Path or Channel vulnerability in kamleshyadav Miraculous E…	2026-02-20T18:31:34Z	2026-02-26T00:31:23Z
ghsa-gvgc-7vpx-c4jp	6.5 (3.1)	Missing Authorization vulnerability in uixthemes Konte konte allows Exploiting Incorrectly Configur…	2026-02-20T18:31:33Z	2026-02-26T00:31:23Z
ghsa-58qh-jxh9-rvp5	6.5 (3.1)	Missing Authorization vulnerability in knitpay UPI QR Code Payment Gateway for WooCommerce upi-qr-c…	2026-02-20T18:31:34Z	2026-02-26T00:31:23Z

ID	Severity	Description	Package	Published	Updated
pysec-2024-106	5.0 (3.1)	Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modif…	exiv2	2024-02-12T23:15:00+00:00	2024-10-23T00:00:00+00:00
pysec-2024-109	7.8 (3.1)	DeepSpeed Remote Code Execution Vulnerability	deepspeed	2024-10-08T18:15:00+00:00	2024-10-17T23:22:43.000269+00:00
pysec-2024-108	7.5 (3.1)	A path traversal vulnerability exists in the parisneo/lollms application, affecting versi…	lollms	2024-06-06T19:16:00+00:00	2024-10-17T17:21:59.592496+00:00
pysec-2021-879	6.5 (3.1)	An uncontrolled memory allocation in DataBufdata(subBox.length-sizeof(box)) function of E…	exiv2	2021-08-19T22:15:00+00:00	2024-10-15T17:22:01.866867+00:00
pysec-2024-105	3.1 (3.1)	A race condition vulnerability exists in zenml-io/zenml versions up to and including 0.55…	zenml	2024-06-06T19:15:00+00:00	2024-10-11T17:21:29.672975+00:00
pysec-2024-104	5.3 (3.1)	A vulnerability was found in JWCrypto. This flaw allows an attacker to cause a denial of …	jwcrypto	2024-02-12T14:15:00+00:00	2024-10-10T17:22:00.587279+00:00
pysec-2024-103	9.8 (3.1)	Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. The `concat…	vyper	2024-01-18T19:15:00+00:00	2024-10-09T23:22:49.818476+00:00
pysec-2023-262	9.8 (3.1)	main.py in Searchor before 2.4.2 uses eval on CLI input, which may cause unexpected code …	searchor	2023-12-12T18:15:00+00:00	2024-10-09T19:20:24.594458+00:00
pysec-2023-243	7.4 (3.1)	Missing SSL certificate validation in localstack v2.3.2 allows attackers to eavesdrop on …	localstack	2023-11-16T18:15:00Z	2024-10-09T12:05:48.156835Z
pysec-2024-102		An issue was discovered in Django 5.1 before 5.1.1, 5.0 before 5.0.9, and 4.2 before 4.2.…	django	2024-10-08T16:15:00+00:00	2024-10-08T19:19:01.400873+00:00
pysec-2024-101	6.5 (3.1)	OpenC3 COSMOS provides the functionality needed to send commands to and receive data from…	openc3	2024-10-02T20:15:00+00:00	2024-10-08T17:22:06.539206+00:00
pysec-2024-100	6.1 (3.1)	OpenC3 COSMOS provides the functionality needed to send commands to and receive data from…	openc3	2024-10-02T20:15:00+00:00	2024-10-08T17:22:06.493109+00:00
pysec-2024-99	7.5 (3.1)	OpenSlides 4.0.15 was discovered to be using a weak hashing algorithm to store passwords.	openslides	2024-09-25T15:15:00+00:00	2024-10-01T21:22:35.777428+00:00
pysec-2023-261	9.8 (3.1)	SAP BTP Security Services Integration Library ([Python] sap-xssec) - versions < 4.1.0, al…	sap-xssec	2023-12-12T02:15:00+00:00	2024-09-29T00:37:11.092461+00:00
pysec-2024-98	9.8 (3.1)	UNSUPPORTED WHEN ASSIGNED Incorrect Authorization vulnerability in Apache Submarine…	apache-submarine	2024-06-12T15:15:00+00:00	2024-09-26T17:22:54.526846+00:00
pysec-2024-97	9.8 (3.1)	UNSUPPORTED WHEN ASSIGNED Improper Authentication vulnerability in Apache Submarine…	apache-submarine	2024-06-12T14:15:00+00:00	2024-09-26T17:22:54.470974+00:00
pysec-2024-96	7.5 (3.1)	A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affe…	micropython-string	2024-09-17T19:15:00+00:00	2024-09-25T06:23:56.151249+00:00
pysec-2024-95	7.5 (3.1)	A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affe…	micropython-os-path	2024-09-17T19:15:00+00:00	2024-09-25T06:23:56.045949+00:00
pysec-2024-94	8.1 (3.1)	A vulnerability was found in MicroPython 1.22.2. It has been declared as critical. Affect…	micropython-io	2024-09-17T19:15:00+00:00	2024-09-25T06:23:55.930133+00:00
pysec-2024-93	7.5 (3.1)	A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affe…	micropython-io	2024-09-17T19:15:00+00:00	2024-09-25T06:23:55.864558+00:00
pysec-2024-92	8.1 (3.1)	A vulnerability was found in MicroPython 1.22.2. It has been declared as critical. Affect…	micropython-copy	2024-09-17T19:15:00+00:00	2024-09-25T06:23:55.787891+00:00
pysec-2024-91	7.5 (3.1)	A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affe…	micropython-copy	2024-09-17T19:15:00+00:00	2024-09-25T06:23:55.729708+00:00
pysec-2024-90	6.1 (3.1)	Indico is an event management system that uses Flask-Multipass, a multi-backend authentic…	indico	2024-09-04T20:15:00+00:00	2024-09-25T06:23:55.564403+00:00
pysec-2024-89	7.5 (3.1)	A vulnerability was found in MicroPython 1.23.0. It has been rated as critical. Affected …	micropython-os	2024-09-17T19:15:00+00:00	2024-09-23T21:22:09.689786+00:00
pysec-2024-88	7.5 (3.1)	A vulnerability was found in MicroPython 1.23.0. It has been rated as critical. Affected …	micropython-io	2024-09-17T19:15:00+00:00	2024-09-23T21:22:09.570550+00:00
pysec-2024-87	7.5 (3.1)	A vulnerability was found in MicroPython 1.23.0. It has been rated as critical. Affected …	micropython-copy	2024-09-17T19:15:00+00:00	2024-09-23T21:22:09.445188+00:00
pysec-2024-86	4.9 (3.1)	Wagtail is an open source content management system built on Django. A bug in Wagtail's `…	wagtail	2024-07-11T16:15:00+00:00	2024-09-19T19:20:17.668744+00:00
pysec-2024-72	8.8 (3.1)	LF Edge eKuiper is a lightweight IoT data analytics and stream processing engine running …	ekuiper	2024-08-20T15:15:00Z	2024-09-18T07:04:07.042699Z
pysec-2024-81	8.8 (3.1)	An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of …	mindsdb	2024-09-12T13:15:00+00:00	2024-09-16T19:20:05.004524+00:00
pysec-2024-80	8.8 (3.1)	An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of …	mindsdb	2024-09-12T13:15:00+00:00	2024-09-16T19:20:04.922906+00:00

ID	Description	Type

ID	Description	Updated
gsd-2024-33210	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.762839Z
gsd-2024-33504	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.762620Z
gsd-2024-33274	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.762400Z
gsd-2024-33507	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.762188Z
gsd-2024-33230	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.761978Z
gsd-2024-33505	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.761772Z
gsd-2024-33227	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.761572Z
gsd-2024-33092	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.761371Z
gsd-2024-33276	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.761165Z
gsd-2024-33023	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.760968Z
gsd-2024-33222	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.760715Z
gsd-2024-33422	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.760522Z
gsd-2024-33360	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.760329Z
gsd-2024-33383	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.760137Z
gsd-2024-33376	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.759944Z
gsd-2024-33273	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.759747Z
gsd-2024-33521	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.759531Z
gsd-2024-33177	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.759333Z
gsd-2024-33443	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.759133Z
