Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-52760 |
6.1 (3.1)
|
WordPress MultiSite Clone Duplicator plugin <= 1.5.3 -… |
Globalis |
MultiSite Clone Duplicator |
2025-10-22T14:32:28.248Z | 2026-01-20T14:28:08.789Z |
| CVE-2025-52740 |
8.8 (3.1)
|
WordPress Boldermail Plugin <= 2.4.0 - PHP Object Inje… |
Hernan Villanueva |
Boldermail |
2025-10-22T14:32:23.272Z | 2026-01-20T14:28:08.764Z |
| CVE-2025-52773 |
9.8 (3.1)
|
WordPress HieCOR Payment Gateway plugin plugin <= 1.5.… |
hiecor |
HieCOR Payment Gateway Plugin |
2025-11-06T15:53:57.496Z | 2026-01-20T14:28:08.714Z |
| CVE-2025-52745 |
8.1 (3.1)
|
WordPress Farm Agrico theme <= 1.3.11 - Local File Inc… |
AncoraThemes |
Farm Agrico |
2025-12-18T07:21:44.978Z | 2026-01-20T14:28:08.668Z |
| CVE-2025-52757 |
6.3 (3.1)
|
WordPress SUMO Memberships for WooCommerce plugin <= 7… |
FantasticPlugins |
SUMO Memberships for WooCommerce |
2025-10-22T14:32:27.245Z | 2026-01-20T14:28:08.665Z |
| CVE-2025-52751 |
7.1 (3.1)
|
WordPress Slide Puzzle plugin <= 1.0.0 - Cross Site Sc… |
colome |
Slide Puzzle |
2025-10-22T14:32:24.841Z | 2026-01-20T14:28:08.664Z |
| CVE-2025-52750 |
7.1 (3.1)
|
WordPress Emu2 plugin <= 0.83b - Cross Site Scripting … |
Juergen Schulze |
Emu2 |
2025-10-22T14:32:24.658Z | 2026-01-20T14:28:08.656Z |
| CVE-2025-52763 |
7.1 (3.1)
|
WordPress Nifty Backups plugin <= 1.08 - Cross Site Sc… |
NickDuncan |
Nifty Backups |
2025-10-22T14:32:28.478Z | 2026-01-20T14:28:08.616Z |
| CVE-2025-52754 |
7.1 (3.1)
|
WordPress Sello ChannelConnector plugin <= 1.6.3 - Cro… |
selloio |
Sello ChannelConnector |
2025-10-22T14:32:25.569Z | 2026-01-20T14:28:08.610Z |
| CVE-2025-52758 |
9.1 (3.1)
|
WordPress Zippy plugin <= 1.7.0 - Arbitrary File Uploa… |
Gesundheit Bewegt GmbH |
Zippy |
2025-10-22T14:32:27.961Z | 2026-01-20T14:28:08.584Z |
| CVE-2025-52748 |
7.1 (3.1)
|
WordPress Directory Pro plugin <= 2.5.5 - Cross Site S… |
e-plugins |
Directory Pro |
2025-10-22T14:32:24.265Z | 2026-01-20T14:28:08.584Z |
| CVE-2025-52739 |
7.1 (3.1)
|
WordPress Sala theme <= 1.1.3 - Cross Site Scripting (… |
uxper |
Sala |
2025-12-31T20:10:29.616Z | 2026-01-20T14:28:08.584Z |
| CVE-2025-52756 |
7.4 (3.1)
|
WordPress WP Last Modified Info plugin <= 1.9.2 - Remo… |
Sayan Datta |
WP Last Modified Info |
2025-10-22T14:32:26.710Z | 2026-01-20T14:28:08.525Z |
| CVE-2025-52749 |
7.1 (3.1)
|
WordPress Uji Countdown plugin <= 2.3.3 - Cross Site S… |
Activity Track |
Uji Countdown |
2025-10-22T14:32:24.442Z | 2026-01-20T14:28:08.525Z |
| CVE-2025-52742 |
7.1 (3.1)
|
WordPress Pets Plugin <= 1.4.1 - Cross Site Scripting … |
Igor Benic |
Pets |
2025-10-22T14:32:23.806Z | 2026-01-20T14:28:08.492Z |
| CVE-2025-52736 |
7.1 (3.1)
|
WordPress Finale Lite Plugin <= 2.20.0 - Cross Site Sc… |
Daman Jeet |
Finale Lite |
2025-10-22T14:32:22.566Z | 2026-01-20T14:28:08.492Z |
| CVE-2025-49958 |
7.1 (3.1)
|
WordPress Robokassa payment gateway for Woocommerce pl… |
robokassa |
Robokassa payment gateway for Woocommerce |
2025-10-22T14:32:20.661Z | 2026-01-20T14:28:08.417Z |
| CVE-2025-49962 |
7.1 (3.1)
|
WordPress bbPress Notify plugin <= 2.19.4 - Cross Site… |
useStrict |
bbPress Notify |
2025-10-22T14:32:21.576Z | 2026-01-20T14:28:08.371Z |
| CVE-2025-49961 |
6.3 (3.1)
|
WordPress Breeze Checkout plugin <= 1.4.0 - Broken Acc… |
Breeze Team |
Breeze Checkout |
2025-10-22T14:32:21.376Z | 2026-01-20T14:28:08.365Z |
| CVE-2025-49960 |
6.5 (3.1)
|
WordPress LeadBI Plugin for WordPress plugin <= 1.7 - … |
leadbi |
LeadBI Plugin for WordPress |
2025-10-22T14:32:21.173Z | 2026-01-20T14:28:08.311Z |
| CVE-2025-50053 |
7.1 (3.1)
|
WordPress Blappsta Mobile App Plugin – Your native, mo… |
nebelhorn |
Blappsta Mobile App Plugin – Your native, mobile iPhone App and Android App |
2025-12-31T20:09:03.413Z | 2026-01-20T14:28:08.302Z |
| CVE-2025-49963 |
7.1 (3.1)
|
WordPress Simple Stripe Checkout plugin <= 1.1.28 - Cr… |
growniche |
Simple Stripe Checkout |
2025-10-22T14:32:21.783Z | 2026-01-20T14:28:08.285Z |
| CVE-2025-49992 |
7.1 (3.1)
|
WordPress LearnPress Export Import Plugin <= 4.0.9 - C… |
ThimPress |
LearnPress Export Import |
2025-10-22T14:32:21.965Z | 2026-01-20T14:28:08.282Z |
| CVE-2025-49959 |
7.1 (3.1)
|
WordPress bbPress Move Topics plugin <= 1.1.6 - Cross … |
Pascal Casier |
bbPress Move Topics |
2025-10-22T14:32:20.965Z | 2026-01-20T14:28:08.267Z |
| CVE-2025-52737 |
8.8 (3.1)
|
WordPress WP Store Locator plugin <= 2.2.260 - PHP Obj… |
Tijmen Smit |
WP Store Locator |
2025-10-22T14:32:22.788Z | 2026-01-20T14:28:08.263Z |
| CVE-2025-52738 |
6.5 (3.1)
|
WordPress Wikipedia Preview Plugin <= 1.15.0 - Broken … |
Wikimedia Foundation |
Wikipedia Preview |
2025-10-22T14:32:23.016Z | 2026-01-20T14:28:08.230Z |
| CVE-2025-49946 |
7.1 (3.1)
|
WordPress Auto Login After Registration plugin <= 1.0.… |
Cynob IT Consultancy |
Auto Login After Registration |
2025-10-22T14:32:17.913Z | 2026-01-20T14:28:08.228Z |
| CVE-2025-49938 |
6.5 (3.1)
|
WordPress JetEngine plugin <= 3.7.3 - Cross Site Scrip… |
CrocoBlock |
JetEngine |
2025-10-22T14:32:16.875Z | 2026-01-20T14:28:08.144Z |
| CVE-2025-49943 |
8.1 (3.1)
|
WordPress Femme theme <= 1.3.11 - Local File Inclusion… |
AncoraThemes |
Femme |
2025-12-18T07:21:44.794Z | 2026-01-20T14:28:08.066Z |
| CVE-2025-49955 |
7.1 (3.1)
|
WordPress WP Smart Flexslider Plugin <= 2.5 - Cross Si… |
Rajan Vijayan |
WP Smart Flexslider |
2025-10-22T14:32:20.010Z | 2026-01-20T14:28:07.948Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-59009 |
4.3 (3.1)
|
WordPress Listify theme <= 3.2.5 - Cross Site Request … |
Astoundify |
Listify |
2025-12-16T08:12:46.981Z | 2026-01-20T14:28:11.343Z |
| CVE-2025-59007 |
8.1 (3.1)
|
WordPress TF Woo Product Grid Addon For Elementor Plug… |
themesflat |
TF Woo Product Grid Addon For Elementor |
2025-10-22T14:32:37.108Z | 2026-01-20T14:28:11.343Z |
| CVE-2025-59006 |
7.1 (3.1)
|
WordPress Easy Woocommerce Customizer plugin <= 1.0.2 … |
themebon |
Easy Woocommerce Customizer |
2025-10-22T14:32:36.907Z | 2026-01-20T14:28:11.345Z |
| CVE-2025-59004 |
7.1 (3.1)
|
WordPress WC Return products plugin <= 1.5 - Reflected… |
pco_58 |
WC Return products |
2025-10-22T14:32:36.724Z | 2026-01-20T14:28:11.343Z |
| CVE-2025-59003 |
5.8 (3.1)
|
WordPress Black Rider theme <= 1.2.3 - Sensitive Data … |
Inkthemescom |
Black Rider |
2025-12-31T13:46:13.364Z | 2026-01-20T14:28:11.346Z |
| CVE-2025-59001 |
4.3 (3.1)
|
WordPress Salient Core plugin <= 3.0.8 - Broken Access… |
ThemeNectar |
Salient Core |
2025-12-16T08:12:46.774Z | 2026-01-20T14:28:11.347Z |
| CVE-2025-58999 |
4.3 (3.1)
|
WordPress WP Attractive Donations System - Easy Stripe… |
loopus |
WP Attractive Donations System - Easy Stripe & Paypal donations |
2025-12-16T08:12:46.564Z | 2026-01-20T14:28:11.344Z |
| CVE-2025-58998 |
9.8 (3.1)
|
WordPress s2Member Plugin <= 250701 - PHP Object Injec… |
Cristián Lávaque |
s2Member |
