Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-63003 |
7.5 (3.1)
|
WordPress North - Required Plugin plugin <= 1.4.2 - Lo… |
fuelthemes |
North - Required Plugin |
2025-12-09T14:52:26.448Z | 2026-01-20T14:28:17.912Z |
| CVE-2025-62993 |
4.3 (3.1)
|
WordPress Notification for Telegram plugin <= 3.4.7 - … |
rainafarai |
Notification for Telegram |
2025-12-09T14:52:25.243Z | 2026-01-20T14:28:17.900Z |
| CVE-2025-62997 |
5.3 (3.1)
|
WordPress WP EasyCart plugin <= 5.8.11 - Sensitive Dat… |
levelfourdevelopment |
WP EasyCart |
2025-12-09T14:52:26.001Z | 2026-01-20T14:28:17.899Z |
| CVE-2025-62987 |
6.5 (3.1)
|
WordPress Builderall Builder for WordPress plugin <= 3… |
Builderall |
Builderall Builder for WordPress |
2025-10-27T01:34:21.954Z | 2026-01-20T14:28:17.858Z |
| CVE-2025-62990 |
6.5 (3.1)
|
WordPress Livemesh Addons for Beaver Builder plugin <=… |
Livemesh |
Livemesh Addons for Beaver Builder |
2025-12-31T12:57:22.765Z | 2026-01-20T14:28:17.856Z |
| CVE-2025-62988 |
4.9 (3.1)
|
WordPress Slider Templates plugin <= 1.0.3 - Server Si… |
Codeless |
Slider Templates |
2025-10-27T01:34:22.355Z | 2026-01-20T14:28:17.849Z |
| CVE-2025-62991 |
6.5 (3.1)
|
WordPress Minamaze theme <= 1.10.1 - Cross Site Script… |
ThinkUpThemes |
Minamaze |
2025-12-31T11:51:57.121Z | 2026-01-20T14:28:17.812Z |
| CVE-2025-62989 |
5.9 (3.1)
|
WordPress Cooked plugin <= 1.11.2 - Cross Site Scripti… |
Boxy Studio |
Cooked |
2025-12-31T17:19:24.282Z | 2026-01-20T14:28:17.801Z |
| CVE-2025-62985 |
6.5 (3.1)
|
WordPress Simple Pull Quote plugin <= 1.6.3 - Cross Si… |
llamaman |
Simple Pull Quote |
2025-10-27T01:34:21.085Z | 2026-01-20T14:28:17.780Z |
| CVE-2025-62984 |
6.5 (3.1)
|
WordPress WP AdCenter plugin <= 2.6.1 - Cross Site Scr… |
WPeka |
WP AdCenter |
2025-10-27T01:34:20.717Z | 2026-01-20T14:28:17.622Z |
| CVE-2025-62983 |
6.5 (3.1)
|
WordPress Posts By Tag plugin <= 3.2.1 - Cross Site Sc… |
Sudar Muthu |
Posts By Tag |
2025-10-27T01:34:20.337Z | 2026-01-20T14:28:17.596Z |
| CVE-2025-62980 |
8.8 (3.1)
|
WordPress Persian Admnin Fonts plugin <= 4.1.03 - Brok… |
MDZ |
Persian Admnin Fonts |
2025-10-27T01:34:19.046Z | 2026-01-20T14:28:17.565Z |
| CVE-2025-62978 |
4.3 (3.1)
|
WordPress KiotViet Sync plugin <= 1.8.5 - Broken Acces… |
Kiotviet |
KiotViet Sync |
2025-10-27T01:34:18.281Z | 2026-01-20T14:28:17.559Z |
| CVE-2025-62964 |
8.1 (3.1)
|
WordPress MDTF plugin <= 1.3.4 - Broken Access Control… |
RealMag777 |
MDTF |
2025-10-27T01:34:12.925Z | 2026-01-20T14:28:17.548Z |
| CVE-2025-62979 |
5.3 (3.1)
|
WordPress ACF to REST API plugin <= 3.3.4 - Sensitive … |
airesvsg |
ACF to REST API |
2025-10-27T01:34:18.671Z | 2026-01-20T14:28:17.537Z |
| CVE-2025-62972 |
4.3 (3.1)
|
WordPress WebinarPress plugin <= 1.33.28 - Broken Acce… |
WPWebinarSystem |
WebinarPress |
2025-10-27T01:34:16.018Z | 2026-01-20T14:28:17.534Z |
| CVE-2025-62982 |
5.4 (3.1)
|
WordPress Dynamic User Directory plugin <= 2.3 - Cross… |
Sarah Giles |
Dynamic User Directory |
2025-10-27T01:34:19.955Z | 2026-01-20T14:28:17.530Z |
| CVE-2025-62976 |
5.3 (3.1)
|
WordPress Sendle Shipping plugin <= 6.02 - Broken Acce… |
Joovii |
Sendle Shipping |
2025-10-27T01:34:17.528Z | 2026-01-20T14:28:17.514Z |
| CVE-2025-62966 |
5.4 (3.1)
|
WordPress GoCache plugin <= 1.3.6 - Broken Access Cont… |
Apiki |
GoCache |
2025-10-27T01:34:13.698Z | 2026-01-20T14:28:17.503Z |
| CVE-2025-62977 |
5.3 (3.1)
|
WordPress 百度站长SEO合集(支持百度/神马/Bing/头条推送) plugin <= 2.1.3… |
沃之涛 |
百度站长SEO合集(支持百度/神马/Bing/头条推送) |
2025-10-27T01:34:17.906Z | 2026-01-20T14:28:17.501Z |
| CVE-2025-62974 |
6.5 (3.1)
|
WordPress Headline Analyzer plugin <= 1.3.7 - Cross Si… |
CoSchedule |
Headline Analyzer |
2025-10-27T01:34:16.779Z | 2026-01-20T14:28:17.495Z |
| CVE-2025-62981 |
4.7 (3.1)
|
WordPress WP Gravity Forms Zoho CRM and Bigin plugin <… |
CRM Perks |
WP Gravity Forms Zoho CRM and Bigin |
2025-10-27T01:34:19.548Z | 2026-01-20T14:28:17.492Z |
| CVE-2025-62973 |
5.3 (3.1)
|
WordPress BuddyForms plugin <= 2.9.0 - Broken Access C… |
Themekraft |
BuddyForms |
2025-10-27T01:34:16.394Z | 2026-01-20T14:28:17.491Z |
| CVE-2025-62971 |
6.5 (3.1)
|
WordPress Attesa Extra plugin <= 1.4.5 - Cross Site Sc… |
CrestaProject |
Attesa Extra |
2025-10-27T01:34:15.629Z | 2026-01-20T14:28:17.477Z |
| CVE-2025-62975 |
4.3 (3.1)
|
WordPress Raychat plugin <= 2.2.1 - Cross Site Request… |
raychat |
Raychat |
2025-10-27T01:34:17.146Z | 2026-01-20T14:28:17.476Z |
| CVE-2025-62958 |
8.8 (3.1)
|
WordPress Simple Content Templates for Blog Posts & Pa… |
Clifton Griffin |
Simple Content Templates for Blog Posts & Pages |
2025-10-27T01:34:11.386Z | 2026-01-20T14:28:17.476Z |
| CVE-2025-62969 |
6.5 (3.1)
|
WordPress NextMove Lite plugin <= 2.21.0 - Cross Site … |
XLPlugins |
NextMove Lite |
2025-10-27T01:34:14.860Z | 2026-01-20T14:28:17.472Z |
| CVE-2025-62963 |
6.5 (3.1)
|
WordPress Estatik plugin <= 4.1.13 - Cross Site Script… |
Estatik |
Estatik |
2025-10-27T01:34:12.534Z | 2026-01-20T14:28:17.469Z |
| CVE-2025-62959 |
9.1 (3.1)
|
WordPress Paid Videochat Turnkey Site plugin <= 7.3.22… |
videowhisper |
Paid Videochat Turnkey Site |
2025-10-27T01:34:11.771Z | 2026-01-20T14:28:17.462Z |
| CVE-2025-62956 |
8.8 (3.1)
|
WordPress Reloadly plugin <= 2.0.1 - Cross Site Reques… |
iseremet |
Reloadly |
2025-10-27T01:34:10.627Z | 2026-01-20T14:28:17.449Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-64350 |
3.8 (3.1)
|
WordPress Rank Math SEO plugin <= 1.0.252.1 - Broken A… |
Rank Math SEO |
Rank Math SEO |
2025-10-31T11:42:17.908Z | 2026-01-20T14:28:22.231Z |
| CVE-2025-64296 |
5.3 (3.1)
|
WordPress Facebook for WooCommerce plugin <= 3.5.7 - B… |
Facebook |
Facebook for WooCommerce |
2025-10-29T04:08:45.858Z | 2026-01-20T14:28:22.271Z |
| CVE-2025-64295 |
6.5 (3.1)
|
WordPress All In One SEO Pack plugin <= 4.8.6.1 - Sens… |
Syed Balkhi |
All In One SEO Pack |
2025-12-18T07:22:15.447Z | 2026-01-20T14:28:22.289Z |
| CVE-2025-64294 |
5.3 (3.1)
|
WordPress WP Snow Effect plugin <= 1.1.15 - Broken Acc… |
d3wp |
WP Snow Effect |
2025-11-03T13:09:39.398Z | 2026-01-20T14:28:22.200Z |
| CVE-2025-64293 |
7.6 (3.1)
|
WordPress 0 Day Analytics plugin <= 4.0.0 - SQL Inject… |
Golemiq |
0 Day Analytics |
2025-11-12T15:52:49.026Z | 2026-01-20T14:28:22.418Z |
| CVE-2025-64292 |
5.4 (3.1)
|
WordPress Analytics Germanized for Google Analytics pl… |
PascalBajorat |
Analytics Germanized for Google Analytics |
2025-11-13T09:24:32.781Z | 2026-01-20T14:28:22.131Z |
| CVE-2025-64290 |
4.3 (3.1)
|
WordPress Premmerce Product Search for WooCommerce plu… |
Premmerce |
Premmerce Product Search for WooCommerce |
2025-10-29T08:38:15.299Z | 2026-01-20T14:28:22.268Z |
| CVE-2025-64289 |
5.9 (3.1)
|
WordPress Premmerce Product Search for WooCommerce plu… |
Premmerce |
Premmerce Product Search for WooCommerce |
2025-10-29T08:38:14.838Z | 2026-01-20T14:28:22.275Z |
| CVE-2025-64288 |
4.3 (3.1)
|
WordPress Premmerce plugin <= 1.3.19 - Cross Site Requ… |
Premmerce |
Premmerce |
2025-10-29T08:38:14.400Z | 2026-01-20T14:28:22.041Z |
| CVE-2025-64287 |
8.1 (3.1)
|
WordPress Alloggio - Hotel Booking Theme theme <= 1.8 … |
Edge-Themes |
Alloggio - Hotel Booking |
2025-11-06T15:56:13.317Z | 2026-01-20T14:28:22.019Z |
