Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-49928 |
6.5 (3.1)
|
WordPress JetWooBuilder plugin <= 2.1.20 - Cross Site … |
CrocoBlock |
JetWooBuilder |
2025-10-22T14:32:14.597Z | 2026-01-20T14:28:07.500Z |
| CVE-2025-49918 |
5.9 (3.1)
|
WordPress VikBooking Hotel Booking Engine & PMS plugin… |
e4jvikwp |
VikBooking Hotel Booking Engine & PMS |
2025-12-18T07:21:44.067Z | 2026-01-20T14:28:07.426Z |
| CVE-2025-49916 |
8.6 (3.1)
|
WordPress MultiVendorX plugin <= 4.2.23 - Broken Acces… |
MultiVendorX |
MultiVendorX |
2025-10-22T14:32:12.420Z | 2026-01-20T14:28:07.416Z |
| CVE-2025-49915 |
9.3 (3.1)
|
WordPress SMS Alert Order Notifications plugin <= 3.8.… |
Cozy Vision |
SMS Alert Order Notifications |
2025-10-22T14:32:12.221Z | 2026-01-20T14:28:07.416Z |
| CVE-2025-49919 |
5.8 (3.1)
|
WordPress eRoom plugin <= 1.5.6 - Sensitive Data Expos… |
WPCenter |
eRoom |
2025-12-18T07:21:44.250Z | 2026-01-20T14:28:07.395Z |
| CVE-2025-49914 |
6.5 (3.1)
|
WordPress Restaurant Menu by MotoPress plugin <= 2.4.7… |
jetmonsters |
Restaurant Menu by MotoPress |
2025-12-18T07:21:43.896Z | 2026-01-20T14:28:07.321Z |
| CVE-2025-49913 |
5.3 (3.1)
|
WordPress CoSchedule plugin <= 3.4.0 - Broken Access C… |
CoSchedule |
CoSchedule |
2025-10-22T14:32:11.977Z | 2026-01-20T14:28:07.305Z |
| CVE-2025-49912 |
5.9 (3.1)
|
WordPress Email Subscription Popup plugin <= 1.2.26 - … |
Nks |
Email Subscription Popup |
2025-10-22T14:32:11.545Z | 2026-01-20T14:28:07.305Z |
| CVE-2025-49911 |
7.1 (3.1)
|
WordPress WooCommerce Vehicle Parts Finder plugin <= 3… |
wpinstinct |
WooCommerce Vehicle Parts Finder |
2025-10-22T14:32:11.293Z | 2026-01-20T14:28:07.298Z |
| CVE-2025-49910 |
8.2 (3.1)
|
WordPress WPGuppy plugin <= 1.1.4 - Broken Access Cont… |
AmentoTech Private Limited |
WPGuppy |
2025-10-22T14:32:11.095Z | 2026-01-20T14:28:07.272Z |
| CVE-2025-49380 |
5.3 (3.1)
|
WordPress WooCommerce Vehicle Parts Finder plugin <= 3… |
wpinstinct |
WooCommerce Vehicle Parts Finder |
2025-10-22T14:32:09.626Z | 2026-01-20T14:28:07.252Z |
| CVE-2025-49377 |
7.5 (3.1)
|
WordPress Hydra Booking plugin <= 1.1.9 - Broken Acces… |
Themefic |
Hydra Booking |
2025-10-22T14:32:09.195Z | 2026-01-20T14:28:07.238Z |
| CVE-2025-49398 |
6.1 (3.1)
|
WordPress Easy Appointments plugin <= 3.12.14 - Conten… |
Easy Appointments |
Easy Appointments |
2025-11-06T15:53:53.979Z | 2026-01-20T14:28:07.235Z |
| CVE-2025-49379 |
7.2 (3.1)
|
WordPress Custom Fields Account Registration For Wooco… |
silverplugins217 |
Custom Fields Account Registration For Woocommerce |
2025-12-18T07:21:43.532Z | 2026-01-20T14:28:07.231Z |
| CVE-2025-49906 |
5.3 (3.1)
|
WordPress WPComplete plugin <= 2.9.5.3 - Broken Access… |
StellarWP |
WPComplete |
2025-10-22T14:32:10.402Z | 2026-01-20T14:28:07.214Z |
| CVE-2025-49907 |
4.3 (3.1)
|
WordPress MDTF plugin <= 1.3.3.9 - Broken Access Contr… |
RealMag777 |
MDTF |
2025-10-22T14:32:10.614Z | 2026-01-20T14:28:07.207Z |
| CVE-2025-49900 |
8.8 (3.1)
|
WordPress Advanced scrollbar plugin <= 1.1.8 - Privile… |
bPlugins |
Advanced scrollbar |
2025-11-06T15:53:54.586Z | 2026-01-20T14:28:07.207Z |
| CVE-2025-49366 |
8.1 (3.1)
|
WordPress Hanani theme <= 1.2.11 - Local File Inclusio… |
AncoraThemes |
Hanani |
2025-12-18T07:21:42.421Z | 2026-01-20T14:28:07.207Z |
| CVE-2025-49369 |
8.1 (3.1)
|
WordPress Lettuce theme <= 1.1.7 - Local File Inclusio… |
AncoraThemes |
Lettuce |
2025-12-18T07:21:42.972Z | 2026-01-20T14:28:07.204Z |
| CVE-2025-49909 |
6.1 (3.1)
|
WordPress Penci Bookmark & Follow plugin < 2.4 - Cross… |
PenciDesign |
Penci Bookmark & Follow |
2025-11-06T15:53:56.279Z | 2026-01-20T14:28:07.191Z |
| CVE-2025-49363 |
8.1 (3.1)
|
WordPress Kings & Queens theme <= 1.1.16 - Local File … |
AncoraThemes |
Kings & Queens |
2025-12-18T07:21:41.871Z | 2026-01-20T14:28:07.185Z |
| CVE-2025-49378 |
8.5 (3.1)
|
WordPress Hydra Booking plugin <= 1.1.10 - SQL Injecti… |
Themefic |
Hydra Booking |
2025-10-22T14:32:09.452Z | 2026-01-20T14:28:07.184Z |
| CVE-2025-49394 |
8.8 (3.1)
|
WordPress Image Gallery block – Create and display pho… |
bPlugins |
Image Gallery block – Create and display photo gallery/photo album. |
2025-11-06T15:53:53.230Z | 2026-01-20T14:28:07.162Z |
| CVE-2025-49373 |
4.3 (3.1)
|
WordPress Evergreen Content Poster plugin <= 1.4.5 - C… |
Evergreen Content Poster |
Evergreen Content Poster |
2025-10-22T14:32:08.403Z | 2026-01-20T14:28:07.162Z |
| CVE-2025-49905 |
6.1 (3.1)
|
WordPress Range Slider Addon for Gravity Forms plugin … |
PluginsCafe |
Range Slider Addon for Gravity Forms |
2025-11-06T15:53:55.700Z | 2026-01-20T14:28:07.161Z |
| CVE-2025-49386 |
9.8 (3.1)
|
WordPress Preserve Code Formatting Plugin <= 4.0.1 - P… |
Scott Reilly |
Preserve Code Formatting |
2025-11-06T15:53:50.934Z | 2026-01-20T14:28:07.161Z |
| CVE-2025-49367 |
8.1 (3.1)
|
WordPress Monyxi theme <= 1.1.8 - Local File Inclusion… |
AncoraThemes |
Monyxi |
2025-12-18T07:21:42.595Z | 2026-01-20T14:28:07.160Z |
| CVE-2025-49374 |
5.3 (3.1)
|
WordPress Captcha.eu plugin <= 1.0.61 - Server Side Re… |
captcha.eu |
Captcha.eu |
2025-10-22T14:32:08.617Z | 2026-01-20T14:28:07.159Z |
| CVE-2025-49372 |
10 (3.1)
|
WordPress HAPPY plugin <= 1.0.7 - Remote Code Executio… |
VillaTheme |
HAPPY |
2025-11-06T15:53:50.181Z | 2026-01-20T14:28:07.159Z |
| CVE-2025-49902 |
6.5 (3.1)
|
WordPress Login Page Customizer – Customizer Login Pag… |
A WP Life |
Login Page Customizer – Customizer Login Page, Admin Page, Custom Design |
2025-12-18T07:21:43.721Z | 2026-01-20T14:28:07.158Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-60070 |
6.5 (3.1)
|
WordPress Molla - Multipurpose Responsive Shopify them… |
The4 |
Molla |
2025-12-18T07:22:05.588Z | 2026-01-20T14:28:11.788Z |
| CVE-2025-60068 |
6.5 (3.1)
|
WordPress Javo Core plugin <= 3.0.0.266 - Arbitrary Co… |
javothemes |
Javo Core |
2025-12-18T07:22:05.224Z | 2026-01-20T14:28:11.805Z |
| CVE-2025-60067 |
8.1 (3.1)
|
WordPress Giardino theme <= 1.1.10 - Local File Inclus… |
axiomthemes |
Giardino |
2025-12-18T07:22:05.053Z | 2026-01-20T14:28:11.757Z |
| CVE-2025-60066 |
8.1 (3.1)
|
WordPress Katelyn theme <= 1.0.10 - Local File Inclusi… |
axiomthemes |
Katelyn |
2025-12-18T07:22:04.871Z | 2026-01-20T14:28:11.771Z |
| CVE-2025-60065 |
8.1 (3.1)
|
WordPress Pinevale theme <= 1.0.14 - Local File Inclus… |
axiomthemes |
Pinevale |
2025-12-18T07:22:04.689Z | 2026-01-20T14:28:11.587Z |
| CVE-2025-60064 |
8.1 (3.1)
|
WordPress Renewal theme <= 1.2.2 - Local File Inclusio… |
axiomthemes |
Renewal |
2025-12-18T07:22:04.500Z | 2026-01-20T14:28:11.763Z |
| CVE-2025-60063 |
8.2 (3.1)
|
WordPress Rosalinda theme <= 1.2.3 - Local File Inclus… |
axiomthemes |
Rosalinda |
2025-12-18T07:22:04.312Z | 2026-01-21T15:36:49.660Z |
| CVE-2025-60062 |
9.4 (3.1)
|
WordPress tPlayer plugin <= 1.2.1.6 - SQL Injection vu… |
mmetrodw |
tPlayer |
2025-12-18T07:22:04.109Z | 2026-01-21T15:38:23.015Z |
| CVE-2025-60061 |
8.1 (3.1)
|
WordPress Kicker theme <= 2.2.0 - Local File Inclusion… |
axiomthemes |
Kicker |
2025-12-18T07:22:03.925Z | 2026-01-20T14:28:11.582Z |
| CVE-2025-60060 |
8.1 (3.1)
|
WordPress Pubzinne theme <= 1.0.12 - Local File Inclus… |
axiomthemes |
Pubzinne |
2025-12-18T07:22:03.729Z | 2026-01-20T14:28:11.786Z |
