Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-49947 |
7.1 (3.1)
|
WordPress WooCommerce Registration Fields Plugin - Cus… |
extendons |
WooCommerce Registration Fields Plugin - Custom Signup Fields |
2025-10-22T14:32:18.131Z | 2026-01-20T14:28:07.883Z |
| CVE-2025-49933 |
6.5 (3.1)
|
WordPress JetBlog plugin <= 2.4.4 - Cross Site Scripti… |
CrocoBlock |
JetBlog |
2025-10-22T14:32:15.603Z | 2026-01-20T14:28:07.844Z |
| CVE-2025-49940 |
6.5 (3.1)
|
WordPress Fusion Builder plugin <= 3.13.2 - Cross Site… |
ThemeFusion |
Fusion Builder |
2025-10-22T14:32:17.247Z | 2026-01-20T14:28:07.835Z |
| CVE-2025-49950 |
7.3 (3.1)
|
WordPress Official Integration for Billingo Plugin <= … |
billingo |
Official Integration for Billingo |
2025-10-22T14:32:18.932Z | 2026-01-20T14:28:07.828Z |
| CVE-2025-49953 |
7.1 (3.1)
|
WordPress ShareBang, Ultimate Social Share Buttons for… |
themeinity |
ShareBang, Ultimate Social Share Buttons for WordPress |
2025-10-22T14:32:19.616Z | 2026-01-20T14:28:07.826Z |
| CVE-2025-49954 |
7.1 (3.1)
|
WordPress WP-Click-Tracker Plugin <= 0.7.3 - Cross Sit… |
mithra62 |
WP-Click-Tracker |
2025-10-22T14:32:19.827Z | 2026-01-20T14:28:07.823Z |
| CVE-2025-49934 |
5.4 (3.1)
|
WordPress JetBlocks For Elementor plugin <= 1.3.18 - C… |
CrocoBlock |
JetBlocks For Elementor |
2025-10-22T14:32:15.865Z | 2026-01-20T14:28:07.810Z |
| CVE-2025-49952 |
6.3 (3.1)
|
WordPress Houzez Theme <= 4.1.1 - Insecure Direct Obje… |
favethemes |
Houzez |
2025-10-22T14:32:19.320Z | 2026-01-20T14:28:07.804Z |
| CVE-2025-49949 |
5.5 (3.1)
|
WordPress Templazee plugin <= 1.0.2 - Broken Access Co… |
templazee |
Templazee |
2025-10-22T14:32:18.660Z | 2026-01-20T14:28:07.803Z |
| CVE-2025-49935 |
7.4 (3.1)
|
WordPress WoodMart theme < 8.3.2 - Local File Inclusio… |
xtemos |
WoodMart |
2025-10-22T14:32:16.098Z | 2026-01-20T14:28:07.791Z |
| CVE-2025-49936 |
6.5 (3.1)
|
WordPress WoodMart theme < 8.3.2 - Cross Site Scriptin… |
xtemos |
WoodMart |
2025-10-22T14:32:16.302Z | 2026-01-20T14:28:07.770Z |
| CVE-2025-49931 |
9.3 (3.1)
|
WordPress JetSearch plugin <= 3.5.10 - SQL Injection v… |
CrocoBlock |
JetSearch |
2025-10-22T14:32:15.259Z | 2026-01-20T14:28:07.695Z |
| CVE-2025-49948 |
7.1 (3.1)
|
WordPress WP Super Edit plugin <= 2.5.4 - Cross Site S… |
Ahmad Awais |
WP Super Edit |
2025-10-22T14:32:18.319Z | 2026-01-20T14:28:07.687Z |
| CVE-2025-49941 |
8.1 (3.1)
|
WordPress GlamChic theme <= 1.0.11 - Local File Inclus… |
AncoraThemes |
GlamChic |
2025-12-18T07:21:44.421Z | 2026-01-20T14:28:07.677Z |
| CVE-2025-49944 |
7.1 (3.1)
|
WordPress WPCode Content Ratio plugin <= 2.0 - Cross S… |
Jonatan Jumbert |
WPCode Content Ratio |
2025-10-22T14:32:17.445Z | 2026-01-20T14:28:07.648Z |
| CVE-2025-49932 |
6.5 (3.1)
|
WordPress JetBlog plugin <= 2.4.4.1 - Cross Site Scrip… |
CrocoBlock |
JetBlog |
2025-10-22T14:32:15.443Z | 2026-01-20T14:28:07.647Z |
| CVE-2025-49930 |
7.1 (3.1)
|
WordPress JetSearch plugin <= 3.5.10 - Cross Site Scri… |
CrocoBlock |
JetSearch |
2025-10-22T14:32:15.035Z | 2026-01-20T14:28:07.642Z |
| CVE-2025-49926 |
7.3 (3.1)
|
WordPress Kalium theme <= 3.25 - Arbitrary Code Execut… |
Laborator |
Kalium |
2025-10-22T14:32:14.208Z | 2026-01-20T14:28:07.637Z |
| CVE-2025-49945 |
7.1 (3.1)
|
WordPress Shortcode Generator plugin <= 1.1 - Cross Si… |
kylegetson |
Shortcode Generator |
2025-10-22T14:32:17.676Z | 2026-01-20T14:28:07.632Z |
| CVE-2025-49920 |
5.4 (3.1)
|
WordPress Web Accessibility By accessiBe plugin <= 2.1… |
accessiBe |
Web Accessibility By accessiBe |
2025-10-22T14:32:12.844Z | 2026-01-20T14:28:07.628Z |
| CVE-2025-49939 |
6.5 (3.1)
|
WordPress JetElements For Elementor plugin <= 2.7.8 - … |
CrocoBlock |
JetElements For Elementor |
2025-10-22T14:32:17.061Z | 2026-01-20T14:28:07.611Z |
| CVE-2025-49929 |
6.5 (3.1)
|
WordPress Ultimate Blocks plugin <= 3.3.6 - Cross Site… |
Ultimate Blocks |
Ultimate Blocks |
2025-10-22T14:32:14.811Z | 2026-01-20T14:28:07.609Z |
| CVE-2025-49927 |
6.5 (3.1)
|
WordPress JetWooBuilder plugin <= 2.1.20.1 - Cross Sit… |
CrocoBlock |
JetWooBuilder |
2025-10-22T14:32:14.395Z | 2026-01-20T14:28:07.599Z |
| CVE-2025-49951 |
7.1 (3.1)
|
WordPress gAppointments Plugin <= 1.14.1 - Cross Site … |
wpcrunch |
gAppointments |
2025-10-22T14:32:19.132Z | 2026-01-20T14:28:07.591Z |
| CVE-2025-49942 |
8.1 (3.1)
|
WordPress Gardis theme <= 1.2.13 - Local File Inclusio… |
AncoraThemes |
Gardis |
2025-12-18T07:21:44.617Z | 2026-01-20T14:28:07.580Z |
| CVE-2025-49937 |
4.3 (3.1)
|
WordPress Smash Balloon Social Post Feed plugin <= 4.3… |
Syed Balkhi |
Smash Balloon Social Post Feed |
2025-10-22T14:32:16.676Z | 2026-01-20T14:28:07.564Z |
| CVE-2025-49917 |
4.4 (3.1)
|
WordPress Icegram Express Pro plugin <= 5.9.5 - Server… |
Icegram |
Icegram Express Pro |
2025-10-22T14:32:12.630Z | 2026-01-20T14:28:07.536Z |
| CVE-2025-49928 |
6.5 (3.1)
|
WordPress JetWooBuilder plugin <= 2.1.20 - Cross Site … |
CrocoBlock |
JetWooBuilder |
2025-10-22T14:32:14.597Z | 2026-01-20T14:28:07.500Z |
| CVE-2025-49918 |
5.9 (3.1)
|
WordPress VikBooking Hotel Booking Engine & PMS plugin… |
e4jvikwp |
VikBooking Hotel Booking Engine & PMS |
2025-12-18T07:21:44.067Z | 2026-01-20T14:28:07.426Z |
| CVE-2025-49916 |
8.6 (3.1)
|
WordPress MultiVendorX plugin <= 4.2.23 - Broken Acces… |
MultiVendorX |
MultiVendorX |
2025-10-22T14:32:12.420Z | 2026-01-20T14:28:07.416Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-60176 |
5.9 (3.1)
|
WordPress WP Tesseract Plugin <= 1.0.2 - Cross Site Sc… |
tattersoftware |
WP Tesseract |
2025-10-22T14:32:42.200Z | 2026-01-20T14:28:12.147Z |
| CVE-2025-60174 |
9.8 (3.1)
|
WordPress WP Gravity Forms Constant Contact Plugin plu… |
CRM Perks |
WP Gravity Forms Constant Contact Plugin |
2025-12-18T07:22:08.874Z | 2026-01-20T14:28:12.141Z |
| CVE-2025-60168 |
7.1 (3.1)
|
WordPress HotelRunner Booking Widget Plugin <= 1.6 - C… |
integrationshotelrunner |
HotelRunner Booking Widget |
2025-10-22T14:32:42.006Z | 2026-01-20T14:28:12.159Z |
| CVE-2025-60151 |
4.7 (3.1)
|
WordPress WP Gravity Forms HubSpot Plugin <= 1.2.5 - O… |
CRM Perks |
WP Gravity Forms HubSpot |
2025-10-22T14:32:41.801Z | 2026-01-20T14:28:12.112Z |
| CVE-2025-60135 |
5.9 (3.1)
|
WordPress WeShare Buttons Plugin <= 13.0.0 - Cross Sit… |
NIKITAS GEORGOPOULOS |
WeShare Buttons |
2025-10-22T14:32:41.610Z | 2026-01-20T14:28:12.074Z |
| CVE-2025-60134 |
5.3 (3.1)
|
WordPress WP Media Categories Plugin <= 2.1.0 - Cross … |
John James Jacoby |
WP Media Categories |
2025-10-22T14:32:41.146Z | 2026-01-20T14:28:11.933Z |
| CVE-2025-60132 |
4.3 (3.1)
|
WordPress Video Blogster Lite Plugin <= 1.2 - Cross Si… |
johnh10 |
Video Blogster Lite |
2025-10-22T14:32:40.543Z | 2026-01-20T14:28:12.164Z |
| CVE-2025-60131 |
5.5 (3.1)
|
WordPress Werk aan de Muur Plugin <= 1.5 - Cross Site … |
Zoefff |
Werk aan de Muur |
2025-10-22T14:32:40.297Z | 2026-01-20T14:28:12.077Z |
| CVE-2025-60091 |
9.8 (3.1)
|
WordPress WP Gravity Forms Zoho CRM and Bigin plugin <… |
CRM Perks |
WP Gravity Forms Zoho CRM and Bigin |
2025-12-18T07:22:08.688Z | 2026-01-20T14:28:12.078Z |
| CVE-2025-60090 |
9.8 (3.1)
|
WordPress WP Gravity Forms Insightly plugin <= 1.1.6 -… |
CRM Perks |
WP Gravity Forms Insightly |
2025-12-18T07:22:08.488Z | 2026-01-20T14:28:11.864Z |
| CVE-2025-60089 |
9.8 (3.1)
|
WordPress WP Gravity Forms FreshDesk plugin plugin <= … |