gsd-2024-33059	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.758936Z
gsd-2024-33031	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.758739Z
gsd-2024-33147	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.758533Z
gsd-2024-33084	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.758274Z
gsd-2024-33365	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.758070Z
gsd-2024-33432	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.757872Z
gsd-2024-33037	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.757663Z
gsd-2024-33136	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.757468Z
gsd-2024-33386	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.757270Z
gsd-2024-33465	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.757068Z
gsd-2024-33013	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.756870Z

ID	Description	Published	Updated
mal-2026-525	Malicious code in sandbox-hooks (npm)	2026-01-27T02:25:01Z	2026-02-02T05:56:30Z
mal-2026-611	Malicious code in mbo-letters-cl (npm)	2026-01-30T23:13:08Z	2026-02-02T05:56:29Z
mal-2026-597	Malicious code in n8n-nodes-comfyui-illu (npm)	2026-01-29T03:52:09Z	2026-02-02T05:56:29Z
mal-2026-573	Malicious code in primebeem-db (npm)	2026-01-28T07:27:26Z	2026-02-02T05:56:29Z
mal-2026-572	Malicious code in pino-debugger (npm)	2026-01-28T07:37:08Z	2026-02-02T05:56:29Z
mal-2026-571	Malicious code in okijuh (npm)	2026-01-28T07:56:55Z	2026-02-02T05:56:29Z
mal-2026-558	Malicious code in n8n-zalo-fevox (npm)	2026-01-28T06:59:38Z	2026-02-02T05:56:29Z
mal-2026-557	Malicious code in n8n-nodes-zalo-fevox (npm)	2026-01-28T06:59:38Z	2026-02-02T05:56:29Z
mal-2026-541	Malicious code in pump.js (npm)	2026-01-27T08:11:31Z	2026-02-02T05:56:29Z
mal-2026-540	Malicious code in n8n-nodes-xkwqpzrt-jmflhvbn-dsyocgxwmkelpt (npm)	2026-01-27T07:57:56Z	2026-02-02T05:56:29Z
mal-2026-539	Malicious code in n8n-nodes-gg-udhasudsh-hgjkhg-official (npm)	2026-01-27T07:57:56Z	2026-02-02T05:56:29Z
mal-2026-538	Malicious code in n8n-nodes-gasdhgfuy-rejerw-ytjsadx (npm)	2026-01-27T07:57:56Z	2026-02-02T05:56:29Z
mal-2026-537	Malicious code in mysql2.js (npm)	2026-01-27T08:11:31Z	2026-02-02T05:56:29Z
mal-2026-536	Malicious code in morgan.js (npm)	2026-01-27T08:11:31Z	2026-02-02T05:56:29Z
mal-2026-516	Malicious code in overstock-login-layer (npm)	2026-01-25T15:01:01Z	2026-02-02T05:56:29Z
mal-2026-515	Malicious code in overstock-jenkins (npm)	2026-01-23T21:37:36Z	2026-02-02T05:56:29Z
mal-2026-514	Malicious code in overstock-health-express (npm)	2026-01-23T21:00:46Z	2026-02-02T05:56:29Z
mal-2026-513	Malicious code in overstock-component-library-v3 (npm)	2026-01-25T14:59:25Z	2026-02-02T05:56:29Z
mal-2026-512	Malicious code in overstock-component-library (npm)	2026-01-25T15:11:29Z	2026-02-02T05:56:29Z
mal-2026-511	Malicious code in ostk-otel-autoconfig (npm)	2026-01-25T14:59:26Z	2026-02-02T05:56:29Z
mal-2026-599	Malicious code in jwt-pack (npm)	2026-01-29T04:14:08Z	2026-02-02T05:56:28Z
mal-2026-592	Malicious code in lvldragdrop (npm)	2026-01-28T16:39:23Z	2026-02-02T05:56:28Z
mal-2026-591	Malicious code in kol7a (npm)	2026-01-28T16:39:23Z	2026-02-02T05:56:28Z
mal-2026-570	Malicious code in lyatly-utils (npm)	2026-01-28T07:58:35Z	2026-02-02T05:56:28Z
mal-2026-552	Malicious code in json-mapping-web (npm)	2026-01-28T03:24:26Z	2026-02-02T05:56:28Z
mal-2026-535	Malicious code in knex.js (npm)	2026-01-27T08:11:31Z	2026-02-02T05:56:28Z
mal-2026-534	Malicious code in internallib_v828 (npm)	2026-01-27T08:12:56Z	2026-02-02T05:56:28Z
mal-2026-533	Malicious code in hiagentxhjrceme (npm)	2026-01-27T08:08:59Z	2026-02-02T05:56:28Z
mal-2026-532	Malicious code in hiagentxhjrce (npm)	2026-01-27T08:08:59Z	2026-02-02T05:56:28Z
mal-2026-524	Malicious code in mapkit-example-vue (npm)	2026-01-27T02:25:01Z	2026-02-02T05:56:28Z

ID	Description	Published	Updated
wid-sec-w-2025-1807	IBM WebSphere Application Server Liberty: Mehrere Schwachstellen	2025-08-12T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1591	IBM WebSphere Application Server: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-17T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1582	IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service	2025-07-16T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1335	Apache Tomcat: Mehrere Schwachstellen	2025-06-16T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1169	Apache Commons BeanUtils: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-05-29T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1144	GIMP: Mehrere Schwachstellen ermöglichen Codeausführung	2025-05-25T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-0944	GIMP: Schwachstelle ermöglicht Codeausführung	2025-05-05T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-0879	BusyBox: Mehrere Schwachstellen	2025-04-23T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-0524	Red Hat Ansible Automation Platform (Jinja): Schwachstelle ermöglicht Codeausführung	2025-03-11T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2023-2024	Node.js: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2023-08-09T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2022-1354	Red Hat Enterprise Linux: Mehrere Schwachstellen	2021-05-04T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2903	IBM App Connect Enterprise: Schwachstelle ermöglicht Denial of Service	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2902	WatchGuard Firebox OS (iked process): Schwachstelle ermöglicht Codeausführung	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2901	ConnectWise ScreenConnect: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2900	Dell PowerEdge: Schwachstelle ermöglicht Codeausführung	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2899	Kibana: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2898	avahi: Schwachstelle ermöglicht Denial of Service	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2896	Elasticsearch: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2895	M-Files Server: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2894	Foxit PDF Reader und Editor: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2893	Checkmk: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2892	Apache Nifi: Schwachstelle ermöglicht Codeausführung	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2890	Microsoft Azure Komponenten: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2889	Microsoft Edge für Android: Schwachstelle ermöglicht Darstellen falscher Informationen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2884	QEMU (virtio-crypto): Schwachstelle ermöglicht Denial of Service	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2883	Red Hat Enterprise AI Inference Server (vLLM): Schwachstelle ermöglicht Codeausführung	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2879	DriveLock: Mehrere Schwachstellen	2025-12-17T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2873	SonicWall SMA1000 (AMC): Schwachstelle ermöglicht Privilegieneskalation	2025-12-17T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2869	Mozilla Firefox für iOS: Schwachstelle ermöglicht Darstellen falscher Informationen	2025-12-16T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2411	ImageMagick: Schwachstelle ermöglicht Denial of Service	2025-10-26T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2024-0389	Kwetsbaarheden verholpen in Apple iOS en iPadOS	2024-10-04T10:11:42.963861Z	2024-10-04T10:11:42.963861Z
