Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-66129 |
5.3 (3.1)
|
WordPress Pochipp plugin <= 1.18.0 - Broken Access Con… |
wppochipp |
Pochipp |
2025-12-16T08:12:53.976Z | 2026-01-20T14:28:24.628Z |
| CVE-2025-66528 |
8.1 (3.1)
|
WordPress Thank You Page Customizer for WooCommerce pl… |
VillaTheme |
Thank You Page Customizer for WooCommerce |
2025-12-09T14:13:53.449Z | 2026-01-20T14:28:24.582Z |
| CVE-2025-66155 |
5.4 (3.1)
|
WordPress Questionar for Elementor plugin <= 1.1.7 - B… |
merkulove |
Questionar for Elementor |
2025-12-31T17:00:37.052Z | 2026-01-20T14:28:24.566Z |
| CVE-2025-66157 |
5.4 (3.1)
|
WordPress Slider for Elementor plugin <= 1.0.10 - Brok… |
merkulove |
Slider for Elementor |
2025-12-31T16:58:24.314Z | 2026-01-20T14:28:24.553Z |
| CVE-2025-66128 |
5.3 (3.1)
|
WordPress Sendinblue for WooCommerce plugin <= 4.0.49 … |
Brevo |
Sendinblue for WooCommerce |
2025-12-16T08:12:53.783Z | 2026-01-20T14:28:24.551Z |
| CVE-2025-66151 |
5.4 (3.1)
|
WordPress Countdowner for Elementor plugin <= 1.0.4 - … |
merkulove |
Countdowner for Elementor |
2025-12-31T18:32:49.483Z | 2026-01-20T14:28:24.546Z |
| CVE-2025-66150 |
5.4 (3.1)
|
WordPress Appender plugin <= 1.1.1 - Broken Access Con… |
merkulove |
Appender |
2025-12-31T18:35:57.735Z | 2026-01-20T14:28:24.539Z |
| CVE-2025-66160 |
5.4 (3.1)
|
WordPress Select Graphist for Elementor Graphist for … |
merkulove |
Select Graphist for Elementor Graphist for Elementor |
2025-12-31T16:50:19.182Z | 2026-01-20T14:28:24.538Z |
| CVE-2025-66530 |
8.8 (3.1)
|
WordPress Webba Booking plugin <= 6.2.1 - Broken Acces… |
Webba Appointment Booking |
Webba Booking |
2025-12-09T14:13:53.897Z | 2026-01-20T14:28:24.537Z |
| CVE-2025-66147 |
5.4 (3.1)
|
WordPress Coder for Elementor plugin <= 1.0.13 - Broke… |
merkulove |
Coder for Elementor |
2025-12-16T08:12:55.284Z | 2026-01-20T14:28:24.524Z |
| CVE-2025-66146 |
5.4 (3.1)
|
WordPress Logger for Elementor plugin <= 1.0.9 - Broke… |
merkulove |
Logger for Elementor |
2025-12-31T19:50:21.260Z | 2026-01-20T14:28:24.515Z |
| CVE-2025-66152 |
5.4 (3.1)
|
WordPress Criptopayer for Elementor plugin <= 1.0.1 - … |
merkulove |
Criptopayer for Elementor |
2025-12-31T18:32:07.924Z | 2026-01-20T14:28:24.511Z |
| CVE-2025-66149 |
5.4 (3.1)
|
WordPress UnGrabber plugin <= 3.1.3 - Broken Access Co… |
merkulove |
UnGrabber |
2025-12-31T18:38:14.772Z | 2026-01-20T14:28:24.511Z |
| CVE-2025-66164 |
5.4 (3.1)
|
WordPress Laser plugin <= 1.1.1 - Broken Access Contro… |
merkulove |
Laser |
2025-12-16T08:12:56.211Z | 2026-01-20T14:28:24.509Z |
| CVE-2025-66159 |
5.4 (3.1)
|
WordPress Walker for Elementor plugin <= 1.1.6 - Broke… |
merkulove |
Walker for Elementor |
2025-12-31T16:51:12.320Z | 2026-01-20T14:28:24.501Z |
| CVE-2025-66158 |
5.4 (3.1)
|
WordPress Gmaper for Elementor plugin <= 1.0.9 - Broke… |
merkulove |
Gmaper for Elementor |
2025-12-31T16:51:58.259Z | 2026-01-20T14:28:24.495Z |
| CVE-2025-66156 |
5.4 (3.1)
|
WordPress Watcher for Elementor plugin <= 1.0.9 - Brok… |
merkulove |
Watcher for Elementor |
2025-12-31T16:59:07.770Z | 2026-01-20T14:28:24.495Z |
| CVE-2025-66133 |
5.3 (3.1)
|
WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy C… |
WP Legal Pages |
WP Cookie Notice for GDPR, CCPA & ePrivacy Consent |
2025-12-16T08:12:54.808Z | 2026-01-20T14:28:24.495Z |
| CVE-2025-66527 |
4.3 (3.1)
|
WordPress Lobo theme <= 2.8.6 - Broken Access Control … |
VanKarWai |
Lobo |
2025-12-09T14:13:53.255Z | 2026-01-20T14:28:24.494Z |
| CVE-2025-66525 |
4.3 (3.1)
|
WordPress Elastic Email Sender plugin <= 1.2.20 - Brok… |
Elastic Email |
Elastic Email Sender |
2025-12-09T14:13:52.779Z | 2026-01-20T14:28:24.494Z |
| CVE-2025-66529 |
8.8 (3.1)
|
WordPress Chartify plugin <= 3.6.3 - Cross Site Reques… |
Ays Pro |
Chartify |
2025-12-09T14:13:53.647Z | 2026-01-20T14:28:24.493Z |
| CVE-2025-66130 |
5.3 (3.1)
|
WordPress WP Views Counter plugin <= 2.1.2 - Broken Ac… |
etruel |
WP Views Counter |
2025-12-16T08:12:54.174Z | 2026-01-20T14:28:24.483Z |
| CVE-2025-66167 |
5.4 (3.1)
|
WordPress Lottier plugin <= 1.1.1 - Broken Access Cont… |
merkulove |
Lottier |
2025-12-16T08:12:56.806Z | 2026-01-20T14:28:24.481Z |
| CVE-2025-66125 |
5.3 (3.1)
|
WordPress Ultimate Auction plugin <= 4.3.2 - Sensitiv… |
Nitesh |
Ultimate Auction |
2025-12-16T08:12:53.108Z | 2026-01-20T14:28:24.480Z |
| CVE-2025-66148 |
5.4 (3.1)
|
WordPress Conformer for Elementor plugin <= 1.0.7 - Br… |
merkulove |
Conformer for Elementor |
2025-12-31T19:49:17.102Z | 2026-01-20T14:28:24.475Z |
| CVE-2025-66144 |
5.4 (3.1)
|
WordPress Worker for Elementor plugin <= 1.0.10 - Brok… |
merkulove |
Worker for Elementor |
2025-12-31T19:51:58.516Z | 2026-01-20T14:28:24.464Z |
| CVE-2025-66145 |
5.4 (3.1)
|
WordPress Worker for WPBakery plugin <= 1.1.1 - Broken… |
merkulove |
Worker for WPBakery |
2025-12-31T19:51:22.621Z | 2026-01-20T14:28:24.457Z |
| CVE-2025-66162 |
5.4 (3.1)
|
WordPress Spoter for Elementor plugin <= 1.04 - Broken… |
merkulove |
Spoter for Elementor |
2025-12-16T08:12:55.672Z | 2026-01-20T14:28:24.446Z |
| CVE-2025-66153 |
5.4 (3.1)
|
WordPress Headinger for Elementor plugin <= 1.1.4 - Br… |
merkulove |
Headinger for Elementor |
2025-12-31T18:31:21.816Z | 2026-01-20T14:28:24.444Z |
| CVE-2025-66526 |
4.3 (3.1)
|
WordPress Tablesome plugin <= 1.1.34 - Broken Access C… |
Essekia |
Tablesome |
2025-12-09T14:13:53.002Z | 2026-01-20T14:28:24.435Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-67976 |
6.5 (3.1)
|
WordPress Watu Quiz plugin <= 3.4.5 - Broken Access Co… |
Bob |
Watu Quiz |
2025-12-16T08:12:58.348Z | 2026-01-20T14:28:27.243Z |
| CVE-2025-67965 |
5.3 (3.1)
|
WordPress Homey Core plugin <= 2.4.3 - Broken Access C… |
favethemes |
Homey Core |
2025-12-16T08:12:58.164Z | 2026-01-20T14:28:27.313Z |
| CVE-2025-67962 |
7.6 (3.1)
|
WordPress Broken Link Checker plugin <= 1.2.6 - SQL In… |
AIOSEO Plugin Team |
Broken Link Checker |
2025-12-16T08:12:57.962Z | 2026-01-20T14:28:27.286Z |
| CVE-2025-67950 |
8.5 (3.1)
|
WordPress All In One SEO Pack plugin <= 4.9.1 - SQL In… |
Syed Balkhi |
All In One SEO Pack |
2025-12-16T08:12:57.565Z | 2026-01-20T14:28:27.273Z |
| CVE-2025-67948 |
4.3 (3.1)
|
WordPress SendPulse Email Marketing Newsletter plugin … |
SendPulse |
SendPulse Email Marketing Newsletter |
2025-12-16T08:12:57.382Z | 2026-01-20T14:28:27.268Z |
| CVE-2025-67933 |
6.1 (3.1)
|
WordPress Taskbuilder plugin <= 4.0.9 - Cross Site Scr… |
taskbuilder |
Taskbuilder |
2026-01-08T09:17:49.199Z | 2026-01-20T14:28:27.168Z |
| CVE-2025-67932 |
6.1 (3.1)
|
WordPress Listeo Core plugin < 2.0.19 - Cross Site Scr… |
purethemes |
Listeo Core |
2026-01-08T09:17:49.010Z | 2026-01-20T14:28:26.774Z |
| CVE-2025-67931 |
7.5 (3.1)
|
WordPress BulletProof Security plugin <= 6.9 - Sensiti… |
AITpro |
BulletProof Security |
2026-01-08T09:17:48.784Z | 2026-01-20T14:28:26.780Z |
| CVE-2025-67930 |
6.1 (3.1)
|
WordPress eHive Search plugin <= 2.5.0 - Cross Site Sc… |
Vernon Systems Limited |
eHive Search |
2026-01-08T09:17:48.582Z | 2026-01-20T14:28:26.825Z |
| CVE-2025-67929 |
5.3 (3.1)
|
WordPress TI WooCommerce Wishlist plugin <= 2.10.0 - B… |
templateinvaders |
TI WooCommerce Wishlist |
2025-12-16T08:12:57.185Z | 2026-02-04T16:31:23.090Z |
| CVE-2025-67928 |
9.8 (3.1)
|
WordPress Automotive Listings plugin <= 18.6 - SQL Inj… |
themesuite |
Automotive Listings |
2026-01-08T09:17:48.385Z | 2026-01-20T14:28:26.832Z |
| CVE-2025-67927 |
6.1 (3.1)
|
WordPress Link Whisper Free plugin <= 0.8.8 - Cross Si… |
Spencer Haws |
Link Whisper Free |
2026-01-08T09:17:48.182Z | 2026-01-20T14:28:26.716Z |
| CVE-2025-67926 |
8.8 (3.1)
|