CRM Perks |
WP Gravity Forms FreshDesk Plugin |
2025-12-18T07:22:08.306Z | 2026-01-20T14:28:12.085Z |
| CVE-2025-60088 |
6.5 (3.1)
|
WordPress WebinarIgnition plugin <= 4.06.04 - Broken A… |
Saleswonder Team: Tobias |
WebinarIgnition |
2025-12-18T07:22:08.134Z | 2026-01-20T14:28:12.034Z |
| CVE-2025-60086 |
7.5 (3.1)
|
WordPress WP Voting Contest plugin <= 5.8 - Broken Acc… |
Matt |
WP Voting Contest |
2025-12-18T07:22:07.949Z | 2026-01-20T14:28:11.885Z |
| CVE-2025-60084 |
8.6 (3.1)
|
WordPress PDF for Elementor Forms + Drag And Drop Temp… |
add-ons.org |
PDF for Elementor Forms + Drag And Drop Template Builder |
2025-12-18T07:22:07.769Z | 2026-01-21T15:32:11.047Z |
| CVE-2025-39849 |
N/A
|
wifi: cfg80211: sme: cap SSID length in __cfg80211_con… |
Linux |
Linux |
2025-09-19T15:26:22.073Z | 2025-11-03T17:44:07.905Z |
| CVE-2025-60083 |
8.8 (3.1)
|
WordPress PDF Invoice Builder for WooCommerce plugin <… |
add-ons.org |
PDF Invoice Builder for WooCommerce |
2025-12-18T07:22:07.543Z | 2026-01-20T14:28:11.875Z |
| CVE-2025-60082 |
8.8 (3.1)
|
WordPress PDF for WPForms plugin <= 6.3.1 - Deserializ… |
add-ons.org |
PDF for WPForms |
2025-12-18T07:22:07.372Z | 2026-01-20T14:28:11.828Z |
| CVE-2025-60081 |
8.8 (3.1)
|
WordPress PDF for Contact Form 7 plugin <= 6.3.4 - Des… |
add-ons.org |
PDF for Contact Form 7 |
2025-12-18T07:22:07.192Z | 2026-01-20T14:28:11.788Z |
| CVE-2025-60080 |
7.5 (3.1)
|
WordPress PDF for Gravity Forms + Drag And Drop Templa… |
add-ons.org |
PDF for Gravity Forms + Drag And Drop Template Builder |
2025-12-18T07:22:07.018Z | 2026-01-20T14:28:11.840Z |
| CVE-2025-60079 |
7.1 (3.1)
|
WordPress Parallax Section block plugin <= 1.0.9 - Bro… |
bPlugins |
Parallax Section block |
2025-12-18T07:22:06.840Z | 2026-01-20T14:28:12.073Z |
| CVE-2025-60078 |
7.5 (3.1)
|
WordPress Task Manager plugin <= 3.0.2 - Local File In… |
Agence web Eoxia - Montpellier |
Task Manager |
2025-12-18T07:22:06.654Z | 2026-01-20T14:28:11.800Z |
| CVE-2025-60077 |
7.5 (3.1)
|
WordPress YayPricing plugin <= 3.5.3 - Broken Access C… |
YayCommerce |
YayPricing |
2025-12-18T07:22:06.434Z | 2026-01-20T14:28:12.083Z |
| CVE-2025-60076 |
7.5 (3.1)
|
WordPress Ray Enterprise Translation plugin <= 1.7.1 -… |
jbhovik |
Ray Enterprise Translation |
2025-12-18T07:22:06.163Z | 2026-01-21T15:36:09.930Z |
| CVE-2025-60075 |
7.1 (3.1)
|
WordPress hpb seo plugin for WordPress plugin <= 3.0.1… |
Allegro Marketing |
hpb seo plugin for WordPress |
2025-10-29T08:38:03.170Z | 2026-02-17T15:47:40.081Z |
| CVE-2025-60074 |
7.5 (3.1)
|
WordPress Lazy Load Optimizer plugin <= 1.4.7 - Local … |
Processby |
Lazy Load Optimizer |
2025-11-06T15:54:43.533Z | 2026-01-20T14:28:11.778Z |
| CVE-2025-60073 |
7.5 (3.1)
|
WordPress Responsive Sidebar plugin <= 1.2.2 - Local F… |
Processby |
Responsive Sidebar |
2025-11-06T15:54:42.201Z | 2026-01-20T14:28:11.770Z |
| CVE-2025-60072 |
8.2 (3.1)
|
WordPress Anchor smooth scroll plugin <= 1.0.2 - Local… |
Processby |
Anchor smooth scroll |
2025-12-18T07:22:05.940Z | 2026-01-21T15:36:33.079Z |
| CVE-2025-60071 |
8.1 (3.1)
|
WordPress Riode | Multi-Purpose WooCommerce theme <= 1… |
don-themes |
Riode | Multi-Purpose WooCommerce |
2025-12-18T07:22:05.770Z | 2026-01-20T14:28:11.761Z |
| CVE-2025-60070 |
6.5 (3.1)
|
WordPress Molla - Multipurpose Responsive Shopify them… |
The4 |
Molla |
2025-12-18T07:22:05.588Z | 2026-01-20T14:28:11.788Z |
| CVE-2025-60068 |
6.5 (3.1)
|
WordPress Javo Core plugin <= 3.0.0.266 - Arbitrary Co… |
javothemes |
Javo Core |
2025-12-18T07:22:05.224Z | 2026-01-20T14:28:11.805Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-60151 | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms Hub… | 2025-10-22T15:15:57.313 | 2026-01-20T15:17:28.283 |
| fkie_cve-2025-60135 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:57.173 | 2026-01-20T15:17:28.153 |
| fkie_cve-2025-60134 | Cross-Site Request Forgery (CSRF) vulnerability in John James Jacoby WP Media Categories wp-media-c… | 2025-10-22T15:15:57.023 | 2026-01-20T15:17:28.013 |
| fkie_cve-2025-60132 | Cross-Site Request Forgery (CSRF) vulnerability in johnh10 Video Blogster Lite video-blogster-lite … | 2025-10-22T15:15:56.897 | 2026-01-20T15:17:27.877 |
| fkie_cve-2025-60131 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:56.770 | 2026-01-20T15:17:27.740 |
| fkie_cve-2025-60091 | Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Zoho CRM and Bigin gf… | 2025-12-18T08:16:09.343 | 2026-01-20T15:17:27.597 |
| fkie_cve-2025-60090 | Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Insightly gf-insightl… | 2025-12-18T08:16:09.220 | 2026-01-20T15:17:27.453 |
| fkie_cve-2025-60089 | Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms FreshDesk Plugin gf-f… | 2025-12-18T08:16:09.090 | 2026-01-20T15:17:27.313 |
| fkie_cve-2025-60088 | Missing Authorization vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition al… | 2025-12-18T08:16:08.963 | 2026-01-20T15:17:27.183 |
| fkie_cve-2025-60086 | Missing Authorization vulnerability in Matt WP Voting Contest wp-voting-contest allows Exploiting I… | 2025-12-18T08:16:08.827 | 2026-01-20T15:17:27.043 |
| fkie_cve-2025-60084 | Deserialization of Untrusted Data vulnerability in add-ons.org PDF for Elementor Forms + Drag And D… | 2025-12-18T08:16:08.700 | 2026-01-20T15:17:26.900 |
| fkie_cve-2025-39849 | In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID … | 2025-09-19T16:15:43.760 | 2026-01-20T15:17:26.807 |
| fkie_cve-2025-60083 | Deserialization of Untrusted Data vulnerability in add-ons.org PDF Invoice Builder for WooCommerce … | 2025-12-18T08:16:08.570 | 2026-01-20T15:17:26.770 |
| fkie_cve-2025-60082 | Deserialization of Untrusted Data vulnerability in add-ons.org PDF for WPForms pdf-for-wpforms allo… | 2025-12-18T08:16:08.430 | 2026-01-20T15:17:26.643 |
| fkie_cve-2025-60081 | Deserialization of Untrusted Data vulnerability in add-ons.org PDF for Contact Form 7 pdf-for-conta… | 2025-12-18T08:16:08.300 | 2026-01-20T15:17:26.510 |
| fkie_cve-2025-60080 | Deserialization of Untrusted Data vulnerability in add-ons.org PDF for Gravity Forms + Drag And Dro… | 2025-12-18T08:16:08.173 | 2026-01-20T15:17:26.380 |
| fkie_cve-2025-60079 | Missing Authorization vulnerability in bPlugins Parallax Section block parallax-section allows Acce… | 2025-12-18T08:16:08.043 | 2026-01-20T15:17:26.250 |
| fkie_cve-2025-60078 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:07.917 | 2026-01-20T15:17:26.120 |
| fkie_cve-2025-60077 | Missing Authorization vulnerability in YayCommerce YayPricing yaypricing allows Accessing Functiona… | 2025-12-18T08:16:07.790 | 2026-01-20T15:17:25.990 |
| fkie_cve-2025-60076 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:07.670 | 2026-01-20T15:17:25.860 |
| fkie_cve-2025-60075 | Cross-Site Request Forgery (CSRF) vulnerability in Allegro Marketing hpb seo plugin for WordPress h… | 2025-10-29T09:15:38.077 | 2026-01-20T15:17:25.727 |
| fkie_cve-2025-60074 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:03.250 | 2026-01-20T15:17:25.560 |
| fkie_cve-2025-60073 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:03.093 | 2026-01-20T15:17:25.417 |
| fkie_cve-2025-60072 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:07.540 | 2026-01-20T15:17:25.270 |
| fkie_cve-2025-60071 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:07.410 | 2026-01-20T15:17:25.133 |
