Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-57931 |
5.3 (3.1)
|
WordPress Popup box plugin <= 5.5.4 - Cross Site Reque… |
Ays Pro |
Popup box |
2025-10-29T04:02:09.962Z | 2026-01-20T14:28:10.080Z |
| CVE-2025-54737 |
7.1 (3.1)
|
WordPress Jobmonster theme <= 4.7.8 - Cross Site Scrip… |
NooTheme |
Jobmonster |
2025-11-06T15:54:17.806Z | 2026-01-20T14:28:10.029Z |
| CVE-2025-54711 |
7.1 (3.1)
|
WordPress Info Cards Plugin <= 1.0.11 - Broken Access … |
bPlugins |
Info Cards |
2025-11-06T15:54:14.029Z | 2026-01-20T14:28:09.984Z |
| CVE-2025-54045 |
4.3 (3.1)
|
WordPress CM On Demand Search And Replace plugin <= 1.… |
CreativeMindsSolutions |
CM On Demand Search And Replace |
2025-12-16T08:12:46.351Z | 2026-01-20T14:28:09.965Z |
| CVE-2025-54718 |
7.1 (3.1)
|
WordPress Yogi - Health Beauty & Yoga theme <= 2.9.2 -… |
NooTheme |
Yogi - Health Beauty & Yoga |
2025-11-06T15:54:14.634Z | 2026-01-20T14:28:09.933Z |
| CVE-2025-54719 |
8.8 (3.1)
|
WordPress Yogi - Health Beauty & Yoga Theme <= 2.9.2 -… |
NooTheme |
Yogi - Health Beauty & Yoga |
2025-11-06T15:54:15.371Z | 2026-01-20T14:28:09.932Z |
| CVE-2025-53586 |
9.8 (3.1)
|
WordPress WeMusic Theme <= 1.9.1 - PHP Object Injectio… |
NooTheme |
WeMusic |
2025-11-06T15:54:13.387Z | 2026-01-20T14:28:09.916Z |
| CVE-2025-53449 |
8.1 (3.1)
|
WordPress Convex theme <= 1.11 - Local File Inclusion … |
axiomthemes |
Convex |
2025-12-18T07:21:48.947Z | 2026-01-20T14:28:09.907Z |
| CVE-2025-54722 |
7.1 (3.1)
|
WordPress WooTour plugin <= 3.6.3 - Cross Site Scripti… |
Ex-Themes |
WooTour |
2025-11-06T15:54:16.991Z | 2026-01-20T14:28:09.895Z |
| CVE-2025-53446 |
8.1 (3.1)
|
WordPress Beautique theme <= 1.5 - Local File Inclusio… |
axiomthemes |
Beautique |
2025-12-18T07:21:48.403Z | 2026-01-20T14:28:09.895Z |
| CVE-2025-53445 |
8.1 (3.1)
|
WordPress Catwalk theme <= 1.4 - Local File Inclusion … |
axiomthemes |
Catwalk |
2025-12-18T07:21:48.218Z | 2026-01-20T14:28:09.892Z |
| CVE-2025-54721 |
7.1 (3.1)
|
WordPress Resca theme <= 3.0.2 - Cross Site Scripting … |
ThimPress |
Resca |
2025-11-06T15:54:16.209Z | 2026-01-20T14:28:09.884Z |
| CVE-2025-53448 |
8.1 (3.1)
|
WordPress Rally theme <= 1.1 - Local File Inclusion vu… |
axiomthemes |
Rally |
2025-12-18T07:21:48.769Z | 2026-01-20T14:28:09.880Z |
| CVE-2025-53574 |
6.1 (3.1)
|
WordPress Doliconnect Plugin <= 9.3.2 - Cross Site Scr… |
ptibogxiv |
Doliconnect |
2025-11-06T15:54:11.607Z | 2026-01-20T14:28:09.876Z |
| CVE-2025-53573 |
7.1 (3.1)
|
WordPress Epic Review Plugin <= 1.0.2 - Cross Site Scr… |
jegtheme |
Epic Review |
2025-11-06T15:54:10.426Z | 2026-01-20T14:28:09.871Z |
| CVE-2025-53447 |
8.1 (3.1)
|
WordPress Assembly theme <= 1.1 - Local File Inclusion… |
axiomthemes |
Assembly |
2025-12-18T07:21:48.588Z | 2026-01-20T14:28:09.843Z |
| CVE-2025-53436 |
8.1 (3.1)
|
WordPress Monki theme <= 2.0.4 - Local File Inclusion … |
BZOTheme |
Monki |
2025-12-18T07:21:46.801Z | 2026-01-20T14:28:09.817Z |
| CVE-2025-53443 |
8.1 (3.1)
|
WordPress Smash theme <= 1.7 - Local File Inclusion vu… |
axiomthemes |
Smash |
2025-12-18T07:21:48.033Z | 2026-01-20T14:28:09.805Z |
| CVE-2025-53434 |
8.1 (3.1)
|
WordPress ChildHope theme <= 1.1.8 - Local File Inclus… |
AncoraThemes |
ChildHope |
2025-12-18T07:21:46.434Z | 2026-01-20T14:28:09.778Z |
| CVE-2025-53439 |
8.1 (3.1)
|
WordPress Harper theme <= 1.13 - Local File Inclusion … |
axiomthemes |
Harper |
2025-12-18T07:21:47.455Z | 2026-01-20T14:28:09.777Z |
| CVE-2025-53441 |
8.1 (3.1)
|
WordPress Greeny theme <= 2.6 - Local File Inclusion v… |
axiomthemes |
Greeny |
2025-12-18T07:21:47.651Z | 2026-01-20T14:28:09.749Z |
| CVE-2025-53442 |
8.1 (3.1)
|
WordPress Rentic theme <= 1.1 - Local File Inclusion v… |
axiomthemes |
Rentic |
2025-12-18T07:21:47.842Z | 2026-01-20T14:28:09.727Z |
| CVE-2025-53435 |
8.1 (3.1)
|
WordPress Plan My Day theme <= 1.1.13 - Local File Inc… |
axiomthemes |
Plan My Day |
2025-12-18T07:21:46.620Z | 2026-01-20T14:28:09.726Z |
| CVE-2025-53438 |
8.1 (3.1)
|
WordPress FitLine theme <= 1.6 - Local File Inclusion … |
axiomthemes |
FitLine |
2025-12-18T07:21:47.228Z | 2026-01-20T14:28:09.672Z |
| CVE-2025-53437 |
8.1 (3.1)
|
WordPress Greenorganic theme <= 2.45 - Local File Incl… |
ApusTheme |
Greenorganic |
2025-12-18T07:21:47.030Z | 2026-01-20T14:28:09.573Z |
| CVE-2025-53433 |
9.8 (3.1)
|
WordPress EasyEat theme <= 1.9.0 - Local File Inclusio… |
AncoraThemes |
EasyEat |
2025-12-18T07:21:46.182Z | 2026-01-20T14:28:09.496Z |
| CVE-2025-53428 |
8.8 (3.1)
|
WordPress Simple User Registration plugin <= 6.4 - Pri… |
N-Media |
Simple User Registration |
2025-10-22T14:32:34.204Z | 2026-01-20T14:28:09.496Z |
| CVE-2025-53431 |
8.1 (3.1)
|
WordPress Emberlyn theme <= 1.3.1 - Local File Inclusi… |
AncoraThemes |
Emberlyn |
2025-12-18T07:21:45.771Z | 2026-01-20T14:28:09.478Z |
| CVE-2025-53430 |
8.1 (3.1)
|
WordPress Etta theme <= 1.14.0 - Local File Inclusion … |
AncoraThemes |
Etta |
2025-12-18T07:21:45.581Z | 2026-01-20T14:28:09.469Z |
| CVE-2025-53429 |
8.1 (3.1)
|
WordPress Exit Game theme <= 1.4.3 - Local File Inclus… |
AncoraThemes |
Exit Game |
2025-12-18T07:21:45.401Z | 2026-01-20T14:28:09.431Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-58890 |
8.2 (3.1)
|
WordPress Playful theme <= 1.19.0 - Local File Inclusi… |
AncoraThemes |
Playful |
2025-12-18T07:21:52.992Z | 2026-01-29T15:29:09.850Z |
| CVE-2025-58889 |
8.2 (3.1)
|
WordPress Towny theme <= 1.16 - Local File Inclusion v… |
axiomthemes |
Towny |
2025-12-18T07:21:52.823Z | 2026-01-29T15:29:51.256Z |
| CVE-2025-58888 |
8.2 (3.1)
|
WordPress The Flash theme <= 1.15 - Local File Inclusi… |
AncoraThemes |
The Flash |
2025-12-18T07:21:52.632Z | 2026-01-29T15:30:11.560Z |
| CVE-2025-58885 |
8.2 (3.1)
|
WordPress Pathfinder theme <= 1.16 - Local File Inclus… |
AncoraThemes |
Pathfinder |
2025-12-18T07:21:52.434Z | 2026-01-29T15:30:26.798Z |
| CVE-2025-58879 |
8.2 (3.1)
|
WordPress Festy theme <= 1.13.0 - Local File Inclusion… |
AncoraThemes |
Festy |
2025-12-18T07:21:52.239Z | 2026-01-29T15:30:52.812Z |
| CVE-2025-58877 |
7.5 (3.1)
|
WordPress Javo Core plugin <= 3.0.0.529 - Arbitrary Co… |
javothemes |
Javo Core |
2025-12-18T07:21:52.039Z | 2026-01-29T15:31:15.865Z |
| CVE-2025-58803 |
8.2 (3.1)
|
WordPress Algenix theme <= 1.0 - Local File Inclusion … |
axiomthemes |
Algenix |
2025-12-18T07:21:51.851Z | 2026-01-29T15:32:06.794Z |
| CVE-2025-58711 |
5.3 (3.1)
|
WordPress Blog Designer PRO plugin <= 3.4.8 - Broken A… |
solwin |
Blog Designer PRO |
2025-10-29T08:38:01.894Z | 2026-02-18T15:43:35.640Z |
| CVE-2025-58710 |
8.6 (3.1)
|
WordPress Hotel Listing plugin <= 1.4.0 - Privilege Es… |
e-plugins |
Hotel Listing |
2025-12-18T07:21:51.662Z | 2026-01-29T15:32:42.696Z |
| CVE-2025-58709 |
8.1 (3.1)
|
WordPress Legacy theme <= 1.9 - Local File Inclusion v… |
axiomthemes |
Legacy |
2025-12-18T07:21:51.475Z | 2026-01-20T14:28:10.386Z |
| CVE-2025-58708 |
8.1 (3.1)
|
WordPress 777 theme <= 1.3 - Local File Inclusion vuln… |
axiomthemes |
777 |
2025-12-18T07:21:51.283Z | 2026-01-20T14:28:10.343Z |
| CVE-2025-58706 |
8.1 (3.1)
|
WordPress Woo Hoo theme <= 1.25 - Local File Inclusion… |
axiomthemes |
Woo Hoo |
2025-12-18T07:21:51.092Z | 2026-01-20T14:28:10.245Z |
| CVE-2025-58638 |
7.1 (3.1)
|
WordPress Institutions Directory Plugin <= 1.3.3 - Cro… |