| CVE-2025-64286 |
4.3 (3.1)
|
WordPress WP Rentals theme <= 3.13.1 - Cross Site Requ… |
WpEstate |
WP Rentals |
2025-10-29T08:38:13.920Z | 2026-01-20T14:28:21.779Z |
| CVE-2025-64285 |
5.4 (3.1)
|
WordPress Premmerce Wholesale Pricing for WooCommerce … |
Premmerce |
Premmerce Wholesale Pricing for WooCommerce |
2025-10-29T08:38:13.449Z | 2026-01-20T14:28:21.833Z |
| CVE-2025-64284 |
7.5 (3.1)
|
WordPress Majestic Support plugin <= 1.1.1 - Local Fil… |
Majestic Support |
Majestic Support |
2025-10-29T08:38:12.876Z | 2026-01-20T14:28:21.739Z |
| CVE-2025-64283 |
6.5 (3.1)
|
WordPress RTMKit plugin <= 1.6.7 - Insecure Direct Obj… |
Rometheme |
RTMKit |
2025-10-29T08:38:12.413Z | 2026-01-20T14:28:21.799Z |
| CVE-2025-64282 |
4.3 (3.1)
|
WordPress Radius Blocks plugin <= 2.2.1 - Insecure Dir… |
RadiusTheme |
Radius Blocks |
2025-12-18T16:18:54.393Z | 2026-01-20T14:28:21.561Z |
| CVE-2025-64277 |
5.3 (3.1)
|
WordPress ChatBot plugin <= 7.3.9 - Broken Access Cont… |
QuantumCloud |
ChatBot |
2025-11-13T09:24:32.345Z | 2026-01-20T14:28:21.020Z |
| CVE-2025-64276 |
6.5 (3.1)
|
WordPress Survey Maker plugin <= 5.1.9.4 - Broken Acce… |
Ays Pro |
Survey Maker |
2025-11-13T09:24:31.911Z | 2026-01-20T14:28:21.160Z |
| CVE-2025-64274 |
4.3 (3.1)
|
WordPress WPKoi Templates for Elementor plugin <= 3.4.… |
wpkoithemes |
WPKoi Templates for Elementor |
2025-11-13T09:24:31.061Z | 2026-01-20T14:28:21.083Z |
| CVE-2025-64273 |
7.5 (3.1)
|
WordPress Email marketing for WordPress by GetResponse… |
GetResponse |
Email marketing for WordPress by GetResponse Official |
2025-12-18T07:22:15.266Z | 2026-01-20T14:28:21.096Z |
| CVE-2025-64272 |
6.5 (3.1)
|
WordPress Email marketing for WordPress by GetResponse… |
GetResponse |
Email marketing for WordPress by GetResponse Official |
2025-12-18T07:22:15.080Z | 2026-01-20T14:28:21.293Z |
| CVE-2025-64270 |
6.5 (3.1)
|
WordPress Masteriyo - LMS plugin <= 2.0.3 - Sensitive … |
masteriyo |
Masteriyo - LMS |
2025-12-18T07:22:14.865Z | 2026-01-20T14:28:21.085Z |
| CVE-2025-64269 |
4.3 (3.1)
|
WordPress WooCommerce PDF Invoice Builder plugin <= 1.… |
EDGARROJAS |
WooCommerce PDF Invoice Builder |
2025-11-13T09:24:30.214Z | 2026-01-20T14:28:21.085Z |
| CVE-2025-64268 |
7.5 (3.1)
|
WordPress Timetics plugin <= 1.0.44 - Broken Access Co… |
Arraytics |
Timetics |
2025-12-18T07:22:14.683Z | 2026-01-20T14:28:21.327Z |
| CVE-2025-64267 |
4.3 (3.1)
|
WordPress WooCommerce Ultimate Points And Rewards plug… |
WPSwings |
WooCommerce Ultimate Points And Rewards |
2025-11-13T09:24:29.783Z | 2026-01-20T14:28:21.878Z |
| CVE-2025-64266 |
8.8 (3.1)
|
WordPress Booking and Rental Manager plugin <= 2.5.4 -… |
magepeopleteam |
Booking and Rental Manager |
2025-12-18T07:22:14.481Z | 2026-01-20T14:28:21.161Z |
| CVE-2025-64265 |
4.3 (3.1)
|
WordPress Frontend File Manager plugin <= 23.2 - Broke… |
N-Media |
Frontend File Manager |
2025-11-13T09:24:29.310Z | 2026-01-20T14:28:21.291Z |
| CVE-2025-64264 |
5.9 (3.1)
|
WordPress Popup addon for Ninja Forms plugin <= 3.5.1 … |
Aman |
Popup addon for Ninja Forms |
2025-11-13T09:24:28.871Z | 2026-01-20T14:28:21.081Z |
| CVE-2025-64263 |
5.4 (3.1)
|
WordPress WP Content Pilot plugin <= 2.1.7 - Broken Ac… |
PluginEver |
WP Content Pilot |
2025-11-13T09:24:28.383Z | 2026-01-20T14:28:21.298Z |
| CVE-2025-64262 |
6.5 (3.1)
|
WordPress Auto Prune Posts plugin <= 3.0.0 - Cross Sit… |
ramon fincken |
Auto Prune Posts |
2025-11-13T09:24:27.918Z | 2026-01-20T14:28:21.234Z |
| CVE-2025-64261 |
6.5 (3.1)
|
WordPress Appointment Booking Calendar plugin <= 1.3.9… |
codepeople |
Appointment Booking Calendar |
2025-11-13T09:24:27.476Z | 2026-01-20T14:28:21.721Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-64290 | Cross-Site Request Forgery (CSRF) vulnerability in Premmerce Premmerce Product Search for WooCommer… | 2025-10-29T09:15:46.917 | 2026-01-20T15:18:53.687 |
| fkie_cve-2025-64289 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-29T09:15:46.760 | 2026-01-20T15:18:53.563 |
| fkie_cve-2025-64288 | Cross-Site Request Forgery (CSRF) vulnerability in Premmerce Premmerce premmerce allows Cross Site … | 2025-10-29T09:15:46.257 | 2026-01-20T15:18:53.433 |
| fkie_cve-2025-64287 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:14.493 | 2026-01-20T15:18:53.307 |
| fkie_cve-2025-64286 | Cross-Site Request Forgery (CSRF) vulnerability in WpEstate WP Rentals wprentals allows Cross Site … | 2025-10-29T09:15:46.097 | 2026-01-20T15:18:53.180 |
| fkie_cve-2025-64285 | Missing Authorization vulnerability in Premmerce Premmerce Wholesale Pricing for WooCommerce premme… | 2025-10-29T09:15:45.573 | 2026-01-20T15:18:53.050 |
| fkie_cve-2025-64284 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-10-29T09:15:45.423 | 2026-01-20T15:18:52.927 |
| fkie_cve-2025-64283 | Authorization Bypass Through User-Controlled Key vulnerability in Rometheme RTMKit rometheme-for-el… | 2025-10-29T09:15:44.957 | 2026-01-20T15:18:52.803 |
| fkie_cve-2025-64282 | Authorization Bypass Through User-Controlled Key vulnerability in RadiusTheme Radius Blocks allows … | 2025-12-18T17:15:56.180 | 2026-01-20T15:18:52.707 |
| fkie_cve-2025-64277 | Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly C… | 2025-11-13T10:15:53.113 | 2026-01-20T15:18:52.577 |
| fkie_cve-2025-64276 | Missing Authorization vulnerability in Ays Pro Survey Maker survey-maker allows Exploiting Incorrec… | 2025-11-13T10:15:52.940 | 2026-01-20T15:18:52.447 |
| fkie_cve-2025-64274 | Missing Authorization vulnerability in wpkoithemes WPKoi Templates for Elementor wpkoi-templates-fo… | 2025-11-13T10:15:52.640 | 2026-01-20T15:18:52.173 |
| fkie_cve-2025-64273 | Missing Authorization vulnerability in GetResponse Email marketing for WordPress by GetResponse Off… | 2025-12-18T08:16:13.743 | 2026-01-20T15:18:52.043 |
| fkie_cve-2025-64272 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in GetResp… | 2025-12-18T08:16:13.617 | 2026-01-20T15:18:51.913 |
| fkie_cve-2025-64270 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in masteri… | 2025-12-18T08:16:13.483 | 2026-01-20T15:18:51.640 |
| fkie_cve-2025-64269 | Missing Authorization vulnerability in EDGARROJAS WooCommerce PDF Invoice Builder woo-pdf-invoice-b… | 2025-11-13T10:15:52.260 | 2026-01-20T15:18:51.470 |
| fkie_cve-2025-64268 | Missing Authorization vulnerability in Arraytics Timetics timetics allows Exploiting Incorrectly Co… | 2025-12-18T08:16:13.333 | 2026-01-20T15:18:51.337 |
| fkie_cve-2025-64267 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPSwing… | 2025-11-13T10:15:52.100 | 2026-01-20T15:18:51.203 |
| fkie_cve-2025-64266 | Deserialization of Untrusted Data vulnerability in magepeopleteam Booking and Rental Manager bookin… | 2025-12-18T08:16:13.180 | 2026-01-20T15:18:51.070 |
| fkie_cve-2025-64265 | Missing Authorization vulnerability in N-Media Frontend File Manager nmedia-user-file-uploader allo… | 2025-11-13T10:15:51.947 | 2026-01-20T15:18:50.940 |
| fkie_cve-2025-64264 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-13T10:15:51.780 | 2026-01-20T15:18:50.797 |
| fkie_cve-2025-64263 | Missing Authorization vulnerability in PluginEver WP Content Pilot wp-content-pilot allows Exploiti… | 2025-11-13T10:15:51.620 | 2026-01-20T15:18:50.667 |
