Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-53430 |
8.1 (3.1)
|
WordPress Etta theme <= 1.14.0 - Local File Inclusion … |
AncoraThemes |
Etta |
2025-12-18T07:21:45.581Z | 2026-01-20T14:28:09.469Z |
| CVE-2025-53429 |
8.1 (3.1)
|
WordPress Exit Game theme <= 1.4.3 - Local File Inclus… |
AncoraThemes |
Exit Game |
2025-12-18T07:21:45.401Z | 2026-01-20T14:28:09.431Z |
| CVE-2025-53432 |
8.1 (3.1)
|
WordPress Echo theme <= 1.15.0 - Local File Inclusion … |
AncoraThemes |
Echo |
2025-12-18T07:21:45.954Z | 2026-01-20T14:28:09.429Z |
| CVE-2025-53426 |
7.1 (3.1)
|
WordPress Likert Survey Master plugin <= 0.8.0.1 - Cro… |
Bob |
Likert Survey Master |
2025-10-22T14:32:33.768Z | 2026-01-20T14:28:09.406Z |
| CVE-2025-53423 |
7.1 (3.1)
|
WordPress Triss theme <= 2.6 - Cross Site Scripting (X… |
designthemes |
Triss |
2025-10-22T14:32:33.165Z | 2026-01-20T14:28:09.403Z |
| CVE-2025-53424 |
6.5 (3.1)
|
WordPress WooCommerce Orders & Customers Exporter plug… |
vanquish |
WooCommerce Orders & Customers Exporter |
2025-10-22T14:32:33.353Z | 2026-01-20T14:28:09.399Z |
| CVE-2025-53420 |
7.1 (3.1)
|
WordPress WPLMS plugin <= 1.9.9.8 - Cross Site Scripti… |
VibeThemes |
WPLMS |
2025-10-22T14:32:32.282Z | 2026-01-20T14:28:09.384Z |
| CVE-2025-53422 |
7.1 (3.1)
|
WordPress WhatsApp Chat for WordPress and WooCommerce … |
ThemeWarriors |
WhatsApp Chat for WordPress and WooCommerce |
2025-10-22T14:32:32.974Z | 2026-01-20T14:28:09.372Z |
| CVE-2025-53421 |
6.3 (3.1)
|
WordPress Accordion plugin <= 2.3.14 - Broken Access C… |
PickPlugins |
Accordion |
2025-10-22T14:32:32.545Z | 2026-01-20T14:28:09.372Z |
| CVE-2025-53425 |
7.6 (3.1)
|
WordPress Dokan plugin <= 4.1.2 - Privilege Escalation… |
Dokan, Inc. |
Dokan |
2025-10-22T14:32:33.573Z | 2026-01-20T14:28:09.366Z |
| CVE-2025-53344 |
4.3 (3.1)
|
WordPress Thim Core Plugin <= 2.3.3 - Cross Site Reque… |
ThimPress |
Thim Core |
2026-01-05T16:42:57.646Z | 2026-01-20T14:28:09.362Z |
| CVE-2025-53349 |
6.1 (3.1)
|
WordPress Kalium Theme <= 3.18.3 - Cross Site Scriptin… |
Laborator |
Kalium |
2025-11-06T15:54:06.581Z | 2026-01-20T14:28:09.341Z |
| CVE-2025-53351 |
7.1 (3.1)
|
WordPress Fidelo Snippet plugin <= 1.12 - Cross Site S… |
Fidelo Software GmbH |
Fidelo Snippet |
2025-10-22T14:32:31.652Z | 2026-01-20T14:28:09.337Z |
| CVE-2025-53352 |
7.1 (3.1)
|
WordPress Grid Plus plugin <= 3.3 - Cross Site Scripti… |
G5Theme |
Grid Plus |
2025-10-22T14:32:31.986Z | 2026-01-20T14:28:09.308Z |
| CVE-2025-53283 |
10 (3.1)
|
WordPress Drop Uploader for CF7 - Drag&Drop File Uploa… |
borisolhor |
Drop Uploader for CF7 - Drag&Drop File Uploader Addon |
2025-11-06T15:54:03.506Z | 2026-01-20T14:28:09.297Z |
| CVE-2025-53350 |
7.1 (3.1)
|
WordPress Calendar Plus plugin <= 1.2.4 - Cross Site S… |
webjunk |
Calendar Plus |
2025-10-22T14:32:31.360Z | 2026-01-20T14:28:09.295Z |
| CVE-2025-53316 |
8.8 (3.1)
|
WordPress WP GDPR Cookie Consent plugin <= 1.0.0 - Cro… |
Shahjahan Jewel |
WP GDPR Cookie Consent |
2025-11-06T15:54:04.995Z | 2026-01-20T14:28:09.287Z |
| CVE-2025-53324 |
5.4 (3.1)
|
WordPress Gutenify Plugin <= 1.5.7 - Cross Site Script… |
CodeYatri |
Gutenify |
2025-11-06T15:54:05.737Z | 2026-01-20T14:28:09.259Z |
| CVE-2025-53242 |
9.8 (3.1)
|
WordPress Seil Theme <= 1.7.1 - Deserialization of unt… |
VictorThemes |
Seil |
2025-11-06T15:53:58.962Z | 2026-01-20T14:28:09.204Z |
| CVE-2025-53235 |
7.1 (3.1)
|
WordPress Easy Social plugin <= 1.3 - Cross Site Scrip… |
osuthorpe |
Easy Social |
2025-12-31T20:11:25.669Z | 2026-01-20T14:28:09.199Z |
| CVE-2025-53297 |
7.1 (3.1)
|
WordPress Woocommerce Envato Affiliates plugin <= 1.2.… |
AA-Team |
Woocommerce Envato Affiliates |
2025-10-22T14:32:31.023Z | 2026-01-20T14:28:09.198Z |
| CVE-2025-53245 |
5.4 (3.1)
|
WordPress WP Logo Changer Plugin <= 1.2 - Cross Site S… |
Afzal Multani |
WP Logo Changer |
2025-11-06T15:53:59.391Z | 2026-01-20T14:28:09.187Z |
| CVE-2025-53238 |
7.1 (3.1)
|
WordPress Toast Mobile Menu plugin <= 1.0.7 - Cross Si… |
Toast Plugins |
Toast Mobile Menu |
2025-10-22T14:32:30.376Z | 2026-01-20T14:28:09.178Z |
| CVE-2025-53246 |
8.8 (3.1)
|
WordPress Backup and Move Plugin <= 0.1 - Broken Acces… |
Gaurav Aggarwal |
Backup and Move |
2025-11-06T15:53:59.915Z | 2026-01-20T14:28:09.176Z |
| CVE-2025-53286 |
6.1 (3.1)
|
WordPress Dropify Plugin <= 4.6.9 - Cross Site Scripti… |
Jhainey Milevis |
Dropify |
2025-11-06T15:54:04.283Z | 2026-01-20T14:28:09.165Z |
| CVE-2025-53214 |
9.1 (3.1)
|
WordPress Sertifier Certificate & Badge Maker plugin <… |
sertifier |
Sertifier Certificate & Badge Maker |
2025-11-06T15:53:58.037Z | 2026-01-20T14:28:09.163Z |
| CVE-2025-53252 |
9.8 (3.1)
|
WordPress Zegen Theme <= 1.1.9 - Local File Inclusion … |
zozothemes |
Zegen |
2025-11-06T15:54:02.680Z | 2026-01-20T14:28:09.155Z |
| CVE-2025-52753 |
7.1 (3.1)
|
WordPress Contact Form by Supsystic plugin <= 1.7.35 -… |
supsystic |
Contact Form by Supsystic |
2025-10-22T14:32:25.219Z | 2026-01-20T14:28:09.147Z |
| CVE-2025-53236 |
6.3 (3.1)
|
WordPress UDesign Core plugin <= 4.14.0 - Broken Acces… |
AndonDesign |
UDesign Core |
2025-10-22T14:32:29.996Z | 2026-01-20T14:28:09.128Z |
| CVE-2025-52764 |
6.1 (3.1)
|
WordPress flexoslider plugin <= 1.0004 - Cross Site Sc… |
marielav |
flexoslider |
2025-11-06T15:53:56.937Z | 2026-01-20T14:28:09.106Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-62891 |
8.8 (3.1)
|
WordPress Off-Canvas Sidebars & Menus (Slidebars) plug… |
Jory Hogeveen |
Off-Canvas Sidebars & Menus (Slidebars) |
2025-10-27T01:33:46.691Z | 2026-01-20T14:28:16.451Z |
| CVE-2025-62890 |
8.8 (3.1)
|
WordPress Premmerce Brands for WooCommerce plugin <= 1… |
Premmerce |
Premmerce Brands for WooCommerce |
2025-10-27T01:33:46.308Z | 2026-01-20T14:28:16.461Z |
| CVE-2025-62889 |
8.8 (3.1)
|
WordPress King Addons for Elementor plugin <= 51.1.37 … |
KingAddons.com |
King Addons for Elementor |
2025-10-27T01:33:45.909Z | 2026-01-20T14:28:16.379Z |
| CVE-2025-62888 |
5.4 (3.1)
|
WordPress WP Attachments plugin <= 5.2 - Broken Access… |
Marco Milesi |
WP Attachments |
2025-12-31T14:17:55.113Z | 2026-01-20T14:28:16.341Z |
| CVE-2025-62887 |
5.4 (3.1)
|
WordPress King Addons for Elementor plugin <= 51.1.37 … |
KingAddons.com |
King Addons for Elementor |
2025-10-27T01:33:45.420Z | 2026-01-20T14:28:16.351Z |
| CVE-2025-62886 |
8.8 (3.1)
|
WordPress Pricing Table builder plugin <= 1.5.1 - Cros… |
wpdevart |
Pricing Table builder |
2025-10-27T01:33:44.741Z | 2026-01-20T14:28:16.371Z |
| CVE-2025-62885 |
6.5 (3.1)
|
WordPress WP VR plugin <= 8.5.42 - Cross Site Scriptin… |
RexTheme |
WP VR |
2025-10-27T01:33:44.357Z | 2026-01-20T14:28:16.346Z |
| CVE-2025-62884 |
5.3 (3.1)
|
WordPress Coupon Affiliates plugin <= 7.0.3 - Broken A… |
Elliot Sowersby / RelyWP |
Coupon Affiliates |
2025-10-27T01:33:43.969Z | 2026-01-20T14:28:16.310Z |
| CVE-2025-62883 |
4.3 (3.1)
|
WordPress Premmerce User Roles plugin <= 1.0.13 - Brok… |
Premmerce |
Premmerce User Roles |
2025-10-27T01:33:43.581Z | 2026-01-20T14:28:16.387Z |
| CVE-2025-62882 |
4.3 (3.1)
|
WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-10-27T01:33:43.191Z | 2026-01-20T14:28:16.318Z |
| CVE-2025-62881 |
4.3 (3.1)
|
WordPress WP-Lister Lite for eBay plugin <= 3.8.3 - Br… |
WP Lab |
WP-Lister Lite for eBay |
2025-10-27T01:33:42.812Z | 2026-01-20T14:28:16.411Z |
| CVE-2025-62880 |
4.3 (3.1)
|
WordPress Custom 404 Pro plugin <= 3.12.0 - Cross Site… |
Kunal Nagar |
Custom 404 Pro |
2025-12-22T09:31:35.354Z | 2026-01-20T14:28:16.367Z |
| CVE-2025-62874 |
4.3 (3.1)
|
WordPress AnyComment plugin <= 0.3.6 - Broken Access C… |
Alexander |
AnyComment |
2025-12-31T16:42:24.180Z | 2026-01-20T14:28:16.295Z |
| CVE-2025-62873 |
4.3 (3.1)
|
WordPress WP Flashy Marketing Automation plugin <= 2.0… |
Flashyapp |
WP Flashy Marketing Automation |
2025-12-09T14:52:25.051Z | 2026-01-20T14:28:16.351Z |
| CVE-2025-62872 |
4.3 (3.1)
|
WordPress Social Photo Fetcher plugin <= 3.0.4 - Cross… |
JK |
Social Photo Fetcher |
2025-12-09T14:52:24.849Z | 2026-01-20T14:28:16.381Z |
| CVE-2025-62871 |
4.3 (3.1)
|
WordPress Just TinyMCE Custom Styles plugin <= 1.2.1 -… |
Alex Prokopenko / JustCoded |
Just TinyMCE Custom Styles |
2025-12-09T14:52:24.656Z | 2026-01-20T14:28:16.345Z |
| CVE-2025-62870 |
5.3 (3.1)
|
WordPress Eupago Gateway For Woocommerce plugin <= 4.6… |
Eupago |
Eupago Gateway For Woocommerce |
2025-12-09T14:52:24.458Z | 2026-01-20T14:28:16.371Z |
| CVE-2025-62869 |
4.3 (3.1)
|
WordPress Gravitec.net – Web Push Notifications plugin… |
Gravitec.net - Web Push Notifications |
Gravitec.net – Web Push Notifications |
2025-12-09T14:52:24.237Z | 2026-01-20T14:28:16.320Z |
| CVE-2025-62868 |
8.1 (3.1)
|
WordPress Edge CPT plugin <= 1.4 - Local File Inclusio… |
Edge-Themes |
Edge CPT |
2025-10-24T07:52:58.711Z | 2026-01-20T14:28:16.105Z |
| CVE-2025-62867 |
4.3 (3.1)
|
WordPress Ergonet Cache plugin <= 1.0.11 - Broken Acce… |
ergonet |
Ergonet Cache |
2025-12-09T14:52:24.049Z | 2026-01-20T14:28:16.163Z |
| CVE-2025-62866 |
4.3 (3.1)
|
WordPress Auto Alt Text plugin <= 2.5.2 - Cross Site R… |
Valerio Monti |
Auto Alt Text |
2025-12-09T14:52:23.816Z | 2026-01-20T14:28:16.114Z |
| CVE-2025-62865 |
5.3 (3.1)
|
WordPress Post Cloner plugin <= 1.0.0 - Broken Access … |
Evan Herman |
Post Cloner |
2025-12-09T14:52:23.580Z | 2026-01-20T14:28:16.107Z |
| CVE-2025-62762 |
4.3 (3.1)
|
WordPress SMTP Mail plugin <= 1.3.47 - Cross Site Requ… |
photoboxone |
SMTP Mail |
2025-12-09T14:52:23.375Z | 2026-01-20T14:28:16.035Z |
| CVE-2025-62761 |
6.5 (3.1)
|
WordPress Knowledge Base documentation & wiki plugin –… |
BasePress |
Knowledge Base documentation & wiki plugin – BasePress |
2025-12-31T08:44:22.540Z | 2026-01-20T14:28:16.034Z |
| CVE-2025-62760 |
6.5 (3.1)
|
WordPress BuddyPress Activity Shortcode plugin <= 1.1.… |
BuddyDev |
BuddyPress Activity Shortcode |
2025-12-31T08:52:04.460Z | 2026-01-20T14:28:16.033Z |
| CVE-2025-62759 |
6.5 (3.1)
|
WordPress Series plugin <= 2.0.1 - Cross Site Scriptin… |
Justin Tadlock |
Series |
2025-12-31T08:53:31.863Z | 2026-01-20T14:28:16.035Z |
| CVE-2025-62758 |
6.5 (3.1)
|
WordPress Funnelforms Free plugin <= 3.8 - Cross Site … |
Funnelforms |
Funnelforms Free |
2025-12-31T08:55:12.187Z | 2026-01-20T14:28:16.036Z |
| CVE-2025-62757 |
6.5 (3.1)
|
WordPress WebMan Amplifier plugin <= 1.5.12 - Cross Si… |
WebMan Design | Oliver Juhas |
WebMan Amplifier |
2025-12-31T11:53:12.910Z | 2026-01-20T14:28:16.035Z |
| CVE-2025-62756 |
6.5 (3.1)
|
WordPress The Moneytizer plugin <= 10.0.6 - Cross Site… |
lvaudore |
The Moneytizer |
2025-12-31T11:54:40.487Z | 2026-01-20T14:28:16.033Z |
| CVE-2025-62755 |
5.3 (3.1)
|
WordPress GS Portfolio for Envato plugin <= 1.4.2 - Br… |
GS Plugins |
GS Portfolio for Envato |
2025-12-31T15:22:00.836Z | 2026-01-20T14:28:16.089Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-62109 | Insertion of Sensitive Information Into Sent Data vulnerability in INFINITUM FORM Geo Controller cf… | 2025-12-09T16:18:01.320 | 2026-01-20T15:17:51.757 |
| fkie_cve-2025-62108 | Missing Authorization vulnerability in SaifuMak Add Custom Codes allows Exploiting Incorrectly Conf… | 2025-12-31T15:15:52.580 | 2026-01-20T15:17:51.650 |
| fkie_cve-2025-62107 | Cross-Site Request Forgery (CSRF) vulnerability in PluginOps Feather Login Page allows Cross Site R… | 2025-12-22T10:16:00.873 | 2026-01-20T15:17:51.553 |
| fkie_cve-2025-62103 | Cross-Site Request Forgery (CSRF) vulnerability in wpmediadownload Media Library File Download medi… | 2025-12-09T16:18:01.187 | 2026-01-20T15:17:51.420 |
| fkie_cve-2025-62102 | Cross-Site Request Forgery (CSRF) vulnerability in apasionados DoFollow Case by Case dofollow-case-… | 2025-12-09T16:18:01.053 | 2026-01-20T15:17:51.287 |
| fkie_cve-2025-62101 | Cross-Site Request Forgery (CSRF) vulnerability in Omid Shamloo Pardakht Delkhah allows Cross Site … | 2025-12-31T17:15:45.970 | 2026-01-20T15:17:51.187 |
| fkie_cve-2025-62100 | Missing Authorization vulnerability in themerain ThemeRain Core themerain-core allows Exploiting In… | 2025-12-09T16:18:00.913 | 2026-01-20T15:17:51.050 |
| fkie_cve-2025-62099 | Missing Authorization vulnerability in Approveme Signature Add-On for Gravity Forms allows Exploiti… | 2025-12-31T17:15:45.820 | 2026-01-20T15:17:50.943 |
| fkie_cve-2025-62098 | Missing Authorization vulnerability in Totalsoft Portfolio Gallery allows Exploiting Incorrectly Co… | 2025-12-31T15:15:52.450 | 2026-01-20T15:17:50.837 |
| fkie_cve-2025-62097 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T14:15:52.240 | 2026-01-20T15:17:50.737 |
| fkie_cve-2025-62096 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T14:15:52.093 | 2026-01-20T15:17:50.637 |
| fkie_cve-2025-62095 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T14:15:51.943 | 2026-01-20T15:17:50.523 |
| fkie_cve-2025-62094 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-22T10:16:00.673 | 2026-01-20T15:17:50.423 |
| fkie_cve-2025-62093 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-09T16:18:00.783 | 2026-01-20T15:17:50.290 |
| fkie_cve-2025-62092 | Missing Authorization vulnerability in Wiremo allows Exploiting Incorrectly Configured Access Contr… | 2025-12-31T16:15:44.567 | 2026-01-20T15:17:50.190 |
| fkie_cve-2025-62091 | Missing Authorization vulnerability in Vollstart Serial Codes Generator and Validator with WooComme… | 2025-12-31T15:15:52.300 | 2026-01-20T15:17:50.090 |
| fkie_cve-2025-62090 | Missing Authorization vulnerability in Jegstudio Gutenverse News – Advanced News Magazine Blog Gute… | 2025-12-09T16:18:00.643 | 2026-01-20T15:17:49.960 |
| fkie_cve-2025-62089 | Cross-Site Request Forgery (CSRF) vulnerability in MERGADO Mergado Pack allows Cross Site Request F… | 2025-12-31T16:15:44.423 | 2026-01-20T15:17:49.863 |
| fkie_cve-2025-62088 | Server-Side Request Forgery (SSRF) vulnerability in extendons WordPress & WooCommerce Scraper Plugi… | 2025-12-31T17:15:45.577 | 2026-01-20T15:17:49.770 |
| fkie_cve-2025-62087 | Missing Authorization vulnerability in Web Builder 143 Sticky Notes for WP Dashboard allows Exploit… | 2025-12-31T16:15:44.280 | 2026-01-20T15:17:49.673 |