| fkie_cve-2025-60070 | Improper Control of Generation of Code ('Code Injection') vulnerability in The4 Molla molla allows … | 2025-12-18T08:16:07.197 | 2026-01-20T15:17:25.003 |
| fkie_cve-2025-60068 | Improper Control of Generation of Code ('Code Injection') vulnerability in javothemes Javo Core jav… | 2025-12-18T08:16:06.933 | 2026-01-20T15:17:24.740 |
| fkie_cve-2025-60067 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:06.800 | 2026-01-20T15:17:24.593 |
| fkie_cve-2025-60066 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:06.667 | 2026-01-20T15:17:24.453 |
| fkie_cve-2025-60065 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:06.537 | 2026-01-20T15:17:24.317 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-w3g8-fp6j-wvqw |
8.7 (4.0)
|
SM2-PKE has 32-bit Biased Nonce Vulnerability | 2026-01-09T22:27:50Z | 2026-01-11T14:56:33Z |
| ghsa-3ghg-3787-w2xr |
7.5 (3.1)
|
Spree API has Unauthenticated IDOR - Guest Address | 2026-01-08T21:28:04Z | 2026-01-11T14:56:25Z |
| ghsa-9cvc-h2w8-phrp |
3.7 (3.1)
|
AWS SDK for .NET V4 adopted defense in depth enhancement for region parameter value | 2026-01-09T18:56:21Z | 2026-01-11T14:56:00Z |
| ghsa-jrmj-c5cx-3cw6 |
8.5 (4.0)
|
Angular has XSS Vulnerability via Unsanitized SVG Script Attributes | 2026-01-09T18:52:14Z | 2026-01-11T14:55:54Z |
| ghsa-2g22-wg49-fgv5 |
10.0 (3.1)
|
XWiki Full Calendar Macro vulnerable to SQL injection through Calendar.JSONService | 2026-01-09T18:41:47Z | 2026-01-11T14:55:48Z |
| ghsa-637h-ch24-xp9m |
5.3 (3.1)
|
XWiki Full Calendar Macro vulnerable to data leak through Calendar.JSONService | 2026-01-09T18:35:57Z | 2026-01-11T14:55:42Z |
| ghsa-wvpq-h33f-8rp6 |
6.1 (3.1)
|
October CMS Vulnerable to Stored XSS via Branding Styles | 2026-01-09T20:12:24Z | 2026-01-11T14:55:37Z |
| ghsa-gxxc-m74c-f48x |
6.1 (3.1)
|
October CMS Vulnerable to Stored XSS via Editor and Branding Styles | 2026-01-09T18:12:58Z | 2026-01-11T14:55:29Z |
| ghsa-vmc4-9828-r48r |
5.1 (4.0)
|
Ghost has SSRF via External Media Inliner | 2026-01-08T21:36:03Z | 2026-01-11T14:55:24Z |
| ghsa-h4rm-mm56-xf63 |
8.9 (4.0)
|
Fickling vulnerable to detection bypass due to "builtins" blindness | 2026-01-09T22:29:02Z | 2026-01-11T14:55:18Z |
| ghsa-q5qq-mvfm-j35x |
8.9 (4.0)
|
Fickling has Static Analysis Bypass via Incomplete Dangerous Module Blocklist | 2026-01-09T21:12:00Z | 2026-01-11T14:55:13Z |
| ghsa-5hvc-6wx8-mvv4 |
8.9 (4.0)
|
Fickling vulnerable to use of ctypes and pydoc gadget chain to bypass detection | 2026-01-09T21:05:13Z | 2026-01-11T14:55:08Z |
| ghsa-p523-jq9w-64x9 |
8.9 (4.0)
|
Fickling Blocklist Bypass: cProfile.run() | 2026-01-09T21:04:22Z | 2026-01-11T14:54:55Z |
| ghsa-wfq2-52f7-7qvj |
8.9 (4.0)
|
Fickling has a bypass via runpy.run_path() and runpy.run_module() | 2026-01-09T20:52:40Z | 2026-01-11T14:54:44Z |
| ghsa-gjrp-xgmh-x9qq |
6.7 (3.1)
|
Ghost has SQL Injection in Members Activity Feed | 2026-01-08T21:36:37Z | 2026-01-11T14:54:35Z |
| ghsa-9xg7-mwmp-xmjx |
8.1 (3.1)
|
Ghost has Staff Token permission bypass | 2026-01-08T21:32:53Z | 2026-01-11T14:54:30Z |
| ghsa-5fp7-g646-ccf4 |
8.1 (3.1)
|
Ghost has Staff 2FA bypass | 2026-01-08T21:29:47Z | 2026-01-11T14:54:23Z |
| ghsa-h5cw-625j-3rxh |
6.5 (3.1)
|
React Router has CSRF issue in Action/Server Action Request Processing | 2026-01-08T20:57:09Z | 2026-01-11T14:54:18Z |
| ghsa-2w69-qvjg-hvjx |
8.0 (3.1)
|
React Router vulnerable to XSS via Open Redirects | 2026-01-08T20:54:18Z | 2026-01-11T14:54:13Z |
| ghsa-8v8x-cx79-35w7 |
8.2 (3.1)
|
React Router SSR XSS in ScrollRestoration | 2026-01-08T20:50:05Z | 2026-01-11T14:54:08Z |
| ghsa-9jcx-v3wj-wh4m |
6.5 (3.1)
|
React Router has unexpected external redirect via untrusted paths | 2026-01-08T20:48:21Z | 2026-01-11T14:54:02Z |
| ghsa-9583-h5hc-x8cw |
9.1 (3.1)
|
React Router has Path Traversal in File Session Storage | 2026-01-08T20:45:07Z | 2026-01-11T14:53:54Z |
| ghsa-3cgp-3xvw-98x8 |
7.6 (3.1)
|
React Router has XSS Vulnerability | 2026-01-08T20:42:20Z | 2026-01-11T14:53:48Z |
| ghsa-4f6g-68pf-7vhv |
2.7 (4.0)
|
pypdf has possible long runtimes for malformed startxref | 2026-01-09T19:48:57Z | 2026-01-11T14:53:40Z |
| ghsa-4xc4-762w-m6cg |
2.7 (4.0)
|
pypdf has possible long runtimes for missing /Root object with large /Size values | 2026-01-09T19:48:22Z | 2026-01-11T14:53:34Z |
| ghsa-m892-c9fc-5798 |
6.3 (3.1)
2.1 (4.0)
|
A flaw has been found in Flycatcher Toys smART Sketcher up to 2.0. This affects an unknown part of … | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-73j7-p7fw-fvw8 |
8.8 (3.1)
7.4 (4.0)
|
A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function st… | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-5xwg-ff7c-5w3f |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability has been found in jiujiujia/victor123/wxw850227 jjjfood and jjjshop_food up to 2026… | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-397f-58rh-886v |
8.8 (3.1)
7.4 (4.0)
|
A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Affected by this vulnerabil… | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-55hm-v7vp-29ch |
8.8 (3.1)
7.4 (4.0)
|
A weakness has been identified in UTT 进取 520W 1.7.7-180627. Affected is the function strcpy of the … | 2026-01-11T06:30:14Z | 2026-01-11T06:30:14Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-27559 | Stupid Simple CMS v1.2.4 was discovered to contain a Cross-Site Request Forgery (CSRF) vi… | 2024-02-27T06:02:31.385998Z |
| gsd-2024-27470 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.385785Z |
| gsd-2024-27509 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.385586Z |
| gsd-2024-27773 | Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-348: Use of Less Trust… | 2024-02-27T06:02:31.384874Z |
| gsd-2024-27467 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.384336Z |
| gsd-2024-27743 | Cross Site Scripting vulnerability in Petrol Pump Mangement Software v.1.0 allows an atta… | 2024-02-27T06:02:31.383891Z |
| gsd-2024-27449 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.383692Z |
| gsd-2024-27709 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.383232Z |
| gsd-2024-27544 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.383026Z |
| gsd-2024-27596 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.382178Z |
| gsd-2024-27643 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.381966Z |
| gsd-2024-27786 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.380111Z |
| gsd-2024-27637 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.379197Z |
| gsd-2024-27811 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.378582Z |
| gsd-2024-27777 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.378311Z |
| gsd-2024-27768 | Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' ma… | 2024-02-27T06:02:31.378029Z |
| gsd-2024-27599 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.377395Z |
| gsd-2024-27588 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.377193Z |
| gsd-2024-27812 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.375783Z |
| gsd-2024-27500 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.374934Z |
| gsd-2024-27587 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.374727Z |
| gsd-2024-27889 | Multiple SQL Injection vulnerabilities exist in the reporting application of the Arista E… | 2024-02-27T06:02:31.374498Z |