WordPress Fluent Support plugin <= 1.10.4 - Broken Acc… |
Shahjahan Jewel |
Fluent Support |
2026-01-08T09:17:47.946Z | 2026-01-20T14:28:26.482Z |
| CVE-2025-67924 |
9.8 (3.1)
|
WordPress Corpkit theme <= 2.0 - Arbitrary File Upload… |
zozothemes |
Corpkit |
2026-01-08T09:17:47.419Z | 2026-01-20T14:28:26.476Z |
| CVE-2025-67921 |
9.8 (3.1)
|
WordPress Lobo theme < 2.8.6 - SQL Injection vulnerability |
VanKarWai |
Lobo |
2026-01-08T09:17:46.911Z | 2026-01-20T14:28:26.492Z |
| CVE-2025-67920 |
9.8 (3.1)
|
WordPress Neo Ocular theme < 1.2 - Local File Inclusio… |
Elated-Themes |
Neo Ocular |
2026-01-08T09:17:46.685Z | 2026-01-20T14:28:26.467Z |
| CVE-2025-67919 |
8.1 (3.1)
|
WordPress Woffice Core plugin <= 5.4.30 - Insecure Dir… |
WofficeIO |
Woffice Core |
2026-01-08T09:17:46.457Z | 2026-01-20T14:28:26.466Z |
| CVE-2025-67918 |
6.1 (3.1)
|
WordPress Woffice theme <= 5.4.30 - Cross Site Scripti… |
WofficeIO |
Woffice |
2026-01-08T09:17:45.942Z | 2026-01-20T14:28:26.671Z |
| CVE-2025-67917 |
8.1 (3.1)
|
WordPress Traveler theme <= 3.2.6 - Broken Access Cont… |
shinetheme |
Traveler |
2026-01-08T09:17:45.741Z | 2026-01-20T14:28:26.720Z |
| CVE-2025-67916 |
6.1 (3.1)
|
WordPress Jobify theme <= 4.3.0 - Cross Site Scripting… |
Astoundify |
Jobify |
2026-01-08T09:17:45.488Z | 2026-01-20T14:28:26.384Z |
| CVE-2025-67915 |
9.8 (3.1)
|
WordPress Timetics plugin <= 1.0.46 - Broken Authentic… |
Arraytics |
Timetics |
2026-01-08T09:17:45.304Z | 2026-01-20T14:28:26.404Z |
| CVE-2025-67914 |
7.5 (3.1)
|
WordPress VidMov theme <= 2.3.8 - Path Traversal vulne… |
beeteam368 |
VidMov |
2026-01-08T09:17:44.993Z | 2026-01-20T14:28:26.643Z |
| CVE-2025-67913 |
9.8 (3.1)
|
WordPress Aruba HiSpeed Cache plugin < 3.0.3 - Broken … |
Aruba.it Dev |
Aruba HiSpeed Cache |
2026-01-08T09:17:44.786Z | 2026-01-20T14:28:26.431Z |
| CVE-2025-67912 |
6.5 (3.1)
|
WordPress Stars Testimonials plugin <= 3.3.4 - Cross S… |
Gal Dubinski |
Stars Testimonials |
2025-12-16T08:12:56.996Z | 2026-01-20T14:28:26.457Z |
| CVE-2025-67911 |
9.8 (3.1)
|
WordPress Newsletters plugin <= 4.11 - PHP Object Inje… |
Tribulant Software |
Newsletters |
2026-01-08T09:17:44.577Z | 2026-01-20T14:28:26.518Z |
| CVE-2025-67910 |
9.8 (3.1)
|
WordPress Contentstudio plugin <= 1.3.7 - Arbitrary Fi… |
contentstudio |
Contentstudio |
2026-01-08T09:17:44.388Z | 2026-01-20T14:28:26.447Z |
| CVE-2025-67909 |
8.1 (3.1)
|
WordPress Membership For WooCommerce plugin <= 3.0.3 -… |
WP Swings |
Membership For WooCommerce |
2025-12-24T13:10:24.788Z | 2026-01-20T14:28:26.498Z |
| CVE-2025-67633 |
6.1 (3.1)
|
WordPress Greenhouse Job Board plugin <= 2.7.3 - Cross… |
brownbagmarketing |
Greenhouse Job Board |
2025-12-24T13:10:24.524Z | 2026-01-20T14:28:26.447Z |
| CVE-2025-67632 |
6.1 (3.1)
|
WordPress Google AdSense for Responsive Design – GARD … |
The Plugin Factory |
Google AdSense for Responsive Design – GARD |
2025-12-24T13:10:24.256Z | 2026-01-20T14:28:26.498Z |
| CVE-2025-67631 |
5.4 (3.1)
|
WordPress Gift Hunt plugin <= 2.0.2 - Cross Site Scrip… |
Ecommerce Platforms |
Gift Hunt |
2025-12-24T13:10:23.974Z | 2026-01-20T14:28:26.724Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-67924 | Unrestricted Upload of File with Dangerous Type vulnerability in zozothemes Corpkit corpkit allows … | 2026-01-08T10:15:51.347 | 2026-01-20T15:19:31.467 |
| fkie_cve-2025-67921 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2026-01-08T10:15:51.100 | 2026-01-20T15:19:31.210 |
| fkie_cve-2025-67920 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-08T10:15:50.977 | 2026-01-20T15:19:31.080 |
| fkie_cve-2025-67919 | Authorization Bypass Through User-Controlled Key vulnerability in WofficeIO Woffice Core woffice-co… | 2026-01-08T10:15:50.840 | 2026-01-20T15:19:30.950 |
| fkie_cve-2025-67918 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:50.720 | 2026-01-20T15:19:30.827 |
| fkie_cve-2025-67917 | Missing Authorization vulnerability in shinetheme Traveler traveler allows Exploiting Incorrectly C… | 2026-01-08T10:15:50.593 | 2026-01-20T15:19:30.703 |
| fkie_cve-2025-67916 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:50.470 | 2026-01-20T15:19:30.580 |
| fkie_cve-2025-67915 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Arraytics Timetics timeti… | 2026-01-08T10:15:50.343 | 2026-01-20T15:19:30.457 |
| fkie_cve-2025-67914 | Path Traversal: '.../...//' vulnerability in beeteam368 VidMov vidmov allows Path Traversal.This is… | 2026-01-08T10:15:50.217 | 2026-01-20T15:19:30.330 |
| fkie_cve-2025-67913 | Missing Authorization vulnerability in Aruba.it Dev Aruba HiSpeed Cache aruba-hispeed-cache allows … | 2026-01-08T10:15:50.093 | 2026-01-20T15:19:30.203 |
| fkie_cve-2025-67912 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:15:59.180 | 2026-01-20T15:19:30.067 |
| fkie_cve-2025-67911 | Deserialization of Untrusted Data vulnerability in Tribulant Software Newsletters newsletters-lite … | 2026-01-08T10:15:49.960 | 2026-01-20T15:19:29.950 |
| fkie_cve-2025-67910 | Unrestricted Upload of File with Dangerous Type vulnerability in contentstudio Contentstudio conten… | 2026-01-08T10:15:49.827 | 2026-01-20T15:19:29.827 |
| fkie_cve-2025-67909 | Authorization Bypass Through User-Controlled Key vulnerability in WP Swings Membership For WooComme… | 2025-12-24T13:16:19.677 | 2026-01-20T15:19:29.700 |
| fkie_cve-2025-67633 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:19.557 | 2026-01-20T15:19:29.573 |
| fkie_cve-2025-67632 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:19.430 | 2026-01-20T15:19:29.450 |
| fkie_cve-2025-67631 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:19.310 | 2026-01-20T15:19:29.320 |
| fkie_cve-2025-67630 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:19.190 | 2026-01-20T15:19:29.197 |
| fkie_cve-2025-67629 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:19.070 | 2026-01-20T15:19:29.073 |
| fkie_cve-2025-67628 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:18.943 | 2026-01-20T15:19:28.940 |
| fkie_cve-2025-67627 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T13:16:18.823 | 2026-01-20T15:19:28.817 |
| fkie_cve-2025-67625 | Cross-Site Request Forgery (CSRF) vulnerability in tmtraderunner Trade Runner traderunner allows Cr… | 2025-12-24T13:16:18.703 | 2026-01-20T15:19:28.693 |
| fkie_cve-2025-67623 | Server-Side Request Forgery (SSRF) vulnerability in 6Storage 6Storage Rentals 6storage-rentals allo… | 2025-12-24T13:16:18.583 | 2026-01-20T15:19:28.570 |
| fkie_cve-2025-67622 | Cross-Site Request Forgery (CSRF) vulnerability in titopandub Evergreen Post Tweeter evergreen-post… | 2025-12-24T13:16:18.453 | 2026-01-20T15:19:28.450 |
| fkie_cve-2025-67621 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in 10up Ei… | 2025-12-24T13:16:18.317 | 2026-01-20T15:19:28.317 |
| fkie_cve-2025-67599 | Missing Authorization vulnerability in WebToffee WebToffee eCommerce Marketing Automation decorator… | 2025-12-09T16:18:38.303 | 2026-01-20T15:19:28.193 |
| fkie_cve-2025-67598 | Cross-Site Request Forgery (CSRF) vulnerability in PSM Plugins SupportCandy supportcandy allows Cro… | 2025-12-09T16:18:38.163 | 2026-01-20T15:19:28.070 |
| fkie_cve-2025-67597 | Missing Authorization vulnerability in Shahjahan Jewel Fluent Booking fluent-booking allows Exploit… | 2025-12-09T16:18:38.030 | 2026-01-20T15:19:27.950 |
| fkie_cve-2025-67596 | Cross-Site Request Forgery (CSRF) vulnerability in Strategy11 Team Business Directory business-dire… | 2025-12-09T16:18:37.890 | 2026-01-20T15:19:27.823 |