e-plugins |
Institutions Directory |
2025-11-06T15:54:28.161Z | 2026-01-20T14:28:10.256Z |
| CVE-2025-58636 |
9.8 (3.1)
|
WordPress WP Gravity Forms Keap/Infusionsoft Plugin <=… |
CRM Perks |
WP Gravity Forms Keap/Infusionsoft |
2025-11-06T15:54:26.970Z | 2026-01-20T14:28:10.255Z |
| CVE-2025-58629 |
7.5 (3.1)
|
WordPress Miraculous theme < 2.0.9 - Arbitrary Content… |
kamleshyadav |
Miraculous |
2025-11-06T15:54:25.101Z | 2026-01-20T14:28:10.228Z |
| CVE-2025-58627 |
9.8 (3.1)
|
WordPress Miraculous Core Plugin plugin < 2.0.9 - Inse… |
kamleshyadav |
Miraculous Core Plugin |
2025-11-06T15:54:23.943Z | 2026-01-20T14:28:10.231Z |
| CVE-2025-58619 |
8.8 (3.1)
|
WordPress Falang multilanguage Plugin <= 1.3.65 - PHP … |
sbouey |
Falang multilanguage |
2025-11-06T15:54:22.879Z | 2026-01-20T14:28:10.232Z |
| CVE-2025-58595 |
9.1 (3.1)
|
WordPress All In One Login plugin <= 2.0.8 - Bypass Vu… |
Saad Iqbal |
All In One Login |
2025-11-06T15:54:21.774Z | 2026-01-20T14:28:10.208Z |
| CVE-2025-58592 |
8.1 (3.1)
|
WordPress TranslatePress Plugin <= 2.10.2 - Deserializ… |
Cozmoslabs |
TranslatePress |
2025-11-06T15:54:20.550Z | 2026-01-20T14:28:10.226Z |
| CVE-2025-58243 |
5.3 (3.1)
|
WordPress imEvent Theme <= 3.4.0 - Broken Access Contr… |
Jthemes |
imEvent |
2025-11-06T15:54:19.824Z | 2026-01-20T14:28:10.207Z |
| CVE-2025-58225 |
8.1 (3.1)
|
WordPress Paragon theme <= 1.1 - Local File Inclusion … |
axiomthemes |
Paragon |
2025-12-18T07:21:50.906Z | 2026-01-20T14:28:10.207Z |
| CVE-2025-58207 |
8.2 (3.1)
|
WordPress Ai Image Alt Text Generator for WP Plugin <=… |
WP Messiah |
Ai Image Alt Text Generator for WP |
2025-11-06T15:54:19.210Z | 2026-01-20T14:28:10.196Z |
| CVE-2025-57931 |
5.3 (3.1)
|
WordPress Popup box plugin <= 5.5.4 - Cross Site Reque… |
Ays Pro |
Popup box |
2025-10-29T04:02:09.962Z | 2026-01-20T14:28:10.080Z |
| CVE-2025-57897 |
7.1 (3.1)
|
WordPress Logtik theme <= 2.3 - Cross Site Scripting (… |
venusweb |
Logtik |
2025-12-18T07:21:50.715Z | 2026-01-20T14:28:10.117Z |
| CVE-2025-55707 |
7.2 (3.1)
|
WordPress PostX Plugin <= 4.1.35 - Privilege Escalatio… |
WPXPO |
PostX |
2025-12-18T07:21:50.529Z | 2026-01-20T14:28:10.117Z |
| CVE-2025-54751 |
7.1 (3.1)
|
WordPress PostX plugin <= 4.1.36 - Broken Access Contr… |
WPXPO |
PostX |
2025-12-18T07:21:50.337Z | 2026-01-20T14:28:10.147Z |
| CVE-2025-54748 |
6.5 (3.1)
|
WordPress MapSVG Plugin < 8.6.12 - Arbitrary File Down… |
RomanCode |
MapSVG |
2025-12-18T07:21:50.115Z | 2026-01-20T14:28:10.128Z |
| CVE-2025-54745 |
6.5 (3.1)
|
WordPress miniOrange's Google Authenticator Plugin <= … |
miniOrange |
miniOrange's Google Authenticator |
2025-12-18T07:21:49.914Z | 2026-01-20T14:28:10.170Z |
| CVE-2025-54743 |
5.3 (3.1)
|
WordPress Download After Email Plugin 2.1.5-2.1.6 - Ot… |
mkscripts |
Download After Email |
2025-12-18T07:21:49.722Z | 2026-01-29T15:33:17.915Z |
| CVE-2025-54741 |
8.6 (3.1)
|
WordPress Super Blank Plugin <= 1.2.0 - Arbitrary Cont… |
Tyler Moore |
Super Blank |
2025-12-18T07:21:49.496Z | 2026-02-03T16:03:36.275Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-58885 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:57.777 | 2026-01-20T15:17:08.160 |
| fkie_cve-2025-58879 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:57.650 | 2026-01-20T15:17:07.990 |
| fkie_cve-2025-58877 | Missing Authorization vulnerability in javothemes Javo Core javo-core allows Exploiting Incorrectly… | 2025-12-18T08:15:57.510 | 2026-01-20T15:17:07.683 |
| fkie_cve-2025-58803 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:57.380 | 2026-01-20T15:17:07.540 |
| fkie_cve-2025-58711 | Missing Authorization vulnerability in solwin Blog Designer PRO blog-designer-pro allows Accessing … | 2025-10-29T09:15:37.343 | 2026-01-20T15:17:07.403 |
| fkie_cve-2025-58710 | Incorrect Privilege Assignment vulnerability in e-plugins Hotel Listing hotel-listing allows Privil… | 2025-12-18T08:15:57.247 | 2026-01-20T15:17:07.273 |
| fkie_cve-2025-58709 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:57.117 | 2026-01-20T15:17:07.133 |
| fkie_cve-2025-58708 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:56.980 | 2026-01-20T15:17:06.993 |
| fkie_cve-2025-58706 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:56.840 | 2026-01-20T15:17:06.847 |
| fkie_cve-2025-58638 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:00.003 | 2026-01-20T15:17:06.710 |
| fkie_cve-2025-58636 | Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Keap/Infusionsoft gf-… | 2025-11-06T16:15:59.860 | 2026-01-20T15:17:06.583 |
| fkie_cve-2025-58629 | Missing Authorization vulnerability in kamleshyadav Miraculous miraculous allows Exploiting Incorre… | 2025-11-06T16:15:59.717 | 2026-01-20T15:17:06.453 |
| fkie_cve-2025-58627 | Authorization Bypass Through User-Controlled Key vulnerability in kamleshyadav Miraculous Core Plug… | 2025-11-06T16:15:59.557 | 2026-01-20T15:17:06.313 |
| fkie_cve-2025-58619 | Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows Object… | 2025-11-06T16:15:59.400 | 2026-01-20T15:17:06.183 |
| fkie_cve-2025-58595 | Authentication Bypass by Spoofing vulnerability in Saad Iqbal All In One Login change-wp-admin-logi… | 2025-11-06T16:15:59.233 | 2026-01-20T15:17:06.050 |
| fkie_cve-2025-58592 | Deserialization of Untrusted Data vulnerability in Cozmoslabs TranslatePress translatepress-multili… | 2025-11-06T16:15:59.080 | 2026-01-20T15:17:05.910 |
| fkie_cve-2025-58243 | Missing Authorization vulnerability in Jthemes imEvent imevent allows Accessing Functionality Not P… | 2025-11-06T16:15:58.723 | 2026-01-20T15:17:05.780 |
| fkie_cve-2025-58225 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:56.707 | 2026-01-20T15:17:05.633 |
| fkie_cve-2025-58207 | Missing Authorization vulnerability in WP Messiah Ai Image Alt Text Generator for WP ai-image-alt-t… | 2025-11-06T16:15:58.567 | 2026-01-20T15:17:05.503 |
| fkie_cve-2025-57931 | Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Popup box allows Cross Site Request Forg… | 2025-10-29T04:15:52.820 | 2026-01-20T15:17:03.863 |
| fkie_cve-2025-57897 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-18T08:15:56.580 | 2026-01-20T15:17:03.733 |
| fkie_cve-2025-55707 | Incorrect Privilege Assignment vulnerability in WPXPO PostX ultimate-post allows Privilege Escalati… | 2025-12-18T08:15:56.450 | 2026-01-20T15:17:03.153 |
| fkie_cve-2025-54751 | Missing Authorization vulnerability in WPXPO PostX ultimate-post allows Exploiting Incorrectly Conf… | 2025-12-18T08:15:56.323 | 2026-01-20T15:17:01.893 |
| fkie_cve-2025-54748 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Rom… | 2025-12-18T08:15:56.187 | 2026-01-20T15:17:01.757 |
| fkie_cve-2025-54745 | Missing Authorization vulnerability in miniOrange miniOrange's Google Authenticator miniorange-2-fa… | 2025-12-18T08:15:56.060 | 2026-01-20T15:17:01.623 |
| fkie_cve-2025-54743 | Missing Authorization vulnerability in mkscripts Download After Email download-after-email allows E… | 2025-12-18T08:15:55.930 | 2026-01-20T15:17:01.500 |
| fkie_cve-2025-54741 | Missing Authorization vulnerability in Tyler Moore Super Blank super-blank allows Exploiting Incorr… | 2025-12-18T08:15:55.793 | 2026-01-20T15:17:01.367 |