ncsc-2024-0388	Kwetsbaarheden verholpen in Draytek Vigor routers	2024-10-04T09:52:41.945864Z	2024-10-04T09:52:41.945864Z
ncsc-2024-0387	Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird	2024-10-02T09:07:21.241299Z	2024-10-02T09:07:21.241299Z
ncsc-2024-0384	Kwetsbaarheden ontdekt in CUPS	2024-09-27T08:45:53.798141Z	2024-10-02T08:45:09.718543Z
ncsc-2024-0385	Kwetsbaarheden verholpen in Foxit PDF Editor en PDF Reader	2024-09-30T09:41:20.295003Z	2024-09-30T09:41:20.295003Z
ncsc-2024-0383	Kwetsbaarheden verholpen in Aruba Networks ArubaOS	2024-09-26T09:00:05.136774Z	2024-09-26T09:00:05.136774Z
ncsc-2024-0382	Kwetsbaarheden verholpen in Apple iOS en iPadOS	2024-09-26T08:52:21.805564Z	2024-09-26T08:52:21.805564Z
ncsc-2024-0381	Kwetsbaarheden verholpen in Apple MacOS	2024-09-26T08:48:34.451990Z	2024-09-26T08:48:34.451990Z
ncsc-2024-0380	Kwetsbaarheid verholpen in pgAdmin	2024-09-24T06:36:30.438686Z	2024-09-24T07:31:32.768856Z
ncsc-2024-0379	Kwetsbaarheden verholpen in Ivanti Cloud Services Appliance	2024-09-20T07:57:16.737952Z	2024-09-20T07:57:16.737952Z
ncsc-2024-0378	Kwetsbaarheden verholpen in SAP producten	2024-09-19T11:37:39.757598Z	2024-09-19T11:37:39.757598Z
ncsc-2024-0376	Kwetsbaarheden verholpen in Docker Desktop	2024-09-18T11:25:01.116345Z	2024-09-18T11:25:01.116345Z
ncsc-2024-0369	Kwetsbaarheden verholpen in Ivanti Endpoint Manager	2024-09-11T09:39:20.224400Z	2024-09-13T17:00:35.302643Z
ncsc-2024-0375	Kwetsbaarheid verholpen in Rockwell Automation FactoryTalk View Site	2024-09-13T08:52:23.143943Z	2024-09-13T08:52:23.143943Z
ncsc-2024-0374	Kwetsbaarheid verholpen in Rockwell Automation ThinManager	2024-09-13T08:46:33.745410Z	2024-09-13T08:46:33.745410Z
ncsc-2024-0373	Kwetsbaarheden verholpen in GitLab Enterprise Edition en Community Edition	2024-09-13T08:44:24.003809Z	2024-09-13T08:44:24.003809Z
ncsc-2024-0372	Kwetsbaarheden verholpen in Citrix Workspace App for Windows	2024-09-13T08:42:05.882665Z	2024-09-13T08:42:05.882665Z
ncsc-2024-0371	Kwetsbaarheden verholpen in Cisco IOS XR	2024-09-13T08:40:26.656280Z	2024-09-13T08:40:26.656280Z
ncsc-2024-0370	Kwetsbaarheden verholpen in Solarwinds Access Rights Manager	2024-09-13T08:30:38.806820Z	2024-09-13T08:30:38.806820Z
ncsc-2024-0368	Kwetsbaarheden verholpen in Adobe producten	2024-09-11T09:31:21.515977Z	2024-09-11T09:31:21.515977Z
ncsc-2024-0367	Kwetsbaarheden verholpen in Microsoft Dynamics	2024-09-10T18:28:04.110959Z	2024-09-10T18:28:04.110959Z
ncsc-2024-0366	Kwetsbaarheden verholpen in Microsoft Azure	2024-09-10T18:27:15.880741Z	2024-09-10T18:27:15.880741Z
ncsc-2024-0365	Kwetsbaarheden verholpen in Microsoft Office	2024-09-10T18:23:10.239728Z	2024-09-10T18:23:10.239728Z
ncsc-2024-0364	Kwetsbaarheden verholpen in Microsoft SQL Server	2024-09-10T18:22:18.355522Z	2024-09-10T18:22:18.355522Z
ncsc-2024-0363	Kwetsbaarheden verholpen in Microsoft Windows	2024-09-10T18:21:28.305189Z	2024-09-10T18:21:28.305189Z
ncsc-2024-0362	Kwetsbaarheden verholpen in Siemens producten	2024-09-10T18:20:41.668720Z	2024-09-10T18:20:41.668720Z
ncsc-2024-0353	Kwetsbaarheid verholpen in Sonicwall SonicOS	2024-08-27T12:45:37.679365Z	2024-09-10T12:34:18.650826Z
ncsc-2024-0361	Kwetsbaarheden verholpen in QNAP QTS en QTS Hero	2024-09-10T10:56:51.207746Z	2024-09-10T10:56:51.207746Z
ncsc-2024-0360	Kwetsbaarheid verholpen in Kemp LoadMaster	2024-09-06T08:02:25.414309Z	2024-09-06T08:02:25.414309Z
ncsc-2024-0358	Kwetsbaarheden verholpen in Google Android en Samsung Mobile	2024-09-05T12:02:20.203769Z	2024-09-05T12:02:20.203769Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2025:3779	Red Hat Security Advisory: OpenShift Container Platform 4.13.57 security and extras update	2025-04-17T00:57:56+00:00	2026-02-17T07:58:53+00:00
rhsa-2025:3775	Red Hat Security Advisory: OpenShift Container Platform 4.18.9 bug fix and security update	2025-04-16T06:12:24+00:00	2026-02-17T07:58:53+00:00
rhsa-2025:3773	Red Hat Security Advisory: delve and golang security update	2025-04-10T01:04:23+00:00	2026-02-17T07:58:52+00:00
rhsa-2025:3740	Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.5.1 release	2025-04-09T08:52:08+00:00	2026-02-17T07:58:52+00:00
rhsa-2025:3772	Red Hat Security Advisory: go-toolset:rhel8 security update	2025-04-10T01:06:33+00:00	2026-02-17T07:58:51+00:00
rhsa-2025:3763	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.2 container image updates	2025-04-09T16:37:37+00:00	2026-02-17T07:58:50+00:00
rhsa-2025:3743	Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.5.1 release	2025-04-09T09:53:12+00:00	2026-02-17T07:58:50+00:00
rhsa-2025:3720	Red Hat Security Advisory: multicluster engine for Kubernetes 2.8.1 container image updates	2025-04-08T23:25:49+00:00	2026-02-17T07:58:48+00:00
rhsa-2025:3698	Red Hat Security Advisory: opentelemetry-collector security update	2025-04-08T15:23:59+00:00	2026-02-17T07:58:48+00:00
rhsa-2025:3685	Red Hat Security Advisory: Red Hat Edge Manager Version 0.5.1 (Technology Preview) security fixes	2025-04-08T13:01:54+00:00	2026-02-17T07:58:48+00:00
rhsa-2025:3593	Red Hat Security Advisory: opentelemetry-collector security update	2025-04-03T13:38:52+00:00	2026-02-17T07:58:48+00:00
rhsa-2025:3671	Red Hat Security Advisory: python-jinja2 security update	2025-04-08T05:54:09+00:00	2026-02-17T07:58:46+00:00
rhsa-2025:3622	Red Hat Security Advisory: python-jinja2 security update	2025-04-07T02:17:30+00:00	2026-02-17T07:58:46+00:00
rhsa-2025:3618	Red Hat Security Advisory: grafana security update	2025-04-07T02:07:30+00:00	2026-02-17T07:58:46+00:00
rhsa-2025:3616	Red Hat Security Advisory: grafana security update	2025-04-07T01:59:15+00:00	2026-02-17T07:58:44+00:00
rhsa-2025:3607	Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.5.1 release	2025-04-04T13:38:55+00:00	2026-02-17T07:58:44+00:00
rhsa-2025:3595	Red Hat Security Advisory: Red Hat Developer Hub 1.4.3 release.	2025-04-03T15:16:21+00:00	2026-02-17T07:58:44+00:00
rhsa-2025:3588	Red Hat Security Advisory: python-jinja2 security update	2025-04-03T10:46:30+00:00	2026-02-17T07:58:41+00:00
rhsa-2025:3586	Red Hat Security Advisory: python-jinja2 security update	2025-04-03T10:38:50+00:00	2026-02-17T07:58:39+00:00
rhsa-2025:3585	Red Hat Security Advisory: python-jinja2 security update	2025-04-03T10:35:05+00:00	2026-02-17T07:58:39+00:00
rhsa-2025:3577	Red Hat Security Advisory: OpenShift Container Platform 4.18.8 bug fix and security update	2025-04-10T11:37:31+00:00	2026-02-17T07:58:39+00:00
rhsa-2025:3580	Red Hat Security Advisory: python-jinja2 security update	2025-04-03T09:49:20+00:00	2026-02-17T07:58:37+00:00
rhsa-2025:3569	Red Hat Security Advisory: OpenShift Container Platform 4.14.50 bug fix and security update	2025-04-09T20:55:32+00:00	2026-02-17T07:58:37+00:00
rhsa-2025:3568	Red Hat Security Advisory: OpenShift Container Platform 4.14.50 security and extras update	2025-04-09T01:19:57+00:00	2026-02-17T07:58:36+00:00
rhsa-2025:3565	Red Hat Security Advisory: OpenShift Container Platform 4.17.24 bug fix and security update	2025-04-09T04:47:09+00:00	2026-02-17T07:58:35+00:00
rhsa-2025:3562	Red Hat Security Advisory: python-jinja2 security update	2025-04-03T06:05:14+00:00	2026-02-17T07:58:34+00:00