| gsd-2024-27591 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.374034Z |
| gsd-2024-27571 | LBT T300-T390 v2.2.1.8 were discovered to contain a stack overflow via the ApCliSsid para… | 2024-02-27T06:02:31.373814Z |
| gsd-2024-27496 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.373604Z |
| gsd-2024-27488 | Incorrect Access Control vulnerability in ZLMediaKit versions 1.0 through 8.0, allows rem… | 2024-02-27T06:02:31.373342Z |
| gsd-2024-27677 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.373135Z |
| gsd-2024-27619 | Dlink Dir-3040us A1 1.20b03a hotfix is vulnerable to Buffer Overflow. Any user having rea… | 2024-02-27T06:02:31.372252Z |
| gsd-2024-27870 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.369925Z |
| gsd-2024-27606 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.368435Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-186408 | Malicious code in csrf-carina-technocracy-areology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186407 | Malicious code in csrf-callisto-hapi-nextjs (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186406 | Malicious code in csrf-bootes-html-webpack-plugin-ichnology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186405 | Malicious code in cryptography-webdriver-manager-schema-test (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186404 | Malicious code in cryptography-epimetheus-prettier-plugin-markdown-run-script (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186403 | Malicious code in cryptography-cross-env-google-yildun (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186402 | Malicious code in cryptography-biohacking-xml-graphql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186401 | Malicious code in cryovolcano-transhumanism-scripts-janus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186400 | Malicious code in cryovolcano-miranda-blueshift-rimraf (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186399 | Malicious code in cryovolcano-grus-ini-proxima (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186398 | Malicious code in cryonics-publish-dactyl-pyxis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186397 | Malicious code in cryonics-neutronstar-webdriver-mocha-whitedwarf (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186396 | Malicious code in cryonics-meteor-spawn-halley (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186395 | Malicious code in cryonics-magellan-bionics-tardigrade (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186394 | Malicious code in cryonics-jest-tachyon-hydra (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186393 | Malicious code in cryonics-cypress-stream-lithosphere (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186392 | Malicious code in cryonics-convict-tectonophysics-interstellarmedium (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186391 | Malicious code in cryonics-blazar-nightwatch-inflation (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186390 | Malicious code in crust-thuban-archaeogenetics-callback (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186389 | Malicious code in crust-proxima-typeorm-duplex (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186388 | Malicious code in crust-mui-development-norma (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186387 | Malicious code in cross-env-vega-native-blazar (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186386 | Malicious code in cross-env-singularity-europa-paleobotany (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186385 | Malicious code in cross-env-package-rimraf-antares (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186384 | Malicious code in cross-env-native-centaurus-dynamo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186383 | Malicious code in cross-env-geochemistry-global-juno (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186382 | Malicious code in cross-env-flare-hyperion-meissa (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186381 | Malicious code in cross-env-dorado-eslint-config-zephyr (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186380 | Malicious code in cross-env-cybernetics-juno-iota (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186379 | Malicious code in cross-env-cross-env-photon-superposition (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-1119 | tribe29 checkmk: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-01T22:00:00.000+00:00 | 2023-05-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1112 | IBM Tivoli Business Service Manager: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-05-01T22:00:00.000+00:00 | 2023-05-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1105 | Octopus Deploy: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-01T22:00:00.000+00:00 | 2023-05-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1104 | Hashicorp Vault: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-05-01T22:00:00.000+00:00 | 2023-05-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1102 | IBM Spectrum Scale: Schwachstelle ermöglicht Privilegieneskalation | 2023-05-01T22:00:00.000+00:00 | 2023-05-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1100 | Atlassian Confluence Server und Data Center: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-01T22:00:00.000+00:00 | 2023-05-01T22:00:00.000+00:00 |
| wid-sec-w-2023-0853 | Mattermost: Schwachstelle ermöglicht Darstellen falscher Informationen | 2023-04-04T22:00:00.000+00:00 | 2023-05-01T22:00:00.000+00:00 |
| wid-sec-w-2023-0721 | Veritas NetBackup: Schwachstelle ermöglicht Privilegieneskalation | 2023-03-22T23:00:00.000+00:00 | 2023-05-01T22:00:00.000+00:00 |
| wid-sec-w-2023-0132 | Oracle Fusion Middleware: Mehrere Schwachstellen | 2023-01-17T23:00:00.000+00:00 | 2023-05-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1099 | Mattermost: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-04-27T22:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-1098 | NetApp ActiveIQ Unified Manager: Schwachstelle ermöglicht Manipulation von Dateien, Offenlegung von Informationen und DoS | 2023-04-27T22:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-1096 | Trustwave ModSecurity: Schwachstelle ermöglicht Denial of Service | 2023-04-27T22:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-1094 | IBM Integration Bus: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-04-27T22:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-1092 | Ruby on Rails: Schwachstelle ermöglicht Cross-Site Scripting | 2020-09-09T22:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-1091 | Zyxel Firewall Produkte: Mehrere Schwachstellen | 2022-02-15T23:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0797 | Veritas NetBackup: Schwachstelle in genutzter Komponente | 2023-03-29T22:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0295 | GNU libc: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-02-06T23:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0242 | Dell BIOS: Mehrere Schwachstellen | 2023-01-31T23:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0230 | vim: Schwachstelle ermöglicht Denial of Service | 2023-01-30T23:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2022-1323 | Linux Kernel: Mehrere Schwachstellen | 2022-09-06T22:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2022-1281 | Ruby on Rails: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2022-04-26T22:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2022-0698 | tribe29 checkmk: Schwachstelle ermöglicht Privilegieneskalation | 2022-07-14T22:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2022-0419 | QEMU: Schwachstelle ermöglicht Denial of Service | 2021-04-19T22:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-1090 | Trend Micro Maximum Security: Schwachstelle ermöglicht Privilegieneskalation | 2023-04-26T22:00:00.000+00:00 | 2023-04-26T22:00:00.000+00:00 |
