Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-66145	5.4 (3.1)	WordPress Worker for WPBakery plugin <= 1.1.1 - Broken…	merkulove	Worker for WPBakery	2025-12-31T19:51:22.621Z	2026-01-20T14:28:24.457Z
CVE-2025-66162	5.4 (3.1)	WordPress Spoter for Elementor plugin <= 1.04 - Broken…	merkulove	Spoter for Elementor	2025-12-16T08:12:55.672Z	2026-01-20T14:28:24.446Z
CVE-2025-66153	5.4 (3.1)	WordPress Headinger for Elementor plugin <= 1.1.4 - Br…	merkulove	Headinger for Elementor	2025-12-31T18:31:21.816Z	2026-01-20T14:28:24.444Z
CVE-2025-66526	4.3 (3.1)	WordPress Tablesome plugin <= 1.1.34 - Broken Access C…	Essekia	Tablesome	2025-12-09T14:13:53.002Z	2026-01-20T14:28:24.435Z
CVE-2025-66134	5.4 (3.1)	WordPress FileBird Pro plugin <= 6.4.9 - Broken Access…	NinjaTeam	FileBird Pro	2025-12-16T08:12:55.088Z	2026-01-20T14:28:24.432Z
CVE-2025-66166	5.4 (3.1)	WordPress Lottier for Elementor plugin <= 1.0.9 - Brok…	merkulove	Lottier for Elementor	2025-12-16T08:12:56.603Z	2026-01-20T14:28:24.430Z
CVE-2025-66163	5.4 (3.1)	WordPress Masker for Elementor plugin <= 1.1.4 - Broke…	merkulove	Masker for Elementor	2025-12-16T08:12:55.859Z	2026-01-20T14:28:24.419Z
CVE-2025-66154	5.4 (3.1)	WordPress Couponer for Elementor plugin <= 1.1.7 - Bro…	merkulove	Couponer for Elementor	2025-12-31T17:01:26.537Z	2026-01-20T14:28:24.410Z
CVE-2025-66126	5.3 (3.1)	WordPress Fix Media Library plugin <= 2.0 - Sensitive …	wowpress.host	Fix Media Library	2025-12-16T08:12:53.301Z	2026-01-20T14:28:24.341Z
CVE-2025-66124	5.3 (3.1)	WordPress Leaky Paywall plugin <= 4.22.5 - Broken Acce…	ZEEN101	Leaky Paywall	2025-12-16T08:12:52.912Z	2026-01-20T14:28:24.250Z
CVE-2025-66120	5.3 (3.1)	WordPress CatFolders plugin <= 2.5.3 - Broken Access C…	CatFolders	CatFolders	2025-12-16T08:12:52.307Z	2026-01-20T14:28:24.074Z
CVE-2025-66116	7.5 (3.1)	WordPress Ultimate Member Widgets for Elementor plugin…	UserElements	Ultimate Member Widgets for Elementor	2025-12-18T07:22:18.838Z	2026-01-20T14:28:24.052Z
CVE-2025-66104	6.5 (3.1)	WordPress Offload, AI & Optimize with Cloudflare Image…	Anton Vanyukov	Offload, AI & Optimize with Cloudflare Images	2025-12-18T07:22:18.646Z	2026-01-20T14:28:24.032Z
CVE-2025-66117	7.5 (3.1)	WordPress Easy Form plugin <= 2.7.8 - Broken Access Co…	Ays Pro	Easy Form	2025-12-18T07:22:19.016Z	2026-01-20T14:28:24.031Z
CVE-2025-66097	4.3 (3.1)	WordPress I Order Terms plugin <= 1.5.0 - Cross Site R…	Igor Jerosimić	I Order Terms	2025-11-21T12:29:59.986Z	2026-01-20T14:28:24.031Z
CVE-2025-66121	5.3 (3.1)	WordPress SiteGround Security plugin <= 1.5.8 - Broken…	SiteGround	SiteGround Security	2025-12-16T08:12:52.500Z	2026-01-20T14:28:24.018Z
CVE-2025-66113	5.4 (3.1)	WordPress Better Chat Support for Messenger plugin <= …	ThemeAtelier	Better Chat Support for Messenger	2025-11-21T12:30:05.951Z	2026-01-20T14:28:24.016Z
CVE-2025-66115	6.6 (3.1)	WordPress Easy Invoice plugin <= 2.1.4 - Local File In…	MatrixAddons	Easy Invoice	2025-11-21T12:30:06.442Z	2026-01-20T14:28:24.013Z
CVE-2025-66087	5.3 (3.1)	WordPress PropertyHive plugin <= 2.1.12 - Broken Acces…	Property Hive	PropertyHive	2025-11-21T12:29:58.540Z	2026-01-20T14:28:24.013Z
CVE-2025-66119	7.1 (3.1)	WordPress Hostel plugin <= 1.1.5.9 - Cross Site Script…	Bob	Hostel	2025-12-18T07:22:19.370Z	2026-01-20T14:28:24.012Z
CVE-2025-66101	4.3 (3.1)	WordPress CBX Bookmark & Favorite plugin <= 2.0.1 - Br…	Sabuj Kundu	CBX Bookmark & Favorite	2025-11-21T12:30:01.600Z	2026-01-20T14:28:24.010Z
CVE-2025-66094	6.5 (3.1)	WordPress Yada Wiki plugin <= 3.5 - Cross Site Scripti…	dmccan	Yada Wiki	2025-12-30T16:17:26.055Z	2026-01-20T14:28:24.009Z
CVE-2025-66088	7.5 (3.1)	WordPress PropertyHive plugin <= 2.1.12 - Broken Acces…	Property Hive	PropertyHive	2025-12-18T07:22:18.084Z	2026-01-20T14:28:24.007Z
CVE-2025-66118	7.1 (3.1)	WordPress Sprout Clients plugin <= 3.2.1 - Cross Site …	BoldGrid	Sprout Clients	2025-12-18T07:22:19.186Z	2026-01-20T14:28:24.006Z
CVE-2025-66092	6.5 (3.1)	WordPress Accordion Slider plugin <= 1.9.13 - Cross Si…	bqworks	Accordion Slider	2025-11-21T12:29:59.275Z	2026-01-20T14:28:24.005Z
CVE-2025-66114	5.3 (3.1)	WordPress Show Variations as Single Products Woocommer…	theme funda	Show Variations as Single Products Woocommerce	2025-11-21T12:30:06.230Z	2026-01-20T14:28:23.995Z
CVE-2025-66099	5.3 (3.1)	WordPress Chat Help plugin <= 3.1.3 - Broken Access Co…	ThemeAtelier	Chat Help	2025-11-21T12:30:01.184Z	2026-01-20T14:28:23.992Z
CVE-2025-66100	6.5 (3.1)	WordPress RestroPress plugin <= 3.2.3.5 - Broken Acces…	Magnigenie	RestroPress	2025-12-18T07:22:18.263Z	2026-01-20T14:28:23.990Z
CVE-2025-66093	6.5 (3.1)	WordPress Extensions for Leaflet Map plugin <= 4.8 - C…	hupe13	Extensions for Leaflet Map	2025-11-21T12:29:59.483Z	2026-01-20T14:28:23.983Z
CVE-2025-66103	6.5 (3.1)	WordPress WPCal.io plugin <= 0.9.5.9 - Cross Site Scri…	Revmakx	WPCal.io	2025-12-30T16:43:38.792Z	2026-01-20T14:28:23.972Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-67909	8.1 (3.1)	WordPress Membership For WooCommerce plugin <= 3.0.3 -…	WP Swings	Membership For WooCommerce	2025-12-24T13:10:24.788Z	2026-01-20T14:28:26.498Z
CVE-2025-67633	6.1 (3.1)	WordPress Greenhouse Job Board plugin <= 2.7.3 - Cross…	brownbagmarketing	Greenhouse Job Board	2025-12-24T13:10:24.524Z	2026-01-20T14:28:26.447Z
CVE-2025-67632	6.1 (3.1)	WordPress Google AdSense for Responsive Design – GARD …	The Plugin Factory	Google AdSense for Responsive Design – GARD	2025-12-24T13:10:24.256Z	2026-01-20T14:28:26.498Z
CVE-2025-67631	5.4 (3.1)	WordPress Gift Hunt plugin <= 2.0.2 - Cross Site Scrip…	Ecommerce Platforms	Gift Hunt	2025-12-24T13:10:23.974Z	2026-01-20T14:28:26.724Z
CVE-2025-67630	5.4 (3.1)	WordPress WH Tweaks plugin <= 1.0.2 - Cross Site Scrip…	webheadcoder	WH Tweaks	2025-12-24T13:10:23.685Z	2026-01-20T14:28:26.519Z
CVE-2025-67629	5.4 (3.1)	WordPress Basticom Framework plugin <= 1.5.2 - Cross S…	Basticom	Basticom Framework	2025-12-24T13:10:23.380Z	2026-01-20T14:28:26.597Z
CVE-2025-67628	5.4 (3.1)	WordPress Review Disclaimer plugin <= 2.0.3 - Cross Si…	AMP-MODE	Review Disclaimer	2025-12-24T13:10:23.116Z	2026-01-20T14:28:26.481Z
CVE-2025-67627	5.4 (3.1)	WordPress Draft Notify plugin <= 1.5 - Cross Site Scri…	TouchOfTech	Draft Notify	2025-12-24T13:10:22.835Z	2026-01-20T14:28:26.425Z
CVE-2025-67625	8.8 (3.1)	WordPress Trade Runner plugin <= 3.14 - Cross Site Req…	tmtraderunner	Trade Runner	2025-12-24T13:10:22.548Z	2026-01-20T14:28:26.542Z
CVE-2025-67623	9.1 (3.1)	WordPress 6Storage Rentals plugin <= 2.19.9 - Server S…	6Storage	6Storage Rentals	2025-12-24T13:10:22.188Z	2026-01-20T14:28:26.425Z
CVE-2025-67622	8.8 (3.1)	WordPress Evergreen Post Tweeter plugin <= 1.8.9 - Cro…	titopandub	Evergreen Post Tweeter	2025-12-24T13:10:21.161Z	2026-01-20T14:28:26.468Z
CVE-2025-67621	7.5 (3.1)	WordPress Eight Day Week Print Workflow plugin <= 1.2.…	10up	Eight Day Week Print Workflow	2025-12-24T13:10:20.740Z	2026-01-20T14:28:26.459Z
CVE-2025-67599	4.3 (3.1)	WordPress WebToffee eCommerce Marketing Automation plu…	WebToffee	WebToffee eCommerce Marketing Automation	2025-12-09T14:14:19.262Z	2026-01-20T14:28:26.396Z