| fkie_cve-2025-62086 | Missing Authorization vulnerability in akazanstev Яндекс Доставка (Boxberry) boxberry allows Exploi… | 2025-12-09T16:18:00.503 | 2026-01-20T15:17:49.547 |
| fkie_cve-2025-62085 | Missing Authorization vulnerability in berthaai BERTHA AI bertha-ai-free allows Exploiting Incorrec… | 2025-12-09T16:18:00.360 | 2026-01-20T15:17:49.417 |
| fkie_cve-2025-62084 | Cross-Site Request Forgery (CSRF) vulnerability in Imdad Next Web iNext Woo Pincode Checker allows … | 2025-12-31T16:15:44.130 | 2026-01-20T15:17:49.317 |
| fkie_cve-2025-62083 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WP Mess… | 2025-12-31T17:15:45.327 | 2026-01-20T15:17:49.220 |
| fkie_cve-2025-62082 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:00.217 | 2026-01-20T15:17:49.090 |
| fkie_cve-2025-62081 | Missing Authorization vulnerability in Channelize.Io Team Live Shopping & Shoppable Videos For WooC… | 2025-12-31T15:15:52.143 | 2026-01-20T15:17:48.993 |
| fkie_cve-2025-62080 | Cross-Site Request Forgery (CSRF) vulnerability in Channelize.Io Team Live Shopping & Shoppable Vid… | 2025-12-31T16:15:43.983 | 2026-01-20T15:17:48.890 |
| fkie_cve-2025-62079 | Missing Authorization vulnerability in Damian WP Export Categories & Taxonomies allows Exploiting I… | 2025-12-31T16:15:43.837 | 2026-01-20T15:17:48.790 |
| fkie_cve-2025-62078 | Missing Authorization vulnerability in Fahad Mahmood Easy Upload Files During Checkout allows Explo… | 2025-12-31T17:15:45.073 | 2026-01-20T15:17:48.690 |
| fkie_cve-2025-62076 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:13.243 | 2026-01-20T15:17:48.547 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-p54q-9gfq-fvp4 |
3.1 (3.1)
|
Out-of-bounds Read vulnerability in Apache NimBLE HCI H4 driver. Specially crafted HCI event could… | 2026-01-10T12:30:15Z | 2026-01-12T21:30:34Z |
| ghsa-g579-x2p7-hjfv |
5.4 (3.1)
|
Cross Site Scripting vulnerability in 66biolinks by AltumCode v.61.0.1 allows an attacker to execut… | 2026-01-12T18:30:30Z | 2026-01-12T21:30:34Z |
| ghsa-9g5v-hmcj-pxrc |
10.0 (3.1)
|
A static password reset token in the password reset function of DDSN Interactive Acora CMS v10.7.1 … | 2026-01-12T18:30:30Z | 2026-01-12T21:30:34Z |
| ghsa-7v52-p3w5-3m2m |
8.2 (3.1)
|
Incorrect access control in the /member/orderList API of xmall v1.1 allows attackers to arbitrarily… | 2026-01-12T21:30:34Z | 2026-01-12T21:30:34Z |
| ghsa-5c5p-g26h-xx2f |
7.5 (3.1)
|
J2EE Misconfiguration: Data Transmission Without Encryption vulnerability in Apache NimBLE. Improp… | 2026-01-10T12:30:15Z | 2026-01-12T21:30:34Z |
| ghsa-577g-w45q-4pwf |
6.5 (3.1)
|
A path traversal vulnerability exists in Zen MCP Server before 9.8.2 that allows authenticated atta… | 2026-01-12T18:30:30Z | 2026-01-12T21:30:34Z |
| ghsa-hgq8-fc97-42ff |
7.5 (3.1)
|
Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manage… | 2022-05-17T04:06:30Z | 2026-01-12T21:30:28Z |
| ghsa-2j56-f322-jxrm |
5.9 (3.1)
|
Cisco IOS XR 3.4.0 through 3.8.1 allows remote attackers to cause a denial of service (session rese… | 2022-05-02T03:31:14Z | 2026-01-12T21:30:28Z |
| ghsa-g24c-fx4v-xg9w |
5.3 (3.1)
|
Mattermost Server has Insufficient Session Expiration when used as an OAuth 2.0 service provider | 2022-05-24T17:21:06Z | 2026-01-12T20:18:44Z |
| ghsa-8pff-p3gx-w4jf |
6.1 (3.1)
|
Mattermost Server vulnerable to XSS via an uploaded file | 2022-05-24T17:21:06Z | 2026-01-12T20:18:18Z |
| ghsa-fcwg-45jh-5qhf |
8.8 (3.1)
|
Mattermost Server vulnerable to CSRF if CORS is enabled | 2022-05-24T17:21:06Z | 2026-01-12T20:17:23Z |
| ghsa-c253-8hr4-r8v9 |
5.3 (3.1)
|
Mattermost Server exposes private team invite ID | 2022-05-24T17:21:06Z | 2026-01-12T20:16:26Z |
| ghsa-8q4v-35v6-g8wr |
9.8 (3.1)
|
Mattermost Server is vulnerable CSV Injection | 2022-05-24T17:21:06Z | 2026-01-12T20:15:53Z |
| ghsa-9rp8-h4g8-8766 |
5.3 (3.1)
|
Weblate wlc has insecure API key configuration | 2026-01-12T18:07:03Z | 2026-01-12T20:07:26Z |
| ghsa-2mmv-7rrp-g8xh |
2.5 (3.1)
|
Weblate command-line client susceptible to SSL verification skip | 2026-01-12T16:13:33Z | 2026-01-12T20:07:14Z |
| ghsa-2mq9-hm29-8qch |
8.6 (4.0)
|
Label Studio is vulnerable to full account takeover by chaining Stored XSS + IDOR in User Profile v… | 2026-01-12T16:12:50Z | 2026-01-12T20:06:35Z |
| ghsa-ch7p-mpv4-4vg4 |
4.9 (3.1)
|
CoreShop Vulnerable to SQL Injection via Admin Reports | 2026-01-07T19:29:50Z | 2026-01-12T20:06:21Z |
| ghsa-9589-mq83-f749 |
5.3 (3.1)
|
Mattermost Server is vulnerable to DoS through maliciously crafted posts | 2022-05-24T17:21:05Z | 2026-01-12T19:29:16Z |
| ghsa-63wg-qmrv-7q66 |
5.3 (3.1)
|
Mattermost Server allows attackers to log sensitive information via DEBUG REST API logging endpoint | 2022-05-24T17:21:05Z | 2026-01-12T19:28:48Z |
| ghsa-f7c3-7vp3-44p6 |
6.1 (3.1)
|
Mattermost Server mishandles redirect denial action | 2022-05-24T17:21:05Z | 2026-01-12T19:27:05Z |
| ghsa-p25m-jpj4-qcrr |
7.5 (3.1)
|
Denial of Service Vulnerability in gRPC TCP Server (Posix-compatible platforms) | 2023-09-13T18:31:26Z | 2026-01-12T19:17:00Z |
| ghsa-9c3x-r3wp-mgxm |
3.1 (3.1)
2.3 (4.0)
|
Symfony allows internal address and port enumeration by NoPrivateNetworkHttpClient | 2024-11-06T15:16:09Z | 2026-01-12T19:08:03Z |
| ghsa-gg42-mwr6-p82c |
8.1 (3.1)
|
Mattermost Server has intermittent Authorization bypass for resource-owners | 2022-05-24T17:21:05Z | 2026-01-12T18:34:33Z |
| ghsa-rv23-6fx7-9r87 |
9.9 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to escalate privileges | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-mp53-vxqr-3f76 |
9.8 (3.1)
|
An issue in Automai BotManager v.25.2.0 allows a remote attacker to execute arbitrary code via the … | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-m3m3-pp28-9hrp |
4.8 (3.1)
|
The Quiz Maker WordPress plugin before 6.7.0.89 does not sanitise and escape some of its settings, … | 2026-01-12T06:30:14Z | 2026-01-12T18:30:30Z |
| ghsa-f3vq-4x38-vg3x |
5.5 (3.1)
|
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe … | 2026-01-10T00:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-f2cj-whwv-wjfw |
6.5 (3.1)
|
The issue was addressed with improved memory handling. This issue is fixed in tvOS 26.2, Safari 26.… | 2026-01-10T00:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-c87m-hx3f-42wq |
5.3 (3.1)
|
Quest KACE Desktop Authority through 11.3.1 has Insecure Permissions on the Named Pipes used for in… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-8mfp-xmv3-hv35 |
8.1 (3.1)
|
Authentication Bypass by Spoofing vulnerability in Apache NimBLE. Receiving specially crafted Secu… | 2026-01-10T12:30:15Z | 2026-01-12T18:30:30Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-27425 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.829683Z |
| gsd-2024-27441 | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate w… | 2024-02-26T06:02:26.828721Z |
| gsd-2024-27435 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.827047Z |
| gsd-2024-27405 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.826740Z |