| CVE-2025-60059 |
8.1 (3.1)
|
WordPress smart SEO theme <= 2.12 - Local File Inclusi… |
axiomthemes |
smart SEO |
2025-12-18T07:22:03.468Z | 2026-01-20T14:28:11.806Z |
| CVE-2025-60058 |
8.1 (3.1)
|
WordPress DetailX theme <= 1.10.0 - Local File Inclusi… |
AncoraThemes |
DetailX |
2025-12-18T07:22:03.280Z | 2026-01-20T14:28:11.787Z |
| CVE-2025-60057 |
8.1 (3.1)
|
WordPress DJ Rainflow theme <= 1.3.13 - Local File Inc… |
AncoraThemes |
DJ Rainflow |
2025-12-18T07:22:03.082Z | 2026-01-20T14:28:12.080Z |
| CVE-2025-60056 |
8.1 (3.1)
|
WordPress Winger theme <= 1.0.16 - Local File Inclusio… |
AncoraThemes |
Winger |
2025-12-18T07:22:02.878Z | 2026-01-20T14:28:11.708Z |
| CVE-2025-60055 |
8.2 (3.1)
|
WordPress Fabrica theme <= 1.8.1 - Local File Inclusio… |
AncoraThemes |
Fabrica |
2025-12-18T07:22:02.704Z | 2026-01-21T15:38:56.104Z |
| CVE-2025-60054 |
8.2 (3.1)
|
WordPress OnLeash theme <= 1.5.2 - Local File Inclusio… |
AncoraThemes |
OnLeash |
2025-12-18T07:22:02.500Z | 2026-01-21T15:39:31.725Z |
| CVE-2025-60053 |
8.2 (3.1)
|
WordPress MaxCube theme <= 1.3.1 - Local File Inclusio… |
AncoraThemes |
MaxCube |
2025-12-18T07:22:02.315Z | 2026-01-21T15:39:56.826Z |
| CVE-2025-60052 |
8.2 (3.1)
|
WordPress W&D theme <= 1.0 - Local File Inclusion vuln… |
AncoraThemes |
W&D |
2025-12-18T07:22:02.123Z | 2026-01-21T15:40:12.899Z |
| CVE-2025-60051 |
8.2 (3.1)
|
WordPress Rare Radio theme <= 1.0.15.1 - Local File In… |
AncoraThemes |
Rare Radio |
2025-12-18T07:22:01.919Z | 2026-01-21T15:40:27.459Z |
| CVE-2025-60050 |
8.2 (3.1)
|
WordPress Panda theme <= 1.21 - Local File Inclusion v… |
axiomthemes |
Panda |
2025-12-18T07:22:01.712Z | 2026-01-21T15:40:43.518Z |
| CVE-2025-60049 |
8.2 (3.1)
|
WordPress Soleil theme <= 1.17 - Local File Inclusion … |
axiomthemes |
Soleil |
2025-12-18T07:22:01.475Z | 2026-01-21T15:41:15.755Z |
| CVE-2025-60048 |
8.1 (3.1)
|
WordPress Tripster theme <= 1.0.10 - Local File Inclus… |
axiomthemes |
Tripster |
2025-12-18T07:22:01.281Z | 2026-01-20T14:28:11.490Z |
| CVE-2025-60047 |
8.1 (3.1)
|
WordPress IPharm theme <= 1.2.3 - Local File Inclusion… |
axiomthemes |
IPharm |
2025-12-18T07:22:01.092Z | 2026-01-20T14:28:11.507Z |
| CVE-2025-60046 |
8.1 (3.1)
|
WordPress HeartStar theme <= 1.0.14 - Local File Inclu… |
axiomthemes |
HeartStar |
2025-12-18T07:22:00.903Z | 2026-01-20T14:28:11.485Z |
| CVE-2025-60045 |
7.5 (3.1)
|
WordPress IDonatePro plugin <= 2.1.11 - Broken Access … |
ThemeAtelier |
IDonatePro |
2025-12-18T07:22:00.733Z | 2026-01-20T14:28:11.507Z |
| CVE-2025-60044 |
8.1 (3.1)
|
WordPress Fribbo theme <= 1.1.0 - Local File Inclusion… |
AncoraThemes |
Fribbo |
2025-12-18T07:22:00.555Z | 2026-01-20T14:28:11.518Z |
| CVE-2025-60043 |
8.1 (3.1)
|
WordPress Wanderic theme <= 1.0.10 - Local File Inclus… |
AncoraThemes |
Wanderic |
2025-12-18T07:22:00.383Z | 2026-01-20T14:28:11.466Z |
| CVE-2025-60042 |
8.1 (3.1)
|
WordPress Chinchilla theme <= 1.16 - Local File Inclus… |
AncoraThemes |
Chinchilla |
2025-12-18T07:22:00.193Z | 2026-01-20T14:28:11.486Z |
| CVE-2025-60041 |
8.8 (3.1)
|
WordPress Emails Catch All plugin <= 3.5.3 - Broken Au… |
Iulia Cazan |
Emails Catch All |
2025-10-22T14:32:40.107Z | 2026-01-20T14:28:11.484Z |
| CVE-2025-60039 |
9.8 (3.1)
|
WordPress Noisa theme <= 2.6.0 - PHP Object Injection … |
rascals |
Noisa |
2025-10-22T14:32:39.926Z | 2026-01-20T14:28:11.408Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-60068 | Improper Control of Generation of Code ('Code Injection') vulnerability in javothemes Javo Core jav… | 2025-12-18T08:16:06.933 | 2026-01-20T15:17:24.740 |
| fkie_cve-2025-60067 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:06.800 | 2026-01-20T15:17:24.593 |
| fkie_cve-2025-60066 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:06.667 | 2026-01-20T15:17:24.453 |
| fkie_cve-2025-60065 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:06.537 | 2026-01-20T15:17:24.317 |
| fkie_cve-2025-60064 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:06.407 | 2026-01-20T15:17:24.173 |
| fkie_cve-2025-60063 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:06.277 | 2026-01-20T15:17:24.040 |
| fkie_cve-2025-60062 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-18T08:16:06.153 | 2026-01-20T15:17:23.907 |
| fkie_cve-2025-60061 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:06.023 | 2026-01-20T15:17:23.773 |
| fkie_cve-2025-60060 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:05.900 | 2026-01-20T15:17:23.633 |
| fkie_cve-2025-60059 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:05.767 | 2026-01-20T15:17:23.493 |
| fkie_cve-2025-60058 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:05.643 | 2026-01-20T15:17:23.363 |
| fkie_cve-2025-60057 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:05.510 | 2026-01-20T15:17:23.220 |
| fkie_cve-2025-60056 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:05.383 | 2026-01-20T15:17:23.090 |
| fkie_cve-2025-60055 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:05.250 | 2026-01-20T15:17:22.963 |
| fkie_cve-2025-60054 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:05.117 | 2026-01-20T15:17:22.830 |
| fkie_cve-2025-60053 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:04.990 | 2026-01-20T15:17:22.703 |
| fkie_cve-2025-60052 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:04.863 | 2026-01-20T15:17:22.563 |
| fkie_cve-2025-60051 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:04.740 | 2026-01-20T15:17:22.420 |
| fkie_cve-2025-60050 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:04.613 | 2026-01-20T15:17:22.277 |
| fkie_cve-2025-60049 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:04.490 | 2026-01-20T15:17:22.137 |
| fkie_cve-2025-60048 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:04.357 | 2026-01-20T15:17:21.997 |
| fkie_cve-2025-60047 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:04.227 | 2026-01-20T15:17:21.857 |
| fkie_cve-2025-60046 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:04.090 | 2026-01-20T15:17:21.717 |
| fkie_cve-2025-60045 | Missing Authorization vulnerability in ThemeAtelier IDonatePro idonate-pro allows Accessing Functio… | 2025-12-18T08:16:03.957 | 2026-01-20T15:17:21.597 |
| fkie_cve-2025-60044 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:03.820 | 2026-01-20T15:17:21.467 |
| fkie_cve-2025-60043 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:03.690 | 2026-01-20T15:17:21.333 |
| fkie_cve-2025-60042 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:03.550 | 2026-01-20T15:17:21.200 |
| fkie_cve-2025-60041 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Iulia Cazan Emails Catch … | 2025-10-22T15:15:56.660 | 2026-01-20T15:17:21.067 |
| fkie_cve-2025-60039 | Deserialization of Untrusted Data vulnerability in rascals Noisa noisa allows Object Injection.This… | 2025-10-22T15:15:56.533 | 2026-01-20T15:17:20.930 |
| fkie_cve-2025-5803 | Missing Authorization vulnerability in e4jvikwp VikBooking Hotel Booking Engine & PMS vikbooking.Th… | 2025-11-06T16:16:02.763 | 2026-01-20T15:17:20.797 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-2w69-qvjg-hvjx |
8.0 (3.1)
|
