Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-64370 |
5.3 (3.1)
|
WordPress YOP Poll plugin <= 6.5.38 - Broken Access Co… |
YOP |
YOP Poll |
2025-11-13T09:24:33.651Z | 2026-01-20T14:28:22.538Z |
| CVE-2025-64368 |
5.4 (3.1)
|
WordPress Bard theme <= 1.6 - Cross Site Request Forge… |
Mikado-Themes |
Bard |
2025-10-31T11:42:40.843Z | 2026-01-20T14:28:22.538Z |
| CVE-2025-64361 |
6.5 (3.1)
|
WordPress Consulting Elementor Widgets plugin <= 1.4.2… |
StylemixThemes |
Consulting Elementor Widgets |
2025-10-31T11:42:33.072Z | 2026-01-20T14:28:22.533Z |
| CVE-2025-64359 |
7.5 (3.1)
|
WordPress Consulting theme < 6.7.5 - Local File Inclus… |
StylemixThemes |
Consulting |
2025-10-31T11:42:31.602Z | 2026-01-20T14:28:22.532Z |
| CVE-2025-64352 |
2.7 (3.1)
|
WordPress Essential Addons for Elementor plugin <= 6.2… |
WPDeveloper |
Essential Addons for Elementor |
2025-10-31T11:42:23.045Z | 2026-01-20T14:28:22.531Z |
| CVE-2025-64369 |
6.5 (3.1)
|
WordPress Contact Form Email plugin <= 1.3.58 - Broken… |
codepeople |
Contact Form Email |
2025-11-13T09:24:33.215Z | 2026-01-20T14:28:22.528Z |
| CVE-2025-64371 |
8.5 (3.1)
|
WordPress Traveler theme < 3.2.6 - SQL Injection vulne… |
shinetheme |
Traveler |
2025-12-18T07:22:15.635Z | 2026-01-20T14:28:22.518Z |
| CVE-2025-64357 |
4.3 (3.1)
|
WordPress Advanced Database Cleaner plugin <= 3.1.6 - … |
Younes JFR. |
Advanced Database Cleaner |
2025-10-31T11:42:27.627Z | 2026-01-20T14:28:22.509Z |
| CVE-2025-64364 |
7.5 (3.1)
|
WordPress Masterstudy theme < 4.8.126 - Local File Inc… |
StylemixThemes |
Masterstudy |
2025-10-31T11:42:37.865Z | 2026-01-20T14:28:22.508Z |
| CVE-2025-64358 |
4.3 (3.1)
|
WordPress Smart Coupons for WooCommerce plugin <= 2.2.… |
WebToffee |
Smart Coupons for WooCommerce |
2025-10-31T11:42:28.439Z | 2026-01-20T14:28:22.505Z |
| CVE-2025-64362 |
6.5 (3.1)
|
WordPress K Elements plugin < 5.5.0 - Cross Site Scrip… |
SeventhQueen |
K Elements |
2025-10-31T11:42:36.419Z | 2026-01-20T14:28:22.503Z |
| CVE-2025-64372 |
7.1 (3.1)
|
WordPress Traveler theme < 3.2.6 - Cross Site Scriptin… |
shinetheme |
Traveler |
2025-12-18T07:22:15.823Z | 2026-01-20T14:28:22.489Z |
| CVE-2025-64351 |
4.3 (3.1)
|
WordPress Rank Math SEO plugin <= 1.0.252.1 - Sensitiv… |
Rank Math SEO |
Rank Math SEO |
2025-10-31T11:42:22.226Z | 2026-01-20T14:28:22.441Z |
| CVE-2025-64293 |
7.6 (3.1)
|
WordPress 0 Day Analytics plugin <= 4.0.0 - SQL Inject… |
Golemiq |
0 Day Analytics |
2025-11-12T15:52:49.026Z | 2026-01-20T14:28:22.418Z |
| CVE-2025-64353 |
8.8 (3.1)
|
WordPress Polylang plugin <= 3.7.3 - Deserialization o… |
Chouby |
Polylang |
2025-10-31T11:42:25.417Z | 2026-01-20T14:28:22.353Z |
| CVE-2025-64354 |
6.5 (3.1)
|
WordPress Gutenberg plugin <= 21.8.2 - Cross Site Scri… |
Matias Ventura |
Gutenberg |
2025-10-31T11:42:26.178Z | 2026-01-20T14:28:22.341Z |
| CVE-2025-64295 |
6.5 (3.1)
|
WordPress All In One SEO Pack plugin <= 4.8.6.1 - Sens… |
Syed Balkhi |
All In One SEO Pack |
2025-12-18T07:22:15.447Z | 2026-01-20T14:28:22.289Z |
| CVE-2025-64355 |
6.5 (3.1)
|
WordPress JetElements For Elementor plugin <= 2.7.12 -… |
Crocoblock |
JetElements For Elementor |
2025-12-18T16:16:33.764Z | 2026-01-20T14:28:22.280Z |
| CVE-2025-64289 |
5.9 (3.1)
|
WordPress Premmerce Product Search for WooCommerce plu… |
Premmerce |
Premmerce Product Search for WooCommerce |
2025-10-29T08:38:14.838Z | 2026-01-20T14:28:22.275Z |
| CVE-2025-64296 |
5.3 (3.1)
|
WordPress Facebook for WooCommerce plugin <= 3.5.7 - B… |
Facebook |
Facebook for WooCommerce |
2025-10-29T04:08:45.858Z | 2026-01-20T14:28:22.271Z |
| CVE-2025-64290 |
4.3 (3.1)
|
WordPress Premmerce Product Search for WooCommerce plu… |
Premmerce |
Premmerce Product Search for WooCommerce |
2025-10-29T08:38:15.299Z | 2026-01-20T14:28:22.268Z |
| CVE-2025-64350 |
3.8 (3.1)
|
WordPress Rank Math SEO plugin <= 1.0.252.1 - Broken A… |
Rank Math SEO |
Rank Math SEO |
2025-10-31T11:42:17.908Z | 2026-01-20T14:28:22.231Z |
| CVE-2025-64294 |
5.3 (3.1)
|
WordPress WP Snow Effect plugin <= 1.1.15 - Broken Acc… |
d3wp |
WP Snow Effect |
2025-11-03T13:09:39.398Z | 2026-01-20T14:28:22.200Z |
| CVE-2025-64356 |
4.3 (3.1)
|
WordPress Insert PHP Code Snippet plugin <= 1.4.3 - Br… |
f1logic |
Insert PHP Code Snippet |
2025-10-31T11:42:26.908Z | 2026-01-20T14:28:22.178Z |
| CVE-2025-64292 |
5.4 (3.1)
|
WordPress Analytics Germanized for Google Analytics pl… |
PascalBajorat |
Analytics Germanized for Google Analytics |
2025-11-13T09:24:32.781Z | 2026-01-20T14:28:22.131Z |
| CVE-2025-64288 |
4.3 (3.1)
|
WordPress Premmerce plugin <= 1.3.19 - Cross Site Requ… |
Premmerce |
Premmerce |
2025-10-29T08:38:14.400Z | 2026-01-20T14:28:22.041Z |
| CVE-2025-64287 |
8.1 (3.1)
|
WordPress Alloggio - Hotel Booking Theme theme <= 1.8 … |
Edge-Themes |
Alloggio - Hotel Booking |
2025-11-06T15:56:13.317Z | 2026-01-20T14:28:22.019Z |
| CVE-2025-64267 |
4.3 (3.1)
|
WordPress WooCommerce Ultimate Points And Rewards plug… |
WPSwings |
WooCommerce Ultimate Points And Rewards |
2025-11-13T09:24:29.783Z | 2026-01-20T14:28:21.878Z |
| CVE-2025-64285 |
5.4 (3.1)
|
WordPress Premmerce Wholesale Pricing for WooCommerce … |
Premmerce |
Premmerce Wholesale Pricing for WooCommerce |
2025-10-29T08:38:13.449Z | 2026-01-20T14:28:21.833Z |
| CVE-2025-64257 |
4.3 (3.1)
|
WordPress My Tickets plugin <= 2.1.0 - Broken Access C… |
Joe Dolson |
My Tickets |
2025-12-09T14:13:52.568Z | 2026-01-20T14:28:21.812Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-67520 |
9.8 (3.1)
|
WordPress Media Library Tools plugin <= 1.6.15 - SQL I… |
Tiny Solutions |
Media Library Tools |
2025-12-09T14:13:58.651Z | 2026-01-20T14:28:24.948Z |
| CVE-2025-67519 |
9.8 (3.1)
|
WordPress Ninja Tables plugin <= 5.2.3 - SQL Injection… |
Shahjahan Jewel |
Ninja Tables |
2025-12-09T14:13:58.092Z | 2026-01-20T14:28:25.166Z |
| CVE-2025-67518 |
9.8 (3.1)
|
WordPress Accordion Slider PRO plugin <= 1.2 - SQL Inj… |
LambertGroup |
Accordion Slider PRO |
2025-12-09T14:13:57.826Z | 2026-01-20T14:28:25.371Z |
| CVE-2025-67517 |
9.8 (3.1)
|
WordPress ArtPlacer Widget plugin <= 2.22.9.2 - SQL In… |
artplacer |
ArtPlacer Widget |
2025-12-09T14:13:57.629Z | 2026-01-20T14:28:25.209Z |
| CVE-2025-67516 |
9.8 (3.1)
|
WordPress Store Locator WordPress plugin <= 1.6.2 - SQ… |
Agile Logix |
Store Locator WordPress |
2025-12-09T14:13:57.425Z | 2026-01-20T14:28:25.331Z |
| CVE-2025-67474 |
4.3 (3.1)
|
WordPress ForumWP plugin <= 2.1.4 - Broken Access Cont… |
Ultimate Member |
ForumWP |
2025-12-09T14:13:57.009Z | 2026-01-20T14:28:25.033Z |
| CVE-2025-67473 |
8.8 (3.1)
|
WordPress CWW Companion plugin <= 1.3.2 - Cross Site R… |
codeworkweb |
CWW Companion |
2025-12-09T14:13:56.814Z | 2026-01-20T14:28:25.508Z |
| CVE-2025-67472 |
8.8 (3.1)
|
WordPress Online Booking & Scheduling Calendar for Wor… |
vcita |
Online Booking & Scheduling Calendar for WordPress by vcita |
2025-12-09T14:13:56.599Z | 2026-01-20T14:28:25.295Z |
| CVE-2025-67471 |
8.8 (3.1)
|
WordPress Quick Contact Form plugin <= 8.2.5 - Cross S… |
Saad Iqbal |
Quick Contact Form |
2025-12-09T14:13:56.242Z | 2026-01-20T14:28:25.221Z |
| CVE-2025-67470 |
4.3 (3.1)
|
WordPress Portfolio and Projects plugin <= 1.5.5 - Sen… |
Essential Plugin |