| fkie_cve-2025-54737 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:15:58.427 | 2026-01-20T15:17:01.233 |
| fkie_cve-2025-54723 | Deserialization of Untrusted Data vulnerability in BoldThemes DentiCare denticare allows Object Inj… | 2025-12-18T08:15:55.660 | 2026-01-20T15:17:01.100 |
| fkie_cve-2025-54722 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:15:58.277 | 2026-01-20T15:17:00.967 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-39q5-4vqc-9p73 |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: pptp: ensure minimal skb lengt… | 2025-08-19T18:31:33Z | 2026-01-09T15:30:22Z |
| ghsa-v7r8-8p5c-h4xw |
5.3 (3.1)
|
XWiki AdminTools application doesn't set permissions on the AdminTools space | 2025-11-18T17:42:53Z | 2026-01-09T14:35:26Z |
| ghsa-x2rg-q7qq-q3c7 |
6.5 (3.1)
|
The WP Page Permalink Extension plugin for WordPress is vulnerable to Missing Authorization in all … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-wc63-83rx-8qcg |
6.4 (3.1)
|
The Woodpecker for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-pc52-v769-jjvw |
6.4 (3.1)
|
The Client Testimonial Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-m6m8-c4cv-c66j |
8.8 (4.0)
|
This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-hfqg-hpcg-h9rx |
6.4 (3.1)
|
The Curved Text plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'radius' … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-gfjh-r2j2-6qf3 |
6.1 (3.1)
|
The MG AdvancedOptions plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-gcqp-g44c-653f |
6.4 (3.1)
|
The PullQuote plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'p… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-g36m-9jqw-jhm4 |
6.1 (3.1)
|
The Lesson Plan Book plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-fcc7-68cp-g5v2 |
5.3 (3.1)
|
The Contact Form vCard Generator plugin for WordPress is vulnerable to unauthorized access of data … | 2026-01-09T12:32:25Z | 2026-01-09T12:32:26Z |
| ghsa-c822-wpv5-67r8 |
6.4 (3.1)
|
The Menu Card plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `category` … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-c223-65f8-3p5p |
9.3 (4.0)
|
The firmware in KAON CG3000TC and CG3000T routers contains hard-coded credentials in clear text (sh… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-6352-39rh-mx5f |
6.4 (3.1)
|
The The Tooltip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-4x85-44wj-rgh5 |
6.4 (3.1)
|
The Autogen Headers Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-4f2m-4qcx-27xf |
8.8 (4.0)
|
This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-4873-9vgw-wq49 |
6.4 (3.1)
|
The Debt.com Business in a Box plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-xvvx-wf8m-v58j |
6.1 (3.1)
|
The Shabat Keeper plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $_SE… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-vwwc-97q7-j4wg |
8.7 (4.0)
|
This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-pf7q-gxvm-9794 |
10.0 (3.1)
|
Remote Code Execution vulnerability that allows unauthenticated attackers to inject arbitrary comma… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-p9cp-qq4c-2wr5 |
8.7 (3.1)
|
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-p75v-9p9c-j9r7 |
10.0 (3.1)
|
This vulnerability allows authenticated attackers to execute commands via the hostname of the device. | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-mqvr-qq2m-5v38 |
8.7 (4.0)
|
This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-mqrq-32jw-jfgw |
6.4 (3.1)
|
The Header and Footer Scripts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-fhqx-f9jv-667v |
7.5 (3.1)
|
This vulnerability allows unauthenticated attackers to inject an SQL request into GET request param… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-f98m-rgjw-h2rv |
6.4 (3.1)
|
The WP Popup Magic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'name'… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-6mpj-fw9g-9wqm |
3.5 (3.1)
|
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.3 before 18.5.5, 18.6… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-29gv-cv9c-r93w |
8.6 (3.1)
|
This vulnerability allows authenticated attackers to execute commands via the NTP-configuration of … | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-xqqj-h3wv-qfx7 |
6.4 (3.1)
|
The Nearby Now Reviews plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'd… | 2026-01-09T12:32:24Z | 2026-01-09T12:32:24Z |
| ghsa-qc3w-f7pj-hx87 |
6.1 (3.1)
|
The Top Position Google Finance plugin for WordPress is vulnerable to Reflected Cross-Site Scriptin… | 2026-01-09T12:32:24Z | 2026-01-09T12:32:24Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-1910 | The Categorify plugin for WordPress is vulnerable to Cross-Site Request Forgery in all ve… | 2024-02-27T06:02:29.514536Z |
| gsd-2024-1897 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:29.499493Z |
| gsd-2024-1885 | This vulnerability allows remote attackers to execute arbitrary code on the affected webO… | 2024-02-27T06:02:29.485328Z |
| gsd-2024-1908 | An Improper Privilege Management vulnerability was identified in GitHub Enterprise Server… | 2024-02-27T06:02:29.479593Z |
| gsd-2024-1883 | This is a reflected cross site scripting vulnerability in the PaperCut NG/MF application … | 2024-02-27T06:02:29.445975Z |
| gsd-2024-1905 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:29.442065Z |
| gsd-2024-1882 | This vulnerability allows an already authenticated admin user to create a malicious paylo… | 2024-02-27T06:02:29.421399Z |
| gsd-2024-1911 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:29.410084Z |
| gsd-2024-1888 | Mattermost fails to check the "invite_guest" permission when inviting guests of other tea… | 2024-02-27T06:02:29.409204Z |
| gsd-2024-1898 | Improper access control in the notification feature in Devolutions Server 2023.3.14.0 and… | 2024-02-27T06:02:29.404332Z |
| gsd-2024-1899 | An issue in the anchors subparser of Showdownjs versions <= 2.1.0 could allow a remote at… | 2024-02-27T06:02:29.399129Z |
| gsd-2024-1904 | The MasterStudy LMS plugin for WordPress is vulnerable to unauthorized access of data due… | 2024-02-27T06:02:29.393064Z |
| gsd-2024-1906 | The Categorify plugin for WordPress is vulnerable to Cross-Site Request Forgery in all ve… | 2024-02-27T06:02:29.388720Z |
| gsd-2023-52533 | In modem-ps-nas-ngmm, there is a possible undefined behavior due to incorrect error handl… | 2024-02-27T06:01:47.119104Z |
| gsd-2023-52550 | Vulnerability of data verification errors in the kernel module. Impact: Successful exploi… | 2024-02-27T06:01:47.114607Z |
| gsd-2023-52537 | Vulnerability of package name verification being bypassed in the HwIms module. Impact: Su… | 2024-02-27T06:01:47.091106Z |
| gsd-2023-52549 | Vulnerability of data verification errors in the kernel module. Impact: Successful exploi… | 2024-02-27T06:01:47.079491Z |
| gsd-2023-52534 | In ngmm, there is a possible undefined behavior due to incorrect error handling. This cou… | 2024-02-27T06:01:47.077674Z |
| gsd-2023-52538 | Vulnerability of package name verification being bypassed in the HwIms module. Impact: Su… | 2024-02-27T06:01:47.076409Z |
| gsd-2023-52551 | Vulnerability of data verification errors in the kernel module. Impact: Successful exploi… | 2024-02-27T06:01:47.055266Z |