| fkie_cve-2025-64262 | Cross-Site Request Forgery (CSRF) vulnerability in ramon fincken Auto Prune Posts auto-prune-posts … | 2025-11-13T10:15:51.467 | 2026-01-20T15:18:50.537 |
| fkie_cve-2025-64261 | Missing Authorization vulnerability in codepeople Appointment Booking Calendar appointment-booking-… | 2025-11-13T10:15:51.310 | 2026-01-20T15:18:50.400 |
| fkie_cve-2025-64260 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-18T08:16:13.053 | 2026-01-20T15:18:50.263 |
| fkie_cve-2025-64259 | Missing Authorization vulnerability in Jeroen Schmit Theater for WordPress theatre allows Exploitin… | 2025-11-13T10:15:51.140 | 2026-01-20T15:18:50.127 |
| fkie_cve-2025-64257 | Missing Authorization vulnerability in Joe Dolson My Tickets my-tickets allows Exploiting Incorrect… | 2025-12-09T16:18:14.963 | 2026-01-20T15:18:49.867 |
| fkie_cve-2025-64256 | Cross-Site Request Forgery (CSRF) vulnerability in PressTigers Simple Folio simple-folio allows Cro… | 2025-12-09T16:18:14.813 | 2026-01-20T15:18:49.737 |
| fkie_cve-2025-64255 | Missing Authorization vulnerability in Bowo Admin and Site Enhancements (ASE) admin-site-enhancemen… | 2025-12-09T16:18:14.673 | 2026-01-20T15:18:49.603 |
| fkie_cve-2025-64254 | Missing Authorization vulnerability in Ronald Huereca Photo Block photo-block allows Exploiting Inc… | 2025-12-09T16:18:14.540 | 2026-01-20T15:18:49.473 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-9hx9-v7r8-39wm |
4.3 (3.1)
|
The Stopwords for comments plugin for WordPress is vulnerable to Cross-Site Request Forgery in all … | 2026-01-14T09:31:21Z | 2026-01-14T09:31:21Z |
| ghsa-8v46-f2rh-pfmp |
5.3 (3.1)
|
The Aplazo Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data … | 2026-01-14T09:31:21Z | 2026-01-14T09:31:21Z |
| ghsa-28q4-mjmf-52qp |
5.3 (3.1)
|
The PayHere Payment Gateway Plugin for WooCommerce plugin for WordPress is vulnerable to unauthoriz… | 2026-01-14T09:31:21Z | 2026-01-14T09:31:21Z |
| ghsa-23pw-4pxq-3fgc |
4.4 (3.1)
|
The WMF Mobile Redirector plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the… | 2026-01-14T09:31:21Z | 2026-01-14T09:31:21Z |
| ghsa-h5wc-2fwq-9mfj |
4.3 (3.1)
|
The SocialChamp with WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in … | 2026-01-14T09:31:20Z | 2026-01-14T09:31:20Z |
| ghsa-fp95-6cmx-rg4m |
5.3 (3.1)
|
The Perfit WooCommerce plugin for WordPress is vulnerable to Missing Authorization in all versions … | 2026-01-14T09:31:20Z | 2026-01-14T09:31:20Z |
| ghsa-295q-9vrj-rf67 |
7.5 (3.1)
|
The Shipping Rate By Cities plugin for WordPress is vulnerable to SQL Injection via the 'city' para… | 2026-01-14T09:31:20Z | 2026-01-14T09:31:20Z |
| ghsa-gwvf-x6wq-72f4 |
4.9 (3.1)
|
The Flat Shipping Rate by City for WooCommerce plugin for WordPress is vulnerable to time-based SQL… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:25Z |
| ghsa-x473-jj9f-hvhq |
6.4 (3.1)
|
The SearchWiz plugin for WordPress is vulnerable to Stored Cross-Site Scripting via post titles in … | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-w328-w2wr-gprx |
4.4 (3.1)
|
The Real Post Slider Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-rf35-m962-38xm |
4.3 (3.1)
|
The Crush.pics Image Optimizer - Image Compression and Optimization plugin for WordPress is vulnera… | 2026-01-14T06:30:23Z | 2026-01-14T06:30:24Z |
| ghsa-qpqf-m7vq-xvqj |
4.4 (3.1)
|
The Kunze Law plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin's shortc… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-qfhp-vg9x-9692 |
4.3 (3.1)
|
The Responsive Accordion Slider plugin for WordPress is vulnerable to unauthorized modification of … | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-q24g-ccf2-j439 |
4.4 (3.1)
|
The Internal Link Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via adm… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-prxc-rrf8-qmgj |
4.3 (3.1)
|
The Sosh Share Buttons plugin for WordPress is vulnerable to Cross-Site Request Forgery in all vers… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-pcx6-7mc7-x44f |
9.8 (3.1)
|
The News and Blog Designer Bundle plugin for WordPress is vulnerable to Local File Inclusion in all… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-p9xq-hm6r-jch8 |
4.4 (3.1)
|
The Gotham Block Extra Light plugin for WordPress is vulnerable to Stored Cross-Site Scripting via … | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-j96m-g28p-cw7g |
6.1 (3.1)
|
The List Site Contributors plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-j6jc-2jv9-qpw8 |
7.2 (3.1)
|
The Name Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'name_… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-hhp5-wr44-w3j5 |
7.2 (3.1)
|
The AJS Footnotes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'note_l… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-9qp2-65pm-rg85 |
5.3 (3.1)
|
The LottieFiles – Lottie block for Gutenberg plugin for WordPress is vulnerable to Sensitive Inform… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-94q2-fvxr-659j |
5.4 (3.1)
|
The WP-CRM System plugin for WordPress is vulnerable to unauthorized access due to missing capabili… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-8c6w-f98w-x44w |
6.5 (3.1)
|
The Gotham Block Extra Light plugin for WordPress is vulnerable to Arbitrary File Read in all versi… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-7cf2-rc28-965v |
7.1 (3.1)
|
The DASHBOARD BUILDER – WordPress plugin for Charts and Graphs plugin for WordPress is vulnerable t… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-794w-vj4w-6rqq |
7.2 (3.1)
|
The GeekyBot — Generate AI Content Without Prompt, Chatbot and Lead Generation plugin for WordPress… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-4jgq-8v4m-g4qh |
5.3 (3.1)
|
The Netcash WooCommerce Payment Gateway plugin for WordPress is vulnerable to unauthorized modifica… | 2026-01-14T06:30:24Z | 2026-01-14T06:30:24Z |
| ghsa-h34g-p94m-h76q |
6.8 (3.1)
|
The VSCode extension for Spring CLI are vulnerable to command injection, resulting in command execu… | 2026-01-14T06:30:23Z | 2026-01-14T06:30:23Z |
| ghsa-gmf2-rvvq-h88q |
6.4 (3.1)
|
The SpiceForms Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via t… | 2026-01-14T06:30:23Z | 2026-01-14T06:30:23Z |
| ghsa-cwc7-q2q7-qmr2 |
7.2 (3.1)
|
The GetContentFromURL plugin for WordPress is vulnerable to Server-Side Request Forgery in all vers… | 2026-01-14T06:30:23Z | 2026-01-14T06:30:23Z |
| ghsa-8pqr-vvcp-m242 |
5.3 (3.1)
|
The PDF Resume Parser plugin for WordPress is vulnerable to Sensitive Information Exposure in all v… | 2026-01-14T06:30:23Z | 2026-01-14T06:30:23Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-28424 | zenml v0.55.4 was discovered to contain an arbitrary file upload vulnerability in the loa… | 2024-03-08T06:02:46.347176Z |
| gsd-2024-28463 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.346868Z |
| gsd-2024-28386 | An issue in Home-Made.io fastmagsync v.1.7.51 and before allows a remote attacker to exec… | 2024-03-08T06:02:46.346158Z |
| gsd-2024-28639 | Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0… | 2024-03-08T06:02:46.345914Z |