Portfolio and Projects |
2025-12-09T14:13:56.054Z | 2026-01-20T14:28:25.130Z |
| CVE-2025-67469 |
8.8 (3.1)
|
WordPress PDF Thumbnail Generator plugin <= 1.4 - Cros… |
kubiq |
PDF Thumbnail Generator |
2025-12-09T14:13:55.861Z | 2026-01-20T14:28:25.210Z |
| CVE-2025-67468 |
4.3 (3.1)
|
WordPress Integration for Salesforce and Contact Form … |
CRM Perks |
Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms |
2025-12-09T14:13:55.664Z | 2026-01-20T14:28:25.574Z |
| CVE-2025-67467 |
4.5 (3.1)
|
WordPress GiveWP plugin <= 4.13.1 - Cross Site Request… |
StellarWP |
GiveWP |
2025-12-09T15:03:54.450Z | 2026-02-10T16:34:02.791Z |
| CVE-2025-67466 |
8.1 (3.1)
|
WordPress Trinity Audio plugin <= 5.23.3 - Broken Acce… |
sergiotrinity |
Trinity Audio |
2025-12-09T14:13:55.460Z | 2026-01-20T14:28:25.210Z |
| CVE-2025-67465 |
8.8 (3.1)
|
WordPress Simple Link Directory plugin <= 8.8.3 - Cros… |
QuantumCloud |
Simple Link Directory |
2025-12-09T14:13:55.262Z | 2026-01-20T14:28:24.889Z |
| CVE-2025-66534 |
8.8 (3.1)
|
WordPress The Aisle theme <= 2.9 - Broken Access Contr… |
Elated-Themes |
The Aisle |
2025-12-09T14:13:54.991Z | 2026-01-20T14:28:25.176Z |
| CVE-2025-66533 |
7.8 (3.1)
|
WordPress GiveWP plugin <= 4.13.1 - Arbitrary Shortocd… |
StellarWP |
GiveWP |
2025-12-09T15:03:54.194Z | 2026-02-10T16:34:27.250Z |
| CVE-2025-66531 |
8.8 (3.1)
|
WordPress Salon booking system plugin <= 10.30.3 - Cro… |
Dimitri Grassi |
Salon booking system |
2025-12-09T14:13:54.558Z | 2026-01-20T14:28:24.641Z |
| CVE-2025-66530 |
8.8 (3.1)
|
WordPress Webba Booking plugin <= 6.2.1 - Broken Acces… |
Webba Appointment Booking |
Webba Booking |
2025-12-09T14:13:53.897Z | 2026-01-20T14:28:24.537Z |
| CVE-2025-66529 |
8.8 (3.1)
|
WordPress Chartify plugin <= 3.6.3 - Cross Site Reques… |
Ays Pro |
Chartify |
2025-12-09T14:13:53.647Z | 2026-01-20T14:28:24.493Z |
| CVE-2025-66528 |
8.1 (3.1)
|
WordPress Thank You Page Customizer for WooCommerce pl… |
VillaTheme |
Thank You Page Customizer for WooCommerce |
2025-12-09T14:13:53.449Z | 2026-01-20T14:28:24.582Z |
| CVE-2025-66527 |
4.3 (3.1)
|
WordPress Lobo theme <= 2.8.6 - Broken Access Control … |
VanKarWai |
Lobo |
2025-12-09T14:13:53.255Z | 2026-01-20T14:28:24.494Z |
| CVE-2025-66526 |
4.3 (3.1)
|
WordPress Tablesome plugin <= 1.1.34 - Broken Access C… |
Essekia |
Tablesome |
2025-12-09T14:13:53.002Z | 2026-01-20T14:28:24.435Z |
| CVE-2025-66525 |
4.3 (3.1)
|
WordPress Elastic Email Sender plugin <= 1.2.20 - Brok… |
Elastic Email |
Elastic Email Sender |
2025-12-09T14:13:52.779Z | 2026-01-20T14:28:24.494Z |
| CVE-2025-66167 |
5.4 (3.1)
|
WordPress Lottier plugin <= 1.1.1 - Broken Access Cont… |
merkulove |
Lottier |
2025-12-16T08:12:56.806Z | 2026-01-20T14:28:24.481Z |
| CVE-2025-66166 |
5.4 (3.1)
|
WordPress Lottier for Elementor plugin <= 1.0.9 - Brok… |
merkulove |
Lottier for Elementor |
2025-12-16T08:12:56.603Z | 2026-01-20T14:28:24.430Z |
| CVE-2025-66165 |
5.4 (3.1)
|
WordPress Lottier for WPBakery plugin <= 1.1.7 - Broke… |
merkulove |
Lottier for WPBakery |
2025-12-16T08:12:56.408Z | 2026-02-04T16:31:51.566Z |
| CVE-2025-66164 |
5.4 (3.1)
|
WordPress Laser plugin <= 1.1.1 - Broken Access Contro… |
merkulove |
Laser |
2025-12-16T08:12:56.211Z | 2026-01-20T14:28:24.509Z |
| CVE-2025-66163 |
5.4 (3.1)
|
WordPress Masker for Elementor plugin <= 1.1.4 - Broke… |
merkulove |
Masker for Elementor |
2025-12-16T08:12:55.859Z | 2026-01-20T14:28:24.419Z |
| CVE-2025-66162 |
5.4 (3.1)
|
WordPress Spoter for Elementor plugin <= 1.04 - Broken… |
merkulove |
Spoter for Elementor |
2025-12-16T08:12:55.672Z | 2026-01-20T14:28:24.446Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-67520 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-09T16:18:25.403 | 2026-01-20T15:19:16.413 |
| fkie_cve-2025-67519 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-09T16:18:25.270 | 2026-01-20T15:19:16.290 |
| fkie_cve-2025-67518 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-09T16:18:25.127 | 2026-01-20T15:19:16.167 |
| fkie_cve-2025-67517 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-09T16:18:24.687 | 2026-01-20T15:19:16.043 |
| fkie_cve-2025-67516 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-09T16:18:24.550 | 2026-01-20T15:19:15.920 |
| fkie_cve-2025-67474 | Missing Authorization vulnerability in Ultimate Member ForumWP forumwp allows Exploiting Incorrectl… | 2025-12-09T16:18:23.903 | 2026-01-20T15:19:15.670 |
| fkie_cve-2025-67473 | Cross-Site Request Forgery (CSRF) vulnerability in codeworkweb CWW Companion cww-companion allows C… | 2025-12-09T16:18:23.770 | 2026-01-20T15:19:15.550 |
| fkie_cve-2025-67472 | Cross-Site Request Forgery (CSRF) vulnerability in vcita Online Booking & Scheduling Calendar for W… | 2025-12-09T16:18:23.590 | 2026-01-20T15:19:15.410 |
| fkie_cve-2025-67471 | Cross-Site Request Forgery (CSRF) vulnerability in Saad Iqbal Quick Contact Form quick-contact-form… | 2025-12-09T16:18:23.417 | 2026-01-20T15:19:15.287 |
| fkie_cve-2025-67470 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Essenti… | 2025-12-09T16:18:23.270 | 2026-01-20T15:19:15.163 |
| fkie_cve-2025-67469 | Cross-Site Request Forgery (CSRF) vulnerability in kubiq PDF Thumbnail Generator pdf-thumbnail-gene… | 2025-12-09T16:18:23.123 | 2026-01-20T15:19:15.043 |
| fkie_cve-2025-67468 | Missing Authorization vulnerability in CRM Perks Integration for Salesforce and Contact Form 7, WPF… | 2025-12-09T16:18:22.947 | 2026-01-20T15:19:14.917 |
| fkie_cve-2025-67467 | Cross-Site Request Forgery (CSRF) vulnerability in StellarWP GiveWP give allows Cross Site Request … | 2025-12-09T16:18:22.767 | 2026-01-20T15:19:14.793 |
| fkie_cve-2025-67466 | Missing Authorization vulnerability in sergiotrinity Trinity Audio trinity-audio allows Exploiting … | 2025-12-09T16:18:22.613 | 2026-01-20T15:19:14.663 |
| fkie_cve-2025-67465 | Cross-Site Request Forgery (CSRF) vulnerability in QuantumCloud Simple Link Directory simple-link-d… | 2025-12-09T16:18:22.483 | 2026-01-20T15:19:14.537 |
| fkie_cve-2025-66534 | Missing Authorization vulnerability in Elated-Themes The Aisle theaisle allows Exploiting Incorrect… | 2025-12-09T16:18:20.960 | 2026-01-20T15:19:14.400 |
| fkie_cve-2025-66533 | Improper Control of Generation of Code ('Code Injection') vulnerability in StellarWP GiveWP give al… | 2025-12-09T16:18:20.760 | 2026-01-20T15:19:14.270 |
| fkie_cve-2025-66531 | Cross-Site Request Forgery (CSRF) vulnerability in Dimitri Grassi Salon booking system salon-bookin… | 2025-12-09T16:18:20.433 | 2026-01-20T15:19:14.020 |
| fkie_cve-2025-66530 | Missing Authorization vulnerability in Webba Appointment Booking Webba Booking webba-booking-lite a… | 2025-12-09T16:18:20.307 | 2026-01-20T15:19:13.900 |
| fkie_cve-2025-66529 | Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Chartify chart-builder allows Cross Site… | 2025-12-09T16:18:20.157 | 2026-01-20T15:19:13.770 |
| fkie_cve-2025-66528 | Missing Authorization vulnerability in VillaTheme Thank You Page Customizer for WooCommerce woo-tha… | 2025-12-09T16:18:20.023 | 2026-01-20T15:19:13.637 |
| fkie_cve-2025-66527 | Missing Authorization vulnerability in VanKarWai Lobo lobo allows Exploiting Incorrectly Configured… | 2025-12-09T16:18:19.887 | 2026-01-20T15:19:13.507 |