React Router vulnerable to XSS via Open Redirects | 2026-01-08T20:54:18Z | 2026-01-11T14:54:13Z |
| ghsa-8v8x-cx79-35w7 |
8.2 (3.1)
|
React Router SSR XSS in ScrollRestoration | 2026-01-08T20:50:05Z | 2026-01-11T14:54:08Z |
| ghsa-9jcx-v3wj-wh4m |
6.5 (3.1)
|
React Router has unexpected external redirect via untrusted paths | 2026-01-08T20:48:21Z | 2026-01-11T14:54:02Z |
| ghsa-9583-h5hc-x8cw |
9.1 (3.1)
|
React Router has Path Traversal in File Session Storage | 2026-01-08T20:45:07Z | 2026-01-11T14:53:54Z |
| ghsa-3cgp-3xvw-98x8 |
7.6 (3.1)
|
React Router has XSS Vulnerability | 2026-01-08T20:42:20Z | 2026-01-11T14:53:48Z |
| ghsa-4f6g-68pf-7vhv |
2.7 (4.0)
|
pypdf has possible long runtimes for malformed startxref | 2026-01-09T19:48:57Z | 2026-01-11T14:53:40Z |
| ghsa-4xc4-762w-m6cg |
2.7 (4.0)
|
pypdf has possible long runtimes for missing /Root object with large /Size values | 2026-01-09T19:48:22Z | 2026-01-11T14:53:34Z |
| ghsa-m892-c9fc-5798 |
6.3 (3.1)
2.1 (4.0)
|
A flaw has been found in Flycatcher Toys smART Sketcher up to 2.0. This affects an unknown part of … | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-73j7-p7fw-fvw8 |
8.8 (3.1)
7.4 (4.0)
|
A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function st… | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-5xwg-ff7c-5w3f |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability has been found in jiujiujia/victor123/wxw850227 jjjfood and jjjshop_food up to 2026… | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-397f-58rh-886v |
8.8 (3.1)
7.4 (4.0)
|
A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Affected by this vulnerabil… | 2026-01-11T09:30:24Z | 2026-01-11T09:30:24Z |
| ghsa-55hm-v7vp-29ch |
8.8 (3.1)
7.4 (4.0)
|
A weakness has been identified in UTT 进取 520W 1.7.7-180627. Affected is the function strcpy of the … | 2026-01-11T06:30:14Z | 2026-01-11T06:30:14Z |
| ghsa-vmm9-42qr-q2wm |
8.8 (3.1)
7.4 (4.0)
|
A security flaw has been discovered in UTT 进取 520W 1.7.7-180627. This impacts the function strcpy o… | 2026-01-11T06:30:13Z | 2026-01-11T06:30:13Z |
| ghsa-cq29-xq99-f8rf |
8.8 (3.1)
7.4 (4.0)
|
A vulnerability was determined in UTT 进取 520W 1.7.7-180627. The impacted element is the function st… | 2026-01-11T06:30:13Z | 2026-01-11T06:30:13Z |
| ghsa-5pqx-3x6j-mwv7 |
8.8 (3.1)
7.4 (4.0)
|
A vulnerability was identified in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the… | 2026-01-11T06:30:13Z | 2026-01-11T06:30:13Z |
| ghsa-p84p-32wc-24f9 |
2.4 (3.1)
1.9 (4.0)
|
A vulnerability was found in Luxul XWR-600 up to 4.0.1. The affected element is an unknown function… | 2026-01-11T03:30:12Z | 2026-01-11T03:30:12Z |
| ghsa-rcpp-qhfh-r47v |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability was determined in quickjs-ng quickjs up to 0.11.0. This vulnerability affects the f… | 2026-01-10T15:31:22Z | 2026-01-10T15:31:22Z |
| ghsa-p889-p985-pvfj |
4.3 (3.1)
|
The Featured Image from URL (FIFU) plugin for WordPress is vulnerable to Server-Side Request Forger… | 2026-01-10T15:31:22Z | 2026-01-10T15:31:22Z |
| ghsa-f45f-r423-g82r |
6.4 (3.1)
|
The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cros… | 2026-01-10T15:31:22Z | 2026-01-10T15:31:22Z |
| ghsa-67vh-536w-6pc4 |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. This issue affects the function … | 2026-01-10T15:31:22Z | 2026-01-10T15:31:22Z |
| ghsa-32fr-wvmv-2x73 |
6.4 (3.1)
|
The Countdown Timer – Widget Countdown plugin for WordPress is vulnerable to Stored Cross-Site Scri… | 2026-01-10T15:31:22Z | 2026-01-10T15:31:22Z |
| ghsa-q82x-ch97-83xv |
6.4 (3.1)
|
The ConvertForce Popup Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi… | 2026-01-10T12:30:16Z | 2026-01-10T12:30:16Z |
| ghsa-8643-3fq3-vwcr |
5.3 (3.1)
|
The Templately plugin for WordPress is vulnerable to Arbitrary File Write in all versions up to, an… | 2026-01-10T12:30:16Z | 2026-01-10T12:30:16Z |
| ghsa-vvm5-qpfc-95c2 |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0.8. … | 2026-01-10T09:30:19Z | 2026-01-10T09:30:19Z |
| ghsa-h49h-jpp7-xv85 |
7.3 (3.1)
5.5 (4.0)
|
A security flaw has been discovered in Sangfor Operation and Maintenance Management System up to 3.… | 2026-01-10T09:30:19Z | 2026-01-10T09:30:19Z |
| ghsa-4wfj-gghq-89j5 |
5.4 (3.1)
|
The User Registration & Membership – Custom Registration Form Builder, Custom Login Form, User Prof… | 2026-01-10T09:30:19Z | 2026-01-10T09:30:19Z |
| ghsa-q65f-fgmm-q786 |
5.3 (3.1)
|
The miniOrange OTP Verification and SMS Notification for WooCommerce plugin for WordPress is vulner… | 2026-01-10T09:30:18Z | 2026-01-10T09:30:18Z |
| ghsa-hxh3-g6p5-hhm6 |
4.3 (3.1)
|
The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to Sensitive… | 2026-01-10T09:30:18Z | 2026-01-10T09:30:18Z |
| ghsa-8vfw-8f88-jq83 |
7.5 (3.1)
|
The WooCommerce Square plugin for WordPress is vulnerable to Insecure Direct Object Reference in al… | 2026-01-10T06:30:12Z | 2026-01-10T06:30:12Z |
| ghsa-hj59-mf6x-2j8w |
9.8 (3.1)
8.9 (4.0)
|
A vulnerability was determined in Sangfor Operation and Maintenance Management System up to 3.0.8. … | 2026-01-10T00:30:31Z | 2026-01-10T00:30:31Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-27681 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.368235Z |
| gsd-2024-27590 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.368032Z |
| gsd-2024-27503 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.367830Z |
| gsd-2024-27783 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.367378Z |
| gsd-2024-27779 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.365409Z |
| gsd-2024-27657 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the User-Agen… | 2024-02-27T06:02:31.365140Z |
| gsd-2024-27842 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.364935Z |
| gsd-2024-27557 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.363863Z |
| gsd-2024-27522 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.362772Z |
| gsd-2024-27888 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.362551Z |
| gsd-2024-27558 | Stupid Simple CMS 1.2.4 is vulnerable to Cross Site Scripting (XSS) within the blog title… | 2024-02-27T06:02:31.362299Z |
| gsd-2024-27807 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.362087Z |
| gsd-2024-27721 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.361810Z |
| gsd-2024-27672 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.361608Z |
| gsd-2024-27648 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.361406Z |
| gsd-2024-27690 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.360560Z |
| gsd-2024-27746 | SQL Injection vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to… | 2024-02-27T06:02:31.360352Z |
| gsd-2024-27463 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.360144Z |
| gsd-2024-27553 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.359921Z |
| gsd-2024-27738 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.357187Z |
| gsd-2024-27834 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.356287Z |
| gsd-2024-27749 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.355366Z |
| gsd-2024-27713 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.354212Z |
| gsd-2024-27715 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.353576Z |