| gsd-2024-28636 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.345669Z |
| gsd-2024-28427 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.345428Z |
| gsd-2024-28300 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.345170Z |
| gsd-2024-28465 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.344928Z |
| gsd-2024-28405 | SEMCMS 4.8 is vulnerable to Incorrect Access Control. The code installs SEMCMS_Funtion.ph… | 2024-03-08T06:02:46.344095Z |
| gsd-2024-28716 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.343444Z |
| gsd-2024-28646 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.341999Z |
| gsd-2024-28330 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.341287Z |
| gsd-2024-28309 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.341055Z |
| gsd-2024-28597 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.340732Z |
| gsd-2024-28363 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.339843Z |
| gsd-2024-28244 | KaTeX is a JavaScript library for TeX math rendering on the web. KaTeX users who render u… | 2024-03-08T06:02:46.339534Z |
| gsd-2024-28294 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.338788Z |
| gsd-2024-28561 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.338536Z |
| gsd-2024-28305 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.338291Z |
| gsd-2024-28655 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.338060Z |
| gsd-2024-28254 | OpenMetadata is a unified platform for discovery, observability, and governance powered b… | 2024-03-08T06:02:46.337825Z |
| gsd-2024-28326 | Incorrect Access Control in Asus RT-N12+ B1 routers allows local attackers to obtain root… | 2024-03-08T06:02:46.337577Z |
| gsd-2024-28360 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.337271Z |
| gsd-2024-28686 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.337009Z |
| gsd-2024-28480 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.335922Z |
| gsd-2024-28348 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.335577Z |
| gsd-2024-28659 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.335382Z |
| gsd-2024-28322 | SQL Injection vulnerability in /event-management-master/backend/register.php in PuneethRe… | 2024-03-08T06:02:46.335184Z |
| gsd-2024-28276 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.334917Z |
| gsd-2024-28284 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.334717Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-187871 | Malicious code in loopback-tethys-airbnb-typeorm (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187870 | Malicious code in loopback-remark-cordelia-commitlint (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187869 | Malicious code in loopback-magellan-foundation-csrf (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187868 | Malicious code in loop-webdriverio-vulcan-proxima (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187867 | Malicious code in loop-wasat-chai-equinox (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187866 | Malicious code in loop-quito-hyperion-centauri (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187865 | Malicious code in loop-mysql-jwt-jekyll (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187864 | Malicious code in loop-cosmos-perturbation-andromeda (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187863 | Malicious code in loop-cosmicray-repository-entanglement (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187862 | Malicious code in long-zero-rain-daemon-refactor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187861 | Malicious code in long-sigma-authenticate-alpha-analyze (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187860 | Malicious code in long-nu-new-nu-cache (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187859 | Malicious code in long-new-report-analyze-permission (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187858 | Malicious code in long-module-report-abstract-alpha (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187857 | Malicious code in long-final-minify-load-tree (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187856 | Malicious code in long-class-report-grep-catch (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187855 | Malicious code in long-boolean-table-compress-tree (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187854 | Malicious code in long-alpha-code-sun-table (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187853 | Malicious code in loglevel-testcafe-spectron-leda (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187852 | Malicious code in loglevel-selenium-process-mongoose (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187851 | Malicious code in loglevel-meteor-mui-version (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187850 | Malicious code in loglevel-hyperion-bootstrap-mysql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187849 | Malicious code in loglevel-exobiology-eslint-config-rate-limiter (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187848 | Malicious code in loglevel-event-resonance-umbriel (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187847 | Malicious code in log-slow-debug-zero-report (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187846 | Malicious code in log-info-good-promise-user (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187845 | Malicious code in log-delta-daemon-finally-minify (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187844 | Malicious code in log-cron-execute-small-signal (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187843 | Malicious code in log-byte-cluster-uglify-error (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187842 | Malicious code in local-ursa-karma-mysql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-3033 | Mattermost: Mehrere Schwachstellen ermöglichen nicht spezifizierte Angriffe | 2023-11-29T23:00:00.000+00:00 | 2023-11-29T23:00:00.000+00:00 |
| wid-sec-w-2023-3029 | Progress Software MOVEit: Mehrere Schwachstellen | 2023-11-29T23:00:00.000+00:00 | 2023-11-29T23:00:00.000+00:00 |
| wid-sec-w-2023-3028 | Keycloak: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-11-29T23:00:00.000+00:00 | 2023-11-29T23:00:00.000+00:00 |
| wid-sec-w-2023-3027 | Drupal: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-11-29T23:00:00.000+00:00 | 2023-11-29T23:00:00.000+00:00 |
