Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-68044 |
8.6 (3.1)
|
WordPress Five Star Restaurant Reservations plugin <= … |
Rustaurius |
Five Star Restaurant Reservations |
2026-01-05T10:40:55.539Z | 2026-01-20T14:28:27.250Z |
| CVE-2025-67976 |
6.5 (3.1)
|
WordPress Watu Quiz plugin <= 3.4.5 - Broken Access Co… |
Bob |
Watu Quiz |
2025-12-16T08:12:58.348Z | 2026-01-20T14:28:27.243Z |
| CVE-2025-68055 |
8.5 (3.1)
|
WordPress Hydra Booking plugin <= 1.1.32 - SQL Injecti… |
Themefic |
Hydra Booking |
2025-12-16T08:12:59.985Z | 2026-01-20T14:28:27.212Z |
| CVE-2025-68036 |
7.5 (3.1)
|
WordPress CubeWP plugin <= 1.1.27 - Broken Access Cont… |
Emraan Cheema |
CubeWP |
2025-12-29T23:26:17.386Z | 2026-01-20T14:28:27.210Z |
| CVE-2025-67933 |
6.1 (3.1)
|
WordPress Taskbuilder plugin <= 4.0.9 - Cross Site Scr… |
taskbuilder |
Taskbuilder |
2026-01-08T09:17:49.199Z | 2026-01-20T14:28:27.168Z |
| CVE-2025-67989 |
5.4 (3.1)
|
WordPress Kerge theme <= 4.1.3 - Server Side Request F… |
LMPixels |
Kerge |
2025-12-16T08:12:59.145Z | 2026-01-20T14:28:27.164Z |
| CVE-2025-67934 |
8.1 (3.1)
|
WordPress Wellspring theme < 2.8 - Local File Inclusio… |
Mikado-Themes |
Wellspring |
2026-01-08T09:17:49.408Z | 2026-01-20T14:28:27.041Z |
| CVE-2025-67928 |
9.8 (3.1)
|
WordPress Automotive Listings plugin <= 18.6 - SQL Inj… |
themesuite |
Automotive Listings |
2026-01-08T09:17:48.385Z | 2026-01-20T14:28:26.832Z |
| CVE-2025-67930 |
6.1 (3.1)
|
WordPress eHive Search plugin <= 2.5.0 - Cross Site Sc… |
Vernon Systems Limited |
eHive Search |
2026-01-08T09:17:48.582Z | 2026-01-20T14:28:26.825Z |
| CVE-2025-67931 |
7.5 (3.1)
|
WordPress BulletProof Security plugin <= 6.9 - Sensiti… |
AITpro |
BulletProof Security |
2026-01-08T09:17:48.784Z | 2026-01-20T14:28:26.780Z |
| CVE-2025-67932 |
6.1 (3.1)
|
WordPress Listeo Core plugin < 2.0.19 - Cross Site Scr… |
purethemes |
Listeo Core |
2026-01-08T09:17:49.010Z | 2026-01-20T14:28:26.774Z |
| CVE-2025-67631 |
5.4 (3.1)
|
WordPress Gift Hunt plugin <= 2.0.2 - Cross Site Scrip… |
Ecommerce Platforms |
Gift Hunt |
2025-12-24T13:10:23.974Z | 2026-01-20T14:28:26.724Z |
| CVE-2025-67595 |
4.3 (3.1)
|
WordPress Quiz Maker plugin <= 6.7.0.82 - Cross Site R… |
Ays Pro |
Quiz Maker |
2025-12-09T14:14:18.334Z | 2026-01-20T14:28:26.723Z |
| CVE-2025-67917 |
8.1 (3.1)
|
WordPress Traveler theme <= 3.2.6 - Broken Access Cont… |
shinetheme |
Traveler |
2026-01-08T09:17:45.741Z | 2026-01-20T14:28:26.720Z |
| CVE-2025-67927 |
6.1 (3.1)
|
WordPress Link Whisper Free plugin <= 0.8.8 - Cross Si… |
Spencer Haws |
Link Whisper Free |
2026-01-08T09:17:48.182Z | 2026-01-20T14:28:26.716Z |
| CVE-2025-67918 |
6.1 (3.1)
|
WordPress Woffice theme <= 5.4.30 - Cross Site Scripti… |
WofficeIO |
Woffice |
2026-01-08T09:17:45.942Z | 2026-01-20T14:28:26.671Z |
| CVE-2025-67592 |
4.3 (3.1)
|
WordPress My Calendar plugin <= 3.6.16 - Broken Access… |
Joe Dolson |
My Calendar |
2025-12-09T14:14:17.621Z | 2026-01-20T14:28:26.652Z |
| CVE-2025-67914 |
7.5 (3.1)
|
WordPress VidMov theme <= 2.3.8 - Path Traversal vulne… |
beeteam368 |
VidMov |
2026-01-08T09:17:44.993Z | 2026-01-20T14:28:26.643Z |
| CVE-2025-67629 |
5.4 (3.1)
|
WordPress Basticom Framework plugin <= 1.5.2 - Cross S… |
Basticom |
Basticom Framework |
2025-12-24T13:10:23.380Z | 2026-01-20T14:28:26.597Z |
| CVE-2025-67625 |
8.8 (3.1)
|
WordPress Trade Runner plugin <= 3.14 - Cross Site Req… |
tmtraderunner |
Trade Runner |
2025-12-24T13:10:22.548Z | 2026-01-20T14:28:26.542Z |
| CVE-2025-67630 |
5.4 (3.1)
|
WordPress WH Tweaks plugin <= 1.0.2 - Cross Site Scrip… |
webheadcoder |
WH Tweaks |
2025-12-24T13:10:23.685Z | 2026-01-20T14:28:26.519Z |
| CVE-2025-67911 |
9.8 (3.1)
|
WordPress Newsletters plugin <= 4.11 - PHP Object Inje… |
Tribulant Software |
Newsletters |
2026-01-08T09:17:44.577Z | 2026-01-20T14:28:26.518Z |
| CVE-2025-67597 |
4.3 (3.1)
|
WordPress Fluent Booking plugin <= 1.9.11 - Broken Acc… |
Shahjahan Jewel |
Fluent Booking |
2025-12-09T14:14:18.833Z | 2026-01-20T14:28:26.514Z |
| CVE-2025-67593 |
4.3 (3.1)
|
WordPress UsersWP plugin <= 1.2.48 - Cross Site Reques… |
Stiofan |
UsersWP |
2025-12-09T14:14:17.816Z | 2026-01-20T14:28:26.508Z |
| CVE-2025-67909 |
8.1 (3.1)
|
WordPress Membership For WooCommerce plugin <= 3.0.3 -… |
WP Swings |
Membership For WooCommerce |
2025-12-24T13:10:24.788Z | 2026-01-20T14:28:26.498Z |
| CVE-2025-67632 |
6.1 (3.1)
|
WordPress Google AdSense for Responsive Design – GARD … |
The Plugin Factory |
Google AdSense for Responsive Design – GARD |
2025-12-24T13:10:24.256Z | 2026-01-20T14:28:26.498Z |
| CVE-2025-67921 |
9.8 (3.1)
|
WordPress Lobo theme < 2.8.6 - SQL Injection vulnerability |
VanKarWai |
Lobo |
2026-01-08T09:17:46.911Z | 2026-01-20T14:28:26.492Z |
| CVE-2025-67926 |
8.8 (3.1)
|
WordPress Fluent Support plugin <= 1.10.4 - Broken Acc… |
Shahjahan Jewel |
Fluent Support |
2026-01-08T09:17:47.946Z | 2026-01-20T14:28:26.482Z |
| CVE-2025-67628 |
5.4 (3.1)
|
WordPress Review Disclaimer plugin <= 2.0.3 - Cross Si… |
AMP-MODE |
Review Disclaimer |
2025-12-24T13:10:23.116Z | 2026-01-20T14:28:26.481Z |
| CVE-2025-67924 |
9.8 (3.1)
|
WordPress Corpkit theme <= 2.0 - Arbitrary File Upload… |
zozothemes |
Corpkit |
2026-01-08T09:17:47.419Z | 2026-01-20T14:28:26.476Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-68875 |
5.4 (3.1)
|
WordPress Flaming Password Reset plugin <= 1.0.3 - Cro… |
jcaruso001 |
Flaming Password Reset |
2026-01-08T09:17:52.299Z | 2026-01-20T14:28:29.096Z |
| CVE-2025-68874 |
7.1 (3.1)
|
WordPress Visitor Stats Widget plugin <= 1.5.0 - Refle… |
Shahjada |
Visitor Stats Widget |
2026-01-08T09:17:52.109Z | 2026-01-20T14:28:29.122Z |
| CVE-2025-68873 |
7.1 (3.1)
|
WordPress PRIMER by chloédigital plugin <= 1.0.25 - Re… |
chloédigital |
PRIMER by chloédigital |
2026-01-08T09:17:51.924Z | 2026-01-20T14:28:29.054Z |
| CVE-2025-68870 |
7.5 (3.1)
|
WordPress CookieHint WP plugin <= 1.0.0 - Local File I… |
reDim GmbH |
CookieHint WP |
2025-12-29T16:09:05.270Z | 2026-01-20T14:28:28.988Z |
| CVE-2025-68868 |
6.5 (3.1)
|
WordPress Wp Text Slider Widget plugin <= 1.0 - Cross … |
Codeaffairs |
Wp Text Slider Widget |
2025-12-29T16:12:32.664Z | 2026-01-20T14:28:29.039Z |
| CVE-2025-68867 |
6.5 (3.1)
|
WordPress Effect Maker plugin <= 1.2.1 - Cross Site Sc… |
anibalwainstein |
Effect Maker |
2026-01-08T09:17:51.313Z | 2026-01-20T14:28:29.078Z |
| CVE-2025-68865 |
9.3 (3.1)
|
WordPress Infility Global plugin <= 2.14.48 - SQL Inje… |
Infility |
Infility Global |
2026-01-05T10:44:34.184Z | 2026-01-20T14:28:28.951Z |
| CVE-2025-68861 |
7.1 (3.1)
|
WordPress Plugin Optimizer plugin <= 1.3.7 - Broken Ac… |
Plugin Optimizer |
Plugin Optimizer |
2025-12-29T17:23:08.542Z | 2026-01-20T14:28:28.999Z |
| CVE-2025-68860 |
9.8 (3.1)
|
WordPress Mobile builder plugin <= 1.4.2 - Broken Auth… |
Mobile Builder |
Mobile builder |
2025-12-29T21:08:56.358Z | 2026-01-20T14:28:28.984Z |
| CVE-2025-68850 |
7.5 (3.1)
|
WordPress Sell Downloads plugin <= 1.1.12 - Broken Ac… |
Codepeople |
Sell Downloads |
2026-01-05T10:43:35.490Z | 2026-01-20T14:28:28.893Z |
| CVE-2025-68608 |
8.8 (3.1)
|
WordPress Userpro plugin <= 5.1.9 - Broken Access Cont… |
DeluxeThemes |
Userpro |