CVE-2025-67598	4.3 (3.1)	WordPress SupportCandy plugin <= 3.4.1 - Cross Site Re…	PSM Plugins	SupportCandy	2025-12-09T14:14:19.039Z	2026-01-20T14:28:26.377Z
CVE-2025-67597	4.3 (3.1)	WordPress Fluent Booking plugin <= 1.9.11 - Broken Acc…	Shahjahan Jewel	Fluent Booking	2025-12-09T14:14:18.833Z	2026-01-20T14:28:26.514Z
CVE-2025-67596	4.3 (3.1)	WordPress Business Directory plugin <= 6.4.19 - Cross …	Strategy11 Team	Business Directory	2025-12-09T14:14:18.627Z	2026-01-20T14:28:26.451Z
CVE-2025-67595	4.3 (3.1)	WordPress Quiz Maker plugin <= 6.7.0.82 - Cross Site R…	Ays Pro	Quiz Maker	2025-12-09T14:14:18.334Z	2026-01-20T14:28:26.723Z
CVE-2025-67594	4.3 (3.1)	WordPress Thim Elementor Kit plugin <= 1.3.3 - Insecur…	ThimPress	Thim Elementor Kit	2025-12-09T14:14:18.018Z	2026-01-20T14:28:26.443Z
CVE-2025-67593	4.3 (3.1)	WordPress UsersWP plugin <= 1.2.48 - Cross Site Reques…	Stiofan	UsersWP	2025-12-09T14:14:17.816Z	2026-01-20T14:28:26.508Z
CVE-2025-67592	4.3 (3.1)	WordPress My Calendar plugin <= 3.6.16 - Broken Access…	Joe Dolson	My Calendar	2025-12-09T14:14:17.621Z	2026-01-20T14:28:26.652Z
CVE-2025-67591	4.3 (3.1)	WordPress JNews Paywall plugin < 12.0.1 - Cross Site R…	jegtheme	JNews Paywall	2025-12-09T14:14:17.411Z	2026-01-20T14:28:26.459Z
CVE-2025-67590	4.3 (3.1)	WordPress Ultimate FAQ plugin <= 2.4.3 - Cross Site Re…	Rustaurius	Ultimate FAQ	2025-12-09T14:14:17.214Z	2026-01-20T14:28:26.421Z
CVE-2025-67589	4.3 (3.1)	WordPress WooCommerce PDF Invoices & Packing Slips plu…	WP Overnight	WooCommerce PDF Invoices & Packing Slips	2025-12-09T14:14:17.021Z	2026-01-20T14:28:26.461Z
CVE-2025-67588	4.3 (3.1)	WordPress Elementor Website Builder plugin <= 3.33.0 -…	Elementor	Elementor Website Builder	2025-12-09T14:14:16.826Z	2026-01-20T14:28:26.013Z
CVE-2025-67587	4.3 (3.1)	WordPress WP Gravity Forms FreshDesk Plugin plugin <= …	CRM Perks	WP Gravity Forms FreshDesk Plugin	2025-12-09T14:14:16.613Z	2026-01-20T14:28:26.008Z
CVE-2025-67586	5.3 (3.1)	WordPress Highlight and Share plugin <= 5.2.0 - Broken…	Ronald Huereca	Highlight and Share	2025-12-09T14:14:16.416Z	2026-01-20T14:28:25.927Z
CVE-2025-67585	4.7 (3.1)	WordPress Flexmls® IDX plugin <= 3.15.7 - Open Redirec…	flexmls	Flexmls® IDX	2025-12-09T14:14:16.160Z	2026-01-20T14:28:25.930Z
CVE-2025-67584	5.3 (3.1)	WordPress GoDAM plugin <= 1.4.6 - Broken Access Contro…	rtCamp	GoDAM	2025-12-09T14:14:15.957Z	2026-01-20T14:28:26.012Z
CVE-2025-67583	5.3 (3.1)	WordPress IDonate plugin <= 2.1.15 - Broken Access Con…	ThemeAtelier	IDonate	2025-12-09T14:14:15.775Z	2026-01-20T14:28:25.924Z
CVE-2025-67582	5.3 (3.1)	WordPress Wbcom Designs plugin <= 2.1.1 - Broken Acces…	wbcomdesigns	Wbcom Designs	2025-12-09T14:14:15.571Z	2026-01-20T14:28:25.931Z

ID	Description	Published	Updated
fkie_cve-2025-67630	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:19.190	2026-01-20T15:19:29.197
fkie_cve-2025-67629	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:19.070	2026-01-20T15:19:29.073
fkie_cve-2025-67628	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:18.943	2026-01-20T15:19:28.940
fkie_cve-2025-67627	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:18.823	2026-01-20T15:19:28.817
fkie_cve-2025-67625	Cross-Site Request Forgery (CSRF) vulnerability in tmtraderunner Trade Runner traderunner allows Cr…	2025-12-24T13:16:18.703	2026-01-20T15:19:28.693
fkie_cve-2025-67623	Server-Side Request Forgery (SSRF) vulnerability in 6Storage 6Storage Rentals 6storage-rentals allo…	2025-12-24T13:16:18.583	2026-01-20T15:19:28.570
fkie_cve-2025-67622	Cross-Site Request Forgery (CSRF) vulnerability in titopandub Evergreen Post Tweeter evergreen-post…	2025-12-24T13:16:18.453	2026-01-20T15:19:28.450
fkie_cve-2025-67621	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in 10up Ei…	2025-12-24T13:16:18.317	2026-01-20T15:19:28.317
fkie_cve-2025-67599	Missing Authorization vulnerability in WebToffee WebToffee eCommerce Marketing Automation decorator…	2025-12-09T16:18:38.303	2026-01-20T15:19:28.193
fkie_cve-2025-67598	Cross-Site Request Forgery (CSRF) vulnerability in PSM Plugins SupportCandy supportcandy allows Cro…	2025-12-09T16:18:38.163	2026-01-20T15:19:28.070
fkie_cve-2025-67597	Missing Authorization vulnerability in Shahjahan Jewel Fluent Booking fluent-booking allows Exploit…	2025-12-09T16:18:38.030	2026-01-20T15:19:27.950
fkie_cve-2025-67596	Cross-Site Request Forgery (CSRF) vulnerability in Strategy11 Team Business Directory business-dire…	2025-12-09T16:18:37.890	2026-01-20T15:19:27.823
fkie_cve-2025-67595	Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Quiz Maker quiz-maker allows Cross Site …	2025-12-09T16:18:37.757	2026-01-20T15:19:27.683
fkie_cve-2025-67594	Authorization Bypass Through User-Controlled Key vulnerability in ThimPress Thim Elementor Kit thim…	2025-12-09T16:18:37.613	2026-01-20T15:19:27.560
fkie_cve-2025-67593	Cross-Site Request Forgery (CSRF) vulnerability in Stiofan UsersWP userswp allows Cross Site Reques…	2025-12-09T16:18:37.480	2026-01-20T15:19:27.440
fkie_cve-2025-67592	Missing Authorization vulnerability in Joe Dolson My Calendar my-calendar allows Exploiting Incorre…	2025-12-09T16:18:37.340	2026-01-20T15:19:27.320
fkie_cve-2025-67591	Cross-Site Request Forgery (CSRF) vulnerability in jegtheme JNews Paywall jnews-paywall allows Cros…	2025-12-09T16:18:37.207	2026-01-20T15:19:27.193
fkie_cve-2025-67590	Cross-Site Request Forgery (CSRF) vulnerability in Rustaurius Ultimate FAQ ultimate-faqs allows Cro…	2025-12-09T16:18:37.073	2026-01-20T15:19:27.070
fkie_cve-2025-67589	Missing Authorization vulnerability in WP Overnight WooCommerce PDF Invoices & Packing Slips woocom…	2025-12-09T16:18:36.930	2026-01-20T15:19:26.930
fkie_cve-2025-67588	Missing Authorization vulnerability in Elementor Elementor Website Builder elementor allows Exploit…	2025-12-09T16:18:36.800	2026-01-20T15:19:26.793
fkie_cve-2025-67587	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms Fre…	2025-12-09T16:18:36.663	2026-01-20T15:19:26.663
fkie_cve-2025-67586	Missing Authorization vulnerability in Ronald Huereca Highlight and Share highlight-and-share allow…	2025-12-09T16:18:36.527	2026-01-20T15:19:26.517
fkie_cve-2025-67585	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in flexmls Flexmls® IDX flexmls-i…	2025-12-09T16:18:36.390	2026-01-20T15:19:26.390
fkie_cve-2025-67584	Missing Authorization vulnerability in rtCamp GoDAM godam allows Exploiting Incorrectly Configured …	2025-12-09T16:18:36.253	2026-01-20T15:19:26.267
fkie_cve-2025-67583	Missing Authorization vulnerability in ThemeAtelier IDonate idonate allows Exploiting Incorrectly C…	2025-12-09T16:18:36.120	2026-01-20T15:19:26.130
fkie_cve-2025-67582	Missing Authorization vulnerability in wbcomdesigns Wbcom Designs lock-my-bp allows Exploiting Inco…	2025-12-09T16:18:35.980	2026-01-20T15:19:26.007
fkie_cve-2025-67581	Missing Authorization vulnerability in themetechmount TrueBooker truebooker-appointment-booking all…	2025-12-09T16:18:35.850	2026-01-20T15:19:25.870
fkie_cve-2025-67580	Missing Authorization vulnerability in Constant Contact Constant Contact + WooCommerce constant-con…	2025-12-09T16:18:35.640	2026-01-20T15:19:25.747