| gsd-2023-52543 | Permission verification vulnerability in the system module. Impact: Successful exploitati… | 2024-02-27T06:01:46.987143Z |
| gsd-2023-52544 | Vulnerability of file path verification being bypassed in the email module. Impact: Succe… | 2024-02-27T06:01:46.975328Z |
| gsd-2023-52542 | Permission verification vulnerability in the system module. Impact: Successful exploitati… | 2024-02-27T06:01:46.974512Z |
| gsd-2023-52554 | Permission control vulnerability in the Bluetooth module. Impact: Successful exploitation… | 2024-02-27T06:01:46.958735Z |
| gsd-2023-52545 | Vulnerability of undefined permissions in the Calendar app. Impact: Successful exploitati… | 2024-02-27T06:01:46.931156Z |
| gsd-2023-52541 | Authentication vulnerability in the API for app pre-loading. Impact: Successful exploitat… | 2024-02-27T06:01:46.919340Z |
| gsd-2023-52547 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:01:46.907800Z |
| gsd-2023-52546 | Vulnerability of package name verification being bypassed in the Calendar app. Impact: Su… | 2024-02-27T06:01:46.884870Z |
| gsd-2023-52535 | In vsp driver, there is a possible missing verification incorrect input. This could lead … | 2024-02-27T06:01:46.878279Z |
| gsd-2023-52536 | In faceid service, there is a possible out of bounds read due to a missing bounds check. … | 2024-02-27T06:01:46.878021Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-186259 | Malicious code in compile-gamma-wind-code-deserialize (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186258 | Malicious code in compile-catch-gamma-encode-resolve (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186257 | Malicious code in commitlint-slides-octans-resolvers (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186256 | Malicious code in commitlint-resolvers-procyon-pm2 (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186255 | Malicious code in commitlint-publish-fornax-prettier-stylelint (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186254 | Malicious code in commitlint-prosthetics-altair-magnetosphere (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186253 | Malicious code in commitlint-config-angular-sadr-cluster-mira (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186252 | Malicious code in commitlint-config-angular-nodejs-carpo-vortex (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186251 | Malicious code in commitlint-config-angular-init-miranda-luna (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186250 | Malicious code in commitlint-config-angular-hercules-express-yonder (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186249 | Malicious code in commitlint-config-angular-graphql-ursa-yakutsk (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186248 | Malicious code in commitlint-config-angular-forever-dotenv-parse-variables-google (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186247 | Malicious code in commitlint-chalk-neptune-auriga (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186246 | Malicious code in commitlint-chalk-eclipse-init (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186245 | Malicious code in commitlint-betelgeuse-yaml-indus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186244 | Malicious code in commitizen-singularitarianism-framework-wavefunction (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186243 | Malicious code in commitizen-radioastronomy-steganography-grunt (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186242 | Malicious code in commitizen-playwright-selenium-publish (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186241 | Malicious code in commitizen-markdown-luminescence-meteor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186240 | Malicious code in commitizen-eclipse-sadr-chariklo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186239 | Malicious code in commitizen-chromedriver-redis-polaris (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186238 | Malicious code in commitizen-antares-magellan-saturnology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186237 | Malicious code in command-xo-module-antd (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186236 | Malicious code in command-react-bootstrap-neuromorphic-magellan (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186235 | Malicious code in command-pulsar-atlas-on (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186234 | Malicious code in command-prettier-stylelint-server-schema (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186233 | Malicious code in command-leda-fetch-delphinus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186232 | Malicious code in command-dotenv-safe-oberon-lint-staged (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186231 | Malicious code in command-dotenv-betelgeuse-neutronstar (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186230 | Malicious code in command-celeste-resonance-hyperion (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-0905 | Microsoft GitHub Enterprise: Mehrere Schwachstellen | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0904 | SAP Patchday April 2023 | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0902 | Microsoft Edge: Mehrere Schwachstellen | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0901 | Dell NetWorker: Mehrere Schwachstellen | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0899 | Siemens JT2Go: Schwachstelle ermöglicht Codeausführung | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0898 | Siemens SIMATIC S7: Schwachstelle ermöglicht Denial of Service | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0897 | Siemens SIPROTEC 5 Geräte: Schwachstelle ermöglicht Denial of Service | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0896 | Zoho ManageEngine ServiceDesk Plus: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0892 | LibreSSL: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0886 | HP LaserJet: Mehrere Schwachstellen | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0885 | Progress Software Sitefinity: Mehrere Schwachstellen | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0884 | Microsoft Windows: Mehrere Schwachstellen | 2019-11-12T23:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0883 | WithSecure Produkte: Schwachstelle ermöglicht Denial of Service | 2023-04-10T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0858 | Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen | 2019-01-07T23:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0791 | NGINX: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-03-29T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0731 | Netgate pfSense: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-03-22T23:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0691 | Unify OpenScape 4000: Mehrere Schwachstellen ermöglichen Erlangen von Administratorrechten | 2023-03-19T23:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0600 | Red Hat OpenShift: Schwachstelle ermöglicht Manipulation von Dateien | 2023-03-08T23:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0507 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2019-06-17T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0150 | Dell integrated Dell Remote Access Controller: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2023-01-18T23:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2022-2234 | Android Patchday Dezember 2022 | 2022-12-05T23:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2022-0978 | Intel Ethernet Controller: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-08-09T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0882 | docker Desktop: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-04-05T22:00:00.000+00:00 | 2023-04-05T22:00:00.000+00:00 |