| gsd-2024-27361 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.825416Z |
| gsd-2024-27409 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.823420Z |
| gsd-2024-27406 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.822868Z |
| gsd-2024-27382 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.820933Z |
| gsd-2024-27376 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.819583Z |
| gsd-2024-27404 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.818685Z |
| gsd-2024-27375 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.817661Z |
| gsd-2024-27414 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.817137Z |
| gsd-2024-27416 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.812493Z |
| gsd-2024-27421 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.811444Z |
| gsd-2024-27389 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.808706Z |
| gsd-2024-27419 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.807701Z |
| gsd-2024-27391 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.805825Z |
| gsd-2024-27396 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.804919Z |
| gsd-2024-27411 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.803102Z |
| gsd-2024-27393 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.802808Z |
| gsd-2024-27431 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.801964Z |
| gsd-2024-27436 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.800875Z |
| gsd-2024-27399 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.799507Z |
| gsd-2024-27356 | An issue was discovered on certain GL-iNet devices. Attackers can download files such as … | 2024-02-26T06:02:26.798913Z |
| gsd-2024-27385 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.798435Z |
| gsd-2024-27373 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.797352Z |
| gsd-2024-27437 | In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Disable au… | 2024-02-26T06:02:26.796796Z |
| gsd-2024-27412 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.795232Z |
| gsd-2024-27388 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.792540Z |
| gsd-2024-27387 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.791314Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-186195 | Malicious code in code-report-cold-iota-root (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186194 | Malicious code in code-interpret-finally-decode-cold (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186193 | Malicious code in code-code-old-reject-cat (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186192 | Malicious code in cluster-wind-fork-view-monitor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186191 | Malicious code in cluster-wind-decode-sigma-web (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186190 | Malicious code in cluster-wavefunction-subduction-transhumanism (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186189 | Malicious code in cluster-volcanology-eslint-plugin-singularity (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186188 | Malicious code in cluster-tool-quasarjet-meteor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186187 | Malicious code in cluster-steganography-slides-entanglement (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186186 | Malicious code in cluster-sirius-promise-neutrino (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186185 | Malicious code in cluster-simple-encrypt-cloud-balance (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186184 | Malicious code in cluster-sanitize-resolve-omega-encrypt (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186183 | Malicious code in cluster-protected-resolve-cloud-refactor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186182 | Malicious code in cluster-norma-solarnebula-outercore (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186181 | Malicious code in cluster-magnetar-leda-scorpius (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186180 | Malicious code in cluster-decompress-double-encode-quick (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186179 | Malicious code in cluster-cosmochemistry-helmet-xenon (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186178 | Malicious code in cluster-concurrently-wolf-astrometry (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186177 | Malicious code in cluster-child-process-remark-hadron (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186176 | Malicious code in cloud-water-old-moon-wind (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186175 | Malicious code in cloud-user-static-promise-stub (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186174 | Malicious code in cloud-star-parse-fork-sandbox (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186173 | Malicious code in cloud-fire-grid-kernel-cron (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186172 | Malicious code in cloud-class-stack-xml-runtime (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186171 | Malicious code in cloud-analyze-spy-thread-object (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186170 | Malicious code in cli-webdriver-manager-lint-staged-auth (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186169 | Malicious code in cli-protractor-sqlite-library (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186168 | Malicious code in cli-module-publish-firebase (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186167 | Malicious code in cli-mdx-galaxy-xenobiology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186166 | Malicious code in cli-holography-bunyan-telesto (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-0806 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-03-30T22:00:00.000+00:00 | 2023-03-30T22:00:00.000+00:00 |
| wid-sec-w-2023-0804 | Apple iOS und iPadOS: Mehrere Schwachstellen | 2021-10-26T22:00:00.000+00:00 | 2023-03-30T22:00:00.000+00:00 |
| wid-sec-w-2023-0786 | Irfan Skiljan IrfanView: Schwachstelle ermöglicht Codeausführung | 2023-03-28T22:00:00.000+00:00 | 2023-03-30T22:00:00.000+00:00 |
| wid-sec-w-2022-1224 | Google Chrome: Mehrere Schwachstellen | 2022-08-30T22:00:00.000+00:00 | 2023-03-30T22:00:00.000+00:00 |
| wid-sec-w-2022-0818 | Irfan Skiljan IrfanView: Schwachstelle ermöglicht Denial of Service | 2022-07-24T22:00:00.000+00:00 | 2023-03-30T22:00:00.000+00:00 |
| wid-sec-w-2023-0802 | Corel CorelDraw Graphic Suite: Mehrere Schwachstellen | 2023-03-29T22:00:00.000+00:00 | 2023-03-29T22:00:00.000+00:00 |
| wid-sec-w-2023-0801 | D-LINK Router: Schwachstelle ermöglicht Codeausführung | 2023-03-29T22:00:00.000+00:00 | 2023-03-29T22:00:00.000+00:00 |
| wid-sec-w-2023-0800 | JetBrains IntelliJ IDEA: Mehrere Schwachstellen | 2023-03-29T22:00:00.000+00:00 | 2023-03-29T22:00:00.000+00:00 |
| wid-sec-w-2023-0799 | Drupal: Schwachstelle ermöglicht Cross-Site Scripting | 2023-03-29T22:00:00.000+00:00 | 2023-03-29T22:00:00.000+00:00 |