fkie_cve-2025-67579	Missing Authorization vulnerability in vanquish User Extra Fields wp-user-extra-fields allows Explo…	2025-12-09T16:18:35.457	2026-01-20T15:19:25.623
fkie_cve-2025-67578	Missing Authorization vulnerability in Rhys Wynne WP Email Capture wp-email-capture allows Exploiti…	2025-12-09T16:18:35.267	2026-01-20T15:19:25.497

ID	Severity	Description	Published	Updated
ghsa-44vf-6vfg-98jr	7.5 (3.1)	Directory traversal vulnerability in Omnispace Agora Project before 25.10 allowing unauthenticated …	2026-01-15T18:31:32Z	2026-01-15T18:31:32Z
ghsa-43mg-fm9r-vj2p	8.4 (3.1) 8.4 (4.0)	YouTube Video Grabber, now referred to as YouTube Downloader, 1.9.9.1 contains a buffer overflow vu…	2026-01-15T18:31:32Z	2026-01-15T18:31:32Z
ghsa-2mg9-fchf-m4w9	7.5 (3.1) 6.7 (4.0)	Cyberfox Web Browser 52.9.1 contains a denial of service vulnerability that allows attackers to cra…	2026-01-15T18:31:32Z	2026-01-15T18:31:32Z
ghsa-p9hc-mmh6-475f	6.1 (3.1) 5.3 (4.0)	ImportExportTools NG 10.0.4 contains a persistent HTML injection vulnerability in the email export …	2026-01-15T18:31:30Z	2026-01-15T18:31:31Z
ghsa-9mq4-vwgf-j98g	6.2 (3.1) 6.8 (4.0)	RDP Manager 4.9.9.3 contains a denial of service vulnerability in connection input fields that allo…	2026-01-15T18:31:31Z	2026-01-15T18:31:31Z
ghsa-9ghv-qpxv-wccq	7.2 (3.1) 5.1 (4.0)	Isshue Shopping Cart 3.5 contains a persistent cross-site scripting vulnerability in title input fi…	2026-01-15T18:31:31Z	2026-01-15T18:31:31Z
ghsa-97p6-fxv9-r8xc	9.8 (3.1) 8.4 (4.0)	10-Strike Network Inventory Explorer Pro 9.31 contains a buffer overflow vulnerability in the text …	2026-01-15T18:31:31Z	2026-01-15T18:31:31Z
ghsa-jxmr-w7f3-26x7	7.8 (3.1) 8.5 (4.0)	10-Strike Network Inventory Explorer Pro 9.31 contains an unquoted service path vulnerability in th…	2026-01-15T18:31:30Z	2026-01-15T18:31:30Z
ghsa-g9m3-654m-8943	6.2 (3.1) 6.7 (4.0)	AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to cras…	2026-01-15T18:31:30Z	2026-01-15T18:31:30Z
ghsa-chp4-5883-3f2x	6.2 (3.1) 6.7 (4.0)	AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to cras…	2026-01-15T18:31:30Z	2026-01-15T18:31:30Z
ghsa-7ggw-vgxf-fv98	7.1 (3.1) 7.1 (4.0)	Kmaleon 1.1.0.205 contains an authenticated SQL injection vulnerability in the 'tipocomb' parameter…	2026-01-15T18:31:30Z	2026-01-15T18:31:30Z
ghsa-5hh8-v8wh-8f46	7.8 (3.1) 8.5 (4.0)	HTTPDebuggerPro 9.11 contains an unquoted service path vulnerability that allows local attackers to…	2026-01-15T18:31:30Z	2026-01-15T18:31:30Z
ghsa-wqg6-793x-j3cp	8.8 (3.1) 8.7 (4.0)	Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerabil…	2026-01-15T18:31:29Z	2026-01-15T18:31:29Z
ghsa-m8x3-28h9-5qc5	6.2 (3.1) 6.8 (4.0)	MTPutty 1.0.1.21 contains a sensitive information disclosure vulnerability that allows local attack…	2026-01-15T18:31:29Z	2026-01-15T18:31:29Z
ghsa-c22c-g99c-vw87	9.8 (3.1) 8.7 (4.0)	Oliver Library Server v5 contains a file download vulnerability that allows unauthenticated attacke…	2026-01-15T18:31:29Z	2026-01-15T18:31:29Z
ghsa-8f5x-4gfr-8fxp	8.8 (3.1) 8.7 (4.0)	Chikitsa Patient Management System 2.0.2 contains an authenticated remote code execution vulnerabil…	2026-01-15T18:31:29Z	2026-01-15T18:31:29Z
ghsa-3j2c-8pr2-w8qp	7.8 (3.1) 8.5 (4.0)	MilleGPG5 5.7.2 contains a local privilege escalation vulnerability that allows authenticated users…	2026-01-15T18:31:29Z	2026-01-15T18:31:29Z
ghsa-2xfw-9v88-vhpx	5.3 (3.1) 6.9 (4.0)	Arunna 1.0.0 contains a cross-site request forgery vulnerability that allows attackers to manipulat…	2026-01-15T18:31:29Z	2026-01-15T18:31:29Z
ghsa-2p54-q56g-9668	9.8 (3.1) 6.9 (4.0)	TestLink versions 1.16 through 1.19 contain an unauthenticated file download vulnerability in the a…	2026-01-15T18:31:29Z	2026-01-15T18:31:29Z
ghsa-r995-4vfx-ppgf	5.3 (3.1)	Directory traversal vulnerability in InvoicePlane through 1.6.3 allows unauthenticated attackers to…	2026-01-15T15:31:21Z	2026-01-15T18:31:28Z
ghsa-q6vq-8ww2-4v69	9.8 (3.1) 9.3 (4.0)	phpKF CMS 3.00 Beta y6 contains an unauthenticated file upload vulnerability that allows remote att…	2026-01-15T18:31:28Z	2026-01-15T18:31:28Z
ghsa-mfr5-898v-5wmr	6.5 (3.1)	An SQL injection vulnerability in InvoicePlane through 1.6.3 has been identified in "maxQuantity" a…	2026-01-15T15:31:20Z	2026-01-15T18:31:28Z
ghsa-jpvh-v7h3-v24c	6.5 (3.1)	File upload vulnerability in InvoicePlane through 1.6.3 allows authenticated attackers to upload ar…	2026-01-15T15:31:20Z	2026-01-15T18:31:28Z
ghsa-hw2r-j4x3-h8j6	7.5 (3.1) 8.7 (4.0)	AWebServer GhostBuilding 18 contains a denial of service vulnerability that allows remote attackers…	2026-01-15T18:31:28Z	2026-01-15T18:31:28Z
ghsa-h33f-9445-56j6	4.9 (3.1)	An SQL injection vulnerability in Itflow through 25.06 has been identified in the "role_id" paramet…	2026-01-15T15:31:20Z	2026-01-15T18:31:28Z
ghsa-j79x-r5jm-qcmw	8.8 (3.1) 8.6 (4.0)	All-Dynamics Digital Signage System 2.0.2 contains a cross-site request forgery vulnerability that …	2025-12-10T21:31:37Z	2026-01-15T18:31:26Z
ghsa-279c-7w72-mx63	8.8 (3.1)	During an annual penetration test conducted on behalf of Axis Communication, Truesec discovered a f…	2025-06-02T09:31:01Z	2026-01-15T18:31:26Z
ghsa-8v6x-2r55-mmxr	9.4 (3.1)	The VAPIX Device Configuration framework allowed a privilege escalation, enabling a lower-privilege…	2025-06-02T09:31:00Z	2026-01-15T18:31:25Z
ghsa-5rh9-jc57-95mr	9.8 (3.1)	A vulnerability exists in Rockwell Automation FactoryTalk® Service Platform that allows a malicious…	2024-01-31T21:31:03Z	2026-01-15T18:31:25Z
ghsa-p7fw-vjjm-2rwp	8.1 (3.1)	Incus creates nftables rules that partially bypass security options	2025-06-26T21:12:45Z	2026-01-15T17:48:08Z

ID	Severity	Description	Package	Published	Updated

ID	Description	Type

ID	Description	Updated
gsd-2024-28402	TOTOLINK X2000R before V1.0.0-B20231213.1013 contains a Stored Cross-site scripting (XSS)…	2024-03-08T06:02:46.473652Z
gsd-2024-28270	An issue discovered in web-flash v3.0 allows attackers to reset passwords for arbitrary u…	2024-03-08T06:02:46.473459Z
gsd-2024-28130	An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFro…	2024-03-08T06:02:46.473121Z
gsd-2024-28515	Buffer Overflow vulnerability in CSAPP_Lab CSAPP Lab3 15-213 Fall 20xx allows a remote at…	2024-03-08T06:02:46.472868Z
gsd-2024-28558	SQL Injection vulnerability in sourcecodester Petrol pump management software v1.0, allow…	2024-03-08T06:02:46.472656Z
gsd-2024-28645	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.472458Z
gsd-2024-28230	In JetBrains YouTrack before 2024.1.25893 attaching/detaching workflow to a project was p…	2024-03-08T06:02:46.471671Z
gsd-2024-28691	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.471368Z
gsd-2024-28407	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.471147Z
gsd-2024-28176	jose is JavaScript module for JSON Object Signing and Encryption, providing support for J…	2024-03-08T06:02:46.470419Z
gsd-2024-28380	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.470208Z
gsd-2024-28670	DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability …	2024-03-08T06:02:46.468615Z
gsd-2024-28203	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.468360Z