| gsd-2024-27830 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.353350Z |
| gsd-2024-27489 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.352363Z |
| gsd-2024-27691 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.351817Z |
| gsd-2024-27638 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.350487Z |
| gsd-2024-27829 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.350025Z |
| gsd-2024-27797 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.349353Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-186379 | Malicious code in cross-env-cross-env-photon-superposition (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186378 | Malicious code in cross-env-atlas-thuban-enif (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186377 | Malicious code in cross-env-atlas-non-blocking-eslint (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186376 | Malicious code in cron-tree-query-unix-report (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186375 | Malicious code in cron-rho-analyze-socket-air (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186374 | Malicious code in cron-optimize-thread-cat-compile (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186373 | Malicious code in cron-kappa-bash-serialize-beta (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186372 | Malicious code in cressida-yakutsk-zephyr-rollup (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186371 | Malicious code in cressida-vortex-lint-staged-blueshift (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186370 | Malicious code in cressida-prettier-plugin-markdown-pulsar-stream (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186369 | Malicious code in cressida-jwt-loglevel-fetch (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186368 | Malicious code in cressida-indus-epimetheus-borealis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186367 | Malicious code in cressida-cybernetics-rollup-plugin-node-sass (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186366 | Malicious code in cressida-cache-iota-antares (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186365 | Malicious code in cosmos-yonder-grunt-nashira (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186364 | Malicious code in cosmos-volcanology-cassini-nova (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186363 | Malicious code in cosmos-void-procyon-nanotechnology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186362 | Malicious code in cosmos-public-warp-planckscale (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186361 | Malicious code in cosmos-geochemistry-sqlite-lint-staged (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186360 | Malicious code in cosmos-framework-gacrux-pm2 (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186359 | Malicious code in cosmos-coronalmassejection-remark-arcturus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186358 | Malicious code in cosmos-concurrently-uninstall-jest (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186357 | Malicious code in cosmos-centaurus-charon-tool (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186356 | Malicious code in cosmology-schema-morgan-canopus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186355 | Malicious code in cosmology-levels-terser-iota (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186354 | Malicious code in cosmology-geodynamo-blaze-perturbation (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186353 | Malicious code in cosmogenic-spinner-andromeda-quasarjet (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186352 | Malicious code in cosmogenic-polaris-helios-atlas (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186351 | Malicious code in cosmogenic-genomics-scripts-cache (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186350 | Malicious code in cosmogenic-astroinformatics-mesosphere-soap (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2022-1485 | Hashicorp Vault: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-09-20T22:00:00.000+00:00 | 2023-04-26T22:00:00.000+00:00 |
| wid-sec-w-2022-1287 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2022-09-04T22:00:00.000+00:00 | 2023-04-26T22:00:00.000+00:00 |
| wid-sec-w-2022-1008 | Red Hat OpenStack: Schwachstelle ermöglicht Denial of Service | 2022-08-10T22:00:00.000+00:00 | 2023-04-26T22:00:00.000+00:00 |
| wid-sec-w-2023-1081 | IBM TXSeries: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-04-25T22:00:00.000+00:00 | 2023-04-25T22:00:00.000+00:00 |
| wid-sec-w-2023-1077 | Nextcloud: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-04-25T22:00:00.000+00:00 | 2023-04-25T22:00:00.000+00:00 |
| wid-sec-w-2023-1075 | Arista EOS: Schwachstelle ermöglicht Manipulation von Dateien | 2023-04-25T22:00:00.000+00:00 | 2023-04-25T22:00:00.000+00:00 |
| wid-sec-w-2023-1074 | Mattermost: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-04-25T22:00:00.000+00:00 | 2023-04-25T22:00:00.000+00:00 |
| wid-sec-w-2023-1073 | SolarWinds Orion: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-04-25T22:00:00.000+00:00 | 2023-04-25T22:00:00.000+00:00 |
| wid-sec-w-2023-1069 | Rancher: Schwachstelle ermöglicht Privilegieneskalation | 2023-04-24T22:00:00.000+00:00 | 2023-04-24T22:00:00.000+00:00 |
| wid-sec-w-2023-1068 | IBM Maximo Asset Management: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-04-24T22:00:00.000+00:00 | 2023-04-24T22:00:00.000+00:00 |
| wid-sec-w-2023-0488 | IBM HTTP Server: Schwachstelle ermöglicht Denial of Service | 2023-02-27T23:00:00.000+00:00 | 2023-04-24T22:00:00.000+00:00 |
| wid-sec-w-2023-1058 | Zoho ManageEngine ServiceDesk Plus: Schwachstelle ermöglicht XML External Entity Angriff | 2023-04-20T22:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2023-1056 | Mattermost: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-04-20T22:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2023-1052 | tribe29 checkmk: Schwachstelle ermöglicht Cross-Site Scripting | 2023-04-20T22:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2023-1051 | KDE: Schwachstelle ermöglicht Denial of Service | 2019-02-10T23:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2023-1050 | KDE: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten | 2019-05-07T22:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2023-1049 | Oracle MySQL: Mehrere Schwachstellen | 2020-04-14T22:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2023-1047 | JasPer: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2021-01-27T23:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2023-1046 | JasPer: Mehrere Schwachstellen | 2021-02-23T23:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2023-1044 | JasPer: Schwachstelle ermöglicht Denial of Service | 2021-03-23T23:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2022-0674 | IBM Java: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2022-02-24T23:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2023-1043 | Cisco TelePresence: Mehrere Schwachstellen | 2023-04-19T22:00:00.000+00:00 | 2023-04-19T22:00:00.000+00:00 |