| wid-sec-w-2023-0881 | IBM Maximo Asset Management: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2023-04-05T22:00:00.000+00:00 | 2023-04-05T22:00:00.000+00:00 |
| wid-sec-w-2023-0880 | Oracle Berkeley DB: Schwachstelle ermöglicht Offenlegung von Informationen | 2017-11-21T23:00:00.000+00:00 | 2023-04-05T22:00:00.000+00:00 |
| wid-sec-w-2023-0878 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2021-08-15T22:00:00.000+00:00 | 2023-04-05T22:00:00.000+00:00 |
| wid-sec-w-2023-0875 | Xen: Mehrere Schwachstellen ermöglichen Denial of Service | 2021-12-20T23:00:00.000+00:00 | 2023-04-05T22:00:00.000+00:00 |
| wid-sec-w-2023-0874 | Veritas NetBackup: Schwachstelle ermöglicht Cross-Site Scripting | 2023-04-05T22:00:00.000+00:00 | 2023-04-05T22:00:00.000+00:00 |
| wid-sec-w-2023-0873 | ILIAS: Mehrere Schwachstellen | 2023-04-05T22:00:00.000+00:00 | 2023-04-05T22:00:00.000+00:00 |
| wid-sec-w-2023-0870 | Cisco Identity Services Engine (ISE): Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2023-04-05T22:00:00.000+00:00 | 2023-04-05T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:2022 | Red Hat Security Advisory: emacs security update | 2025-03-03T11:05:33+00:00 | 2025-11-24T19:53:58+00:00 |
| rhsa-2025:1964 | Red Hat Security Advisory: emacs security update | 2025-03-03T01:48:47+00:00 | 2025-11-24T19:53:57+00:00 |
| rhsa-2025:1963 | Red Hat Security Advisory: emacs security update | 2025-03-03T01:48:47+00:00 | 2025-11-24T19:53:57+00:00 |
| rhsa-2025:1962 | Red Hat Security Advisory: emacs security update | 2025-03-03T01:51:27+00:00 | 2025-11-24T19:53:57+00:00 |
| rhsa-2025:1961 | Red Hat Security Advisory: emacs security update | 2025-03-03T01:34:12+00:00 | 2025-11-24T19:53:55+00:00 |
| rhsa-2025:1917 | Red Hat Security Advisory: emacs security update | 2025-02-27T10:59:47+00:00 | 2025-11-24T19:53:55+00:00 |
| rhsa-2025:1915 | Red Hat Security Advisory: emacs security and bug fix update | 2025-02-27T10:08:57+00:00 | 2025-11-24T19:53:54+00:00 |
| rhsa-2025:3376 | Red Hat Security Advisory: Red Hat build of Quarkus 3.15.4 release and security update | 2025-04-02T13:06:42+00:00 | 2025-11-24T09:23:03+00:00 |
| rhsa-2025:15728 | Red Hat Security Advisory: aide security update | 2025-09-15T01:29:59+00:00 | 2025-11-22T03:02:13+00:00 |
| rhsa-2025:15409 | Red Hat Security Advisory: aide security update | 2025-09-08T01:26:40+00:00 | 2025-11-22T03:02:11+00:00 |
| rhsa-2025:15058 | Red Hat Security Advisory: aide security update | 2025-09-02T11:18:25+00:00 | 2025-11-22T03:02:09+00:00 |
| rhsa-2025:15039 | Red Hat Security Advisory: aide security update | 2025-09-02T07:30:45+00:00 | 2025-11-22T03:02:08+00:00 |
| rhsa-2025:15038 | Red Hat Security Advisory: aide security update | 2025-09-02T07:28:41+00:00 | 2025-11-22T03:02:07+00:00 |
| rhsa-2025:14982 | Red Hat Security Advisory: aide security update | 2025-09-02T01:34:19+00:00 | 2025-11-22T03:02:06+00:00 |
| rhsa-2025:14981 | Red Hat Security Advisory: aide security update | 2025-09-02T01:30:19+00:00 | 2025-11-22T03:02:05+00:00 |
| rhsa-2025:14592 | Red Hat Security Advisory: aide security update | 2025-08-26T09:51:45+00:00 | 2025-11-22T03:01:59+00:00 |
| rhsa-2025:14573 | Red Hat Security Advisory: aide security update | 2025-08-26T07:28:00+00:00 | 2025-11-22T03:01:53+00:00 |
| rhsa-2025:14493 | Red Hat Security Advisory: aide security update | 2025-08-25T11:24:38+00:00 | 2025-11-22T03:01:51+00:00 |
| rhsa-2025:9506 | Red Hat Security Advisory: Red Hat OpenShift GitOps security update | 2025-06-24T03:46:54+00:00 | 2025-11-21T19:39:12+00:00 |
| rhsa-2025:8540 | Red Hat Security Advisory: Red Hat Developer Hub 1.5.2 release. | 2025-06-04T18:39:35+00:00 | 2025-11-21T19:39:11+00:00 |
| rhsa-2025:21117 | Red Hat Security Advisory: RHOAI 3.0 - Red Hat OpenShift AI | 2025-11-12T10:03:26+00:00 | 2025-11-21T19:38:58+00:00 |
| rhsa-2025:17128 | Red Hat Security Advisory: Submariner v0.20.2 security fixes and container updates | 2025-10-01T03:46:30+00:00 | 2025-11-21T19:38:43+00:00 |
| rhsa-2025:16504 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.19 security, enhancement & bug fix update | 2025-09-23T15:46:00+00:00 | 2025-11-21T19:38:37+00:00 |
| rhsa-2025:16044 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.1.2 | 2025-09-17T07:00:14+00:00 | 2025-11-21T19:38:35+00:00 |
| rhsa-2025:16040 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.0.5 | 2025-09-17T06:34:26+00:00 | 2025-11-21T19:38:35+00:00 |
| rhsa-2025:9997 | Red Hat Security Advisory: mod_proxy_cluster security update | 2025-07-01T01:09:06+00:00 | 2025-11-21T19:38:07+00:00 |
| rhsa-2025:9896 | Red Hat Security Advisory: kernel security update | 2025-06-30T08:58:29+00:00 | 2025-11-21T19:38:05+00:00 |
| rhsa-2025:9880 | Red Hat Security Advisory: kernel security update | 2025-06-30T03:47:53+00:00 | 2025-11-21T19:38:05+00:00 |
| rhsa-2025:9878 | Red Hat Security Advisory: libblockdev security update | 2025-06-30T01:32:33+00:00 | 2025-11-21T19:38:04+00:00 |
| rhsa-2025:9877 | Red Hat Security Advisory: glibc security update | 2025-06-30T02:51:09+00:00 | 2025-11-21T19:38:04+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-28486 | Sudo before 1.9.13 does not escape control characters in log messages. | 2023-03-10T00:00:00.000Z | 2023-04-07T00:00:00.000Z |
| msrc_cve-2023-28464 | hci_conn_cleanup in net/bluetooth/hci_conn.c in the Linux kernel through 6.2.9 has a use-after-free (observed in hci_conn_hash_flush) because of calls to hci_dev_put and hci_conn_put. There is a double free that may lead to privilege escalation. | 2023-03-10T00:00:00.000Z | 2023-04-07T00:00:00.000Z |
| msrc_cve-2023-23006 | In the Linux kernel before 5.15.13 drivers/net/ethernet/mellanox/mlx5/core/steering/dr_domain.c misinterprets the mlx5_get_uars_page return value (expects it to be NULL in the error case whereas it is actually an error pointer). | 2023-03-10T00:00:00.000Z | 2023-04-07T00:00:00.000Z |
| msrc_cve-2023-23005 | In the Linux kernel before 6.2 mm/memory-tiers.c misinterprets the alloc_memory_type return value (expects it to be NULL in the error case whereas it is actually an error pointer). NOTE: this is disputed by third parties because there are no realistic cases in which a user can cause the alloc_memory_type error case to be reached. | 2023-03-10T00:00:00.000Z | 2023-04-07T00:00:00.000Z |
| msrc_cve-2023-22997 | In the Linux kernel before 6.1.2 kernel/module/decompress.c misinterprets the module_get_next_page return value (expects it to be NULL in the error case whereas it is actually an error pointer). | 2023-02-01T00:00:00.000Z | 2023-04-07T00:00:00.000Z |