2025-12-24T12:31:31.259Z | 2026-01-20T14:28:29.001Z |
| CVE-2025-68607 |
6.5 (3.1)
|
WordPress Custom Field Template plugin <= 2.7.5 - Cros… |
Hiroaki Miyashita |
Custom Field Template |
2025-12-29T21:10:50.618Z | 2026-01-20T14:28:28.975Z |
| CVE-2025-68606 |
7.5 (3.1)
|
WordPress PostX plugin <= 5.0.3 - Sensitive Data Expos… |
WPXPO |
PostX |
2025-12-24T13:10:48.784Z | 2026-01-20T14:28:28.845Z |
| CVE-2025-68605 |
5.4 (3.1)
|
WordPress Post Grid and Gutenberg Blocks plugin <= 2.3… |
PickPlugins |
Post Grid and Gutenberg Blocks |
2025-12-24T13:10:48.261Z | 2026-01-20T14:28:28.908Z |
| CVE-2025-68603 |
8.1 (3.1)
|
WordPress Editorial Calendar plugin <= 3.8.8 - Broken … |
Marketing Fire |
Editorial Calendar |
2025-12-24T13:10:47.744Z | 2026-01-20T14:28:29.006Z |
| CVE-2025-68602 |
6.1 (3.1)
|
WordPress Accept Donations with PayPal plugin <= 1.5.1… |
Scott Paterson |
Accept Donations with PayPal |
2025-12-24T13:10:47.134Z | 2026-01-20T14:28:29.023Z |
| CVE-2025-68601 |
8.8 (3.1)
|
WordPress Five Star Restaurant Reservations plugin <= … |
Rustaurius |
Five Star Restaurant Reservations |
2025-12-24T13:10:46.860Z | 2026-01-20T14:28:28.891Z |
| CVE-2025-68600 |
9.1 (3.1)
|
WordPress Link Library plugin <= 7.8.4 - Server Side R… |
Yannick Lefebvre |
Link Library |
2025-12-24T13:10:46.548Z | 2026-01-20T14:28:28.926Z |
| CVE-2025-68599 |
5.4 (3.1)
|
WordPress YouTube Embed plugin <= 5.4 - Cross Site Scr… |
Embeds For YouTube Plugin Support |
YouTube Embed |
2025-12-24T13:10:46.247Z | 2026-01-20T14:28:28.563Z |
| CVE-2025-68598 |
5.4 (3.1)
|
WordPress Page Builder: Live Composer plugin <= 2.0.5 … |
LiveComposer |
Page Builder: Live Composer |
2025-12-24T13:10:45.982Z | 2026-01-20T14:28:28.836Z |
| CVE-2025-68597 |
5.4 (3.1)
|
WordPress Jobs for WordPress plugin <= 2.7.17 - Cross … |
BlueGlass Interactive AG |
Jobs for WordPress |
2025-12-24T13:10:45.718Z | 2026-01-20T14:28:28.528Z |
| CVE-2025-68596 |
8.8 (3.1)
|
WordPress Bit Assist plugin <= 1.5.11 - Broken Access … |
Bit Apps |
Bit Assist |
2025-12-24T13:10:45.364Z | 2026-01-20T14:28:28.773Z |
| CVE-2025-68595 |
8.8 (3.1)
|
WordPress Widgets for Social Photo Feed plugin <= 1.7.… |
Trustindex |
Widgets for Social Photo Feed |
2025-12-24T13:10:44.856Z | 2026-01-20T14:28:28.572Z |
| CVE-2025-68594 |
8.1 (3.1)
|
WordPress Poll, Survey & Quiz Maker Plugin by Opinion … |
Assaf Parag |
Poll, Survey & Quiz Maker Plugin by Opinion Stage |
2025-12-24T13:10:44.556Z | 2026-01-20T14:28:28.512Z |
| CVE-2025-68593 |
8.8 (3.1)
|
WordPress WP Adminify plugin <= 4.0.6.1 - Broken Acces… |
Liton Arefin |
WP Adminify |
2025-12-24T13:10:44.275Z | 2026-01-20T14:28:28.837Z |
| CVE-2025-68592 |
8.8 (3.1)
|
WordPress WP Adminify plugin <= 4.0.6.1 - Broken Acces… |
Liton Arefin |
WP Adminify |
2025-12-24T13:10:43.992Z | 2026-01-20T14:28:28.495Z |
| CVE-2025-68591 |
8.1 (3.1)
|
WordPress Simple File List plugin <= 6.1.15 - Broken A… |
Mitchell Bennis |
Simple File List |
2025-12-24T13:10:43.716Z | 2026-01-20T14:28:28.564Z |
| CVE-2025-68590 |
9.8 (3.1)
|
WordPress Integration for Contact Form 7 HubSpot plugi… |
CRM Perks |
Integration for Contact Form 7 HubSpot |
2025-12-24T13:10:43.422Z | 2026-01-20T14:28:28.555Z |
| CVE-2025-68589 |
8.1 (3.1)
|
WordPress WP Telegram Widget and Join Link plugin <= 2… |
WP Socio |
WP Telegram Widget and Join Link |
2025-12-24T13:10:43.150Z | 2026-01-20T14:28:28.424Z |
| CVE-2025-68588 |
8.1 (3.1)
|
WordPress TS Poll plugin <= 2.5.3 - Broken Access Cont… |
totalsoft |
TS Poll |
2025-12-24T13:10:42.857Z | 2026-01-20T14:28:28.481Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-68875 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:53.823 | 2026-01-20T15:19:53.490 |
| fkie_cve-2025-68874 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:53.697 | 2026-01-20T15:19:53.360 |
| fkie_cve-2025-68873 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:53.560 | 2026-01-20T15:19:53.227 |
| fkie_cve-2025-68870 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-29T17:15:47.067 | 2026-01-20T15:19:53.130 |
| fkie_cve-2025-68868 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-29T17:15:46.903 | 2026-01-20T15:19:53.020 |
| fkie_cve-2025-68867 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:53.427 | 2026-01-20T15:19:52.893 |
| fkie_cve-2025-68865 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2026-01-05T11:17:42.267 | 2026-01-20T15:19:52.800 |
| fkie_cve-2025-68861 | Missing Authorization vulnerability in Plugin Optimizer allows Exploiting Incorrectly Configured Ac… | 2025-12-29T18:15:43.740 | 2026-01-20T15:19:52.697 |
| fkie_cve-2025-68860 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Mobile Builder Mobile bui… | 2025-12-29T22:15:43.597 | 2026-01-20T15:19:52.593 |
| fkie_cve-2025-68850 | Missing Authorization vulnerability in Codepeople Sell Downloads allows Exploiting Incorrectly Conf… | 2026-01-05T11:17:42.120 | 2026-01-20T15:19:52.497 |
| fkie_cve-2025-68608 | Missing Authorization vulnerability in DeluxeThemes Userpro userpro allows Exploiting Incorrectly C… | 2025-12-24T13:16:28.313 | 2026-01-20T15:19:52.360 |
| fkie_cve-2025-68607 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-29T22:15:43.450 | 2026-01-20T15:19:52.240 |
| fkie_cve-2025-68606 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPXPO P… | 2025-12-24T13:16:28.197 | 2026-01-20T15:19:52.100 |
| fkie_cve-2025-68605 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:28.060 | 2026-01-20T15:19:51.950 |
| fkie_cve-2025-68603 | Missing Authorization vulnerability in Marketing Fire Editorial Calendar editorial-calendar allows … | 2025-12-24T13:16:27.920 | 2026-01-20T15:19:51.780 |
| fkie_cve-2025-68602 | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Scott Paterson Accept Donation… | 2025-12-24T13:16:27.770 | 2026-01-20T15:19:51.623 |
| fkie_cve-2025-68601 | Cross-Site Request Forgery (CSRF) vulnerability in Rustaurius Five Star Restaurant Reservations res… | 2025-12-24T13:16:27.650 | 2026-01-20T15:19:51.467 |
| fkie_cve-2025-68600 | Server-Side Request Forgery (SSRF) vulnerability in Yannick Lefebvre Link Library link-library allo… | 2025-12-24T13:16:27.530 | 2026-01-20T15:19:51.300 |
| fkie_cve-2025-68599 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:27.413 | 2026-01-20T15:19:51.127 |
| fkie_cve-2025-68598 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:27.290 | 2026-01-20T15:19:50.967 |
| fkie_cve-2025-68597 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:27.177 | 2026-01-20T15:19:50.827 |
| fkie_cve-2025-68596 | Missing Authorization vulnerability in Bit Apps Bit Assist bit-assist allows Exploiting Incorrectly… | 2025-12-24T13:16:27.053 | 2026-01-20T15:19:50.673 |
| fkie_cve-2025-68595 | Missing Authorization vulnerability in Trustindex Widgets for Social Photo Feed social-photo-feed-w… | 2025-12-24T13:16:26.940 | 2026-01-20T15:19:50.523 |
| fkie_cve-2025-68594 | Missing Authorization vulnerability in Assaf Parag Poll, Survey & Quiz Maker Plugin by Opinion Stag… | 2025-12-24T13:16:26.813 | 2026-01-20T15:19:50.380 |
| fkie_cve-2025-68593 | Missing Authorization vulnerability in Liton Arefin WP Adminify adminify allows Exploiting Incorrec… | 2025-12-24T13:16:26.697 | 2026-01-20T15:19:50.230 |