| wid-sec-w-2023-1041 | Avast und AVG Antivirus: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-04-19T22:00:00.000+00:00 | 2023-04-19T22:00:00.000+00:00 |
| wid-sec-w-2023-1038 | Cisco SD-WAN: Schwachstelle ermöglicht Löschen von Dateien | 2023-04-19T22:00:00.000+00:00 | 2023-04-19T22:00:00.000+00:00 |
| wid-sec-w-2023-1004 | vm2: Mehrere Schwachstellen | 2023-04-18T22:00:00.000+00:00 | 2023-04-19T22:00:00.000+00:00 |
| wid-sec-w-2023-1034 | Oracle JD Edwards: Mehrere Schwachstellen | 2023-04-18T22:00:00.000+00:00 | 2023-04-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1032 | Oracle PeopleSoft: Mehrere Schwachstellen | 2023-04-18T22:00:00.000+00:00 | 2023-04-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1031 | Oracle Retail Applications: Mehrere Schwachstellen | 2023-04-18T22:00:00.000+00:00 | 2023-04-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1030 | Oracle Siebel CRM: Mehrere Schwachstellen | 2023-04-18T22:00:00.000+00:00 | 2023-04-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1029 | Oracle Supply Chain: Mehrere Schwachstellen | 2023-04-18T22:00:00.000+00:00 | 2023-04-18T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:8047 | Red Hat Security Advisory: .NET 6.0 security update | 2024-10-14T11:21:08+00:00 | 2025-11-28T19:44:20+00:00 |
| rhsa-2024:7867 | Red Hat Security Advisory: .NET 6.0 security update | 2024-10-09T14:34:30+00:00 | 2025-11-28T19:44:17+00:00 |
| rhsa-2024:7851 | Red Hat Security Advisory: .NET 6.0 security update | 2024-10-09T11:47:54+00:00 | 2025-11-28T19:44:16+00:00 |
| rhsa-2025:0382 | Red Hat Security Advisory: .NET 9.0 security update | 2025-01-16T17:27:06+00:00 | 2025-11-28T19:37:35+00:00 |
| rhba-2025:0305 | Red Hat Bug Fix Advisory: .NET 9.0 bug fix and enhancement update | 2025-01-14T01:20:44+00:00 | 2025-11-28T19:37:32+00:00 |
| rhsa-2025:0532 | Red Hat Security Advisory: .NET 8.0 security update | 2025-01-21T16:19:08+00:00 | 2025-11-28T19:32:48+00:00 |
| rhsa-2024:3047 | Red Hat Security Advisory: 389-ds:1.4 security update | 2024-05-22T10:25:51+00:00 | 2025-11-28T17:33:37+00:00 |
| rhsa-2023:3593 | Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update | 2023-06-14T10:02:32+00:00 | 2025-11-28T14:29:04+00:00 |
| rhsa-2023:3592 | Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update | 2023-06-14T09:51:37+00:00 | 2025-11-28T14:29:04+00:00 |
| rhsa-2023:3582 | Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update | 2023-06-14T08:41:36+00:00 | 2025-11-28T14:29:02+00:00 |
| rhsa-2023:3581 | Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update | 2023-06-14T08:03:19+00:00 | 2025-11-28T14:29:01+00:00 |
| rhsa-2023:3580 | Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update | 2023-06-14T08:54:51+00:00 | 2025-11-28T14:29:01+00:00 |
| rhsa-2025:21037 | Red Hat Security Advisory: qt6-qtsvg security update | 2025-11-11T19:56:51+00:00 | 2025-11-27T17:37:49+00:00 |
| rhsa-2025:19772 | Red Hat Security Advisory: qt6-qtsvg security update | 2025-11-05T07:46:09+00:00 | 2025-11-27T17:37:49+00:00 |
| rhsa-2025:19720 | Red Hat Security Advisory: libsoup3 security update | 2025-11-04T18:03:12+00:00 | 2025-11-27T17:37:04+00:00 |
| rhsa-2025:21032 | Red Hat Security Advisory: libsoup3 security update | 2025-11-11T19:55:06+00:00 | 2025-11-27T17:37:03+00:00 |
| rhsa-2025:18183 | Red Hat Security Advisory: libsoup3 security update | 2025-10-15T20:35:08+00:00 | 2025-11-27T17:36:57+00:00 |
| rhsa-2025:20478 | Red Hat Security Advisory: zziplib security update | 2025-11-11T11:39:12+00:00 | 2025-11-27T17:36:20+00:00 |
| rhsa-2025:12527 | Red Hat Security Advisory: virt:rhel and virt-devel:rhel security update | 2025-08-04T15:19:47+00:00 | 2025-11-27T11:38:23+00:00 |
| rhsa-2025:1675 | Red Hat Security Advisory: bind security update | 2025-02-19T13:50:41+00:00 | 2025-11-26T21:26:38+00:00 |
| rhsa-2025:1669 | Red Hat Security Advisory: bind security update | 2025-02-19T07:07:41+00:00 | 2025-11-26T21:26:36+00:00 |
| rhsa-2025:1681 | Red Hat Security Advisory: bind security update | 2025-02-19T14:48:56+00:00 | 2025-11-26T21:26:33+00:00 |
| rhsa-2025:1665 | Red Hat Security Advisory: bind security update | 2025-02-19T04:53:05+00:00 | 2025-11-26T21:26:30+00:00 |
| rhsa-2025:1664 | Red Hat Security Advisory: bind security update | 2025-02-19T04:45:40+00:00 | 2025-11-26T21:26:27+00:00 |
| rhsa-2025:17377 | Red Hat Security Advisory: kernel security update | 2025-10-06T23:22:32+00:00 | 2025-11-26T16:45:11+00:00 |
| rhsa-2021:3218 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4 security update | 2021-08-18T18:08:04+00:00 | 2025-11-25T21:26:50+00:00 |
| rhsa-2021:3219 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4 security update | 2021-08-18T18:21:24+00:00 | 2025-11-25T21:26:47+00:00 |
| rhsa-2017:0498 | Red Hat Security Advisory: thunderbird security update | 2017-03-14T06:03:30+00:00 | 2025-11-25T18:34:43+00:00 |
| rhsa-2017:0461 | Red Hat Security Advisory: firefox security update | 2017-03-08T15:53:58+00:00 | 2025-11-25T18:34:41+00:00 |
| rhsa-2017:0459 | Red Hat Security Advisory: firefox security update | 2017-03-08T16:04:04+00:00 | 2025-11-25T18:34:41+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-29383 | In Shadow 4.13 it is possible to inject control characters into fields provided to the SUID program chfn (change finger). Although it is not possible to exploit this directly (e.g. adding a new user fails because \n is in the block list) it is possible to misrepresent the /etc/passwd file when viewed. Use of \r manipulations and Unicode characters to work around blocking of the : character make it possible to give the impression that a new user has been added. In other words an adversary may be able to convince a system administrator to take the system offline (an indirect social-engineered denial of service) by demonstrating that "cat /etc/passwd" shows a rogue user account. | 2023-04-01T00:00:00.000Z | 2023-04-24T00:00:00.000Z |
| msrc_cve-2023-21100 | In inflate of inflate.c there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12L Android-13Android ID: A-242544249 | 2023-04-01T00:00:00.000Z | 2023-04-24T00:00:00.000Z |
| msrc_cve-2022-40133 | There is an UAF vulnerability in vmwgfx driver | 2022-09-02T00:00:00.000Z | 2023-04-24T00:00:00.000Z |
| msrc_cve-2023-27561 | runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges related to libcontainer/rootfs_linux.go. To exploit this an attacker must be able to spawn two containers with custom volume-mount configurations and be able to run custom images. NOTE: this issue exists because of a CVE-2019-19921 regression. | 2023-03-10T00:00:00.000Z | 2023-04-22T00:00:00.000Z |
| msrc_cve-2023-26604 | systemd before 247 does not adequately block local privilege escalation for some Sudo configurations e.g. plausible sudoers files in which the "systemctl status" command may be executed. Specifically systemd does not set LESSSECURE to 1 and thus other programs may be launched from the less program. This presents a substantial security risk when running systemctl from Sudo because less executes as root when the terminal size is too small to show the complete systemctl output. | 2023-03-10T00:00:00.000Z | 2023-04-22T00:00:00.000Z |