| msrc_cve-2023-1355 | NULL Pointer Dereference in vim/vim | 2023-03-10T00:00:00.000Z | 2023-04-07T00:00:00.000Z |
| msrc_cve-2020-8908 | Temp directory permission issue in Guava | 2020-12-02T00:00:00.000Z | 2023-04-07T00:00:00.000Z |
| msrc_cve-2023-28866 | In the Linux kernel through 6.2.8 net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element but do not. | 2023-03-10T00:00:00.000Z | 2023-04-05T00:00:00.000Z |
| msrc_cve-2023-1513 | A flaw was found in KVM. When calling the KVM_GET_DEBUGREGS ioctl on 32-bit systems there might be some uninitialized portions of the kvm_debugregs structure that could be copied to userspace causing an information leak. | 2023-03-10T00:00:00.000Z | 2023-04-05T00:00:00.000Z |
| msrc_cve-2023-28642 | AppArmor bypass with symlinked /proc in runc | 2023-03-10T00:00:00.000Z | 2023-04-03T00:00:00.000Z |
| msrc_cve-2023-28448 | Versionize is lacking bound checks potentially leading to out of bounds memory access | 2023-03-10T00:00:00.000Z | 2023-04-03T00:00:00.000Z |
| msrc_cve-2023-25809 | rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc | 2023-03-10T00:00:00.000Z | 2023-04-03T00:00:00.000Z |
| msrc_cve-2022-25882 | Versions of the package onnx before 1.13.0 are vulnerable to Directory Traversal as the external_data field of the tensor proto can have a path to the file which is outside the model current directory or user-provided directory for example "../../../etc/passwd" | 2023-01-04T00:00:00.000Z | 2023-04-03T00:00:00.000Z |
| msrc_cve-2023-1079 | A flaw was found in the Linux kernel. A use-after-free may be triggered in asus_kbd_backlight_set when plugging/disconnecting in a malicious USB device which advertises itself as an Asus device. Similarly to the previous known CVE-2023-25012 but in asus devices the work_struct may be scheduled by the LED controller while the device is disconnecting triggering a use-after-free on the struct asus_kbd_leds *led structure. A malicious USB device may exploit the issue to cause memory corruption with controlled data. | 2023-03-10T00:00:00.000Z | 2023-04-01T00:00:00.000Z |
| msrc_cve-2023-28303 | Windows Snipping Tool Information Disclosure Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-30T07:00:00.000Z |
| msrc_cve-2023-24909 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-30T07:00:00.000Z |
| msrc_cve-2023-24907 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-30T07:00:00.000Z |
| msrc_cve-2023-24876 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-30T07:00:00.000Z |
| msrc_cve-2023-24867 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-30T07:00:00.000Z |
| msrc_cve-2023-23413 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-30T07:00:00.000Z |
| msrc_cve-2023-21722 | .NET Framework Denial of Service Vulnerability | 2023-02-14T08:00:00.000Z | 2023-03-29T07:00:00.000Z |
| msrc_cve-2022-33646 | Azure Batch Node Agent Elevation of Privilege Vulnerability | 2022-08-09T07:00:00.000Z | 2023-03-29T07:00:00.000Z |
| msrc_cve-2023-28617 | org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name that contains shell metacharacters. | 2023-03-10T00:00:00.000Z | 2023-03-27T00:00:00.000Z |
| msrc_cve-2023-24807 | Undici vulnerable to Regular Expression Denial of Service in Headers | 2023-02-01T00:00:00.000Z | 2023-03-25T00:00:00.000Z |
| msrc_cve-2023-23936 | CRLF Injection in Nodejs ‘undici’ via host | 2023-02-01T00:00:00.000Z | 2023-03-25T00:00:00.000Z |
| msrc_cve-2023-23934 | Wrkzeug's incorrect parsing of nameless cookies leads to __Host- cookies bypass | 2023-02-01T00:00:00.000Z | 2023-03-25T00:00:00.000Z |
| msrc_cve-2023-23920 | An untrusted search path vulnerability exists in Node.js. <19.6.1 <18.14.1 <16.19.1 and <14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges. | 2023-02-01T00:00:00.000Z | 2023-03-25T00:00:00.000Z |
| msrc_cve-2023-23919 | A cryptographic vulnerability exists in Node.js <19.2.0 <18.14.1 <16.19.1 <14.21.3 that in some cases did does not clear the OpenSSL error stack after operations that may set it. This may lead to false positive errors during subsequent cryptographic operations that happen to be on the same thread. This in turn could be used to cause a denial of service. | 2023-02-01T00:00:00.000Z | 2023-03-25T00:00:00.000Z |
| msrc_cve-2022-3515 | A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application for example a malicious S/MIME attachment. | 2023-01-04T00:00:00.000Z | 2023-03-25T00:00:00.000Z |
| msrc_cve-2021-45956 | Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities to the best of our knowledge. | 2021-12-02T00:00:00.000Z | 2023-03-25T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202212-1948 | Tenda F1203 V2.0.1.6 was discovered to contain a command injection vulnerability via the … | 2025-04-18T03:49:02.594000Z |
| var-202411-2619 | Contiki-NG is an open-source, cross-platform operating system for IoT devices. An unalign… | 2025-04-18T03:48:54.058000Z |
| var-202212-1735 | Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list paramet… | 2025-04-18T03:44:31.706000Z |
| var-202212-1756 | Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the funcpara1 pa… | 2025-04-18T03:44:31.679000Z |
| var-202212-1861 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the urls parameter a… | 2025-04-18T03:44:31.626000Z |
| var-202401-2496 | Tenda AX1803 is a dual-band Gigabit WIFI6 router from China's Tenda company. There is a … | 2025-04-18T03:44:19.385000Z |
| var-202107-1649 | Philips Vue PACS versions 12.2.x.x and prior does not use or incorrectly uses a protectio… | 2025-04-18T03:26:02.324000Z |
| var-202107-1646 | Philips Vue PACS versions 12.2.x.x and prior does not ensure or incorrectly ensures struc… | 2025-04-17T20:46:42.643000Z |
| var-202106-1954 | Rockwell Automation FactoryTalk Services Platform v6.11 and earlier, if FactoryTalk Secur… | 2025-04-17T20:03:18.670000Z |
| var-202109-1926 | AVEVA Software Platform Common Services (PCS) Portal versions 4.5.2, 4.5.1, 4.5.0, and 4.… | 2025-04-17T19:44:35.661000Z |
| var-202411-1087 | Buffer Overflow vulnerability in Tenda O3 v.1.0.0.5 allows a remote attacker to cause a d… | 2025-04-16T23:26:21.265000Z |
| var-202410-3568 | In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.c… | 2025-04-16T23:25:54.843000Z |
| var-202411-2072 | DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability … | 2025-04-16T23:24:09.135000Z |
| var-202503-0215 | A vulnerability, which was classified as critical, was found in Tenda AC7 up to 15.03.06.… | 2025-04-16T23:22:22.087000Z |
| var-202409-2018 | Tenda FH1201 v1.2.0.14 has a stack buffer overflow vulnerability in `formWrlExtraGet`. Sh… | 2025-04-16T23:21:25.827000Z |
| var-202410-3317 | In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.c… | 2025-04-16T23:20:15.921000Z |
| var-202212-1797 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceId paramet… | 2025-04-16T23:18:50.472000Z |
| var-202404-2359 | A Stack Overflow vulnerability in Tenda AC15 v15.03.05.18 allows attackers to cause a den… | 2025-04-16T23:15:09.362000Z |
| var-202411-3178 | DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability … | 2025-04-16T23:15:08.280000Z |
| var-202212-1777 | Use after free vulnerability in CX-Drive V3.00 and earlier allows a local attacker to exe… | 2025-04-16T23:09:47.988000Z |