| fkie_cve-2025-66526 | Missing Authorization vulnerability in Essekia Tablesome tablesome allows Exploiting Incorrectly Co… | 2025-12-09T16:18:19.740 | 2026-01-20T15:19:13.380 |
| fkie_cve-2025-66525 | Missing Authorization vulnerability in Elastic Email Elastic Email Sender elastic-email-sender allo… | 2025-12-09T16:18:19.600 | 2026-01-20T15:19:13.240 |
| fkie_cve-2025-66167 | Missing Authorization vulnerability in merkulove Lottier lottier-gutenberg allows Exploiting Incorr… | 2025-12-16T09:15:59.057 | 2026-01-20T15:19:13.110 |
| fkie_cve-2025-66166 | Missing Authorization vulnerability in merkulove Lottier for Elementor lottier-elementor allows Exp… | 2025-12-16T09:15:58.933 | 2026-01-20T15:19:12.987 |
| fkie_cve-2025-66165 | Missing Authorization vulnerability in merkulove Lottier for WPBakery lottier-wpbakery allows Explo… | 2025-12-16T09:15:58.807 | 2026-01-20T15:19:12.860 |
| fkie_cve-2025-66164 | Missing Authorization vulnerability in merkulove Laser laser allows Exploiting Incorrectly Configur… | 2025-12-16T09:15:58.680 | 2026-01-20T15:19:12.733 |
| fkie_cve-2025-66163 | Missing Authorization vulnerability in merkulove Masker for Elementor masker-elementor allows Explo… | 2025-12-16T09:15:58.547 | 2026-01-20T15:19:12.593 |
| fkie_cve-2025-66162 | Missing Authorization vulnerability in merkulove Spoter for Elementor spoter-elementor allows Explo… | 2025-12-16T09:15:58.413 | 2026-01-20T15:19:12.467 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-cw2j-6pvw-7g9v |
10.0 (3.1)
|
Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147. | 2026-01-13T15:37:04Z | 2026-01-15T12:30:25Z |
| ghsa-f37f-426r-r53h |
3.7 (3.1)
|
The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to una… | 2026-01-15T09:33:22Z | 2026-01-15T09:33:22Z |
| ghsa-6p6f-w7vp-pv39 |
5.0 (3.1)
|
Kivitendo before 3.9.2 allows XXE injection. By uploading an electronic invoice in the ZUGFeRD form… | 2025-11-28T06:32:06Z | 2026-01-15T09:33:22Z |
| ghsa-m6vp-9427-3j3c |
|
Rejected reason: Not used | 2026-01-15T06:31:59Z | 2026-01-15T06:32:00Z |
| ghsa-j3j6-jffv-m7g7 |
5.4 (3.1)
|
The WP-Members Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting … | 2026-01-15T06:32:00Z | 2026-01-15T06:32:00Z |
| ghsa-368v-5x4r-9cfg |
|
Rejected reason: Not used | 2026-01-15T06:32:00Z | 2026-01-15T06:32:00Z |
| ghsa-pcq6-979p-h8mq |
|
Rejected reason: Not used | 2026-01-15T06:31:59Z | 2026-01-15T06:31:59Z |
| ghsa-j985-x3jg-qx95 |
|
Rejected reason: Not used | 2026-01-15T06:31:59Z | 2026-01-15T06:31:59Z |
| ghsa-h9j9-hv48-mm5x |
|
Rejected reason: Not used | 2026-01-15T06:31:59Z | 2026-01-15T06:31:59Z |
| ghsa-f77q-m7r3-c94r |
|
Rejected reason: Not used | 2026-01-15T06:31:59Z | 2026-01-15T06:31:59Z |
| ghsa-chhf-mhwv-qrrw |
|
Rejected reason: Not used | 2026-01-15T06:31:59Z | 2026-01-15T06:31:59Z |
| ghsa-c28g-7cw7-qh64 |
|
Rejected reason: Not used | 2026-01-15T06:31:59Z | 2026-01-15T06:31:59Z |
| ghsa-3gh2-h77w-4jgw |
|
Rejected reason: Not used | 2026-01-15T06:31:59Z | 2026-01-15T06:31:59Z |
| ghsa-pwmr-hpc5-jq8r |
9.8 (3.1)
7.6 (4.0)
|
In ExtremeGuest Essentials before 25.5.0, captive-portal may permit unauthorized access via manual … | 2025-10-01T18:30:39Z | 2026-01-15T03:31:19Z |
| ghsa-h5c2-mv2m-wmgj |
8.6 (3.1)
8.4 (4.0)
|
A vulnerability in Extreme Networks’ Fabric Engine (VOSS) before 9.3 was discovered. When SD-WAN Au… | 2025-10-07T21:31:05Z | 2026-01-15T03:31:19Z |
| ghsa-vr4x-w39v-5c7h |
6.2 (4.0)
|
Server-Side Request Forgery (SSRF) vulnerability in Sonatype Nexus Repository 3 versions 3.0.0 and … | 2026-01-15T00:31:38Z | 2026-01-15T00:31:38Z |
| ghsa-rv9m-9xwv-6gcw |
7.5 (3.1)
|
The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress… | 2026-01-15T00:31:38Z | 2026-01-15T00:31:38Z |
| ghsa-qqx4-rrqf-qwx2 |
|
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 2026-01-15T00:31:38Z | 2026-01-15T00:31:38Z |
| ghsa-frwg-fg7h-vg3h |
3.2 (3.1)
2.4 (4.0)
|
A potential missing authentication vulnerability was reported in some Lenovo Tablets that could all… | 2026-01-15T00:31:38Z | 2026-01-15T00:31:38Z |
| ghsa-cv2v-p23m-2q4h |
7.1 (3.1)
6.9 (4.0)
|
BullWall Ransomware Containment does not entirely inspect a file to determine if it is ransomware. … | 2025-12-18T21:31:44Z | 2026-01-15T00:31:38Z |
| ghsa-8v57-mx5c-25h7 |
4.7 (3.1)
5.7 (4.0)
|
A potential vulnerability was reported in ThinkPlus configuration software that could allow a local… | 2026-01-15T00:31:38Z | 2026-01-15T00:31:38Z |
| ghsa-7mvg-mpxf-p5cf |
7.8 (3.1)
7.3 (4.0)
|
A vulnerability was reported in ThinkPlus configuration software that could allow a local authentic… | 2026-01-15T00:31:38Z | 2026-01-15T00:31:38Z |
| ghsa-7mf2-39xh-3vq6 |
6.5 (3.1)
|
A CORS misconfiguration in Eramba Community and Enterprise Editions v3.26.0 allows an attacker-cont… | 2026-01-13T15:37:05Z | 2026-01-15T00:31:38Z |
| ghsa-7j27-hv22-fqgw |
5.1 (4.0)
|
A reflected cross-site scripting vulnerability exists in Nexus Repository 3 that allows unauthentic… | 2026-01-15T00:31:38Z | 2026-01-15T00:31:38Z |
| ghsa-75f9-c6rg-g527 |
6.8 (3.1)
7.0 (4.0)
|
A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with ph… | 2026-01-15T00:31:38Z | 2026-01-15T00:31:38Z |
| ghsa-6v4g-392h-r9mh |
6.5 (3.1)
|
A flaw was found in vsftpd. This vulnerability allows a denial of service (DoS) via an integer over… | 2026-01-14T18:31:36Z | 2026-01-15T00:31:38Z |
| ghsa-6cmg-j379-64rm |
5.5 (3.1)
6.8 (4.0)
|
An improper link following vulnerability was reported in the SmartPerformanceAddin for Lenovo Vanta… | 2026-01-15T00:31:38Z | 2026-01-15T00:31:38Z |
| ghsa-5m9v-m547-62qf |
6.5 (3.1)
7.0 (4.0)
|
A potential vulnerability was reported in the BIOS of L13 Gen 6, L13 Gen 6 2-in-1, L14 Gen 6, and L… | 2026-01-15T00:31:38Z | 2026-01-15T00:31:38Z |
| ghsa-48h9-83q8-5c2x |
9.8 (3.1)
|
Incorrect Privilege Assignment vulnerability in InspiryThemes RealHomes allows Privilege Escalation… | 2026-01-15T00:31:37Z | 2026-01-15T00:31:37Z |
| ghsa-wh69-wc6q-7888 |
8.6 (3.1)
|
Command injection in node-dns-sync | 2020-05-28T18:42:59Z | 2026-01-14T22:17:20Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-28258 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.433616Z |
| gsd-2024-28589 | An issue was discovered in Axigen Mail Server for Windows versions 10.5.18 and before, al… | 2024-03-08T06:02:46.433292Z |
| gsd-2024-28278 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.433014Z |
| gsd-2024-28422 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.432737Z |
| gsd-2024-28241 | The GLPI Agent is a generic management agent. Prior to version 1.7.2, a local user can mo… | 2024-03-08T06:02:46.432463Z |
| gsd-2024-28275 | Puwell Cloud Tech Co, Ltd 360Eyes Pro v3.9.5.16(3090516) was discovered to transmit sensi… | 2024-03-08T06:02:46.431689Z |
| gsd-2024-28368 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.431449Z |
| gsd-2024-28487 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.431205Z |
| gsd-2024-28507 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.430647Z |
| gsd-2024-28525 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.430375Z |