| wid-sec-w-2023-3026 | Trellix Enterprise Security Manager: Mehrere Schwachstellen | 2023-11-28T23:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2023-3023 | Apache Superset: Mehrere Schwachstellen | 2023-11-28T23:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2023-3021 | Joomla: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-11-28T23:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2023-3014 | SolarWinds Platform: Schwachstelle ermöglicht Codeausführung | 2023-11-27T23:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2023-2985 | ownCloud: Mehrere Schwachstellen | 2023-11-21T23:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2023-2895 | Microsoft Entwicklerwerkzeuge: Mehrere Schwachstellen | 2023-11-14T23:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2023-2606 | Microsoft Windows und Microsoft Windows Server: Mehrere Schwachstellen | 2023-10-10T22:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2023-2594 | MediaWiki: Mehre Schwachstellen | 2023-10-08T22:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2023-1764 | Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-07-17T22:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2022-2250 | Xen: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-12-06T23:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2023-3017 | Zyxel Firewall: Mehrere Schwachstellen | 2023-11-27T23:00:00.000+00:00 | 2023-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-3016 | Apache Nifi: Schwachstelle ermöglicht Cross-Site Scripting | 2023-11-27T23:00:00.000+00:00 | 2023-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-3015 | tribe29 checkmk: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-11-27T23:00:00.000+00:00 | 2023-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-3013 | IBM Security Guardium: Schwachstelle ermöglicht Codeausführung | 2023-11-27T23:00:00.000+00:00 | 2023-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-2763 | Mattermost: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2023-10-29T23:00:00.000+00:00 | 2023-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-2163 | Kubernetes: Mehrere Schwachstellen | 2023-08-23T22:00:00.000+00:00 | 2023-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-3010 | Apache Superset: Mehrere Schwachstellen | 2023-11-26T23:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| wid-sec-w-2023-3008 | Eaton Power Distribution Unit: Schwachstelle ermöglicht Privilegieneskalation | 2023-11-26T23:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| wid-sec-w-2023-3006 | OTRS: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-11-26T23:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| wid-sec-w-2023-3003 | WithSecure Endpoint Protection: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-11-26T23:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| wid-sec-w-2023-2830 | poppler: Schwachstelle ermöglicht Code Ausführung | 2019-03-10T23:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| wid-sec-w-2023-2784 | poppler: Mehrere Schwachstellen ermöglichen Denial of Service | 2019-03-03T23:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| wid-sec-w-2023-1232 | Google Chrome: Mehrere Schwachstellen | 2023-05-16T22:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| wid-sec-w-2023-0964 | Red Hat Enterprise Linux (openvswitch): Schwachstelle ermöglicht Denial of Service | 2023-04-13T22:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| wid-sec-w-2023-0315 | Red Hat Enterprise Linux (OpenvSwitch): Mehrere Schwachstellen | 2023-02-08T23:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| wid-sec-w-2023-0062 | Google Chrome und Microsoft Edge: Mehrere Schwachstellen | 2023-01-10T23:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2011:0856 | Red Hat Security Advisory: java-1.6.0-openjdk security update | 2011-06-08T14:30:00+00:00 | 2026-01-13T21:06:29+00:00 |
| rhsa-2011:0677 | Red Hat Security Advisory: openssl security, bug fix, and enhancement update | 2011-05-19T11:11:00+00:00 | 2026-01-13T21:06:28+00:00 |
| rhsa-2011:0860 | Red Hat Security Advisory: java-1.6.0-sun security update | 2011-06-08T15:18:00+00:00 | 2026-01-13T21:06:26+00:00 |
| rhsa-2011:0507 | Red Hat Security Advisory: apr security update | 2011-05-11T22:23:00+00:00 | 2026-01-13T21:06:25+00:00 |
| rhsa-2011:0474 | Red Hat Security Advisory: thunderbird security update | 2011-04-29T03:15:00+00:00 | 2026-01-13T21:06:23+00:00 |
| rhsa-2011:0473 | Red Hat Security Advisory: seamonkey security update | 2011-04-29T02:57:00+00:00 | 2026-01-13T21:06:22+00:00 |
| rhsa-2011:0471 | Red Hat Security Advisory: firefox security update | 2011-04-29T03:14:00+00:00 | 2026-01-13T21:06:22+00:00 |
| rhsa-2011:0447 | Red Hat Security Advisory: krb5 security update | 2011-04-14T18:11:00+00:00 | 2026-01-13T21:06:22+00:00 |
| rhsa-2011:0432 | Red Hat Security Advisory: xorg-x11 security update | 2011-04-11T20:18:00+00:00 | 2026-01-13T21:06:21+00:00 |
| rhsa-2011:0423 | Red Hat Security Advisory: postfix security update | 2011-04-06T23:08:00+00:00 | 2026-01-13T21:06:20+00:00 |
| rhsa-2011:0422 | Red Hat Security Advisory: postfix security update | 2011-04-06T22:56:00+00:00 | 2026-01-13T21:06:19+00:00 |
| rhsa-2011:0421 | Red Hat Security Advisory: kernel security and bug fix update | 2011-04-08T02:53:00+00:00 | 2026-01-13T21:06:19+00:00 |
| rhsa-2011:0345 | Red Hat Security Advisory: qemu-kvm security update | 2011-03-10T20:10:00+00:00 | 2026-01-13T21:06:18+00:00 |
| rhsa-2011:0313 | Red Hat Security Advisory: seamonkey security update | 2011-03-02T01:28:00+00:00 | 2026-01-13T21:06:16+00:00 |
| rhsa-2011:0310 | Red Hat Security Advisory: firefox security and bug fix update | 2011-03-02T01:06:00+00:00 | 2026-01-13T21:06:16+00:00 |
| rhsa-2011:0293 | Red Hat Security Advisory: Red Hat Directory Server security update | 2011-02-22T17:43:00+00:00 | 2026-01-13T21:06:13+00:00 |
| rhsa-2010:0771 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2010-10-14T15:26:00+00:00 | 2026-01-13T21:06:12+00:00 |
| rhsa-2010:0521 | Red Hat Security Advisory: gfs-kmod security update | 2010-07-08T19:59:00+00:00 | 2026-01-13T21:06:11+00:00 |
| rhsa-2010:0401 | Red Hat Security Advisory: tetex security update | 2010-05-06T19:05:00+00:00 | 2026-01-13T21:06:08+00:00 |
| rhsa-2010:0400 | Red Hat Security Advisory: tetex security update | 2010-05-06T19:03:00+00:00 | 2026-01-13T21:06:06+00:00 |
| rhsa-2010:0399 | Red Hat Security Advisory: tetex security update | 2010-05-06T18:53:00+00:00 | 2026-01-13T21:06:06+00:00 |
| rhsa-2010:0398 | Red Hat Security Advisory: kernel security and bug fix update | 2010-05-06T18:18:00+00:00 | 2026-01-13T21:06:05+00:00 |
| rhsa-2010:0380 | Red Hat Security Advisory: kernel security and bug fix update | 2010-04-27T12:46:00+00:00 | 2026-01-13T21:06:05+00:00 |
| rhsa-2010:0347 | Red Hat Security Advisory: nss_db security update | 2010-04-13T21:21:00+00:00 | 2026-01-13T21:06:03+00:00 |
| rhsa-2010:0331 | Red Hat Security Advisory: GFS-kernel security and bug fix update | 2010-03-30T16:52:00+00:00 | 2026-01-13T21:06:03+00:00 |
| rhsa-2010:0329 | Red Hat Security Advisory: curl security update | 2010-03-30T17:19:00+00:00 | 2026-01-13T21:06:02+00:00 |
| rhsa-2010:0291 | Red Hat Security Advisory: gfs-kmod security, bug fix and enhancement update | 2010-03-29T12:00:00+00:00 | 2026-01-13T21:06:00+00:00 |
| rhsa-2010:0140 | Red Hat Security Advisory: pango security update | 2010-03-15T23:02:00+00:00 | 2026-01-13T21:05:55+00:00 |
| rhsa-2014:1940 | Red Hat Security Advisory: mariadb-galera security update | 2014-12-02T16:59:47+00:00 | 2026-01-13T21:05:21+00:00 |
| rhsa-2014:1937 | Red Hat Security Advisory: mariadb-galera security update | 2014-12-02T16:48:44+00:00 | 2026-01-13T21:05:21+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-28913 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-18T07:00:00.000Z |