| var-202212-1846 | Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceMac parame… | 2025-04-16T23:06:01.431000Z |
| var-202504-0028 | A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. This issu… | 2025-04-15T23:48:04.518000Z |
| var-202504-0700 | A vulnerability, which was classified as problematic, has been found in Tenda AC23 16.03.… | 2025-04-15T23:48:04.367000Z |
| var-202212-2110 | php-mod/curl (a wrapper of the PHP cURL extension) before 2.3.2 allows XSS via the post_f… | 2025-04-15T23:47:13.564000Z |
| var-202212-2614 | D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a s… | 2025-04-15T23:47:13.459000Z |
| var-202212-2134 | D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability vi… | 2025-04-15T23:46:29.123000Z |
| var-202408-1940 | A Command Injection vulnerability exists in formWriteFacMac of the httpd binary in Tenda … | 2025-04-15T23:44:14.131000Z |
| var-202212-2091 | D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability vi… | 2025-04-15T23:40:44.844000Z |
| var-202212-1967 | The Nintendo NetworkBuffer class, as used in Animal Crossing: New Horizons before 2.0.6 a… | 2025-04-15T23:36:57.424000Z |
| var-202212-2591 | TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enro… | 2025-04-15T23:34:04.335000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:2252-1 | Security update for liblouis | 2022-07-04T10:05:27Z | 2022-07-04T10:05:27Z |
| suse-su-2022:2251-2 | Security update for openssl-1_1 | 2022-07-04T07:53:29Z | 2022-07-04T07:53:29Z |
| suse-su-2022:2251-1 | Security update for openssl-1_1 | 2022-07-04T07:52:42Z | 2022-07-04T07:52:42Z |
| suse-su-2022:2249-1 | Security update for python | 2022-07-04T06:52:34Z | 2022-07-04T06:52:34Z |
| suse-su-2022:2248-1 | Security update for python | 2022-07-04T06:51:36Z | 2022-07-04T06:51:36Z |
| suse-su-2022:2245-1 | Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP3) | 2022-07-02T21:33:36Z | 2022-07-02T21:33:36Z |
| suse-su-2022:2239-1 | Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP3) | 2022-07-01T18:33:42Z | 2022-07-01T18:33:42Z |
| suse-su-2022:2237-1 | Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP2) | 2022-07-01T17:35:03Z | 2022-07-01T17:35:03Z |
| suse-su-2022:2230-1 | Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP2) | 2022-07-01T17:34:57Z | 2022-07-01T17:34:57Z |
| suse-su-2022:2220-1 | Security update for the Linux Kernel (Live Patch 27 for SLE 15) | 2022-07-01T16:04:15Z | 2022-07-01T16:04:15Z |
| suse-su-2022:2216-1 | Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP3) | 2022-06-29T08:03:55Z | 2022-06-29T08:03:55Z |
| suse-su-2022:2217-1 | Security update for the Linux Kernel (Live Patch 23 for SLE 12 SP4) | 2022-06-29T08:03:48Z | 2022-06-29T08:03:48Z |
| suse-su-2022:2214-1 | Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP3) | 2022-06-29T06:03:57Z | 2022-06-29T06:03:57Z |
| suse-su-2022:2206-1 | Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP1) | 2022-06-28T09:03:48Z | 2022-06-28T09:03:48Z |
| suse-su-2022:2197-1 | Security update for openssl-1_0_0 | 2022-06-28T04:04:11Z | 2022-06-28T04:04:11Z |
| suse-su-2022:2196-1 | Security update for oracleasm | 2022-06-28T03:04:29Z | 2022-06-28T03:04:29Z |
| suse-su-2022:2195-1 | Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP5) | 2022-06-28T00:04:08Z | 2022-06-28T00:04:08Z |
| suse-su-2022:2194-1 | Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP5) | 2022-06-27T18:33:42Z | 2022-06-27T18:33:42Z |
| suse-su-2022:2192-1 | Security update for rubygem-rack | 2022-06-27T15:13:56Z | 2022-06-27T15:13:56Z |
| suse-su-2022:2191-1 | Security update for drbd | 2022-06-27T13:04:02Z | 2022-06-27T13:04:02Z |
| suse-su-2022:2190-1 | Security update for drbd | 2022-06-27T13:03:52Z | 2022-06-27T13:03:52Z |
| suse-su-2022:2189-1 | Security update for mariadb | 2022-06-27T08:21:34Z | 2022-06-27T08:21:34Z |
| suse-su-2022:2187-1 | Security update for oracleasm | 2022-06-24T16:35:48Z | 2022-06-24T16:35:48Z |
| suse-su-2022:2186-1 | Security update for oracleasm | 2022-06-24T16:35:39Z | 2022-06-24T16:35:39Z |
| suse-su-2022:2185-1 | Security update for php7 | 2022-06-24T15:07:15Z | 2022-06-24T15:07:15Z |
| suse-su-2022:2184-1 | Security update for liblouis | 2022-06-24T15:05:02Z | 2022-06-24T15:05:02Z |
| suse-su-2022:2183-1 | Security update for php72 | 2022-06-24T14:22:33Z | 2022-06-24T14:22:33Z |
| suse-su-2022:2182-1 | Security update for openssl-1_1 | 2022-06-24T12:32:47Z | 2022-06-24T12:32:47Z |
| suse-su-2022:2181-1 | Security update for openssl | 2022-06-24T12:29:05Z | 2022-06-24T12:29:05Z |
| suse-su-2022:2180-1 | Security update for openssl | 2022-06-24T12:28:08Z | 2022-06-24T12:28:08Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2019:0009-1 | Security update for singularity | 2019-03-23T10:42:10Z | 2019-03-23T10:42:10Z |
| opensuse-su-2019:0008-1 | Security update for libraw | 2019-03-23T10:42:07Z | 2019-03-23T10:42:07Z |
| opensuse-su-2019:1-1 | Security update for GraphicsMagick | 2019-03-23T10:38:52Z | 2019-03-23T10:38:52Z |
| opensuse-su-2019:0054-1 | Security update for gitolite | 2019-03-23T09:56:50Z | 2019-03-23T09:56:50Z |
| opensuse-su-2019:0329-1 | Security update for obs-service-tar_scm | 2019-03-15T06:52:27Z | 2019-03-15T06:52:27Z |
| opensuse-su-2019:0328-1 | Security update for libcomps | 2019-03-15T06:33:59Z | 2019-03-15T06:33:59Z |
| opensuse-su-2019:0322-1 | Security update for hiawatha | 2019-03-09T13:08:17Z | 2019-03-09T13:08:17Z |
| opensuse-su-2019:0249-1 | Security update for MozillaThunderbird | 2019-02-26T09:44:25Z | 2019-02-26T09:44:25Z |
| opensuse-su-2019:0247-1 | Security update for kauth | 2019-02-26T05:15:30Z | 2019-02-26T05:15:30Z |
| opensuse-su-2019:0244-1 | Security update for python-Jinja2 | 2019-02-25T17:32:38Z | 2019-02-25T17:32:38Z |
| opensuse-su-2019:0240-1 | Security update for pspp, spread-sheet-widget | 2019-02-24T18:19:35Z | 2019-02-24T18:19:35Z |
| opensuse-su-2019:0239-1 | Security update for python-python-gnupg | 2019-02-23T15:47:12Z | 2019-02-23T15:47:12Z |
| opensuse-su-2019:0238-1 | Security update for ansible | 2019-02-23T08:23:03Z | 2019-02-23T08:23:03Z |
| opensuse-su-2019:0237-1 | Security update for mosquitto | 2019-02-23T08:03:59Z | 2019-02-23T08:03:59Z |
| opensuse-su-2019:0235-1 | Security update for GraphicsMagick | 2019-02-22T16:23:13Z | 2019-02-22T16:23:13Z |
| opensuse-su-2019:0216-1 | Security update for chromium | 2019-02-19T10:08:13Z | 2019-02-19T10:08:13Z |
| opensuse-su-2019:0206-1 | Security update for chromium | 2019-02-18T16:59:22Z | 2019-02-18T16:59:22Z |
| opensuse-su-2019:0171-1 | Security update for uriparser | 2019-02-13T17:02:43Z | 2019-02-13T17:02:43Z |
| opensuse-su-2019:0170-1 | Security update for runc | 2019-02-13T16:51:49Z | 2019-02-13T16:51:49Z |
| opensuse-su-2019:0169-1 | Security update for python-slixmpp | 2019-02-13T16:50:17Z | 2019-02-13T16:50:17Z |
| opensuse-su-2019:0131-1 | Security update for pdns-recursor | 2019-02-04T12:59:24Z | 2019-02-04T12:59:24Z |
| opensuse-su-2019:0107-1 | Security update for pdns-recursor | 2019-01-31T13:36:30Z | 2019-01-31T13:36:30Z |
| opensuse-su-2019:0095-1 | Security update for singularity | 2019-01-29T08:15:08Z | 2019-01-29T08:15:08Z |