2025-11-06T15:54:37.699Z | 2026-01-20T14:28:11.344Z |
| CVE-2025-58996 |
9.1 (3.1)
|
WordPress Advanced Settings Plugin <= 3.1.1 - Arbitrar… |
Helmut Wandl |
Advanced Settings |
2025-11-06T15:54:36.343Z | 2026-01-20T14:28:11.345Z |
| CVE-2025-58995 |
8.1 (3.1)
|
WordPress Leblix Theme <= 2.4 - Local File Inclusion V… |
Creatives_Planet |
Leblix |
2025-11-06T15:54:33.654Z | 2026-01-20T14:28:11.026Z |
| CVE-2025-58994 |
8.1 (3.1)
|
WordPress Greenify theme <= 2.2 - Local File Inclusion… |
designervily |
Greenify |
2025-11-06T15:54:32.378Z | 2026-01-20T14:28:11.346Z |
| CVE-2025-58986 |
6.5 (3.1)
|
WordPress Jock On Air Now (JOAN) plugin <= 6.0.4 - Bro… |
ganddser |
Jock On Air Now (JOAN) |
2025-11-06T15:54:30.961Z | 2026-01-20T14:28:11.341Z |
| CVE-2025-58972 |
7.2 (3.1)
|
WordPress Barcode Scanner with Inventory & Order Manag… |
Dmitry V. (CEO of "UKR Solution") |
Barcode Scanner with Inventory & Order Manager |
2025-11-06T15:54:30.300Z | 2026-01-20T14:28:11.032Z |
| CVE-2025-58971 |
7.1 (3.1)
|
WordPress Doctreat theme <= 1.6.7 - Cross Site Scripti… |
AmentoTech |
Doctreat |
2025-10-22T14:32:36.518Z | 2026-01-20T14:28:11.358Z |
| CVE-2025-58970 |
6.5 (3.1)
|
WordPress Doctreat theme <= 1.6.7 - Content Injection … |
AmentoTech |
Doctreat |
2025-10-22T14:32:36.243Z | 2026-01-20T14:28:10.994Z |
| CVE-2025-58966 |
7.1 (3.1)
|
WordPress NEX-Forms LITE plugin < 8.2 - Cross Site Scr… |
Basix |
NEX-Forms LITE |
2025-10-22T14:32:35.821Z | 2026-01-20T14:28:10.996Z |
| CVE-2025-58964 |
7.1 (3.1)
|
WordPress Enzy theme < 1.6.4 - Cross Site Scripting (X… |
skygroup |
Enzy |
2025-11-06T15:54:29.627Z | 2026-01-20T14:28:11.081Z |
| CVE-2025-58963 |
9.8 (3.1)
|
WordPress Medcity theme < 1.1.9 - Arbitrary File Uploa… |
7oroof |
Medcity |
2025-10-22T14:32:35.581Z | 2026-01-20T14:28:11.047Z |
| CVE-2025-58961 |
7.1 (3.1)
|
WordPress CF7 Auto Responder Addon plugin <= 2.4 - Cro… |
kamleshyadav |
CF7 Auto Responder Addon |
2025-10-22T14:32:35.382Z | 2026-01-20T14:28:11.176Z |
| CVE-2025-58959 |
7.6 (3.1)
|
WordPress Taskbot plugin <= 6.4 - Arbitrary File Delet… |
AmentoTech |
Taskbot |
2025-10-22T14:32:35.198Z | 2026-01-20T14:28:11.013Z |
| CVE-2025-58955 |
8.1 (3.1)
|
WordPress Karzo theme < 2.6 - Local File Inclusion vul… |
designervily |
Karzo |
2025-10-22T14:32:34.802Z | 2026-01-20T14:28:11.075Z |
| CVE-2025-58951 |
9.3 (3.1)
|
WordPress Advance Seat Reservation Management for WooC… |
smartcms |
Advance Seat Reservation Management for WooCommerce |
2025-12-18T07:21:59.734Z | 2026-01-20T14:28:10.822Z |
| CVE-2025-58950 |
8.1 (3.1)
|
WordPress Lione theme <= 1.16 - Local File Inclusion v… |
axiomthemes |
Lione |
2025-12-18T07:21:59.566Z | 2026-01-20T14:28:10.857Z |
| CVE-2025-58949 |
8.1 (3.1)
|
WordPress Spock theme <= 1.17 - Local File Inclusion v… |
axiomthemes |
Spock |
2025-12-18T07:21:59.396Z | 2026-01-20T14:28:11.191Z |
| CVE-2025-58948 |
8.1 (3.1)
|
WordPress Aromatica theme <= 1.8 - Local File Inclusio… |
axiomthemes |
Aromatica |
2025-12-18T07:21:59.216Z | 2026-01-20T14:28:10.790Z |
| CVE-2025-58947 |
8.2 (3.1)
|
WordPress Athos theme <= 1.9 - Local File Inclusion vu… |
axiomthemes |
Athos |
2025-12-18T07:21:59.042Z | 2026-01-21T15:41:30.700Z |
| CVE-2025-58946 |
8.2 (3.1)
|
WordPress Vocal theme <= 1.12 - Local File Inclusion v… |
axiomthemes |
Vocal |
2025-12-18T07:21:58.862Z | 2026-01-21T15:41:50.808Z |
| CVE-2025-58945 |
8.2 (3.1)
|
WordPress EcoGrow theme <= 1.7 - Local File Inclusion … |
axiomthemes |
EcoGrow |
2025-12-18T07:21:58.690Z | 2026-01-21T15:42:07.851Z |
| CVE-2025-58944 |
8.2 (3.1)
|
WordPress Manufactory theme <= 1.4 - Local File Inclus… |
axiomthemes |
Manufactory |
2025-12-18T07:21:58.462Z | 2026-01-27T14:59:29.531Z |
| CVE-2025-58943 |
8.2 (3.1)
|
WordPress Agricola theme <= 1.1.0 - Local File Inclusi… |
axiomthemes |
Agricola |
2025-12-18T07:21:58.294Z | 2026-01-27T15:00:17.696Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-59009 | Cross-Site Request Forgery (CSRF) vulnerability in Astoundify Listify listify allows Cross Site Req… | 2025-12-16T09:15:52.977 | 2026-01-20T15:17:17.637 |
| fkie_cve-2025-59007 | Deserialization of Untrusted Data vulnerability in themesflat TF Woo Product Grid Addon For Element… | 2025-10-22T15:15:53.730 | 2026-01-20T15:17:17.503 |
| fkie_cve-2025-59006 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:53.587 | 2026-01-20T15:17:17.370 |
| fkie_cve-2025-59004 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:53.460 | 2026-01-20T15:17:17.237 |
| fkie_cve-2025-59003 | Insertion of Sensitive Information Into Sent Data vulnerability in Inkthemescom Black Rider allows … | 2025-12-31T14:15:51.783 | 2026-01-20T15:17:17.137 |
| fkie_cve-2025-59001 | Missing Authorization vulnerability in ThemeNectar Salient Core salient-core allows Exploiting Inco… | 2025-12-16T09:15:52.850 | 2026-01-20T15:17:16.997 |
| fkie_cve-2025-58999 | Cross-Site Request Forgery (CSRF) vulnerability in loopus WP Attractive Donations System - Easy Str… | 2025-12-16T09:15:52.700 | 2026-01-20T15:17:16.860 |
| fkie_cve-2025-58998 | Deserialization of Untrusted Data vulnerability in Cristián Lávaque s2Member s2member allows Object… | 2025-11-06T16:16:01.290 | 2026-01-20T15:17:16.733 |
| fkie_cve-2025-58996 | Unrestricted Upload of File with Dangerous Type vulnerability in Helmut Wandl Advanced Settings adv… | 2025-11-06T16:16:01.140 | 2026-01-20T15:17:16.603 |
| fkie_cve-2025-58995 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:00.987 | 2026-01-20T15:17:16.477 |
| fkie_cve-2025-58994 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:00.833 | 2026-01-20T15:17:16.347 |
| fkie_cve-2025-58986 | Missing Authorization vulnerability in ganddser Jock On Air Now (JOAN) joan allows Exploiting Incor… | 2025-11-06T16:16:00.473 | 2026-01-20T15:17:16.213 |
| fkie_cve-2025-58972 | Path Traversal: '.../...//' vulnerability in Dmitry V. (CEO of "UKR Solution") Barcode Scanner with… | 2025-11-06T16:16:00.320 | 2026-01-20T15:17:16.083 |
| fkie_cve-2025-58971 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:53.333 | 2026-01-20T15:17:15.953 |
| fkie_cve-2025-58970 | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Amen… | 2025-10-22T15:15:53.207 | 2026-01-20T15:17:15.827 |
| fkie_cve-2025-58966 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:52.960 | 2026-01-20T15:17:15.563 |
| fkie_cve-2025-58964 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:00.157 | 2026-01-20T15:17:15.413 |
| fkie_cve-2025-58963 | Unrestricted Upload of File with Dangerous Type vulnerability in 7oroof Medcity medcity allows Uplo… | 2025-10-22T15:15:52.830 | 2026-01-20T15:17:15.273 |
| fkie_cve-2025-58961 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:52.690 | 2026-01-20T15:17:15.140 |
| fkie_cve-2025-58959 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ame… | 2025-10-22T15:15:52.543 | 2026-01-20T15:17:15.007 |