| wid-sec-w-2023-0798 | ILIAS: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2023-03-29T22:00:00.000+00:00 | 2023-03-29T22:00:00.000+00:00 |
| wid-sec-w-2023-0795 | Hashicorp Vault: Mehrere Schwachstellen | 2023-03-29T22:00:00.000+00:00 | 2023-03-29T22:00:00.000+00:00 |
| wid-sec-w-2023-0785 | QNAP NAS: Mehrere Schwachstellen | 2023-03-28T22:00:00.000+00:00 | 2023-03-29T22:00:00.000+00:00 |
| wid-sec-w-2022-0659 | VMware ESXi: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2022-07-12T22:00:00.000+00:00 | 2023-03-29T22:00:00.000+00:00 |
| wid-sec-w-2023-0790 | IBM Maximo Asset Management: Mehrere Schwachstellen | 2023-03-28T22:00:00.000+00:00 | 2023-03-28T22:00:00.000+00:00 |
| wid-sec-w-2023-0681 | Netgate pfSense: Schwachstelle ermöglicht Codeausführung | 2023-03-19T23:00:00.000+00:00 | 2023-03-28T22:00:00.000+00:00 |
| wid-sec-w-2023-0781 | Heimdal: Schwachstelle ermöglicht Denial of Service | 2023-03-27T22:00:00.000+00:00 | 2023-03-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0779 | HP DesignJet und PageWide XL: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-03-27T22:00:00.000+00:00 | 2023-03-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0773 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-03-27T22:00:00.000+00:00 | 2023-03-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0769 | GraphicsMagick: Schwachstelle ermöglicht Denial of Service | 2018-01-14T23:00:00.000+00:00 | 2023-03-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0768 | GraphicsMagick: Schwachstelle ermöglicht Denial of Service | 2018-03-25T22:00:00.000+00:00 | 2023-03-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0767 | GraphicsMagick: Mehrere Schwachstellen ermöglichen Denial of Service | 2018-12-17T23:00:00.000+00:00 | 2023-03-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0766 | GraphicsMagick: Mehrere Schwachstellen | 2019-04-08T22:00:00.000+00:00 | 2023-03-27T22:00:00.000+00:00 |
| wid-sec-w-2022-2109 | Red Hat Satellite: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-11-17T23:00:00.000+00:00 | 2023-03-27T22:00:00.000+00:00 |
| wid-sec-w-2022-1905 | Red Hat Satellite: Mehrere Schwachstellen | 2022-10-30T23:00:00.000+00:00 | 2023-03-27T22:00:00.000+00:00 |
| wid-sec-w-2022-1571 | GraphicsMagick: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten | 2020-05-05T22:00:00.000+00:00 | 2023-03-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0762 | Microsoft Snipping Tool: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-03-26T22:00:00.000+00:00 | 2023-03-26T22:00:00.000+00:00 |
| wid-sec-w-2023-0759 | IBM Produkte: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-03-26T22:00:00.000+00:00 | 2023-03-26T22:00:00.000+00:00 |
| wid-sec-w-2023-0758 | MISP: Schwachstelle ermöglicht Cross-Site Scripting | 2023-03-26T22:00:00.000+00:00 | 2023-03-26T22:00:00.000+00:00 |
| wid-sec-w-2023-0757 | IBM Maximo Asset Management: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2023-03-26T22:00:00.000+00:00 | 2023-03-26T22:00:00.000+00:00 |
| wid-sec-w-2023-0754 | Apache Tomcat: Mehrere Schwachstellen | 2014-06-10T22:00:00.000+00:00 | 2023-03-26T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:9077 | Red Hat Security Advisory: firefox security update | 2025-06-16T05:31:18+00:00 | 2025-11-21T19:37:19+00:00 |
| rhsa-2025:9076 | Red Hat Security Advisory: firefox security update | 2025-06-16T05:28:52+00:00 | 2025-11-21T19:37:18+00:00 |
| rhsa-2025:9071 | Red Hat Security Advisory: firefox security update | 2025-06-16T05:32:12+00:00 | 2025-11-21T19:37:18+00:00 |
| rhsa-2025:9075 | Red Hat Security Advisory: firefox security update | 2025-06-16T05:24:57+00:00 | 2025-11-21T19:37:17+00:00 |
| rhsa-2025:9074 | Red Hat Security Advisory: firefox security update | 2025-06-16T05:30:43+00:00 | 2025-11-21T19:37:17+00:00 |
| rhsa-2025:9073 | Red Hat Security Advisory: firefox security update | 2025-06-16T05:30:40+00:00 | 2025-11-21T19:37:17+00:00 |
| rhsa-2025:9072 | Red Hat Security Advisory: firefox security update | 2025-06-16T05:35:03+00:00 | 2025-11-21T19:37:17+00:00 |
| rhsa-2025:9068 | Red Hat Security Advisory: kpatch-patch-5_14_0-570_17_1 security update | 2025-06-16T01:52:52+00:00 | 2025-11-21T19:37:17+00:00 |
| rhsa-2025:9056 | Red Hat Security Advisory: gstreamer1-plugins-bad-free security update | 2025-06-13T05:27:20+00:00 | 2025-11-21T19:37:15+00:00 |
| rhsa-2025:9022 | Red Hat Security Advisory: Satellite 6.17.1 Async Update | 2025-06-12T14:51:03+00:00 | 2025-11-21T19:37:13+00:00 |
| rhsa-2025:8981 | Red Hat Security Advisory: gstreamer1-plugins-bad-free security update | 2025-06-12T06:09:57+00:00 | 2025-11-21T19:37:13+00:00 |
| rhsa-2025:8980 | Red Hat Security Advisory: gstreamer1-plugins-bad-free security update | 2025-06-12T06:10:18+00:00 | 2025-11-21T19:37:12+00:00 |
| rhsa-2025:8979 | Red Hat Security Advisory: gstreamer1-plugins-bad-free security update | 2025-06-12T06:14:17+00:00 | 2025-11-21T19:37:11+00:00 |
| rhsa-2025:8978 | Red Hat Security Advisory: gstreamer1-plugins-bad-free security update | 2025-06-12T06:07:47+00:00 | 2025-11-21T19:37:11+00:00 |
| rhsa-2025:8977 | Red Hat Security Advisory: gstreamer1-plugins-bad-free security update | 2025-06-12T06:10:23+00:00 | 2025-11-21T19:37:11+00:00 |
| rhsa-2025:8976 | Red Hat Security Advisory: gstreamer1-plugins-bad-free security update | 2025-06-12T06:09:27+00:00 | 2025-11-21T19:37:11+00:00 |
| rhsa-2025:8937 | Red Hat Security Advisory: mod_security security update | 2025-06-11T21:36:16+00:00 | 2025-11-21T19:37:10+00:00 |
| rhsa-2025:8922 | Red Hat Security Advisory: mod_security security update | 2025-06-11T16:01:05+00:00 | 2025-11-21T19:37:10+00:00 |
| rhsa-2025:8917 | Red Hat Security Advisory: mod_security security update | 2025-06-11T16:05:02+00:00 | 2025-11-21T19:37:09+00:00 |
| rhsa-2025:8902 | Red Hat Security Advisory: nodejs:20 security update | 2025-06-11T14:07:45+00:00 | 2025-11-21T19:37:09+00:00 |
| rhsa-2025:8844 | Red Hat Security Advisory: mod_security security update | 2025-06-11T10:54:10+00:00 | 2025-11-21T19:37:08+00:00 |
| rhsa-2025:8837 | Red Hat Security Advisory: mod_security security update | 2025-06-11T10:57:35+00:00 | 2025-11-21T19:37:08+00:00 |
| rhsa-2025:8807 | Red Hat Security Advisory: firefox security update | 2025-06-11T04:02:21+00:00 | 2025-11-21T19:37:05+00:00 |
| rhsa-2025:8744 | Red Hat Security Advisory: kernel-rt security update | 2025-06-10T16:52:39+00:00 | 2025-11-21T19:37:03+00:00 |
| rhsa-2025:8743 | Red Hat Security Advisory: kernel security update | 2025-06-10T16:52:41+00:00 | 2025-11-21T19:37:02+00:00 |
| rhsa-2025:8690 | Red Hat Security Advisory: Red Hat build of Keycloak 26.2.5 Security Update | 2025-06-09T13:57:15+00:00 | 2025-11-21T19:36:58+00:00 |
| rhsa-2025:8684 | Red Hat Security Advisory: grafana security update | 2025-06-09T13:29:24+00:00 | 2025-11-21T19:36:57+00:00 |
| rhsa-2025:8674 | Red Hat Security Advisory: mod_security security update | 2025-06-09T13:54:14+00:00 | 2025-11-21T19:36:57+00:00 |
| rhsa-2025:8683 | Red Hat Security Advisory: grafana security update | 2025-06-09T13:59:19+00:00 | 2025-11-21T19:36:56+00:00 |