| opensuse-su-2019:0003-1 | Security update for GraphicsMagick | 2019-01-01T16:33:52Z | 2019-01-01T16:33:52Z |
| opensuse-su-2018:4302-1 | Security update for go | 2018-12-29T10:20:00Z | 2018-12-29T10:20:00Z |
| opensuse-su-2018:4175-1 | Security update for pdns | 2018-12-18T12:04:47Z | 2018-12-18T12:04:47Z |
| opensuse-su-2018:4177-1 | Security update for pdns-recursor | 2018-12-18T12:04:40Z | 2018-12-18T12:04:40Z |
| opensuse-su-2018:4143-1 | Security update for Chromium | 2018-12-15T09:27:33Z | 2018-12-15T09:27:33Z |
| opensuse-su-2018:4073-1 | Security update for pdns | 2018-12-11T14:12:15Z | 2018-12-11T14:12:15Z |
| opensuse-su-2018:4062-1 | Security update for pdns-recursor | 2018-12-10T13:09:45Z | 2018-12-10T13:09:45Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-07816 | Siemens SENTRON 7KT PAC1260 Data Manager信任管理问题漏洞 | 2025-04-18 | 2025-04-23 |
| cnvd-2025-07815 | Siemens SENTRON 7KT PAC1260 Data Manager存在未明漏洞(CNVD-2025-07815) | 2025-04-18 | 2025-04-23 |
| cnvd-2025-07814 | Siemens SENTRON 7KT PAC1260 Data Manager路径遍历漏洞 | 2025-04-18 | 2025-04-23 |
| cnvd-2025-07813 | Siemens SENTRON 7KT PAC1260 Data Manager存在未明漏洞 | 2025-04-18 | 2025-04-23 |
| cnvd-2025-07812 | Siemens SENTRON 7KT PAC1260 Data Manager访问控制错误漏洞(CNVD-2025-07812) | 2025-04-18 | 2025-04-23 |
| cnvd-2025-08434 | GNU gettext跨站脚本漏洞 | 2024-08-21 | 2025-04-22 |
| cnvd-2025-08346 | TOTOLINK A3100R命令注入漏洞 | 2024-07-29 | 2025-04-22 |
| cnvd-2025-08345 | TOTOLINK A3600R缓冲区溢出漏洞(CNVD-2025-08345) | 2024-07-29 | 2025-04-22 |
| cnvd-2025-08344 | TOTOLINK A3600R硬编码密码漏洞 | 2024-07-29 | 2025-04-22 |
| cnvd-2025-08343 | TOTOLINK A3700R信息泄露漏洞 | 2024-07-31 | 2025-04-22 |
| cnvd-2025-08342 | TOTOLINK A3700R访问控制错误漏洞 | 2024-07-31 | 2025-04-22 |
| cnvd-2025-08341 | TOTOLINK LR350访问控制错误漏洞 | 2024-08-16 | 2025-04-22 |
| cnvd-2025-08340 | TOTOLINK N350RT访问控制错误漏洞 | 2024-08-16 | 2025-04-22 |
| cnvd-2025-08339 | TOTOLINK AC1200 T8缓冲区溢出漏洞(CNVD-2025-08339) | 2024-08-26 | 2025-04-22 |
| cnvd-2025-08338 | TOTOLINK AC1200 T8缓冲区溢出漏洞(CNVD-2025-08338) | 2024-08-29 | 2025-04-22 |
| cnvd-2025-08337 | TOTOLINK AC1200 T8操作系统命令注入漏洞 | 2024-08-29 | 2025-04-22 |
| cnvd-2025-08336 | GNU Wget代码问题漏洞 | 2024-11-21 | 2025-04-22 |
| cnvd-2025-08320 | GNU GRUB2越界写入漏洞(CNVD-2025-08320) | 2025-03-11 | 2025-04-22 |
| cnvd-2025-07886 | 上海泛微网络科技股份有限公司e-cology存在命令执行漏洞(CNVD-2025-07886) | 2025-04-14 | 2025-04-22 |
| cnvd-2025-07885 | Apple多款产品内存释放后再利用漏洞 | 2025-04-22 | 2025-04-22 |
| cnvd-2025-07811 | Siemens SENTRON 7KT PAC1260 Data Manager访问控制错误漏洞 | 2025-04-18 | 2025-04-22 |
| cnvd-2025-07810 | Siemens SENTRON 7KT PAC1260 Data Manager OS命令注入漏洞(CNVD-2025-07810) | 2025-04-18 | 2025-04-22 |
| cnvd-2025-07809 | Siemens SENTRON 7KT PAC1260 Data Manager OS命令注入漏洞(CNVD-2025-07809) | 2025-04-18 | 2025-04-22 |
| cnvd-2025-07808 | Siemens SENTRON 7KT PAC1260 Data Manager OS命令注入漏洞 | 2025-04-18 | 2025-04-22 |
| cnvd-2025-07807 | Adobe ColdFusion信息泄露漏洞(CNVD-2025-07807) | 2025-04-18 | 2025-04-22 |
| cnvd-2025-07806 | Adobe ColdFusion访问控制不当漏洞(CNVD-2025-07806) | 2025-04-18 | 2025-04-22 |
| cnvd-2025-07805 | Adobe ColdFusion OS命令注入漏洞(CNVD-2025-07805) | 2025-04-18 | 2025-04-22 |
| cnvd-2025-07804 | Adobe Animate越界读取漏洞(CNVD-2025-07804) | 2025-04-18 | 2025-04-22 |
| cnvd-2025-07803 | Adobe After Effects越界读取漏洞(CNVD-2025-07803) | 2025-04-18 | 2025-04-22 |
| cnvd-2025-07802 | Adobe After Effects越界写入漏洞(CNVD-2025-07802) | 2025-04-18 | 2025-04-22 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-276 | Multiples vulnérabilités dans Xen | 2014-06-19T00:00:00.000000 | 2014-06-19T00:00:00.000000 |
| certfr-2014-avi-275 | Vulnérabilité dans F5 BIG-IP | 2014-06-18T00:00:00.000000 | 2014-06-18T00:00:00.000000 |
| certfr-2014-avi-274 | Multiples vulnérabilités dans les produits VMware | 2014-06-16T00:00:00.000000 | 2014-06-16T00:00:00.000000 |
| certfr-2014-avi-273 | Multiples vulnérabilités dans Puppet | 2014-06-13T00:00:00.000000 | 2014-06-13T00:00:00.000000 |
| certfr-2014-avi-272 | Vulnérabilité dans Cisco IOS XR | 2014-06-13T00:00:00.000000 | 2014-06-13T00:00:00.000000 |
| certfr-2014-avi-271 | Multiples vulnérabilités dans les produits Juniper | 2014-06-13T00:00:00.000000 | 2014-06-13T00:00:00.000000 |
| certfr-2014-avi-270 | Multiples vulnérabilités dans les produits Mozilla | 2014-06-11T00:00:00.000000 | 2014-06-11T00:00:00.000000 |
| certfr-2014-avi-269 | Multiples vulnérabilités dans Adobe Flash Player | 2014-06-11T00:00:00.000000 | 2014-06-11T00:00:00.000000 |
| certfr-2014-avi-268 | Multiples vulnérabilités dans Google Chrome | 2014-06-11T00:00:00.000000 | 2014-06-11T00:00:00.000000 |
| certfr-2014-avi-267 | Multiples vulnérabilités dans le composant Microsoft Graphics | 2014-06-11T00:00:00.000000 | 2014-06-11T00:00:00.000000 |
| certfr-2014-avi-266 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2014-06-11T00:00:00.000000 | 2014-06-11T00:00:00.000000 |
| certfr-2014-avi-265 | Vulnérabilité dans Microsoft Word | 2014-06-11T00:00:00.000000 | 2014-06-11T00:00:00.000000 |
| certfr-2014-avi-264 | Vulnérabilité dans Microsoft XML Core Services | 2014-06-11T00:00:00.000000 | 2014-06-11T00:00:00.000000 |
| certfr-2014-avi-263 | Vulnérabilité dans Microsoft Lync Server | 2014-06-11T00:00:00.000000 | 2014-06-11T00:00:00.000000 |
| certfr-2014-avi-262 | Vulnérabilité dans le protocole TCP de Microsoft Windows | 2014-06-11T00:00:00.000000 | 2014-06-11T00:00:00.000000 |
| certfr-2014-avi-261 | Vulnérabilité dans le Bureau à distance de Microsoft Windows | 2014-06-11T00:00:00.000000 | 2014-06-11T00:00:00.000000 |
| certfr-2014-avi-260 | Multiples vulnérabilités dans Blue Coat | 2014-06-10T00:00:00.000000 | 2014-06-10T00:00:00.000000 |
| certfr-2014-avi-259 | Multiples vulnérabilités dans EMC Documentum Digital Asset Manager | 2014-06-06T00:00:00.000000 | 2014-06-06T00:00:00.000000 |
| certfr-2014-avi-258 | Vulnérabilité dans Xen | 2014-06-06T00:00:00.000000 | 2014-06-06T00:00:00.000000 |
| certfr-2014-avi-257 | Multiples vulnérabilités dans les produits Huawei | 2014-06-06T00:00:00.000000 | 2014-06-06T00:00:00.000000 |
| certfr-2014-avi-256 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2014-06-06T00:00:00.000000 | 2014-06-06T00:00:00.000000 |
| certfr-2014-avi-255 | Multiples vulnérabilités dans les produits Juniper | 2014-06-06T00:00:00.000000 | 2014-06-06T00:00:00.000000 |
| certfr-2014-avi-254 | Multiples vulnérabilités dans les produits Cisco | 2014-06-06T00:00:00.000000 | 2014-06-06T00:00:00.000000 |
| certfr-2014-avi-253 | Multiples vulnérabilités dans OpenSSL | 2014-06-05T00:00:00.000000 | 2014-06-05T00:00:00.000000 |
| certfr-2014-avi-252 | Vulnérabilité dans Red Hat JBoss | 2014-06-05T00:00:00.000000 | 2014-06-05T00:00:00.000000 |
| certfr-2014-avi-251 | Multiples vulnérabilités dans IBM Tivoli Monitoring | 2014-06-05T00:00:00.000000 | 2014-06-05T00:00:00.000000 |
| certfr-2014-avi-250 | Multiples vulnérabilités dans les produits F5 | 2014-06-04T00:00:00.000000 | 2014-06-04T00:00:00.000000 |
| certfr-2014-avi-249 | Multiples vulnérabilités dans les produits F5 | 2014-06-02T00:00:00.000000 | 2014-06-02T00:00:00.000000 |
| certfr-2014-avi-248 | Vulnérabilité dans GnuTLS | 2014-06-02T00:00:00.000000 | 2014-06-02T00:00:00.000000 |
| certfr-2014-avi-247 | Vulnérabilité dans les produits VMWare | 2014-05-30T00:00:00.000000 | 2014-05-30T00:00:00.000000 |