| gsd-2024-28551 | Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the ssid parameter of form_… | 2024-03-08T06:02:46.428645Z |
| gsd-2024-28687 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.428343Z |
| gsd-2024-28179 | Jupyter Server Proxy allows users to run arbitrary external processes alongside their Jup… | 2024-03-08T06:02:46.427805Z |
| gsd-2024-28714 | SQL Injection vulnerability in CRMEB_Java e-commerce system v.1.3.4 allows an attacker to… | 2024-03-08T06:02:46.427533Z |
| gsd-2024-28702 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.426965Z |
| gsd-2024-28552 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.426672Z |
| gsd-2024-28358 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.426415Z |
| gsd-2024-28496 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.426179Z |
| gsd-2024-28302 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.425921Z |
| gsd-2024-28282 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.425658Z |
| gsd-2024-28233 | JupyterHub is an open source multi-user server for Jupyter notebooks. By tricking a user … | 2024-03-08T06:02:46.425309Z |
| gsd-2024-28717 | An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary cod… | 2024-03-08T06:02:46.424886Z |
| gsd-2024-28437 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.423972Z |
| gsd-2024-28438 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.423647Z |
| gsd-2024-28458 | Null Pointer Dereference vulnerability in swfdump in swftools 0.9.2 allows attackers to c… | 2024-03-08T06:02:46.422715Z |
| gsd-2024-28379 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.421692Z |
| gsd-2024-28630 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.421458Z |
| gsd-2024-28352 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.421208Z |
| gsd-2024-28411 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.420964Z |
| gsd-2024-28271 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.420357Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-188046 | Malicious code in mineralogy-oauth-eslint-node-sass (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188045 | Malicious code in mineralogy-less-loader-dagda-global (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188044 | Malicious code in middleware-webpack-resolvers-capella (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188043 | Malicious code in middleware-nightwatch-virgo-subscription (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188042 | Malicious code in middleware-mini-css-extract-plugin-ignite-json (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188041 | Malicious code in middleware-lyra-transport-innercore (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188040 | Malicious code in middleware-fusion-gemini-rehype (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188039 | Malicious code in middleware-exec-callisto-postcss-loader (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188038 | Malicious code in middleware-css-loader-eigenstate-pavo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188037 | Malicious code in middleware-backend-async-oortcloud (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188036 | Malicious code in middleware-antd-hapi-nightwatch (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188035 | Malicious code in middleware-antares-bootstrap-fork (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188034 | Malicious code in meteor-zephyr-singularitarianism-local (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188033 | Malicious code in meteor-spectron-webdriver-ignite-spawn (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188032 | Malicious code in meteor-singularitarianism-procyon-nova (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188031 | Malicious code in meteor-paleoecology-mysql-middleware (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188030 | Malicious code in meteor-paleoclimatology-firebase-chromedriver (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188029 | Malicious code in meteor-octans-grunt-kuiperbelt (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188028 | Malicious code in meteor-meissa-airbnb-outercore (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188027 | Malicious code in meteor-lacerta-fornax-cryonics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188026 | Malicious code in meteor-jupiter-jupiter-xanthus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188025 | Malicious code in meteor-hadron-hermes-lint (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188024 | Malicious code in meteor-geochronology-element-ui-polaris (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188023 | Malicious code in meteor-fermiparadox-pino-mysql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188022 | Malicious code in meteor-envconfig-quito-singularitarianism (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188021 | Malicious code in meteor-dysonswarm-geckodriver-grus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188020 | Malicious code in meteor-deneb-phoebe-paleoanthropology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188019 | Malicious code in meteor-cosmochemistry-parsec-wezen (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188018 | Malicious code in meteor-command-warp-colors (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188017 | Malicious code in meteor-cli-nightwatch-test (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-0020 | KeePass: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-03-10T23:00:00.000+00:00 | 2024-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-0018 | QNAP NAS: Mehrere Schwachstellen | 2024-01-07T23:00:00.000+00:00 | 2024-01-07T23:00:00.000+00:00 |
| wid-sec-w-2023-2368 | IBM Operational Decision Manager: Mehrere Schwachstellen | 2023-09-14T22:00:00.000+00:00 | 2024-01-07T23:00:00.000+00:00 |
| wid-sec-w-2023-1385 | Mozilla Firefox: Mehrere Schwachstellen | 2023-06-06T22:00:00.000+00:00 | 2024-01-07T23:00:00.000+00:00 |
| wid-sec-w-2023-1245 | CUPS: Schwachstelle ermöglicht Codeausführung | 2023-05-18T22:00:00.000+00:00 | 2024-01-07T23:00:00.000+00:00 |
| wid-sec-w-2023-1172 | Mozilla Firefox und Mozilla Firefox ESR: Mehrere Schwachstellen | 2023-05-09T22:00:00.000+00:00 | 2024-01-07T23:00:00.000+00:00 |
| wid-sec-w-2022-0279 | util-linux: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2022-01-24T23:00:00.000+00:00 | 2024-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-0013 | Ivanti Endpoint Manager: Schwachstelle ermöglicht Codeausführung | 2024-01-04T23:00:00.000+00:00 | 2024-01-04T23:00:00.000+00:00 |
| wid-sec-w-2024-0012 | Microsoft Visual Studio Code: Schwachstelle ermöglicht Cross-Site Scripting | 2024-01-04T23:00:00.000+00:00 | 2024-01-04T23:00:00.000+00:00 |
| wid-sec-w-2024-0011 | IBM AIX: Mehrere Schwachstellen ermöglichen Denial of Service | 2024-01-04T23:00:00.000+00:00 | 2024-01-04T23:00:00.000+00:00 |
| wid-sec-w-2024-0008 | Samsung Android: Mehrere Schwachstellen | 2024-01-03T23:00:00.000+00:00 | 2024-01-03T23:00:00.000+00:00 |