| rhsa-2025:8681 | Red Hat Security Advisory: grafana security update | 2025-06-09T13:59:24+00:00 | 2025-11-21T19:36:55+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-23406 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23405 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23404 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23403 | Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23402 | Windows Media Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23401 | Windows Media Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23400 | Windows DNS Server Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23399 | Microsoft Excel Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23395 | Microsoft SharePoint Server Spoofing Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23394 | Client Server Run-Time Subsystem (CSRSS) Information Disclosure Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23393 | Windows BrokerInfrastructure Service Elevation of Privilege Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23392 | HTTP Protocol Stack Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23391 | Office for Android Spoofing Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23388 | Windows Bluetooth Driver Elevation of Privilege Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-23385 | Windows Point-to-Point Protocol over Ethernet (PPPoE) Elevation of Privilege Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-21708 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | 2023-03-14T07:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2022-23257 | Windows Hyper-V Remote Code Execution Vulnerability | 2022-04-12T08:00:00.000Z | 2023-03-14T07:00:00.000Z |
| msrc_cve-2023-27986 | emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to Emacs Lisp code injections through a crafted mailto: URI with unescaped double-quote characters. It is fixed in 29.0.90. | 2023-03-10T00:00:00.000Z | 2023-03-14T00:00:00.000Z |
| msrc_cve-2023-27522 | Apache HTTP Server: mod_proxy_uwsgi HTTP response splitting | 2023-03-10T00:00:00.000Z | 2023-03-14T00:00:00.000Z |
| msrc_cve-2023-23004 | In the Linux kernel before 5.19 drivers/gpu/drm/arm/malidp_planes.c misinterprets the get_sg_table return value (expects it to be NULL in the error case whereas it is actually an error pointer). | 2023-03-10T00:00:00.000Z | 2023-03-14T00:00:00.000Z |
| msrc_cve-2023-23002 | In the Linux kernel before 5.16.3 drivers/bluetooth/hci_qca.c misinterprets the devm_gpiod_get_index_optional return value (expects it to be NULL in the error case whereas it is actually an error pointer). | 2023-03-10T00:00:00.000Z | 2023-03-14T00:00:00.000Z |
| msrc_cve-2023-23001 | In the Linux kernel before 5.16.3 drivers/scsi/ufs/ufs-mediatek.c misinterprets the regulator_get return value (expects it to be NULL in the error case whereas it is actually an error pointer). | 2023-03-10T00:00:00.000Z | 2023-03-14T00:00:00.000Z |
| msrc_cve-2023-27985 | emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification. It is fixed in 29.0.90 | 2023-03-10T00:00:00.000Z | 2023-03-13T00:00:00.000Z |
| msrc_cve-2023-26545 | In the Linux kernel before 6.1.13 there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sysctl table under a new location) during the renaming of a device. | 2023-02-01T00:00:00.000Z | 2023-03-13T00:00:00.000Z |
| msrc_cve-2023-1170 | Heap-based Buffer Overflow in vim/vim | 2023-03-10T00:00:00.000Z | 2023-03-11T00:00:00.000Z |
| msrc_cve-2023-27371 | GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the postprocessor.c MHD_create_post_processor() method. This allows an attacker to remotely send a malicious HTTP POST packet that includes one or more '\0' bytes in a multipart/form-data boundary field which - assuming a specific heap layout - will result in an out-of-bounds read and a crash in the find_boundary() function. | 2023-02-01T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2023-25155 | Integer Overflow in several Redis commands can lead to denial of service. | 2023-03-10T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2023-1175 | Incorrect Calculation of Buffer Size in vim/vim | 2023-03-10T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2023-1127 | Divide By Zero in vim/vim | 2023-03-10T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2023-1118 | A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user could use this flaw to crash the system or potentially escalate their privileges on the system. | 2023-03-10T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201609-0356 | Directory traversal vulnerability in the web interface in Cisco Hosted Collaboration Medi… | 2025-04-13T23:41:57.192000Z |
| var-201610-0278 | Cross-site request forgery (CSRF) vulnerability in Cisco Unified Intelligence Center (CUI… | 2025-04-13T23:41:56.954000Z |
| var-201610-0368 | Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 3000, 3500, 5000, 5500, … | 2025-04-13T23:41:56.816000Z |
| var-201611-0149 | During an internal security review, Lenovo identified a local privilege escalation vulner… | 2025-04-13T23:41:56.635000Z |
| var-201611-0170 | A vulnerability in the HTTP web-based management interface of the Cisco Adaptive Security… | 2025-04-13T23:41:56.604000Z |
| var-201612-0482 | A vulnerability in Cisco IOS XR Software could allow an authenticated, local attacker to … | 2025-04-13T23:41:56.424000Z |
| var-201404-0030 | Cisco IOS before 15.1(1)SY1 allows remote authenticated users to cause a denial of servic… | 2025-04-13T23:41:29.561000Z |
| var-201404-0302 | An unspecified J2EE core service in the J2EE Engine in SAP NetWeaver does not properly re… | 2025-04-13T23:41:29.333000Z |
| var-201404-0569 | Cross-site scripting (XSS) vulnerability in the Web Inbox in Cisco Unity Connection 8.6(2… | 2025-04-13T23:41:29.251000Z |
| var-201404-0632 | Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 10.0S25, 10.4 b… | 2025-04-13T23:41:29.185000Z |
| var-201405-0018 | Axway Secure Messenger before 6.5 Updated Release 7, as used in Axway Email Firewall, pro… | 2025-04-13T23:41:29.119000Z |
| var-201406-0213 | The System Landscape Directory (SLD) in SAP NetWeaver allows remote attackers to modify i… | 2025-04-13T23:41:28.584000Z |
| var-201407-0386 | Directory traversal vulnerability in Cisco Unified Contact Center Enterprise allows remot… | 2025-04-13T23:41:28.279000Z |
| var-201407-0407 | Multiple cross-site scripting (XSS) vulnerabilities in the XS Administration Tools in SAP… | 2025-04-13T23:41:28.241000Z |
| var-201408-0170 | Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not properly impleme… | 2025-04-13T23:41:28.020000Z |
| var-201410-0970 | Juniper Junos 11.4 before R12-S4, 12.1X44 before D35, 12.1X45 before D30, 12.1X46 before … | 2025-04-13T23:41:27.535000Z |
| var-201410-0991 | Cisco IOS 15.4(3)S0b on ASR901 devices makes incorrect decisions to use the CPU for IPv4 … | 2025-04-13T23:41:27.494000Z |