| wid-sec-w-2023-1089 | xpdf: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-04-26T22:00:00.000+00:00 | 2023-04-26T22:00:00.000+00:00 |
| wid-sec-w-2023-1087 | TIBCO Spotfire Statistics Services: Schwachstelle ermöglicht Manipulation von Dateien | 2023-04-26T22:00:00.000+00:00 | 2023-04-26T22:00:00.000+00:00 |
| wid-sec-w-2023-1086 | libarchive: Schwachstelle ermöglicht Denial of Service | 2017-09-06T22:00:00.000+00:00 | 2023-04-26T22:00:00.000+00:00 |
| wid-sec-w-2023-1084 | Cisco Prime Collaboration: Schwachstelle ermöglicht Cross-Site Scripting | 2023-04-26T22:00:00.000+00:00 | 2023-04-26T22:00:00.000+00:00 |
| wid-sec-w-2023-0634 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-03-13T23:00:00.000+00:00 | 2023-04-26T22:00:00.000+00:00 |
| wid-sec-w-2022-2157 | Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation | 2022-11-22T23:00:00.000+00:00 | 2023-04-26T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:12876 | Red Hat Security Advisory: ncurses security update | 2025-08-05T06:37:33+00:00 | 2025-12-01T22:02:38+00:00 |
| rhsa-2019:2079 | Red Hat Security Advisory: Xorg security and bug fix update | 2019-08-06T14:12:28+00:00 | 2025-12-01T18:48:13+00:00 |
| rhsa-2022:1861 | Red Hat Security Advisory: maven:3.5 security update | 2022-05-10T14:00:23+00:00 | 2025-12-01T16:36:50+00:00 |
| rhsa-2022:1860 | Red Hat Security Advisory: maven:3.6 security and enhancement update | 2022-05-10T13:54:46+00:00 | 2025-12-01T16:36:48+00:00 |
| rhsa-2022:0722 | Red Hat Security Advisory: rh-maven36-httpcomponents-client security update | 2022-03-01T14:21:18+00:00 | 2025-12-01T16:36:48+00:00 |
| rhsa-2021:0811 | Red Hat Security Advisory: Red Hat Integration Tech-Preview 3 Camel K security update | 2021-03-11T17:49:45+00:00 | 2025-12-01T16:36:46+00:00 |
| rhsa-2021:1044 | Red Hat Security Advisory: Red Hat Process Automation Manager 7.10.1 security update | 2021-03-30T16:31:08+00:00 | 2025-12-01T16:36:43+00:00 |
| rhsa-2021:0603 | Red Hat Security Advisory: Red Hat Decision Manager 7.10.0 security update | 2021-02-17T13:40:00+00:00 | 2025-12-01T16:36:42+00:00 |
| rhsa-2021:0084 | Red Hat Security Advisory: Red Hat build of Quarkus 1.7.6 release and security update | 2021-01-12T16:43:17+00:00 | 2025-12-01T16:36:32+00:00 |
| rhsa-2025:22394 | Red Hat Security Advisory: qt6-qtsvg security update | 2025-12-01T08:55:07+00:00 | 2025-12-01T12:50:41+00:00 |
| rhsa-2025:22393 | Red Hat Security Advisory: qt6-qtsvg security update | 2025-12-01T08:51:13+00:00 | 2025-12-01T12:50:40+00:00 |
| rhsa-2024:10933 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.20 Security update | 2024-12-10T17:15:50+00:00 | 2025-12-01T12:50:16+00:00 |
| rhsa-2024:10929 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.20 Security update | 2024-12-11T16:16:18+00:00 | 2025-12-01T12:50:16+00:00 |
| rhsa-2024:10928 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.20 Security update | 2024-12-11T16:19:12+00:00 | 2025-12-01T12:50:10+00:00 |
| rhsa-2024:10927 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.20 Security update | 2024-12-11T16:16:27+00:00 | 2025-12-01T12:50:09+00:00 |
| rhsa-2024:3583 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.2 Security update | 2024-06-04T10:58:56+00:00 | 2025-12-01T12:49:49+00:00 |
| rhsa-2024:3581 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.2 Security update | 2024-06-04T11:04:08+00:00 | 2025-12-01T12:49:49+00:00 |
| rhsa-2024:3580 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.2 Security update | 2024-06-04T11:07:33+00:00 | 2025-12-01T12:49:49+00:00 |
| rhsa-2025:11359 | Red Hat Security Advisory: OpenShift Container Platform 4.17.36 bug fix and security update | 2025-07-23T14:15:05+00:00 | 2025-11-29T00:08:33+00:00 |
| rhsa-2025:9766 | Red Hat Security Advisory: OpenShift Container Platform 4.16.43 packages and security update | 2025-07-02T04:13:15+00:00 | 2025-11-29T00:08:29+00:00 |
| rhsa-2025:9751 | Red Hat Security Advisory: OpenShift Container Platform 4.19.2 packages and security update | 2025-07-01T02:54:22+00:00 | 2025-11-29T00:08:29+00:00 |
| rhsa-2025:9726 | Red Hat Security Advisory: OpenShift Container Platform 4.18.19 packages and security update | 2025-07-02T04:11:45+00:00 | 2025-11-29T00:08:28+00:00 |
| rhsa-2025:10668 | Red Hat Security Advisory: podman security update | 2025-07-08T20:24:01+00:00 | 2025-11-29T00:08:23+00:00 |
| rhsa-2025:10551 | Red Hat Security Advisory: container-tools:rhel8 security update | 2025-07-08T01:25:43+00:00 | 2025-11-29T00:08:23+00:00 |
| rhsa-2025:10550 | Red Hat Security Advisory: podman security update | 2025-07-08T01:13:03+00:00 | 2025-11-29T00:08:23+00:00 |
| rhsa-2025:10549 | Red Hat Security Advisory: podman security update | 2025-07-08T01:00:08+00:00 | 2025-11-29T00:08:23+00:00 |
| rhsa-2024:9543 | Red Hat Security Advisory: .NET 9.0 security update | 2024-11-13T15:30:33+00:00 | 2025-11-28T19:44:23+00:00 |
| rhsa-2024:8082 | Red Hat Security Advisory: .NET 6.0 security update | 2024-10-14T18:25:24+00:00 | 2025-11-28T19:44:23+00:00 |
| rhsa-2024:8036 | Red Hat Security Advisory: .NET 6.0 security update | 2024-10-14T02:33:17+00:00 | 2025-11-28T19:44:22+00:00 |
| rhsa-2024:8048 | Red Hat Security Advisory: .NET 6.0 security update | 2024-10-14T11:15:38+00:00 | 2025-11-28T19:44:21+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-30772 | The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/power/supply/da9150-charger.c if a physically proximate attacker unplugs a device. | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-30456 | An issue was discovered in arch/x86/kvm/vmx/nested.c in the Linux kernel before 6.2.8. nVMX on x86_64 lacks consistency checks for CR0 and CR4. | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-28466 | do_tls_getsockopt in net/tls/tls_main.c in the Linux kernel through 6.2.6 lacks a lock_sock call leading to a race condition (with a resultant use-after-free or NULL pointer dereference). | 2023-03-10T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-26917 | libyang from v2.0.164 to v2.1.30 was discovered to contain a NULL pointer dereference via the function lysp_stmt_validate_value at lys_parse_mem.c. | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-21982 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-21980 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs). Supported versions that are affected are 5.7.41 and prior and 8.0.32 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.1 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H). | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-21977 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-21976 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-21972 