| fkie_cve-2025-67595 | Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Quiz Maker quiz-maker allows Cross Site … | 2025-12-09T16:18:37.757 | 2026-01-20T15:19:27.683 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-v836-m9qv-79gp |
7.5 (3.1)
|
An out-of-bounds read in the GSF demuxer filter component of GPAC v2.4.0 allows attackers to cause … | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-rfww-x774-mhj8 |
7.5 (3.1)
|
A buffer overflow in the vobsub_get_subpic_duration() function of GPAC v2.4.0 allows attackers to c… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-j537-vq7v-4qhp |
7.5 (3.1)
|
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the mac parameter of the sub_6… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-c5mq-gmc7-99wv |
5.5 (3.1)
|
A heap overflow in the vorbis_to_intern() function of GPAC v2.4.0 allows attackers to cause a Denia… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-93w3-78pr-jqhg |
4.8 (3.1)
|
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-283r-6w65-p4xp |
4.8 (3.1)
|
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-xq72-25v6-8f77 |
8.8 (3.1)
|
A local privilege escalation vulnerability exists during the installation of Epic Games Store via t… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-wh46-xj24-hh5q |
9.8 (3.1)
9.3 (4.0)
|
ProjeQtOr Project Management 9.1.4 contains a file upload vulnerability that allows guest users to … | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-m46h-g9fm-378f |
7.2 (3.1)
5.1 (4.0)
|
Tagstoo 2.0.1 contains a stored cross-site scripting vulnerability that allows attackers to inject … | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-f5m3-9gmr-6wrh |
6.2 (3.1)
8.5 (4.0)
|
Visual Tools DVR VX16 version 4.2.28 contains a local privilege escalation vulnerability in its Sud… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-c23h-wjw2-xvwf |
7.3 (3.1)
|
A local information disclosure vulnerability exists in the Ludashi driver before 5.1025 due to a la… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-96hh-fpgr-2f83 |
7.8 (3.1)
8.5 (4.0)
|
Dynojet Power Core 2.3.0 contains an unquoted service path vulnerability in the DJ.UpdateService th… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-7wmq-973g-rwg4 |
9.8 (3.1)
6.7 (4.0)
|
Cmder Console Emulator 1.3.18 contains a buffer overflow vulnerability that allows attackers to tri… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-78pm-r8gh-wjm6 |
8.2 (3.1)
8.8 (4.0)
|
Build Smart ERP 21.0817 contains an unauthenticated SQL injection vulnerability in the 'eidValue' p… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-73r9-c9jc-f73v |
9.8 (3.1)
|
File upload vulnerability in Omnispace Agora Project before 25.10 allowing attackers to execute cod… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-6cgw-8ph2-5x7r |
9.8 (3.1)
8.4 (4.0)
|
Kingdia CD Extractor 3.0.2 contains a buffer overflow vulnerability in the registration name field … | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-5c4g-2g7f-vp3x |
6.5 (3.1)
|
File upload vulnerability in Omnispace Agora Project before 25.10 allowing authenticated, or under … | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-44vf-6vfg-98jr |
7.5 (3.1)
|
Directory traversal vulnerability in Omnispace Agora Project before 25.10 allowing unauthenticated … | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-43mg-fm9r-vj2p |
8.4 (3.1)
8.4 (4.0)
|
YouTube Video Grabber, now referred to as YouTube Downloader, 1.9.9.1 contains a buffer overflow vu… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-2mg9-fchf-m4w9 |
7.5 (3.1)
6.7 (4.0)
|
Cyberfox Web Browser 52.9.1 contains a denial of service vulnerability that allows attackers to cra… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-p9hc-mmh6-475f |
6.1 (3.1)
5.3 (4.0)
|
ImportExportTools NG 10.0.4 contains a persistent HTML injection vulnerability in the email export … | 2026-01-15T18:31:30Z | 2026-01-15T18:31:31Z |
| ghsa-9mq4-vwgf-j98g |
6.2 (3.1)
6.8 (4.0)
|
RDP Manager 4.9.9.3 contains a denial of service vulnerability in connection input fields that allo… | 2026-01-15T18:31:31Z | 2026-01-15T18:31:31Z |
| ghsa-9ghv-qpxv-wccq |
7.2 (3.1)
5.1 (4.0)
|
Isshue Shopping Cart 3.5 contains a persistent cross-site scripting vulnerability in title input fi… | 2026-01-15T18:31:31Z | 2026-01-15T18:31:31Z |
| ghsa-97p6-fxv9-r8xc |
9.8 (3.1)
8.4 (4.0)
|
10-Strike Network Inventory Explorer Pro 9.31 contains a buffer overflow vulnerability in the text … | 2026-01-15T18:31:31Z | 2026-01-15T18:31:31Z |
| ghsa-jxmr-w7f3-26x7 |
7.8 (3.1)
8.5 (4.0)
|
10-Strike Network Inventory Explorer Pro 9.31 contains an unquoted service path vulnerability in th… | 2026-01-15T18:31:30Z | 2026-01-15T18:31:30Z |
| ghsa-g9m3-654m-8943 |
6.2 (3.1)
6.7 (4.0)
|
AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to cras… | 2026-01-15T18:31:30Z | 2026-01-15T18:31:30Z |
| ghsa-chp4-5883-3f2x |
6.2 (3.1)
6.7 (4.0)
|
AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to cras… | 2026-01-15T18:31:30Z | 2026-01-15T18:31:30Z |
| ghsa-7ggw-vgxf-fv98 |
7.1 (3.1)
7.1 (4.0)
|
Kmaleon 1.1.0.205 contains an authenticated SQL injection vulnerability in the 'tipocomb' parameter… | 2026-01-15T18:31:30Z | 2026-01-15T18:31:30Z |
| ghsa-5hh8-v8wh-8f46 |
7.8 (3.1)
8.5 (4.0)
|
HTTPDebuggerPro 9.11 contains an unquoted service path vulnerability that allows local attackers to… | 2026-01-15T18:31:30Z | 2026-01-15T18:31:30Z |
| ghsa-wqg6-793x-j3cp |
8.8 (3.1)
8.7 (4.0)
|
Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerabil… | 2026-01-15T18:31:29Z | 2026-01-15T18:31:29Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-28428 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.481430Z |
| gsd-2024-28401 | TOTOLINK X2000R before v1.0.0-B20231213.1013 contains a Store Cross-site scripting (XSS) … | 2024-03-08T06:02:46.481214Z |
| gsd-2024-28616 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.481014Z |
| gsd-2024-28279 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.480797Z |
| gsd-2024-28240 | The GLPI Agent is a generic management agent. A vulnerability that only affects GLPI-Agen… | 2024-03-08T06:02:46.480577Z |
| gsd-2024-28474 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.480291Z |
| gsd-2024-28332 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.480023Z |
| gsd-2024-28434 | The CRM platform Twenty is vulnerable to stored cross site scripting via file upload in v… | 2024-03-08T06:02:46.479808Z |
| gsd-2024-28580 | Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local at… | 2024-03-08T06:02:46.479521Z |
| gsd-2024-28710 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.479313Z |
| gsd-2024-28481 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.479100Z |
| gsd-2024-28644 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.478585Z |
| gsd-2024-28344 | An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The… | 2024-03-08T06:02:46.478376Z |
| gsd-2024-28661 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.478141Z |
| gsd-2024-28336 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.477938Z |
| gsd-2024-28613 | SQL Injection vulnerability in PHP Task Management System v.1.0 allows a remote attacker … | 2024-03-08T06:02:46.477741Z |
| gsd-2024-28354 | There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmwar… | 2024-03-08T06:02:46.477540Z |
| gsd-2024-28657 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.477308Z |
| gsd-2024-28357 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.476622Z |
| gsd-2024-28606 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.476424Z |
| gsd-2024-28307 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.476217Z |
| gsd-2024-28542 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.475917Z |
| gsd-2024-28221 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.475712Z |
| gsd-2024-28696 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.475498Z |
| gsd-2024-28419 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.475225Z |
| gsd-2024-28602 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.475002Z |
| gsd-2024-28472 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.474785Z |
| gsd-2024-28415 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.474275Z |
| gsd-2024-28512 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.474072Z |
| gsd-2024-28361 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.473858Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-188164 | Malicious code in mysql-quasar-nodejs-node-sass (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188163 | Malicious code in mysql-local-bootes-triton (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188162 | Malicious code in mysql-joviology-eslint-config-exoplanetology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188161 | Malicious code in mysql-heka-version-saturnology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188160 | Malicious code in mysql-fork-pavo-firebase (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188159 | Malicious code in mysql-enceladus-cressida-whitedwarf (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188158 | Malicious code in mysql-cassini-unuk-middleware (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188157 | Malicious code in mutation-telesto-cybernetics-library (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188156 | Malicious code in mutation-promise-xenon-fermion (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188155 | Malicious code in mutation-local-archaeoastronomy-auth (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188154 | Malicious code in mutation-exec-arcturus-gulp (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188153 | Malicious code in mutation-dotenv-leda-crust (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188152 | Malicious code in mutation-docusaurus-scorpius-centauri (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188151 | Malicious code in mutation-cladistics-graviton-upgrade (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188150 | Malicious code in mutation-augmentedreality-archaeoastronomy-neutronstar (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188149 | Malicious code in multiverse-terser-webpack-plugin-vulcan-redgiant (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188148 | Malicious code in multiverse-perseus-ignite-ceres (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188147 | Malicious code in multiverse-pavo-dependencies-enif (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188146 | Malicious code in multiverse-jsonp-mdx-commitlint-config-angular (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188145 | Malicious code in multiverse-carina-boson-fusion (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188144 | Malicious code in mui-xerxes-proxima-cassini (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188143 | Malicious code in mui-reveal-md-registry-yaml (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188142 | Malicious code in mui-norma-callisto-terser-webpack-plugin (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188141 | Malicious code in mui-neutrino-nestjs-stratigraphy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188140 | Malicious code in mui-meissa-technosignature-wasat (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188139 | Malicious code in mui-meissa-subscription-event (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188138 | Malicious code in mui-delphinus-castor-magnetosphere (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188137 | Malicious code in mui-cluster-antares-nucleosynthesis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188136 | Malicious code in mui-auth-betelgeuse-xo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188135 | Malicious code in mui-asthenosphere-callback-webdriver-manager (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-0164 | Lexmark Laser Printers: Mehrere Schwachstellen ermöglichen Codeausführung | 2024-01-21T23:00:00.000+00:00 | 2024-01-21T23:00:00.000+00:00 |
| wid-sec-w-2024-0138 | ILIAS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-01-17T23:00:00.000+00:00 | 2024-01-21T23:00:00.000+00:00 |
| wid-sec-w-2024-0085 | Atlassian Confluence Data Center und Server: Schwachstelle ermöglicht Codeausführung | 2024-01-15T23:00:00.000+00:00 | 2024-01-21T23:00:00.000+00:00 |
| wid-sec-w-2023-0765 | MongoDB: Schwachstelle ermöglicht Manipulation von Dateien | 2021-06-13T22:00:00.000+00:00 | 2024-01-21T23:00:00.000+00:00 |
| wid-sec-w-2024-0161 | Zoho ManageEngine ServiceDesk Plus MSP: Schwachstelle ermöglicht Cross-Site Scripting | 2024-01-18T23:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2024-0160 | IBM App Connect Enterprise: Schwachstelle ermöglicht Denial of Service oder Offenlegung von Informationen | 2024-01-18T23:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2024-0159 | Internet Browser: Schwachstelle ermöglicht Denial of Service | 2024-01-18T23:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2023-2740 | VMware vCenter Server: Mehrere Schwachstellen | 2023-10-24T22:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2023-2515 | Linux Kernel: Schwachstelle ermöglicht Codeausführung | 2023-09-28T22:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2023-2025 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-08-09T22:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2023-1958 | Ivanti Endpoint Manager Mobile.: Schwachstelle ermöglicht Manipulation von Dateien | 2023-08-03T22:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2023-1874 | Apple iOS: Mehrere Schwachstellen | 2023-07-24T22:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2023-1678 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-07-06T22:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2023-0211 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-01-26T23:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2022-1361 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2022-09-08T22:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2022-1360 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2022-09-08T22:00:00.000+00:00 | 2024-01-18T23:00:00.000+00:00 |
| wid-sec-w-2024-0156 | IBM Business Automation Workflow: Mehrere Schwachstellen | 2022-02-20T23:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0153 | Linux Kernel: Mehrere Schwachstellen | 2016-01-19T23:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0152 | Linux Kernel: Mehrere Schwachstellen | 2016-02-14T23:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0151 | Linux Kernel: Mehrere Schwachstellen | 2016-02-23T23:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0150 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2016-02-28T23:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0149 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2016-03-13T23:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0148 | Linux Kernel: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2016-05-09T22:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0147 | Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen | 2016-05-12T22:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0146 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2016-05-22T22:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0145 | Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen | 2016-05-23T22:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0144 | Linux Kernel: Mehrere Schwachstellen | 2016-06-26T22:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0142 | Drupal: Schwachstelle ermöglicht Denial of Service | 2024-01-17T23:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0141 | Avaya Aura Experience Portal: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-01-17T23:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0140 | Progress Software MOVEit: Schwachstelle ermöglicht Denial of Service | 2024-01-17T23:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2018:2575 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2018-08-28T19:19:26+00:00 | 2026-01-13T21:37:35+00:00 |
| rhsa-2018:2569 | Red Hat Security Advisory: java-1.7.1-ibm security update | 2018-08-27T14:21:31+00:00 | 2026-01-13T21:37:34+00:00 |
| rhsa-2018:2568 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2018-08-27T14:20:44+00:00 | 2026-01-13T21:37:33+00:00 |
| rhsa-2018:2286 | Red Hat Security Advisory: java-1.7.0-openjdk security update | 2018-07-30T15:35:56+00:00 | 2026-01-13T21:37:33+00:00 |
| rhsa-2018:2283 | Red Hat Security Advisory: java-1.7.0-openjdk security update | 2018-07-30T17:50:09+00:00 | 2026-01-13T21:37:33+00:00 |
| rhsa-2018:1721 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2018-05-24T18:53:13+00:00 | 2026-01-13T21:37:33+00:00 |
| rhsa-2018:2254 | Red Hat Security Advisory: java-1.7.0-oracle security update | 2018-07-24T21:09:35+00:00 | 2026-01-13T21:37:31+00:00 |
| rhsa-2018:2253 | Red Hat Security Advisory: java-1.8.0-oracle security update | 2018-07-24T21:13:37+00:00 | 2026-01-13T21:37:31+00:00 |
| rhsa-2018:2241 | Red Hat Security Advisory: java-1.8.0-openjdk security update | 2018-07-23T14:40:57+00:00 | 2026-01-13T21:37:31+00:00 |
| rhsa-2018:1975 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2018-06-25T14:57:17+00:00 | 2026-01-13T21:37:30+00:00 |
| rhsa-2018:1974 | Red Hat Security Advisory: java-1.7.1-ibm security update | 2018-06-25T14:57:13+00:00 | 2026-01-13T21:37:30+00:00 |
| rhsa-2018:1724 | Red Hat Security Advisory: java-1.7.1-ibm security update | 2018-05-24T19:05:12+00:00 | 2026-01-13T21:37:29+00:00 |
| rhsa-2018:1723 | Red Hat Security Advisory: java-1.7.1-ibm security update | 2018-05-24T19:01:34+00:00 | 2026-01-13T21:37:29+00:00 |
| rhsa-2018:1463 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2018-05-15T15:30:51+00:00 | 2026-01-13T21:37:28+00:00 |
| rhsa-2018:1278 | Red Hat Security Advisory: java-1.7.0-openjdk security update | 2018-05-02T22:13:10+00:00 | 2026-01-13T21:37:28+00:00 |
| rhsa-2018:1270 | Red Hat Security Advisory: java-1.7.0-openjdk security update | 2018-04-30T16:21:42+00:00 | 2026-01-13T21:37:28+00:00 |
| rhsa-2018:1205 | Red Hat Security Advisory: java-1.6.0-sun security update | 2018-04-23T22:38:49+00:00 | 2026-01-13T21:37:27+00:00 |
| rhsa-2018:1204 | Red Hat Security Advisory: java-1.8.0-oracle security update | 2018-04-23T22:53:51+00:00 | 2026-01-13T21:37:26+00:00 |
| rhsa-2018:1203 | Red Hat Security Advisory: java-1.6.0-sun security update | 2018-04-23T17:15:36+00:00 | 2026-01-13T21:37:26+00:00 |
| rhsa-2018:1202 | Red Hat Security Advisory: java-1.8.0-oracle security update | 2018-04-23T17:15:03+00:00 | 2026-01-13T21:37:26+00:00 |
| rhsa-2018:1201 | Red Hat Security Advisory: java-1.7.0-oracle security update | 2018-04-23T22:56:26+00:00 | 2026-01-13T21:37:26+00:00 |
| rhsa-2018:0587 | Red Hat Security Advisory: rh-mysql56-mysql security update | 2018-03-26T10:03:58+00:00 | 2026-01-13T21:37:26+00:00 |
| rhsa-2018:0586 | Red Hat Security Advisory: rh-mysql57-mysql security update | 2018-03-26T10:09:44+00:00 | 2026-01-13T21:37:25+00:00 |
| rhsa-2018:0521 | Red Hat Security Advisory: java-1.7.1-ibm security update | 2018-03-14T15:23:31+00:00 | 2026-01-13T21:37:24+00:00 |
| rhsa-2018:0458 | Red Hat Security Advisory: java-1.7.1-ibm security update | 2018-03-07T10:33:13+00:00 | 2026-01-13T21:37:24+00:00 |
| rhsa-2018:0352 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2018-02-26T21:37:30+00:00 | 2026-01-13T21:37:23+00:00 |
| rhsa-2018:0351 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2018-02-26T21:32:17+00:00 | 2026-01-13T21:37:23+00:00 |
| rhsa-2018:0115 | Red Hat Security Advisory: java-1.6.0-sun security update | 2018-01-22T20:40:50+00:00 | 2026-01-13T21:37:21+00:00 |
| rhsa-2018:0099 | Red Hat Security Advisory: java-1.8.0-oracle security update | 2018-01-18T21:55:29+00:00 | 2026-01-13T21:37:20+00:00 |
| rhsa-2021:0779 | Red Hat Security Advisory: Red Hat Ansible Tower 3.7.5-1 - Container security and bug fix update | 2021-03-09T15:50:15+00:00 | 2026-01-13T21:33:47+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-3821 | An off-by-one Error issue was discovered in Systemd in format_timespan() function of time-util.c. An attacker could supply specific values for time and accuracy that leads to buffer overrun in format_timespan() leading to a Denial of Service. | 2022-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-37616 | A prototype pollution vulnerability exists in the function copy in dom.js in the xmldom (published as @xmldom/xmldom) package before 0.8.3 for Node.js via the p variable. NOTE: the vendor states "we are in the process of marking this report as invalid"; however some third parties takes the position that "A prototype injection/Prototype pollution is not just when global objects are polluted with recursive merge or deep cloning but also when a target object is polluted." | 2022-10-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-3563 | Linux Kernel BlueZ mgmt-tester.c read_50_controller_cap_complete null pointer dereference | 2022-10-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-35260 | curl can be told to parse a `.netrc` file for credentials. If that file endsin a line with 4095 consecutive non-white space letters and no newline curlwould first read past the end of the stack-based buffer and if the readworks write a zero byte beyond its boundary.This will in most cases cause a segfault or similar but circumstances might also cause different outcomes.If a malicious user can provide a custom netrc file to an application or otherwise affect its contents this flaw could be used as denial-of-service. | 2022-12-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-34038 | Etcd v3.5.4 allows remote attackers to cause a denial of service via function PageWriter.write in pagewriter.go. NOTE: the vendor's position is that this is not a vulnerability. | 2023-08-01T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-33064 | An off-by-one error in function wav_read_header in src/wav.c in Libsndfile 1.1.0 results in a write out of bound which allows an attacker to execute arbitrary code Denial of Service or other unspecified impacts. | 2023-07-01T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-32221 | When doing HTTP(S) transfers libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send even when the `CURLOPT_POSTFIELDS` option has been set if the same handle previously was used to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent `POST` request. The problem exists in the logic for a reused handle when it is changed from a PUT to a POST. | 2022-12-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-31394 | Hyperium Hyper before 0.14.19 does not allow for customization of the max_header_list_size method in the H2 third-party software allowing attackers to perform HTTP2 attacks. | 2023-02-01T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-2990 | An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to execute a binary code in that container. | 2022-09-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-28805 | singlevar in lparser.c in Lua from (including) 5.4.0 up to (excluding) 5.4.4 lacks a certain luaK_exp2anyregup call leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code. | 2022-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-28736 | There's a use-after-free vulnerability in grub_cmd_chainloader() function | 2023-07-01T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-28735 | The GRUB2's shim_lock verifier allows non-kernel files to be loaded on shim-powered secure boot systems. Allowing such files to be loaded may lead to unverified code and modules to be loaded in GRUB2 breaking the secure boot trust-chain. | 2023-07-01T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-28734 | Out-of-bounds write when handling split HTTP headers | 2023-07-01T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-28733 | Integer underflow in grub_net_recv_ip4_packets | 2023-07-01T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-28391 | BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively the attacker could choose to change the terminal's colors. | 2022-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-0699 | A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older releases. This issue may allow an attacker to cause a denial of service or have other unspecified impact via control over malloc. | 2022-10-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-0670 | A flaw was found in Openstack manilla owning a Ceph File system "share" which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of a file system. Fixed in RHCS 5.2 and Ceph 17.2.2. | 2022-07-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-0175 | A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the host possibly leading to information disclosure. | 2022-08-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-0135 | An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer). This flaw allows a malicious guest to create a specially crafted virgil resource and then issue a VIRTGPU_EXECBUFFER ioctl leading to a denial of service or possible code execution. | 2022-08-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-4238 | Insufficient randomness in github.com/Masterminds/goutils | 2022-12-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-3981 | A flaw in grub2 was found where its configuration file known as grub.cfg is being created with the wrong permission set allowing non privileged users to read its content. This represents a low severity confidentiality issue as those users can eventually read any encrypted passwords present in grub.cfg. This flaw affects grub2 2.06 and previous versions. This issue has been fixed in grub upstream but no version with the fix is currently released. | 2022-03-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-38190 | An issue was discovered in the nalgebra crate before 0.27.1 for Rust. It allows out-of-bounds memory access because it does not ensure that the number of elements is equal to the product of the row count and column count. | 2021-08-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-37501 | Buffer Overflow vulnerability in HDFGroup hdf5-h5dump 1.12.0 through 1.13.0 allows attackers to cause a denial of service via h5tools_str_sprint in /hdf5/tools/lib/h5tools_str.c. | 2023-02-01T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-3697 | A crafted JPEG image may lead the JPEG reader to underflow its data pointer allowing user-controlled data to be written in heap. To a successful to be performed the attacker needs to perform some triage over the heap layout and craft an image with a malicious format and payload. This vulnerability can lead to data corruption and eventual code execution or secure boot circumvention. This flaw affects grub2 versions prior grub-2.12. | 2022-07-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-3696 | A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in the heap space. Confidentiality Integrity and Availablity impact may be considered Low as it's very complex to an attacker control the encoding and positioning of corrupted Huffman entries to achieve results such as arbitrary code execution and/or secure boot circumvention. This flaw affects grub2 versions prior grub-2.12. | 2022-07-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-3695 | A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12. | 2022-07-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-3502 | A flaw was found in avahi 0.8-5. A reachable assertion is present in avahi_s_host_name_resolver_start function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hostnames. The highest threat from this vulnerability is to the service availability. | 2021-05-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-3468 | A flaw was found in avahi in versions 0.6 up to 0.8. The event used to signal the termination of the client connection on the avahi Unix socket is not correctly handled in the client_work function allowing a local attacker to trigger an infinite loop. The highest threat from this vulnerability is to the availability of the avahi service which becomes unresponsive after this flaw is triggered. | 2021-06-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-33646 | The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory which may cause a memory leak. | 2022-08-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2021-33645 | The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory which may cause a memory leak. | 2022-08-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201704-1010 | A Man-in-the-Middle issue was discovered in Hyundai Motor America Blue Link 3.9.5 and 3.9… | 2025-04-20T23:27:25.992000Z |
| var-201704-1011 | A Use of Hard-Coded Cryptographic Key issue was discovered in Hyundai Motor America Blue … | 2025-04-20T23:27:25.956000Z |
| var-201704-1325 | TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n al… | 2025-04-20T23:27:25.688000Z |
| var-201704-1346 | A vulnerability in the IPsec code of Cisco ASA Software could allow an authenticated, rem… | 2025-04-20T23:27:25.299000Z |
| var-201704-1577 | SAP AS JAVA SSO Authentication Library 2.0 through 3.0 allow remote attackers to cause a … | 2025-04-20T23:27:25.070000Z |
| var-201705-1958 | The GPU driver in Huawei P7 phones with software P7-L00 before P7-L00C17B851, P7-L05 befo… | 2025-04-20T23:27:24.916000Z |
| var-201705-3365 | On Juniper Networks products or platforms running Junos OS 11.4 prior to 11.4R13-S3, 12.1… | 2025-04-20T23:27:24.699000Z |
| var-201705-3470 | A vulnerability in the Plug-and-Play (PnP) subsystem of the Cisco Aironet 1800, 2800, and… | 2025-04-20T23:27:24.570000Z |
| var-201705-3659 | A vulnerability in the web interface of Cisco Prime Collaboration Provisioning Software (… | 2025-04-20T23:27:24.476000Z |
| var-201705-3658 | A vulnerability in the web interface of Cisco Prime Collaboration Provisioning Software (… | 2025-04-20T23:27:24.438000Z |
| var-201711-1076 | An Improper Input Validation issue was discovered in Siemens SIMATIC PCS 7 V8.1 prior to … | 2025-04-20T23:27:24.269000Z |
| var-201705-3974 | A vulnerability was discovered in Siemens SIMATIC WinCC (V7.3 before Upd 11 and V7.4 befo… | 2025-04-20T23:27:24.229000Z |
| var-201706-0204 | Buffer overflow in the mcpq daemon in F5 BIG-IP systems 10.x before 10.2.4 HF12, 11.x bef… | 2025-04-20T23:27:23.959000Z |
| var-201706-0391 | An XSS vulnerability allows remote attackers to execute arbitrary client side script on v… | 2025-04-20T23:27:23.851000Z |
| var-201706-0454 | An open redirect issue was discovered in B. Braun Medical SpaceCom module, which is integ… | 2025-04-20T23:27:23.764000Z |
| var-201706-0559 | A vulnerability in the AutoVNF logging function of Cisco Ultra Services Framework could a… | 2025-04-20T23:27:23.679000Z |
| var-201706-0580 | A vulnerability in the web-based management interface of Cisco Email Security Appliance (… | 2025-04-20T23:27:23.649000Z |
| var-201707-0241 | A buffer overflow vulnerability in Junos OS CLI may allow a local authenticated user with… | 2025-04-20T23:27:23.113000Z |
| var-201707-0535 | Stack-based buffer overflow in ASUS_Discovery.c in networkmap in Asuswrt-Merlin firmware … | 2025-04-20T23:27:22.844000Z |
| var-201707-0955 | A vulnerability in the web proxy functionality of the Cisco Web Security Appliance (WSA) … | 2025-04-20T23:27:22.596000Z |
| var-201707-1018 | The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-1604… | 2025-04-20T23:27:22.204000Z |
| var-201707-1039 | An information exposure vulnerability in forget_passwd.cgi in Synology DiskStation Manage… | 2025-04-20T23:27:22.174000Z |
| var-201707-1080 | An issue was discovered on Humax Digital HG100R 2.0.6 devices. To download the backup fil… | 2025-04-20T23:27:22.141000Z |
| var-201707-1081 | An issue was discovered on Humax Digital HG100R 2.0.6 devices. There is XSS on the 404 pa… | 2025-04-20T23:27:22.105000Z |
| var-201707-1307 | Cross-Site Scripting (XSS) exists in Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8… | 2025-04-20T23:27:21.926000Z |
| var-201708-0020 | Cisco Data Center Network Manager is affected by Excessive Logging During a TCP Flood on … | 2025-04-20T23:27:21.890000Z |
| var-201708-0145 | ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote… | 2025-04-20T23:27:21.775000Z |
| var-201708-0144 | ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote… | 2025-04-20T23:27:21.742000Z |
| var-201708-0146 | ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow user a… | 2025-04-20T23:27:21.707000Z |
| var-201708-0272 | Cross-site scripting (XSS) vulnerability in IBM Security Network Protection 3100, 4100, 5… | 2025-04-20T23:27:18.056000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2023:1581-2 | Security update for ceph | 2023-05-02T13:26:03Z | 2023-05-02T13:26:03Z |
| suse-su-2023:2086-1 | Security update for shim | 2023-05-02T13:19:02Z | 2023-05-02T13:19:02Z |
| suse-su-2023:2084-1 | Security update for shim | 2023-05-02T11:32:01Z | 2023-05-02T11:32:01Z |
| suse-su-2023:2083-1 | Security update for installation-images | 2023-05-02T11:31:17Z | 2023-05-02T11:31:17Z |
| suse-su-2023:2082-1 | Security update for installation-images | 2023-05-02T11:31:06Z | 2023-05-02T11:31:06Z |
| suse-su-2023:2081-1 | Security update for git | 2023-05-02T11:30:54Z | 2023-05-02T11:30:54Z |
| suse-su-2023:2080-1 | Security update for python-Django1 | 2023-05-02T10:56:19Z | 2023-05-02T10:56:19Z |
| suse-su-2023:2078-1 | Security update for webkit2gtk3 | 2023-04-29T05:07:42Z | 2023-04-29T05:07:42Z |
| suse-su-2023:2077-1 | Security update for webkit2gtk3 | 2023-04-29T05:06:26Z | 2023-04-29T05:06:26Z |
| suse-su-2023:2076-1 | Security update for glib2 | 2023-04-28T15:35:18Z | 2023-04-28T15:35:18Z |
| suse-su-2023:2074-1 | Security update for zstd | 2023-04-28T15:02:34Z | 2023-04-28T15:02:34Z |
| suse-su-2023:2070-1 | Security update for shadow | 2023-04-28T11:56:59Z | 2023-04-28T11:56:59Z |
| suse-su-2023:2069-1 | Security update for shadow | 2023-04-28T11:55:58Z | 2023-04-28T11:55:58Z |
| suse-su-2023:2068-1 | Security update for shadow | 2023-04-28T11:55:19Z | 2023-04-28T11:55:19Z |
| suse-su-2023:2067-1 | Security update for shadow | 2023-04-28T11:54:39Z | 2023-04-28T11:54:39Z |
| suse-su-2023:2066-1 | Security update for shadow | 2023-04-28T11:54:21Z | 2023-04-28T11:54:21Z |
| suse-su-2023:2065-1 | Security update for webkit2gtk3 | 2023-04-28T11:12:33Z | 2023-04-28T11:12:33Z |
| suse-su-2023:2064-1 | Security update for MozillaThunderbird | 2023-04-28T08:47:34Z | 2023-04-28T08:47:34Z |
| suse-su-2023:2062-1 | Security update for git | 2023-04-28T08:34:27Z | 2023-04-28T08:34:27Z |
| suse-su-2023:2060-1 | Security update for glib2 | 2023-04-27T15:04:35Z | 2023-04-27T15:04:35Z |
| suse-su-2023:2059-1 | Security update for rubygem-actionview-5_1 | 2023-04-27T14:32:37Z | 2023-04-27T14:32:37Z |
| suse-su-2023:1718-2 | Security update for glibc | 2023-04-27T14:13:01Z | 2023-04-27T14:13:01Z |
| suse-su-2023:1686-2 | Security update for libmicrohttpd | 2023-04-27T14:12:03Z | 2023-04-27T14:12:03Z |
| suse-su-2023:0781-2 | Security update for vim | 2023-04-27T14:10:43Z | 2023-04-27T14:10:43Z |
| suse-su-2023:0868-2 | Security update for python3 | 2023-04-27T14:07:28Z | 2023-04-27T14:07:28Z |
| suse-su-2023:0795-2 | Security update for docker | 2023-04-27T14:06:40Z | 2023-04-27T14:06:40Z |
| suse-su-2023:1796-2 | Security update for conmon | 2023-04-27T13:55:43Z | 2023-04-27T13:55:43Z |
| suse-su-2023:0848-2 | Security update for xen | 2023-04-27T13:55:37Z | 2023-04-27T13:55:37Z |
| suse-su-2023:0879-2 | Security update for qemu | 2023-04-27T13:55:23Z | 2023-04-27T13:55:23Z |
| suse-su-2023:0668-2 | Security update for libX11 | 2023-04-27T13:54:56Z | 2023-04-27T13:54:56Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2021:0840-1 | Security update for chromium | 2021-06-04T13:40:38Z | 2021-06-04T13:40:38Z |
| opensuse-su-2021:0838-1 | Security update for polkit | 2021-06-04T08:34:08Z | 2021-06-04T08:34:08Z |
| opensuse-su-2021:0835-1 | Security update for nginx | 2021-06-03T17:33:38Z | 2021-06-03T17:33:38Z |
| opensuse-su-2021:0834-1 | Security update for dhcp | 2021-06-03T17:33:35Z | 2021-06-03T17:33:35Z |
| opensuse-su-2021:0833-1 | Security update for ceph | 2021-06-03T17:33:32Z | 2021-06-03T17:33:32Z |
| opensuse-su-2021:0832-1 | Security update for xstream | 2021-06-03T17:33:26Z | 2021-06-03T17:33:26Z |
| opensuse-su-2021:0830-1 | Security update for inn | 2021-06-03T16:05:19Z | 2021-06-03T16:05:19Z |
| opensuse-su-2021:0829-1 | Security update for opera | 2021-06-03T15:56:19Z | 2021-06-03T15:56:19Z |
| opensuse-su-2021:0828-1 | Security update for opera | 2021-06-03T15:56:14Z | 2021-06-03T15:56:14Z |
| opensuse-su-2021:0826-1 | Security update for upx | 2021-06-03T08:05:36Z | 2021-06-03T08:05:36Z |
| opensuse-su-2021:0825-1 | Security update for chromium | 2021-06-02T15:31:36Z | 2021-06-02T15:31:36Z |
| opensuse-su-2021:0822-1 | Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly | 2021-06-01T15:52:21Z | 2021-06-01T15:52:21Z |
| opensuse-su-2021:0821-1 | Security update for slurm | 2021-06-01T15:52:14Z | 2021-06-01T15:52:14Z |
| opensuse-su-2021:0813-1 | Security update for upx | 2021-05-30T18:05:08Z | 2021-05-30T18:05:08Z |
| opensuse-su-2021:0812-1 | Security update for libxls | 2021-05-30T12:05:14Z | 2021-05-30T12:05:14Z |
| opensuse-su-2021:0810-1 | Security update for singularity | 2021-05-30T12:05:05Z | 2021-05-30T12:05:05Z |
| opensuse-su-2021:0808-1 | Security update for curl | 2021-05-29T16:05:16Z | 2021-05-29T16:05:16Z |
| opensuse-su-2021:0807-1 | Security update for libX11 | 2021-05-29T16:05:12Z | 2021-05-29T16:05:12Z |
| opensuse-su-2021:0806-1 | Security update for hivex | 2021-05-29T14:05:17Z | 2021-05-29T14:05:17Z |
| opensuse-su-2021:0799-1 | Security update for libu2f-host | 2021-05-28T16:05:18Z | 2021-05-28T16:05:18Z |
| opensuse-su-2021:0798-1 | Security update for mpv | 2021-05-27T18:05:12Z | 2021-05-27T18:05:12Z |