| fkie_cve-2025-68592 | Missing Authorization vulnerability in Liton Arefin WP Adminify adminify allows Exploiting Incorrec… | 2025-12-24T13:16:26.573 | 2026-01-20T15:19:50.073 |
| fkie_cve-2025-68591 | Missing Authorization vulnerability in Mitchell Bennis Simple File List simple-file-list allows Exp… | 2025-12-24T13:16:26.457 | 2026-01-20T15:19:49.910 |
| fkie_cve-2025-68590 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-24T13:16:26.337 | 2026-01-20T15:19:49.757 |
| fkie_cve-2025-68589 | Missing Authorization vulnerability in WP Socio WP Telegram Widget and Join Link wptelegram-widget … | 2025-12-24T13:16:26.220 | 2026-01-20T15:19:49.590 |
| fkie_cve-2025-68588 | Missing Authorization vulnerability in totalsoft TS Poll poll-wp allows Exploiting Incorrectly Conf… | 2025-12-24T13:16:26.100 | 2026-01-20T15:19:49.457 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-w43v-gmgj-wr42 |
7.8 (3.1)
8.5 (4.0)
|
TotalAV 5.15.69 contains an unquoted service path vulnerability in multiple system services running… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-vjvv-qrp6-vq73 |
7.8 (3.1)
8.5 (4.0)
|
Disk Sorter Enterprise 13.6.12 contains an unquoted service path vulnerability in its Windows servi… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-vfw6-v9vr-jfg2 |
7.5 (3.1)
6.7 (4.0)
|
Leawo Prof. Media 11.0.0.1 contains a denial of service vulnerability that allows attackers to cras… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-rx63-hxw9-f88f |
7.5 (3.1)
4.6 (4.0)
|
SmartFTP Client 10.0.2909.0 contains multiple denial of service vulnerabilities that allow attacker… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-rm9q-gqw9-7hp5 |
8.8 (3.1)
8.7 (4.0)
|
ZesleCP 3.1.9 contains an authenticated remote code execution vulnerability that allows attackers t… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-q3fx-45f9-q78r |
5.3 (3.1)
6.9 (4.0)
|
b2evolution 7.2.2 contains a cross-site request forgery vulnerability that allows attackers to modi… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-p4hv-mffv-fqrv |
8.8 (3.1)
8.7 (4.0)
|
WebsiteBaker 2.13.0 contains an authenticated remote code execution vulnerability that allows users… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-mqv7-mfm2-rp2p |
9.8 (3.1)
9.3 (4.0)
|
Buffer overflow in XML processing of XPS file in Small Office Multifunction Printers and Laser Prin… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-jh9g-9h7m-5j4j |
9.8 (3.1)
9.3 (4.0)
|
Buffer overflow in CPCA list processing on Small Office Multifunction Printers and Laser Printers(*… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-j8v7-fcfg-6gwq |
9.8 (3.1)
9.3 (4.0)
|
Buffer overflow in XPS font parse processing on Small Office Multifunction Printers and Laser Print… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-j425-3jgm-m83r |
5.4 (3.1)
5.3 (4.0)
|
Phpwcms 1.9.30 contains a file upload vulnerability that allows authenticated attackers to upload m… | 2026-01-16T00:30:54Z | 2026-01-16T00:30:55Z |
| ghsa-j2cq-v2cc-8pvq |
8.2 (3.1)
8.8 (4.0)
|
Vianeos OctoPUS 5 contains a time-based blind SQL injection vulnerability in the 'login_user' param… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-hf7c-3q9p-mcqw |
7.5 (3.1)
6.8 (4.0)
|
Redragon Gaming Mouse driver contains a kernel-level vulnerability that allows attackers to trigger… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-h7xf-488f-xfx8 |
7.5 (3.1)
6.8 (4.0)
|
Yenkee Hornet Gaming Mouse driver GM312Fltr.sys contains a buffer overrun vulnerability that allows… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-gv5j-2376-g8mr |
9.8 (3.1)
9.3 (4.0)
|
Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows u… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-gqqp-x5qv-896x |
7.2 (3.1)
5.1 (4.0)
|
Cotonti Siena 0.9.19 contains a stored cross-site scripting vulnerability in the admin configuratio… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-gfj7-x7qv-2c5x |
9.8 (3.1)
9.3 (4.0)
|
Buffer overflow in print job processing by WSD on Small Office Multifunction Printers and Laser Pri… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-gf8f-9wv9-8xgr |
7.8 (3.1)
8.5 (4.0)
|
Dup Scout 13.5.28 contains an unquoted service path vulnerability in its Windows service configurat… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-g824-3qg6-qhq5 |
7.8 (3.1)
8.5 (4.0)
|
Disk Savvy 13.6.14 contains an unquoted service path vulnerability in its Windows service configura… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-f6px-3vvf-q83r |
7.8 (3.1)
8.5 (4.0)
|
Remote Mouse 4.002 contains an unquoted service path vulnerability that allows local attackers to e… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-c6rm-x44q-j5rw |
7.5 (3.1)
6.7 (4.0)
|
NBMonitor 1.6.8 contains a denial of service vulnerability that allows attackers to crash the appli… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-93r3-3845-hqh2 |
8.2 (3.1)
8.8 (4.0)
|
Grocery Crud 1.6.4 contains a SQL injection vulnerability in the order_by parameter that allows rem… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-93j2-gqc2-7p2v |
7.8 (3.1)
8.5 (4.0)
|
Active WebCam 11.5 contains an unquoted service path vulnerability that allows local attackers to e… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-9243-8h4w-g3wg |
7.8 (3.1)
8.5 (4.0)
|
WibuKey Runtime 6.51 contains an unquoted service path vulnerability in the WkSvW32.exe service tha… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-8cmj-92hf-phc8 |
7.8 (3.1)
8.5 (4.0)
|
Wise Care 365 5.6.7.568 contains an unquoted service path vulnerability in the WiseBootAssistant se… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-8cgh-48g2-rj4j |
9.8 (3.1)
9.3 (4.0)
|
Invalid free in CPCA file deletion processing on Small Office Multifunction Printers and Laser Prin… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-8c6x-7p4v-x88m |
7.8 (3.1)
8.5 (4.0)
|
Sync Breeze 13.6.18 contains an unquoted service path vulnerability in its Windows service configur… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-6m8f-gxf8-jq76 |
6.2 (3.1)
8.7 (4.0)
|
GeoVision GeoWebServer 5.3.3 contains multiple vulnerabilities including local file inclusion, cros… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-656v-64rf-6vxr |
7.8 (3.1)
8.5 (4.0)
|
iFunbox 4.2 contains an unquoted service path vulnerability in the Apple Mobile Device Service that… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ghsa-649f-v3rg-phwg |
7.5 (3.1)
6.7 (4.0)
|
Nsauditor 3.2.3 contains a denial of service vulnerability in the registration code input field tha… | 2026-01-16T00:30:55Z | 2026-01-16T00:30:55Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-28195 | your_spotify is an open source, self hosted Spotify tracking dashboard. YourSpotify versi… | 2024-03-08T06:02:46.544700Z |
| gsd-2024-28711 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.544074Z |
| gsd-2024-28175 | Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Due to the impr… | 2024-03-08T06:02:46.543867Z |
| gsd-2024-28431 | DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability … | 2024-03-08T06:02:46.543664Z |
| gsd-2024-28688 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.543187Z |