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-1990 | A use-after-free flaw was found in ndlc_remove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This flaw could allow an attacker to crash the system due to a race problem. | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-1872 | Use-after-free in Linux kernel's io_uring subsystem | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-1855 | A use-after-free flaw was found in xgene_hwmon_remove in drivers/hwmon/xgene-hwmon.c in the Hardware Monitoring Linux Kernel Driver (xgene-hwmon). This flaw could allow a local attacker to crash the system due to a race problem. This vulnerability could even lead to a kernel information leak problem. | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-1838 | A use-after-free flaw was found in vhost_net_set_backend in drivers/vhost/net.c in virtio network subcomponent in the Linux kernel due to a double fget. This flaw could allow a local attacker to crash the system and could even lead to a kernel information leak problem. | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-1829 | Use-after-free in tcindex (traffic control index filter) in the Linux Kernel | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-1670 | A flaw use after free in the Linux kernel Xircom 16-bit PCMCIA (PC-card) Ethernet driver was found.A local user could use this flaw to crash the system or potentially escalate their privileges on the system. | 2023-03-10T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-1652 | A use-after-free flaw was found in nfsd4_ssc_setup_dul in fs/nfsd/nfs4proc.c in the NFS filesystem in the Linux Kernel. This issue could allow a local attacker to crash the system or it may lead to a kernel information leak problem. | 2023-03-10T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-1252 | A use-after-free flaw was found in the Linux kernel’s Ext4 File System in how a user triggers several file operations simultaneously with the overlay FS usage. This flaw allows a local user to crash or potentially escalate their privileges on the system. Only if patch 9a2544037600 ("ovl: fix use after free in struct ovl_aio_req") not applied yet the kernel could be affected. | 2023-03-10T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-1249 | A use-after-free flaw was found in the Linux kernel’s core dump subsystem. This flaw allows a local user to crash the system. Only if patch 390031c94211 ("coredump: Use the vma snapshot in fill_files_note") not applied yet then kernel could be affected. | 2023-03-10T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-0590 | A use-after-free flaw was found in qdisc_graft in net/sched/sch_api.c in the Linux Kernel due to a race problem. This flaw leads to a denial of service issue. If patch ebda44da44f6 ("net: sched: fix race condition in qdisc_graft()") not applied yet then kernel could be affected. | 2023-03-10T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-0386 | A flaw was found in the Linux kernel where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping bug allows a local user to escalate their privileges on the system. | 2023-03-10T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-0179 | A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel. This issue could allow the leakage of both stack and heap addresses and potentially allow Local Privilege Escalation to the root user via arbitrary code execution. | 2023-03-10T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2022-48468 | protobuf-c before 1.4.1 has an unsigned integer overflow in parse_required_member. | 2023-04-01T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2022-4095 | A use-after-free flaw was found in Linux kernel before 5.19.2. This issue occurs in cmd_hdl_filter in drivers/staging/rtl8712/rtl8712_cmd.c allowing an attacker to launch a local denial of service attack and gain escalation of privileges. | 2023-03-10T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2021-3923 | A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdma_cm device node. While this access is unlikely to leak sensitive user information it can be further used to defeat existing kernel protection mechanisms. | 2023-03-10T00:00:00.000Z | 2023-05-03T00:00:00.000Z |
| msrc_cve-2023-29334 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2023-04-11T07:00:00.000Z | 2023-04-28T07:00:00.000Z |
| msrc_cve-2023-24935 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2023-04-11T07:00:00.000Z | 2023-04-28T07:00:00.000Z |
| msrc_cve-2023-28313 | Microsoft Dynamics 365 Customer Voice Cross-Site Scripting Vulnerability | 2023-04-11T07:00:00.000Z | 2023-04-27T07:00:00.000Z |
| msrc_cve-2023-24934 | Microsoft Defender Security Feature Bypass Vulnerability | 2023-04-11T07:00:00.000Z | 2023-04-27T07:00:00.000Z |
| msrc_cve-2023-24922 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | 2023-03-14T07:00:00.000Z | 2023-04-25T07:00:00.000Z |
| msrc_cve-2023-21807 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | 2023-02-14T08:00:00.000Z | 2023-04-25T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201705-3418 | An information disclosure vulnerability in the Qualcomm Wi-Fi driver could enable a local… | 2025-04-20T19:46:46.039000Z |
| var-201704-0802 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari be… | 2025-04-20T19:46:44.427000Z |
| var-201704-0715 | An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The … | 2025-04-20T19:45:47.906000Z |
| var-201704-0631 | An elevation of privilege vulnerability in the NVIDIA boot and power management processor… | 2025-04-20T19:45:11.032000Z |
| var-201709-0363 | The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589 and NVG599 devices, when IP Pas… | 2025-04-20T19:43:42.251000Z |
| var-201704-0839 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari be… | 2025-04-20T19:43:40.272000Z |
| var-201702-0206 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS bef… | 2025-04-20T19:43:38.672000Z |
| var-201702-0113 | An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local… | 2025-04-20T19:43:06.174000Z |
| var-201705-3378 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari … | 2025-04-20T19:43:02.775000Z |
| var-201708-0816 | Persistent XSS through the SSID of nearby Wi-Fi devices on Technicolor TC7337 routers 08.… | 2025-04-20T19:43:00.402000Z |
| var-201707-1185 | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS b… | 2025-04-20T19:42:57.212000Z |
| var-201705-3228 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS b… | 2025-04-20T19:42:26.745000Z |
| var-201711-0451 | An issue was discovered in certain Apple products. iOS before 11.1 is affected. macOS bef… | 2025-04-20T19:42:26.686000Z |
| var-201711-0466 | An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The … | 2025-04-20T19:42:02.067000Z |
| var-201704-0813 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T19:41:55.953000Z |
| var-201705-4001 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. tvOS be… | 2025-04-20T19:41:51.784000Z |
| var-201712-0309 | Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.5 before … | 2025-04-20T19:41:18.623000Z |
| var-201702-0255 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS bef… | 2025-04-20T19:41:17.476000Z |