| msrc_cve-2023-24626 | socket.c in GNU Screen through 4.9.0 when installed setuid or setgid (the default on platforms such as Arch Linux and FreeBSD) allows local users to send a privileged SIGHUP signal to any PID causing a denial of service or disruption of the target process. | 2023-04-01T00:00:00.000Z | 2023-04-21T00:00:00.000Z |
| msrc_cve-2022-37601 | Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils via the name variable in parseQuery.js. This affects all versions prior to 1.4.1 and 2.0.3. | 2022-10-02T00:00:00.000Z | 2023-04-19T00:00:00.000Z |
| msrc_cve-2023-23379 | Microsoft Defender for IoT Elevation of Privilege Vulnerability | 2023-02-14T08:00:00.000Z | 2023-04-18T07:00:00.000Z |
| msrc_cve-2021-28235 | Authentication vulnerability found in Etcd-io v.3.4.10 allows remote attackers to escalate privileges via the debug function. | 2023-04-01T00:00:00.000Z | 2023-04-18T00:00:00.000Z |
| msrc_cve-2023-1390 | A remote denial of service vulnerability was found in the Linux kernel’s TIPC kernel module. The while loop in tipc_link_xmit() hits an unknown state while attempting to parse SKBs which are not in the queue. Sending two small UDP packets to a system with a UDP bearer results in the CPU utilization for the system to instantly spike to 100% causing a denial of service condition. | 2023-03-10T00:00:00.000Z | 2023-04-17T00:00:00.000Z |
| msrc_cve-2023-1281 | UAF in Linux kernel's tcindex (traffic control index filter) implementation | 2023-03-10T00:00:00.000Z | 2023-04-16T00:00:00.000Z |
| msrc_cve-2022-48424 | In the Linux kernel before 6.1.3 fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur. | 2023-03-10T00:00:00.000Z | 2023-04-16T00:00:00.000Z |
| msrc_cve-2022-48423 | In the Linux kernel before 6.1.3 fs/ntfs3/record.c does not validate resident attribute names. An out-of-bounds write may occur. | 2023-03-10T00:00:00.000Z | 2023-04-16T00:00:00.000Z |
| msrc_cve-2022-46176 | Cargo did not verify SSH host keys | 2023-01-04T00:00:00.000Z | 2023-04-16T00:00:00.000Z |
| msrc_cve-2021-45957 | Dnsmasq 2.86 has a heap-based buffer overflow in answer_request (called from FuzzAnswerTheRequest and fuzz_rfc1035.c). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities to the best of our knowledge. | 2021-12-02T00:00:00.000Z | 2023-04-16T00:00:00.000Z |
| msrc_cve-2021-45955 | Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called from FuzzResizePacket and fuzz_rfc1035.c) because of the lack of a proper bounds check upon pseudo header re-insertion. NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities to the best of our knowledge." However a contributor states that a security patch (mentioned in 016162.html) is needed | 2021-12-02T00:00:00.000Z | 2023-04-16T00:00:00.000Z |
| msrc_cve-2023-28425 | Specially crafted MSETNX command can lead to denial-of-service | 2023-03-10T00:00:00.000Z | 2023-04-15T00:00:00.000Z |
| msrc_cve-2022-2869 | libtiff's tiffcrop tool has a uint32_t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a crafted file to tiffcrop could trigger this flaw most likely by tricking a user into opening the crafted file with tiffcrop. Triggering this flaw could cause a crash or potentially further exploitation. | 2022-08-02T00:00:00.000Z | 2023-04-15T00:00:00.000Z |
| msrc_cve-2022-2868 | libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop. | 2022-08-02T00:00:00.000Z | 2023-04-15T00:00:00.000Z |
| msrc_cve-2022-2867 | libtiff's tiffcrop utility has a uint32_t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted file to tiffcrop (likely via tricking a user to run tiffcrop on it with certain parameters) could cause a crash or in some cases further exploitation. | 2022-08-02T00:00:00.000Z | 2023-04-15T00:00:00.000Z |
| msrc_cve-2023-28231 | DHCP Server Service Remote Code Execution Vulnerability | 2023-04-11T07:00:00.000Z | 2023-04-14T07:00:00.000Z |
| msrc_cve-2023-21778 | Microsoft Dynamics Unified Service Desk Remote Code Execution Vulnerability | 2023-02-14T08:00:00.000Z | 2023-04-14T07:00:00.000Z |
| msrc_cve-2023-21715 | Microsoft Publisher Security Feature Bypass Vulnerability | 2023-02-14T08:00:00.000Z | 2023-04-14T07:00:00.000Z |
| msrc_cve-2022-24512 | .NET and Visual Studio Remote Code Execution Vulnerability | 2022-03-08T08:00:00.000Z | 2023-04-14T07:00:00.000Z |
| msrc_cve-2022-24480 | Outlook for Android Elevation of Privilege Vulnerability | 2022-12-13T08:00:00.000Z | 2023-04-14T07:00:00.000Z |
| msrc_cve-2022-23292 | Microsoft Power BI Spoofing Vulnerability | 2022-04-12T08:00:00.000Z | 2023-04-14T07:00:00.000Z |
| msrc_cve-2023-28260 | .NET DLL Hijacking Remote Code Execution Vulnerability | 2023-04-11T07:00:00.000Z | 2023-04-13T07:00:00.000Z |
| msrc_cve-2023-28314 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | 2023-04-11T07:00:00.000Z | 2023-04-12T07:00:00.000Z |
| msrc_cve-2023-28296 | Visual Studio Remote Code Execution Vulnerability | 2023-04-11T07:00:00.000Z | 2023-04-12T07:00:00.000Z |
| msrc_cve-2023-24860 | Microsoft Defender Denial of Service Vulnerability | 2023-04-11T07:00:00.000Z | 2023-04-12T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201704-0836 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T19:38:05.045000Z |
| var-201706-1010 | '/cgi-bin/admin/downloadMedias.cgi' of the web service in most of the VIVOTEK Network Cam… | 2025-04-20T19:37:57.469000Z |
| var-201707-1173 | An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The … | 2025-04-20T19:37:50.826000Z |
| var-201710-0040 | A remote unauthenticated network based attacker with access to Junos Space may execute ar… | 2025-04-20T19:37:49.799000Z |
| var-201705-3370 | On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authoriz… | 2025-04-20T19:36:22.006000Z |
| var-201702-0037 | NSD before 4.1.11 allows remote DNS master servers to cause a denial of service (/tmp dis… | 2025-04-20T19:35:47.935000Z |
| var-201701-0421 | A malicious authenticated peer can create arbitrarily-many ephemeral associations in orde… | 2025-04-20T19:34:23.769000Z |
| var-201704-0788 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T19:34:19.448000Z |
| var-201703-0690 | An elevation of privilege vulnerability in the Qualcomm camera driver could enable a loca… | 2025-04-20T19:34:18.556000Z |
| var-201705-3239 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari … | 2025-04-20T19:33:47.670000Z |
| var-201710-0975 | Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows reinstallation of the I… | 2025-04-20T19:33:45.856000Z |
| var-201707-1141 | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS b… | 2025-04-20T19:33:45.201000Z |
| var-201704-0798 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari be… | 2025-04-20T19:33:07.502000Z |
| var-201702-0245 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari be… | 2025-04-20T19:33:04.886000Z |
| var-201705-3226 | An issue was discovered in certain Apple products. Safari before 10.1.1 is affected. The … | 2025-04-20T19:33:04.437000Z |
| var-201703-0685 | An information disclosure vulnerability in the Qualcomm camera driver could enable a loca… | 2025-04-20T19:33:03.781000Z |
| var-201702-0337 | An issue was discovered in certain Apple products. iOS before 10.1 is affected. macOS bef… | 2025-04-20T19:32:54.785000Z |