| gsd-2024-28441 | File Upload vulnerability in magicflue v.7.0 and before allows a remote attacker to execu… | 2024-03-08T06:02:46.542915Z |
| gsd-2024-28592 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.542699Z |
| gsd-2024-28605 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.542488Z |
| gsd-2024-28315 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.540831Z |
| gsd-2024-28625 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.540359Z |
| gsd-2024-28436 | Cross Site Scripting vulnerability in D-Link DAP products DAP-2230, DAP-2310, DAP-2330, D… | 2024-03-08T06:02:46.540159Z |
| gsd-2024-28236 | Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology writt… | 2024-03-08T06:02:46.539950Z |
| gsd-2024-28490 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.539741Z |
| gsd-2024-28178 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.539532Z |
| gsd-2024-28591 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.539255Z |
| gsd-2024-28311 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.537868Z |
| gsd-2024-28418 | Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/we_cmd.php | 2024-03-08T06:02:46.537665Z |
| gsd-2024-28634 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.537445Z |
| gsd-2024-28617 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.537225Z |
| gsd-2024-28376 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.537000Z |
| gsd-2024-28560 | SQL injection vulnerability in Niushop B2B2C v.5.3.3 and before allows an attacker to esc… | 2024-03-08T06:02:46.536763Z |
| gsd-2024-28706 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.536547Z |
| gsd-2024-28495 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.535444Z |
| gsd-2024-28387 | An issue in axonaut v.3.1.23 and before allows a remote attacker to obtain sensitive info… | 2024-03-08T06:02:46.535228Z |
| gsd-2024-28425 | greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the l… | 2024-03-08T06:02:46.535028Z |
| gsd-2024-28451 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.534828Z |
| gsd-2024-28526 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.534342Z |
| gsd-2024-28545 | Tenda AC18 V15.03.05.05 contains a command injection vulnerablility in the deviceName par… | 2024-03-08T06:02:46.534138Z |
| gsd-2024-28505 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.533935Z |
| gsd-2024-28243 | KaTeX is a JavaScript library for TeX math rendering on the web. KaTeX users who render u… | 2024-03-08T06:02:46.533730Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-188311 | Malicious code in node-config-pulsar-buffer-luna (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188310 | Malicious code in node-config-private-zenobia-perseus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188309 | Malicious code in node-config-phoenix-regulus-html-webpack-plugin (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188308 | Malicious code in node-config-mini-css-extract-plugin-bellatrix-update (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188307 | Malicious code in node-config-lynx-cressida-hermes (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188306 | Malicious code in node-config-hexo-version-indus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188305 | Malicious code in node-config-cross-env-event-fomalhaut (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188304 | Malicious code in node-config-commitlint-panspermia-superposition (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188303 | Malicious code in node-config-callisto-comet-eslint-plugin (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188302 | Malicious code in node-bundle-omega-deploy-sandbox (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188301 | Malicious code in node-awk-resolve-dog-public (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188300 | Malicious code in nightwatch-wolf-kastra-seismology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188299 | Malicious code in nightwatch-ursa-rollup-plugin-slidev (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188298 | Malicious code in nightwatch-supervisor-hyperion-meissa (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188297 | Malicious code in nightwatch-supercluster-zooarchaeology-redgiant (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188296 | Malicious code in nightwatch-spawn-leda-tool (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188295 | Malicious code in nightwatch-server-pino-pretty-cz-conventional-changelog (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188294 | Malicious code in nightwatch-sedna-cosmiconfig-duplex (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188293 | Malicious code in nightwatch-restart-corvus-arcturus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188292 | Malicious code in nightwatch-procyon-stream-docusaurus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188291 | Malicious code in nightwatch-ophiuchus-request-quito (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188290 | Malicious code in nightwatch-nashira-wavefunction-perturbation (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188289 | Malicious code in nightwatch-loopback-delphinus-ursa (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188288 | Malicious code in nightwatch-levels-lepton-phoebe (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188287 | Malicious code in nightwatch-javascript-kastra-antares (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188286 | Malicious code in nightwatch-interferometry-meteor-decoherence (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188285 | Malicious code in nightwatch-global-subduction-eslint-plugin (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188284 | Malicious code in nightwatch-firebase-janus-package (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188283 | Malicious code in nightwatch-event-gammarayburst-eridanus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188282 | Malicious code in nightwatch-despina-markdownlint-vuepress (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-2378 | Microsoft Edge: Mehrere Schwachstellen | 2023-09-17T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-2096 | Microsoft Edge: Mehrere Schwachstellen | 2023-08-17T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-1447 | Microsoft Edge: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-06-13T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-1358 | Microsoft Edge: Mehrere Schwachstellen | 2023-06-04T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-1076 | Xen: Schwachstelle ermöglicht Denial of Service | 2023-04-25T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-1048 | Oracle Construction and Engineering: Mehrere Schwachstellen | 2020-10-20T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-1045 | JasPer: Schwachstelle ermöglicht Denial of Service | 2021-03-15T23:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-0961 | FreeType: Schwachstelle ermöglicht Denial of Service | 2023-04-13T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-0703 | Xen: Mehrere Schwachstellen | 