| var-201702-1055 | Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmwar… | 2025-04-20T19:40:44.519000Z |
| var-201705-3212 | An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The … | 2025-04-20T19:40:44.458000Z |
| var-201711-0478 | An issue was discovered in certain Apple products. Safari before 11.0.1 is affected. The … | 2025-04-20T19:40:08.905000Z |
| var-201704-0779 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T19:40:08.405000Z |
| var-201707-1174 | An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The … | 2025-04-20T19:39:37.706000Z |
| var-201702-0223 | An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The … | 2025-04-20T19:38:54.381000Z |
| var-201704-0736 | A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prio… | 2025-04-20T19:38:54.162000Z |
| var-201704-0724 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T19:38:52.734000Z |
| var-201710-1395 | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The is… | 2025-04-20T19:38:41.116000Z |
| var-201710-1389 | An issue was discovered in certain Apple products. Safari before 11 is affected. The issu… | 2025-04-20T19:38:29.690000Z |
| var-201705-3988 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari … | 2025-04-20T19:38:12.179000Z |
| var-201707-1191 | An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The … | 2025-04-20T19:38:08.159000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:2529-1 | Security update for gpg2 | 2022-07-22T11:09:08Z | 2022-07-22T11:09:08Z |
| suse-su-2022:2527-1 | Security update for python-M2Crypto | 2022-07-22T09:00:55Z | 2022-07-22T09:00:55Z |
| suse-su-2022:2526-1 | Security update for rubygem-rack | 2022-07-22T08:41:50Z | 2022-07-22T08:41:50Z |
| suse-su-2022:2525-1 | Security update for webkit2gtk3 | 2022-07-22T07:40:55Z | 2022-07-22T07:40:55Z |
| suse-su-2022:2524-1 | Security update for webkit2gtk3 | 2022-07-22T07:38:50Z | 2022-07-22T07:38:50Z |
| suse-su-2022:2523-1 | Security update for webkit2gtk3 | 2022-07-22T07:37:24Z | 2022-07-22T07:37:24Z |
| suse-su-2022:2522-1 | Security update for webkit2gtk3 | 2022-07-22T07:35:53Z | 2022-07-22T07:35:53Z |
| suse-su-2022:2520-1 | Security update for the Linux Kernel | 2022-07-21T16:35:09Z | 2022-07-21T16:35:09Z |
| suse-su-2022:2482-1 | Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP4) | 2022-07-21T15:37:36Z | 2022-07-21T15:37:36Z |
| suse-su-2022:2516-1 | Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP3) | 2022-07-21T15:37:24Z | 2022-07-21T15:37:24Z |
| suse-su-2022:2515-1 | Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP3) | 2022-07-21T15:37:14Z | 2022-07-21T15:37:14Z |
| suse-su-2022:2491-1 | Security update for nodejs16 | 2022-07-21T12:34:48Z | 2022-07-21T12:34:48Z |
| suse-su-2022:2478-1 | Security update for the Linux Kernel | 2022-07-21T09:20:18Z | 2022-07-21T09:20:18Z |
| suse-su-2022:2461-1 | Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP2) | 2022-07-21T00:04:38Z | 2022-07-21T00:04:38Z |
| suse-su-2022:2460-1 | Security update for the Linux Kernel (Live Patch 30 for SLE 15) | 2022-07-20T14:33:50Z | 2022-07-20T14:33:50Z |
| suse-su-2022:2448-1 | Security update for dovecot23 | 2022-07-20T08:15:41Z | 2022-07-20T08:15:41Z |
| suse-su-2022:2446-1 | Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP4) | 2022-07-20T02:04:53Z | 2022-07-20T02:04:53Z |
| suse-su-2022:2445-1 | Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP4) | 2022-07-19T23:06:05Z | 2022-07-19T23:06:05Z |
| suse-su-2022:2444-1 | Security update for the Linux Kernel (Live Patch 23 for SLE 12 SP4) | 2022-07-19T21:04:12Z | 2022-07-19T21:04:12Z |
| suse-su-2022:2443-1 | Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP5) | 2022-07-19T18:34:06Z | 2022-07-19T18:34:06Z |
| suse-su-2022:2438-1 | Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP5) | 2022-07-19T15:33:40Z | 2022-07-19T15:33:40Z |
| suse-su-2022:2441-1 | Security update for python2-numpy | 2022-07-19T14:52:30Z | 2022-07-19T14:52:30Z |
| suse-su-2022:2435-1 | Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP2) | 2022-07-19T07:22:51Z | 2022-07-19T07:22:51Z |
| suse-su-2022:2432-1 | Security update for dovecot23 | 2022-07-18T16:56:18Z | 2022-07-18T16:56:18Z |
| suse-su-2022:2431-1 | Security update for dovecot23 | 2022-07-18T16:55:39Z | 2022-07-18T16:55:39Z |
| suse-su-2022:2430-1 | Security update for nodejs12 | 2022-07-18T15:34:57Z | 2022-07-18T15:34:57Z |
| suse-su-2022:2425-1 | Security update for nodejs14 | 2022-07-18T07:04:40Z | 2022-07-18T07:04:40Z |
| suse-su-2022:2424-2 | Security update for the Linux Kernel | 2022-07-18T06:45:44Z | 2022-07-18T06:45:44Z |
| suse-su-2022:2424-1 | Security update for the Linux Kernel | 2022-07-18T06:45:43Z | 2022-07-18T06:45:43Z |
| suse-su-2022:2417-1 | Security update for nodejs12 | 2022-07-15T15:36:05Z | 2022-07-15T15:36:05Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2019:1261-1 | Security update for SDL2 | 2019-04-23T15:07:46Z | 2019-04-23T15:07:46Z |
| opensuse-su-2019:1260-1 | Security update for audiofile | 2019-04-23T15:07:31Z | 2019-04-23T15:07:31Z |
| opensuse-su-2019:1259-1 | Security update for libqt5-qtvirtualkeyboard | 2019-04-23T14:09:48Z | 2019-04-23T14:09:48Z |
| opensuse-su-2019:1250-1 | Security update for glibc | 2019-04-20T08:29:27Z | 2019-04-20T08:29:27Z |
| opensuse-su-2019:1246-1 | Security update for blueman | 2019-04-19T12:06:01Z | 2019-04-19T12:06:01Z |
| opensuse-su-2019:1239-1 | Security update for libqt5-qtbase | 2019-04-18T14:08:34Z | 2019-04-18T14:08:34Z |
| opensuse-su-2019:1237-1 | Security update for tar | 2019-04-18T13:03:48Z | 2019-04-18T13:03:48Z |
| opensuse-su-2019:1236-1 | Security update for wget | 2019-04-18T13:03:24Z | 2019-04-18T13:03:24Z |
| opensuse-su-2019:1235-1 | Security update for xmltooling | 2019-04-18T13:03:11Z | 2019-04-18T13:03:11Z |
| opensuse-su-2019:1230-1 | Security update for lxc | 2019-04-18T08:19:11Z | 2019-04-18T08:19:11Z |
| opensuse-su-2019:1229-1 | Security update for aubio | 2019-04-17T14:32:31Z | 2019-04-17T14:32:31Z |
| opensuse-su-2019:1228-1 | Security update for pspp | 2019-04-17T14:31:54Z | 2019-04-17T14:31:54Z |
| opensuse-su-2019:1227-1 | Security update for lxc, lxcfs | 2019-04-17T14:27:35Z | 2019-04-17T14:27:35Z |
| opensuse-su-2019:1225-1 | Security update for flac | 2019-04-17T13:29:45Z | 2019-04-17T13:29:45Z |
| opensuse-su-2019:1224-1 | Security update for blktrace | 2019-04-17T13:29:33Z | 2019-04-17T13:29:33Z |
| opensuse-su-2019:1223-1 | Security update for SDL | 2019-04-17T13:29:07Z | 2019-04-17T13:29:07Z |
| opensuse-su-2019:1216-1 | Security update for gnuplot | 2019-04-16T15:00:37Z | 2019-04-16T15:00:37Z |
| opensuse-su-2019:1212-1 | Security update for dovecot23 | 2019-04-16T08:29:01Z | 2019-04-16T08:29:01Z |
| opensuse-su-2019:1210-1 | Security update for clamav | 2019-04-16T08:28:16Z | 2019-04-16T08:28:16Z |
| opensuse-su-2019:1209-1 | Security update for apache2 | 2019-04-16T08:27:23Z | 2019-04-16T08:27:23Z |
| opensuse-su-2019:1206-1 | Security update for webkit2gtk3 | 2019-04-15T14:33:44Z | 2019-04-15T14:33:44Z |
| opensuse-su-2019:0022-1 | Security update for gthumb | 2019-04-14T07:20:54Z | 2019-04-14T07:20:54Z |
| opensuse-su-2019:1200-1 | Security update for netpbm | 2019-04-12T12:54:48Z | 2019-04-12T12:54:48Z |
| opensuse-su-2019:1199-1 | Recommended update for xen | 2019-04-12T12:54:27Z | 2019-04-12T12:54:27Z |