| var-201705-3252 | An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The … | 2025-04-20T19:32:53.168000Z |
| var-201712-1097 | An issue was discovered in certain Apple products. iOS before 11.2 is affected. The issue… | 2025-04-20T19:32:53.104000Z |
| var-201704-0728 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari be… | 2025-04-20T19:32:45.017000Z |
| var-201711-0430 | An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The … | 2025-04-20T19:32:41.519000Z |
| var-201702-0352 | An issue was discovered in certain Apple products. iOS before 10 is affected. Safari befo… | 2025-04-20T19:32:38.503000Z |
| var-201704-0763 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T19:32:13.887000Z |
| var-201710-1361 | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before… | 2025-04-20T19:31:31.738000Z |
| var-202504-1637 | Maipu Communication Technology Co., Ltd. is a leading provider of network products and so… | 2025-04-20T19:30:53.484000Z |
| var-202504-2456 | Shenzhen Yichen Technology Co., Ltd. is an all-round company integrating R&D, production … | 2025-04-20T19:30:53.088000Z |
| var-202212-1310 | The issue was addressed with improved bounds checks. This issue is fixed in iOS 16.2 and … | 2025-04-19T23:07:52.545000Z |
| var-202401-1328 | In Modem IMS Stack, there is a possible out of bounds write due to a missing bounds check… | 2025-04-19T23:07:50.835000Z |
| var-202410-3436 | In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.c… | 2025-04-19T23:04:07.537000Z |
| var-202212-0588 | The application management module has a vulnerability in permission verification. Success… | 2025-04-19T23:00:16.631000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:2415-1 | Security update for nodejs16 | 2022-07-15T15:35:27Z | 2022-07-15T15:35:27Z |
| suse-su-2022:2414-1 | Security update for crash | 2022-07-15T15:35:04Z | 2022-07-15T15:35:04Z |
| suse-su-2022:2411-1 | Security update for the Linux Kernel | 2022-07-15T12:28:01Z | 2022-07-15T12:28:01Z |
| suse-su-2022:2410-1 | Security update for crash | 2022-07-15T12:13:30Z | 2022-07-15T12:13:30Z |
| suse-su-2022:2409-1 | Security update for crash | 2022-07-15T10:26:28Z | 2022-07-15T10:26:28Z |
| suse-su-2022:2407-1 | Security update for the Linux Kernel | 2022-07-15T09:51:14Z | 2022-07-15T09:51:14Z |
| suse-su-2022:2405-2 | Security update for p11-kit | 2022-07-15T09:48:09Z | 2022-07-15T09:48:09Z |
| suse-su-2022:2405-1 | Security update for p11-kit | 2022-07-15T09:48:03Z | 2022-07-15T09:48:03Z |
| suse-su-2020:2864-2 | Security update for gnutls | 2022-07-14T15:14:36Z | 2022-07-14T15:14:36Z |
| suse-su-2022:2403-1 | Security update for python-PyJWT | 2022-07-14T15:00:26Z | 2022-07-14T15:00:26Z |
| suse-su-2022:2402-1 | Security update for python-PyJWT | 2022-07-14T14:58:57Z | 2022-07-14T14:58:57Z |
| suse-su-2022:2401-1 | Security update for python-PyJWT | 2022-07-14T14:57:07Z | 2022-07-14T14:57:07Z |
| suse-su-2022:2400-1 | Security update for oracleasm | 2022-07-14T14:56:52Z | 2022-07-14T14:56:52Z |
| suse-su-2022:2398-1 | Security update for logrotate | 2022-07-14T13:20:19Z | 2022-07-14T13:20:19Z |
| suse-su-2022:2396-1 | Security update for logrotate | 2022-07-14T09:58:05Z | 2022-07-14T09:58:05Z |
| suse-su-2022:1157-2 | Security update for libsolv, libzypp, zypper | 2022-07-14T09:34:28Z | 2022-07-14T09:34:28Z |
| suse-su-2022:2395-1 | Security update for virglrenderer | 2022-07-14T08:21:39Z | 2022-07-14T08:21:39Z |
| suse-su-2022:2393-1 | Security update for the Linux Kernel | 2022-07-14T07:27:37Z | 2022-07-14T07:27:37Z |
| suse-su-2022:2392-1 | Security update for squid | 2022-07-13T18:14:01Z | 2022-07-13T18:14:01Z |
| suse-su-2020:0948-2 | Security update for gmp, gnutls, libnettle | 2022-07-13T16:17:58Z | 2022-07-13T16:17:58Z |
| suse-su-2021:0955-2 | Security update for openssl-1_1 | 2022-07-13T13:53:46Z | 2022-07-13T13:53:46Z |
| suse-su-2022:2382-1 | Security update for the Linux Kernel | 2022-07-13T09:26:10Z | 2022-07-13T09:26:10Z |
| suse-su-2022:2379-1 | Security update for the Linux Kernel | 2022-07-13T08:36:03Z | 2022-07-13T08:36:03Z |
| suse-su-2022:2378-1 | Security update for cifs-utils | 2022-07-13T08:27:10Z | 2022-07-13T08:27:10Z |
| suse-su-2022:2377-1 | Security update for the Linux Kernel | 2022-07-12T16:24:12Z | 2022-07-12T16:24:12Z |
| suse-su-2022:2376-1 | Security update for the Linux Kernel | 2022-07-12T16:22:59Z | 2022-07-12T16:22:59Z |
| suse-su-2022:2375-1 | Security update for xorg-x11-server | 2022-07-12T13:27:06Z | 2022-07-12T13:27:06Z |
| suse-su-2022:2374-1 | Security update for xorg-x11-server | 2022-07-12T13:25:46Z | 2022-07-12T13:25:46Z |
| suse-su-2022:2373-1 | Security update for xorg-x11-server | 2022-07-12T13:25:16Z | 2022-07-12T13:25:16Z |
| suse-su-2022:2372-1 | Security update for xorg-x11-server | 2022-07-12T13:24:55Z | 2022-07-12T13:24:55Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2019:1172-1 | Security update for ovmf | 2019-04-08T09:11:55Z | 2019-04-08T09:11:55Z |
| opensuse-su-2019:1166-1 | Security update for znc | 2019-04-05T11:28:57Z | 2019-04-05T11:28:57Z |
| opensuse-su-2019:1164-1 | Security update for go1.11 | 2019-04-05T10:09:55Z | 2019-04-05T10:09:55Z |
| opensuse-su-2019:1163-1 | Security update for ldb | 2019-04-05T10:09:40Z | 2019-04-05T10:09:40Z |
| opensuse-su-2019:1162-1 | Security update for MozillaThunderbird | 2019-04-05T10:09:15Z | 2019-04-05T10:09:15Z |
| opensuse-su-2019:1161-1 | Security update for tiff | 2019-04-05T10:07:12Z | 2019-04-05T10:07:12Z |
| opensuse-su-2019:1160-1 | Security update for liblouis | 2019-04-05T10:06:53Z | 2019-04-05T10:06:53Z |
| opensuse-su-2019:1159-1 | Security update for sqlite3 | 2019-04-05T10:06:24Z | 2019-04-05T10:06:24Z |
| opensuse-su-2019:0050-1 | Security update for aria2 | 2019-04-04T14:56:25Z | 2019-04-04T14:56:25Z |
| opensuse-su-2019:1148-1 | Security update for gd | 2019-04-04T14:15:28Z | 2019-04-04T14:15:28Z |
| opensuse-su-2019:1147-1 | Security update for openssl-1_1 | 2019-04-04T14:14:06Z | 2019-04-04T14:14:06Z |
| opensuse-su-2019:1145-1 | Security update for wavpack | 2019-04-04T14:12:54Z | 2019-04-04T14:12:54Z |
| opensuse-su-2019:1144-1 | Security update for libcaca | 2019-04-04T14:12:40Z | 2019-04-04T14:12:40Z |
| opensuse-su-2019:1143-1 | Security update for ntp | 2019-04-04T14:12:28Z | 2019-04-04T14:12:28Z |
| opensuse-su-2019:1141-1 | Security update for ImageMagick | 2019-04-04T14:11:43Z | 2019-04-04T14:11:43Z |
| opensuse-su-2019:1128-1 | Security update for pdns | 2019-04-03T01:51:41Z | 2019-04-03T01:51:41Z |
| opensuse-su-2019:1126-1 | Security update for MozillaThunderbird | 2019-04-03T01:51:25Z | 2019-04-03T01:51:25Z |
| opensuse-su-2019:1125-1 | Security update for ansible | 2019-04-03T01:50:46Z | 2019-04-03T01:50:46Z |
| opensuse-su-2019:1123-1 | Security update for putty | 2019-04-02T13:58:36Z | 2019-04-02T13:58:36Z |
| opensuse-su-2019:1121-1 | Security update for ghostscript | 2019-04-02T11:06:03Z | 2019-04-02T11:06:03Z |
| opensuse-su-2019:1120-1 | Security update for libgxps | 2019-04-02T11:05:49Z | 2019-04-02T11:05:49Z |
| opensuse-su-2019:1118-1 | Security update for libjpeg-turbo | 2019-04-02T11:05:26Z | 2019-04-02T11:05:26Z |