| wid-sec-w-2024-0003 | Apache OFBiz: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-01-01T23:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2024-0001 | Bouncy Castle: Schwachstelle ermöglicht Manipulation von Daten | 2024-01-01T23:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-2860 | Red Hat OpenShift: Schwachstelle ermöglicht Denial of Service | 2023-11-08T23:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-2566 | Red Hat OpenShift: Schwachstelle ermöglicht Privilegieneskalation | 2023-10-04T22:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-2118 | Red Hat Enterprise Linux (subscription-manager): Schwachstelle ermöglicht Privilegieneskalation | 2023-08-22T22:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-1675 | Red Hat OpenShift: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-07-05T22:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-1194 | Red Hat OpenShift: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-05-10T22:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0912 | Red Hat OpenShift: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-04-10T22:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2022-1808 | LibreOffice: Mehrere Schwachstellen | 2020-06-08T22:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2022-1807 | LibreOffice: Schwachstelle ermöglicht Offenlegung von Informationen | 2020-05-18T22:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2022-1715 | Red Hat Enterprise Linux (Advanced Cluster Management): Mehrere Schwachstellen | 2022-10-13T22:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-3226 | Apache OpenOffice: Mehrere Schwachstellen | 2023-12-28T23:00:00.000+00:00 | 2023-12-28T23:00:00.000+00:00 |
| wid-sec-w-2023-3222 | Barracuda Networks Email Security Gateway: Schwachstelle ermöglicht Codeausführung | 2023-12-26T23:00:00.000+00:00 | 2023-12-26T23:00:00.000+00:00 |
| wid-sec-w-2023-3220 | ILIAS: Mehrere Schwachstellen ermöglichen Codeausführung | 2023-12-26T23:00:00.000+00:00 | 2023-12-26T23:00:00.000+00:00 |
| wid-sec-w-2023-3219 | ffmpeg: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2021-06-03T22:00:00.000+00:00 | 2023-12-26T23:00:00.000+00:00 |
| wid-sec-w-2023-3217 | GStreamer: Schwachstelle ermöglicht Denial of Service und Code-Ausführung | 2023-12-26T23:00:00.000+00:00 | 2023-12-26T23:00:00.000+00:00 |
| wid-sec-w-2023-3212 | TYPO3 Core: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-12-26T23:00:00.000+00:00 | 2023-12-26T23:00:00.000+00:00 |
| wid-sec-w-2023-3210 | Microsoft GitHub Enterprise: Mehrere Schwachstellen | 2023-12-21T23:00:00.000+00:00 | 2023-12-26T23:00:00.000+00:00 |
| wid-sec-w-2023-2674 | Oracle Fusion Middleware: Mehrere Schwachstellen | 2023-10-17T22:00:00.000+00:00 | 2023-12-26T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2018:2282 | Red Hat Security Advisory: chromium-browser security update | 2018-07-30T15:10:23+00:00 | 2026-01-13T21:26:52+00:00 |
| rhsa-2018:1815 | Red Hat Security Advisory: chromium-browser security update | 2018-06-07T20:37:44+00:00 | 2026-01-13T21:26:52+00:00 |
| rhsa-2018:0484 | Red Hat Security Advisory: chromium-browser security update | 2018-03-12T18:21:28+00:00 | 2026-01-13T21:26:51+00:00 |
| rhsa-2018:0265 | Red Hat Security Advisory: chromium-browser security update | 2018-02-01T16:06:57+00:00 | 2026-01-13T21:26:51+00:00 |
| rhba-2020:2804 | Red Hat Bug Fix Advisory: OpenShift Container Platform 4.3.28 packages update | 2020-07-07T13:42:29+00:00 | 2026-01-13T21:26:50+00:00 |
| rhba-2020:2785 | Red Hat Bug Fix Advisory: OpenShift Container Platform 4.4.11 packages update | 2020-07-06T20:16:24+00:00 | 2026-01-13T21:26:50+00:00 |
| rhba-2020:1539 | Red Hat Bug Fix Advisory: Red Hat Ansible Tower 3.5.6-1 - RHEL7 Container | 2020-04-22T13:24:05+00:00 | 2026-01-13T21:26:48+00:00 |
| rhba-2019:2816 | Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix update | 2019-09-24T12:31:29+00:00 | 2026-01-13T21:26:48+00:00 |
| rhba-2019:2794 | Red Hat Bug Fix Advisory: OpenShift Container Platform 4.1.16 packages update | 2019-09-20T15:24:10+00:00 | 2026-01-13T21:26:48+00:00 |
| rhsa-2025:8829 | Red Hat Security Advisory: perl-FCGI security update | 2025-06-11T10:24:10+00:00 | 2026-01-13T21:22:25+00:00 |
| rhsa-2025:8678 | Red Hat Security Advisory: perl-FCGI security update | 2025-06-09T14:02:14+00:00 | 2026-01-13T21:22:23+00:00 |
| rhsa-2025:8890 | Red Hat Security Advisory: perl-FCGI:0.78 security update | 2025-06-11T13:12:20+00:00 | 2026-01-13T21:22:22+00:00 |
| rhsa-2025:8703 | Red Hat Security Advisory: perl-FCGI:0.78 security update | 2025-06-09T17:13:36+00:00 | 2026-01-13T21:22:21+00:00 |
| rhsa-2025:8698 | Red Hat Security Advisory: perl-FCGI:0.78 security update | 2025-06-09T15:24:34+00:00 | 2026-01-13T21:22:21+00:00 |
| rhsa-2025:8697 | Red Hat Security Advisory: perl-FCGI security update | 2025-06-09T15:23:55+00:00 | 2026-01-13T21:22:20+00:00 |
| rhsa-2025:8696 | Red Hat Security Advisory: perl-FCGI:0.78 security update | 2025-06-09T15:31:59+00:00 | 2026-01-13T21:22:20+00:00 |
| rhsa-2025:8677 | Red Hat Security Advisory: perl-FCGI security update | 2025-06-09T14:03:04+00:00 | 2026-01-13T21:22:19+00:00 |
| rhsa-2025:8636 | Red Hat Security Advisory: perl-FCGI security update | 2025-06-09T03:25:08+00:00 | 2026-01-13T21:22:19+00:00 |
| rhsa-2025:8635 | Red Hat Security Advisory: perl-FCGI security update | 2025-06-09T03:22:44+00:00 | 2026-01-13T21:22:19+00:00 |
| rhsa-2025:8625 | Red Hat Security Advisory: perl-FCGI security update | 2025-06-09T02:21:18+00:00 | 2026-01-13T21:22:18+00:00 |
| rhsa-2020:1068 | Red Hat Security Advisory: squid security and bug fix update | 2020-03-31T21:08:12+00:00 | 2026-01-13T21:21:09+00:00 |
| rhsa-2020:0663 | Red Hat Security Advisory: ruby security update | 2020-03-03T15:35:39+00:00 | 2026-01-13T21:21:08+00:00 |
| rhsa-2020:0594 | Red Hat Security Advisory: curl security update | 2020-02-25T12:14:24+00:00 | 2026-01-13T21:21:08+00:00 |
| rhsa-2020:0544 | Red Hat Security Advisory: curl security update | 2020-02-19T07:36:27+00:00 | 2026-01-13T21:21:07+00:00 |
| rhsa-2020:0542 | Red Hat Security Advisory: ruby security update | 2020-02-19T07:37:10+00:00 | 2026-01-13T21:21:06+00:00 |
| rhsa-2019:2028 | Red Hat Security Advisory: ruby security update | 2019-08-06T12:40:15+00:00 | 2026-01-13T21:21:06+00:00 |
| rhsa-2019:1543 | Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 SP2 security update | 2019-06-18T19:08:49+00:00 | 2026-01-13T21:21:05+00:00 |
| rhsa-2018:3731 | Red Hat Security Advisory: rh-ruby25-ruby security, bug fix, and enhancement update | 2018-11-29T10:23:00+00:00 | 2026-01-13T21:21:04+00:00 |
| rhsa-2018:3730 | Red Hat Security Advisory: rh-ruby24-ruby security, bug fix, and enhancement update | 2018-11-29T10:10:31+00:00 | 2026-01-13T21:21:03+00:00 |