| msrc_cve-2024-28912 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-18T07:00:00.000Z |
| msrc_cve-2024-28911 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-18T07:00:00.000Z |
| msrc_cve-2024-28910 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-18T07:00:00.000Z |
| msrc_cve-2024-28909 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-18T07:00:00.000Z |
| msrc_cve-2024-28908 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-18T07:00:00.000Z |
| msrc_cve-2024-28906 | Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-18T07:00:00.000Z |
| msrc_cve-2024-21409 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-18T07:00:00.000Z |
| msrc_cve-2024-26257 | Microsoft Excel Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-16T07:00:00.000Z |
| msrc_cve-2024-26190 | Microsoft QUIC Denial of Service Vulnerability | 2024-03-12T07:00:00.000Z | 2024-04-16T07:00:00.000Z |
| msrc_cve-2024-21392 | .NET and Visual Studio Denial of Service Vulnerability | 2024-03-12T07:00:00.000Z | 2024-04-16T07:00:00.000Z |
| msrc_cve-2024-0057 | NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability | 2024-01-09T08:00:00.000Z | 2024-04-16T07:00:00.000Z |
| msrc_cve-2023-42821 | github.com/gomarkdown/markdown Out-of-bounds Read while parsing citations | 2023-09-01T00:00:00.000Z | 2024-04-15T00:00:00.000Z |
| msrc_cve-2022-2995 | Incorrect handling of the supplementary groups in the CRI-O container engine might lead to sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to execute a binary code in that container. | 2022-09-02T00:00:00.000Z | 2024-04-15T00:00:00.000Z |
| msrc_cve-2022-27651 | A flaw was found in buildah where containers were incorrectly started with non-empty default permissions. A bug was found in Moby (Docker Engine) where containers were incorrectly started with non-empty inheritable Linux process capabilities enabling an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs. This has the potential to impact confidentiality and integrity. | 2022-04-02T00:00:00.000Z | 2024-04-15T00:00:00.000Z |
| msrc_cve-2022-27649 | A flaw was found in Podman where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby (Docker Engine) where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs. | 2022-04-02T00:00:00.000Z | 2024-04-15T00:00:00.000Z |
| msrc_cve-2021-3636 | It was found in OpenShift before version 4.8 that the generated certificate for the in-cluster Service CA incorrectly included additional certificates. The Service CA is automatically mounted into all pods allowing them to safely connect to trusted in-cluster services that present certificates signed by the trusted Service CA. The incorrect inclusion of additional CAs in this certificate would allow an attacker that compromises any of the additional CAs to masquerade as a trusted in-cluster service. | 2021-07-02T00:00:00.000Z | 2024-04-15T00:00:00.000Z |
| msrc_cve-2021-3602 | An information disclosure flaw was found in Buildah when building containers using chroot isolation. Running processes in container builds (e.g. Dockerfile RUN commands) can access environment variables from parent and grandparent processes. When run in a container in a CI/CD environment environment variables may include sensitive information that was shared with the container in order to be used only by Buildah itself (e.g. container registry credentials). | 2022-03-02T00:00:00.000Z | 2024-04-15T00:00:00.000Z |
| msrc_cve-2024-29055 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-11T07:00:00.000Z |
| msrc_cve-2024-29054 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-11T07:00:00.000Z |
| msrc_cve-2024-29053 | Microsoft Defender for IoT Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-11T07:00:00.000Z |
| msrc_cve-2024-26234 | Proxy Driver Spoofing Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-11T07:00:00.000Z |
| msrc_cve-2024-21324 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-11T07:00:00.000Z |
| msrc_cve-2024-21323 | Microsoft Defender for IoT Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-11T07:00:00.000Z |
| msrc_cve-2024-21322 | Microsoft Defender for IoT Remote Code Execution Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-11T07:00:00.000Z |
| msrc_cve-2024-29993 | Azure CycleCloud Elevation of Privilege Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-09T07:00:00.000Z |
| msrc_cve-2024-29992 | Azure Identity Library for .NET Information Disclosure Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-09T07:00:00.000Z |
| msrc_cve-2024-29990 | Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-09T07:00:00.000Z |
| msrc_cve-2024-29989 | Azure Monitor Agent Elevation of Privilege Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-09T07:00:00.000Z |
| msrc_cve-2024-29988 | SmartScreen Prompt Security Feature Bypass Vulnerability | 2024-04-09T07:00:00.000Z | 2024-04-09T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201702-0368 | IBM Security Access Manager for Web is vulnerable to cross-site request forgery which cou… | 2025-04-20T23:23:53.040000Z |
| var-201702-0681 | An issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 an… | 2025-04-20T23:23:52.775000Z |
| var-201706-0461 | A Server-Side Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Manage… | 2025-04-20T23:23:52.740000Z |
| var-201706-0462 | A Cross-Site Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed… | 2025-04-20T23:23:49.162000Z |
| var-201706-0464 | An Information Exposure issue was discovered in Belden Hirschmann GECKO Lite Managed swit… | 2025-04-20T23:23:49.129000Z |
| var-201702-0784 | A vulnerability in the Start Before Logon (SBL) module of Cisco AnyConnect Secure Mobilit… | 2025-04-20T23:23:49.090000Z |
| var-201703-0719 | Code injection vulnerability in Trend Micro Maximum Security 11.0 (and earlier), Internet… | 2025-04-20T23:23:48.448000Z |
| var-201703-0887 | An Access-Control Filtering Mechanisms Bypass vulnerability in certain access-control fil… | 2025-04-20T23:23:48.414000Z |
| var-201703-1055 | Keekoon KK002 devices 1.8.12 HD have a Cross Site Request Forgery Vulnerability affecting… | 2025-04-20T23:23:48.275000Z |
| var-201704-0009 | Buffer overflow in QuickTime before 7.7.1 for Windows allows remote attackers to execute … | 2025-04-20T23:23:47.853000Z |
| var-201704-0051 | SecEmailUI in Samsung Galaxy S6 does not sanitize HTML email content, allows remote attac… | 2025-04-20T23:23:47.781000Z |
| var-201704-0156 | Huawei PC client software HiSuite 4.0.5.300_OVE has an information leak vulnerability; an… | 2025-04-20T23:23:47.657000Z |
| var-201704-0345 | The TMM SSO plugin in F5 BIG-IP APM 12.0.0 - 12.1.1, 11.6.0 - 11.6.1 HF1, 11.5.4 - 11.5.4… | 2025-04-20T23:23:47.536000Z |
| var-201704-0429 | Gynoii has a password of guest for the backdoor guest account and a password of 12345 for… | 2025-04-20T23:23:47.486000Z |
| var-201704-0471 | Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C0… | 2025-04-20T23:23:47.430000Z |
| var-201704-0492 | ION memory management module in Huawei P9 phones with software EVA-AL10C00B192 and earlie… | 2025-04-20T23:23:47.392000Z |
| var-201704-0973 | An exploitable information disclosure vulnerability exists in the Web Application functio… | 2025-04-20T23:23:46.961000Z |
| var-201704-1015 | A DLL Hijacking issue was discovered in Schneider Electric Interactive Graphical SCADA Sy… | 2025-04-20T23:23:46.920000Z |
| var-201704-1330 | A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS X… | 2025-04-20T23:23:46.795000Z |
| var-201704-1519 | Use-after-free vulnerability in the mg_http_multipart_wait_for_boundary function in mongo… | 2025-04-20T23:23:46.537000Z |
| var-201704-1540 | Moxa MXView 2.8 allows remote attackers to read web server's private key file, no access … | 2025-04-20T23:23:46.498000Z |
| var-201705-1684 | Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and late… | 2025-04-20T23:23:46.334000Z |
| var-201705-2354 | The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM, AFM, APM, ASM, GTM, Link … | 2025-04-20T23:23:46.281000Z |
| var-201705-3257 | A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench (… | 2025-04-20T23:23:46.138000Z |
| var-201705-3654 | A vulnerability in the logging configuration of Secure Sockets Layer (SSL) policies for C… | 2025-04-20T23:23:45.885000Z |
| var-201705-3740 | A "Cisco Firepower Threat Defense 6.0.0 through 6.2.2 and Cisco ASA with FirePOWER Module… | 2025-04-20T23:23:45.789000Z |
| var-201704-0279 | A vulnerability in the detection engine parsing of Pragmatic General Multicast (PGM) prot… | 2025-04-20T23:23:45.760000Z |
| var-201705-3885 | Aries QWR-1104 Wireless-N Router with Firmware Version WRC.253.2.0913 has XSS on the Wire… | 2025-04-20T23:23:45.647000Z |
| var-201705-4032 | Secure Bytes Cisco Configuration Manager, as bundled in Secure Bytes Secure Cisco Auditor… | 2025-04-20T23:23:45.594000Z |
| var-201706-0095 | Buffer overflow in I-O DATA DEVICE TS-WRLP firmware version 1.01.02 and earlier and TS-WR… | 2025-04-20T23:23:45.412000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2023:0853-1 | Security update for oracleasm | 2023-03-21T12:53:50Z | 2023-03-21T12:53:50Z |
| suse-su-2023:0852-1 | Security update for the Linux Kernel | 2023-03-21T12:36:10Z | 2023-03-21T12:36:10Z |
| suse-su-2023:0848-1 | Security update for xen | 2023-03-21T12:28:42Z | 2023-03-21T12:28:42Z |
| suse-su-2023:0847-1 | Security update for xen | 2023-03-21T12:28:07Z | 2023-03-21T12:28:07Z |
| suse-su-2023:0846-1 | Security update for xen | 2023-03-21T12:27:29Z | 2023-03-21T12:27:29Z |
| suse-su-2023:0845-1 | Security update for xen | 2023-03-21T12:25:46Z | 2023-03-21T12:25:46Z |
| suse-su-2023:0844-1 | Security update for openstack-cinder, openstack-glance, openstack-neutron-gbp, openstack-nova, python-oslo.utils | 2023-03-21T12:25:22Z | 2023-03-21T12:25:22Z |
| suse-su-2023:0843-1 | Security update for oracleasm | 2023-03-21T11:20:57Z | 2023-03-21T11:20:57Z |
| suse-su-2023:0841-1 | Security update for dpdk | 2023-03-21T09:43:45Z | 2023-03-21T09:43:45Z |
| suse-su-2023:0840-1 | Security update for qemu | 2023-03-21T08:54:28Z | 2023-03-21T08:54:28Z |
| suse-su-2023:0839-1 | Security update for python-cffi | 2023-03-21T08:16:33Z | 2023-03-21T08:16:33Z |
| suse-su-2023:0838-1 | Security update for python-cffi | 2023-03-21T08:15:45Z | 2023-03-21T08:15:45Z |
| suse-su-2023:0837-1 | Security update for python-cffi | 2023-03-21T07:59:05Z | 2023-03-21T07:59:05Z |
| suse-su-2023:0836-1 | Security update for dpdk | 2023-03-21T07:21:34Z | 2023-03-21T07:21:34Z |
| suse-su-2023:0835-1 | Security update for MozillaFirefox | 2023-03-21T06:37:20Z | 2023-03-21T06:37:20Z |
| suse-su-2023:0833-1 | Security update for dpdk | 2023-03-20T15:48:54Z | 2023-03-20T15:48:54Z |
| suse-su-2023:0821-1 | Security update for grafana | 2023-03-20T15:35:12Z | 2023-03-20T15:35:12Z |
| suse-su-2023:0812-1 | Security update for SUSE Manager Client Tools | 2023-03-20T15:32:26Z | 2023-03-20T15:32:26Z |
| suse-su-2023:0811-1 | Security update for SUSE Manager Client Tools | 2023-03-20T15:29:15Z | 2023-03-20T15:29:15Z |
| suse-su-2023:0749-2 | Security update for the Linux Kernel | 2023-03-20T13:27:20Z | 2023-03-20T13:27:20Z |
| suse-su-2023:0749-1 | Security update for the Linux Kernel | 2023-03-20T13:27:20Z | 2023-03-20T13:27:20Z |
| suse-su-2023:0804-1 | Security update for drbd | 2023-03-20T10:27:37Z | 2023-03-20T10:27:37Z |
| suse-su-2023:0803-1 | Security update for apache2 | 2023-03-20T10:13:24Z | 2023-03-20T10:13:24Z |
| suse-su-2023:0801-1 | Security update for drbd | 2023-03-17T15:04:42Z | 2023-03-17T15:04:42Z |
| suse-su-2023:0800-1 | Security update for drbd | 2023-03-17T15:03:55Z | 2023-03-17T15:03:55Z |
| suse-su-2023:0799-1 | Security update for apache2 | 2023-03-17T13:40:53Z | 2023-03-17T13:40:53Z |
| suse-su-2023:0797-1 | Security update for oracleasm | 2023-03-17T12:25:07Z | 2023-03-17T12:25:07Z |
| suse-su-2023:0795-1 | Security update for docker | 2023-03-17T08:13:30Z | 2023-03-17T08:13:30Z |
| suse-su-2023:0794-1 | Security update for python-PyJWT | 2023-03-17T07:42:24Z | 2023-03-17T07:42:24Z |
| suse-su-2023:0781-1 | Security update for vim | 2023-03-16T18:07:19Z | 2023-03-16T18:07:19Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2021:0097-1 | Security update for tcmu-runner | 2021-01-17T09:28:21Z | 2021-01-17T09:28:21Z |
| opensuse-su-2021:0096-1 | Security update for slurm_18_08 | 2021-01-17T09:27:54Z | 2021-01-17T09:27:54Z |
| opensuse-su-2021:0093-1 | Security update for MozillaThunderbird | 2021-01-16T18:54:46Z | 2021-01-16T18:54:46Z |
| opensuse-su-2021:0091-1 | Security update for vlc | 2021-01-16T18:54:28Z | 2021-01-16T18:54:28Z |
| opensuse-su-2021:0089-1 | Security update for open-iscsi | 2021-01-16T18:54:18Z | 2021-01-16T18:54:18Z |
| opensuse-su-2021:0084-1 | Security update for viewvc | 2021-01-16T11:24:54Z | 2021-01-16T11:24:54Z |
| opensuse-su-2021:0082-1 | Security update for nodejs10 | 2021-01-16T11:24:40Z | 2021-01-16T11:24:40Z |
| opensuse-su-2021:0081-1 | Security update for tomcat | 2021-01-16T11:24:32Z | 2021-01-16T11:24:32Z |
| opensuse-su-2021:0079-1 | Security update for ceph | 2021-01-16T11:24:18Z | 2021-01-16T11:24:18Z |
| opensuse-su-2021:0078-1 | Security update for python-jupyter_notebook | 2021-01-16T11:24:06Z | 2021-01-16T11:24:06Z |
| opensuse-su-2021:0076-1 | Security update for vlc | 2021-01-16T10:06:30Z | 2021-01-16T10:06:30Z |
| opensuse-su-2021:0075-1 | Security update for the Linux Kernel | 2021-01-16T10:06:22Z | 2021-01-16T10:06:22Z |
| opensuse-su-2021:0074-1 | Security update for hawk2 | 2021-01-16T10:05:46Z | 2021-01-16T10:05:46Z |
| opensuse-su-2021:0073-1 | Security update for crmsh | 2021-01-16T10:05:41Z | 2021-01-16T10:05:41Z |
| opensuse-su-2021:0072-1 | Security update for dovecot23 | 2021-01-16T10:05:36Z | 2021-01-16T10:05:36Z |
| opensuse-su-2021:0066-1 | Security update for nodejs14 | 2021-01-15T09:23:32Z | 2021-01-15T09:23:32Z |
| opensuse-su-2021:0065-1 | Security update for nodejs10 | 2021-01-15T09:23:23Z | 2021-01-15T09:23:23Z |
| opensuse-su-2021:0064-1 | Security update for nodejs12 | 2021-01-15T09:23:17Z | 2021-01-15T09:23:17Z |
| opensuse-su-2021:0063-1 | Security update for MozillaFirefox | 2021-01-15T08:20:08Z | 2021-01-15T08:20:08Z |
| opensuse-su-2021:0060-1 | Security update for the Linux Kernel | 2021-01-14T21:44:26Z | 2021-01-14T21:44:26Z |
| opensuse-su-2021:0059-1 | Security update for libzypp, zypper | 2021-01-14T16:11:48Z | 2021-01-14T16:11:48Z |
| opensuse-su-2021:0058-1 | Security update for cobbler | 2021-01-14T15:26:47Z | 2021-01-14T15:26:47Z |
| opensuse-su-2021:0056-1 | Security update for MozillaFirefox | 2021-01-13T17:12:59Z | 2021-01-13T17:12:59Z |
| opensuse-su-2021:0055-1 | Security update for crmsh | 2021-01-13T17:12:42Z | 2021-01-13T17:12:42Z |
| opensuse-su-2021:0054-1 | Security update for hawk2 | 2021-01-13T17:12:36Z | 2021-01-13T17:12:36Z |
| opensuse-su-2021:0048-1 | Security update for chromium | 2021-01-11T13:25:15Z | 2021-01-11T13:25:15Z |
| opensuse-su-2021:0047-1 | Security update for chromium | 2021-01-11T13:24:56Z | 2021-01-11T13:24:56Z |
| opensuse-su-2021:0046-1 | Security update for cobbler | 2021-01-11T09:25:38Z | 2021-01-11T09:25:38Z |
| opensuse-su-2021:0045-1 | Security update for rpmlint | 2021-01-11T07:18:40Z | 2021-01-11T07:18:40Z |
| opensuse-su-2021:0043-1 | Security update for tomcat | 2021-01-10T23:24:37Z | 2021-01-10T23:24:37Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-12453 | WordPress FancyBox plugin跨站脚本漏洞 | 2025-06-11 | 2025-06-13 |
| cnvd-2025-12452 | WordPress Easy Digital Downloads plugin跨站脚本漏洞 | 2025-06-11 | 2025-06-13 |
| cnvd-2025-12417 | D-Link DIR-605L缓冲区溢出漏洞 | 2024-11-29 | 2025-06-13 |
| cnvd-2025-12416 | WordPress Broken Link Checker plugin未授权访问漏洞 | 2025-06-11 | 2025-06-13 |
| cnvd-2025-12415 | WordPress Bold Page Builder plugin跨站脚本漏洞 | 2025-06-11 | 2025-06-13 |
| cnvd-2025-12414 | WordPress Bit File Manager plugin跨站脚本漏洞 | 2025-06-11 | 2025-06-13 |
| cnvd-2025-12413 | Dell PowerScale OneFS信息泄露漏洞 | 2025-04-18 | 2025-06-13 |
| cnvd-2025-12410 | Dell PowerProtect DD堆栈缓冲区溢出漏洞 | 2025-02-13 | 2025-06-13 |
| cnvd-2025-12409 | Foxit PDF Reader内存破坏漏洞 | 2025-05-30 | 2025-06-13 |
| cnvd-2025-12408 | Tenda AC18 /goform/AdvSetLanip处理lanMask参数缓冲区溢出漏洞 | 2025-06-10 | 2025-06-13 |
| cnvd-2025-12407 | Tenda CP3命令注入漏洞 | 2025-06-10 | 2025-06-13 |
| cnvd-2025-12406 | Tenda AC10缓冲区溢出漏洞(CNVD-2025-12406) | 2025-06-11 | 2025-06-13 |
| cnvd-2025-12405 | TOTOLINK T10命令注入漏洞 | 2024-09-23 | 2025-06-13 |
| cnvd-2025-12404 | TOTOLINK LR350授权问题漏洞 | 2024-11-05 | 2025-06-13 |
| cnvd-2025-12403 | TOTOLINK A600UB存在未明漏洞 | 2024-11-21 | 2025-06-13 |
| cnvd-2025-12402 | TOTOLINK X6000R存在未明漏洞 | 2024-11-25 | 2025-06-13 |
| cnvd-2025-12401 | TOTOLINK A810R downloadFlile.cgi缓冲区溢出漏洞 | 2024-11-28 | 2025-06-13 |
| cnvd-2025-12400 | TOTOLINK A6000R reset_wifi命令注入漏洞 | 2025-01-13 | 2025-06-13 |
| cnvd-2025-12399 | TOTOLINK X5000R setWiFiScheduleCfg函数的desc参数命令注入漏洞 | 2025-01-17 | 2025-06-13 |
| cnvd-2025-12398 | TOTOLINK X5000R setWiFiScheduleCfg函数的eMinute参数命令注入漏洞 | 2025-01-17 | 2025-06-13 |
| cnvd-2025-12397 | TOTOLINK X5000R setWiFiScheduleCfg函数的eHour参数命令注入漏洞 | 2025-01-17 | 2025-06-13 |
| cnvd-2025-12396 | TOTOLINK X5000R setVpnAccountCfg函数的user参数命令注入漏洞 | 2025-01-17 | 2025-06-13 |
| cnvd-2025-12395 | TOTOLINK X5000R setVpnAccountCfg函数的desc参数命令注入漏洞 | 2025-01-17 | 2025-06-13 |
| cnvd-2025-12394 | TOTOLINK X5000R setScheduleCfg函数的minute参数命令注入漏洞 | 2025-01-17 | 2025-06-13 |
| cnvd-2025-12393 | TOTOLINK X6000R缓冲区溢出漏洞 | 2025-02-17 | 2025-06-13 |
| cnvd-2025-12392 | TOTOLINK X5000R vif_disable命令注入漏洞 | 2025-02-24 | 2025-06-13 |
| cnvd-2025-12391 | TOTOLINK X5000R apcli_wps_gen_pincode命令注入漏洞 | 2025-02-24 | 2025-06-13 |
| cnvd-2025-12390 | TOTOLINK EX1800T缓冲区溢出漏洞 | 2025-03-07 | 2025-06-13 |
| cnvd-2025-12389 | TOTOLINK X18命令注入漏洞 | 2025-03-07 | 2025-06-13 |
| cnvd-2025-12388 | TOTOLINK EX1200T命令执行漏洞 | 2025-04-25 | 2025-06-13 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2017-avi-357 | Vulnérabilité dans Microsoft Windows sur le protocole WPA/WPA2 | 2017-10-17T00:00:00.000000 | 2017-10-17T00:00:00.000000 |
| certfr-2017-avi-356 | Multiples vulnérabilités dans Adobe ColdFusion | 2017-10-16T00:00:00.000000 | 2017-10-16T00:00:00.000000 |
| certfr-2017-avi-355 | Multiples vulnérabilités dans Adobe Flash Player | 2017-10-16T00:00:00.000000 | 2017-10-16T00:00:00.000000 |
| certfr-2017-avi-354 | Multiples vulnérabilités dans Adobe RoboHelp | 2017-10-16T00:00:00.000000 | 2017-10-16T00:00:00.000000 |
| certfr-2017-avi-353 | Vulnérabilité dans le noyau Linux de SUSE | 2017-10-16T00:00:00.000000 | 2017-10-16T00:00:00.000000 |
| certfr-2017-avi-352 | Multiples vulnérabilités dans Fortinet FortiWLC et FortiMail | 2017-10-16T00:00:00.000000 | 2017-10-16T00:00:00.000000 |
| certfr-2017-avi-351 | Multiples vulnérabilités dans Xen | 2017-10-13T00:00:00.000000 | 2017-10-13T00:00:00.000000 |
| certfr-2017-avi-350 | Multiples vulnérabilités dans Citrix XenServer | 2017-10-13T00:00:00.000000 | 2017-10-13T00:00:00.000000 |
| certfr-2017-avi-349 | Vulnérabilité dans SCADA Siemens BACnet field panels | 2017-10-13T00:00:00.000000 | 2017-10-13T00:00:00.000000 |
| certfr-2017-avi-348 | Multiples vulnérabilités dans les produits Juniper | 2017-10-12T00:00:00.000000 | 2017-10-12T00:00:00.000000 |
| certfr-2017-avi-347 | Vulnérabilité dans Apple iOS | 2017-10-12T00:00:00.000000 | 2017-10-12T00:00:00.000000 |
| certfr-2017-avi-339 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2017-10-11T00:00:00.000000 | 2017-10-12T00:00:00.000000 |
| certfr-2017-avi-346 | Multiples vulnérabilités dans les produits Microsoft | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-345 | Multiples vulnérabilités dans Microsoft Windows | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-344 | Multiples vulnérabilités dans Microsoft Office | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-343 | Multiples vulnérabilités dans Microsoft Edge | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-342 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-341 | Multiples vulnérabilités dans Wireshark | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-340 | Multiples vulnérabilités dans Mozilla Thunderbird | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-338 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-337 | Vulnérabilité dans le noyau Linux de RedHat | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-336 | Vulnérabilité dans Apache Httpd | 2017-10-06T00:00:00.000000 | 2017-10-06T00:00:00.000000 |
| certfr-2017-avi-335 | Vulnérabilité dans SCADA Siemens 7KT PAC1200 data manager | 2017-10-06T00:00:00.000000 | 2017-10-06T00:00:00.000000 |
| certfr-2017-avi-334 | Multiples vulnérabilités dans les produits Apple | 2017-10-06T00:00:00.000000 | 2017-10-06T00:00:00.000000 |
| certfr-2017-avi-333 | Multiples vulnérabilités dans les produits Cisco | 2017-10-05T00:00:00.000000 | 2017-10-05T00:00:00.000000 |
| certfr-2017-avi-332 | Vulnérabilité dans Apache Tomcat | 2017-10-04T00:00:00.000000 | 2017-10-04T00:00:00.000000 |
| certfr-2017-avi-331 | Multiples vulnérabilités dans Apple iOS | 2017-10-04T00:00:00.000000 | 2017-10-04T00:00:00.000000 |
| certfr-2017-avi-330 | Multiples vulnérabilités dans Google Android | 2017-10-03T00:00:00.000000 | 2017-10-03T00:00:00.000000 |
| certfr-2017-avi-329 | Multiples vulnérabilités dans Dnsmasq | 2017-10-03T00:00:00.000000 | 2017-10-03T00:00:00.000000 |
| certfr-2017-avi-328 | Vulnérabilité dans Xen | 2017-09-29T00:00:00.000000 | 2017-09-29T00:00:00.000000 |