| opensuse-su-2019:1117-1 | Security update for unzip | 2019-04-02T11:05:11Z | 2019-04-02T11:05:11Z |
| opensuse-su-2019:1116-1 | Security update for libqt5-qtsvg | 2019-04-02T11:05:01Z | 2019-04-02T11:05:01Z |
| opensuse-su-2019:1115-1 | Security update for libqt5-qtimageformats | 2019-04-02T11:04:48Z | 2019-04-02T11:04:48Z |
| opensuse-su-2019:1114-1 | Security update for perl-Email-Address | 2019-04-02T11:04:08Z | 2019-04-02T11:04:08Z |
| opensuse-su-2019:1113-1 | Security update for putty | 2019-04-02T11:03:54Z | 2019-04-02T11:03:54Z |
| opensuse-su-2019:1112-1 | Security update for python-Flask | 2019-04-02T11:03:44Z | 2019-04-02T11:03:44Z |
| opensuse-su-2019:1111-1 | Security update for openwsman | 2019-04-02T11:03:35Z | 2019-04-02T11:03:35Z |
| opensuse-su-2019:1110-1 | Security update for lftp | 2019-04-02T11:03:15Z | 2019-04-02T11:03:15Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-09158 | Tenda AC9 formAdvSetMacMtuWan函数的wanMTU参数缓冲区溢出漏洞 | 2025-03-19 | 2025-04-28 |
| cnvd-2025-08912 | Tenda AC9 formAdvSetMacMtuWan函数的cloneType参数缓冲区溢出漏洞 | 2025-03-19 | 2025-04-28 |
| cnvd-2025-08907 | Tenda FH1202访问控制错误漏洞(CNVD-2025-08907) | 2025-04-02 | 2025-04-28 |
| cnvd-2025-08906 | Tenda W6_S缓冲区溢出漏洞(CNVD-2025-08906) | 2025-04-02 | 2025-04-28 |
| cnvd-2025-08905 | Tenda W6-S setcfm函数缓冲区溢出漏洞 | 2025-04-03 | 2025-04-28 |
| cnvd-2025-08791 | Tenda FH1202访问控制错误漏洞(CNVD-2025-08791) | 2025-04-16 | 2025-04-28 |
| cnvd-2025-08778 | Adobe Media Encoder越界写入漏洞(CNVD-2025-08778) | 2025-04-18 | 2025-04-28 |
| cnvd-2025-08777 | Adobe Commerce跨站请求伪造漏洞(CNVD-2025-08777) | 2025-04-18 | 2025-04-28 |
| cnvd-2025-08776 | Adobe Commerce授权问题漏洞(CNVD-2025-08776) | 2025-04-18 | 2025-04-28 |
| cnvd-2025-08775 | Adobe Commerce访问控制错误漏洞(CNVD-2025-08775) | 2025-04-18 | 2025-04-28 |
| cnvd-2025-08601 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08601) | 2025-04-22 | 2025-04-28 |
| cnvd-2025-08599 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08599) | 2025-04-22 | 2025-04-28 |
| cnvd-2025-08598 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08598) | 2025-04-22 | 2025-04-28 |
| cnvd-2025-08597 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08597) | 2025-04-22 | 2025-04-28 |
| cnvd-2025-08596 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08596) | 2025-04-22 | 2025-04-28 |
| cnvd-2025-08595 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08595) | 2025-04-22 | 2025-04-28 |
| cnvd-2025-08594 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08594) | 2025-04-22 | 2025-04-28 |
| cnvd-2025-08593 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08593) | 2025-04-22 | 2025-04-28 |
| cnvd-2025-08592 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08592) | 2025-04-22 | 2025-04-28 |
| cnvd-2025-08591 | Siemens TeleControl Server Basic SQL注入漏洞(CNVD-2025-08591) | 2025-04-22 | 2025-04-28 |
| cnvd-2025-08920 | Open5GS拒绝服务漏洞(CNVD-2025-08920) | 2024-11-21 | 2025-04-27 |
| cnvd-2025-08916 | lunary电子邮件注入漏洞 | 2024-11-08 | 2025-04-27 |
| cnvd-2025-08915 | lunary信息泄露漏洞 | 2024-11-19 | 2025-04-27 |
| cnvd-2025-08914 | lunary非法授权漏洞 | 2024-11-19 | 2025-04-27 |
| cnvd-2025-08913 | lunary电子邮件轰炸漏洞 | 2024-11-19 | 2025-04-27 |
| cnvd-2025-08911 | lunary PATCH端点授权问题漏洞 | 2025-03-27 | 2025-04-27 |
| cnvd-2025-08910 | lunary /v1/templates/{id}/versions端点访问控制错误漏洞 | 2025-03-27 | 2025-04-27 |
| cnvd-2025-08909 | lunary /v1/evaluators/端点访问控制错误漏洞 | 2025-03-27 | 2025-04-27 |
| cnvd-2025-08908 | lunary /users/me/org端点授权不当漏洞 | 2025-03-27 | 2025-04-27 |
| cnvd-2025-08813 | lunary SQL注入漏洞 | 2024-11-07 | 2025-04-27 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-390 | Multiples vulnérabilités dans Wireshark | 2014-09-17T00:00:00.000000 | 2014-09-17T00:00:00.000000 |
| certfr-2014-avi-389 | Multiples vulnérabilités dans Adobe Reader et Acrobat | 2014-09-17T00:00:00.000000 | 2014-09-17T00:00:00.000000 |
| certfr-2014-avi-388 | Multiples vulnérabilités dans le noyau Linux de Suse | 2014-09-15T00:00:00.000000 | 2014-09-15T00:00:00.000000 |
| certfr-2014-avi-387 | Multiples vulnérabilités dans Juniper | 2014-09-15T00:00:00.000000 | 2014-09-15T00:00:00.000000 |
| certfr-2014-avi-386 | Vulnérabilité dans phpMyAdmin | 2014-09-15T00:00:00.000000 | 2014-09-15T00:00:00.000000 |
| certfr-2014-avi-385 | Multiples vulnérabilités dans Moodle | 2014-09-15T00:00:00.000000 | 2014-09-15T00:00:00.000000 |
| certfr-2014-avi-384 | Vulnérabilité dans VMware NSX et vCNS | 2014-09-12T00:00:00.000000 | 2014-09-12T00:00:00.000000 |
| certfr-2014-avi-383 | Vulnérabilité dans HP Network Node Manager I | 2014-09-11T00:00:00.000000 | 2014-09-11T00:00:00.000000 |
| certfr-2014-avi-382 | Multiples vulnérabilités dans VMware vSphere | 2014-09-11T00:00:00.000000 | 2014-09-11T00:00:00.000000 |
| certfr-2014-avi-381 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-380 | Multiples vulnérabilités dans Google Chrome | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-379 | Multiples vulnérabilités dans Adobe Flash Player | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-378 | Multiples vulnérabilités dans Microsoft Lync Server | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-377 | Vulnérabilité dans Microsoft Windows | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-376 | Vulnérabilité dans Microsoft .NET | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-375 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-374 | Vulnérabilité dans Cisco Unified Computing System | 2014-09-09T00:00:00.000000 | 2014-09-09T00:00:00.000000 |
| certfr-2014-avi-373 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2014-09-04T00:00:00.000000 | 2014-09-04T00:00:00.000000 |
| certfr-2014-avi-372 | Multiples vulnérabilités dans les produits Mozilla | 2014-09-03T00:00:00.000000 | 2014-09-03T00:00:00.000000 |
| certfr-2014-avi-371 | Multiples vulnérabilités dans phpMyAdmin | 2014-09-03T00:00:00.000000 | 2014-09-03T00:00:00.000000 |
| certfr-2014-avi-370 | Vulnérabilité dans Citrix CloudPlatform | 2014-09-02T00:00:00.000000 | 2014-09-02T00:00:00.000000 |
| certfr-2014-avi-369 | Vulnérabilité dans Squid | 2014-09-02T00:00:00.000000 | 2014-09-02T00:00:00.000000 |
| certfr-2014-avi-368 | Vulnérabilité dans IBM Tivoli | 2014-09-02T00:00:00.000000 | 2014-09-02T00:00:00.000000 |
| certfr-2014-avi-367 | Vulnérabilité dans les équipements Android de Huawei | 2014-08-28T00:00:00.000000 | 2014-08-28T00:00:00.000000 |
| certfr-2014-avi-366 | Multiples vulnérabilités dans Google Chrome | 2014-08-28T00:00:00.000000 | 2014-08-28T00:00:00.000000 |
| certfr-2014-avi-365 | Vulnérabilité dans Red Hat JBoss | 2014-08-20T00:00:00.000000 | 2014-08-20T00:00:00.000000 |
| certfr-2014-avi-364 | Multiples vulnérabilités dans les produits IBM | 2014-08-20T00:00:00.000000 | 2014-08-20T00:00:00.000000 |
| certfr-2014-avi-363 | Multiples vulnérabilités dans RSA Archer GRC Platform | 2014-08-20T00:00:00.000000 | 2014-08-20T00:00:00.000000 |
| certfr-2014-avi-362 | Multiples vulnérabilités dans EMC Documentum | 2014-08-20T00:00:00.000000 | 2014-08-20T00:00:00.000000 |
| certfr-2014-avi-361 | Vulnérabilité dans Innominate mGuard | 2014-08-20T00:00:00.000000 | 2014-08-20T00:00:00.000000 |