| var-201410-1415 | The NcrCtl4.NcrNet.1 control in Panasonic Network Camera Recorder before 4.04R03 allows r… | 2025-04-13T23:41:27.242000Z |
| var-201411-0042 | Openswan 2.6.40 allows remote attackers to cause a denial of service (NULL pointer derefe… | 2025-04-13T23:41:27.206000Z |
| var-201412-0139 | TP-Link TL-WR740N 4 with firmware 3.17.0 Build 140520, 3.16.6 Build 130529, and 3.16.4 Bu… | 2025-04-13T23:41:26.461000Z |
| var-201501-0216 | Cisco Adaptive Security Appliance (ASA) Software, when a DHCPv6 relay is configured, allo… | 2025-04-13T23:41:25.991000Z |
| var-201501-0218 | The XML parser in Cisco Prime Service Catalog before 10.1 allows remote authenticated use… | 2025-04-13T23:41:25.962000Z |
| var-201501-0384 | IBM BladeCenter SAS Connectivity Module (aka NSSM) and SAS RAID Module (aka RSSM) before … | 2025-04-13T23:41:25.900000Z |
| var-201501-0386 | IBM Security Network Protection 5.1.x and 5.2.x before 5.2.0.0 FP5 and 5.3.x before 5.3.0… | 2025-04-13T23:41:25.871000Z |
| var-201502-0144 | The administrative web-management portal in Cisco IX 8 (.0.1) and earlier on Cisco TelePr… | 2025-04-13T23:41:25.601000Z |
| var-201502-0228 | Stack-based buffer overflow in dsmtca in the client in IBM Tivoli Storage Manager (TSM) 5… | 2025-04-13T23:41:25.518000Z |
| var-201502-0480 | npppd in the PPP Access Concentrator (PPPAC) on SEIL SEIL/x86 Fuji routers 1.00 through 3… | 2025-04-13T23:41:25.477000Z |
| var-201503-0016 | Untrusted search path vulnerability in Siemens SIMATIC ProSave before 13 SP1; SIMATIC CFC… | 2025-04-13T23:41:25.435000Z |
| var-201504-0278 | Multiple cross-site scripting (XSS) vulnerabilities in filter search forms in admin web p… | 2025-04-13T23:41:21.373000Z |
| var-201504-0551 | Juniper Junos 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D30, 12.1X47 before 12.1… | 2025-04-13T23:41:21.283000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:2071-1 | Security update for webkit2gtk3 | 2022-06-14T09:57:16Z | 2022-06-14T09:57:16Z |
| suse-su-2022:2070-1 | Security update for python-Twisted | 2022-06-14T09:56:13Z | 2022-06-14T09:56:13Z |
| suse-su-2022:1746-1 | Security update for libyajl | 2022-06-14T09:52:52Z | 2022-06-14T09:52:52Z |
| suse-su-2022:2068-1 | Security update for openssl-1_1 | 2022-06-14T08:14:57Z | 2022-06-14T08:14:57Z |
| suse-su-2022:2065-1 | Security update for xen | 2022-06-13T13:36:00Z | 2022-06-13T13:36:00Z |
| suse-su-2022:2064-1 | Security update for grub2 | 2022-06-13T13:35:35Z | 2022-06-13T13:35:35Z |
| suse-su-2022:2063-1 | Security update for gimp | 2022-06-13T13:34:55Z | 2022-06-13T13:34:55Z |
| suse-su-2022:2062-1 | Security update for MozillaThunderbird | 2022-06-13T13:34:30Z | 2022-06-13T13:34:30Z |
| suse-su-2022:2058-1 | Security update for u-boot | 2022-06-13T12:08:15Z | 2022-06-13T12:08:15Z |
| suse-su-2022:2057-1 | Security update for u-boot | 2022-06-13T10:14:27Z | 2022-06-13T10:14:27Z |
| suse-su-2022:2056-1 | Security update for u-boot | 2022-06-13T10:11:20Z | 2022-06-13T10:11:20Z |
| suse-su-2022:2055-1 | Security update for u-boot | 2022-06-13T08:41:49Z | 2022-06-13T08:41:49Z |
| suse-su-2022:2054-1 | Security update for u-boot | 2022-06-13T08:39:49Z | 2022-06-13T08:39:49Z |
| suse-su-2022:2053-1 | Security update for u-boot | 2022-06-13T08:37:51Z | 2022-06-13T08:37:51Z |
| suse-su-2022:2052-1 | Security update for u-boot | 2022-06-13T08:36:15Z | 2022-06-13T08:36:15Z |
| suse-su-2022:2047-1 | Security update for netty3 | 2022-06-13T07:19:25Z | 2022-06-13T07:19:25Z |
| suse-su-2022:2046-1 | Security update for rubygem-sinatra | 2022-06-11T08:05:27Z | 2022-06-11T08:05:27Z |
| suse-su-2022:2044-1 | Security update for google-gson | 2022-06-10T11:37:35Z | 2022-06-10T11:37:35Z |
| suse-fu-2022:2042-1 | Feature update for SUSE Manager Salt Bundle | 2022-06-10T09:56:08Z | 2022-06-10T09:56:08Z |
| suse-su-2022:2041-1 | Security update for grub2 | 2022-06-10T09:34:00Z | 2022-06-10T09:34:00Z |
| suse-su-2022:2039-1 | Security update for grub2 | 2022-06-10T08:18:50Z | 2022-06-10T08:18:50Z |
| suse-su-2022:2038-1 | Security update for grub2 | 2022-06-10T08:18:29Z | 2022-06-10T08:18:29Z |
| suse-su-2022:2037-1 | Security update for grub2 | 2022-06-10T08:18:01Z | 2022-06-10T08:18:01Z |
| suse-su-2022:2036-1 | Security update for grub2 | 2022-06-10T08:17:42Z | 2022-06-10T08:17:42Z |
| suse-su-2022:2035-1 | Security update for grub2 | 2022-06-10T08:16:51Z | 2022-06-10T08:16:51Z |
| suse-su-2022:2031-1 | Security update for mozilla-nss | 2022-06-09T09:34:54Z | 2022-06-09T09:34:54Z |
| suse-su-2022:2030-1 | Security update for webkit2gtk3 | 2022-06-09T09:16:27Z | 2022-06-09T09:16:27Z |
| suse-su-2022:2029-1 | Security update for fribidi | 2022-06-09T09:15:07Z | 2022-06-09T09:15:07Z |
| suse-su-2022:1912-1 | Security update for hdf5 | 2022-06-08T10:33:22Z | 2022-06-08T10:33:22Z |
| suse-su-2022:2015-1 | Security update for gcc48 | 2022-06-08T09:23:12Z | 2022-06-08T09:23:12Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2018:0257-1 | Security update for MozillaThunderbird | 2018-01-27T21:50:06Z | 2018-01-27T21:50:06Z |
| opensuse-su-2018:0256-1 | Security update for MozillaThunderbird | 2018-01-27T21:50:06Z | 2018-01-27T21:50:06Z |
| opensuse-su-2018:0228-1 | Security update for redis | 2018-01-25T19:21:17Z | 2018-01-25T19:21:17Z |
| opensuse-su-2018:0225-1 | Security update for redis | 2018-01-25T19:21:17Z | 2018-01-25T19:21:17Z |
| opensuse-su-2018:0058-1 | Security update for irssi | 2018-01-09T17:57:14Z | 2018-01-09T17:57:14Z |
| opensuse-su-2018:0057-1 | Security update for irssi | 2018-01-09T17:57:14Z | 2018-01-09T17:57:14Z |
| opensuse-su-2017:3451-1 | Security update for phpMyAdmin | 2017-12-29T16:35:29Z | 2017-12-29T16:35:29Z |
| opensuse-su-2017:3448-1 | Security update for phpMyAdmin | 2017-12-29T16:35:29Z | 2017-12-29T16:35:29Z |
| opensuse-su-2017:3434-1 | Security update for Mozilla Thunderbird | 2017-12-24T22:29:25Z | 2017-12-24T22:29:25Z |
| opensuse-su-2017:3433-1 | Security update for Mozilla Thunderbird | 2017-12-24T22:29:25Z | 2017-12-24T22:29:25Z |
| opensuse-su-2017:3427-1 | Security update for enigmail | 2017-12-22T15:45:46Z | 2017-12-22T15:45:46Z |
| opensuse-su-2017:3419-1 | Security update for enigmail | 2017-12-22T15:45:46Z | 2017-12-22T15:45:46Z |
| opensuse-su-2017:3346-1 | Security update for chromium | 2017-12-16T08:46:27Z | 2017-12-16T08:46:27Z |
| opensuse-su-2017:3344-1 | Security update for chromium | 2017-12-16T08:46:27Z | 2017-12-16T08:46:27Z |
| opensuse-su-2017:3257-1 | Security update for erlang | 2017-12-08T19:42:15Z | 2017-12-08T19:42:15Z |
| opensuse-su-2017:3255-1 | Security update for erlang | 2017-12-08T19:42:15Z | 2017-12-08T19:42:15Z |
| opensuse-su-2017:3245-1 | Security update for chromium | 2017-12-08T07:34:05Z | 2017-12-08T07:34:05Z |
| opensuse-su-2017:3203-1 | Security update for tor | 2017-12-02T14:54:54Z | 2017-12-02T14:54:54Z |
| opensuse-su-2017:3201-1 | Security update for tor | 2017-12-02T14:54:54Z | 2017-12-02T14:54:54Z |
| opensuse-su-2017:3110-1 | Security update for Mozilla Thunderbird | 2017-11-27T18:50:59Z | 2017-11-27T18:50:59Z |