| rhsa-2018:3729 | Red Hat Security Advisory: rh-ruby23-ruby security, bug fix, and enhancement update | 2018-11-29T09:56:35+00:00 | 2026-01-13T21:21:01+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2013-4420 | Multiple directory traversal vulnerabilities in the (1) tar_extract_glob and (2) tar_extract_all functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. (dot dot) in a crafted tar file. | 2014-02-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2013-4342 | xinetd does not enforce the user and group configuration directives for TCPMUX services which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service. | 2013-10-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2012-6687 | FastCGI (aka fcgi and libfcgi) 2.4.0 allows remote attackers to cause a denial of service (segmentation fault and crash) via a large number of connections. | 2015-02-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2010-2891 | Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute arbitrary code via an Object Identifier (aka OID) represented as a numerical string containing many components separated by . (dot) characters. | 2010-10-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2008-3908 | Multiple buffer overflows in Princeton WordNet (wn) 3.0 allow context-dependent attackers to execute arbitrary code via (1) a long argument on the command line; a long (2) WNSEARCHDIR (3) WNHOME or (4) WNDBVERSION environment variable; or (5) a user-supplied dictionary (aka data file). NOTE: since WordNet itself does not run with special privileges this issue only crosses privilege boundaries when WordNet is invoked as a third party component. | 2008-09-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2008-2149 | Stack-based buffer overflow in the searchwn function in Wordnet 2.0 2.1 and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end. | 2008-05-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2008-0888 | The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data. | 2008-03-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2007-2768 | OpenSSH when using OPIE (One-Time Passwords in Everything) for PAM allows remote attackers to determine the existence of certain user accounts which displays a different response if the user account exists and is configured to use one-time passwords (OTP) a similar issue to CVE-2007-2243. | 2007-05-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2004-2771 | The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in an email address. | 2014-12-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2024-35260 | Microsoft Dataverse Remote Code Execution Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-27T07:00:00.000Z |
| msrc_cve-2024-38082 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-26T07:00:00.000Z |
| msrc_cve-2024-26236 | Windows Update Stack Elevation of Privilege Vulnerability | 2024-04-09T07:00:00.000Z | 2024-06-26T07:00:00.000Z |
| msrc_cve-2024-26235 | Windows Update Stack Elevation of Privilege Vulnerability | 2024-04-09T07:00:00.000Z | 2024-06-26T07:00:00.000Z |
| msrc_cve-2024-26218 | Windows Kernel Elevation of Privilege Vulnerability | 2024-04-09T07:00:00.000Z | 2024-06-26T07:00:00.000Z |
| msrc_cve-2024-26213 | Microsoft Brokering File System Elevation of Privilege Vulnerability | 2024-04-09T07:00:00.000Z | 2024-06-26T07:00:00.000Z |
| msrc_cve-2024-21345 | Windows Kernel Elevation of Privilege Vulnerability | 2024-02-13T08:00:00.000Z | 2024-06-26T07:00:00.000Z |
| msrc_cve-2023-38146 | Windows Themes Remote Code Execution Vulnerability | 2023-09-12T07:00:00.000Z | 2024-06-26T07:00:00.000Z |
| msrc_cve-2022-26832 | .NET Framework Denial of Service Vulnerability | 2022-04-12T08:00:00.000Z | 2024-06-24T07:00:00.000Z |
| msrc_cve-2024-38093 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-20T07:00:00.000Z |
| msrc_cve-2024-30091 | Win32k Elevation of Privilege Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-19T07:00:00.000Z |
| msrc_cve-2024-30045 | .NET and Visual Studio Remote Code Execution Vulnerability | 2024-05-14T07:00:00.000Z | 2024-06-19T07:00:00.000Z |
| msrc_cve-2024-38083 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-13T07:00:00.000Z |
| msrc_cve-2024-35255 | Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-13T07:00:00.000Z |
| msrc_cve-2024-30080 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-13T07:00:00.000Z |
| msrc_cve-2024-30058 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-13T07:00:00.000Z |
| msrc_cve-2024-30057 | Microsoft Edge for iOS Spoofing Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-13T07:00:00.000Z |
| msrc_cve-2024-30037 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | 2024-05-14T07:00:00.000Z | 2024-06-13T07:00:00.000Z |
| msrc_cve-2024-35265 | Windows Perception Service Elevation of Privilege Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-11T07:00:00.000Z |
| msrc_cve-2024-35263 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-11T07:00:00.000Z |
| msrc_cve-2024-35254 | Azure Monitor Agent Elevation of Privilege Vulnerability | 2024-06-11T07:00:00.000Z | 2024-06-11T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201707-0928 | A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local a… | 2025-04-20T23:26:02.930000Z |
| var-201707-0991 | An Improper Authentication issue was discovered in Newport XPS-Cx and XPS-Qx. An attacker… | 2025-04-20T23:26:02.866000Z |
| var-201707-1014 | The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-1702… | 2025-04-20T23:26:02.783000Z |
| var-201707-1077 | On the D-Link DIR-615 before v20.12PTb04, if a victim logged in to the Router's Web Inter… | 2025-04-20T23:26:02.736000Z |
| var-201708-0882 | ASUS DSL-N10S V2.1.16_APAC devices have reflected and stored cross site scripting, as dem… | 2025-04-20T23:25:58.693000Z |
| var-201708-1344 | A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) 9.3(3… | 2025-04-20T23:25:58.068000Z |
| var-201708-1530 | An issue was discovered in SMA Solar Technology products. By sending crafted packets to a… | 2025-04-20T23:25:57.941000Z |
| var-201709-0004 | The encryption library in Cisco IOS Software 15.2(1)T, 15.2(1)T1, and 15.2(2)T, Cisco NX-… | 2025-04-20T23:25:57.905000Z |
| var-201709-0687 | A vulnerability in the ability for guest users to join meetings via a hyperlink with Cisc… | 2025-04-20T23:25:57.360000Z |
| var-201709-0689 | A vulnerability in the web-based Wireless Controller GUI of Cisco IOS XE Software for Cis… | 2025-04-20T23:25:57.325000Z |
| var-201709-0712 | An Improper Neutralization of Special Elements used in an OS Command issue was discovered… | 2025-04-20T23:25:57.290000Z |
| var-201709-0615 | An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions … | 2025-04-20T23:25:57.095000Z |
| var-201709-1004 | An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions pri… | 2025-04-20T23:25:57.059000Z |
| var-201709-1173 | A vulnerability in the CLI command-parsing code of Cisco Meeting Server could allow an au… | 2025-04-20T23:25:56.975000Z |
| var-201709-1194 | There is LFD (local file disclosure) on BE126 WIFI repeater 1.0 devices that allows attac… | 2025-04-20T23:25:56.945000Z |
| var-201710-0032 | Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to e… | 2025-04-20T23:25:56.900000Z |
| var-201710-0096 | The management interface on Huawei FusionServer rack servers RH2288 V3 with software befo… | 2025-04-20T23:25:56.821000Z |
| var-201710-0094 | The login page of the server on Huawei FusionServer rack servers RH2288 V3 with software … | 2025-04-20T23:25:56.784000Z |
| var-201710-0095 | Huawei FusionServer rack servers RH2288 V3 with software before V100R003C00SPC603, RH2288… | 2025-04-20T23:25:56.750000Z |