| opensuse-su-2021:0797-1 | Security update for rubygem-actionpack-5_1 | 2021-05-26T17:13:48Z | 2021-05-26T17:13:48Z |
| opensuse-su-2021:0796-1 | Security update for python-httplib2 | 2021-05-26T12:05:23Z | 2021-05-26T12:05:23Z |
| opensuse-su-2021:0794-1 | Security update for Botan | 2021-05-25T12:05:25Z | 2021-05-25T12:05:25Z |
| opensuse-su-2021:0790-1 | Recommended update for grub2 | 2021-05-24T18:05:19Z | 2021-05-24T18:05:19Z |
| opensuse-su-2021:0788-1 | Security update for mpv | 2021-05-24T12:03:34Z | 2021-05-24T12:03:34Z |
| opensuse-su-2021:0787-1 | Security update for cacti, cacti-spine | 2021-05-24T04:08:42Z | 2021-05-24T04:08:42Z |
| opensuse-su-2021:0776-1 | Security update for java-1_8_0-openj9 | 2021-05-23T16:05:42Z | 2021-05-23T16:05:42Z |
| opensuse-su-2021:0773-1 | Security update for libass | 2021-05-23T12:05:26Z | 2021-05-23T12:05:26Z |
| opensuse-su-2021:0772-1 | Security update for python-httplib2 | 2021-05-23T04:05:51Z | 2021-05-23T04:05:51Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2022-82402 | 湖南强智科技发展有限公司教务一体化系统存在XSS漏洞 | 2022-10-21 | 2025-06-24 |
| cnvd-2025-14294 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-14294) | 2025-06-13 | 2025-06-23 |
| cnvd-2025-14293 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-14293) | 2025-06-13 | 2025-06-23 |
| cnvd-2025-14291 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-14291) | 2025-06-13 | 2025-06-23 |
| cnvd-2025-14290 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-14290) | 2025-06-13 | 2025-06-23 |
| cnvd-2025-14289 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-14289) | 2025-06-13 | 2025-06-23 |
| cnvd-2025-14274 | Adobe Commerce授权问题漏洞(CNVD-2025-14274) | 2025-06-17 | 2025-06-23 |
| cnvd-2025-14272 | Adobe Commerce访问控制错误漏洞 | 2025-06-17 | 2025-06-23 |
| cnvd-2025-13412 | NETGEAR Orbi 760 SOAP API验证绕过漏洞 | 2023-09-04 | 2025-06-23 |
| cnvd-2025-13404 | NETGEAR EX8000 action_wireless命令注入漏洞 | 2025-05-12 | 2025-06-23 |
| cnvd-2025-13357 | Huawei HarmonyOS权限问题漏洞(CNVD-2025-13357) | 2024-11-07 | 2025-06-23 |
| cnvd-2025-13356 | Huawei HarmonyOS条件竞争漏洞 | 2024-11-07 | 2025-06-23 |
| cnvd-2025-13355 | Huawei HarmonyOS权限问题漏洞 | 2024-11-19 | 2025-06-23 |
| cnvd-2025-13354 | Huawei HarmonyOS权限问题漏洞 | 2024-12-20 | 2025-06-23 |
| cnvd-2025-13353 | NETGEAR Nighthawk WiFi6 Router代码执行漏洞 | 2023-03-14 | 2025-06-23 |
| cnvd-2025-13352 | NETGEAR Nighthawk WiFi6 Router缓冲区溢出漏洞 | 2023-03-14 | 2025-06-23 |
| cnvd-2025-13351 | NETGEAR Nighthawk WiFi6 Router代码执行漏洞 | 2023-03-14 | 2025-06-23 |
| cnvd-2025-13350 | NETGEAR Orbi Satellite RBS750 ubus后端通信功能命令执行漏洞 | 2023-03-23 | 2025-06-23 |
| cnvd-2025-13349 | NETGEAR RAX30 UPnP命令注入漏洞 | 2023-07-03 | 2025-06-23 |
| cnvd-2025-13348 | NETGEAR R6400v2代码执行漏洞 | 2023-09-05 | 2025-06-23 |
| cnvd-2025-13347 | NETGEAR ProSAFE Network Management System getNodesByTopologyMapSearch SQL注入漏洞 | 2023-11-27 | 2025-06-23 |
| cnvd-2025-13346 | NETGEAR ProSAFE Network Management System clearAlertByIds函数SQL注入漏洞 | 2023-11-27 | 2025-06-23 |
| cnvd-2025-13345 | Huawei EMUI/HarmonyOS访问控制漏洞(CNVD-2025-13345) | 2024-09-10 | 2025-06-23 |
| cnvd-2025-13344 | Huawei EMUI/HarmonyOS访问控制漏洞 | 2024-09-11 | 2025-06-23 |
| cnvd-2025-13343 | Huawei HarmonyOS缓冲区溢出漏洞 | 2024-12-20 | 2025-06-23 |
| cnvd-2025-13342 | Huawei HarmonyOS缓冲区溢出漏洞(CNVD-2025-1334222) | 2024-12-20 | 2025-06-23 |
| cnvd-2025-13341 | Huawei HarmonyOS缓冲区溢出漏洞(CNVD-2025-1334123) | 2024-12-20 | 2025-06-23 |
| cnvd-2025-13340 | Huawei HarmonyOS代码问题漏洞 | 2024-12-20 | 2025-06-23 |
| cnvd-2025-13274 | Microsoft Office权限提升漏洞(CNVD-2025-13274) | 2024-12-13 | 2025-06-23 |
| cnvd-2025-13273 | Microsoft Access代码执行漏洞(CNVD-2025-13273) | 2024-12-13 | 2025-06-23 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-175 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2018-04-10T00:00:00.000000 | 2018-04-10T00:00:00.000000 |
| certfr-2018-avi-174 | Multiples vulnérabilités dans Google Chrome OS | 2018-04-10T00:00:00.000000 | 2018-04-10T00:00:00.000000 |
| certfr-2018-avi-172 | Multiples vulnérabilités dans SCADA les produits Schneider Electric | 2018-04-06T00:00:00.000000 | 2018-04-06T00:00:00.000000 |
| certfr-2018-avi-171 | Multiples vulnérabilités dans Citrix XenServer | 2018-04-06T00:00:00.000000 | 2018-04-06T00:00:00.000000 |
| certfr-2018-avi-170 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-04-05T00:00:00.000000 | 2018-04-06T00:00:00.000000 |
| certfr-2018-avi-169 | Vulnérabilité dans les produits Microsoft | 2018-04-04T00:00:00.000000 | 2018-04-04T00:00:00.000000 |
| certfr-2018-avi-168 | Multiples vulnérabilités dans Microsoft Windows | 2018-04-04T00:00:00.000000 | 2018-04-04T00:00:00.000000 |
| certfr-2018-avi-167 | Multiples vulnérabilités dans WordPress | 2018-04-04T00:00:00.000000 | 2018-04-04T00:00:00.000000 |
| certfr-2018-avi-166 | Multiples vulnérabilités dans Wireshark | 2018-04-04T00:00:00.000000 | 2018-04-04T00:00:00.000000 |
| certfr-2018-avi-165 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-04-04T00:00:00.000000 | 2018-04-04T00:00:00.000000 |
| certfr-2018-avi-164 | Multiples vulnérabilités dans Google Android | 2018-04-03T00:00:00.000000 | 2018-04-03T00:00:00.000000 |
| certfr-2018-avi-163 | Vulnérabilité dans Microsoft Windows | 2018-03-30T00:00:00.000000 | 2018-03-30T00:00:00.000000 |
| certfr-2018-avi-162 | Multiples vulnérabilités dans les produits Apple | 2018-03-30T00:00:00.000000 | 2018-03-30T00:00:00.000000 |
| certfr-2018-avi-161 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-03-30T00:00:00.000000 | 2018-03-30T00:00:00.000000 |
| certfr-2018-avi-160 | Multiples vulnérabilités dans Citrix XenServer | 2018-03-30T00:00:00.000000 | 2018-03-30T00:00:00.000000 |
| certfr-2018-avi-159 | Multiples vulnérabilités dans PHP | 2018-03-30T00:00:00.000000 | 2018-03-30T00:00:00.000000 |
| certfr-2018-avi-158 | Vulnérabilité dans Drupal | 2018-03-29T00:00:00.000000 | 2018-03-29T00:00:00.000000 |
| certfr-2018-avi-157 | Multiples vulnérabilités dans les produits SCADA Siemens Building Technologies | 2018-03-29T00:00:00.000000 | 2018-03-29T00:00:00.000000 |
| certfr-2018-avi-156 | Multiples vulnérabilités dans les produits Cisco | 2018-03-29T00:00:00.000000 | 2018-03-29T00:00:00.000000 |
| certfr-2018-avi-155 | Multiples vulnérabilités dans OpenSSL | 2018-03-28T00:00:00.000000 | 2018-03-28T00:00:00.000000 |
| certfr-2018-avi-154 | Multiples vulnérabilités dans SCADA Schneider Electric Modicon | 2018-03-28T00:00:00.000000 | 2018-03-28T00:00:00.000000 |
| certfr-2018-avi-153 | Vulnérabilité dans Apache Struts 2 | 2018-03-28T00:00:00.000000 | 2018-03-28T00:00:00.000000 |
| certfr-2018-avi-152 | Multiples vulnérabilités dans SCADA les produits Siemens | 2018-03-27T00:00:00.000000 | 2018-03-27T00:00:00.000000 |
| certfr-2018-avi-151 | Vulnérabilité dans Mozilla Firefox | 2018-03-27T00:00:00.000000 | 2018-03-27T00:00:00.000000 |
| certfr-2018-avi-150 | Multiples vulnérabilités dans Moodle | 2018-03-26T00:00:00.000000 | 2018-03-26T00:00:00.000000 |
| certfr-2018-avi-149 | Multiples vulnérabilités dans Mozilla Thunderbird | 2018-03-26T00:00:00.000000 | 2018-03-26T00:00:00.000000 |
| certfr-2018-avi-148 | Multiples vulnérabilités dans Google Chrome OS | 2018-03-26T00:00:00.000000 | 2018-03-26T00:00:00.000000 |
| certfr-2018-avi-147 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-03-26T00:00:00.000000 | 2018-03-26T00:00:00.000000 |
| certfr-2018-avi-146 | Multiples vulnérabilités dans SCADA Schneider Electric Modicon | 2018-03-23T00:00:00.000000 | 2018-03-23T00:00:00.000000 |
| certfr-2018-avi-145 | Multiples vulnérabilités dans Citrix XenServer | 2018-03-22T00:00:00.000000 | 2018-03-22T00:00:00.000000 |