2023-03-20T23:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-0685 | FasterXML Jackson: Schwachstelle ermöglicht Denial of Service | 2023-03-19T23:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-0205 | Xen: Schwachstelle ermöglicht Denial of Service | 2023-01-25T23:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2022-1939 | Xen: Mehrere Schwachstellen | 2022-11-01T23:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2022-1825 | Apache CXF: Mehrere Schwachstellen | 2019-11-05T23:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2022-1680 | Xen / Citrix Hypervisor: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-10-11T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2022-0714 | Dell BSAFE: Mehrere Schwachstellen | 2022-07-18T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2022-0610 | QT: Schwachstelle ermöglicht Denial of Service | 2021-08-12T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2022-0453 | XEN / Citrix Hypervisor: Mehrere Schwachstellen | 2022-04-05T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2022-0281 | Xen: Mehrere Schwachstellen | 2022-04-05T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2024-0277 | IBM Business Automation Workflow: Mehrere Schwachstellen | 2024-02-01T23:00:00.000+00:00 | 2024-02-01T23:00:00.000+00:00 |
| wid-sec-w-2024-0274 | IBM Maximo Asset Management: Schwachstelle ermöglicht Denial of Service | 2024-02-01T23:00:00.000+00:00 | 2024-02-01T23:00:00.000+00:00 |
| wid-sec-w-2024-0273 | D-LINK Router: Mehrere Schwachstellen | 2024-02-01T23:00:00.000+00:00 | 2024-02-01T23:00:00.000+00:00 |
| wid-sec-w-2024-0262 | Ivanti Connect Secure: Mehrere Schwachstellen | 2024-01-31T23:00:00.000+00:00 | 2024-02-01T23:00:00.000+00:00 |
| wid-sec-w-2024-0257 | IBM QRadar SIEM User Behavior Analytics: Mehrere Schwachstellen | 2024-01-30T23:00:00.000+00:00 | 2024-02-01T23:00:00.000+00:00 |
| wid-sec-w-2023-2439 | GNU libc: Schwachstelle ermöglicht Denial of Service | 2023-09-25T22:00:00.000+00:00 | 2024-02-01T23:00:00.000+00:00 |
| wid-sec-w-2022-0867 | D-LINK Router: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Administratorrechten | 2022-07-31T22:00:00.000+00:00 | 2024-02-01T23:00:00.000+00:00 |
| wid-sec-w-2024-0271 | Rockwell Automation ControlLogix: Schwachstelle ermöglicht Denial of Service | 2024-01-31T23:00:00.000+00:00 | 2024-01-31T23:00:00.000+00:00 |
| wid-sec-w-2024-0270 | Rockwell Automation FactoryTalk: Schwachstelle ermöglicht Manipulation von Dateien und Offenlegung von Informationen | 2024-01-31T23:00:00.000+00:00 | 2024-01-31T23:00:00.000+00:00 |
| wid-sec-w-2024-0269 | D-LINK COVR-2600R & COVR-3902: Mehrere Schwachstellen ermöglichen Codeausführung | 2024-01-31T23:00:00.000+00:00 | 2024-01-31T23:00:00.000+00:00 |
| wid-sec-w-2024-0268 | Sparx Systems Enterprise Architect: Schwachstelle ermöglicht Codeausführung | 2024-01-31T23:00:00.000+00:00 | 2024-01-31T23:00:00.000+00:00 |
| wid-sec-w-2024-0267 | Hashicorp Vault: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-01-31T23:00:00.000+00:00 | 2024-01-31T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2022:1000 | Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (numpy) security update | 2022-03-23T22:11:40+00:00 | 2026-01-13T21:54:54+00:00 |
| rhsa-2022:0345 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2022-02-01T15:14:03+00:00 | 2026-01-13T21:54:54+00:00 |
| rhsa-2022:0310 | Red Hat Security Advisory: java-1.7.1-ibm security update | 2022-01-27T14:11:40+00:00 | 2026-01-13T21:54:53+00:00 |
| rhsa-2022:0064 | Red Hat Security Advisory: openssl security update | 2022-01-11T18:03:42+00:00 | 2026-01-13T21:54:52+00:00 |
| rhsa-2021:5226 | Red Hat Security Advisory: openssl security update | 2021-12-21T09:45:51+00:00 | 2026-01-13T21:54:52+00:00 |
| rhsa-2021:5030 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2021-12-08T16:22:29+00:00 | 2026-01-13T21:54:52+00:00 |
| rhsa-2014:0091 | Red Hat Security Advisory: openstack-neutron security, bug fix, and enhancement update | 2014-01-22T18:31:15+00:00 | 2026-01-13T21:52:51+00:00 |
| rhsa-2022:6518 | Red Hat Security Advisory: rh-mysql80-mysql security, bug fix, and enhancement update | 2022-09-14T13:47:46+00:00 | 2026-01-13T21:52:50+00:00 |
| rhsa-2022:1179 | Red Hat Security Advisory: Red Hat support for Spring Boot 2.5.10 update | 2022-04-12T19:06:09+00:00 | 2026-01-13T21:52:49+00:00 |
| rhsa-2022:1013 | Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus 2.2.1 security update | 2022-03-22T15:33:40+00:00 | 2026-01-13T21:52:48+00:00 |
| rhsa-2021:4863 | Red Hat Security Advisory: Red Hat JBoss Web Server 5.6.0 Security release | 2021-11-30T14:25:37+00:00 | 2026-01-13T21:52:43+00:00 |
| rhsa-2021:4861 | Red Hat Security Advisory: Red Hat JBoss Web Server 5.6.0 Security release | 2021-11-30T14:28:36+00:00 | 2026-01-13T21:52:43+00:00 |
| rhsa-2021:4198 | Red Hat Security Advisory: edk2 security, bug fix, and enhancement update | 2021-11-09T18:33:45+00:00 | 2026-01-13T21:52:43+00:00 |
| rhsa-2021:4526 | Red Hat Security Advisory: mingw-glib2 security, bug fix, and enhancement update | 2021-11-09T18:21:41+00:00 | 2026-01-13T21:52:41+00:00 |
| rhsa-2021:4424 | Red Hat Security Advisory: openssl security and bug fix update | 2021-11-09T18:08:40+00:00 | 2026-01-13T21:52:41+00:00 |
| rhsa-2021:4089 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2021-11-02T10:21:32+00:00 | 2026-01-13T21:52:40+00:00 |
| rhsa-2021:3798 | Red Hat Security Advisory: openssl security update | 2021-10-12T16:13:14+00:00 | 2026-01-13T21:52:40+00:00 |
| rhsa-2021:3063 | Red Hat Security Advisory: rust-toolset:rhel8 security, bug fix, and enhancement update | 2021-08-10T16:14:15+00:00 | 2026-01-13T21:52:39+00:00 |
| rhsa-2021:3293 | Red Hat Security Advisory: java-1.7.1-ibm security update | 2021-08-30T08:06:36+00:00 | 2026-01-13T21:52:38+00:00 |
| rhsa-2021:2782 | Red Hat Security Advisory: java-11-openjdk security update | 2021-07-21T08:45:39+00:00 | 2026-01-13T21:52:36+00:00 |
| rhsa-2021:3058 | Red Hat Security Advisory: glib2 security update | 2021-08-10T13:17:56+00:00 | 2026-01-13T21:52:35+00:00 |
| rhsa-2021:2783 | Red Hat Security Advisory: java-11-openjdk security update | 2021-07-21T08:06:36+00:00 | 2026-01-13T21:52:33+00:00 |
| rhsa-2021:2781 | Red Hat Security Advisory: java-11-openjdk security update | 2021-07-21T08:53:59+00:00 | 2026-01-13T21:52:33+00:00 |
| rhsa-2021:2779 | Red Hat Security Advisory: OpenJDK 11.0.12 Security Update for Windows Builds | 2021-07-22T15:08:57+00:00 | 2026-01-13T21:52:31+00:00 |
| rhsa-2021:2778 | Red Hat Security Advisory: OpenJDK 8u302 Security Update for Portable Linux Builds | 2021-07-22T15:02:35+00:00 | 2026-01-13T21:52:31+00:00 |
| rhsa-2021:2777 | Red Hat Security Advisory: OpenJDK 8u302 Windows Builds release and security update | 2021-07-22T15:02:58+00:00 | 2026-01-13T21:52:31+00:00 |
| rhsa-2021:2776 | Red Hat Security Advisory: java-1.8.0-openjdk security update | 2021-07-21T09:46:43+00:00 | 2026-01-13T21:52:30+00:00 |
| rhsa-2021:2775 | Red Hat Security Advisory: java-1.8.0-openjdk security update | 2021-07-21T11:52:03+00:00 | 2026-01-13T21:52:29+00:00 |
| rhsa-2021:2774 | Red Hat Security Advisory: java-1.8.0-openjdk security update | 2021-07-21T12:07:33+00:00 | 2026-01-13T21:52:29+00:00 |
| rhsa-2022:8502 | Red Hat Security Advisory: RHV Manager (ovirt-engine) [ovirt-4.5.3] bug fix and security update | 2022-11-16T12:19:39+00:00 | 2026-01-13T21:49:44+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-28110 | Go SDK for CloudEvents's use of WithRoundTripper to create a Client leaks credentials | 2024-03-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-27983 | An attacker can make the Node.js HTTP/2 server completely unavailable by sending a small amount of HTTP/2 frames packets with a few HTTP/2 frames inside. It is possible to leave some data in nghttp2 memory after reset when headers with HTTP/2 CONTINUATION frame are sent to the server and then a TCP connection is abruptly closed by the client triggering the Http2Session destructor while header frames are still being processed (and stored in memory) causing a race condition. | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-27982 | The team has identified a critical vulnerability in the http server of the most recent version of Node where malformed headers can lead to HTTP request smuggling. Specifically if a space is placed before a content-length header it is not interpreted correctly enabling attackers to smuggle in a second request within the body of the first. | 2024-05-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-2757 | PHP mb_encode_mimeheader runs endlessly for some inputs | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-27391 | wifi: wilc1000: do not realloc workqueue everytime an interface is added | 2024-05-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-27304 | pgx SQL Injection via Protocol Message Size Overflow | 2024-03-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-27289 | pgx SQL Injection via Line Comment Creation | 2024-03-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-27099 | Azure IoT Platform Device SDK Double Free Vulnerability | 2024-02-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26909 | soc: qcom: pmic_glink_altmode: fix drm bridge use-after-free | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26907 | RDMA/mlx5: Fix fortify source warning while accessing Eth segment | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26904 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26903 | Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26902 | perf: RISCV: Fix panic on pmu overflow handler | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26901 | do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26898 | aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26885 | bpf: Fix DEVMAP_HASH overflow check on 32-bit arches | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26884 | bpf: Fix hashtab overflow check on 32-bit arches | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26883 | bpf: Fix stackmap overflow check on 32-bit arches | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26882 | net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv() | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26881 | net: hns3: fix kernel crash when 1588 is received on HIP08 devices | 2024-04-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26585 | tls: fix race between tx work scheduling and socket close | 2024-02-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26583 | tls: fix race between async notify and socket close | 2024-02-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26582 | net: tls: fix use-after-free with partial reads and async decrypt | 2024-02-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-26581 | netfilter: nft_set_rbtree: skip end interval element from gc | 2024-02-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-24557 | Moby classic builder cache poisoning | 2024-02-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-24259 | freeglut through 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddMenuEntry function. | 2024-02-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-24258 | freeglut 3.4.0 was discovered to contain a memory leak via the menuEntry variable in the glutAddSubMenu function. | 2024-02-02T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-2408 | PHP is vulnerable to the Marvin Attack | 2024-06-02T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-23653 | BuildKit interactive containers API does not validate entitlements check | 2024-01-01T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-23652 | BuildKit possible host system access from mount stub cleaner | 2024-01-01T08:00:00.000Z | 2024-06-30T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201711-0944 | MTK platform in Huawei smart phones with software of earlier than Nice-AL00C00B160 versio… | 2025-04-20T23:30:50.210000Z |
| var-201711-0965 | The UMA product with software V200R001 has a cross-site scripting (XSS) vulnerability due… | 2025-04-20T23:30:50.185000Z |
| var-201711-0986 | Audio driver in P9 smartphones with software The versions before EVA-AL10C00B389 has a de… | 2025-04-20T23:30:50.154000Z |
| var-201711-1007 | AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with soft… | 2025-04-20T23:30:50.122000Z |
| var-201711-1028 | Huawei SMC2.0 with software of V100R003C10, V100R005C00SPC100, V100R005C00SPC101B001T, V1… | 2025-04-20T23:30:50.092000Z |
| var-201712-0033 | Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D… | 2025-04-20T23:30:49.981000Z |
| var-201712-0117 | A Cross-site Scripting issue was discovered in Geovap Reliance SCADA Version 4.7.3 Update… | 2025-04-20T23:30:49.863000Z |
| var-201712-0220 | In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, the 'ping' and 'trac… | 2025-04-20T23:30:49.806000Z |
| var-201712-0222 | Versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware lack CSRF controls that … | 2025-04-20T23:30:49.776000Z |
| var-201712-0243 | Prior to 10.6.4, Symantec Messaging Gateway may be susceptible to a path traversal attack… | 2025-04-20T23:30:49.743000Z |
| var-201712-0369 | Red Lion HMI panels allow remote attackers to cause a denial of service (software excepti… | 2025-04-20T23:30:49.634000Z |
| var-201712-0707 | IBM Sterling File Gateway 2.2 is vulnerable to cross-site scripting. This vulnerability a… | 2025-04-20T23:30:49.405000Z |
| var-202503-0684 | Tenda AC7 V1.0 V15.03.06.44 found a buffer overflow caused by the timeZone parameter in t… | 2025-04-20T23:30:35.151000Z |
| var-201701-0620 | Vivint Sky Control Panel 1.1.1.9926 allows remote attackers to enable and disable the ala… | 2025-04-20T23:29:46.151000Z |
| var-201701-0727 | A vulnerability in Cisco Unified Communications Manager could allow an unauthenticated, r… | 2025-04-20T23:29:46.054000Z |
| var-201701-0790 | Samsung Note devices with KK(4.4), L(5.0/5.1), and M(6.0) software allow attackers to cra… | 2025-04-20T23:29:45.991000Z |
| var-201702-0052 | F5 BIG-IP 12.0.0 and 11.5.0 - 11.6.1 REST requests which timeout during user account auth… | 2025-04-20T23:29:45.948000Z |
| var-201702-0073 | An issue was discovered in IBHsoftec S7-SoftPLC prior to 4.12b. Object memory can read a … | 2025-04-20T23:29:45.904000Z |
| var-201702-0082 | An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. The ap… | 2025-04-20T23:29:45.785000Z |
| var-201702-0304 | An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. A user… | 2025-04-20T23:29:45.746000Z |
| var-201702-0308 | An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. The ap… | 2025-04-20T23:29:45.709000Z |
| var-201702-0076 | An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. The ap… | 2025-04-20T23:29:45.672000Z |
| var-201702-0367 | IBM Security Access Manager for Web is vulnerable to a denial of service, caused by an XM… | 2025-04-20T23:29:45.637000Z |
| var-201702-0577 | Unisys Libra 43xx, 63xx, and 83xx, and FS600 class systems with MCP-FIRMWARE 40.0 before … | 2025-04-20T23:29:45.113000Z |
| var-201702-0787 | A vulnerability in Simple Network Management Protocol (SNMP) functions of Cisco ASR 1000 … | 2025-04-20T23:29:44.994000Z |
| var-201702-0808 | A vulnerability in the web interface of the Cisco Secure Access Control System (ACS) coul… | 2025-04-20T23:29:44.961000Z |
| var-201702-0850 | An issue was discovered in Emerson SE4801T0X Redundant Wireless I/O Card V13.3, and SE480… | 2025-04-20T23:29:44.921000Z |
| var-201703-0219 | Multiple cross-site scripting (XSS) vulnerabilities in the Management Console in Alcatel-… | 2025-04-20T23:29:44.692000Z |
| var-201703-0660 | An issue was discovered in Schneider Electric Tableau Server/Desktop Versions 7.0 to 10.1… | 2025-04-20T23:29:44.526000Z |
| var-201703-0891 | An Authentication Bypass vulnerability in Cisco WebEx Meetings Server could allow an unau… | 2025-04-20T23:29:44.494000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2023:2346-1 | Security update for cups | 2023-06-01T12:30:24Z | 2023-06-01T12:30:24Z |
| suse-su-2023:2345-1 | Security update for ImageMagick | 2023-06-01T11:08:20Z | 2023-06-01T11:08:20Z |
| suse-su-2023:2344-1 | Security update for ImageMagick | 2023-06-01T11:07:39Z | 2023-06-01T11:07:39Z |
| suse-su-2023:2343-1 | Security update for openssl-1_1 | 2023-06-01T09:35:56Z | 2023-06-01T09:35:56Z |
| suse-su-2023:2342-1 | Security update for openssl-1_1 | 2023-06-01T09:34:28Z | 2023-06-01T09:34:28Z |
| suse-su-2023:2334-1 | Security update for tiff | 2023-05-31T07:27:55Z | 2023-05-31T07:27:55Z |
| suse-su-2023:2332-1 | Security update for openssl | 2023-05-30T14:53:47Z | 2023-05-30T14:53:47Z |
| suse-su-2023:2331-1 | Security update for openssl-1_0_0 | 2023-05-30T14:51:52Z | 2023-05-30T14:51:52Z |
| suse-su-2023:2330-1 | Security update for openssl-1_0_0 | 2023-05-30T14:49:34Z | 2023-05-30T14:49:34Z |
| suse-su-2023:2329-1 | Security update for compat-openssl098 | 2023-05-30T14:48:50Z | 2023-05-30T14:48:50Z |
| suse-su-2023:2328-1 | Security update for openssl-1_1 | 2023-05-30T14:47:58Z | 2023-05-30T14:47:58Z |
| suse-su-2023:2327-1 | Security update for openssl-1_1 | 2023-05-30T14:45:19Z | 2023-05-30T14:45:19Z |
| suse-su-2023:2326-1 | Security update for amazon-ssm-agent | 2023-05-30T14:00:25Z | 2023-05-30T14:00:25Z |
| suse-su-2023:2325-1 | Security update for cni | 2023-05-30T13:58:13Z | 2023-05-30T13:58:13Z |
| suse-su-2023:2324-1 | Security update for cni-plugins | 2023-05-30T13:52:55Z | 2023-05-30T13:52:55Z |
| suse-su-2023:2323-1 | Security update for terraform | 2023-05-30T13:49:52Z | 2023-05-30T13:49:52Z |
| suse-su-2023:2322-1 | Security update for terraform-provider-helm | 2023-05-30T13:49:28Z | 2023-05-30T13:49:28Z |
| suse-su-2023:2321-1 | Security update for tiff | 2023-05-30T12:31:23Z | 2023-05-30T12:31:23Z |
| suse-su-2023:2320-1 | Security update for wireshark | 2023-05-30T12:20:30Z | 2023-05-30T12:20:30Z |
| suse-su-2023:2319-1 | Security update for tomcat | 2023-05-30T12:17:29Z | 2023-05-30T12:17:29Z |
| suse-su-2023:2318-1 | Security update for tomcat | 2023-05-30T12:14:21Z | 2023-05-30T12:14:21Z |
| suse-su-2023:2315-1 | Security update for installation-images | 2023-05-30T11:27:37Z | 2023-05-30T11:27:37Z |
| suse-su-2023:2314-1 | Security update for libaom | 2023-05-30T10:04:27Z | 2023-05-30T10:04:27Z |
| suse-su-2023:2313-1 | Security update for c-ares | 2023-05-30T07:30:02Z | 2023-05-30T07:30:02Z |
| suse-su-2023:2312-1 | Security update for go1.18-openssl | 2023-05-30T06:54:51Z | 2023-05-30T06:54:51Z |
| suse-su-2023:2304-1 | Security update for rmt-server | 2023-05-25T13:58:06Z | 2023-05-25T13:58:06Z |
| suse-su-2023:2298-1 | Security update for distribution | 2023-05-25T10:41:36Z | 2023-05-25T10:41:36Z |
| suse-su-2023:2297-1 | Security update for golang-github-vpenso-prometheus_slurm_exporter | 2023-05-25T09:39:55Z | 2023-05-25T09:39:55Z |
| suse-su-2023:2296-1 | Security update for openvswitch | 2023-05-25T08:07:17Z | 2023-05-25T08:07:17Z |
| suse-su-2023:2295-1 | Security update for rmt-server | 2023-05-25T07:56:07Z | 2023-05-25T07:56:07Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2021:1045-1 | Security update for claws-mail | 2021-07-15T22:06:35Z | 2021-07-15T22:06:35Z |
| opensuse-su-2021:2354-1 | Security update for nodejs14 | 2021-07-15T13:19:02Z | 2021-07-15T13:19:02Z |
| opensuse-su-2021:2353-1 | Security update for nodejs10 | 2021-07-15T13:18:04Z | 2021-07-15T13:18:04Z |
| opensuse-su-2021:2352-1 | Security update for the Linux Kernel | 2021-07-15T13:16:17Z | 2021-07-15T13:16:17Z |
| opensuse-su-2021:2327-1 | Security update for nodejs12 | 2021-07-14T15:08:18Z | 2021-07-14T15:08:18Z |
| opensuse-su-2021:2322-1 | Security update for ffmpeg | 2021-07-14T15:03:30Z | 2021-07-14T15:03:30Z |
| opensuse-su-2021:2320-1 | Security update for sqlite3 | 2021-07-14T15:01:28Z | 2021-07-14T15:01:28Z |
| opensuse-su-2021:1043-1 | Security update for qemu | 2021-07-13T22:06:05Z | 2021-07-13T22:06:05Z |
| opensuse-su-2021:2305-1 | Security update for the Linux Kernel | 2021-07-13T11:02:02Z | 2021-07-13T11:02:02Z |
| opensuse-su-2021:1031-1 | Security update for jdom2 | 2021-07-13T09:45:14Z | 2021-07-13T09:45:14Z |
| opensuse-su-2021:2291-1 | Security update for bluez | 2021-07-12T15:20:47Z | 2021-07-12T15:20:47Z |
| opensuse-su-2021:2294-1 | Security update for redis | 2021-07-12T06:27:00Z | 2021-07-12T06:27:00Z |
| opensuse-su-2021:2293-1 | Security update for jdom2 | 2021-07-12T06:26:40Z | 2021-07-12T06:26:40Z |
| opensuse-su-2021:2292-1 | Security update for dbus-1 | 2021-07-12T06:25:40Z | 2021-07-12T06:25:40Z |
| opensuse-su-2021:1029-1 | Security update for icinga2 | 2021-07-12T04:06:19Z | 2021-07-12T04:06:19Z |
| opensuse-su-2021:1977-1 | Security update for the Linux Kernel | 2021-07-11T13:07:21Z | 2021-07-11T13:07:21Z |
| opensuse-su-2021:1975-1 | Security update for the Linux Kernel | 2021-07-11T13:00:28Z | 2021-07-11T13:00:28Z |
| opensuse-su-2021:1819-1 | Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly | 2021-07-11T12:54:38Z | 2021-07-11T12:54:38Z |
| opensuse-su-2021:1761-1 | Security update for hivex | 2021-07-11T12:45:55Z | 2021-07-11T12:45:55Z |
| opensuse-su-2021:2158-1 | Security update for openexr | 2021-07-11T12:38:21Z | 2021-07-11T12:38:21Z |
| opensuse-su-2021:1896-1 | Security update for pam_radius | 2021-07-11T12:26:00Z | 2021-07-11T12:26:00Z |
| opensuse-su-2021:1843-1 | Security update for polkit | 2021-07-11T12:11:00Z | 2021-07-11T12:11:00Z |
| opensuse-su-2021:2106-1 | Security update for salt | 2021-07-11T12:04:10Z | 2021-07-11T12:04:10Z |
| opensuse-su-2021:1806-1 | Security update for python-httplib2 | 2021-07-11T12:03:47Z | 2021-07-11T12:03:47Z |
| opensuse-su-2021:1917-1 | Security update for libxml2 | 2021-07-11T10:43:46Z | 2021-07-11T10:43:46Z |
| opensuse-su-2021:2157-1 | Security update for libgcrypt | 2021-07-11T09:21:27Z | 2021-07-11T09:21:27Z |
| opensuse-su-2021:1859-1 | Security update for python-py | 2021-07-11T09:21:16Z | 2021-07-11T09:21:16Z |
| opensuse-su-2021:2008-1 | Security update for python-rsa | 2021-07-11T09:16:12Z | 2021-07-11T09:16:12Z |
| opensuse-su-2021:1942-1 | Security update for qemu | 2021-07-11T09:13:24Z | 2021-07-11T09:13:24Z |
| opensuse-su-2021:1759-1 | Security update for rubygem-actionpack-5_1 | 2021-07-11T09:10:17Z | 2021-07-11T09:10:17Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-13879 | WordPress Arconix FAQ plugin访问控制不当漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13878 | WordPress Aora plugin文件包含漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13877 | WordPress AI Image Lab – Free AI Image Generator plugin跨站请求伪造漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13876 | WordPress AFS Analytics plugin访问控制不当漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13875 | WordPress Advanced Settings plugin跨站请求伪造漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13874 | WordPress Advanced Sermons plugin跨站脚本漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13873 | WordPress ACF Onyx Poll plugin跨站脚本漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13839 | Tenda RX2 Pro访问控制错误漏洞 | 2025-05-14 | 2025-06-26 |
| cnvd-2025-13838 | Tenda RX2 Pro安全绕过漏洞(CNVD-2025-13838) | 2025-05-14 | 2025-06-26 |
| cnvd-2025-13837 | Tenda RX2 Pro安全绕过漏洞(CNVD-2025-13837) | 2025-05-14 | 2025-06-26 |
| cnvd-2025-13836 | Tenda RX2 Pro安全绕过漏洞 | 2025-05-14 | 2025-06-26 |
| cnvd-2025-13835 | Tenda RX2 Pro信息泄露漏洞 | 2025-05-14 | 2025-06-26 |
| cnvd-2025-13834 | TRENDnet TEW-929DRU硬编码密码漏洞 | 2025-03-13 | 2025-06-26 |
| cnvd-2025-13833 | TOTOLINK EX1200T缓冲区溢出漏洞 | 2025-06-20 | 2025-06-26 |
| cnvd-2025-13832 | TOTOLINK EX1200T缓冲区溢出漏洞 | 2025-06-20 | 2025-06-26 |
| cnvd-2025-13831 | TOTOLINK X15 /boafrm/formSysLog文件缓冲区溢出漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13830 | TOTOLINK X15 /boafrm/formMultiAP文件缓冲区溢出漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13829 | JetBrains TeamCity存在未明漏洞 | 2024-12-25 | 2025-06-26 |
| cnvd-2025-13828 | JetBrains TeamCity访问控制不当漏洞 | 2024-12-25 | 2025-06-26 |
| cnvd-2025-13796 | JetBrains Hub权限提升漏洞 | 2025-02-18 | 2025-06-26 |
| cnvd-2025-13795 | JetBrains TeamCity权限问题漏洞 | 2025-02-18 | 2025-06-26 |
| cnvd-2025-13794 | JetBrains YouTrack存在未知漏洞 | 2025-02-18 | 2025-06-26 |
| cnvd-2025-13793 | JetBrains Runtime代码问题漏洞 | 2025-03-24 | 2025-06-26 |
| cnvd-2025-13792 | JetBrains Ktor存在未明漏洞 | 2025-03-24 | 2025-06-26 |
| cnvd-2025-13789 | TOTOLINK N600R缓冲区溢出漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13788 | TOTOLINK EX1200T /boafrm/formSysLog文件缓冲区溢出漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13787 | TOTOLINK EX1200T /boafrm/formSysCmd文件缓冲区溢出漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13786 | TOTOLINK EX1200T /boafrm/formNtp文件缓冲区溢出漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13785 | TOTOLINK EX1200T /boafrm/formMultiAP文件缓冲区溢出漏洞 | 2025-06-24 | 2025-06-26 |
| cnvd-2025-13784 | TOTOLINK A702r缓冲区溢出漏洞 | 2025-06-24 | 2025-06-26 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-324 | Multiples vulnérabilités dans Apple Wi-Fi Update for Boot Camp | 2018-07-06T00:00:00.000000 | 2018-07-06T00:00:00.000000 |
| certfr-2018-avi-323 | Vulnérabilité dans VideoLAN VLC | 2018-07-06T00:00:00.000000 | 2018-07-06T00:00:00.000000 |
| certfr-2018-avi-322 | Multiples vulnérabilités dans Mozilla Thunderbird | 2018-07-04T00:00:00.000000 | 2018-07-04T00:00:00.000000 |
| certfr-2018-avi-321 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-07-03T00:00:00.000000 | 2018-07-03T00:00:00.000000 |
| certfr-2018-avi-320 | Multiples vulnérabilités dans Google Android | 2018-07-03T00:00:00.000000 | 2018-07-03T00:00:00.000000 |
| certfr-2018-avi-319 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-07-02T00:00:00.000000 | 2018-07-02T00:00:00.000000 |
| certfr-2018-avi-318 | Multiples vulnérabilités dans Citrix XenServer | 2018-07-02T00:00:00.000000 | 2018-07-02T00:00:00.000000 |
| certfr-2018-avi-317 | Multiples vulnérabilités dans les produits VMware | 2018-07-02T00:00:00.000000 | 2018-07-02T00:00:00.000000 |
| certfr-2018-avi-316 | Multiples vulnérabilités dans Xen | 2018-07-02T00:00:00.000000 | 2018-07-02T00:00:00.000000 |
| certfr-2018-avi-315 | Vulnérabilité dans HPE Integrated Lights-Out (iLO) | 2018-06-28T00:00:00.000000 | 2018-06-28T00:00:00.000000 |
| certfr-2018-avi-314 | Multiples vulnérabilités dans Xen | 2018-06-28T00:00:00.000000 | 2018-06-28T00:00:00.000000 |
| certfr-2018-avi-313 | Vulnérabilité dans Apple SwiftNIO | 2018-06-28T00:00:00.000000 | 2018-06-28T00:00:00.000000 |
| certfr-2018-avi-312 | Vulnérabilité dans le noyau Linux de SUSE | 2018-06-28T00:00:00.000000 | 2018-06-28T00:00:00.000000 |
| certfr-2018-avi-311 | Multiples vulnérabilités dans Magento | 2018-06-28T00:00:00.000000 | 2018-06-28T00:00:00.000000 |
| certfr-2018-avi-310 | Multiples vulnérabilités dans Google Chrome OS | 2018-06-27T00:00:00.000000 | 2018-06-27T00:00:00.000000 |
| certfr-2018-avi-309 | Multiples vulnérabilités dans Mozilla Firefox | 2018-06-27T00:00:00.000000 | 2018-06-27T00:00:00.000000 |
| certfr-2018-avi-308 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-06-27T00:00:00.000000 | 2018-06-27T00:00:00.000000 |
| certfr-2018-avi-307 | Multiples vulnérabilités dans Joomla! | 2018-06-27T00:00:00.000000 | 2018-06-27T00:00:00.000000 |
| certfr-2018-avi-306 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2018-06-27T00:00:00.000000 | 2018-06-27T00:00:00.000000 |
| certfr-2018-avi-305 | Vulnérabilité dans SCADA les produits Siemens | 2018-06-26T00:00:00.000000 | 2018-06-26T00:00:00.000000 |
| certfr-2018-avi-304 | Multiples vulnérabilités dans Google Chrome | 2018-06-26T00:00:00.000000 | 2018-06-26T00:00:00.000000 |
| certfr-2018-avi-303 | Multiples vulnérabilités dans les produits Fortinet | 2018-06-25T00:00:00.000000 | 2018-06-25T00:00:00.000000 |
| certfr-2018-avi-302 | Multiples vulnérabilités dans PHP | 2018-06-22T00:00:00.000000 | 2018-06-25T00:00:00.000000 |
| certfr-2018-avi-301 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-06-22T00:00:00.000000 | 2018-06-22T00:00:00.000000 |
| certfr-2018-avi-300 | Multiples vulnérabilités dans phpMyAdmin | 2018-06-22T00:00:00.000000 | 2018-06-22T00:00:00.000000 |
| certfr-2018-avi-299 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-06-21T00:00:00.000000 | 2018-06-21T00:00:00.000000 |
| certfr-2018-avi-298 | Multiples vulnérabilités dans les produits Cisco | 2018-06-21T00:00:00.000000 | 2018-06-21T00:00:00.000000 |
| certfr-2018-avi-297 | Vulnérabilité dans Ruby On Rails | 2018-06-20T00:00:00.000000 | 2018-06-20T00:00:00.000000 |
| certfr-2018-avi-296 | Vulnérabilité dans le noyau Linux de RedHat | 2018-06-20T00:00:00.000000 | 2018-06-20T00:00:00.000000 |
| certfr-2018-avi-295 | Vulnérabilité dans Citrix XenServer | 2018-06-18T00:00:00.000000 | 2018-06-18T00:00:00.000000 |