| var-201710-0241 | Any Juniper Networks SRX series device with one or more ALGs enabled may experience a flo… | 2025-04-20T23:25:56.514000Z |
| var-201710-0637 | A vulnerability in the web-based UI of Cisco Unified Communications Manager could allow a… | 2025-04-20T23:25:56.259000Z |
| var-201710-0658 | A vulnerability in the web-based management interface of Cisco Unified Contact Center Exp… | 2025-04-20T23:25:56.229000Z |
| var-201710-1350 | An issue was discovered in certain Apple products. macOS before 10.13 Supplemental Update… | 2025-04-20T23:25:55.759000Z |
| var-201710-1349 | An issue was discovered in certain Apple products. macOS before 10.13 Supplemental Update… | 2025-04-20T23:25:55.723000Z |
| var-201711-0010 | Samsung 850 Pro and PM851 solid-state drives and Seagate ST500LT015 and ST500LT025 hard d… | 2025-04-20T23:25:55.683000Z |
| var-201711-0031 | Untrusted search path vulnerability in Installer of Flets Easy Setup Tool Ver1.2.0 and ea… | 2025-04-20T23:25:55.276000Z |
| var-201711-0052 | EMC Unisphere for VMAX Virtual Appliance (vApp) versions prior to 8.4.0.15, EMC Solutions… | 2025-04-20T23:25:55.234000Z |
| var-201711-0198 | IBM Security Access Manager Appliance 9.0.3 could allow a remote authenticated attacker t… | 2025-04-20T23:25:55.187000Z |
| var-201711-0219 | Phone Finder in versions earlier before MHA-AL00BC00B156,Versions earlier before MHA-CL00… | 2025-04-20T23:25:55.149000Z |
| var-201711-0280 | The Snap7 Server version 1.4.1 can be crashed when the ItemCount field of the ReadVar or … | 2025-04-20T23:25:55.118000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2023:1858-1 | Security update for golang-github-prometheus-prometheus | 2023-04-14T14:44:38Z | 2023-04-14T14:44:38Z |
| suse-su-2023:1857-1 | Security update for golang-github-prometheus-prometheus | 2023-04-14T14:44:28Z | 2023-04-14T14:44:28Z |
| suse-su-2023:1856-1 | Security update for tftpboot-installation images | 2023-04-14T14:13:26Z | 2023-04-14T14:13:26Z |
| suse-su-2023:1855-1 | Security update for MozillaFirefox | 2023-04-14T14:06:16Z | 2023-04-14T14:06:16Z |
| suse-su-2023:1854-1 | Security update for liblouis | 2023-04-14T14:05:07Z | 2023-04-14T14:05:07Z |
| suse-su-2023:1853-1 | Security update for tomcat | 2023-04-14T13:11:05Z | 2023-04-14T13:11:05Z |
| suse-su-2023:1852-1 | Security update for harfbuzz | 2023-04-14T13:09:47Z | 2023-04-14T13:09:47Z |
| suse-su-2023:1851-1 | Security update for container-suseconnect | 2023-04-14T13:09:16Z | 2023-04-14T13:09:16Z |
| suse-su-2023:1850-1 | Security update for java-1_8_0-ibm | 2023-04-14T13:07:14Z | 2023-04-14T13:07:14Z |
| suse-su-2023:1849-1 | Security update for apache2-mod_auth_openidc | 2023-04-14T12:21:53Z | 2023-04-14T12:21:53Z |
| suse-su-2023:1847-1 | Security update for php7 | 2023-04-14T10:29:54Z | 2023-04-14T10:29:54Z |
| suse-su-2023:1846-1 | Security update for php7 | 2023-04-14T10:29:31Z | 2023-04-14T10:29:31Z |
| suse-su-2023:1844-1 | Security update for aws-nitro-enclaves-cli | 2023-04-14T10:13:49Z | 2023-04-14T10:13:49Z |
| suse-su-2023:1838-1 | Security update for python-crcmod, python-cryptography, python-cryptography-vectors | 2023-04-13T13:32:58Z | 2023-04-13T13:32:58Z |
| suse-su-2023:1837-1 | Security update for apache2-mod_auth_openidc | 2023-04-13T13:04:46Z | 2023-04-13T13:04:46Z |
| suse-su-2023:1834-1 | Security update for cmark | 2023-04-13T12:01:29Z | 2023-04-13T12:01:29Z |
| suse-su-2023:1830-1 | Security update for SUSE Manager Server 4.3 | 2023-04-13T09:03:53Z | 2023-04-13T09:03:53Z |
| suse-su-2023:1829-1 | Security update for liblouis | 2023-04-13T09:02:56Z | 2023-04-13T09:02:56Z |
| suse-su-2023:1828-1 | Security update for liblouis | 2023-04-13T09:02:06Z | 2023-04-13T09:02:06Z |
| suse-su-2023:1827-1 | Security update for containerd | 2023-04-13T08:18:28Z | 2023-04-13T08:18:28Z |
| suse-su-2023:1826-1 | Security update for containerd | 2023-04-13T08:17:43Z | 2023-04-13T08:17:43Z |
| suse-su-2023:1824-1 | Security update for liblouis | 2023-04-12T11:08:42Z | 2023-04-12T11:08:42Z |
| suse-su-2023:1823-1 | Security update for java-1_8_0-ibm | 2023-04-12T09:36:15Z | 2023-04-12T09:36:15Z |
| suse-su-2023:1822-1 | Security update for harfbuzz | 2023-04-12T08:05:04Z | 2023-04-12T08:05:04Z |
| suse-su-2023:1821-1 | Security update for harfbuzz | 2023-04-12T08:03:01Z | 2023-04-12T08:03:01Z |
| suse-su-2023:1820-1 | Security update for harfbuzz | 2023-04-12T04:49:17Z | 2023-04-12T04:49:17Z |
| suse-su-2023:1819-1 | Security update for MozillaFirefox | 2023-04-11T15:58:13Z | 2023-04-11T15:58:13Z |
| suse-su-2023:1817-1 | Security update for MozillaFirefox | 2023-04-11T15:56:43Z | 2023-04-11T15:56:43Z |
| suse-su-2023:1815-1 | Security update for amazon-ssm-agent | 2023-04-11T15:20:03Z | 2023-04-11T15:20:03Z |
| suse-su-2023:1814-1 | Security update for podman | 2023-04-11T12:40:40Z | 2023-04-11T12:40:40Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2021:0545-1 | Security update for hostapd | 2021-04-12T10:05:09Z | 2021-04-12T10:05:09Z |
| opensuse-su-2021:0544-1 | Security update for ceph | 2021-04-12T04:05:20Z | 2021-04-12T04:05:20Z |
| opensuse-su-2021:0542-1 | Security update for tpm2-tss-engine | 2021-04-11T22:05:31Z | 2021-04-11T22:05:31Z |
| opensuse-su-2021:0540-1 | Security update for openSUSE KMPs | 2021-04-11T14:02:23Z | 2021-04-11T14:02:23Z |
| opensuse-su-2021:0536-1 | Security update for openexr | 2021-04-10T22:05:18Z | 2021-04-10T22:05:18Z |
| opensuse-su-2021:0535-1 | Security update for bcc | 2021-04-10T22:05:14Z | 2021-04-10T22:05:14Z |
| opensuse-su-2021:0533-1 | Security update for isync | 2021-04-10T18:05:13Z | 2021-04-10T18:05:13Z |
| opensuse-su-2021:0532-1 | Security update for the Linux Kernel | 2021-04-10T06:14:38Z | 2021-04-10T06:14:38Z |
| opensuse-su-2021:0531-1 | Security update for gssproxy | 2021-04-09T22:05:50Z | 2021-04-09T22:05:50Z |
| opensuse-su-2021:0522-1 | Security update for fwupd | 2021-04-08T22:41:57Z | 2021-04-08T22:41:57Z |
| opensuse-su-2021:0521-1 | Security update for fwupdate | 2021-04-08T22:41:55Z | 2021-04-08T22:41:55Z |
| opensuse-su-2021:0520-1 | Security update for flatpak, libostree, xdg-desktop-portal, xdg-desktop-portal-gtk | 2021-04-08T22:41:52Z | 2021-04-08T22:41:52Z |
| opensuse-su-2021:0519-1 | Security update for hostapd | 2021-04-08T22:41:46Z | 2021-04-08T22:41:46Z |
| opensuse-su-2021:0516-1 | Security update for isync | 2021-04-07T13:21:23Z | 2021-04-07T13:21:23Z |
| opensuse-su-2021:0515-1 | Security update for chromium | 2021-04-07T08:05:14Z | 2021-04-07T08:05:14Z |
| opensuse-su-2021:0513-1 | Security update for chromium | 2021-04-05T17:01:58Z | 2021-04-05T17:01:58Z |
| opensuse-su-2021:0512-1 | Security update for OpenIPMI | 2021-04-04T22:06:01Z | 2021-04-04T22:06:01Z |
| opensuse-su-2021:0510-1 | Security update for curl | 2021-04-04T22:05:55Z | 2021-04-04T22:05:55Z |
| opensuse-su-2021:0496-1 | Security update for tomcat | 2021-04-02T07:22:05Z | 2021-04-02T07:22:05Z |
| opensuse-su-2021:0495-1 | Security update for ovmf | 2021-04-02T04:04:49Z | 2021-04-02T04:04:49Z |
| opensuse-su-2021:0494-1 | Security update for tar | 2021-04-02T04:04:45Z | 2021-04-02T04:04:45Z |
| opensuse-su-2021:0487-1 | Security update for MozillaFirefox | 2021-03-30T12:59:04Z | 2021-03-30T12:59:04Z |