gsd-2024-28214	nGrinder before 3.5.9 allows to set delay without limitation, which could be the cause of…	2024-03-08T06:02:46.467917Z
gsd-2024-28337	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.467518Z
gsd-2024-28416	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.467008Z
gsd-2024-28238	Directus is a real-time API and App dashboard for managing SQL database content. When rea…	2024-03-08T06:02:46.466504Z
gsd-2024-28575	Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local at…	2024-03-08T06:02:46.465845Z
gsd-2024-28190	Contao is an open source content management system. Starting in version 4.0.0 and prior t…	2024-03-08T06:02:46.465643Z
gsd-2024-28640	Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0…	2024-03-08T06:02:46.465454Z
gsd-2024-28252	CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET C…	2024-03-08T06:02:46.465237Z
gsd-2024-28668	DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability …	2024-03-08T06:02:46.464994Z
gsd-2024-28446	Shenzhen Libituo Technology Co., Ltd LBT-T300-mini1 v1.2.9 was discovered to contain a bu…	2024-03-08T06:02:46.464791Z
gsd-2024-28685	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.464526Z
gsd-2024-28588	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.464304Z
gsd-2024-28534	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.463297Z
gsd-2024-28531	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.461005Z
gsd-2024-28489	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.460519Z
gsd-2024-28400	The format of the source doesn't require a description, click on the link for more details.	2024-03-08T06:02:46.460256Z
gsd-2024-28547	Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the firewallEn parameter of…	2024-03-08T06:02:46.460056Z

ID	Description	Published	Updated
mal-2025-188136	Malicious code in mui-auth-betelgeuse-xo (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188135	Malicious code in mui-asthenosphere-callback-webdriver-manager (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188134	Malicious code in mu-slow-star-promise-eta (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188133	Malicious code in mu-mu-psi-zero-java (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188132	Malicious code in mu-kernel-phi-transpile-node (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188131	Malicious code in mu-dog-proxy-decode-unix (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188130	Malicious code in morgan-spectron-webdriver-primatology-aldebaran (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188129	Malicious code in morgan-sass-loader-release-it-quark (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188128	Malicious code in morgan-readable-auriga-promise (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188127	Malicious code in morgan-react-bootstrap-cz-conventional-changelog-helios (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188126	Malicious code in morgan-planckscale-rollup-plugin-void (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188125	Malicious code in morgan-meteor-loop-delphinus (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188124	Malicious code in morgan-magellan-public-envconfig (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188123	Malicious code in moon-unix-meta-process-kernel (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188122	Malicious code in moon-small-nu-rain-static (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188121	Malicious code in moon-omicron-stub-long-book (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188120	Malicious code in moon-old-gamma-deploy-cloud (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188119	Malicious code in moon-new-cloud-mu-cat (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188118	Malicious code in monitor-data-uglify-compress-book (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188117	Malicious code in mongoose-wolf-deimos-forever (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188116	Malicious code in mongoose-supernova-transhumanism-gulp (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188115	Malicious code in mongoose-odin-rimraf-petrology (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188114	Malicious code in mongoose-electron-bunyan-event (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188113	Malicious code in mongoose-docusaurus-fomalhaut-oauth (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188112	Malicious code in mongoose-css-minimizer-webpack-plugin-spectroscopy-aquarius (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188111	Malicious code in mongoose-cordelia-hawkingradiation-antares (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188110	Malicious code in mongoose-convict-kaus-thermochronology (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188109	Malicious code in mongodb-nodemon-callback-areology (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188108	Malicious code in mongodb-kastra-gridsome-fusion (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z
mal-2025-188107	Malicious code in mongodb-cz-conventional-changelog-rollup-plugin-biosignature (npm)	2025-11-13T03:23:14Z	2025-11-13T03:23:14Z

ID	Description	Published	Updated
wid-sec-w-2024-0139	IBM QRadar SIEM: Schwachstelle ermöglicht Offenlegung von Informationen	2024-01-17T23:00:00.000+00:00	2024-01-17T23:00:00.000+00:00
wid-sec-w-2024-0096	Atlassian Jira Service Management Data Center and Server: Schwachstelle ermöglicht Offenlegung von Informationen und DoS	2024-01-15T23:00:00.000+00:00	2024-01-17T23:00:00.000+00:00
wid-sec-w-2024-0083	MediaWiki: Mehrere Schwachstellen ermöglichen Cross-Site Scripting	2024-01-14T23:00:00.000+00:00	2024-01-17T23:00:00.000+00:00
wid-sec-w-2023-1334	IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service	2023-05-31T22:00:00.000+00:00	2024-01-17T23:00:00.000+00:00
wid-sec-w-2023-0097	HAProxy: Schwachstelle ermöglicht Denial of Service	2023-01-15T23:00:00.000+00:00	2024-01-17T23:00:00.000+00:00
wid-sec-w-2022-0602	IBM Security Verify Access: Mehrere Schwachstellen	2022-07-06T22:00:00.000+00:00	2024-01-17T23:00:00.000+00:00