| opensuse-su-2017:3108-1 | Security update for Mozilla Thunderbird | 2017-11-27T18:50:59Z | 2017-11-27T18:50:59Z |
| opensuse-su-2017:3022-1 | Security update for mongodb | 2017-11-15T10:56:14Z | 2017-11-15T10:56:14Z |
| opensuse-su-2017:3018-1 | Security update for mongodb | 2017-11-15T10:56:14Z | 2017-11-15T10:56:14Z |
| opensuse-su-2017:2978-1 | Security update for ansible | 2017-11-10T13:03:17Z | 2017-11-10T13:03:17Z |
| opensuse-su-2017:2976-1 | Security update for ansible | 2017-11-10T13:03:17Z | 2017-11-10T13:03:17Z |
| opensuse-su-2017:2994-1 | Security update for redis | 2017-11-10T13:02:13Z | 2017-11-10T13:02:13Z |
| opensuse-su-2017:2984-1 | Security update for redis | 2017-11-10T13:02:13Z | 2017-11-10T13:02:13Z |
| opensuse-su-2017:2895-1 | Security update for SDL2 | 2017-10-27T19:17:03Z | 2017-10-27T19:17:03Z |
| opensuse-su-2017:2893-1 | Security update for SDL2 | 2017-10-27T19:17:03Z | 2017-10-27T19:17:03Z |
| opensuse-su-2017:2834-1 | Security update for jq | 2017-10-23T07:58:55Z | 2017-10-23T07:58:55Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-07626 | Triangle MicroWorks SCADA Data Gateway验证缺失漏洞 | 2023-08-07 | 2025-04-17 |
| cnvd-2025-07623 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-07623) | 2024-12-13 | 2025-04-17 |
| cnvd-2025-07620 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-07620) | 2024-12-13 | 2025-04-17 |
| cnvd-2025-07619 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-07619) | 2024-12-13 | 2025-04-17 |
| cnvd-2025-07618 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-07618) | 2024-12-13 | 2025-04-17 |
| cnvd-2025-07617 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-07617) | 2024-12-13 | 2025-04-17 |
| cnvd-2025-07616 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-07616) | 2024-12-13 | 2025-04-17 |
| cnvd-2025-07615 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-07615) | 2024-12-13 | 2025-04-17 |
| cnvd-2025-07614 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-07614) | 2024-12-13 | 2025-04-17 |
| cnvd-2025-07608 | Tenda AX12缓冲区溢出漏洞(CNVD-2025-07608) | 2025-03-27 | 2025-04-17 |
| cnvd-2025-07607 | Tenda AX12缓冲区溢出漏洞(CNVD-2025-07607) | 2025-03-27 | 2025-04-17 |
| cnvd-2025-07518 | Google Chrome不正确实现漏洞 | 2025-04-08 | 2025-04-17 |
| cnvd-2025-07327 | F5 BIG-IP跨站脚本漏洞(CNVD-2025-07327) | 2025-02-18 | 2025-04-17 |
| cnvd-2025-08430 | Siemens RUGGEDCOM APE1808 Fortigate NGFW存在多个漏洞 | 2025-04-16 | 2025-04-16 |
| cnvd-2025-08398 | Siemens TeleControl Server Basic存在多个SQL注入漏洞 | 2025-04-16 | 2025-04-16 |
| cnvd-2025-07606 | Tenda AC8栈缓冲区溢出漏洞(CNVD-2025-07606) | 2025-03-27 | 2025-04-16 |
| cnvd-2025-07605 | Tenda AC6缓冲区溢出漏洞(CNVD-2025-07605) | 2025-03-27 | 2025-04-16 |
| cnvd-2025-07593 | Tenda AC7缓冲区溢出漏洞(CNVD-2025-07593) | 2025-03-27 | 2025-04-16 |
| cnvd-2025-07591 | 深圳市吉祥腾达科技有限公司AC1206缓冲区溢出漏洞(CNVD-2025-07591) | 2025-04-11 | 2025-04-16 |
| cnvd-2025-07508 | Tenda FH1202中访问控制不当漏洞(CNVD-2025-07508) | 2025-04-11 | 2025-04-16 |
| cnvd-2025-07328 | F5 BIG-IP远程命令注入漏洞 | 2025-02-18 | 2025-04-16 |
| cnvd-2025-07326 | F5 BIG-IP不受控制资源消耗漏洞 | 2025-02-18 | 2025-04-16 |
| cnvd-2025-07325 | F5 BIG-IP拒绝服务漏洞(CNVD-2025-07325) | 2025-02-18 | 2025-04-16 |
| cnvd-2025-07324 | F5 BIG-IP PEM存在未明漏洞(CNVD-2025-07324) | 2025-02-18 | 2025-04-16 |
| cnvd-2025-07323 | F5 BIG-IP PEM存在未明漏洞 | 2025-02-18 | 2025-04-16 |
| cnvd-2025-07322 | F5 BIG-IP Next Central Manager输入验证错误漏洞 | 2025-02-18 | 2025-04-16 |
| cnvd-2025-07321 | F5 BIG-IP Next Central Manager日志信息泄露漏洞 | 2025-02-18 | 2025-04-16 |
| cnvd-2025-07320 | F5 BIG-IP APM访问配置文件漏洞 | 2025-02-18 | 2025-04-16 |
| cnvd-2025-07319 | F5 BIG-IP AFM拒绝服务漏洞(CNVD-2025-07319) | 2025-02-18 | 2025-04-16 |
| cnvd-2025-07252 | Adobe ColdFusion输入验证不当漏洞 | 2025-04-14 | 2025-04-16 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-185 | Multiples vulnérabilités dans Oracle Java SE | 2014-04-16T00:00:00.000000 | 2014-04-16T00:00:00.000000 |
| certfr-2014-avi-184 | Multiples vulnérabilités dans les produits Oracle PeopleSoft | 2014-04-16T00:00:00.000000 | 2014-04-16T00:00:00.000000 |
| certfr-2014-avi-183 | Multiples vulnérabilités dans Oracle Database | 2014-04-16T00:00:00.000000 | 2014-04-16T00:00:00.000000 |
| certfr-2014-avi-182 | Multiples vulnérabilités dans F5 ARX | 2014-04-15T00:00:00.000000 | 2014-04-15T00:00:00.000000 |
| certfr-2014-avi-181 | Multiples vulnérabilités dans les produits VMware | 2014-04-15T00:00:00.000000 | 2014-04-15T00:00:00.000000 |
| certfr-2014-avi-180 | Vulnérabilité dans plusieurs produits F5 | 2014-04-11T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-179 | Vulnérabilité dans IBM AIX | 2014-04-11T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-178 | Vulnérabilité dans plusieurs produits Sophos | 2014-04-11T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-177 | Vulnérabilité dans plusieurs produits McAfee | 2014-04-11T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-176 | Multiples vulnérabilités dans VMWare vSphere | 2014-04-11T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-174 | Vulnérabilité dans Juniper Junos | 2014-04-10T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-161 | Vulnérabilité dans plusieurs produits Cisco | 2014-04-09T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-175 | Vulnérabilité dans Juniper Junos | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-173 | Vulnérabilité dans Juniper Junos | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-172 | Vulnérabilité dans Juniper Junos | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-171 | Vulnérabilité dans Juniper Junos | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-170 | Vulnérabilité dans WireShark | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-169 | Vulnérabilité dans plusieurs produits Blue Coat | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-168 | Multiples vulnérabilités dans Cisco ASA | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-167 | Vulnérabilité dans OpenVPN Access Server | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-166 | Multiples vulnérabilités dans WordPress | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-165 | Vulnérabilité dans Citrix VDI-in-a-Box | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-164 | Multiples vulnérabilités dans Google Chrome | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-163 | Multiples vulnérabilités dans Adobe Flash | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-162 | Vulnérabilité dans plusieurs produits Juniper | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-160 | Vulnérabilité dans Microsoft Publisher | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-159 | Vulnérabilité dans Microsoft Windows | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-158 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-157 | Multiples vulnérabilités dans Microsoft Office | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-156 | Vulnérabilité dans OpenSSL | 2014-04-08T00:00:00.000000 | 2014-04-08T00:00:00.000000 |