| opensuse-su-2021:0485-1 | Security update for eclipse | 2021-03-30T01:21:41Z | 2021-03-30T01:21:41Z |
| opensuse-su-2021:0482-1 | Security update for evolution-data-server | 2021-03-27T19:04:57Z | 2021-03-27T19:04:57Z |
| opensuse-su-2021:0481-1 | Security update for zstd | 2021-03-27T19:04:47Z | 2021-03-27T19:04:47Z |
| opensuse-su-2021:0480-1 | Security update for go1.15 | 2021-03-27T17:04:43Z | 2021-03-27T17:04:43Z |
| opensuse-su-2021:0476-1 | Security update for openssl-1_1 | 2021-03-25T22:06:05Z | 2021-03-25T22:06:05Z |
| opensuse-su-2021:0474-1 | Security update for tor | 2021-03-25T11:07:12Z | 2021-03-25T11:07:12Z |
| opensuse-su-2021:0473-1 | Security update for hawk2 | 2021-03-25T08:11:45Z | 2021-03-25T08:11:45Z |
| opensuse-su-2021:0472-1 | Security update for libass | 2021-03-25T08:11:27Z | 2021-03-25T08:11:27Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-12870 | TOTOLINK EX1200T /boafrm/formDMZ文件缓冲区溢出漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12869 | WordPress CozyStay plugin反序列化漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12868 | WordPress CLEVER plugin路径遍历漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12867 | WordPress Civi Framework plugin跨站请求伪造漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12866 | WordPress Bunnys Print CSS plugin跨站请求伪造漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12865 | WordPress Broadstreet plugin跨站脚本漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12864 | WordPress Blogprise plugin文件包含漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12863 | WordPress Blogmine plugin文件包含漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12862 | WordPress Blogbyte plugi文件包含漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12861 | WordPress Backup and Staging by WP Time Capsule plugin跨站脚本漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12860 | WordPress Axle Demo Importer plugin文件上传漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12859 | WordPress Avaz plugin文件包含漏洞 | 2025-06-17 | 2025-06-18 |
| cnvd-2025-12858 | WordPress Arlo plugin路径遍历漏洞 | 2025-06-17 | 2025-06-18 |
| cnvd-2025-12857 | WordPress Apptha Slider Gallery plugin路径遍历漏洞 | 2025-06-17 | 2025-06-18 |
| cnvd-2025-12856 | WordPress Abandoned Cart Pro for WooCommerce plugin文件上传漏洞 | 2025-06-17 | 2025-06-18 |
| cnvd-2025-12814 | 用友网络科技股份有限公司YonBIP SQL注入漏洞 | 2024-01-30 | 2025-06-18 |
| cnvd-2025-12813 | 用友网络科技股份有限公司YonBIP任意文件读取漏洞 | 2024-01-30 | 2025-06-18 |
| cnvd-2025-12812 | 用友网络科技股份有限公司YonBIP文件上传漏洞 | 2024-01-30 | 2025-06-18 |
| cnvd-2025-12811 | 用友网络科技股份有限公司YonBIP代码执行漏洞 | 2024-01-30 | 2025-06-18 |
| cnvd-2025-12810 | Yonyou UFIDA ERP-NC /menu.jsp文件跨站脚本漏洞 | 2025-03-28 | 2025-06-18 |
| cnvd-2025-12809 | Yonyou UFIDA ERP-NC /login.jsp文件跨站脚本漏洞 | 2025-03-28 | 2025-06-18 |
| cnvd-2025-12808 | Yonyou UFIDA ERP-NC /help/top.jsp文件跨站脚本漏洞 | 2025-03-28 | 2025-06-18 |
| cnvd-2025-12807 | Yonyou UFIDA ERP-NC /help/systop.jsp文件跨站脚本漏洞 | 2025-03-28 | 2025-06-18 |
| cnvd-2025-12806 | 用友网络科技股份有限公司YonBIP路径遍历漏洞 | 2025-04-21 | 2025-06-18 |
| cnvd-2025-12805 | Yonyou Changjietong UFIDA CRM SQL注入漏洞 | 2025-05-20 | 2025-06-18 |
| cnvd-2025-12804 | Mattermost Mobile Apps信息泄露漏洞 | 2025-04-25 | 2025-06-18 |
| cnvd-2025-12803 | Mattermost信息泄露漏洞 | 2025-04-25 | 2025-06-18 |
| cnvd-2025-12802 | Mattermost存在未明漏洞 | 2025-05-12 | 2025-06-18 |
| cnvd-2025-12800 | Mattermost权限问题漏洞 | 2025-05-20 | 2025-06-18 |
| cnvd-2025-12783 | Mattermost存在未明漏洞 | 2025-05-20 | 2025-06-18 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-054 | Multiples vulnérabilités dans Google Chrome | 2018-01-25T00:00:00.000000 | 2018-01-25T00:00:00.000000 |
| certfr-2018-avi-053 | Multiples vulnérabilités dans les produits Apple | 2018-01-24T00:00:00.000000 | 2018-01-24T00:00:00.000000 |
| certfr-2018-avi-052 | Multiples vulnérabilités dans Mozilla Firefox | 2018-01-24T00:00:00.000000 | 2018-01-24T00:00:00.000000 |
| certfr-2018-avi-051 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-01-24T00:00:00.000000 | 2018-01-24T00:00:00.000000 |
| certfr-2018-avi-050 | Vulnérabilité dans Fortinet FortiOS | 2018-01-23T00:00:00.000000 | 2018-01-23T00:00:00.000000 |
| certfr-2018-avi-049 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-01-23T00:00:00.000000 | 2018-01-23T00:00:00.000000 |
| certfr-2018-avi-048 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-01-23T00:00:00.000000 | 2018-01-23T00:00:00.000000 |
| certfr-2018-avi-047 | Multiples vulnérabilités dans Moodle | 2018-01-22T00:00:00.000000 | 2018-01-22T00:00:00.000000 |
| certfr-2018-avi-046 | Multiples vulnérabilités dans Squid | 2018-01-22T00:00:00.000000 | 2018-01-22T00:00:00.000000 |
| certfr-2018-avi-045 | Multiples vulnérabilités dans F5 BIG-IP | 2018-01-22T00:00:00.000000 | 2018-01-22T00:00:00.000000 |
| certfr-2018-avi-044 | Multiples vulnérabilités dans les produits Moxa | 2018-01-19T00:00:00.000000 | 2018-01-19T00:00:00.000000 |
| certfr-2018-avi-043 | Vulnérabilité dans les commutateurs Lenovo et IBM | 2018-01-19T00:00:00.000000 | 2018-01-19T00:00:00.000000 |
| certfr-2018-avi-042 | Multiples vulnérabilités dans les produits Cisco | 2018-01-18T00:00:00.000000 | 2018-01-18T00:00:00.000000 |
| certfr-2018-avi-041 | Multiples vulnérabilités dans SCADA les produits Siemens | 2018-01-18T00:00:00.000000 | 2018-01-18T00:00:00.000000 |
| certfr-2018-avi-040 | Vulnérabilité dans le micrologiciel processeur pour Red Hat | 2018-01-18T00:00:00.000000 | 2018-01-18T00:00:00.000000 |
| certfr-2018-avi-039 | Multiples vulnérabilités dans Oracle Virtualization | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-038 | Multiples vulnérabilités dans Oracle Sun Systems Products Suite | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-037 | Multiples vulnérabilités dans Oracle MySQL | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-036 | Multiples vulnérabilités dans Oracle Java SE | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-035 | Multiples vulnérabilités dans Oracle Database Server | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-034 | Vulnérabilité dans WordPress | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-033 | Vulnérabilité dans Bind | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-032 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-031 | Multiples vulnérabilités dans Wireshark | 2018-01-12T00:00:00.000000 | 2018-01-12T00:00:00.000000 |
| certfr-2018-avi-030 | Vulnérabilité dans le microgiciel Intel pour Ubuntu | 2018-01-12T00:00:00.000000 | 2018-01-12T00:00:00.000000 |
| certfr-2018-avi-029 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-01-12T00:00:00.000000 | 2018-01-12T00:00:00.000000 |
| certfr-2018-avi-028 | Vulnérabilité dans le microgiciel Intel pour SUSE | 2018-01-12T00:00:00.000000 | 2018-01-12T00:00:00.000000 |
| certfr-2018-avi-027 | Multiples vulnérabilités dans les produits NVIDIA | 2018-01-11T00:00:00.000000 | 2018-01-11T00:00:00.000000 |
| certfr-2018-avi-026 | Multiples vulnérabilités dans les produits Juniper | 2018-01-11T00:00:00.000000 | 2018-01-11T00:00:00.000000 |
| certfr-2018-avi-025 | Multiples vulnérabilités dans les produits VMware | 2018-01-11T00:00:00.000000 | 2018-01-11T00:00:00.000000 |