| fkie_cve-2025-58955 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-10-22T15:15:52.287 | 2026-01-20T15:17:14.750 |
| fkie_cve-2025-58951 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-18T08:16:03.030 | 2026-01-20T15:17:14.620 |
| fkie_cve-2025-58950 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:02.890 | 2026-01-20T15:17:14.487 |
| fkie_cve-2025-58949 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:02.757 | 2026-01-20T15:17:14.350 |
| fkie_cve-2025-58948 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:02.620 | 2026-01-20T15:17:14.207 |
| fkie_cve-2025-58947 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:02.487 | 2026-01-20T15:17:14.060 |
| fkie_cve-2025-58946 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:02.350 | 2026-01-20T15:17:13.917 |
| fkie_cve-2025-58945 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:02.227 | 2026-01-20T15:17:13.777 |
| fkie_cve-2025-58944 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:02.093 | 2026-01-20T15:17:13.637 |
| fkie_cve-2025-58943 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:01.963 | 2026-01-20T15:17:13.393 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-w3g8-fp6j-wvqw |
8.7 (4.0)
|
SM2-PKE has 32-bit Biased Nonce Vulnerability | 2026-01-09T22:27:50Z | 2026-01-11T14:56:33Z |
| ghsa-3ghg-3787-w2xr |
7.5 (3.1)
|
Spree API has Unauthenticated IDOR - Guest Address | 2026-01-08T21:28:04Z | 2026-01-11T14:56:25Z |
| ghsa-9cvc-h2w8-phrp |
3.7 (3.1)
|
AWS SDK for .NET V4 adopted defense in depth enhancement for region parameter value | 2026-01-09T18:56:21Z | 2026-01-11T14:56:00Z |
| ghsa-jrmj-c5cx-3cw6 |
8.5 (4.0)
|
Angular has XSS Vulnerability via Unsanitized SVG Script Attributes | 2026-01-09T18:52:14Z | 2026-01-11T14:55:54Z |
| ghsa-2g22-wg49-fgv5 |
10.0 (3.1)
|
XWiki Full Calendar Macro vulnerable to SQL injection through Calendar.JSONService | 2026-01-09T18:41:47Z | 2026-01-11T14:55:48Z |
| ghsa-637h-ch24-xp9m |
5.3 (3.1)
|
XWiki Full Calendar Macro vulnerable to data leak through Calendar.JSONService | 2026-01-09T18:35:57Z | 2026-01-11T14:55:42Z |
| ghsa-wvpq-h33f-8rp6 |
6.1 (3.1)
|
October CMS Vulnerable to Stored XSS via Branding Styles | 2026-01-09T20:12:24Z | 2026-01-11T14:55:37Z |
| ghsa-gxxc-m74c-f48x |
6.1 (3.1)
|
October CMS Vulnerable to Stored XSS via Editor and Branding Styles | 2026-01-09T18:12:58Z | 2026-01-11T14:55:29Z |
| ghsa-vmc4-9828-r48r |
5.1 (4.0)
|
Ghost has SSRF via External Media Inliner | 2026-01-08T21:36:03Z | 2026-01-11T14:55:24Z |
| ghsa-h4rm-mm56-xf63 |
8.9 (4.0)
|
Fickling vulnerable to detection bypass due to "builtins" blindness | 2026-01-09T22:29:02Z | 2026-01-11T14:55:18Z |
| ghsa-q5qq-mvfm-j35x |
8.9 (4.0)
|
Fickling has Static Analysis Bypass via Incomplete Dangerous Module Blocklist | 2026-01-09T21:12:00Z | 2026-01-11T14:55:13Z |
| ghsa-5hvc-6wx8-mvv4 |
8.9 (4.0)
|
Fickling vulnerable to use of ctypes and pydoc gadget chain to bypass detection | 2026-01-09T21:05:13Z | 2026-01-11T14:55:08Z |
| ghsa-p523-jq9w-64x9 |
8.9 (4.0)
|
Fickling Blocklist Bypass: cProfile.run() | 2026-01-09T21:04:22Z | 2026-01-11T14:54:55Z |
| ghsa-wfq2-52f7-7qvj |
8.9 (4.0)
|
Fickling has a bypass via runpy.run_path() and runpy.run_module() | 2026-01-09T20:52:40Z | 2026-01-11T14:54:44Z |
| ghsa-gjrp-xgmh-x9qq |
6.7 (3.1)
|
Ghost has SQL Injection in Members Activity Feed | 2026-01-08T21:36:37Z | 2026-01-11T14:54:35Z |
| ghsa-9xg7-mwmp-xmjx |
8.1 (3.1)
|
Ghost has Staff Token permission bypass | 2026-01-08T21:32:53Z | 2026-01-11T14:54:30Z |
| ghsa-5fp7-g646-ccf4 |
8.1 (3.1)
|
Ghost has Staff 2FA bypass | 2026-01-08T21:29:47Z | 2026-01-11T14:54:23Z |
| ghsa-h5cw-625j-3rxh |
6.5 (3.1)
|
React Router has CSRF issue in Action/Server Action Request Processing | 2026-01-08T20:57:09Z | 2026-01-11T14:54:18Z |
| ghsa-2w69-qvjg-hvjx |
8.0 (3.1)
|
React Router vulnerable to XSS via Open Redirects | 2026-01-08T20:54:18Z | 2026-01-11T14:54:13Z |
| ghsa-8v8x-cx79-35w7 |
8.2 (3.1)
|
React Router SSR XSS in ScrollRestoration | 2026-01-08T20:50:05Z | 2026-01-11T14:54:08Z |
| ghsa-9jcx-v3wj-wh4m |
6.5 (3.1)
|
React Router has unexpected external redirect via untrusted paths | 2026-01-08T20:48:21Z | 2026-01-11T14:54:02Z |
| ghsa-9583-h5hc-x8cw |
9.1 (3.1)
|
React Router has Path Traversal in File Session Storage | 2026-01-08T20:45:07Z | 2026-01-11T14:53:54Z |
| ghsa-3cgp-3xvw-98x8 |
7.6 (3.1)
|
React Router has XSS Vulnerability | 2026-01-08T20:42:20Z | 2026-01-11T14:53:48Z |
| ghsa-4f6g-68pf-7vhv |
2.7 (4.0)
|
pypdf has possible long runtimes for malformed startxref | 2026-01-09T19:48:57Z | 2026-01-11T14:53:40Z |
| ghsa-4xc4-762w-m6cg |
2.7 (4.0)
|
pypdf has possible long runtimes for missing /Root object with large /Size values | 2026-01-09T19:48:22Z | 2026-01-11T14:53:34Z |
| ghsa-m892-c9fc-5798 |
6.3 (3.1)
2.1 (4.0)
|
A flaw has been found in Flycatcher Toys smART Sketcher up to 2.0. This affects an unknown part of … | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-73j7-p7fw-fvw8 |
8.8 (3.1)
7.4 (4.0)
|
A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function st… | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-5xwg-ff7c-5w3f |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability has been found in jiujiujia/victor123/wxw850227 jjjfood and jjjshop_food up to 2026… | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-397f-58rh-886v |
8.8 (3.1)
7.4 (4.0)
|
A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Affected by this vulnerabil… | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-55hm-v7vp-29ch |
8.8 (3.1)
7.4 (4.0)
|
A weakness has been identified in UTT 进取 520W 1.7.7-180627. Affected is the function strcpy of the … | 2026-01-11T06:30:14Z | 2026-01-11T06:30:14Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2019-25161 | ** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 2024-02-27T06:04:12.723155Z |
| gsd-2019-25184 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.720065Z |
| gsd-2019-25200 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.719725Z |
| gsd-2019-25171 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.715427Z |
| gsd-2019-25187 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.715161Z |
| gsd-2019-25195 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.713204Z |
| gsd-2019-25190 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.712692Z |
| gsd-2019-25194 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.712162Z |
| gsd-2019-25203 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.709867Z |
| gsd-2019-25174 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.709590Z |
| gsd-2019-25177 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.708400Z |
| gsd-2019-25165 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.708123Z |
| gsd-2019-25180 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.706884Z |
| gsd-2019-25179 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.706531Z |
| gsd-2019-25201 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.704900Z |
| gsd-2019-25199 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.702042Z |
| gsd-2019-25205 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.701252Z |
| gsd-2019-25191 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.700353Z |
| gsd-2019-25172 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.697027Z |
| gsd-2019-25188 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:04:12.695630Z |
| gsd-2020-36780 | In the Linux kernel, the following vulnerability has been resolved: i2c: sprd: fix refer… | 2024-02-27T06:02:42.508412Z |
| gsd-2020-36802 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:42.497613Z |
| gsd-2020-36814 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:42.473137Z |
| gsd-2020-36778 | In the Linux kernel, the following vulnerability has been resolved: i2c: xiic: fix refer… | 2024-02-27T06:02:42.455684Z |
| gsd-2020-36798 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:42.440002Z |
| gsd-2020-36819 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:42.424034Z |
| gsd-2020-36797 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:42.395640Z |
| gsd-2020-36775 | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid p… | 2024-02-27T06:02:42.367687Z |
| gsd-2020-36810 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:42.345166Z |
| gsd-2020-36813 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:42.344945Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-186785 | Malicious code in epimetheus-sagitta-cosmicweb-dactyl (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186784 | Malicious code in epimetheus-release-it-fetch-centaurus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186783 | Malicious code in epimetheus-loglevel-membrane-solarnebula (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186782 | Malicious code in epimetheus-chalk-frontend-fomalhaut (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186781 | Malicious code in epigenetics-kinetic-prompts-taphonomy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186780 | Malicious code in epigenetics-html-webpack-plugin-magellan-augmentedreality (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186779 | Malicious code in epigenetics-graphql-tailwindcss-abiogenesis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186778 | Malicious code in epigenetics-dynamo-jsonp-odin (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186777 | Malicious code in epigenetics-cosmology-radiometric-fornax (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186776 | Malicious code in envconfig-sociobiology-palynology-meissa (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186775 | Malicious code in envconfig-protoplanetarydisk-dotenv-safe-isostasy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186774 | Malicious code in envconfig-passport-charon-hermes (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186773 | Malicious code in envconfig-fornax-void-duplex (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186772 | Malicious code in envconfig-dotenv-safe-middleware-javascript (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186771 | Malicious code in envconfig-apollo-dependencies-update (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186770 | Malicious code in enum-small-tau-sun-orchestrate (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186769 | Malicious code in enum-report-char-rho-alpha (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186768 | Malicious code in enum-proxy-sun-omicron-nu (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186767 | Malicious code in enum-parse-protected-kernel-refactor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186766 | Malicious code in enum-new-encode-tree-cluster (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186765 | Malicious code in enum-interface-grep-reject-debug (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186764 | Malicious code in enum-compress-proxy-thread-user (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186763 | Malicious code in entanglement-xanthus-lithosphere-lightyear (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186762 | Malicious code in entanglement-tachyon-puppeteer-cressida (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186761 | Malicious code in entanglement-pino-lint-innercore (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186760 | Malicious code in entanglement-levels-leda-quasar (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186759 | Malicious code in entanglement-jasmine-seismology-nucleosynthesis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186758 | Malicious code in entanglement-greatfilter-void-callback (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186757 | Malicious code in entanglement-cybernetics-process-capella (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186756 | Malicious code in entanglement-australis-event-leda (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-1646 | libcurl: Schwachstelle ermöglicht Denial of Service | 2017-10-03T22:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2023-1645 | libcurl: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2017-10-22T22:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2023-1638 | cURL: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2019-06-23T22:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2023-1635 | libcurl: Schwachstelle ermöglicht Offenlegung von Informationen | 2020-08-18T22:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2023-0891 | cURL: Mehrere Schwachstellen | 2017-11-29T23:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2023-0549 | Kubernetes: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-03-01T23:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2022-2354 | cURL + libcurl: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2021-08-16T22:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2022-2017 | Kubernetes: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-11-10T23:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2022-0874 | cURL: Mehrere Schwachstellen | 2021-07-20T22:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2023-1631 | libTIFF: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-07-03T22:00:00.000+00:00 | 2023-07-03T22:00:00.000+00:00 |
| wid-sec-w-2023-1630 | IBM Integration Bus: Mehrere Schwachstellen | 2023-07-03T22:00:00.000+00:00 | 2023-07-03T22:00:00.000+00:00 |
| wid-sec-w-2023-1520 | vim: Schwachstelle ermöglicht Codeausführung | 2023-06-20T22:00:00.000+00:00 | 2023-07-03T22:00:00.000+00:00 |
| wid-sec-w-2023-1393 | Perl: Schwachstelle ermöglicht Offenlegung von Informationen | 2015-06-28T22:00:00.000+00:00 | 2023-07-03T22:00:00.000+00:00 |
| wid-sec-w-2023-1628 | Moxa Router: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-07-02T22:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1625 | Ivanti Endpoint Manager: Schwachstelle ermöglicht Privilegieneskalation und Codeausführung | 2023-07-02T22:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1624 | HP Computer: Schwachstelle ermöglicht Codeausführung | 2023-07-02T22:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1623 | D-LINK Router DIR-X3260: Schwachstelle ermöglicht Codeausführung | 2023-07-02T22:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1622 | OpenJPEG: Schwachstelle ermöglicht Denial of Service | 2023-07-02T22:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1620 | CoreDNS: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-07-02T22:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1617 | pgAdmin: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-07-02T22:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1616 | ZScaler Client Connector: Mehrere Schwachstellen | 2023-07-02T22:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1615 | Ubiquiti UniFi Produkte: Schwachstelle ermöglicht Denial of Service | 2023-07-02T22:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2022-0809 | OpenJDK: Mehrere Schwachstellen | 2021-10-19T22:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2022-0356 | vim: Mehrere Schwachstellen | 2022-01-12T23:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2022-0355 | vim: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-01-06T23:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2022-0152 | vim: Schwachstelle ermöglicht Denial of Service | 2022-02-21T23:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2022-0057 | vim: Mehrere Schwachstellen | 2022-01-31T23:00:00.000+00:00 | 2023-07-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1611 | D-LINK Router: Mehrere Schwachstellen | 2023-06-29T22:00:00.000+00:00 | 2023-06-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1610 | ILIAS: Mehrere Schwachstellen | 2023-06-29T22:00:00.000+00:00 | 2023-06-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1609 | IBM QRadar SIEM: Schwachstelle ermöglicht Denial of Service | 2023-06-29T22:00:00.000+00:00 | 2023-06-29T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:7531 | Red Hat Security Advisory: kernel security update | 2025-05-14T00:40:17+00:00 | 2025-12-16T21:23:05+00:00 |
| rhsa-2025:7532 | Red Hat Security Advisory: kernel-rt security update | 2025-05-14T00:28:12+00:00 | 2025-12-16T21:22:15+00:00 |
| rhsa-2025:11428 | Red Hat Security Advisory: kernel security update | 2025-07-21T09:08:17+00:00 | 2025-12-16T21:01:10+00:00 |
| rhsa-2025:15786 | Red Hat Security Advisory: kernel-rt security update | 2025-09-15T10:24:20+00:00 | 2025-12-16T19:11:17+00:00 |
| rhsa-2025:14749 | Red Hat Security Advisory: kernel-rt security update | 2025-08-27T13:21:39+00:00 | 2025-12-16T19:11:15+00:00 |
| rhsa-2025:23278 | Red Hat Security Advisory: Red Hat Ceph Storage | 2025-12-16T14:14:03+00:00 | 2025-12-16T14:15:08+00:00 |
| rhsa-2022:5622 | Red Hat Security Advisory: container-tools:rhel8 security and bug fix update | 2022-07-19T21:12:50+00:00 | 2025-12-16T09:38:26+00:00 |
| rhsa-2022:4816 | Red Hat Security Advisory: container-tools:3.0 security update | 2022-05-31T12:21:24+00:00 | 2025-12-16T09:38:17+00:00 |
| rhsa-2022:4651 | Red Hat Security Advisory: container-tools:2.0 security update | 2022-05-18T14:02:34+00:00 | 2025-12-16T09:38:15+00:00 |
| rhsa-2022:2263 | Red Hat Security Advisory: OpenShift Container Platform 4.6.58 packages and security update | 2022-05-26T21:34:25+00:00 | 2025-12-16T09:38:13+00:00 |
| rhsa-2022:2190 | Red Hat Security Advisory: podman security update | 2022-05-11T17:21:01+00:00 | 2025-12-16T09:38:11+00:00 |
| rhsa-2022:2143 | Red Hat Security Advisory: container-tools:3.0 security update | 2022-05-10T17:35:38+00:00 | 2025-12-16T09:38:08+00:00 |
| rhsa-2025:21929 | Red Hat Security Advisory: RHSA 4.9.1 security and bug fix update | 2025-11-24T08:28:34+00:00 | 2025-12-16T09:34:39+00:00 |
| rhsa-2025:11884 | Red Hat Security Advisory: unbound security update | 2025-07-28T10:47:26+00:00 | 2025-12-16T09:32:18+00:00 |
| rhsa-2024:5315 | Red Hat Security Advisory: open-vm-tools security update | 2024-08-13T15:43:29+00:00 | 2025-12-16T09:28:14+00:00 |
| rhsa-2024:3859 | Red Hat Security Advisory: kernel security update | 2024-06-12T02:50:43+00:00 | 2025-12-16T09:28:09+00:00 |
| rhsa-2024:2982 | Red Hat Security Advisory: webkit2gtk3 security update | 2024-05-22T09:34:54+00:00 | 2025-12-16T09:28:04+00:00 |
| rhsa-2024:2126 | Red Hat Security Advisory: webkit2gtk3 security update | 2024-04-30T10:37:42+00:00 | 2025-12-16T09:27:24+00:00 |
| rhsa-2023:7716 | Red Hat Security Advisory: webkit2gtk3 security update | 2023-12-11T09:56:30+00:00 | 2025-12-16T09:27:24+00:00 |
| rhsa-2023:7715 | Red Hat Security Advisory: webkit2gtk3 security update | 2023-12-11T09:43:45+00:00 | 2025-12-16T09:27:24+00:00 |
| rhsa-2023:5312 | Red Hat Security Advisory: open-vm-tools security update | 2023-09-20T16:46:24+00:00 | 2025-12-16T09:27:23+00:00 |
| rhsa-2023:5213 | Red Hat Security Advisory: open-vm-tools security update | 2023-09-19T07:41:41+00:00 | 2025-12-16T09:27:22+00:00 |
| rhsa-2023:5210 | Red Hat Security Advisory: open-vm-tools security update | 2023-09-19T07:41:54+00:00 | 2025-12-16T09:27:21+00:00 |
| rhsa-2023:5220 | Red Hat Security Advisory: open-vm-tools security update | 2023-09-19T08:02:06+00:00 | 2025-12-16T09:25:29+00:00 |
| rhsa-2023:5216 | Red Hat Security Advisory: open-vm-tools security update | 2023-09-19T08:01:17+00:00 | 2025-12-16T09:25:20+00:00 |
| rhsa-2023:5217 | Red Hat Security Advisory: open-vm-tools security update | 2023-09-19T08:07:16+00:00 | 2025-12-16T09:25:18+00:00 |
| rhsa-2023:5218 | Red Hat Security Advisory: open-vm-tools security update | 2023-09-19T08:05:21+00:00 | 2025-12-16T09:25:16+00:00 |
| rhsa-2023:4517 | Red Hat Security Advisory: kernel security and bug fix update | 2023-08-08T08:34:42+00:00 | 2025-12-16T09:25:14+00:00 |
| rhsa-2023:6371 | Red Hat Security Advisory: cloud-init security, bug fix, and enhancement update | 2023-11-07T08:48:22+00:00 | 2025-12-16T09:25:12+00:00 |
| rhsa-2023:5313 | Red Hat Security Advisory: open-vm-tools security update | 2023-09-20T16:46:24+00:00 | 2025-12-16T09:25:12+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-25435 | libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesShifted8bits() at /libtiff/tools/tiffcrop.c:3753. | 2023-06-01T07:00:00.000Z | 2023-07-29T00:00:00.000Z |
| msrc_cve-2023-25434 | libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c:3215. | 2023-06-01T07:00:00.000Z | 2023-07-29T00:00:00.000Z |
| msrc_cve-2023-1916 | A flaw was found in tiffcrop a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c resulting in a denial of service and limited information disclosure. This issue affects libtiff versions 4.x. | 2023-04-01T00:00:00.000Z | 2023-07-29T00:00:00.000Z |
| msrc_cve-2022-2084 | sensitive data exposure in cloud-init logs | 2023-04-01T00:00:00.000Z | 2023-07-29T00:00:00.000Z |
| msrc_cve-2023-38431 | An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/connection.c in ksmbd does not validate the relationship between the NetBIOS header's length field and the SMB header sizes via pdu_size in ksmbd_conn_handler_loop leading to an out-of-bounds read. | 2023-07-01T07:00:00.000Z | 2023-07-28T00:00:00.000Z |
| msrc_cve-2023-38430 | An issue was discovered in the Linux kernel before 6.3.9. ksmbd does not validate the SMB request protocol ID leading to an out-of-bounds read. | 2023-07-01T07:00:00.000Z | 2023-07-28T00:00:00.000Z |
| msrc_cve-2023-38429 | An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/connection.c in ksmbd has an off-by-one error in memory allocation (because of ksmbd_smb2_check_message) that may lead to out-of-bounds access. | 2023-07-01T07:00:00.000Z | 2023-07-28T00:00:00.000Z |
| msrc_cve-2023-38428 | An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not properly check the UserName value because it does not consider the address of security buffer leading to an out-of-bounds read. | 2023-07-01T07:00:00.000Z | 2023-07-28T00:00:00.000Z |
| msrc_cve-2023-38427 | An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an integer underflow and out-of-bounds read in deassemble_neg_contexts. | 2023-07-01T07:00:00.000Z | 2023-07-28T00:00:00.000Z |
| msrc_cve-2023-38426 | An issue was discovered in the Linux kernel before 6.3.4. ksmbd has an out-of-bounds read in smb2_find_context_vals when create_context's name_len is larger than the tag length. | 2023-07-01T07:00:00.000Z | 2023-07-28T00:00:00.000Z |
| msrc_cve-2023-0160 | Possibility of deadlock in libbpf function sock_hash_delete_elem | 2023-07-01T07:00:00.000Z | 2023-07-28T00:00:00.000Z |
| msrc_cve-2022-41409 | Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input. | 2023-07-01T07:00:00.000Z | 2023-07-27T00:00:00.000Z |
| msrc_cve-2023-22058 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-22057 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-22056 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-22054 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-22053 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs). Supported versions that are affected are 5.7.42 and prior and 8.0.33 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server and unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 5.9 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-22048 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-22046 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-22038 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-22033 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-22008 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-22005 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2022-24834 | Heap overflow issue with the Lua cjson library used by Redis | 2023-07-01T07:00:00.000Z | 2023-07-26T00:00:00.000Z |
| msrc_cve-2023-3247 | Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP | 2023-07-01T07:00:00.000Z | 2023-07-22T00:00:00.000Z |
| msrc_cve-2023-38187 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | 2023-07-11T07:00:00.000Z | 2023-07-21T07:00:00.000Z |
| msrc_cve-2023-38173 | Microsoft Edge for Android Spoofing Vulnerability | 2023-07-11T07:00:00.000Z | 2023-07-21T07:00:00.000Z |
| msrc_cve-2023-35392 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2023-07-11T07:00:00.000Z | 2023-07-21T07:00:00.000Z |
| msrc_cve-2023-35311 | Microsoft Outlook Security Feature Bypass Vulnerability | 2023-07-11T07:00:00.000Z | 2023-07-21T07:00:00.000Z |
| msrc_cve-2023-33151 | Microsoft Outlook Spoofing Vulnerability | 2023-07-11T07:00:00.000Z | 2023-07-21T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201712-0276 | An issue was discovered in certain Apple products. iOS before 11.2.1 is affected. tvOS be… | 2025-04-20T21:49:00.258000Z |
| var-201706-0491 | An exploitable command injection vulnerability exists in the web management interface use… | 2025-04-20T21:48:59.815000Z |
| var-201701-0398 | NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of s… | 2025-04-20T21:48:53.785000Z |
| var-201703-1109 | Cross-site scripting (XSS) vulnerability in httpd on ASUS RT-N56U, RT-N66U, RT-AC66U, RT-… | 2025-04-20T21:48:52.276000Z |
| var-201705-3377 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari … | 2025-04-20T21:48:48.465000Z |
| var-201706-0501 | In the web management interface in Foscam C1 Indoor HD cameras with application firmware … | 2025-04-20T21:48:17.283000Z |
| var-201702-0233 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari be… | 2025-04-20T21:48:16.136000Z |
| var-201702-0234 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS bef… | 2025-04-20T21:47:44.618000Z |
| var-201710-1345 | An issue was discovered in certain Apple products. iOS before 11 is affected. The issue i… | 2025-04-20T21:47:13.015000Z |
| var-201704-0790 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue… | 2025-04-20T21:46:42.444000Z |
| var-201702-1057 | The web interface on Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-… | 2025-04-20T21:46:42.216000Z |
| var-201702-0251 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari be… | 2025-04-20T21:46:40.792000Z |
| var-201704-0745 | A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prio… | 2025-04-20T21:46:37.888000Z |
| var-201703-0686 | An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local… | 2025-04-20T21:46:35.886000Z |
| var-201702-0387 | An issue was discovered in certain Apple products. Safari before 10.0.1 is affected. iClo… | 2025-04-20T21:46:30.877000Z |
| var-201712-1085 | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller,… | 2025-04-20T21:46:08.804000Z |
| var-201707-1180 | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS b… | 2025-04-20T21:45:32.544000Z |
| var-201705-3386 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari … | 2025-04-20T21:45:30.492000Z |
| var-201702-0195 | An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The … | 2025-04-20T21:45:28.508000Z |
| var-201710-1379 | An issue was discovered in certain Apple products. iOS before 11 is affected. The issue i… | 2025-04-20T21:44:57.911000Z |
| var-201709-1101 | A SQL injection vulnerability exists in Schneider Electric's U.motion Builder software ve… | 2025-04-20T21:44:57.261000Z |
| var-201704-0737 | A denial of service vulnerability in Juniper Networks NorthStar Controller Application pr… | 2025-04-20T21:44:57.209000Z |
| var-201707-1148 | An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The … | 2025-04-20T21:44:51.910000Z |
| var-201707-1163 | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari … | 2025-04-20T21:44:37.399000Z |
| var-201711-0424 | An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The … | 2025-04-20T21:43:44.795000Z |
| var-201705-3238 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS b… | 2025-04-20T21:43:44.020000Z |
| var-201707-1143 | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS b… | 2025-04-20T21:43:43.962000Z |
| var-201702-0464 | An issue was discovered in certain Apple products. iCloud before 6.0.1 is affected. The i… | 2025-04-20T21:43:41.213000Z |
| var-201705-3217 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari … | 2025-04-20T21:43:37.023000Z |
| var-201712-0269 | An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The … | 2025-04-20T21:43:32.672000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:3338-1 | Security update for ardana-ansible, ardana-cobbler, grafana, openstack-heat-templates, openstack-murano, python-Django, rabbitmq-server, rubygem-puma | 2022-09-22T14:15:54Z | 2022-09-22T14:15:54Z |
| suse-su-2022:3252-2 | Security update for freetype2 | 2022-09-22T09:26:38Z | 2022-09-22T09:26:38Z |
| suse-su-2022:3335-1 | Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer | 2022-09-22T06:51:44Z | 2022-09-22T06:51:44Z |
| suse-su-2022:3334-1 | Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer | 2022-09-22T06:51:24Z | 2022-09-22T06:51:24Z |
| suse-su-2022:3333-1 | Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container | 2022-09-22T06:46:45Z | 2022-09-22T06:46:45Z |
| suse-su-2022:3331-1 | Security update for libconfuse0 | 2022-09-21T14:41:32Z | 2022-09-21T14:41:32Z |
| suse-su-2022:3327-1 | Security update for oniguruma | 2022-09-21T10:47:37Z | 2022-09-21T10:47:37Z |
| suse-su-2022:3326-1 | Security update for go1.19 | 2022-09-21T10:28:53Z | 2022-09-21T10:28:53Z |
| suse-su-2022:3325-1 | Security update for go1.18 | 2022-09-21T10:28:29Z | 2022-09-21T10:28:29Z |
| suse-su-2022:3321-1 | Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container | 2022-09-20T15:19:24Z | 2022-09-20T15:19:24Z |
| suse-su-2022:3320-1 | Security update for vsftpd | 2022-09-20T12:47:13Z | 2022-09-20T12:47:13Z |
| suse-su-2022:3314-1 | Security update for SUSE Manager Server 4.2 | 2022-09-19T15:38:45Z | 2022-09-19T15:38:45Z |
| suse-su-2022:3313-1 | Security update for release-notes-susemanager, release-notes-susemanager-proxy | 2022-09-19T15:37:27Z | 2022-09-19T15:37:27Z |
| suse-su-2022:3312-1 | Security update for libcontainers-common | 2022-09-19T15:36:55Z | 2022-09-19T15:36:55Z |
| suse-su-2022:3311-1 | Security update for tika-core | 2022-09-19T14:38:04Z | 2022-09-19T14:38:04Z |
| suse-su-2022:3310-1 | Security update for tika-core | 2022-09-19T14:37:53Z | 2022-09-19T14:37:53Z |
| suse-su-2022:3309-1 | Security update for wireshark | 2022-09-19T13:51:54Z | 2022-09-19T13:51:54Z |
| suse-su-2022:3306-1 | Security update for libarchive | 2022-09-19T09:52:07Z | 2022-09-19T09:52:07Z |
| suse-su-2022:3305-1 | Security update for libtirpc | 2022-09-19T09:46:14Z | 2022-09-19T09:46:14Z |
| suse-su-2022:3294-1 | Security update for the Linux Kernel | 2022-09-16T16:46:06Z | 2022-09-16T16:46:06Z |
| suse-su-2022:3293-1 | Security update for the Linux Kernel | 2022-09-16T15:30:19Z | 2022-09-16T15:30:19Z |
| suse-su-2022:3292-1 | Security update for ruby2.5 | 2022-09-16T15:06:45Z | 2022-09-16T15:06:45Z |
| suse-su-2022:3291-1 | Security update for the Linux Kernel | 2022-09-16T14:57:33Z | 2022-09-16T14:57:33Z |
| suse-su-2022:3288-1 | Security update for the Linux Kernel | 2022-09-16T08:38:48Z | 2022-09-16T08:38:48Z |
| suse-su-2022:3287-1 | Security update for python-rsa | 2022-09-16T08:19:23Z | 2022-09-16T08:19:23Z |
| suse-su-2022:3286-1 | Security update for 389-ds | 2022-09-16T07:08:59Z | 2022-09-16T07:08:59Z |
| suse-su-2022:3284-1 | Security update for flatpak | 2022-09-15T14:23:18Z | 2022-09-15T14:23:18Z |
| suse-su-2022:3283-1 | Security update for libgit2 | 2022-09-15T13:33:57Z | 2022-09-15T13:33:57Z |
| suse-su-2022:3282-1 | Security update for the Linux Kernel | 2022-09-15T13:33:30Z | 2022-09-15T13:33:30Z |
| suse-su-2022:3281-1 | Security update for MozillaThunderbird | 2022-09-15T13:33:15Z | 2022-09-15T13:33:15Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2019:2283-1 | Security update for libseccomp | 2019-10-07T14:21:24Z | 2019-10-07T14:21:24Z |
| opensuse-su-2019:2282-1 | Security update for jasper | 2019-10-07T14:21:19Z | 2019-10-07T14:21:19Z |
| opensuse-su-2019:2281-1 | Security update for dovecot23 | 2019-10-07T14:21:10Z | 2019-10-07T14:21:10Z |
| opensuse-su-2019:2280-1 | Security update for libseccomp | 2019-10-07T14:21:04Z | 2019-10-07T14:21:04Z |
| opensuse-su-2019:2279-1 | Security update for jasper | 2019-10-07T14:20:59Z | 2019-10-07T14:20:59Z |
| opensuse-su-2019:2278-1 | Security update for dovecot23 | 2019-10-07T14:20:52Z | 2019-10-07T14:20:52Z |
| opensuse-su-2019:2277-1 | Security update for putty | 2019-10-07T12:22:43Z | 2019-10-07T12:22:43Z |
| opensuse-su-2019:2276-1 | Security update for putty | 2019-10-07T12:22:30Z | 2019-10-07T12:22:30Z |
| opensuse-su-2019:2271-1 | Security update for php7 | 2019-10-06T16:19:36Z | 2019-10-06T16:19:36Z |
| opensuse-su-2019:2269-1 | Security update for openssl-1_0_0 | 2019-10-06T09:58:29Z | 2019-10-06T09:58:29Z |
| opensuse-su-2019:2268-1 | Security update for openssl-1_0_0 | 2019-10-06T09:58:17Z | 2019-10-06T09:58:17Z |
| opensuse-su-2019:2265-1 | Security update for bind | 2019-10-06T09:57:56Z | 2019-10-06T09:57:56Z |
| opensuse-su-2019:2264-1 | Security update for nginx | 2019-10-06T09:57:45Z | 2019-10-06T09:57:45Z |
| opensuse-su-2019:2263-1 | Security update for bind | 2019-10-06T09:57:35Z | 2019-10-06T09:57:35Z |
| opensuse-su-2019:2260-1 | Security update for MozillaFirefox | 2019-10-06T09:57:06Z | 2019-10-06T09:57:06Z |
| opensuse-su-2019:2259-1 | Security update for python-numpy | 2019-10-06T08:20:28Z | 2019-10-06T08:20:28Z |
| opensuse-su-2019:2251-1 | Security update for MozillaFirefox | 2019-10-04T22:24:43Z | 2019-10-04T22:24:43Z |
| opensuse-su-2019:2249-1 | Security update for MozillaThunderbird | 2019-10-04T10:24:16Z | 2019-10-04T10:24:16Z |
| opensuse-su-2019:2248-1 | Security update for MozillaThunderbird | 2019-10-04T10:23:43Z | 2019-10-04T10:23:43Z |
| opensuse-su-2019:2247-1 | Security update for mosquitto | 2019-10-03T16:21:06Z | 2019-10-03T16:21:06Z |
| opensuse-su-2019:2245-1 | Security update for lxc | 2019-10-03T10:23:09Z | 2019-10-03T10:23:09Z |
| opensuse-su-2019:2244-1 | Security update for rust | 2019-10-03T09:22:00Z | 2019-10-03T09:22:00Z |
| opensuse-su-2019:2235-1 | Security update for u-boot | 2019-10-01T14:23:37Z | 2019-10-01T14:23:37Z |
| opensuse-su-2019:2234-1 | Security update for nghttp2 | 2019-10-01T14:21:00Z | 2019-10-01T14:21:00Z |
| opensuse-su-2019:2233-1 | Security update for u-boot | 2019-10-01T12:23:07Z | 2019-10-01T12:23:07Z |
| opensuse-su-2019:2232-1 | Security update for nghttp2 | 2019-10-01T10:23:24Z | 2019-10-01T10:23:24Z |
| opensuse-su-2019:2229-1 | Security update for chromium | 2019-10-01T08:20:36Z | 2019-10-01T08:20:36Z |
| opensuse-su-2019:2228-1 | Security update for chromium | 2019-10-01T08:20:14Z | 2019-10-01T08:20:14Z |
| opensuse-su-2019:2227-1 | Security update for python-numpy | 2019-09-30T18:21:50Z | 2019-09-30T18:21:50Z |
| opensuse-su-2019:2226-1 | Security update for SDL2 | 2019-09-30T18:21:43Z | 2019-09-30T18:21:43Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-10451 | Microsoft Excel代码执行漏洞(CNVD-2025-10451) | 2025-05-21 | 2025-05-22 |
| cnvd-2025-10450 | Microsoft Excel代码执行漏洞(CNVD-2025-10450) | 2025-05-21 | 2025-05-22 |
| cnvd-2025-10449 | Microsoft Excel代码执行漏洞(CNVD-2025-10449) | 2025-05-21 | 2025-05-22 |
| cnvd-2025-10448 | Microsoft Excel代码执行漏洞(CNVD-2025-10448) | 2025-05-21 | 2025-05-22 |
| cnvd-2025-10324 | D-Link DIR-823x存在拒绝服务漏洞 | 2025-04-04 | 2025-05-22 |
| cnvd-2025-09455 | 新华三技术有限公司H3C Magic R3010千兆双频Wi-Fi 6路由器存在逻辑缺陷漏洞 | 2025-03-27 | 2025-05-22 |
| cnvd-2025-11094 | Mattermost Mobile Apps拒绝服务漏洞(CNVD-2025-11094) | 2025-01-24 | 2025-05-21 |
| cnvd-2025-11093 | Mattermost Mobile Apps拒绝服务漏洞(CNVD-2025-11093) | 2025-01-24 | 2025-05-21 |
| cnvd-2025-11092 | Mattermost Mobile Apps拒绝服务漏洞(CNVD-2025-11092) | 2025-01-24 | 2025-05-21 |
| cnvd-2025-11091 | Mattermost拒绝服务漏洞(CNVD-2025-11091) | 2025-02-08 | 2025-05-21 |
| cnvd-2025-11083 | Mattermost信息泄露漏洞(CNVD-2025-11083) | 2025-04-22 | 2025-05-21 |
| cnvd-2025-10598 | Tenda RX3命令注入漏洞 | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10597 | Tenda FH451缓冲区溢出漏洞 | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10596 | Tenda FH451代码执行漏洞 | 2025-05-20 | 2025-05-21 |
| cnvd-2025-10595 | Tenda AC10 GetParentControlInfo函数缓冲区溢出漏洞 | 2025-05-20 | 2025-05-21 |
| cnvd-2025-10578 | Triangle MicroWorks SCADA Data Gateway任意代码执行漏洞 | 2023-08-07 | 2025-05-21 |
| cnvd-2025-10063 | PCMan FTP Server 'GLOB'缓冲区溢出漏洞 | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10062 | PCMan FTP Server 'BELL'缓冲区溢出漏洞 | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10061 | PCMan FTP Server 'ASCII'缓冲区溢出漏洞 | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10060 | PCMan FTP Server 'APPEND'缓冲区溢出漏洞 | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10057 | Google Chrome缓冲区溢出漏洞(CNVD-2025-10057) | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10056 | Google Chrome安全绕过漏洞(CNVD-2025-10056) | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10055 | Google Chrome安全绕过漏洞(CNVD-2025-10055) | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10054 | Google Chrome代码执行漏洞(CNVD-2025-10054) | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10053 | RT-Labs P-Net存在未明漏洞(CNVD-2025-10053) | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10052 | RT-Labs P-Net存在未明漏洞(CNVD-2025-10052) | 2025-05-14 | 2025-05-21 |
| cnvd-2025-10431 | Mattermost授权问题漏洞 | 2025-04-25 | 2025-05-20 |
| cnvd-2025-10430 | Mattermost访问控制不当漏洞 | 2025-04-25 | 2025-05-20 |
| cnvd-2025-10429 | Mattermost信息泄露漏洞 | 2025-04-25 | 2025-05-20 |
| cnvd-2025-10423 | Mattermost拒绝服务漏洞 | 2025-05-07 | 2025-05-20 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2015-avi-260 | Multiples vulnérabilités dans Drupal | 2015-06-18T00:00:00.000000 | 2015-06-18T00:00:00.000000 |
| certfr-2015-avi-259 | Multiples vulnérabilités dans les produits BlueCoat | 2015-06-17T00:00:00.000000 | 2015-06-17T00:00:00.000000 |
| certfr-2015-avi-258 | Vulnérabilité dans Huawei E5756s | 2015-06-16T00:00:00.000000 | 2015-06-16T00:00:00.000000 |
| certfr-2015-avi-257 | Multiples vulnérabilités dans OpenSSL | 2015-06-12T00:00:00.000000 | 2015-06-12T00:00:00.000000 |
| certfr-2015-avi-256 | Vulnérabilité dans Cisco IOS XR | 2015-06-12T00:00:00.000000 | 2015-06-12T00:00:00.000000 |
| certfr-2015-avi-255 | Multiples vulnérabilités dans Citrix XenServer | 2015-06-12T00:00:00.000000 | 2015-06-12T00:00:00.000000 |
| certfr-2015-avi-254 | Multiples vulnérabilités dans le noyau Linux Ubuntu | 2015-06-11T00:00:00.000000 | 2015-06-11T00:00:00.000000 |
| certfr-2015-avi-253 | Multiples vulnérabilités dans Adobe Flash Player | 2015-06-11T00:00:00.000000 | 2015-06-11T00:00:00.000000 |
| certfr-2015-avi-252 | Vulnérabilité dans QEMU | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-251 | Multiples vulnérabilités dans Microsoft Exchange Server | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-250 | Vulnérabilité dans le noyau de Microsoft Windows | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-249 | Vulnérabilité dans Microsoft Active Directory Federation Services | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-248 | Multiples vulnérabilités dans le noyau de Microsoft Windows | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-247 | Vulnérabilité dans Microsoft Common Controls | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-246 | Multiples vulnérabilités dans Microsoft Office | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-245 | Vulnérabilité dans Microsoft Windows Media Player | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-244 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-243 | Multiples vulnérabilités dans le noyau Linux Red Hat | 2015-06-09T00:00:00.000000 | 2015-06-09T00:00:00.000000 |
| certfr-2015-avi-242 | Multiples vulnérabilités dans Xen | 2015-06-03T00:00:00.000000 | 2015-06-03T00:00:00.000000 |
| certfr-2015-avi-241 | Multiples vulnérabilités dans Blue Coat SSL Visibility | 2015-06-02T00:00:00.000000 | 2015-06-02T00:00:00.000000 |
| certfr-2015-avi-240 | Vulnérabilité dans le produit SCADA Schneider OPC Factory Server | 2015-06-01T00:00:00.000000 | 2015-06-01T00:00:00.000000 |
| certfr-2015-avi-239 | Multiples vulnérabilités dans PostgreSQL | 2015-05-29T00:00:00.000000 | 2015-05-29T00:00:00.000000 |
| certfr-2015-avi-238 | Vulnérabilité dans le noyau Linux Red Hat | 2015-05-28T00:00:00.000000 | 2015-05-28T00:00:00.000000 |
| certfr-2015-avi-237 | Vulnérabilité dans le noyau Linux Ubuntu | 2015-05-26T00:00:00.000000 | 2015-05-26T00:00:00.000000 |
| certfr-2015-avi-236 | Multiples vulnérabilités dans le noyau Linux Ubuntu | 2015-05-20T00:00:00.000000 | 2015-05-20T00:00:00.000000 |
| certfr-2015-avi-235 | Vulnérabilité dans ProFTPd | 2015-05-20T00:00:00.000000 | 2015-05-20T00:00:00.000000 |
| certfr-2015-avi-234 | Multiples vulnérabilités dans PHP | 2015-05-20T00:00:00.000000 | 2015-05-20T00:00:00.000000 |
| certfr-2015-avi-233 | Multiples vulnérabilités dans Google Chrome | 2015-05-20T00:00:00.000000 | 2015-05-20T00:00:00.000000 |
| certfr-2015-avi-232 | Vulnérabilité dans BlueCoat XOS | 2015-05-19T00:00:00.000000 | 2015-05-19T00:00:00.000000 |
| certfr-2015-avi-231 | Vulnérabilité dans les produits Oracle | 2015-05-19T00:00:00.000000 | 2015-05-19T00:00:00.000000 |