wid-sec-w-2024-0134	ABB AC-500: Mehrere Schwachstellen ermöglichen Denial of Service	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0133	Citrix Systems Produkte: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0132	HCL BigFix: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0130	Trend Micro Deep Security Agent: Mehrere Schwachstellen ermöglichen Privilegieneskalation	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0129	Citrix Systems Virtual Apps and Desktops: Schwachstelle ermöglicht Codeausführung	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0128	Microsoft GitHub Enterprise: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0125	Oracle Enterprise Manager: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0124	Oracle Financial Services Applications: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0122	Oracle Hyperion: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0120	Oracle JD Edwards: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0118	Oracle PeopleSoft: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0117	Oracle Retail Applications: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0116	Oracle Siebel CRM: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0114	Oracle Systems: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0110	Oracle Database Server: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0109	Oracle NoSQL Database: Schwachstelle gefährdet Verfügbarkeit	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0108	Oracle Commerce: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0107	Oracle Communications Applications: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0106	Oracle Communications: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0105	Oracle Construction and Engineering: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0104	Oracle E-Business Suite: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2024-0103	Red Hat OpenStack: Schwachstelle ermöglicht Denial of Service	2021-12-09T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2023-2806	Red Hat OpenShift: Schwachstelle ermöglicht Denial of Service	2023-11-01T23:00:00.000+00:00	2024-01-16T23:00:00.000+00:00
wid-sec-w-2023-2756	VMware Tools: Mehrere Schwachstellen	2023-10-26T22:00:00.000+00:00	2024-01-16T23:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2021:0079	Red Hat Security Advisory: OpenShift Container Platform 3.11.374 bug fix and security update	2021-01-20T16:54:28+00:00	2026-01-13T21:33:45+00:00
rhsa-2020:5495	Red Hat Security Advisory: nginx:1.16 security update	2020-12-15T17:12:43+00:00	2026-01-13T21:33:45+00:00
rhsa-2020:4743	Red Hat Security Advisory: squid:4 security, bug fix, and enhancement update	2020-11-04T01:45:05+00:00	2026-01-13T21:33:45+00:00
rhsa-2020:4442	Red Hat Security Advisory: sqlite security update	2020-11-04T00:58:16+00:00	2026-01-13T21:33:44+00:00
rhsa-2020:2817	Red Hat Security Advisory: rh-nginx116-nginx security update	2020-07-02T16:19:24+00:00	2026-01-13T21:33:43+00:00
rhsa-2020:1936	Red Hat Security Advisory: OpenShift Container Platform 4.4.3 haproxy security update	2020-05-04T10:18:55+00:00	2026-01-13T21:33:42+00:00
rhsa-2021:1811	Red Hat Security Advisory: libvncserver security update	2021-05-18T14:20:40+00:00	2026-01-13T21:32:36+00:00
rhsa-2021:1186	Red Hat Security Advisory: RHV Manager (ovirt-engine) 4.4.z [ovirt-4.4.5] 0-day security, bug fix, enhance	2021-04-14T16:34:35+00:00	2026-01-13T21:32:35+00:00
rhsa-2021:1169	Red Hat Security Advisory: RHV Manager (ovirt-engine) 4.4.z [ovirt-4.4.5] security, bug fix, enhancement	2021-04-14T16:34:39+00:00	2026-01-13T21:32:35+00:00
rhsa-2020:5663	Red Hat Security Advisory: mariadb:10.3 security, bug fix, and enhancement update	2020-12-22T09:25:08+00:00	2026-01-13T21:32:34+00:00
rhsa-2020:3757	Red Hat Security Advisory: mysql:8.0 security update	2020-09-15T18:30:19+00:00	2026-01-13T21:32:34+00:00
rhsa-2020:5654	Red Hat Security Advisory: mariadb:10.3 security, bug fix, and enhancement update	2020-12-22T10:50:18+00:00	2026-01-13T21:32:33+00:00
rhsa-2020:5500	Red Hat Security Advisory: mariadb:10.3 security, bug fix, and enhancement update	2020-12-15T17:27:45+00:00	2026-01-13T21:32:32+00:00
rhsa-2020:5246	Red Hat Security Advisory: rh-mariadb103-mariadb and rh-mariadb103-galera security update	2020-11-30T13:47:09+00:00	2026-01-13T21:32:32+00:00
rhsa-2020:3518	Red Hat Security Advisory: rh-mysql80-mysql security update	2020-08-19T14:10:09+00:00	2026-01-13T21:32:31+00:00
rhsa-2020:4174	Red Hat Security Advisory: rh-mariadb102-mariadb and rh-mariadb102-galera security and bug fix update	2020-10-05T15:18:20+00:00	2026-01-13T21:32:30+00:00
rhsa-2020:3755	Red Hat Security Advisory: mysql:8.0 security update	2020-09-15T16:18:39+00:00	2026-01-13T21:32:30+00:00
rhsa-2020:0046	Red Hat Security Advisory: java-1.8.0-ibm security update	2020-01-07T18:24:15+00:00	2026-01-13T21:32:30+00:00
rhsa-2019:3157	Red Hat Security Advisory: java-1.7.0-openjdk security update	2019-10-21T19:22:10+00:00	2026-01-13T21:32:29+00:00
rhsa-2019:4115	Red Hat Security Advisory: java-1.8.0-ibm security update	2019-12-09T13:28:14+00:00	2026-01-13T21:32:28+00:00
rhsa-2019:4109	Red Hat Security Advisory: java-1.7.1-ibm security update	2019-12-05T15:22:54+00:00	2026-01-13T21:32:27+00:00
rhsa-2019:2511	Red Hat Security Advisory: mysql:8.0 security update	2019-08-15T17:47:24+00:00	2026-01-13T21:32:25+00:00
rhsa-2019:3136	Red Hat Security Advisory: java-1.8.0-openjdk security update	2019-10-17T14:33:46+00:00	2026-01-13T21:32:24+00:00
rhsa-2019:3135	Red Hat Security Advisory: java-11-openjdk security update	2019-10-17T10:00:24+00:00	2026-01-13T21:32:24+00:00
rhsa-2019:3134	Red Hat Security Advisory: java-1.8.0-openjdk security update	2019-10-17T09:59:14+00:00	2026-01-13T21:32:24+00:00
rhsa-2019:3128	Red Hat Security Advisory: java-1.8.0-openjdk security update	2019-10-16T16:02:16+00:00	2026-01-13T21:32:23+00:00
rhsa-2019:2592	Red Hat Security Advisory: java-1.8.0-ibm security update	2019-09-03T00:27:15+00:00	2026-01-13T21:32:23+00:00
rhsa-2019:2495	Red Hat Security Advisory: java-1.7.1-ibm security update	2019-08-15T09:02:07+00:00	2026-01-13T21:32:21+00:00
rhsa-2019:2484	Red Hat Security Advisory: rh-mysql80-mysql security update	2019-08-14T07:00:39+00:00	2026-01-13T21:32:21+00:00
rhsa-2019:2327	Red Hat Security Advisory: mariadb security and bug fix update	2019-08-06T13:49:02+00:00	2026-01-13T21:32:20+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2021-33644	An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname causing an out-of-bounds read.	2022-08-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2021-33643	An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink causing an out-of-bounds read.	2022-08-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2021-33640	After tar_close() libtar.c releases the memory pointed to by pointer t. After tar_close() is called in the list() function it continues to use pointer t: free_longlink_longname(t->th_buf) . As a result the released memory is used (use-after-free).	2022-12-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2021-33391	An issue in HTACG HTML Tidy v5.7.28 allows attacker to execute arbitrary code via the -g option of the CleanNode() function in gdoc.c.	2023-02-01T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2021-3115	Go before 1.14.14 and 1.15.x before 1.15.7 on Windows is vulnerable to Command Injection and remote code execution when using the "go get" command to fetch modules that make use of cgo (for example cgo can execute a gcc program from an untrusted download).	2021-01-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2021-27378	An issue was discovered in the rand_core crate before 0.6.2 for Rust. Because read_u32_into and read_u64_into mishandle certain buffer-length checks a random number generator may be seeded with too little data.	2021-02-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2021-26720	avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc/network/if-up.d/avahi-daemon and allows a local attacker to cause a denial of service or create arbitrary empty files via a symlink attack on files under /run/avahi-daemon. NOTE: this only affects the packaging for Debian GNU/Linux (used indirectly by SUSE) not the upstream Avahi product.	