rhsa-2025:3503	Red Hat Security Advisory: Red Hat build of Cryostat security update	2025-04-02T04:03:14+00:00	2026-02-17T07:58:33+00:00
rhsa-2025:3501	Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.15.1-4 Update	2025-04-01T20:50:35+00:00	2026-02-17T07:58:32+00:00
rhsa-2025:3498	Red Hat Security Advisory: Red Hat multicluster global hub 1.2.2 bug fixes and container update	2025-04-01T21:01:14+00:00	2026-02-17T07:58:32+00:00
rhsa-2025:3491	Red Hat Security Advisory: Satellite 6.15.5.2 Async Update	2025-04-01T15:15:14+00:00	2026-02-17T07:58:31+00:00

ID	Description	Published	Updated
icsa-14-128-01	Digi International OpenSSL Vulnerability	2014-02-08T07:00:00.000000Z	2025-06-09T19:48:34.797683Z
icsa-14-126-01a	ABB Relion 650 Series OpenSSL Vulnerability (Update A)	2014-02-06T07:00:00.000000Z	2025-06-09T19:48:28.398218Z
icsa-14-121-01	AMTELCO miSecure Vulnerabilities	2014-02-01T07:00:00.000000Z	2025-06-09T19:48:15.910849Z
icsa-14-105-03b	Siemens Industrial Products OpenSSL Heartbleed Vulnerability (Update B)	2014-01-16T07:00:00.000000Z	2025-06-09T19:48:09.507058Z
icsa-14-100-01	IOServer Out of Bounds Read Vulnerability	2014-01-11T07:00:00.000000Z	2025-06-09T19:48:03.239416Z
icsa-14-098-03	Siemens Ruggedcom WIN Products BEAST Attack Vulnerability	2014-01-09T07:00:00.000000Z	2025-06-09T19:47:56.923899Z
icsa-14-098-02	WellinTech KingSCADA Stack-Based Buffer Overflow	2014-01-09T07:00:00.000000Z	2025-06-09T19:47:50.675225Z
icsa-14-098-01	OSIsoft PI Interface for DNP3 Improper Input Validation	2014-01-09T07:00:00.000000Z	2025-06-09T19:47:38.220384Z
icsa-14-093-01	Schneider Electric OPC Factory Server Buffer Overflow	2014-01-04T07:00:00.000000Z	2025-06-09T19:47:31.991088Z
icsa-14-091-01	Ecava IntegraXor Guest Account Information Disclosure Vulnerability	2014-01-02T07:00:00.000000Z	2025-06-09T19:47:25.741463Z
icsa-14-087-01a	Siemens ROS Improper Input Validation (Update A)	2014-12-29T07:00:00.000000Z	2025-06-09T19:47:19.488644Z
icsa-14-079-03	Advantech WebAccess Vulnerabilities	2014-12-21T07:00:00.000000Z	2025-06-09T19:46:04.209691Z
icsa-14-079-02	Siemens SIMATIC S7-1200 Vulnerabilities	2014-12-21T07:00:00.000000Z	2025-06-09T19:45:26.869178Z
icsa-14-079-01	Siemens SIMATIC S7-1200 Improper Input Validation Vulnerabilities	2014-12-21T07:00:00.000000Z	2025-06-09T19:45:14.365556Z
icsa-14-073-01	Siemens SIMATIC S7-1500 CPU Firmware Vulnerabilities	2014-12-15T07:00:00.000000Z	2025-06-09T19:44:18.044591Z
icsa-14-072-01	Schneider Electric StruxureWare SCADA Expert ClearSCADA Parsing Vulnerability	2014-12-14T07:00:00.000000Z	2025-06-09T19:44:11.598662Z
icsa-14-070-01a	Yokogawa CENTUM CS 3000 Vulnerabilities (Update A)	2014-12-12T07:00:00.000000Z	2025-06-09T19:43:46.423532Z
icsa-14-058-02	Schneider Electric OFS Buffer Overflow Vulnerability	2014-11-30T07:00:00.000000Z	2025-06-09T19:43:40.210642Z
icsa-14-058-01	Schneider Electric Floating License Manager Vulnerability	2014-11-30T07:00:00.000000Z	2025-06-09T19:43:33.991609Z
icsa-14-051-04	NTP Reflection Attack	2014-11-23T07:00:00.000000Z	2025-06-09T19:43:27.743131Z
icsa-14-051-03b	Siemens RuggedCom Uncontrolled Resource Consumption Vulnerability (Update B)	2014-11-23T07:00:00.000000Z	2025-06-09T19:43:21.515365Z
icsa-14-051-02	Mitsubishi Electric Automation MC-WorX Suite Unsecure ActiveX Control	2014-11-23T07:00:00.000000Z	2025-06-09T19:43:15.290237Z
icsa-14-051-01	ICONICS GENESIS32 Insecure ActiveX Control	2014-11-23T07:00:00.000000Z	2025-06-09T19:43:09.046616Z
icsa-14-035-01	Siemens SIMATIC WinCC OA Multiple Vulnerabilities	2014-11-07T07:00:00.000000Z	2025-06-09T19:42:44.156944Z
icsa-14-030-01	3S CoDeSys Runtime Toolkit NULL Pointer Dereference	2014-11-02T06:00:00.000000Z	2025-06-09T19:42:37.929242Z
icsa-14-023-01	GE Proficy Vulnerabilities	2014-10-26T06:00:00.000000Z	2025-06-09T19:42:31.704274Z
icsa-14-021-01	Rockwell RSLogix 5000 Password Vulnerability	2014-10-24T06:00:00.000000Z	2025-06-09T19:42:25.052428Z
icsa-11-175-01	Rockwell FactoryTalk Diag Viewer Memory Corruption	2011-03-27T06:00:00.000000Z	2025-06-09T17:27:42.494579Z
icsa-11-167-01	Sunway Force Control	2011-03-19T06:00:00.000000Z	2025-06-09T17:27:36.242999Z
icsa-11-131-01	ICONICS GENESIS32 and BizViz ActiveX Stack Overflow	2011-02-11T07:00:00.000000Z	2025-06-09T17:27:30.000102Z

ID	Description	Published	Updated
cisco-sa-uccx-xss-go9l9xxr	Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-stealthsmc-rce-sfnbpjcs	Cisco Secure Network Analytics Remote Code Execution Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-stealth-rce-bdwxfk9c	Cisco Secure Network Analytics Remote Code Execution Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-sb-rv32x-cmdinject-ckqszpxl	Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Command Injection Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-rv-stored-xss-vqz7gc8w	Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-meraki-lsp-7xysn6pj	Cisco Meraki Local Status Page Configuration Hardening	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-ise-injection-2xbog9dg	Cisco Identity Services Engine Command Injection Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-adeos-mlayecvk	Cisco Evolved Programmable Network Manager, Cisco Identity Services Engine, and Cisco Prime Infrastructure Command Injection Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-expressway-overwrite-3buqw8lh	Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities	2022-07-06T16:00:00+00:00	2023-04-04T20:50:42+00:00
cisco-sa-stealth-rce-2hyb9kfk	Cisco Secure Network Analytics Remote Code Execution Vulnerability	2022-05-18T16:00:00+00:00	2023-04-03T18:50:18+00:00
cisco-sa-wsa-bypass-bwbfugek	Cisco Secure Web Appliance Content Encoding Filter Bypass Vulnerabilities	2022-10-05T16:00:00+00:00	2023-04-03T13:46:35+00:00
cisco-sa-ise-access-contol-eeufsucx	Cisco Identity Services Engine Insufficient Access Control Vulnerability	2022-11-02T16:00:00+00:00	2023-03-31T21:21:42+00:00
cisco-sa-ise-xss-twlnpy3m	Cisco Identity Services Engine Cross-Site Scripting Vulnerability	2022-10-19T16:00:00+00:00	2023-03-31T21:09:40+00:00
cisco-sa-ise-7q4tnyux	Cisco Identity Services Engine Vulnerabilities	2022-11-16T16:00:00+00:00	2023-03-31T20:41:42+00:00
cisco-sa-capic-csrfv-dmx6kswv	Cisco Application Policy Infrastructure Controller and Cisco Cloud Network Controller Cross-Site Request Forgery Vulnerability	2023-02-22T16:00:00+00:00	2023-03-29T21:04:31+00:00
cisco-sa-vman-csrf-76rdbleh	Cisco SD-WAN vManage Software Cluster Mode Cross-Site Request Forgery Vulnerability	2023-03-22T16:00:00+00:00	2023-03-27T21:11:52+00:00
cisco-sa-wifi-ffeb-22epcewu	Framing Frames: Bypassing Wi-Fi Encryption by Manipulating Transmit Queues Affecting Multiple Cisco Products	2023-03-27T05:00:00+00:00	2023-03-27T05:00:00+00:00
cisco-sa-iosxe-priv-esc-sabd8hcu	Cisco IOS XE Software Privilege Escalation Vulnerability	2023-03-22T16:00:00+00:00	2023-03-24T19:59:49+00:00
cisco-sa-ucsm-bkpsky-h8fcqgsa	Cisco FXOS Software and UCS Manager Software Configuration Backup Static Key Vulnerability	2023-02-22T16:00:00+00:00	2023-03-24T18:16:56+00:00
cisco-sa-ipv4-vfr-dos-cxxtfacb	Cisco IOS XE Software Virtual Fragmentation Reassembly Denial of Service Vulnerability	2023-03-22T16:00:00+00:00	2023-03-23T21:42:01+00:00