| opensuse-su-2019:1198-1 | Security update for bluez | 2019-04-12T07:24:58Z | 2019-04-12T07:24:58Z |
| opensuse-su-2019:1196-1 | Security update for libarchive | 2019-04-12T07:23:10Z | 2019-04-12T07:23:10Z |
| opensuse-su-2019:1193-1 | Security update for the Linux Kernel | 2019-04-12T06:18:34Z | 2019-04-12T06:18:34Z |
| opensuse-su-2019:0242-1 | Security update for kauth | 2019-04-11T05:33:14Z | 2019-04-11T05:33:14Z |
| opensuse-su-2019:1180-1 | Security update for samba | 2019-04-10T05:27:26Z | 2019-04-10T05:27:26Z |
| opensuse-su-2019:1176-1 | Security update for sysstat | 2019-04-08T09:12:59Z | 2019-04-08T09:12:59Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-08810 | Esri Portal for ArcGIS路径遍历漏洞 | 2024-04-10 | 2025-04-29 |
| cnvd-2025-08809 | Esri Portal for ArcGIS跨站请求伪造漏洞 | 2024-04-10 | 2025-04-29 |
| cnvd-2025-08805 | Esri Portal for ArcGIS信息泄露漏洞 | 2024-10-08 | 2025-04-29 |
| cnvd-2025-08804 | Dell PowerScale OneFS信息泄露漏洞 | 2022-09-06 | 2025-04-29 |
| cnvd-2025-08802 | Esri Portal For ArcGIS跨站脚本漏洞 | 2023-07-21 | 2025-04-29 |
| cnvd-2025-08801 | Esri ArcGIS Enterprise跨站脚本漏洞 | 2023-07-27 | 2025-04-29 |
| cnvd-2025-08800 | Esri ArcGIS Server跨站脚本漏洞 | 2023-07-27 | 2025-04-29 |
| cnvd-2025-08786 | Adobe XMP Toolkit缓冲区溢出漏洞(CNVD-2025-08786) | 2025-04-18 | 2025-04-29 |
| cnvd-2025-08785 | Adobe XMP Toolkit缓冲区溢出漏洞(CNVD-2025-08785) | 2025-04-18 | 2025-04-29 |
| cnvd-2025-08784 | Esri Portal for ArcGIS硬编码凭据漏洞 | 2025-04-18 | 2025-04-29 |
| cnvd-2025-08783 | Adobe Commerce访问控制错误漏洞(CNVD-2025-08783) | 2025-04-18 | 2025-04-29 |
| cnvd-2025-08781 | Adobe XMP Toolkit缓冲区溢出漏洞(CNVD-2025-08781) | 2025-04-18 | 2025-04-29 |
| cnvd-2025-08780 | Adobe XMP Toolkit缓冲区溢出漏洞 | 2025-04-18 | 2025-04-29 |
| cnvd-2025-08779 | Adobe Premiere Pro缓冲区溢出漏洞 | 2025-04-18 | 2025-04-29 |
| cnvd-2025-08773 | Siemens TeleControl Server Basic SQL注入漏洞 | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08629 | 北京宏景世纪软件股份有限公司人力资源信息管理系统存在SQL注入漏洞 | 2025-03-11 | 2025-04-29 |
| cnvd-2025-08610 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08610) | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08609 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08609) | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08608 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08608) | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08607 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08607) | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08606 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08606) | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08605 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08605) | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08604 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08604) | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08603 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08603) | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08602 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08602) | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08600 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08600) | 2025-04-22 | 2025-04-29 |
| cnvd-2025-08450 | 厦门科拓通讯技术股份有限公司车场服务器管理面板存在命令执行漏洞 | 2025-03-13 | 2025-04-29 |
| cnvd-2025-09161 | Tenda RX3缓冲区溢出漏洞(CNVD-2025-09161) | 2025-03-17 | 2025-04-28 |
| cnvd-2025-09160 | Tenda AC9 formWifiWpsOOB函数缓冲区溢出漏洞 | 2025-03-19 | 2025-04-28 |
| cnvd-2025-09159 | Tenda AC9 formAdvSetMacMtuWan函数的wanSpeed参数缓冲区溢出漏洞 | 2025-03-19 | 2025-04-28 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-419 | Vulnérabilité dans Microsoft Word et Microsoft Office Web Apps | 2014-10-15T00:00:00.000000 | 2014-10-15T00:00:00.000000 |
| certfr-2014-avi-418 | Vulnérabilité dans le service Message Queuing de Microsoft Windows | 2014-10-15T00:00:00.000000 | 2014-10-15T00:00:00.000000 |
| certfr-2014-avi-417 | Vulnérabilité dans le pilote FAT32 de Microsoft Windows | 2014-10-15T00:00:00.000000 | 2014-10-15T00:00:00.000000 |
| certfr-2014-avi-191 | Vulnérabilité dans les produits F5 | 2014-04-17T00:00:00.000000 | 2014-10-15T00:00:00.000000 |
| certfr-2014-avi-416 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2014-10-14T00:00:00.000000 | 2014-10-14T00:00:00.000000 |
| certfr-2014-avi-415 | Multiples vulnérabilités dans les systèmes SCADA Siemens | 2014-10-13T00:00:00.000000 | 2014-10-13T00:00:00.000000 |
| certfr-2014-avi-414 | Vulnérabilité dans Huawei E355 | 2014-10-13T00:00:00.000000 | 2014-10-13T00:00:00.000000 |
| certfr-2014-avi-413 | Multiples vulnérabilités dans le noyau Ubuntu | 2014-10-10T00:00:00.000000 | 2014-10-10T00:00:00.000000 |
| certfr-2014-avi-412 | Multiples vulnérabilités dans Juniper | 2014-10-09T00:00:00.000000 | 2014-10-09T00:00:00.000000 |
| certfr-2014-avi-411 | Multiples vulnérabilités dans Huawei E5332 | 2014-10-09T00:00:00.000000 | 2014-10-09T00:00:00.000000 |
| certfr-2014-avi-410 | Multiples vulnérabilités dans Cisco ASA | 2014-10-09T00:00:00.000000 | 2014-10-09T00:00:00.000000 |
| certfr-2014-avi-409 | Multiples vulnérabilités dans Huawei | 2014-10-08T00:00:00.000000 | 2014-10-08T00:00:00.000000 |
| certfr-2014-avi-408 | Multiples vulnérabilités dans Google Chrome | 2014-10-08T00:00:00.000000 | 2014-10-08T00:00:00.000000 |
| certfr-2014-avi-407 | Multiples vulnérabilités dans Squid | 2014-10-08T00:00:00.000000 | 2014-10-08T00:00:00.000000 |
| certfr-2014-avi-406 | Vulnérabilité dans Xen | 2014-10-01T00:00:00.000000 | 2014-10-01T00:00:00.000000 |
| certfr-2014-avi-405 | Multiples vulnérabilités dans Apple OS X bash | 2014-09-30T00:00:00.000000 | 2014-09-30T00:00:00.000000 |
| certfr-2014-avi-404 | Multiples vulnérabilités dans Blue Coat | 2014-09-30T00:00:00.000000 | 2014-09-30T00:00:00.000000 |
| certfr-2014-avi-403 | Multiples vulnérabilités dans Juniper | 2014-09-30T00:00:00.000000 | 2014-09-30T00:00:00.000000 |
| certfr-2014-avi-402 | Multiples vulnérabilités dans Xen | 2014-09-25T00:00:00.000000 | 2014-09-25T00:00:00.000000 |
| certfr-2014-avi-401 | Vulnérabilité dans les produits Mozilla | 2014-09-25T00:00:00.000000 | 2014-09-25T00:00:00.000000 |
| certfr-2014-avi-400 | Vulnérabilité dans Google Chrome | 2014-09-25T00:00:00.000000 | 2014-09-25T00:00:00.000000 |
| certfr-2014-avi-399 | Multiples vulnérabilités dans les produits Huawei | 2014-09-25T00:00:00.000000 | 2014-09-25T00:00:00.000000 |
| certfr-2014-avi-398 | Multiples vulnérabilités dans les produits Cisco | 2014-09-25T00:00:00.000000 | 2014-09-25T00:00:00.000000 |
| certfr-2014-avi-397 | Vulnérabilité dans les systèmes SCADA Schneider Electric | 2014-09-24T00:00:00.000000 | 2014-09-24T00:00:00.000000 |
| certfr-2014-avi-396 | Multiples vulnérabilités dans le noyau Ubuntu | 2014-09-24T00:00:00.000000 | 2014-09-24T00:00:00.000000 |
| certfr-2014-avi-395 | Multiples vulnérabilités dans les produits F5 | 2014-09-22T00:00:00.000000 | 2014-09-22T00:00:00.000000 |
| certfr-2014-avi-394 | Multiples vulnérabilités dans Asterisk | 2014-09-19T00:00:00.000000 | 2014-09-19T00:00:00.000000 |
| certfr-2014-avi-393 | Multiples vulnérabilités dans les produits Apple | 2014-09-18T00:00:00.000000 | 2014-09-18T00:00:00.000000 |
| certfr-2014-avi-392 | Vulnérabilité dans Nginx | 2014-09-17T00:00:00.000000 | 2014-09-17T00:00:00.000000 |
| certfr-2014-avi-391 | Vulnérabilité dans le système SCADA Schneider Electric VAMPSET | 2014-09-17T00:00:00.000000 | 2014-09-17T00:00:00.000000 |