2021-02-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-8554	Kubernetes man in the middle using LoadBalancer or ExternalIPs	2021-01-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-2981	Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 18.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.1 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).	2020-07-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-28366	Arbitrary code execution in go command with cgo in cmd/go and cmd/cgo	2020-11-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-27815	A flaw was found in the JFS filesystem code in the Linux Kernel which allows a local attacker with the ability to set extended attributes to panic the system causing memory corruption or escalating privileges. The highest threat from this vulnerability is to confidentiality integrity as well as system availability.	2021-05-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-27304	The CivetWeb web library does not validate uploaded filepaths when running on an OS other than Windows when using the built-in HTTP form-based file upload mechanism via the mg_handle_form_request API. Web applications that use the file upload form handler and use parts of the user-controlled filename in the output path are susceptible to directory traversal	2021-10-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-25657	A flaw was found in all released versions of m2crypto where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality.	2021-01-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-24370	ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal as demonstrated by getlocal(32^31).	2020-08-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-18032	Buffer Overflow in Graphviz Graph Visualization Tools from commit ID f8b9e035 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by loading a crafted file into the "lib/common/shapes.c" component.	2021-04-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-15586	Go before 1.13.13 and 1.14.x before 1.14.5 has a data race in some net/http servers as demonstrated by the httputil.ReverseProxy Handler because it reads a request body and writes a response at the same time.	2020-07-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-13632	ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.	2020-05-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-13631	SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables related to alter.c and build.c.	2020-05-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-13630	ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow related to the snippet feature.	2020-05-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-13434	SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c.	2020-05-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-11656	In SQLite through 3.31.1 the ALTER TABLE implementation has a use-after-free as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement.	2020-04-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2020-11655	SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query because the AggInfo object's initialization is mishandled.	2020-04-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2019-9741	An issue was discovered in net/http in Go 1.11.5. CRLF injection is possible if the attacker controls a url parameter as demonstrated by the second argument to http.NewRequest with \r\n followed by an HTTP header or a Redis command.	2019-03-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2019-8457	SQLite3 from 3.6.0 to and including 3.27.2 is vulnerable to heap out-of-bound read in the rtreenode() function when handling invalid rtree tables.	2019-05-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2019-6470	dhcpd: use-after-free error leads crash in IPv6 mode when using mismatched BIND libraries	2019-11-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2019-6293	An issue was discovered in the function mark_beginning_as_normal in nfa.c in flex 2.6.4. There is a stack exhaustion problem caused by the mark_beginning_as_normal function making recursive calls to itself in certain scenarios involving lots of '*' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service.	2019-01-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2019-5544	OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.	2019-12-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2019-3016	In a Linux KVM guest that has PV TLB enabled a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD processors but Intel CPUs cannot be ruled out.	2020-01-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2019-2708	Vulnerability in the Data Store component of Oracle Berkeley DB. Supported versions that are affected are Prior to 6.138 prior to 6.2.38 and prior to 18.1.32. Easily exploitable vulnerability allows low privileged attacker having Local Logon privilege with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Data Store. CVSS 3.0 Base Score 3.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L).	2019-04-02T00:00:00.000Z	2024-06-30T07:00:00.000Z
msrc_cve-2019-20503	usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_addresses_from_init.	2020-03-02T00:00:00.000Z	2024-06-30T07:00:00.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-201708-0292	Hard coded weak credentials in Barracuda Load Balancer 5.0.0.015. Barracuda Load Balancer…	2025-04-20T23:27:18.028000Z
var-201708-0293	Privilege escalation vulnerability in Barracuda Load Balancer 5.0.0.015 via the use of an…	2025-04-20T23:27:17.999000Z
var-201708-0881	ToMAX R60G R60GV2-V2.0-v.2.6.3-170330 devices do not have any protection against a CSRF a…	2025-04-20T23:27:17.659000Z
var-201708-1341	The WebLaunch functionality of Cisco AnyConnect Secure Mobility Client Software contains …	2025-04-20T23:27:17.388000Z
var-201708-1508	A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All vers…	2025-04-20T23:27:17.277000Z
var-201708-1507	A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All vers…	2025-04-20T23:27:17.235000Z
var-201709-0150	WiFiMonitor in Android 4.4.4 as used in the Nexus 5 and 4, Android 4.2.2 as used in the L…	2025-04-20T23:27:17.034000Z
var-201709-0591	The D-Link NPAPI extension, as used on D-Link DIR-850L REV. A (with firmware through FW11…	2025-04-20T23:27:16.770000Z
var-201709-0612	IBM WebSphere DataPower Appliances 7.0.0 through 7.6 is vulnerable to cross-site scriptin…	2025-04-20T23:27:16.734000Z
var-201709-0674	A vulnerability in the IPv6 Simple Network Management Protocol (SNMP) code of Cisco IOS a…	2025-04-20T23:27:16.682000Z
var-201709-0737	Axesstel MU553S MU55XS-V1.14 devices have a default password of admin for the admin accou…	2025-04-20T23:27:16.589000Z
var-201709-0842	An FBX-5312 issue was discovered in WatchGuard Fireware before 12.0. If a login attempt i…	2025-04-20T23:27:16.517000Z