cisco-sa-webui-pthtrv-es7gsb9v	Cisco IOS XE Software Web UI Path Traversal Vulnerability	2023-03-22T16:00:00+00:00	2023-03-22T16:00:00+00:00
cisco-sa-ios-xe-sdwan-vqahejyw	Cisco IOS XE SD-WAN Software Command Injection Vulnerability	2023-03-22T16:00:00+00:00	2023-03-22T16:00:00+00:00
cisco-sa-ios-gre-crash-p6ne5sq5	Cisco IOS XE Software Fragmented Tunnel Protocol Packet Denial of Service Vulnerability	2023-03-22T16:00:00+00:00	2023-03-22T16:00:00+00:00
cisco-sa-ios-dhcpv6-dos-44cmvddk	Cisco IOS and IOS XE Software IPv6 DHCP (DHCPv6) Relay and Server Denial of Service Vulnerability	2023-03-22T16:00:00+00:00	2023-03-22T16:00:00+00:00
cisco-sa-ewlc-dos-wfujbhkw	Cisco IOS XE Software for Wireless LAN Controllers HTTP Client Profiling Denial of Service Vulnerability	2023-03-22T16:00:00+00:00	2023-03-22T16:00:00+00:00
cisco-sa-dnac-privesc-qfxe74rs	Cisco DNA Center Privilege Escalation Vulnerability	2023-03-22T16:00:00+00:00	2023-03-22T16:00:00+00:00
cisco-sa-dnac-infodisc-pe7zabdr	Cisco DNA Center Information Disclosure Vulnerability	2023-03-22T16:00:00+00:00	2023-03-22T16:00:00+00:00
cisco-sa-c9800-apjoin-dos-nxrhkt5	Cisco IOS XE Software for Wireless LAN Controllers CAPWAP Join Denial of Service Vulnerability	2023-03-22T16:00:00+00:00	2023-03-22T16:00:00+00:00
cisco-sa-asaftdios-dhcpv6-cli-zf3ztv	Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, IOS Software, and IOS XE Software IPv6 DHCP (DHCPv6) Client Denial of Service Vulnerability	2023-03-22T16:00:00+00:00	2023-03-22T16:00:00+00:00
cisco-sa-asa5500x-entropy-6v9bhvyp	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Low-Entropy Keys Vulnerability	2023-03-22T16:00:00+00:00	2023-03-22T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-32414	In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API (Python bindings) because of an incorrect return value. This occurs in xmlPythonFileRead and xmlPythonFileReadRaw because of a difference between bytes and characters.	2025-04-02T00:00:00.000Z	2026-02-21T02:34:56.000Z
msrc_cve-2025-22080	fs/ntfs3: Prevent integer overflow in hdr_first_de()	2025-04-02T00:00:00.000Z	2026-02-21T02:34:34.000Z
msrc_cve-2024-46763	fou: Fix null-ptr-deref in GRO.	2024-09-01T07:00:00.000Z	2026-02-21T02:33:56.000Z
msrc_cve-2025-21967	ksmbd: fix use-after-free in ksmbd_free_work_struct	2025-04-02T00:00:00.000Z	2026-02-21T02:33:50.000Z
msrc_cve-2025-22062	sctp: add mutual exclusion in proc_sctp_do_udp_port()	2025-04-02T00:00:00.000Z	2026-02-21T02:33:35.000Z
msrc_cve-2025-29481	Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpf_object__init_prog` function of libbpf.	2025-04-02T00:00:00.000Z	2026-02-21T02:33:32.000Z
msrc_cve-2025-1767	This CVE only affects Kubernetes clusters that utilize the in-tree gitRepo volume to clone git repositories from other pods within the same node. Since the in-tree gitRepo volume feature has been deprecated and will not receive security updates upstream, any cluster still using this feature remains vulnerable.	2025-03-02T00:00:00.000Z	2026-02-21T02:33:19.000Z
msrc_cve-2024-9407	Buildah: podman: improper input validation in bind-propagation option of dockerfile run --mount instruction	2024-10-01T07:00:00.000Z	2026-02-21T02:33:19.000Z
msrc_cve-2024-46676	nfc: pn533: Add poll mod list filling check	2024-09-01T07:00:00.000Z	2026-02-21T02:32:40.000Z
msrc_cve-2024-44949	parisc: fix a possible DMA corruption	2024-09-01T07:00:00.000Z	2026-02-21T02:32:31.000Z
msrc_cve-2025-21963	cifs: Fix integer overflow while processing acdirmax mount option	2025-04-02T00:00:00.000Z	2026-02-21T02:32:28.000Z
msrc_cve-2024-58097	wifi: ath11k: fix RCU stall while reaping monitor destination ring	2025-04-02T00:00:00.000Z	2026-02-21T02:32:19.000Z
msrc_cve-2025-29768	Vim vulnerable to potential data loss with zip.vim and special crafted zip files	2025-03-02T00:00:00.000Z	2026-02-21T02:32:01.000Z
msrc_cve-2024-45001	net: mana: Fix RX buf alloc_size alignment and atomic op panic	2024-09-01T07:00:00.000Z	2026-02-21T02:31:39.000Z
msrc_cve-2024-46781	nilfs2: fix missing cleanup on rollforward recovery error	2024-09-01T07:00:00.000Z	2026-02-21T02:31:10.000Z
msrc_cve-2025-21966	dm-flakey: Fix memory corruption in optional corrupt_bio_byte feature	2025-04-02T00:00:00.000Z	2026-02-21T02:31:03.000Z
msrc_cve-2025-32464	HAProxy 2.2 through 3.1.6, in certain uncommon configurations, has a sample_conv_regsub heap-based buffer overflow because of mishandling of the replacement of multiple short patterns with a longer one.	2025-04-02T00:00:00.000Z	2026-02-21T02:30:56.000Z
msrc_cve-2024-46832	MIPS: cevt-r4k: Don't call get_c0_compare_int if timer irq is installed	2024-09-01T07:00:00.000Z	2026-02-21T02:30:42.000Z
msrc_cve-2022-24791	Use after free in Wasmtime	2022-03-02T00:00:00.000Z	2026-02-21T02:30:09.000Z
msrc_cve-2025-21964	cifs: Fix integer overflow while processing acregmax mount option	2025-04-02T00:00:00.000Z	2026-02-21T02:30:04.000Z
msrc_cve-2024-52980	Elasticsearch Uncontrolled Resource Consumption vulnerability	2025-04-02T00:00:00.000Z	2026-02-21T02:29:39.000Z
msrc_cve-2024-46757	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	2024-09-01T07:00:00.000Z	2026-02-21T02:29:34.000Z
msrc_cve-2024-44991	tcp: prevent concurrent execution of tcp_sk_exit_batch	2024-09-01T07:00:00.000Z	2026-02-21T02:29:12.000Z
msrc_cve-2022-32207	When curl < 7.84.0 saves cookies alt-svc and hsts data to local files it makes the operation atomic by finalizing the operation with a rename from a temporary name to the final target file name.In that rename operation it might accidentally widen the permissions for the target file leaving the updated file accessible to more users than intended.	2022-07-02T00:00:00.000Z	2026-02-21T02:28:52.000Z
msrc_cve-2024-52981	An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow.	2025-04-02T00:00:00.000Z	2026-02-21T02:28:28.000Z
msrc_cve-2024-45003	vfs: Don't evict inode under the inode lru traversing context	2024-09-01T07:00:00.000Z	2026-02-21T02:28:11.000Z
msrc_cve-2024-46759	hwmon: (adc128d818) Fix underflows seen when writing limit attributes	2024-09-01T07:00:00.000Z	2026-02-21T02:27:58.000Z
msrc_cve-2022-49123	ath11k: Fix frames flush failure caused by deadlock	2025-02-02T00:00:00.000Z	2026-02-21T02:27:49.000Z
msrc_cve-2022-27774	An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTP(S) redirects is used with authentication could leak credentials to other services that exist on different protocols or port numbers.	2022-06-02T00:00:00.000Z	2026-02-21T02:27:24.000Z
msrc_cve-2024-44951	serial: sc16is7xx: fix TX fifo corruption	2024-09-01T07:00:00.000Z	2026-02-21T02:26:35.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-201203-0192	Google Chrome before 17.0.963.65 does not properly perform a cast of an unspecified varia…	2025-12-22T22:04:02.132000Z
var-201504-0147	cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which a…	2025-12-22T22:04:01.869000Z
var-201006-1162	WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4…	2025-12-22T22:03:57.325000Z
var-202201-0370	storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. Exp…	2025-12-22T22:03:56.566000Z
var-201903-0417	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T22:03:55.117000Z
var-201210-0272	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2025-12-22T22:03:54.242000Z
var-202002-0749	Git before 1.8.5.6, 1.9.x before 1.9.5, 2.0.x before 2.0.5, 2.1.x before 2.1.4, and 2.2.x…	2025-12-22T22:03:53.267000Z
var-201303-0172	sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physical…	2025-12-22T22:03:53.190000Z
var-201912-0647	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T22:03:52.781000Z
var-202003-1777	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali…	2025-12-22T22:03:47.442000Z
var-200407-0196	Floating point information leak in the context switch code for Linux 2.4.x only checks th…	2025-12-22T22:03:16.817000Z
var-201504-0247	The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combin…	2025-12-22T22:03:15.048000Z
var-201406-0230	The rd_build_device_space function in drivers/target/target_core_rd.c in the Linux kernel…	2025-12-22T22:03:12.118000Z
var-201711-0446	An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be…	2025-12-22T22:03:11.600000Z
var-201105-0094	The fnmatch implementation in apr_fnmatch.c in the Apache Portable Runtime (APR) library …	2025-12-22T22:02:41.209000Z
var-201904-0746	A race condition was addressed with additional validation. This issue affected versions p…	2025-12-22T22:02:38.352000Z
var-201403-0387	Buffer overflow in the socket.recvfrom_into function in Modules/socketmodule.c in Python …	2025-12-22T22:02:38.061000Z
var-202105-1460	A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a…	2025-12-22T22:02:37.942000Z
var-202201-0499	Heap-based Buffer Overflow in vim/vim prior to 8.2. vim Exists in an out-of-bounds write …	2025-12-22T22:02:32.694000Z
var-200810-0138	The Hewlett-Packard Graphics Language (HPGL) filter in CUPS before 1.3.9 allows remote at…	2025-12-22T22:02:32.385000Z
var-200905-0155	Multiple memory leaks in Ipsec-tools before 0.7.2 allow remote attackers to cause a denia…	2025-12-22T22:02:31.578000Z
var-201202-0137	Integer overflow in libpng, as used in Google Chrome before 17.0.963.56, allows remote at…	2025-12-22T22:02:30.306000Z
var-200701-0341	The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428…	2025-12-22T22:02:28.136000Z
var-200901-0719	Use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKi…	2025-12-22T22:02:26.890000Z
var-200608-0037	The Download Validation in LaunchServices for Apple Mac OS X 10.4.7 can identify certain …	2025-12-22T22:02:26.177000Z
var-202302-1097	A type confusion issue was addressed with improved checks. This issue is fixed in iOS 15.…	2025-12-22T22:02:24.231000Z
var-200603-0274	FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when cr…	2025-12-22T22:02:14.968000Z
var-201904-0743	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T22:02:14.121000Z
var-202102-0421	A vulnerability was found in openvswitch. A limitation in the implementation of userspace…	2025-12-22T22:02:13.011000Z
var-201712-1100	An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari be…	2025-12-22T22:02:11.707000Z

ID	Description	Published	Updated
jvndb-2024-003181	Hidden Functionality vulnerability in DT900	2024-05-10T13:59+09:00	2024-05-10T13:59+09:00
jvndb-2024-000048	Phormer vulnerable to cross-site scripting	2024-05-10T13:48+09:00	2024-05-10T13:48+09:00
jvndb-2023-003721	Trend Micro Endpoint security products for enterprises vulnerable to arbitrary code execution	2023-09-20T13:58+09:00	2024-05-09T18:22+09:00
jvndb-2015-000040	LINE vulnerable to script injection	2015-03-20T16:16+09:00	2024-05-09T18:15+09:00
jvndb-2015-000095	LINE@ vulnerable to script injection	2015-07-10T14:50+09:00	2024-05-09T18:05+09:00
jvndb-2023-000116	Redmine vulnerable to cross-site scripting	2023-11-17T14:32+09:00	2024-05-09T17:55+09:00
jvndb-2023-000107	EC-CUBE 3 series and 4 series vulnerable to arbitrary code execution	2023-11-07T13:47+09:00	2024-05-09T17:17+09:00
jvndb-2024-000043	Multiple vulnerabilities in MosP kintai kanri	2024-05-09T14:10+09:00	2024-05-09T14:10+09:00
jvndb-2023-000111	Remarshal unlimitedly expanding YAML alias nodes	2023-11-10T14:41+09:00	2024-05-08T17:53+09:00
jvndb-2024-000044	WordPress Plugin "Heateor Social Login WordPress" vulnerable to cross-site scripting	2024-05-08T13:43+09:00	2024-05-08T13:43+09:00
jvndb-2024-003178	Trend Micro Maximum Security vulnerable to improper link resolution (CVE-2024-32849)	2024-05-08T10:19+09:00	2024-05-08T10:19+09:00
jvndb-2023-002725	Multiple vulnerabilities in Command Center RX (CCRX) of Kyocera Document Solutions MFPs and printers	2023-07-28T18:24+09:00	2024-05-07T18:15+09:00
jvndb-2023-000108	Inkdrop vulnerable to code injection	2023-10-30T13:48+09:00	2024-05-07T16:09+09:00
jvndb-2023-000106	Multiple vulnerabilities in baserCMS	2023-10-27T14:46+09:00	2024-05-07T15:59+09:00
jvndb-2023-000109	Cybozu Remote Service vulnerable to uncontrolled resource consumption	2023-10-31T13:43+09:00	2024-05-07T15:51+09:00
jvndb-2023-004919	FUJIFILM Business Innovation Corp. and Xerox Corporation MFPs export Address Books with insufficient encryption strength	2023-11-02T17:21+09:00	2024-05-07T15:25+09:00
jvndb-2023-000114	Multiple vulnerabilities in Cisco Firepower Management Center Software	2023-11-13T14:01+09:00	2024-05-07T15:07+09:00
jvndb-2023-000060	Multiple vulnerabilities in Pleasanter	2023-06-22T15:49+09:00	2024-05-07T14:10+09:00
jvndb-2023-000110	Improper restriction of XML external entity references (XXE) in e-Tax software	2023-11-02T13:38+09:00	2024-05-01T18:41+09:00
jvndb-2023-007152	Multiple vulnerabilities in EXPRESSCLUSTER X	2023-11-20T14:09+09:00	2024-05-01T18:10+09:00
jvndb-2023-000113	HOTELDRUID vulnerable to cross-site scripting	2023-11-10T14:41+09:00	2024-05-01T17:47+09:00
jvndb-2023-000115	OSS Calendar vulnerable to SQL injection	2023-11-14T14:05+09:00	2024-05-01T17:38+09:00
jvndb-2023-000118	Multiple vulnerabilities in CubeCart	2023-11-17T14:22+09:00	2024-04-30T18:15+09:00
jvndb-2023-000068	"NewsPicks" App uses a hard-coded API key for an external service	2023-06-30T15:06+09:00	2024-04-30T18:09+09:00
jvndb-2023-006578	ASUSTeK COMPUTER RT-AC87U vulnerable to improper access control	2023-11-15T17:44+09:00	2024-04-30T18:08+09:00
jvndb-2023-000064	SYNCK GRAPHICA Mailform Pro CGI vulnerable to Regular expression Denial-of-Service (ReDoS)	2023-06-20T14:48+09:00	2024-04-26T18:03+09:00
jvndb-2023-000067	WordPress Plugin "Snow Monkey Forms" vulnerable to directory traversal	2023-06-27T17:05+09:00	2024-04-26T17:56+09:00
jvndb-2023-000033	Trend Micro Security may insecurely load Dynamic Link Libraries	2023-04-14T15:44+09:00	2024-04-26T17:48+09:00
jvndb-2023-006588	Multiple vulnerabilities in ELECOM and LOGITEC routers	2023-11-15T18:27+09:00	2024-04-26T15:22+09:00
jvndb-2023-002511	File and Directory Permissions Vulnerability in Hitachi Command Suite	2023-07-19T14:48+09:00	2024-04-26T12:29+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:4426-1	Security update for xkbcomp	2025-12-17T11:22:42Z	2025-12-17T11:22:42Z
suse-su-2025:4425-1	Security update for cups	2025-12-17T11:20:16Z	2025-12-17T11:20:16Z
suse-su-2025:4424-1	Security update for MozillaFirefox	2025-12-17T11:09:15Z	2025-12-17T11:09:15Z
suse-su-2025:4423-1	Security update for webkit2gtk3	2025-12-17T11:01:39Z	2025-12-17T11:01:39Z
suse-su-2025:4422-1	Security update for the Linux Kernel	2025-12-17T10:52:47Z	2025-12-17T10:52:47Z
suse-su-2025:4421-1	Security update for buildah	2025-12-17T09:04:20Z	2025-12-17T09:04:20Z
suse-su-2025:4419-1	Security update for xen	2025-12-16T18:57:18Z	2025-12-16T18:57:18Z
suse-su-2025:4416-1	Security update for webkit2gtk3	2025-12-16T15:57:50Z	2025-12-16T15:57:50Z
suse-su-2025:4411-1	Security update for librsvg	2025-12-16T11:35:35Z	2025-12-16T11:35:35Z
suse-su-2025:21222-1	Security update for gnutls	2025-12-16T08:43:18Z	2025-12-16T08:43:18Z
suse-su-2025:21217-1	Security update for libpng16	2025-12-16T08:31:52Z	2025-12-16T08:31:52Z
suse-su-2025:21221-1	Security update for helm	2025-12-16T08:29:28Z	2025-12-16T08:29:28Z
suse-su-2025:21220-1	Security update for libpng16	2025-12-16T08:25:26Z	2025-12-16T08:25:26Z
suse-su-2025:21218-1	Security update for salt	2025-12-16T08:19:40Z	2025-12-16T08:19:40Z
suse-su-2025:21216-1	Security update 5.0.6 for Multi-Linux Manager Client Tools, Salt and Salt Bundle	2025-12-16T07:20:56Z	2025-12-16T07:20:56Z
suse-su-2025:21224-1	Security update for openssl-3	2025-12-15T18:22:57Z	2025-12-15T18:22:57Z
suse-su-2025:21213-1	Security update for openssl-3	2025-12-15T18:22:57Z	2025-12-15T18:22:57Z
suse-su-2025:4408-1	Security update for libssh	2025-12-15T16:56:44Z	2025-12-15T16:56:44Z
suse-su-2025:4407-1	Security update for xkbcomp	2025-12-15T16:54:15Z	2025-12-15T16:54:15Z
suse-su-2025:4406-1	Security update for postgresql15	2025-12-15T14:22:59Z	2025-12-15T14:22:59Z
suse-su-2025:21223-1	Security update for grub2	2025-12-15T12:49:56Z	2025-12-15T12:49:56Z
suse-su-2025:21212-1	Security update for grub2	2025-12-15T12:49:56Z	2025-12-15T12:49:56Z
suse-su-2025:4398-1	Security update for python3	2025-12-15T11:30:55Z	2025-12-15T11:30:55Z
suse-su-2025:4397-1	Security update for MozillaThunderbird	2025-12-15T11:26:39Z	2025-12-15T11:26:39Z
suse-su-2025:4396-1	Security update for MozillaFirefox	2025-12-15T11:24:28Z	2025-12-15T11:24:28Z
suse-su-2025:4393-1	Security update for the Linux Kernel	2025-12-15T11:09:08Z	2025-12-15T11:09:08Z
suse-su-2025:4391-1	Security update for unbound	2025-12-15T10:34:10Z	2025-12-15T10:34:10Z
suse-su-2025:4257-2	Security update for python311	2025-12-15T10:33:51Z	2025-12-15T10:33:51Z
suse-su-2025:21211-1	Security update for ImageMagick	2025-12-15T09:56:13Z	2025-12-15T09:56:13Z
suse-su-2025:4390-1	Security update for rhino	2025-12-12T16:18:03Z	2025-12-12T16:18:03Z

ID	Description	Published	Updated
opensuse-su-2025:15756-1	blender-5.0-5.0.0-1.1 on GA media	2025-11-21T00:00:00Z	2025-11-21T00:00:00Z
opensuse-su-2025:15755-1	blender-4.5-4.5.4-1.1 on GA media	2025-11-21T00:00:00Z	2025-11-21T00:00:00Z
opensuse-su-2025:15754-1	ansible-core-2.19-2.19.4-1.1 on GA media	2025-11-21T00:00:00Z	2025-11-21T00:00:00Z
opensuse-su-2025:15753-1	ansible-12-12.2.0-1.1 on GA media	2025-11-21T00:00:00Z	2025-11-21T00:00:00Z
opensuse-su-2025:15752-1	act-0.2.82-2.1 on GA media	2025-11-21T00:00:00Z	2025-11-21T00:00:00Z
opensuse-su-2025:20073-1	Security update for alloy	2025-11-20T17:26:16Z	2025-11-20T17:26:16Z
opensuse-su-2025:20072-1	Security update for runc	2025-11-20T16:44:20Z	2025-11-20T16:44:20Z
opensuse-su-2025:20068-1	Security update for poppler	2025-11-20T13:33:03Z	2025-11-20T13:33:03Z
opensuse-su-2025:20076-1	Security update for chromium	2025-11-20T10:12:51Z	2025-11-20T10:12:51Z
opensuse-su-2025:15751-1	libipa_hbac-devel-2.11.1-2.1 on GA media	2025-11-20T00:00:00Z	2025-11-20T00:00:00Z
opensuse-su-2025:15750-1	python313-3.13.9-2.1 on GA media	2025-11-20T00:00:00Z	2025-11-20T00:00:00Z
opensuse-su-2025:15749-1	grub2-2.12-67.1 on GA media	2025-11-20T00:00:00Z	2025-11-20T00:00:00Z
opensuse-su-2025:20065-1	Security update for MozillaFirefox	2025-11-19T16:45:48Z	2025-11-19T16:45:48Z
opensuse-su-2025:20059-1	Security update for ongres-scram	2025-11-19T10:33:44Z	2025-11-19T10:33:44Z
opensuse-su-2025:20056-1	Security update for openexr	2025-11-19T09:45:59Z	2025-11-19T09:45:59Z
opensuse-su-2025:20050-1	Security update for libxslt	2025-11-19T09:40:24Z	2025-11-19T09:40:24Z
opensuse-su-2025:20049-1	Security update for tiff	2025-11-19T09:40:24Z	2025-11-19T09:40:24Z
opensuse-su-2025:20055-1	Security update for expat	2025-11-19T09:37:50Z	2025-11-19T09:37:50Z
opensuse-su-2025:20074-1	Security update for certbot	2025-11-19T09:30:46Z	2025-11-19T09:30:46Z
opensuse-su-2025:15748-1	python314-3.14.0-3.1 on GA media	2025-11-19T00:00:00Z	2025-11-19T00:00:00Z
opensuse-su-2025:15747-1	libeverest-3.6.5-1.1 on GA media	2025-11-19T00:00:00Z	2025-11-19T00:00:00Z
opensuse-su-2025:15746-1	libvirt-11.9.0-2.1 on GA media	2025-11-19T00:00:00Z	2025-11-19T00:00:00Z
opensuse-su-2025:15745-1	chromedriver-142.0.7444.175-1.1 on GA media	2025-11-19T00:00:00Z	2025-11-19T00:00:00Z
opensuse-su-2025:15744-1	amazon-ssm-agent-3.3.3270.0-2.1 on GA media	2025-11-19T00:00:00Z	2025-11-19T00:00:00Z
opensuse-su-2025:20048-1	Security update for samba	2025-11-18T23:14:26Z	2025-11-18T23:14:26Z
opensuse-su-2025:15743-1	sbctl-0.18-2.1 on GA media	2025-11-18T00:00:00Z	2025-11-18T00:00:00Z
opensuse-su-2025:15742-1	python312-3.12.12-2.1 on GA media	2025-11-18T00:00:00Z	2025-11-18T00:00:00Z
opensuse-su-2025:15741-1	libIex-3_4-33-3.4.3-1.1 on GA media	2025-11-18T00:00:00Z	2025-11-18T00:00:00Z
opensuse-su-2025:15740-1	erlang27-27.1.3-1.1 on GA media	2025-11-18T00:00:00Z	2025-11-18T00:00:00Z
opensuse-su-2025:15739-1	itextpdf-5.5.13.4-1.1 on GA media	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
bit-phpmyadmin-2023-25727		2024-03-06T11:01:27.502Z	2025-11-06T13:25:46.476Z
bit-php-2025-6491	NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix	2025-07-16T08:19:30.475Z	2025-11-06T13:25:46.476Z
bit-php-2025-1861	Stream HTTP wrapper truncates redirect location to 1024 bytes	2025-04-14T11:39:29.979Z	2025-11-06T13:25:46.476Z
bit-php-2025-1736	Stream HTTP wrapper header check might omit basic auth header	2025-04-14T11:39:27.066Z	2025-11-06T13:25:46.476Z
bit-php-2025-1735	pgsql extension does not check for errors during escaping	2025-07-16T08:19:20.063Z	2025-11-06T13:25:46.476Z
bit-php-2025-1734	Streams HTTP wrapper does not fail for headers with invalid name and no colon	2025-04-14T11:39:23.775Z	2025-11-06T13:25:46.476Z
bit-php-2025-1220	Null byte termination in hostnames	2025-07-16T08:19:12.163Z	2025-11-06T13:25:46.476Z
bit-php-2025-1219	libxml streams use wrong content-type header when requesting a redirected resource	2025-04-14T11:39:20.240Z	2025-11-06T13:25:46.476Z
bit-php-2025-1217	Header parser of http stream wrapper does not handle folded headers	2025-04-14T11:39:16.745Z	2025-11-06T13:25:46.476Z
bit-php-2024-9026	PHP-FPM logs from children may be altered	2024-10-10T07:13:42.603Z	2025-11-06T13:25:46.476Z
bit-php-2024-8932	OOB access in ldap_escape	2024-11-27T19:18:28.985Z	2025-11-06T13:25:46.476Z
bit-php-2024-8929	Leak partial content of the heap through heap buffer over-read in mysqlnd	2024-11-27T19:18:36.988Z	2025-11-06T13:25:46.476Z
bit-php-2024-8927	cgi.force_redirect configuration is bypassable due to the environment variable collision	2024-10-10T07:13:49.920Z	2025-11-06T13:25:46.476Z
bit-php-2024-8926	PHP CGI Parameter Injection Vulnerability (CVE-2024-4577 bypass)	2024-10-10T07:13:56.902Z	2025-11-06T13:25:46.476Z
bit-php-2024-8925	Erroneous parsing of multipart form data	2024-10-10T07:14:02.704Z	2025-11-06T13:25:46.476Z
bit-php-2024-5458	Filter bypass in filter_var (FILTER_VALIDATE_URL)	2024-06-12T07:30:42.706Z	2025-11-06T13:25:46.476Z
bit-php-2024-3096	PHP function password_verify can erroneously return true when argument contains NUL	2024-05-14T07:29:06.888Z	2025-11-06T13:25:46.476Z
bit-php-2024-2757	PHP mb_encode_mimeheader runs endlessly for some inputs	2024-05-14T07:29:20.782Z	2025-11-06T13:25:46.476Z
bit-php-2024-2756	__Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix	2024-05-14T07:29:36.784Z	2025-11-06T13:25:46.476Z
bit-php-2024-1874	Command injection via array-ish $command parameter of proc_open()	2024-05-14T07:29:52.385Z	2025-11-06T13:25:46.476Z
bit-php-2024-11236	Integer overflow in the firebird and dblib quoters causing OOB writes	2024-11-27T19:20:03.987Z	2025-11-06T13:25:46.476Z
bit-php-2024-11234	Configuring a proxy in a stream context might allow for CRLF injection in URIs	2024-11-27T19:20:11.489Z	2025-11-06T13:25:46.476Z
bit-php-2024-11233	Single byte overread with convert.quoted-printable-decode filter	2024-11-27T19:20:18.573Z	2025-11-06T13:25:46.476Z
bit-php-2022-31629	$_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities	2024-03-06T11:03:40.403Z	2025-11-06T13:25:46.476Z
bit-pgbouncer-2021-3935		2024-03-06T11:01:06.081Z	2025-11-06T13:25:46.476Z
bit-openresty-2024-33452		2025-06-24T14:52:16.514Z	2025-11-06T13:25:46.476Z
bit-openresty-2020-36309		2024-03-06T10:59:59.208Z	2025-11-06T13:25:46.476Z
bit-node-2025-27210		2025-07-22T16:44:59.921Z	2025-11-06T13:25:46.476Z
bit-node-2025-27209		2025-07-22T05:47:27.570Z	2025-11-06T13:25:46.476Z
bit-node-2025-23085		2025-02-11T07:16:03.298Z	2025-11-06T13:25:46.476Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
cnvd-2026-05358	ChurchCRM代码执行漏洞（CNVD-2026-0535893）	2025-12-25	2026-01-19
cnvd-2026-05357	ChurchCRM 事件参与者编辑器SQL注入漏洞	2025-12-25	2026-01-19
cnvd-2026-05356	ChurchCRM访问控制错误漏洞	2025-12-25	2026-01-19
cnvd-2026-05355	ChurchCRM代码执行漏洞	2025-12-25	2026-01-19
cnvd-2026-05354	ChurchCRM跨站脚本漏洞（CNVD-2026-0535400）	2025-12-25	2026-01-19
cnvd-2026-05353	ChurchCRM跨站脚本漏洞	2025-12-25	2026-01-19
cnvd-2026-05352	ChurchCRM UserEditor.php文件SQL注入漏洞	2025-12-25	2026-01-19
cnvd-2026-05351	ChurchCRM ListEvents.php文件SQL注入漏洞	2025-12-25	2026-01-19
cnvd-2026-05350	ChurchCRM GroupEditor.php页面跨站脚本漏洞	2025-12-25	2026-01-19
cnvd-2026-05349	ChurchCRM eGive.php文件SQL注入漏洞	2025-12-25	2026-01-19
cnvd-2026-05348	ChurchCRM CartToFamily.php文件SQL注入漏洞	2025-12-25	2026-01-19
cnvd-2026-05347	RiteCMS跨站脚本漏洞（CNVD-2026-05347）	2023-10-09	2026-01-19
cnvd-2026-05346	RiteCMS跨站脚本漏洞（CNVD-2026-05346）	2023-10-13	2026-01-19
cnvd-2026-05345	RiteCMS 跨站脚本漏洞（CNVD-2026-05345）	2023-10-13	2026-01-19
cnvd-2026-05344	RiteCMS存在未明漏洞	2025-12-25	2026-01-19
cnvd-2026-05343	RiteCMS文件包含漏洞	2025-12-25	2026-01-19
cnvd-2026-05342	RiteCMS访问控制不当漏洞	2025-12-25	2026-01-19
cnvd-2026-05341	RiteCMS跨站请求伪造漏洞	2025-12-25	2026-01-19
cnvd-2026-05340	RiteCMS跨站脚本漏洞	2025-12-25	2026-01-19
cnvd-2026-05339	RiteCMS代码执行漏洞	2025-12-25	2026-01-19
cnvd-2026-04961	Tenda AC7 timeZone参数栈缓冲区溢出漏洞	2023-09-01	2026-01-19
cnvd-2026-04946	Fuji Electric V-SFT越界写入漏洞	2025-10-15	2026-01-19
cnvd-2026-04945	Adobe ColdFusion输入验证不当漏洞（CNVD-2026-0494539）	2025-12-15	2026-01-19
cnvd-2026-04944	Adobe ColdFusion XML外部实体引用限制不当漏洞（CNVD-2026-0494441）	2025-12-15	2026-01-19
cnvd-2026-04943	Adobe ColdFusion XML外部实体引用限制不当漏洞（CNVD-2026-0494343）	2025-12-15	2026-01-19
cnvd-2026-04942	Adobe ColdFusion输入验证不当漏洞	2025-12-15	2026-01-19
cnvd-2026-04941	Adobe ColdFusion XML外部实体引用限制不当漏洞	2025-12-15	2026-01-19
cnvd-2026-04940	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-0494065）	2025-12-15	2026-01-19
cnvd-2026-04939	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-0493967）	2025-12-15	2026-01-19
cnvd-2026-04938	Adobe Experience Manager跨站脚本漏洞	2025-12-15	2026-01-19

ID	Description	Published	Updated
certfr-2025-avi-0805	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-09-19T00:00:00.000000	2025-09-19T00:00:00.000000
certfr-2025-avi-0804	Multiples vulnérabilités dans Microsoft Windows	2025-09-19T00:00:00.000000	2025-09-19T00:00:00.000000
certfr-2025-avi-0766	Multiples vulnérabilités dans les produits Liferay	2025-09-09T00:00:00.000000	2025-09-19T00:00:00.000000
certfr-2025-avi-0803	Vulnérabilité dans HPE Aruba Networking ClearPass Policy Manager	2025-09-18T00:00:00.000000	2025-09-18T00:00:00.000000
certfr-2025-avi-0802	Multiples vulnérabilités dans Google Chrome	2025-09-18T00:00:00.000000	2025-09-18T00:00:00.000000
certfr-2025-avi-0800	Multiples vulnérabilités dans Liferay	2025-09-17T00:00:00.000000	2025-09-17T00:00:00.000000
certfr-2025-avi-0799	Vulnérabilité dans les produits Microsoft	2025-09-17T00:00:00.000000	2025-09-17T00:00:00.000000
certfr-2025-avi-0798	Vulnérabilité dans Microsoft Edge	2025-09-17T00:00:00.000000	2025-09-17T00:00:00.000000
certfr-2025-avi-0797	Multiples vulnérabilités dans les produits Mozilla	2025-09-17T00:00:00.000000	2025-09-17T00:00:00.000000
certfr-2025-avi-0796	Multiples vulnérabilités dans Suricata	2025-09-17T00:00:00.000000	2025-09-17T00:00:00.000000
certfr-2025-avi-0795	Multiples vulnérabilités dans HPE Aruba Networking EdgeConnect SD-WAN Gateways	2025-09-17T00:00:00.000000	2025-09-17T00:00:00.000000
certfr-2025-avi-0794	Multiples vulnérabilités dans les produits Atlassian	2025-09-17T00:00:00.000000	2025-09-17T00:00:00.000000
certfr-2025-avi-0793	Multiples vulnérabilités dans Liferay	2025-09-16T00:00:00.000000	2025-09-16T00:00:00.000000
certfr-2025-avi-0792	Multiples vulnérabilités dans les produits Spring	2025-09-16T00:00:00.000000	2025-09-16T00:00:00.000000
certfr-2025-avi-0791	Multiples vulnérabilités dans les produits Apple	2025-09-16T00:00:00.000000	2025-09-16T00:00:00.000000
certfr-2025-avi-0707	Multiples vulnérabilités dans Mattermost Server	2025-08-18T00:00:00.000000	2025-09-16T00:00:00.000000
certfr-2025-avi-0790	Multiples vulnérabilités dans Liferay	2025-09-15T00:00:00.000000	2025-09-15T00:00:00.000000
certfr-2025-avi-0789	Multiples vulnérabilités dans les produits IBM	2025-09-12T00:00:00.000000	2025-09-12T00:00:00.000000
certfr-2025-avi-0788	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-09-12T00:00:00.000000	2025-09-12T00:00:00.000000
certfr-2025-avi-0787	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-09-12T00:00:00.000000	2025-09-12T00:00:00.000000
certfr-2025-avi-0786	Multiples vulnérabilités dans Zabbix	2025-09-12T00:00:00.000000	2025-09-12T00:00:00.000000
certfr-2025-avi-0785	Multiples vulnérabilités dans Liferay	2025-09-12T00:00:00.000000	2025-09-12T00:00:00.000000
certfr-2025-avi-0784	Vulnérabilité dans Microsoft Visual Studio Code	2025-09-12T00:00:00.000000	2025-09-12T00:00:00.000000
certfr-2025-avi-0783	Multiples vulnérabilités dans Microsoft Edge	2025-09-12T00:00:00.000000	2025-09-12T00:00:00.000000
certfr-2025-avi-0782	Multiples vulnérabilités dans les produits Palo Alto Networks	2025-09-11T00:00:00.000000	2025-09-11T00:00:00.000000
certfr-2025-avi-0781	Multiples vulnérabilités dans Cisco IOS XR	2025-09-11T00:00:00.000000	2025-09-11T00:00:00.000000
certfr-2025-avi-0780	Multiples vulnérabilités dans les produits Microsoft	2025-09-10T00:00:00.000000	2025-09-10T00:00:00.000000
certfr-2025-avi-0779	Multiples vulnérabilités dans Microsoft Azure	2025-09-10T00:00:00.000000	2025-09-10T00:00:00.000000
certfr-2025-avi-0778	Multiples vulnérabilités dans Microsoft Windows	2025-09-10T00:00:00.000000	2025-09-10T00:00:00.000000
certfr-2025-avi-0777	Multiples vulnérabilités dans Microsoft Office	2025-09-10T00:00:00.000000	2025-09-10T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated