Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-53435 |
8.1 (3.1)
|
WordPress Plan My Day theme <= 1.1.13 - Local File Inc… |
axiomthemes |
Plan My Day |
2025-12-18T07:21:46.620Z | 2026-01-20T14:28:09.726Z |
| CVE-2025-53438 |
8.1 (3.1)
|
WordPress FitLine theme <= 1.6 - Local File Inclusion … |
axiomthemes |
FitLine |
2025-12-18T07:21:47.228Z | 2026-01-20T14:28:09.672Z |
| CVE-2025-53437 |
8.1 (3.1)
|
WordPress Greenorganic theme <= 2.45 - Local File Incl… |
ApusTheme |
Greenorganic |
2025-12-18T07:21:47.030Z | 2026-01-20T14:28:09.573Z |
| CVE-2025-53433 |
9.8 (3.1)
|
WordPress EasyEat theme <= 1.9.0 - Local File Inclusio… |
AncoraThemes |
EasyEat |
2025-12-18T07:21:46.182Z | 2026-01-20T14:28:09.496Z |
| CVE-2025-53428 |
8.8 (3.1)
|
WordPress Simple User Registration plugin <= 6.4 - Pri… |
N-Media |
Simple User Registration |
2025-10-22T14:32:34.204Z | 2026-01-20T14:28:09.496Z |
| CVE-2025-53431 |
8.1 (3.1)
|
WordPress Emberlyn theme <= 1.3.1 - Local File Inclusi… |
AncoraThemes |
Emberlyn |
2025-12-18T07:21:45.771Z | 2026-01-20T14:28:09.478Z |
| CVE-2025-53430 |
8.1 (3.1)
|
WordPress Etta theme <= 1.14.0 - Local File Inclusion … |
AncoraThemes |
Etta |
2025-12-18T07:21:45.581Z | 2026-01-20T14:28:09.469Z |
| CVE-2025-53429 |
8.1 (3.1)
|
WordPress Exit Game theme <= 1.4.3 - Local File Inclus… |
AncoraThemes |
Exit Game |
2025-12-18T07:21:45.401Z | 2026-01-20T14:28:09.431Z |
| CVE-2025-53432 |
8.1 (3.1)
|
WordPress Echo theme <= 1.15.0 - Local File Inclusion … |
AncoraThemes |
Echo |
2025-12-18T07:21:45.954Z | 2026-01-20T14:28:09.429Z |
| CVE-2025-53426 |
7.1 (3.1)
|
WordPress Likert Survey Master plugin <= 0.8.0.1 - Cro… |
Bob |
Likert Survey Master |
2025-10-22T14:32:33.768Z | 2026-01-20T14:28:09.406Z |
| CVE-2025-53423 |
7.1 (3.1)
|
WordPress Triss theme <= 2.6 - Cross Site Scripting (X… |
designthemes |
Triss |
2025-10-22T14:32:33.165Z | 2026-01-20T14:28:09.403Z |
| CVE-2025-53424 |
6.5 (3.1)
|
WordPress WooCommerce Orders & Customers Exporter plug… |
vanquish |
WooCommerce Orders & Customers Exporter |
2025-10-22T14:32:33.353Z | 2026-01-20T14:28:09.399Z |
| CVE-2025-53420 |
7.1 (3.1)
|
WordPress WPLMS plugin <= 1.9.9.8 - Cross Site Scripti… |
VibeThemes |
WPLMS |
2025-10-22T14:32:32.282Z | 2026-01-20T14:28:09.384Z |
| CVE-2025-53422 |
7.1 (3.1)
|
WordPress WhatsApp Chat for WordPress and WooCommerce … |
ThemeWarriors |
WhatsApp Chat for WordPress and WooCommerce |
2025-10-22T14:32:32.974Z | 2026-01-20T14:28:09.372Z |
| CVE-2025-53421 |
6.3 (3.1)
|
WordPress Accordion plugin <= 2.3.14 - Broken Access C… |
PickPlugins |
Accordion |
2025-10-22T14:32:32.545Z | 2026-01-20T14:28:09.372Z |
| CVE-2025-53425 |
7.6 (3.1)
|
WordPress Dokan plugin <= 4.1.2 - Privilege Escalation… |
Dokan, Inc. |
Dokan |
2025-10-22T14:32:33.573Z | 2026-01-20T14:28:09.366Z |
| CVE-2025-53344 |
4.3 (3.1)
|
WordPress Thim Core Plugin <= 2.3.3 - Cross Site Reque… |
ThimPress |
Thim Core |
2026-01-05T16:42:57.646Z | 2026-01-20T14:28:09.362Z |
| CVE-2025-53349 |
6.1 (3.1)
|
WordPress Kalium Theme <= 3.18.3 - Cross Site Scriptin… |
Laborator |
Kalium |
2025-11-06T15:54:06.581Z | 2026-01-20T14:28:09.341Z |
| CVE-2025-53351 |
7.1 (3.1)
|
WordPress Fidelo Snippet plugin <= 1.12 - Cross Site S… |
Fidelo Software GmbH |
Fidelo Snippet |
2025-10-22T14:32:31.652Z | 2026-01-20T14:28:09.337Z |
| CVE-2025-53352 |
7.1 (3.1)
|
WordPress Grid Plus plugin <= 3.3 - Cross Site Scripti… |
G5Theme |
Grid Plus |
2025-10-22T14:32:31.986Z | 2026-01-20T14:28:09.308Z |
| CVE-2025-53283 |
10 (3.1)
|
WordPress Drop Uploader for CF7 - Drag&Drop File Uploa… |
borisolhor |
Drop Uploader for CF7 - Drag&Drop File Uploader Addon |
2025-11-06T15:54:03.506Z | 2026-01-20T14:28:09.297Z |
| CVE-2025-53350 |
7.1 (3.1)
|
WordPress Calendar Plus plugin <= 1.2.4 - Cross Site S… |
webjunk |
Calendar Plus |
2025-10-22T14:32:31.360Z | 2026-01-20T14:28:09.295Z |
| CVE-2025-53316 |
8.8 (3.1)
|
WordPress WP GDPR Cookie Consent plugin <= 1.0.0 - Cro… |
Shahjahan Jewel |
WP GDPR Cookie Consent |
2025-11-06T15:54:04.995Z | 2026-01-20T14:28:09.287Z |
| CVE-2025-53324 |
5.4 (3.1)
|
WordPress Gutenify Plugin <= 1.5.7 - Cross Site Script… |
CodeYatri |
Gutenify |
2025-11-06T15:54:05.737Z | 2026-01-20T14:28:09.259Z |
| CVE-2025-53242 |
9.8 (3.1)
|
WordPress Seil Theme <= 1.7.1 - Deserialization of unt… |
VictorThemes |
Seil |
2025-11-06T15:53:58.962Z | 2026-01-20T14:28:09.204Z |
| CVE-2025-53235 |
7.1 (3.1)
|
WordPress Easy Social plugin <= 1.3 - Cross Site Scrip… |
osuthorpe |
Easy Social |
2025-12-31T20:11:25.669Z | 2026-01-20T14:28:09.199Z |
| CVE-2025-53297 |
7.1 (3.1)
|
WordPress Woocommerce Envato Affiliates plugin <= 1.2.… |
AA-Team |
Woocommerce Envato Affiliates |
2025-10-22T14:32:31.023Z | 2026-01-20T14:28:09.198Z |
| CVE-2025-53245 |
5.4 (3.1)
|
WordPress WP Logo Changer Plugin <= 1.2 - Cross Site S… |
Afzal Multani |
WP Logo Changer |
2025-11-06T15:53:59.391Z | 2026-01-20T14:28:09.187Z |
| CVE-2025-53238 |
7.1 (3.1)
|
WordPress Toast Mobile Menu plugin <= 1.0.7 - Cross Si… |
Toast Plugins |
Toast Mobile Menu |
2025-10-22T14:32:30.376Z | 2026-01-20T14:28:09.178Z |
| CVE-2025-53246 |
8.8 (3.1)
|
WordPress Backup and Move Plugin <= 0.1 - Broken Acces… |
Gaurav Aggarwal |
Backup and Move |
2025-11-06T15:53:59.915Z | 2026-01-20T14:28:09.176Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-62010 |
8.1 (3.1)
|
WordPress Famita theme <= 1.54 - Local File Inclusion … |
ApusTheme |
Famita |
2025-11-06T15:55:21.866Z | 2026-01-20T14:28:13.040Z |
| CVE-2025-62009 |
4.3 (3.1)
|
WordPress UPC/EAN/GTIN Code Generator plugin <= 2.0.2 … |
Dmitry V. (CEO of "UKR Solution") |
UPC/EAN/GTIN Code Generator |
2025-10-22T14:32:48.527Z | 2026-01-20T14:28:13.052Z |
| CVE-2025-62008 |
8.8 (3.1)
|
WordPress Product Table For WooCommerce plugin <= 1.2.… |
acowebs |
Product Table For WooCommerce |
2025-10-22T14:32:48.273Z | 2026-01-20T14:28:13.044Z |
| CVE-2025-62007 |
8.8 (3.1)
|
WordPress Voice Feedback plugin <= 1.0.3 - Privilege E… |
bPlugins |
Voice Feedback |
2025-10-22T14:32:47.880Z | 2026-01-20T14:28:12.873Z |
| CVE-2025-62006 |
5.4 (3.1)
|
WordPress WP SMS plugin <= 7.0.1 - Broken Access Contr… |
VeronaLabs |
WP SMS |
2025-10-22T14:32:47.684Z | 2026-01-20T14:28:13.040Z |
| CVE-2025-62005 |
7.1 (3.1)
|
WordPress SUMO Memberships for WooCommerce plugin < 7.… |
FantasticPlugins |
SUMO Memberships for WooCommerce |
2025-10-22T14:32:47.453Z | 2026-01-20T14:28:13.038Z |
| CVE-2025-60248 |
7.5 (3.1)
|
WordPress WPC Product Options for WooCommerce plugin <… |
WPClever |
WPC Product Options for WooCommerce |
2025-11-06T15:55:21.142Z | 2026-01-20T14:28:13.000Z |
| CVE-2025-60247 |
6.5 (3.1)
|
WordPress Bux Woocommerce plugin <= 1.2.3 - Broken Acc… |
Bux |
Bux Woocommerce |
2025-11-06T15:55:20.539Z | 2026-01-20T14:28:12.911Z |
| CVE-2025-60246 |
7.1 (3.1)
|
WordPress Simple Finance Calculator plugin <= 1.0 - Re… |
weissmike |
Simple Finance Calculator |
2025-10-22T14:32:47.237Z | 2026-01-20T14:28:12.981Z |
| CVE-2025-60245 |
9.8 (3.1)
|
WordPress WP User Manager plugin <= 2.9.12 - PHP Objec… |
WP User Manager |
WP User Manager |
2025-11-06T15:55:19.859Z | 2026-01-20T14:28:13.047Z |
| CVE-2025-60244 |
7.1 (3.1)
|
WordPress TableOn plugin <= 1.0.4.2 - Content Injectio… |
RealMag777 |
TableOn |
2025-11-06T15:55:18.193Z | 2026-01-20T14:28:12.860Z |
| CVE-2025-60243 |
9.8 (3.1)
|
WordPress Selling Commander for WooCommerce plugin <= … |
Holest Engineering |
Selling Commander for WooCommerce |
2025-11-06T15:55:15.782Z | 2026-01-20T14:28:12.895Z |
| CVE-2025-60242 |
7.5 (3.1)
|
WordPress Download Counter plugin <= 1.4 - Arbitrary F… |
Anatoly |
Download Counter |
2025-11-06T15:55:14.917Z | 2026-01-20T14:28:12.776Z |
| CVE-2025-60241 |
7.5 (3.1)
|
WordPress Premmerce plugin <= 1.3.19 - Local File Incl… |
Premmerce |
Premmerce |
2025-11-06T15:55:13.362Z | 2026-01-20T14:28:12.936Z |
| CVE-2025-60240 |
7.5 (3.1)
|
WordPress AnyComment plugin <= 0.3.6 - Local File Incl… |
Alexander |
AnyComment |
2025-11-06T15:55:10.324Z | 2026-01-20T14:28:12.866Z |
| CVE-2025-60239 |
8.5 (3.1)
|
WordPress CoSchool LMS plugin <= 1.4.3 - SQL Injection… |
Codexpert, Inc |
CoSchool LMS |
2025-11-06T15:55:09.493Z | 2026-01-20T14:28:12.963Z |
| CVE-2025-60238 |
9.8 (3.1)
|
WordPress UNIVERSAM plugin <= 8.72.34 - PHP Object Inj… |
universam |
UNIVERSAM |
2025-10-22T14:32:47.058Z | 2026-01-20T14:28:12.553Z |
| CVE-2025-60235 |
10 (3.1)
|
WordPress Helpdesk Support Ticket System for WooCommer… |
Plugify |
Helpdesk Support Ticket System for WooCommerce |
2025-11-06T15:55:07.928Z | 2026-01-20T14:28:12.539Z |
| CVE-2025-60234 |
8.8 (3.1)
|
WordPress Single Property theme <= 2.8 - PHP Object In… |
designthemes |
Single Property |
2025-10-22T14:32:46.860Z | 2026-01-20T14:28:12.552Z |
| CVE-2025-60232 |
9.8 (3.1)
|
WordPress KBx Pro Ultimate plugin <= 8.0.5 - PHP Objec… |
quantumcloud |
KBx Pro Ultimate |
2025-10-22T14:32:46.670Z | 2026-01-20T14:28:12.559Z |
| CVE-2025-60228 |
8.8 (3.1)
|
WordPress Knowledge Base theme <= 2.9 - PHP Object Inj… |
designthemes |
Knowledge Base |
2025-10-22T14:32:46.487Z | 2026-01-20T14:28:12.451Z |
| CVE-2025-60227 |
8.6 (3.1)
|
WordPress WP Pipes plugin <= 1.4.3 - Arbitrary File De… |
ThimPress |
WP Pipes |
2025-10-22T14:32:46.277Z | 2026-01-20T14:28:12.468Z |
| CVE-2025-60226 |
9.8 (3.1)
|
WordPress White Rabbit theme <= 1.5.2 - PHP Object Inj… |
axiomthemes |
White Rabbit |
2025-10-22T14:32:46.090Z | 2026-01-20T14:28:12.467Z |
| CVE-2025-60225 |
9.8 (3.1)
|
WordPress BugsPatrol theme <= 1.5.0 - PHP Object Injec… |
AncoraThemes |
BugsPatrol |
2025-10-22T14:32:45.876Z | 2026-01-20T14:28:12.508Z |
| CVE-2025-60224 |
9.8 (3.1)
|
WordPress Subscribe to Download plugin <= 2.0.9 - PHP … |
wpshuffle |
Subscribe to Download |
2025-10-22T14:32:45.675Z | 2026-01-20T14:28:12.485Z |
| CVE-2025-60222 |
8.8 (3.1)
|
WordPress SUMO Memberships for WooCommerce plugin <= 7… |
FantasticPlugins |
SUMO Memberships for WooCommerce |
2025-10-22T14:32:45.465Z | 2026-01-20T14:28:12.484Z |
| CVE-2025-60221 |
9.8 (3.1)
|
WordPress Captivate Sync Plugin <= 3.0.3 - PHP Object … |
captivateaudio |
Captivate Sync |
2025-10-22T14:32:45.187Z | 2026-01-20T14:28:12.492Z |
| CVE-2025-60220 |
9.8 (3.1)
|
WordPress CouponXxL theme <= 3.0.0 - Privilege Escalat… |
pebas |
CouponXxL |
2025-10-22T14:32:44.897Z | 2026-01-20T14:28:12.413Z |
| CVE-2025-60217 |
7.7 (3.1)
|
WordPress PT Luxa Addons Plugin <= 1.2.2 - Arbitrary F… |
ypromo |
PT Luxa Addons |
2025-10-22T14:32:44.691Z | 2026-01-20T14:28:12.511Z |
| CVE-2025-60216 |
9.8 (3.1)
|
WordPress Addison theme <= 1.4.2 - PHP Object Injectio… |
BoldThemes |
Addison |
2025-10-22T14:32:44.405Z | 2026-01-20T14:28:12.460Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-60228 | Deserialization of Untrusted Data vulnerability in designthemes Knowledge Base kbase allows Object … | 2025-10-22T15:16:00.003 | 2026-01-20T15:17:35.747 |
| fkie_cve-2025-60227 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Thi… | 2025-10-22T15:15:59.877 | 2026-01-20T15:17:35.540 |
| fkie_cve-2025-60226 | Deserialization of Untrusted Data vulnerability in axiomthemes White Rabbit whiterabbit allows Obje… | 2025-10-22T15:15:59.757 | 2026-01-20T15:17:35.367 |
| fkie_cve-2025-60225 | Deserialization of Untrusted Data vulnerability in AncoraThemes BugsPatrol bugspatrol allows Object… | 2025-10-22T15:15:59.620 | 2026-01-20T15:17:35.197 |
| fkie_cve-2025-60224 | Deserialization of Untrusted Data vulnerability in wpshuffle Subscribe to Download subscribe-to-dow… | 2025-10-22T15:15:59.497 | 2026-01-20T15:17:35.007 |
| fkie_cve-2025-60222 | Incorrect Privilege Assignment vulnerability in FantasticPlugins SUMO Memberships for WooCommerce s… | 2025-10-22T15:15:59.377 | 2026-01-20T15:17:34.830 |
| fkie_cve-2025-60221 | Deserialization of Untrusted Data vulnerability in captivateaudio Captivate Sync captivatesync-trad… | 2025-10-22T15:15:59.257 | 2026-01-20T15:17:34.663 |
| fkie_cve-2025-60220 | Incorrect Privilege Assignment vulnerability in pebas CouponXxL couponxxl allows Privilege Escalati… | 2025-10-22T15:15:59.107 | 2026-01-20T15:17:34.483 |
| fkie_cve-2025-60217 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ypr… | 2025-10-22T15:15:58.967 | 2026-01-20T15:17:34.307 |
| fkie_cve-2025-60216 | Deserialization of Untrusted Data vulnerability in BoldThemes Addison addison allows Object Injecti… | 2025-10-22T15:15:58.843 | 2026-01-20T15:17:33.840 |
| fkie_cve-2025-60215 | Deserialization of Untrusted Data vulnerability in designthemes Kriya kriya allows Object Injection… | 2025-10-22T15:15:58.720 | 2026-01-20T15:17:33.070 |
| fkie_cve-2025-60214 | Deserialization of Untrusted Data vulnerability in BoldThemes Goldenblatt goldenblatt allows Object… | 2025-10-22T15:15:58.607 | 2026-01-20T15:17:32.903 |
| fkie_cve-2025-60213 | Deserialization of Untrusted Data vulnerability in Whitebox-Studio Scape scape allows Object Inject… | 2025-10-22T15:15:58.487 | 2026-01-20T15:17:32.760 |
| fkie_cve-2025-60212 | Deserialization of Untrusted Data vulnerability in designthemes VEDA veda allows Object Injection.T… | 2025-10-22T15:15:58.370 | 2026-01-20T15:17:32.570 |
| fkie_cve-2025-60211 | Incorrect Privilege Assignment vulnerability in extendons WooCommerce Registration Fields Plugin - … | 2025-10-22T15:15:58.250 | 2026-01-20T15:17:32.403 |
| fkie_cve-2025-60210 | Deserialization of Untrusted Data vulnerability in wpeverest Everest Forms - Frontend Listing evere… | 2025-10-22T15:15:58.123 | 2026-01-20T15:17:32.247 |
| fkie_cve-2025-60209 | Deserialization of Untrusted Data vulnerability in CRM Perks Connector for Gravity Forms and Google… | 2025-10-22T15:15:57.983 | 2026-01-20T15:17:32.080 |
| fkie_cve-2025-60208 | Cross-Site Request Forgery (CSRF) vulnerability in Tusko Trush Advanced Custom Fields : CPT Options… | 2025-10-22T15:15:57.843 | 2026-01-20T15:17:31.940 |
| fkie_cve-2025-60207 | Unrestricted Upload of File with Dangerous Type vulnerability in Addify Custom User Registration Fi… | 2025-11-06T16:16:06.153 | 2026-01-20T15:17:31.803 |
| fkie_cve-2025-60206 | Improper Control of Generation of Code ('Code Injection') vulnerability in Bearsthemes Alone alone … | 2025-10-22T15:15:57.720 | 2026-01-20T15:17:31.670 |
| fkie_cve-2025-60204 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:06.010 | 2026-01-20T15:17:31.540 |
| fkie_cve-2025-60203 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:05.860 | 2026-01-20T15:17:31.403 |
| fkie_cve-2025-60202 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:05.713 | 2026-01-20T15:17:31.270 |
| fkie_cve-2025-60201 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:05.570 | 2026-01-20T15:17:31.137 |
| fkie_cve-2025-60200 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:05.423 | 2026-01-20T15:17:31.007 |
| fkie_cve-2025-60199 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:05.267 | 2026-01-20T15:17:30.870 |
| fkie_cve-2025-60198 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:05.113 | 2026-01-20T15:17:30.733 |
| fkie_cve-2025-60197 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:04.953 | 2026-01-20T15:17:30.593 |
| fkie_cve-2025-60196 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:04.803 | 2026-01-20T15:17:30.463 |
| fkie_cve-2025-60195 | Incorrect Privilege Assignment vulnerability in Vito Peleg Atarim atarim-visual-collaboration allow… | 2025-11-06T16:16:04.653 | 2026-01-20T15:17:30.330 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-g24c-fx4v-xg9w |
5.3 (3.1)
|
Mattermost Server has Insufficient Session Expiration when used as an OAuth 2.0 service provider | 2022-05-24T17:21:06Z | 2026-01-12T20:18:44Z |
| ghsa-8pff-p3gx-w4jf |
6.1 (3.1)
|
Mattermost Server vulnerable to XSS via an uploaded file | 2022-05-24T17:21:06Z | 2026-01-12T20:18:18Z |
| ghsa-fcwg-45jh-5qhf |
8.8 (3.1)
|
Mattermost Server vulnerable to CSRF if CORS is enabled | 2022-05-24T17:21:06Z | 2026-01-12T20:17:23Z |
| ghsa-c253-8hr4-r8v9 |
5.3 (3.1)
|
Mattermost Server exposes private team invite ID | 2022-05-24T17:21:06Z | 2026-01-12T20:16:26Z |
| ghsa-8q4v-35v6-g8wr |
9.8 (3.1)
|
Mattermost Server is vulnerable CSV Injection | 2022-05-24T17:21:06Z | 2026-01-12T20:15:53Z |
| ghsa-9rp8-h4g8-8766 |
5.3 (3.1)
|
Weblate wlc has insecure API key configuration | 2026-01-12T18:07:03Z | 2026-01-12T20:07:26Z |
| ghsa-2mmv-7rrp-g8xh |
2.5 (3.1)
|
Weblate command-line client susceptible to SSL verification skip | 2026-01-12T16:13:33Z | 2026-01-12T20:07:14Z |
| ghsa-2mq9-hm29-8qch |
8.6 (4.0)
|
Label Studio is vulnerable to full account takeover by chaining Stored XSS + IDOR in User Profile v… | 2026-01-12T16:12:50Z | 2026-01-12T20:06:35Z |
| ghsa-ch7p-mpv4-4vg4 |
4.9 (3.1)
|
CoreShop Vulnerable to SQL Injection via Admin Reports | 2026-01-07T19:29:50Z | 2026-01-12T20:06:21Z |
| ghsa-9589-mq83-f749 |
5.3 (3.1)
|
Mattermost Server is vulnerable to DoS through maliciously crafted posts | 2022-05-24T17:21:05Z | 2026-01-12T19:29:16Z |
| ghsa-63wg-qmrv-7q66 |
5.3 (3.1)
|
Mattermost Server allows attackers to log sensitive information via DEBUG REST API logging endpoint | 2022-05-24T17:21:05Z | 2026-01-12T19:28:48Z |
| ghsa-f7c3-7vp3-44p6 |
6.1 (3.1)
|
Mattermost Server mishandles redirect denial action | 2022-05-24T17:21:05Z | 2026-01-12T19:27:05Z |
| ghsa-p25m-jpj4-qcrr |
7.5 (3.1)
|
Denial of Service Vulnerability in gRPC TCP Server (Posix-compatible platforms) | 2023-09-13T18:31:26Z | 2026-01-12T19:17:00Z |
| ghsa-9c3x-r3wp-mgxm |
3.1 (3.1)
2.3 (4.0)
|
Symfony allows internal address and port enumeration by NoPrivateNetworkHttpClient | 2024-11-06T15:16:09Z | 2026-01-12T19:08:03Z |
| ghsa-gg42-mwr6-p82c |
8.1 (3.1)
|
Mattermost Server has intermittent Authorization bypass for resource-owners | 2022-05-24T17:21:05Z | 2026-01-12T18:34:33Z |
| ghsa-rv23-6fx7-9r87 |
9.9 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to escalate privileges | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-mp53-vxqr-3f76 |
9.8 (3.1)
|
An issue in Automai BotManager v.25.2.0 allows a remote attacker to execute arbitrary code via the … | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-m3m3-pp28-9hrp |
4.8 (3.1)
|
The Quiz Maker WordPress plugin before 6.7.0.89 does not sanitise and escape some of its settings, … | 2026-01-12T06:30:14Z | 2026-01-12T18:30:30Z |
| ghsa-f3vq-4x38-vg3x |
5.5 (3.1)
|
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe … | 2026-01-10T00:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-f2cj-whwv-wjfw |
6.5 (3.1)
|
The issue was addressed with improved memory handling. This issue is fixed in tvOS 26.2, Safari 26.… | 2026-01-10T00:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-c87m-hx3f-42wq |
5.3 (3.1)
|
Quest KACE Desktop Authority through 11.3.1 has Insecure Permissions on the Named Pipes used for in… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-8mfp-xmv3-hv35 |
8.1 (3.1)
|
Authentication Bypass by Spoofing vulnerability in Apache NimBLE. Receiving specially crafted Secu… | 2026-01-10T12:30:15Z | 2026-01-12T18:30:30Z |
| ghsa-7g4v-c9v7-6647 |
8.8 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to execute arbitrary code via the up… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-6phw-p8vc-q8gp |
7.5 (3.1)
|
NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection comp… | 2026-01-10T12:30:16Z | 2026-01-12T18:30:30Z |
| ghsa-4rm3-56gv-9xv3 |
8.2 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to escalate privileges and obtain se… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-44vp-c93r-6656 |
9.8 (3.1)
|
EDIMAX BR-6208AC V2_1.02 is vulnerable to Command Injection. This arises because the pppUserName fi… | 2026-01-09T18:31:37Z | 2026-01-12T18:30:30Z |
| ghsa-3hjw-x946-3rhg |
8.2 (3.1)
|
Errands before 46.2.10 does not verify TLS certificates for CalDAV servers. | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-qgg6-hj2r-3x43 |
7.5 (3.1)
|
fluidsynth-2.4.6 and earlier versions is vulnerable to Null pointer dereference in fluid_synth_mono… | 2026-01-09T18:31:36Z | 2026-01-12T18:30:29Z |
| ghsa-jxg2-gp53-m88h |
7.5 (3.1)
|
In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service sy… | 2026-01-09T18:31:36Z | 2026-01-12T18:30:29Z |
| ghsa-9w9h-4qfh-f6m6 |
6.5 (3.1)
|
An Information Disclosure vulnerability in CouchCMS 2.4 allow an Admin user to read arbitrary files… | 2026-01-09T18:31:36Z | 2026-01-12T18:30:29Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-27551 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.444717Z |
| gsd-2024-27585 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.443697Z |
| gsd-2024-27808 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.443249Z |
| gsd-2024-27718 | SQL Injection vulnerability in Baizhuo Network Smart s200 Management Platform v.S200 allo… | 2024-02-27T06:02:31.443051Z |
| gsd-2024-27803 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.442549Z |
| gsd-2024-27668 | Flusity-CMS v2.33 is affected by: Cross Site Scripting (XSS) in 'Custom Blocks.' | 2024-02-27T06:02:31.441999Z |
| gsd-2024-27767 | CWE-287: Improper Authentication may allow Authentication Bypass | 2024-02-27T06:02:31.441789Z |
| gsd-2024-27817 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.441587Z |
| gsd-2024-27821 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.440364Z |
| gsd-2024-27532 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.438478Z |
| gsd-2024-27894 | The Pulsar Functions Worker includes a capability that permits authenticated users to cre… | 2024-02-27T06:02:31.438285Z |
| gsd-2024-27729 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.438087Z |
| gsd-2024-27847 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.437891Z |
| gsd-2024-27845 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.437691Z |
| gsd-2024-27465 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.437244Z |
| gsd-2024-27573 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.436756Z |
| gsd-2024-27542 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.436565Z |
| gsd-2024-27592 | Open Redirect vulnerability in Corezoid Process Engine v6.5.0 allows attackers to redirec… | 2024-02-27T06:02:31.436371Z |
| gsd-2024-27572 | LBT T300-T390 v2.2.1.8 were discovered to contain a stack overflow via the ApCliSsid para… | 2024-02-27T06:02:31.435704Z |
| gsd-2024-27815 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.434777Z |
| gsd-2024-27650 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.434576Z |
| gsd-2024-27567 | LBT T300- T390 v2.2.1.8 were discovered to contain a stack overflow via the vpn_client_ip… | 2024-02-27T06:02:31.434383Z |
| gsd-2024-27828 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.433879Z |
| gsd-2024-27612 | Numbas editor before 7.3 mishandles editing of themes and extensions. | 2024-02-27T06:02:31.433429Z |
| gsd-2024-27857 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.433232Z |
| gsd-2024-27528 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.432647Z |
| gsd-2024-27755 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.432104Z |
| gsd-2024-27719 | A cross site scripting (XSS) vulnerability in rems FAQ Management System v.1.0 allows a r… | 2024-02-27T06:02:31.431667Z |
| gsd-2024-27867 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.431469Z |
| gsd-2024-27658 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain Null-pointer dereferences in sub_44… | 2024-02-27T06:02:31.430482Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-186524 | Malicious code in delphinus-framework-miranda-chalk (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186523 | Malicious code in delphinus-chromedriver-quasar-cordelia (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186522 | Malicious code in deimos-wezen-parsec-transport (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186521 | Malicious code in deimos-selenium-local-futurology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186520 | Malicious code in deimos-redshift-plutology-google (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186519 | Malicious code in deimos-polaris-gridsome-magellan (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186518 | Malicious code in deimos-phoenix-impulse-standard (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186517 | Malicious code in deimos-koa-build-figures (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186516 | Malicious code in deimos-iota-luminescence-geochemistry (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186515 | Malicious code in deimos-hermes-quantum-venus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186514 | Malicious code in deimos-concurrently-outercore-browserify (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186513 | Malicious code in deimos-ceres-astro-isostasy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186512 | Malicious code in deimos-await-castor-dotenv (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186511 | Malicious code in decrypt-xml-compress-moon-file (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186510 | Malicious code in decrypt-sun-mock-rain-debug (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186509 | Malicious code in decrypt-info-meta-table-big (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186508 | Malicious code in decrypt-import-info-optimize-authorize (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186507 | Malicious code in decompress-tree-protected-upsilon-mu (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186506 | Malicious code in decompress-simple-lambda-container-meta (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186505 | Malicious code in decompress-sed-sudo-index-nu (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186504 | Malicious code in decompress-deserialize-nu-new-emulate (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186503 | Malicious code in decoherence-neptune-saturnology-transport (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186502 | Malicious code in decoherence-fetch-wezen-enif (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186501 | Malicious code in decode-info-new-finally-new (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186500 | Malicious code in decode-export-data-cold-error (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186499 | Malicious code in decode-authenticate-final-delta-enum (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186498 | Malicious code in debug-user-pipe-sun-simple (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186497 | Malicious code in debug-tau-wind-gamma-sun (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186496 | Malicious code in debug-container-zeta-load-log (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186495 | Malicious code in debug-char-code-double-encode (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-1293 | IBM InfoSphere Information Server: Mehrere Schwachstellen | 2023-05-23T22:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1292 | HCL Domino: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-23T22:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1291 | VMware NSX-T: Schwachstelle ermöglicht Cross-Site Scripting | 2023-05-23T22:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1289 | EMC Avamar: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2023-05-23T22:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1288 | SolarWinds Platform: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2023-05-23T22:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1287 | IBM InfoSphere Information Server: Schwachstelle ermöglicht Codeausführung | 2023-05-23T22:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1286 | PHP: Mehrere Schwachstellen | 2013-03-05T23:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1285 | PHP: Schwachstelle ermöglicht Ausführen beliebigen Programmcodes mit den Rechten des Dienstes | 2013-07-11T22:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1283 | PHP: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2013-12-10T23:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1282 | PHP: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2014-05-04T22:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1281 | PHP: Mehrere Schwachstellen | 2015-03-19T23:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1157 | GNOME: Mehrere Schwachstellen | 2018-09-03T22:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1123 | Red Hat Enterprise Linux (libwebp): Mehrere Schwachstellen | 2021-11-09T23:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2022-0586 | PHP: Schwachstelle ermöglicht Privilegieneskalation | 2021-10-21T22:00:00.000+00:00 | 2023-05-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1278 | IGEL OS: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-22T22:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-1277 | IBM InfoSphere Information Server: Mehrere Schwachstellen | 2023-05-22T22:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-1276 | Linksys Router: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2023-05-22T22:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-1275 | Netgate pfSense: Mehrere Schwachstellen | 2023-05-22T22:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-1274 | Red Hat OpenShift: Schwachstelle ermöglicht Denial of Service | 2020-07-30T22:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-1271 | npm: Schwachstelle ermöglicht Codeausführung | 2023-05-22T22:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-1270 | Hitachi Ops Center: Schwachstelle ermöglicht Cross-Site Scripting | 2023-05-22T22:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-0888 | tcpdump: Schwachstelle ermöglicht Denial of Service | 2023-04-10T22:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-0686 | Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2023-03-19T23:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-0080 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-01-11T23:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-0034 | Keycloak: Schwachstelle ermöglicht Manipulation von Daten | 2023-01-05T23:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-0032 | Synology Router Manager: Mehrere Schwachstellen | 2023-01-05T23:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2022-0567 | Red Hat OpenShift: Mehrere Schwachstellen | 2021-03-24T23:00:00.000+00:00 | 2023-05-22T22:00:00.000+00:00 |
| wid-sec-w-2023-1268 | IBM InfoSphere Information Server: Mehrere Schwachstellen | 2023-05-21T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2023-1266 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-05-21T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2023-1265 | WordPress: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-05-21T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2021:3381 | Red Hat Security Advisory: kpatch-patch security update | 2021-08-31T09:36:58+00:00 | 2025-12-08T07:19:00+00:00 |
| rhsa-2021:3380 | Red Hat Security Advisory: kpatch-patch security update | 2021-08-31T09:18:03+00:00 | 2025-12-08T07:19:00+00:00 |
| rhsa-2021:3375 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2021-08-31T08:56:13+00:00 | 2025-12-08T07:18:59+00:00 |
| rhsa-2021:3363 | Red Hat Security Advisory: kernel security, bug fix, and enhancement update | 2021-08-31T09:30:45+00:00 | 2025-12-08T07:18:58+00:00 |
| rhsa-2021:3235 | Red Hat Security Advisory: Red Hat Virtualization Host security and bug fix update [ovirt-4.4.7] | 2021-08-19T15:51:36+00:00 | 2025-12-08T07:18:58+00:00 |
| rhsa-2021:3328 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2021-08-31T09:18:32+00:00 | 2025-12-08T07:18:57+00:00 |
| rhsa-2021:3327 | Red Hat Security Advisory: kernel security and bug fix update | 2021-08-31T09:22:59+00:00 | 2025-12-08T07:18:57+00:00 |
| rhsa-2021:3321 | Red Hat Security Advisory: kernel security and bug fix update | 2021-08-31T08:15:38+00:00 | 2025-12-08T07:18:55+00:00 |
| rhsa-2021:3181 | Red Hat Security Advisory: kpatch-patch security update | 2021-08-17T08:33:52+00:00 | 2025-12-08T07:18:52+00:00 |
| rhsa-2021:3173 | Red Hat Security Advisory: kernel security update | 2021-08-17T08:35:56+00:00 | 2025-12-08T07:18:52+00:00 |
| rhsa-2021:3088 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2021-08-10T13:17:32+00:00 | 2025-12-08T07:18:50+00:00 |
| rhsa-2021:3057 | Red Hat Security Advisory: kernel security, bug fix, and enhancement update | 2021-08-10T13:19:09+00:00 | 2025-12-08T07:18:48+00:00 |
| rhsa-2021:3044 | Red Hat Security Advisory: kpatch-patch security update | 2021-08-10T11:21:13+00:00 | 2025-12-08T07:18:44+00:00 |
| rhsa-2022:1759 | Red Hat Security Advisory: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | 2022-05-10T13:24:40+00:00 | 2025-12-05T16:22:50+00:00 |
| rhsa-2021:3704 | Red Hat Security Advisory: virt:8.2 and virt-devel:8.2 security update | 2021-09-30T19:06:20+00:00 | 2025-12-05T16:22:47+00:00 |
| rhsa-2021:3703 | Red Hat Security Advisory: virt:av and virt-devel:av security and bug fix update | 2021-09-30T16:59:11+00:00 | 2025-12-05T16:22:43+00:00 |
| rhsa-2006:0697 | Red Hat Security Advisory: openssh security update | 2006-09-29T00:18:00+00:00 | 2025-12-05T11:58:44+00:00 |
| rhsa-2025:17509 | Red Hat Security Advisory: open-vm-tools security update | 2025-10-07T17:32:23+00:00 | 2025-12-04T22:50:37+00:00 |
| rhsa-2025:17428 | Red Hat Security Advisory: open-vm-tools security update | 2025-10-07T06:02:39+00:00 | 2025-12-04T22:50:37+00:00 |
| rhsa-2025:17510 | Red Hat Security Advisory: open-vm-tools security update | 2025-10-07T17:29:39+00:00 | 2025-12-04T22:50:36+00:00 |
| rhsa-2025:17511 | Red Hat Security Advisory: open-vm-tools security update | 2025-10-07T17:31:58+00:00 | 2025-12-04T22:50:35+00:00 |
| rhsa-2025:17429 | Red Hat Security Advisory: open-vm-tools security update | 2025-10-07T05:56:39+00:00 | 2025-12-04T22:50:35+00:00 |
| rhsa-2025:17512 | Red Hat Security Advisory: open-vm-tools security update | 2025-10-07T17:21:45+00:00 | 2025-12-04T22:50:33+00:00 |
| rhsa-2025:17446 | Red Hat Security Advisory: open-vm-tools security update | 2025-10-07T07:59:24+00:00 | 2025-12-04T22:50:33+00:00 |
| rhsa-2025:17452 | Red Hat Security Advisory: open-vm-tools security update | 2025-10-07T09:30:19+00:00 | 2025-12-04T22:50:31+00:00 |
| rhsa-2025:17445 | Red Hat Security Advisory: open-vm-tools security update | 2025-10-07T08:07:51+00:00 | 2025-12-04T22:50:29+00:00 |
| rhsa-2025:15471 | Red Hat Security Advisory: kernel security update | 2025-09-08T15:06:34+00:00 | 2025-12-04T22:49:57+00:00 |
| rhsa-2025:11411 | Red Hat Security Advisory: kernel security update | 2025-07-21T04:16:44+00:00 | 2025-12-04T22:49:38+00:00 |
| rhsa-2025:8142 | Red Hat Security Advisory: kernel security update | 2025-05-26T12:10:27+00:00 | 2025-12-04T22:49:27+00:00 |
| rhsa-2025:7956 | Red Hat Security Advisory: kernel security update | 2025-05-19T09:46:59+00:00 | 2025-12-04T22:49:27+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-28263 | Visual Studio Information Disclosure Vulnerability | 2023-04-11T07:00:00.000Z | 2023-06-13T07:00:00.000Z |
| msrc_cve-2023-24938 | Windows CryptoAPI Denial of Service Vulnerability | 2023-06-13T07:00:00.000Z | 2023-06-13T07:00:00.000Z |
| msrc_cve-2023-24937 | Windows CryptoAPI Denial of Service Vulnerability | 2023-06-13T07:00:00.000Z | 2023-06-13T07:00:00.000Z |
| msrc_cve-2023-24880 | Windows SmartScreen Security Feature Bypass Vulnerability | 2023-03-14T07:00:00.000Z | 2023-06-13T07:00:00.000Z |
| msrc_cve-2023-23398 | Microsoft Excel Spoofing Vulnerability | 2023-03-14T07:00:00.000Z | 2023-06-13T07:00:00.000Z |
| msrc_cve-2023-23396 | Microsoft Excel Denial of Service Vulnerability | 2023-03-14T07:00:00.000Z | 2023-06-13T07:00:00.000Z |
| msrc_cve-2023-23381 | Visual Studio Remote Code Execution Vulnerability | 2023-02-14T08:00:00.000Z | 2023-06-13T07:00:00.000Z |
| msrc_cve-2023-21815 | Visual Studio Remote Code Execution Vulnerability | 2023-02-14T08:00:00.000Z | 2023-06-13T07:00:00.000Z |
| msrc_cve-2023-21569 | Azure DevOps Server Spoofing Vulnerability | 2023-06-13T07:00:00.000Z | 2023-06-13T07:00:00.000Z |
| msrc_cve-2023-21565 | Azure DevOps Server Spoofing Vulnerability | 2023-06-13T07:00:00.000Z | 2023-06-13T07:00:00.000Z |
| msrc_cve-2023-33288 | An issue was discovered in the Linux kernel before 6.2.9. A use-after-free was found in bq24190_remove in drivers/power/supply/bq24190_charger.c. It could allow a local attacker to crash the system due to a race condition. | 2023-05-01T00:00:00.000Z | 2023-06-13T00:00:00.000Z |
| msrc_cve-2023-33203 | The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device. | 2023-05-01T00:00:00.000Z | 2023-06-13T00:00:00.000Z |
| msrc_cve-2023-1859 | A use-after-free flaw was found in xen_9pfs_front_removet in net/9p/trans_xen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem possibly leading to a kernel information leak. | 2023-05-01T00:00:00.000Z | 2023-06-13T00:00:00.000Z |
| msrc_cve-2023-1195 | A use-after-free flaw was found in reconn_set_ipaddr_from_hostname in fs/cifs/connect.c in the Linux kernel. The issue occurs when it forgets to set the free pointer server->hostname to NULL leading to an invalid pointer request. | 2023-05-01T00:00:00.000Z | 2023-06-13T00:00:00.000Z |
| msrc_cve-2022-4696 | There exists a use-after-free vulnerability in the Linux kernel through io_uring and the IORING_OP_SPLICE operation. If IORING_OP_SPLICE is missing the IO_WQ_WORK_FILES flag which signals that the operation won't use current->nsproxy so its reference counter is not increased. This assumption is not always true as calling io_splice on specific files will call the get_uts function which will use current->nsproxy leading to invalidly decreasing its reference counter later causing the use-after-free vulnerability. We recommend upgrading to version 5.10.160 or above | 2023-01-04T00:00:00.000Z | 2023-06-13T00:00:00.000Z |
| msrc_cve-2020-10735 | A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases when using int("text") a system could take 50ms to parse an int string with 100000 digits and 5s for 1000000 digits (float decimal int.from_bytes() and int() for binary bases 2 4 8 16 and 32 are not affected). The highest threat from this vulnerability is to system availability. | 2022-09-02T00:00:00.000Z | 2023-06-13T00:00:00.000Z |
| msrc_cve-2023-34256 | An issue was discovered in the Linux kernel before 6.3.3. There is an out-of-bounds read in crc16 in lib/crc16.c when called from fs/ext4/super.c because ext4_group_desc_csum does not properly check an offset. NOTE: this is disputed by third parties because the kernel is not intended to defend against attackers with the stated "When modifying the block device while it is mounted by the filesystem" access. | 2023-05-01T00:00:00.000Z | 2023-06-08T00:00:00.000Z |
| msrc_cve-2023-2985 | A use after free flaw was found in hfsplus_put_super in fs/hfsplus/super.c in the Linux Kernel. This flaw could allow a local user to cause a denial of service problem. | 2023-06-01T07:00:00.000Z | 2023-06-08T00:00:00.000Z |
| msrc_cve-2023-2603 | A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB. | 2023-06-01T07:00:00.000Z | 2023-06-08T00:00:00.000Z |
| msrc_cve-2023-2602 | A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to return an error which can exhaust the process memory. | 2023-06-01T07:00:00.000Z | 2023-06-08T00:00:00.000Z |
| msrc_cve-2023-2598 | A flaw was found in the fixed buffer registration code for io_uring (io_sqe_buffer_register in io_uring/rsrc.c) in the Linux kernel that allows out-of-bounds access to physical memory beyond the end of the buffer. This flaw enables full local privilege escalation. | 2023-06-01T07:00:00.000Z | 2023-06-08T00:00:00.000Z |
| msrc_cve-2022-48502 | An issue was discovered in the Linux kernel before 6.2. The ntfs3 subsystem does not properly check for correctness during disk reads leading to an out-of-bounds read in ntfs_set_ea in fs/ntfs3/xattr.c. | 2023-05-01T00:00:00.000Z | 2023-06-08T00:00:00.000Z |
| msrc_cve-2023-28772 | An issue was discovered in the Linux kernel before 5.13.3. lib/seq_buf.c has a seq_buf_putmem_hex buffer overflow. | 2023-03-10T00:00:00.000Z | 2023-06-07T00:00:00.000Z |
| msrc_cve-2023-32681 | Unintended leak of Proxy-Authorization header in requests | 2023-05-01T00:00:00.000Z | 2023-06-05T00:00:00.000Z |
| msrc_cve-2023-1989 | A use-after-free flaw was found in btsdio_remove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw a call to btsdio_remove with an unfinished job may cause a race problem leading to a UAF on hdev devices. | 2023-04-01T00:00:00.000Z | 2023-06-05T00:00:00.000Z |
| msrc_cve-2023-33204 | sysstat through 12.7.2 allows a multiplication integer overflow in check_overflow in common.c. NOTE: this issue exists because of an incomplete fix for CVE-2022-39377. | 2023-05-01T00:00:00.000Z | 2023-06-03T00:00:00.000Z |
| msrc_cve-2023-32269 | An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/af_netrom.c there is a use-after-free because accept is also allowed for a successfully connected AF_NETROM socket. However in order for an attacker to exploit this the system must have netrom routing configured or the attacker must have the CAP_NET_ADMIN capability. | 2023-05-01T00:00:00.000Z | 2023-06-03T00:00:00.000Z |
| msrc_cve-2023-32233 | In the Linux kernel through 6.3.1 a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled. | 2023-05-01T00:00:00.000Z | 2023-06-03T00:00:00.000Z |
| msrc_cve-2023-31490 | An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_attr_psid_sub() function. | 2023-05-01T00:00:00.000Z | 2023-06-03T00:00:00.000Z |
| msrc_cve-2023-31124 | AutoTools does not set CARES_RANDOM_FILE during cross compilation | 2023-05-01T00:00:00.000Z | 2023-06-03T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201704-0816 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari be… | 2025-04-20T20:24:52.412000Z |
| var-201712-1104 | An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari be… | 2025-04-20T20:24:48.468000Z |
| var-201707-1309 | Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow … | 2025-04-20T20:24:47.981000Z |
| var-201702-0884 | An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. The iss… | 2025-04-20T20:24:44.135000Z |
| var-201711-0423 | An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The … | 2025-04-20T20:24:43.485000Z |
| var-201707-1157 | An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The … | 2025-04-20T20:22:34.145000Z |
| var-201710-0498 | Reflected XSS in the web administration portal on the Axis 2100 Network Camera 2.03 allow… | 2025-04-20T20:22:34.097000Z |
| var-201704-0744 | A command injection vulnerability in Juniper Networks NorthStar Controller Application pr… | 2025-04-20T20:22:32.236000Z |
| var-201706-0390 | Use after free vulnerability in the String.replace method JavaScriptCore in Apple Safari … | 2025-04-20T20:22:17.291000Z |
| var-201702-0199 | An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The … | 2025-04-20T20:22:15.358000Z |
| var-201711-0444 | An issue was discovered in certain Apple products. iOS before 11.1 is affected. macOS bef… | 2025-04-20T20:22:00.370000Z |
| var-201701-0399 | The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows rem… | 2025-04-20T20:21:59.986000Z |
| var-201707-0398 | Inteno routers have a JUCI ACL misconfiguration that allows the "user" account to read fi… | 2025-04-20T20:21:28.456000Z |
| var-201705-3216 | An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The … | 2025-04-20T20:21:26.695000Z |
| var-201704-0823 | An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The … | 2025-04-20T20:21:25.482000Z |
| var-201702-0755 | An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local… | 2025-04-20T20:18:57.079000Z |
| var-201704-0797 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T20:17:50.344000Z |
| var-201706-1009 | '/cgi-bin/admin/testserver.cgi' of the web service in most of the VIVOTEK Network Cameras… | 2025-04-20T20:16:44.603000Z |
| var-201704-0128 | OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 does not use SSL pinning. OSRAM SYL… | 2025-04-20T20:16:10.984000Z |
| var-201702-0215 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS bef… | 2025-04-20T20:16:10.638000Z |
| var-201711-0459 | An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The … | 2025-04-20T20:16:00.050000Z |
| var-201704-0824 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T20:15:19.182000Z |
| var-201702-0256 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS bef… | 2025-04-20T20:15:14.064000Z |
| var-201702-0882 | An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari … | 2025-04-20T20:15:13.856000Z |
| var-201704-0757 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue… | 2025-04-20T20:14:41.906000Z |
| var-201704-0758 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T20:14:36.569000Z |
| var-201705-3219 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari … | 2025-04-20T20:14:23.486000Z |
| var-201710-1385 | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The is… | 2025-04-20T20:14:16.254000Z |
| var-201710-0449 | Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a den… | 2025-04-20T20:13:40.774000Z |
| var-201705-3994 | An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The … | 2025-04-20T20:13:02.260000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:2717-1 | Security update for ncurses | 2022-08-09T10:54:40Z | 2022-08-09T10:54:40Z |
| suse-su-2022:2716-1 | Security update for mokutil | 2022-08-09T10:50:10Z | 2022-08-09T10:50:10Z |
| suse-su-2022:2713-1 | Security update for bind | 2022-08-09T10:38:14Z | 2022-08-09T10:38:14Z |
| suse-su-2022:2712-1 | Security update for u-boot | 2022-08-09T10:37:41Z | 2022-08-09T10:37:41Z |
| suse-su-2022:2710-1 | Security update for the Linux Kernel (Live Patch 30 for SLE 15 SP1) | 2022-08-09T10:34:00Z | 2022-08-09T10:34:00Z |
| suse-su-2022:2709-1 | Security update for the Linux Kernel (Live Patch 26 for SLE 15) | 2022-08-09T10:05:02Z | 2022-08-09T10:05:02Z |
| suse-su-2022:2707-1 | Security update for java-11-openjdk | 2022-08-09T08:18:52Z | 2022-08-09T08:18:52Z |
| suse-su-2022:2700-1 | Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP1) | 2022-08-09T02:05:54Z | 2022-08-09T02:05:54Z |
| suse-su-2022:2699-1 | Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP4) | 2022-08-08T22:04:52Z | 2022-08-08T22:04:52Z |
| suse-su-2022:2697-1 | Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP4) | 2022-08-08T18:56:35Z | 2022-08-08T18:56:35Z |
| suse-su-2022:2696-1 | Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP3) | 2022-08-08T18:56:24Z | 2022-08-08T18:56:24Z |
| suse-su-2022:2692-1 | Security update for crash | 2022-08-07T13:05:09Z | 2022-08-07T13:05:09Z |
| suse-su-2022:2691-1 | Security update for python-M2Crypto | 2022-08-05T16:12:27Z | 2022-08-05T16:12:27Z |
| suse-su-2022:2689-1 | Security update for dpkg | 2022-08-05T13:46:02Z | 2022-08-05T13:46:02Z |
| suse-su-2022:2687-1 | Security update for fwupd | 2022-08-05T11:13:12Z | 2022-08-05T11:13:12Z |
| suse-su-2022:2682-1 | Security update for wavpack | 2022-08-05T09:20:21Z | 2022-08-05T09:20:21Z |
| suse-su-2022:2681-1 | Security update for wavpack | 2022-08-05T09:20:04Z | 2022-08-05T09:20:04Z |
| suse-su-2022:2680-1 | Security update for buildah | 2022-08-05T09:14:51Z | 2022-08-05T09:14:51Z |
| suse-su-2022:2673-1 | Security update for python-ujson | 2022-08-04T12:07:43Z | 2022-08-04T12:07:43Z |
| suse-su-2022:2672-1 | Security update for go1.18 | 2022-08-04T12:06:36Z | 2022-08-04T12:06:36Z |
| suse-su-2022:2671-1 | Security update for go1.17 | 2022-08-04T12:05:44Z | 2022-08-04T12:05:44Z |
| suse-su-2022:2670-1 | Security update for qpdf | 2022-08-04T08:26:19Z | 2022-08-04T08:26:19Z |
| suse-su-2022:2669-1 | Security update for qpdf | 2022-08-04T08:24:53Z | 2022-08-04T08:24:53Z |
| suse-su-2022:2667-1 | Security update for u-boot | 2022-08-04T08:04:14Z | 2022-08-04T08:04:14Z |
| suse-su-2022:2666-1 | Security update for u-boot | 2022-08-04T08:01:40Z | 2022-08-04T08:01:40Z |
| suse-su-2022:2664-1 | Security update for harfbuzz | 2022-08-04T07:22:14Z | 2022-08-04T07:22:14Z |
| suse-su-2022:2663-1 | Security update for harfbuzz | 2022-08-04T07:21:31Z | 2022-08-04T07:21:31Z |
| suse-su-2022:2661-1 | Security update for u-boot | 2022-08-03T19:07:34Z | 2022-08-03T19:07:34Z |
| suse-su-2022:2660-1 | Security update for java-17-openjdk | 2022-08-03T19:06:16Z | 2022-08-03T19:06:16Z |
| suse-su-2022:2659-1 | Security update for ldb, samba | 2022-08-03T19:05:36Z | 2022-08-03T19:05:36Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2019:1689-1 | Security update for phpMyAdmin | 2019-07-02T05:41:54Z | 2019-07-02T05:41:54Z |
| opensuse-su-2019:1688-1 | Security update for libheimdal | 2019-07-01T15:19:54Z | 2019-07-01T15:19:54Z |
| opensuse-su-2019:1682-1 | Security update for libheimdal | 2019-07-01T11:50:51Z | 2019-07-01T11:50:51Z |
| opensuse-su-2019:1673-1 | Security update for tomcat | 2019-06-30T19:03:50Z | 2019-06-30T19:03:50Z |
| opensuse-su-2019:1672-1 | Security update for libvirt | 2019-06-30T19:03:42Z | 2019-06-30T19:03:42Z |
| opensuse-su-2019:1671-1 | Security update for dbus-1 | 2019-06-30T19:03:35Z | 2019-06-30T19:03:35Z |
| opensuse-su-2019:1669-1 | Security update for wireshark | 2019-06-30T07:48:16Z | 2019-06-30T07:48:16Z |
| opensuse-su-2019:1667-1 | Recommended update for evince | 2019-06-30T07:35:13Z | 2019-06-30T07:35:13Z |
| opensuse-su-2019:1666-1 | Security update for chromium | 2019-06-28T12:43:15Z | 2019-06-28T12:43:15Z |
| opensuse-su-2019:1664-1 | Security update for MozillaThunderbird | 2019-06-28T08:42:30Z | 2019-06-28T08:42:30Z |
| opensuse-su-2019:1658-1 | Security update for libmediainfo | 2019-06-27T08:21:58Z | 2019-06-27T08:21:58Z |
| opensuse-su-2019:1657-1 | Security update for exempi | 2019-06-27T06:37:40Z | 2019-06-27T06:37:40Z |
| opensuse-su-2019:1650-1 | Security update for glib2 | 2019-06-27T06:36:32Z | 2019-06-27T06:36:32Z |
| opensuse-su-2019:1649-1 | Security update for exempi | 2019-06-27T06:36:26Z | 2019-06-27T06:36:26Z |
| opensuse-su-2019:1635-1 | Security update for ansible | 2019-06-27T05:50:47Z | 2019-06-27T05:50:47Z |
| opensuse-su-2019:1633-1 | Security update for SDL2 | 2019-06-27T05:49:35Z | 2019-06-27T05:49:35Z |
| opensuse-su-2019:1632-1 | Security update for SDL2 | 2019-06-27T05:49:28Z | 2019-06-27T05:49:28Z |
| opensuse-su-2019:1629-1 | Security update for libmediainfo | 2019-06-26T13:27:02Z | 2019-06-26T13:27:02Z |
| opensuse-su-2019:1624-1 | Security update for aubio | 2019-06-25T08:10:25Z | 2019-06-25T08:10:25Z |
| opensuse-su-2019:1623-1 | Security update for GraphicsMagick | 2019-06-25T07:58:41Z | 2019-06-25T07:58:41Z |
| opensuse-su-2019:1621-1 | Security update for docker | 2019-06-25T06:04:34Z | 2019-06-25T06:04:34Z |
| opensuse-su-2019:1619-1 | Security update for GraphicsMagick | 2019-06-24T13:36:29Z | 2019-06-24T13:36:29Z |
| opensuse-su-2019:1618-1 | Security update for aubio | 2019-06-24T13:36:08Z | 2019-06-24T13:36:08Z |
| opensuse-su-2019:1612-1 | Security update for enigmail | 2019-06-24T11:26:47Z | 2019-06-24T11:26:47Z |
| opensuse-su-2019:1606-1 | Security update for MozillaThunderbird | 2019-06-24T10:32:20Z | 2019-06-24T10:32:20Z |
| opensuse-su-2019:1605-1 | Security update for netpbm | 2019-06-24T10:19:06Z | 2019-06-24T10:19:06Z |
| opensuse-su-2019:1604-1 | Security update for dbus-1 | 2019-06-24T10:18:47Z | 2019-06-24T10:18:47Z |
| opensuse-su-2019:1603-1 | Security update for ImageMagick | 2019-06-24T10:18:36Z | 2019-06-24T10:18:36Z |
| opensuse-su-2019:1595-1 | Security update for MozillaFirefox | 2019-06-24T05:45:06Z | 2019-06-24T05:45:06Z |
| opensuse-su-2019:1593-1 | Security update for MozillaFirefox | 2019-06-23T12:00:53Z | 2019-06-23T12:00:53Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-09286 | IBM Security Verify Governance跨站脚本漏洞(CNVD-2025-09286) | 2025-04-18 | 2025-05-08 |
| cnvd-2025-09285 | IBM Sterling Control Center跨站脚本漏洞(CNVD-2025-09285) | 2025-04-25 | 2025-05-08 |
| cnvd-2025-09273 | Adobe ColdFusion输入验证错误漏洞 | 2025-04-11 | 2025-05-08 |
| cnvd-2025-09264 | WAVLINK AC3000缓冲区溢出漏洞(CNVD-2025-09264) | 2025-01-17 | 2025-05-08 |
| cnvd-2025-09263 | WAVLINK AC3000命令注入漏洞(CNVD-2025-09263) | 2025-01-17 | 2025-05-08 |
| cnvd-2025-09262 | WAVLINK AC3000缓冲区溢出漏洞(CNVD-2025-09262) | 2025-01-17 | 2025-05-08 |
| cnvd-2025-09261 | WAVLINK AC3000缓冲区溢出漏洞 | 2025-01-17 | 2025-05-08 |
| cnvd-2025-09260 | WAVLINK AC3000命令执行漏洞(CNVD-2025-09260) | 2025-01-17 | 2025-05-08 |
| cnvd-2025-09259 | WAVLINK AC3000外部配置控制漏洞(CNVD-2025-09259) | 2025-01-17 | 2025-05-08 |
| cnvd-2025-09258 | WAVLINK AC3000外部配置控制漏洞(CNVD-2025-09258) | 2025-01-17 | 2025-05-08 |
| cnvd-2025-09257 | WAVLINK AC3000外部配置控制漏洞(CNVD-2025-09257) | 2025-01-17 | 2025-05-08 |
| cnvd-2025-09256 | WAVLINK AC3000外部配置控制漏洞 | 2025-01-17 | 2025-05-08 |
| cnvd-2025-09255 | Google Chrome输入验证错误漏洞 | 2025-04-08 | 2025-05-08 |
| cnvd-2025-09254 | SAP Capital Yield Tax Management目录遍历漏洞 | 2025-04-14 | 2025-05-08 |
| cnvd-2025-09253 | SAP NetWeaver缓冲区溢出漏洞 | 2025-04-18 | 2025-05-08 |
| cnvd-2025-09252 | SAP Commerce信息泄露漏洞 | 2025-04-18 | 2025-05-08 |
| cnvd-2025-09251 | SAP NetWeaver Application Server ABAP跨站脚本漏洞 | 2025-04-18 | 2025-05-08 |
| cnvd-2025-09250 | SAP NetWeaver Application Server代码注入漏洞 | 2025-04-18 | 2025-05-08 |
| cnvd-2025-09249 | SAP Solution Manager目录遍历漏洞 | 2025-04-18 | 2025-05-08 |
| cnvd-2025-09248 | SAP Solution Manager文件上传漏洞 | 2025-04-18 | 2025-05-08 |
| cnvd-2025-09247 | SAP NetWeaver Server ABAP授权问题漏洞 | 2025-04-18 | 2025-05-08 |
| cnvd-2025-09246 | SAP KMC WPC信息泄露漏洞 | 2025-04-18 | 2025-05-08 |
| cnvd-2025-09245 | SAP NetWeaver Visual Composer Metadata Uploader文件上传漏洞 | 2025-04-25 | 2025-05-08 |
| cnvd-2025-09244 | Open5GS输入验证错误漏洞 | 2025-05-07 | 2025-05-08 |
| cnvd-2025-09243 | Mattermost输入验证错误漏洞(CNVD-2025-09243) | 2025-05-07 | 2025-05-08 |
| cnvd-2025-09242 | Mattermost授权问题漏洞(CNVD-2025-09242) | 2025-05-07 | 2025-05-08 |
| cnvd-2025-09240 | Moodle跨站脚本漏洞(CNVD-2025-09240) | 2025-03-26 | 2025-05-08 |
| cnvd-2025-09238 | Moodle授权问题漏洞(CNVD-2025-09238) | 2025-04-30 | 2025-05-08 |
| cnvd-2025-09237 | Moodle信息泄露漏洞(CNVD-2025-09237) | 2025-05-07 | 2025-05-08 |
| cnvd-2025-09236 | Moodle跨站请求伪造漏洞(CNVD-2025-09236) | 2025-05-07 | 2025-05-08 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-539 | Multiples vulnérabilités dans Apple OS X | 2014-12-23T00:00:00.000000 | 2014-12-23T00:00:00.000000 |
| certfr-2014-avi-538 | Multiples vulnérabilités dans les produits Cisco | 2014-12-23T00:00:00.000000 | 2014-12-23T00:00:00.000000 |
| certfr-2014-avi-537 | Multiples vulnérabilités dans NTP ntpd | 2014-12-22T00:00:00.000000 | 2014-12-22T00:00:00.000000 |
| certfr-2014-avi-536 | Multiples vulnérabilités dans Huawei RomPager | 2014-12-19T00:00:00.000000 | 2014-12-19T00:00:00.000000 |
| certfr-2014-avi-535 | Vulnérabilité dans Apple Xcode | 2014-12-19T00:00:00.000000 | 2014-12-19T00:00:00.000000 |
| certfr-2014-avi-534 | Multiples vulnérabilités dans Huawei eSpace Desktop | 2014-12-18T00:00:00.000000 | 2014-12-18T00:00:00.000000 |
| certfr-2014-avi-533 | Vulnérabilité dans les produits F5 | 2014-12-18T00:00:00.000000 | 2014-12-18T00:00:00.000000 |
| certfr-2014-avi-532 | Multiples vulnérabilités dans le noyau linux RedHat | 2014-12-17T00:00:00.000000 | 2014-12-17T00:00:00.000000 |
| certfr-2014-avi-531 | Vulnérabilité dans Struts | 2014-12-17T00:00:00.000000 | 2014-12-17T00:00:00.000000 |
| certfr-2014-avi-530 | Vulnérabilité dans les produits Huawei | 2014-12-15T00:00:00.000000 | 2014-12-15T00:00:00.000000 |
| certfr-2014-avi-529 | Multiples vulnérabilités dans les produits F5 | 2014-12-15T00:00:00.000000 | 2014-12-15T00:00:00.000000 |
| certfr-2014-avi-528 | Multiples vulnérabilités dans le noyau Linux | 2014-12-12T00:00:00.000000 | 2014-12-12T00:00:00.000000 |
| certfr-2014-avi-527 | Vulnérabilité dans TYPO3 | 2014-12-12T00:00:00.000000 | 2014-12-12T00:00:00.000000 |
| certfr-2014-avi-526 | Vulnérabilité dans les produits Cisco | 2014-12-12T00:00:00.000000 | 2014-12-12T00:00:00.000000 |
| certfr-2014-avi-525 | Multiples vulnérabilités dans les produits IBM | 2014-12-11T00:00:00.000000 | 2014-12-11T00:00:00.000000 |
| certfr-2014-avi-524 | Vulnérabilité dans VMware vCloud Automation Center | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-523 | Multiples vulnérabilités dans Adobe Reader | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-522 | Multiples vulnérabilités dans Adobe Flash | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-521 | Multiples vulnérabilités dans Microsoft Excel | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-520 | Vulnérabilité dans Microsoft Office | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-519 | Multiples vulnérabilités dans Microsoft Word et Microsoft Office Web Apps | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-518 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-517 | Multiples vulnérabilités dans Microsoft Exchange Server Could | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-516 | Vulnérabilité dans le composant graphique de Microsoft Windows | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-515 | Vulnérabilité dans Microsoft VBScript Scripting Engine | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-514 | Vulnérabilité dans Cisco Unified Communications Domain Manager | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-513 | Multiples vulnérabilités dans les produits IBM | 2014-12-10T00:00:00.000000 | 2014-12-10T00:00:00.000000 |
| certfr-2014-avi-512 | Multiples vulnérabilités dans plusieurs produits DNS | 2014-12-09T00:00:00.000000 | 2014-12-09T00:00:00.000000 |
| certfr-2014-avi-511 | Vulnérabilité dans Cisco Unified Computing System Manager | 2014-12-09T00:00:00.000000 | 2014-12-09T00:00:00.000000 |
| certfr-2014-avi-510 | Vulnérabilité dans Citrix CloudPlatform | 2014-12-09T00:00:00.000000 | 2014-12-09T00:00:00.000000 |