var-201709-1008	A Missing Authentication for Critical Function issue was discovered in OPW Fuel Managemen…	2025-04-20T23:27:16.427000Z
var-201709-1007	A SQL Injection issue was discovered in OPW Fuel Management Systems SiteSentinel Integra …	2025-04-20T23:27:16.386000Z
var-201709-1174	A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 S…	2025-04-20T23:27:16.301000Z
var-201709-1195	On BE126 WIFI repeater 1.0 devices, an attacker can log into telnet (which is open by def…	2025-04-20T23:27:16.268000Z
var-201710-0240	Juniper Networks Junos OS 16.1R1, and services releases based off of 16.1R1, are vulnerab…	2025-04-20T23:27:16.144000Z
var-201710-0638	A vulnerability in the implementation of Session Initiation Protocol (SIP) functionality …	2025-04-20T23:27:15.984000Z
var-201710-0659	A vulnerability in conditional, verbose debug logging for the IPsec feature of Cisco IOS …	2025-04-20T23:27:15.948000Z
var-201710-1140	There is XSS in the BouquetEditor WebPlugin for Dream Multimedia Dreambox devices, as dem…	2025-04-20T23:27:15.294000Z
var-201711-0013	In Hitachi Vantara Pentaho BA Platform through 8.0, a CSRF issue exists in the Business A…	2025-04-20T23:27:15.122000Z
var-201711-0314	An untrusted search path (aka DLL Preload) vulnerability in the Cisco Network Academy Pac…	2025-04-20T23:27:14.905000Z
var-201711-0335	A vulnerability in Cisco NX-OS System Software running on Cisco MDS Multilayer Director S…	2025-04-20T23:27:14.871000Z
var-201711-0375	A SQL Injection vulnerability in the web framework of Cisco Prime Service Catalog could a…	2025-04-20T23:27:14.841000Z
var-201711-0416	An Uncontrolled Search Path Element issue was discovered in Trihedral VTScada 11.3.03 and…	2025-04-20T23:27:14.797000Z
var-201711-0417	An Improper Access Control issue was discovered in Trihedral VTScada 11.3.03 and prior. A…	2025-04-20T23:27:14.752000Z
var-201711-0793	An exploitable vulnerability exists in the database update functionality of Circle with D…	2025-04-20T23:27:14.585000Z
var-201711-0942	The camera driver of MTK platform in Huawei smart phones with software of versions earlie…	2025-04-20T23:27:14.424000Z
var-201711-0963	The UMA product with software V200R001 and V300R001 has a cross-site scripting (XSS) vuln…	2025-04-20T23:27:14.400000Z
var-201711-0984	The call module of P10 and P10 Plus smartphones with software versions before VTR-AL00C00…	2025-04-20T23:27:14.374000Z

ID	Description	Published	Updated

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2023:2056-1	Security update for webkit2gtk3	2023-04-27T10:05:18Z	2023-04-27T10:05:18Z
suse-su-2023:2055-1	Security update for the Linux Kernel (Live Patch 8 for SLE 15 SP4)	2023-04-27T09:33:47Z	2023-04-27T09:33:47Z
suse-su-2023:2054-1	Security update for libxml2	2023-04-27T09:31:43Z	2023-04-27T09:31:43Z
suse-su-2023:2053-1	Security update for libxml2	2023-04-27T09:31:16Z	2023-04-27T09:31:16Z
suse-su-2023:2051-1	Security update for libtpms	2023-04-27T09:30:10Z	2023-04-27T09:30:10Z
suse-su-2023:2050-1	Security update for fwupd	2023-04-27T09:19:12Z	2023-04-27T09:19:12Z
suse-su-2023:2048-1	Security update for libxml2	2023-04-26T19:06:04Z	2023-04-26T19:06:04Z
suse-su-2023:2047-1	Security update for openssl-ibmca	2023-04-26T15:31:35Z	2023-04-26T15:31:35Z
suse-su-2023:2046-1	Security update for openssl-ibmca	2023-04-26T15:31:27Z	2023-04-26T15:31:27Z
suse-su-2023:2044-1	Security update for dmidecode	2023-04-26T12:48:13Z	2023-04-26T12:48:13Z
suse-su-2023:2043-1	Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP4)	2023-04-26T12:08:20Z	2023-04-26T12:08:20Z
suse-su-2023:2038-1	Security update for git	2023-04-26T09:06:32Z	2023-04-26T09:06:32Z
suse-su-2023:2035-1	Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP4)	2023-04-26T09:05:49Z	2023-04-26T09:05:49Z
suse-su-2023:2032-1	Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP4)	2023-04-26T07:33:55Z	2023-04-26T07:33:55Z
suse-su-2023:2024-1	Security update for the Linux Kernel (Live Patch 29 for SLE 15 SP3)	2023-04-26T04:08:12Z	2023-04-26T04:08:12Z
suse-su-2023:2031-1	Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP4)	2023-04-26T01:07:05Z	2023-04-26T01:07:05Z
suse-su-2023:2023-1	Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP1)	2023-04-26T00:07:04Z	2023-04-26T00:07:04Z
suse-su-2023:2009-1	Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP3)	2023-04-25T18:34:10Z	2023-04-25T18:34:10Z
suse-su-2023:2007-1	Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP2)	2023-04-25T16:33:46Z	2023-04-25T16:33:46Z
suse-su-2023:2003-1	Security update for runc	2023-04-25T16:06:00Z	2023-04-25T16:06:00Z
suse-su-2023:1995-1	Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP3)	2023-04-25T15:33:49Z	2023-04-25T15:33:49Z
suse-su-2023:2000-1	Security update for fwupd	2023-04-25T15:10:50Z	2023-04-25T15:10:50Z
suse-su-2023:1999-1	Security update for fwupd	2023-04-25T15:10:13Z	2023-04-25T15:10:13Z
suse-su-2023:1994-1	Security update for avahi	2023-04-25T11:53:52Z	2023-04-25T11:53:52Z
suse-su-2023:1993-1	Security update for avahi	2023-04-25T11:51:13Z	2023-04-25T11:51:13Z
suse-su-2023:1992-1	Security update for the Linux Kernel	2023-04-25T11:38:05Z	2023-04-25T11:38:05Z
suse-su-2023:1983-1	Security update for the Linux Kernel (Live Patch 29 for SLE 15 SP2)	2023-04-25T11:05:26Z	2023-04-25T11:05:26Z
suse-su-2023:1982-1	Security update for the Linux Kernel (Live Patch 35 for SLE 15 SP1)	2023-04-25T10:07:39Z	2023-04-25T10:07:39Z
suse-su-2023:1981-1	Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP5)	2023-04-25T08:06:26Z	2023-04-25T08:06:26Z
suse-su-2023:1979-1	Security update for protobuf-c	2023-04-25T07:36:49Z	2023-04-25T07:36:49Z

ID	Description	Published	Updated
opensuse-su-2021:0765-1	Security update for Botan	2021-05-22T05:04:06Z	2021-05-22T05:04:06Z
opensuse-su-2021:0764-1	Security update for libxml2	2021-05-22T05:03:59Z	2021-05-22T05:03:59Z
opensuse-su-2021:0763-1	Security update for fribidi	2021-05-22T05:03:56Z	2021-05-22T05:03:56Z
opensuse-su-2021:0762-1	Security update for chromium	2021-05-22T05:03:53Z	2021-05-22T05:03:53Z
opensuse-su-2021:0760-1	Security update for lz4	2021-05-22T05:03:39Z	2021-05-22T05:03:39Z
opensuse-su-2021:0759-1	Security update for djvulibre	2021-05-22T05:03:36Z	2021-05-22T05:03:36Z
opensuse-su-2021:0758-1	Security update for the Linux Kernel	2021-05-22T05:03:33Z	2021-05-22T05:03:33Z
opensuse-su-2021:0757-1	Security update for graphviz	2021-05-22T05:03:23Z	2021-05-22T05:03:23Z
opensuse-su-2021:0755-1	Security update for cacti, cacti-spine	2021-05-20T19:07:03Z	2021-05-20T19:07:03Z
opensuse-su-2021:0754-1	Security update for exim	2021-05-20T08:51:56Z	2021-05-20T08:51:56Z
opensuse-su-2021:0753-1	Security update for exim	2021-05-20T08:50:28Z	2021-05-20T08:50:28Z
opensuse-su-2021:0752-1	Security update for jhead	2021-05-19T16:05:20Z	2021-05-19T16:05:20Z
opensuse-su-2021:0751-1	Security update for prosody	2021-05-18T04:04:55Z	2021-05-18T04:04:55Z
opensuse-su-2021:0750-1	Security update for ibsim	2021-05-17T12:04:54Z	2021-05-17T12:04:54Z
opensuse-su-2021:0746-1	Security update for dtc	2021-05-16T16:05:04Z	2021-05-16T16:05:04Z
opensuse-su-2021:0745-1	Security update for ipvsadm	2021-05-16T16:05:00Z	2021-05-16T16:05:00Z
opensuse-su-2021:0743-1	Security update for jhead	2021-05-16T14:04:45Z	2021-05-16T14:04:45Z
opensuse-su-2021:0742-1	Security update for chromium	2021-05-16T11:45:12Z	2021-05-16T11:45:12Z
opensuse-su-2021:0735-1	Security update for nagios	2021-05-15T22:05:05Z	2021-05-15T22:05:05Z
opensuse-su-2021:0734-1	Security update for openvpn	2021-05-15T16:04:52Z	2021-05-15T16:04:52Z
opensuse-su-2021:0730-1	Security update for netdata	2021-05-15T14:04:55Z	2021-05-15T14:04:55Z
opensuse-su-2021:0729-1	Security update for opera	2021-05-15T10:04:55Z	2021-05-15T10:04:55Z
opensuse-su-2021:0728-1	Security update for prosody	2021-05-14T21:17:01Z	2021-05-14T21:17:01Z
opensuse-su-2021:0724-1	Security update for drbd-utils	2021-05-14T14:05:30Z	2021-05-14T14:05:30Z
opensuse-su-2021:0719-1	Security update for java-11-openjdk	2021-05-13T17:21:54Z	2021-05-13T17:21:54Z
opensuse-su-2021:0716-1	Security update for the Linux Kernel	2021-05-12T15:02:36Z	2021-05-12T15:02:36Z
opensuse-su-2021:0715-1	Security update for nagios	2021-05-12T15:02:21Z	2021-05-12T15:02:21Z
opensuse-su-2021:0714-1	Security update for vlc	2021-05-12T10:05:31Z	2021-05-12T10:05:31Z
opensuse-su-2021:0713-1	Security update for syncthing	2021-05-11T18:05:34Z	2021-05-11T18:05:34Z
opensuse-su-2021:0712-1	Security update for opera	2021-05-11T16:06:02Z	2021-05-11T16:06:02Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
cnvd-2025-13272	Microsoft Office代码执行漏洞（CNVD-2025-13272）	2025-06-13	2025-06-23
cnvd-2025-13271	Microsoft Office代码执行漏洞（CNVD-2025-13271）	2025-06-13	2025-06-23
cnvd-2025-13270	Microsoft Office代码执行漏洞（CNVD-2025-13270）	2025-06-13	2025-06-23
cnvd-2025-13269	Microsoft Office代码执行漏洞（CNVD-2025-13269）	2025-06-13	2025-06-23
cnvd-2025-13268	Microsoft Edge (Chromium-based) 欺骗漏洞（CNVD-2025-13268）	2025-05-14	2025-06-23
cnvd-2025-13267	Microsoft Office代码执行漏洞（CNVD-2025-13267）	2025-06-13	2025-06-23
cnvd-2025-13266	Microsoft Excel代码执行漏洞（CNVD-2025-13266）	2025-06-13	2025-06-23
cnvd-2025-13265	Microsoft Excel代码执行漏洞（CNVD-2025-13265）	2025-06-13	2025-06-23
cnvd-2025-13264	NETGEAR R6850 c4-IPAddr参数命令注入漏洞	2024-04-10	2025-06-23
cnvd-2025-13263	NETGEAR R6850 ntp_server参数命令注入漏洞	2024-04-10	2025-06-23
cnvd-2025-13262	Netgear DGND3700信息泄露漏洞	2025-05-28	2025-06-23
cnvd-2025-13261	Moodle存在未明漏洞	2025-05-07	2025-06-23
cnvd-2025-13260	Moodle信息泄露漏洞	2025-05-07	2025-06-23
cnvd-2025-13259	Moodle存在未明漏洞	2025-05-07	2025-06-23
cnvd-2025-13258	Moodle存在未明漏洞	2025-05-07	2025-06-23
cnvd-2025-13031	北京网动网络科技股份有限公司网动统一通信平台存在信息泄露漏洞	2025-04-28	2025-06-21
cnvd-2025-12970	武汉达梦数据库股份有限公司达梦新云缓存数据库存在二进制漏洞	2025-04-30	2025-06-21
cnvd-2025-13257	TOTOLINK A3600R UploadCustomModule函数缓冲区溢出漏洞	2024-07-31	2025-06-20
cnvd-2025-13256	TOTOLINK A3600R setWiFiAclAddConfig函数缓冲区溢出漏洞	2024-07-31	2025-06-20
cnvd-2025-13255	TOTOLINK A3600R setUrlFilterRules函数缓冲区溢出漏洞	2024-07-31	2025-06-20
cnvd-2025-13254	TOTOLINK A3600R setPortForwardRules函数缓冲区溢出漏洞	2024-07-31	2025-06-20
cnvd-2025-13253	TOTOLINK A3600R setParentalRules函数缓冲区溢出漏洞	2024-07-31	2025-06-20
cnvd-2025-13201	WordPress PayU India plugin存在未明漏洞	2025-06-17	2025-06-20
cnvd-2025-13186	WordPress Password Policy Manager plugin存在未明漏洞	2025-06-17	2025-06-20
cnvd-2025-13185	WordPress MC Woocommerce Wishlist plugin跨站脚本漏洞	2025-06-17	2025-06-20
cnvd-2025-13128	WordPress Krowd plugin文件包含漏洞	2025-06-17	2025-06-20
cnvd-2025-13127	WordPress Inset plugin文件包含漏洞	2025-06-17	2025-06-20
cnvd-2025-13126	WordPress inprosysmedia-likes-dislikes-post plugin SQL注入漏洞	2025-06-17	2025-06-20
cnvd-2025-13094	WordPress Grill and Chow plugin路径遍历漏洞	2025-06-17	2025-06-20
cnvd-2025-13093	WordPress GrandPrix plugin路径遍历漏洞	2025-06-17	2025-06-20

ID	Description	Published	Updated
certfr-2018-avi-144	Multiples vulnérabilités dans Aruba ClearPass	2018-03-22T00:00:00.000000	2018-03-22T00:00:00.000000
certfr-2018-avi-143	Vulnérabilité dans MikroTik RouterOS	2018-03-22T00:00:00.000000	2018-03-22T00:00:00.000000
certfr-2018-avi-142	Multiples vulnérabilités dans GitLab	2018-03-22T00:00:00.000000	2018-03-22T00:00:00.000000
certfr-2018-avi-141	Vulnérabilité dans Google Chrome	2018-03-21T00:00:00.000000	2018-03-21T00:00:00.000000
certfr-2018-avi-140	Multiples vulnérabilités dans SCADA les produits Siemens	2018-03-21T00:00:00.000000	2018-03-21T00:00:00.000000
certfr-2018-avi-139	Vulnérabilité dans Tenable Nessus	2018-03-21T00:00:00.000000	2018-03-21T00:00:00.000000
certfr-2018-avi-138	Multiples vulnérabilités dans Intel SGX	2018-03-21T00:00:00.000000	2018-03-21T00:00:00.000000
certfr-2018-avi-137	Multiples vulnérabilités dans Mozilla Firefox	2018-03-19T00:00:00.000000	2018-03-19T00:00:00.000000
certfr-2018-avi-136	Multiples vulnérabilités dans SCADA Schneider Electric MGE SNMP/Web Card 66074	2018-03-19T00:00:00.000000	2018-03-19T00:00:00.000000
certfr-2018-avi-135	Vulnérabilité dans VMware Workstation et Fusion	2018-03-16T00:00:00.000000	2018-03-16T00:00:00.000000
certfr-2018-avi-134	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2018-03-15T00:00:00.000000	2018-03-15T00:00:00.000000
certfr-2018-avi-133	Multiples vulnérabilités dans les produits Microsoft	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-132	Multiples vulnérabilités dans Microsoft .Net	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-131	Multiples vulnérabilités dans Microsoft Windows	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-130	Multiples vulnérabilités dans Microsoft Office	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-129	Multiples vulnérabilités dans Microsoft Edge	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-128	Multiples vulnérabilités dans Microsoft Internet Explorer	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-127	Multiples vulnérabilités dans Adobe Flash Player	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-126	Multiples vulnérabilités dans Google Chrome	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-125	Vulnérabilité dans Joomla!	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-124	Multiples vulnérabilités dans le noyau Linux de RedHat	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-123	Multiples vulnérabilités dans Mozilla Firefox	2018-03-14T00:00:00.000000	2018-03-14T00:00:00.000000
certfr-2018-avi-122	Vulnérabilité dans Moxa MXview	2018-03-13T00:00:00.000000	2018-03-13T00:00:00.000000
certfr-2018-avi-121	Multiples vulnérabilités dans Samba	2018-03-13T00:00:00.000000	2018-03-13T00:00:00.000000
certfr-2018-avi-120	Multiples vulnérabilités dans Moxa OnCell	2018-03-12T00:00:00.000000	2018-03-12T00:00:00.000000
certfr-2018-avi-119	Multiples vulnérabilités dans le noyau Linux de SUSE	2018-03-12T00:00:00.000000	2018-03-12T00:00:00.000000
certfr-2018-avi-118	Vulnérabilité dans le noyau Linux d'Ubuntu	2018-03-12T00:00:00.000000	2018-03-12T00:00:00.000000
certfr-2018-avi-117	Multiples vulnérabilités dans SCADA les produits Siemens	2018-03-09T00:00:00.000000	2018-03-09T00:00:00.000000
certfr-2018-avi-116	Multiples vulnérabilités dans les produits Cisco	2018-03-08T00:00:00.000000	2018-03-08T00:00:00.000000
certfr-2018-avi-115	Multiples vulnérabilités dans Juniper Junos OS	2018-03-08T00:00:00.000000	2018-03-08T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated