Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-49903 |
5.3 (3.1)
|
WordPress ZoloBlocks plugin <= 2.3.11 - Broken Access … |
bdthemes |
ZoloBlocks |
2025-10-22T14:32:10.215Z | 2026-01-20T14:28:07.088Z |
| CVE-2025-49901 |
9.8 (3.1)
|
WordPress Simple Link Directory plugin < 14.8.1 - Brok… |
quantumcloud |
Simple Link Directory |
2025-10-22T14:32:10.033Z | 2026-01-20T14:28:07.087Z |
| CVE-2025-49360 |
8.1 (3.1)
|
WordPress Militarology theme <= 1.0.15 - Local File In… |
AncoraThemes |
Militarology |
2025-12-18T07:21:41.272Z | 2026-01-20T14:28:07.077Z |
| CVE-2025-49357 |
6.5 (3.1)
|
WordPress Audiomack plugin <= 1.4.8 - Cross Site Scrip… |
Audiomack |
Audiomack |
2025-12-31T13:04:24.047Z | 2026-01-20T14:28:07.026Z |
| CVE-2025-49364 |
8.1 (3.1)
|
WordPress Ludos Paradise theme <= 2.1.3 - Local File I… |
AncoraThemes |
Ludos Paradise |
2025-12-18T07:21:42.060Z | 2026-01-20T14:28:06.997Z |
| CVE-2025-49362 |
8.1 (3.1)
|
WordPress Gracioza theme <= 1.0.15 - Local File Inclus… |
AncoraThemes |
Gracioza |
2025-12-18T07:21:41.688Z | 2026-01-20T14:28:06.996Z |
| CVE-2025-49358 |
6.5 (3.1)
|
WordPress Content Fetcher plugin <= 1.1 - Cross Site S… |
Ruhul Amin |
Content Fetcher |
2025-12-31T12:01:15.789Z | 2026-01-20T14:28:06.987Z |
| CVE-2025-49361 |
8.1 (3.1)
|
WordPress Mamita theme <= 1.0.9 - Local File Inclusion… |
AncoraThemes |
Mamita |
2025-12-18T07:21:41.475Z | 2026-01-20T14:28:06.975Z |
| CVE-2025-49356 |
4.3 (3.1)
|
WordPress Orders Chat for WooCommerce plugin <= 1.2.0 … |
Mykola Lukin |
Orders Chat for WooCommerce |
2025-12-31T16:07:40.281Z | 2026-01-20T14:28:06.970Z |
| CVE-2025-49355 |
5.9 (3.1)
|
WordPress Accessibility Press plugin <= 1.0.2 - Cross … |
ikaes |
Accessibility Press |
2025-12-31T17:21:50.962Z | 2026-01-20T14:28:06.856Z |
| CVE-2025-49345 |
7.1 (3.1)
|
WordPress WP-EasyArchives plugin <= 3.1.2 - Cross Site… |
mg12 |
WP-EasyArchives |
2025-12-31T05:23:28.075Z | 2026-01-20T14:28:06.856Z |
| CVE-2025-49342 |
7.1 (3.1)
|
WordPress Custom Style plugin <= 1.0 - Cross Site Requ… |
Wolfgang Häfelinger |
Custom Style |
2025-12-31T05:55:53.218Z | 2026-01-20T14:28:06.843Z |
| CVE-2025-49354 |
7.1 (3.1)
|
WordPress Recent Posts From Each Category plugin <= 1.… |
Mindstien Technologies |
Recent Posts From Each Category |
2025-12-31T05:30:25.381Z | 2026-01-20T14:28:06.822Z |
| CVE-2025-49353 |
7.1 (3.1)
|
WordPress Noindex by Path plugin <= 1.0 - Cross Site R… |
Marcin Kijak |
Noindex by Path |
2025-12-31T05:36:42.895Z | 2026-01-20T14:28:06.786Z |
| CVE-2025-49352 |
4.3 (3.1)
|
WordPress Order Cancellation & Returns for WooCommerce… |
YoOhw Studio |
Order Cancellation & Returns for WooCommerce |
2025-12-31T16:25:44.989Z | 2026-01-20T14:28:06.781Z |
| CVE-2025-49343 |
7.1 (3.1)
|
WordPress Social Profilr plugin <= 1.0 - Cross Site Re… |
Socialprofilr |
Social Profilr |
2025-12-31T05:28:06.720Z | 2026-01-20T14:28:06.765Z |
| CVE-2025-49350 |
4.3 (3.1)
|
WordPress Actionwear products sync plugin <= 2.3.3 - B… |
marcoingraiti |
Actionwear products sync |
2025-12-09T14:52:18.182Z | 2026-01-20T14:28:06.748Z |
| CVE-2025-49348 |
5.3 (3.1)
|
WordPress Hype plugin <= 1.0.5 - Broken Access Control… |
Hype |
Hype |
2025-12-09T14:52:17.974Z | 2026-01-20T14:28:06.689Z |
| CVE-2025-49349 |
5.3 (3.1)
|
WordPress Reuters Direct plugin <= 3.0.0 - Broken Acce… |
Reuters News Agency |
Reuters Direct |
2025-12-31T14:48:34.082Z | 2026-01-20T14:28:06.662Z |
| CVE-2025-49351 |
7.1 (3.1)
|
WordPress Create Posts & Terms plugin <= 1.3.1 - Cross… |
Valentin Agachi |
Create Posts & Terms |
2025-12-09T14:52:18.391Z | 2026-01-20T14:28:06.640Z |
| CVE-2025-49347 |
7.1 (3.1)
|
WordPress WP sIFR plugin <= 0.6.8.1 - Cross Site Reque… |
Jupitercow |
WP sIFR |
2025-12-09T14:52:17.791Z | 2026-01-20T14:28:06.607Z |
| CVE-2025-49341 |
7.1 (3.1)
|
WordPress PDF Creator Lite plugin <= 1.2 - Cross Site … |
Alex Furr |
PDF Creator Lite |
2025-12-09T14:52:17.582Z | 2026-01-20T14:28:06.561Z |
| CVE-2025-49346 |
7.1 (3.1)
|
WordPress Simple Archive Generator plugin <= 5.2 - Cro… |
Peter Sterling |
Simple Archive Generator |
2025-12-31T04:37:01.172Z | 2026-01-20T14:28:06.500Z |
| CVE-2025-49338 |
5.3 (3.1)
|
WordPress Flowbox plugin <= 1.1.5 - Broken Access Cont… |
Flowbox |
Flowbox |
2025-12-31T15:35:54.047Z | 2026-01-20T14:28:06.489Z |
| CVE-2025-49344 |
7.1 (3.1)
|
WordPress SensitiveTagCloud plugin <= 1.4.1 - Cross Si… |
Rene Ade |
SensitiveTagCloud |
2025-12-31T05:25:58.689Z | 2026-01-20T14:28:06.405Z |
| CVE-2025-48290 |
9.8 (3.1)
|
WordPress Kinsley theme <= 3.4.4 - Local File Inclusio… |
bslthemes |
Kinsley |
2025-11-06T15:53:47.362Z | 2026-01-20T14:28:06.389Z |
| CVE-2025-49300 |
2.7 (3.1)
|
WordPress Traveler Option Tree plugin <= 2.8 - Sensiti… |
shinetheme |
Traveler Option Tree |
2025-12-16T08:12:44.867Z | 2026-01-20T14:28:06.383Z |
| CVE-2025-48338 |
7.5 (3.1)
|
WordPress WP Abstracts plugin <= 2.7.4 - Local File In… |
Kevon Adonis |
WP Abstracts |
2025-10-22T14:32:07.858Z | 2026-01-20T14:28:06.339Z |
| CVE-2025-49339 |
4.3 (3.1)
|
WordPress Direct Payments WP plugin <= 1.3.0 - Broken … |
Digages |
Direct Payments WP |
2025-12-31T16:31:22.695Z | 2026-01-20T14:28:06.329Z |
| CVE-2025-48330 |
9.8 (3.1)
|
WordPress Real Time Validation for Gravity Forms <= 1.… |
Daman Jeet |
Real Time Validation for Gravity Forms |
2025-11-06T15:53:48.806Z | 2026-01-20T14:28:06.327Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-62070 |
4.3 (3.1)
|
WordPress WowRevenue plugin <= 1.2.13 - Broken Access … |
WPXPO |
WowRevenue |
2025-10-22T14:32:53.947Z | 2026-01-20T14:28:13.568Z |
| CVE-2025-62069 |
6.5 (3.1)
|
WordPress MDTF plugin <= 1.3.3.8 - Cross Site Scriptin… |
RealMag777 |
MDTF |
2025-10-22T14:32:53.749Z | 2026-01-20T14:28:13.746Z |
| CVE-2025-62067 |
8.1 (3.1)
|
WordPress Savory theme <= 2.5 - Local File Inclusion v… |
Elated-Themes |
Savory |
2025-11-06T15:55:55.213Z | 2026-01-20T14:28:14.287Z |
| CVE-2025-62066 |
7.4 (3.1)
|
WordPress Revolution theme < 2.5.8 - Local File Inclus… |
fuelthemes |
Revolution |
2025-11-06T15:55:54.429Z | 2026-01-20T14:28:13.588Z |
| CVE-2025-62065 |
9.9 (3.1)
|
WordPress RTMKit plugin <= 1.6.5 - Arbitrary File Uplo… |
Rometheme |
RTMKit |
2025-11-06T15:55:53.302Z | 2026-01-20T14:28:13.935Z |
| CVE-2025-62064 |
9.8 (3.1)
|
WordPress Search & Go theme <= 2.7 - Broken Authentica… |
Elated-Themes |
Search & Go |
2025-11-06T15:55:51.676Z | 2026-01-20T14:28:13.941Z |
| CVE-2025-62063 |
6.5 (3.1)
|
WordPress WP Travel Gutenberg Blocks plugin <= 3.9.2 -… |
WP Travel |
WP Travel Gutenberg Blocks |
2025-10-22T14:32:53.303Z | 2026-01-20T14:28:13.735Z |
| CVE-2025-62062 |
5.3 (3.1)
|
WordPress Easy Post Submission plugin <= 1.7.0 - Sensi… |
ThemeRuby |
Easy Post Submission |
2025-10-22T14:32:53.065Z | 2026-01-20T14:28:13.826Z |
| CVE-2025-62061 |
4.3 (3.1)
|
WordPress Product Catalog Simple plugin <= 1.8.4 - Cro… |
impleCode |
Product Catalog Simple |
2025-10-22T14:32:52.854Z | 2026-01-20T14:28:14.011Z |
| CVE-2025-62060 |
6.5 (3.1)
|
WordPress Tab Ultimate plugin <= 1.8 - Cross Site Scri… |
Themepoints |
Tab Ultimate |
2025-10-22T14:32:52.503Z | 2026-01-20T14:28:13.775Z |
| CVE-2025-62059 |
7.1 (3.1)
|
WordPress SureRank plugin <= 1.3.2 - Cross Site Script… |
Brainstorm Force |
SureRank |
2025-11-06T15:55:51.134Z | 2026-01-20T14:28:13.884Z |
| CVE-2025-62058 |
6.5 (3.1)
|
WordPress Houzez Theme - Functionality plugin < 4.2.0 … |
favethemes |
Houzez Theme - Functionality |
2025-10-22T14:32:52.269Z | 2026-01-20T14:28:13.789Z |
| CVE-2025-62057 |
7.1 (3.1)
|
WordPress Houzez Theme - Functionality plugin < 4.2.0 … |
favethemes |
Houzez Theme - Functionality |
2025-11-06T15:55:50.427Z | 2026-01-20T14:28:13.708Z |
| CVE-2025-62055 |
8.1 (3.1)
|
WordPress Academist theme < 1.3 - Local File Inclusion… |
Elated-Themes |
Academist |
2025-11-06T15:55:49.844Z | 2026-01-20T14:28:13.866Z |
| CVE-2025-62054 |
7.5 (3.1)
|
WordPress Houzez Theme - Functionality plugin <= 4.1.8… |
favethemes |
Houzez Theme - Functionality |
2025-10-22T14:32:52.067Z | 2026-01-20T14:28:13.941Z |
| CVE-2025-62053 |
8 (3.1)
|
WordPress Houzez theme < 4.2.0 - Local File Inclusion … |
favethemes |
Houzez |
2025-11-06T15:55:48.526Z | 2026-01-20T14:28:13.854Z |
| CVE-2025-62052 |
4.3 (3.1)
|
WordPress One Page Express Companion plugin <= 1.6.43 … |
Horea Radu |
One Page Express Companion |
2025-10-22T14:32:51.853Z | 2026-01-20T14:28:14.063Z |
| CVE-2025-62051 |
6.5 (3.1)
|
WordPress UDesign Core plugin <= 4.14.1 - Cross Site S… |
AndonDesign |
UDesign Core |
2025-11-06T15:55:47.211Z | 2026-01-20T14:28:13.625Z |
| CVE-2025-62049 |
6.5 (3.1)
|
WordPress Cost Calculator Builder plugin <= 3.5.32 - B… |
Stylemix |
Cost Calculator Builder |
2025-11-06T15:55:44.281Z | 2026-01-20T14:28:14.242Z |
| CVE-2025-62048 |
5.4 (3.1)
|
WordPress SmartCrawl plugin <= 3.14.3 - Broken Access … |
WPMU DEV - Your All-in-One WordPress Platform |
SmartCrawl |
2025-10-22T14:32:51.617Z | 2026-01-20T14:28:14.203Z |
| CVE-2025-62047 |
9.9 (3.1)
|
WordPress Case Addons plugin < 1.3.0 - Arbitrary File … |
Case-Themes |
Case Addons |
2025-11-06T15:55:43.609Z | 2026-01-20T14:28:13.952Z |
| CVE-2025-62046 |
6.5 (3.1)
|
WordPress TheGem Demo Import (for WPBakery) plugin <= … |
CodexThemes |
TheGem Demo Import (for WPBakery) |
2025-11-06T15:55:42.909Z | 2026-01-20T14:28:13.538Z |
| CVE-2025-62045 |
8.1 (3.1)
|
WordPress TheGem Theme Elements (for WPBakery) plugin … |
CodexThemes |
TheGem Theme Elements (for WPBakery) |
2025-11-06T15:55:41.551Z | 2026-01-20T14:28:13.819Z |
| CVE-2025-62044 |
6.5 (3.1)
|
WordPress TheGem Theme Elements (for WPBakery) plugin … |
CodexThemes |
TheGem Theme Elements (for WPBakery) |
2025-11-06T15:55:39.461Z | 2026-01-20T14:28:14.135Z |
| CVE-2025-62042 |
6.5 (3.1)
|
WordPress Event post plugin <= 5.10.3 - Cross Site Scr… |
Bastien Ho |
Event post |
2025-10-22T14:32:51.413Z | 2026-01-20T14:28:13.802Z |
| CVE-2025-62041 |
7.1 (3.1)
|
WordPress TheGem (Elementor) theme <= 5.10.5.1 - Cross… |
CodexThemes |
TheGem (Elementor) |
2025-11-06T15:55:38.770Z | 2026-01-20T14:28:13.398Z |
| CVE-2025-62040 |
7.1 (3.1)
|
WordPress YOP Poll plugin <= 6.5.37 - Cross Site Scrip… |
YOP |
YOP Poll |
2025-11-06T15:55:38.092Z | 2026-01-20T14:28:13.427Z |
| CVE-2025-62039 |
7.5 (3.1)
|
WordPress AI ChatBot with ChatGPT and Content Generato… |
Ays Pro |
AI ChatBot with ChatGPT and Content Generator by AYS |
2025-11-06T15:55:37.380Z | 2026-01-20T14:28:13.293Z |
| CVE-2025-62038 |
6.5 (3.1)
|
WordPress MeetingHub plugin <= 1.23.9 - Sensitive Data… |
Sovlix |
MeetingHub |
2025-11-06T15:55:36.094Z | 2026-01-20T14:28:13.390Z |
| CVE-2025-62037 |
6.5 (3.1)
|
WordPress Togo theme < 1.0.4 - Broken Access Control v… |
uxper |
Togo |
2025-11-06T15:55:34.720Z | 2026-01-20T14:28:13.293Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-62065 | Unrestricted Upload of File with Dangerous Type vulnerability in Rometheme RTMKit rometheme-for-ele… | 2025-11-06T16:16:12.473 | 2026-01-20T15:17:45.900 |
| fkie_cve-2025-62064 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Elated-Themes Search & Go… | 2025-11-06T16:16:12.327 | 2026-01-20T15:17:45.753 |
| fkie_cve-2025-62063 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:16:05.467 | 2026-01-20T15:17:45.627 |
| fkie_cve-2025-62062 | Insertion of Sensitive Information Into Sent Data vulnerability in ThemeRuby Easy Post Submission e… | 2025-10-22T15:16:05.343 | 2026-01-20T15:17:45.483 |
| fkie_cve-2025-62061 | Cross-Site Request Forgery (CSRF) vulnerability in impleCode Product Catalog Simple post-type-x.Thi… | 2025-10-22T15:16:05.213 | 2026-01-20T15:17:45.357 |
| fkie_cve-2025-62060 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:16:05.080 | 2026-01-20T15:17:45.220 |
| fkie_cve-2025-62059 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:12.177 | 2026-01-20T15:17:45.093 |
| fkie_cve-2025-62058 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:16:04.930 | 2026-01-20T15:17:44.967 |
| fkie_cve-2025-62057 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:12.030 | 2026-01-20T15:17:44.817 |
| fkie_cve-2025-62055 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:11.880 | 2026-01-20T15:17:44.677 |
| fkie_cve-2025-62054 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-10-22T15:16:04.790 | 2026-01-20T15:17:44.540 |
| fkie_cve-2025-62053 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:11.733 | 2026-01-20T15:17:44.410 |
| fkie_cve-2025-62052 | Missing Authorization vulnerability in Horea Radu One Page Express Companion one-page-express-compa… | 2025-10-22T15:16:04.667 | 2026-01-20T15:17:44.280 |
| fkie_cve-2025-62051 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:11.587 | 2026-01-20T15:17:44.157 |
| fkie_cve-2025-62049 | Missing Authorization vulnerability in Stylemix Cost Calculator Builder cost-calculator-builder.Thi… | 2025-11-06T16:16:11.440 | 2026-01-20T15:17:44.023 |
| fkie_cve-2025-62048 | Missing Authorization vulnerability in WPMU DEV - Your All-in-One WordPress Platform SmartCrawl sma… | 2025-10-22T15:16:04.533 | 2026-01-20T15:17:43.900 |
| fkie_cve-2025-62047 | Unrestricted Upload of File with Dangerous Type vulnerability in Case-Themes Case Addons case-addon… | 2025-11-06T16:16:11.303 | 2026-01-20T15:17:43.777 |
| fkie_cve-2025-62046 | Missing Authorization vulnerability in CodexThemes TheGem Demo Import (for WPBakery) thegem-importe… | 2025-11-06T16:16:11.123 | 2026-01-20T15:17:43.650 |
| fkie_cve-2025-62045 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:10.980 | 2026-01-20T15:17:43.513 |
| fkie_cve-2025-62044 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:10.837 | 2026-01-20T15:17:43.380 |
| fkie_cve-2025-62042 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:16:04.410 | 2026-01-20T15:17:43.247 |
| fkie_cve-2025-62041 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:10.690 | 2026-01-20T15:17:43.113 |
| fkie_cve-2025-62040 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:10.543 | 2026-01-20T15:17:42.980 |
| fkie_cve-2025-62039 | Insertion of Sensitive Information Into Sent Data vulnerability in Ays Pro AI ChatBot with ChatGPT … | 2025-11-06T16:16:10.387 | 2026-01-20T15:17:42.850 |
| fkie_cve-2025-62038 | Insertion of Sensitive Information Into Sent Data vulnerability in Sovlix MeetingHub meetinghub all… | 2025-11-06T16:16:10.230 | 2026-01-20T15:17:42.710 |
| fkie_cve-2025-62037 | Missing Authorization vulnerability in uxper Togo togo.This issue affects Togo: from n/a through < 1.0.4. | 2025-11-06T16:16:10.070 | 2026-01-20T15:17:42.573 |
| fkie_cve-2025-62036 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:09.920 | 2026-01-20T15:17:42.427 |
| fkie_cve-2025-62035 | Deserialization of Untrusted Data vulnerability in uxper Togo togo.This issue affects Togo: from n/… | 2025-11-06T16:16:09.780 | 2026-01-20T15:17:42.293 |
| fkie_cve-2025-62034 | Incorrect Privilege Assignment vulnerability in uxper Togo togo.This issue affects Togo: from n/a t… | 2025-11-06T16:16:09.613 | 2026-01-20T15:17:42.153 |
| fkie_cve-2025-62033 | Missing Authorization vulnerability in uxper Togo togo.This issue affects Togo: from n/a through < 1.0.4. | 2025-11-06T16:16:09.470 | 2026-01-20T15:17:42.010 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-848j-6mx2-7j84 |
5.6 (3.1)
2.9 (4.0)
|
Elliptic Uses a Cryptographic Primitive with a Risky Implementation | 2026-01-08T21:30:34Z | 2026-01-09T20:19:43Z |
| ghsa-88q6-jcjg-hvmw |
8.8 (4.0)
|
jose-swift has JWT Signature Verification Bypass via None Algorithm | 2026-01-09T19:39:30Z | 2026-01-09T19:39:30Z |
| ghsa-jm7w-5684-pvh8 |
10.0 (3.1)
|
FASTJSON Includes Functionality from Untrusted Control Sphere | 2026-01-09T09:31:19Z | 2026-01-09T19:33:17Z |
| ghsa-q3qv-m4mc-pj49 |
10.0 (4.0)
|
The Ruckus vRIoT IoT Controller firmware versions prior to 3.0.0.0 (GA) contain hardcoded credentia… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:37Z |
| ghsa-mjmr-r67g-p2m7 |
4.7 (3.1)
2.0 (4.0)
|
A vulnerability was found in BiggiDroid Simple PHP CMS 1.0. This impacts an unknown function of the… | 2026-01-09T18:31:37Z | 2026-01-09T18:31:37Z |
| ghsa-gfvg-q74f-527q |
10.0 (4.0)
|
The Ruckus vRIoT IoT Controller firmware versions prior to 3.0.0.0 (GA) expose a command execution … | 2026-01-09T18:31:37Z | 2026-01-09T18:31:37Z |
| ghsa-cpp7-6w4h-pg23 |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability was found in PHPGurukul Online Course Registration System up to 3.1. This affects a… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:37Z |
| ghsa-c99x-xcf4-fhgm |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability was determined in guchengwuyue yshopmall up to 1.9.1. Affected is the function getP… | 2026-01-09T18:31:37Z | 2026-01-09T18:31:37Z |
| ghsa-8hfg-wp8c-fvqv |
6.5 (3.1)
|
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:37Z |
| ghsa-w273-q2jx-gwwp |
9.3 (4.0)
|
AccessAlly WordPress plugin versions prior to 3.3.2 contain an unauthenticated arbitrary PHP code e… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-vhrf-h3r9-63x8 |
5.4 (3.1)
|
In TIM BPM Suite/ TIM FLOW through 9.1.2 multiple Authorization Bypass vulnerabilities exists which… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-rg37-qjm5-vw5p |
6.3 (3.1)
2.1 (4.0)
|
A flaw has been found in RainyGao DocSys up to 2.02.36. The impacted element is an unknown function… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-q3wr-c9vh-mxp6 |
2.7 (3.1)
|
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-gq6h-g93p-6wqx |
6.9 (4.0)
|
Improper Input Validation vulnerability in TP-Link Archer AXE75 v1.6 (vpn modules) allows an authen… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-g6jg-q927-wwmp |
7.5 (3.1)
|
An issue in Hero Motocorp Vida V1 Pro 2.0.7 allows a local attacker to cause a denial of service vi… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-ffrr-jp4v-9v79 |
5.3 (3.1)
|
An issue in TIM Solution GmbH TIM BPM Suite & TIM FLOW before v.9.1.2 allows a remote attacker to e… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-f4rm-q33h-47w8 |
6.5 (3.1)
|
An issue in TIM Solution GmbH TIM BPM Suite & TIM FLOW before v.9.1.2 allows a remote attacker to e… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-6c7p-3rhg-7wgj |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability has been found in RainyGao DocSys up to 2.02.37. This affects an unknown function o… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-5v56-6x55-vhpv |
5.3 (3.1)
|
Missing Authorization vulnerability in Wikimedia Foundation MediaWiki - CampaignEvents extension al… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-348h-xmhf-cxqc |
5.4 (3.1)
|
In TIM BPM Suite/ TIM FLOW through 9.1.2 multiple Hibernate Query Language injection vulnerabilitie… | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-2388-fgq3-x3rp |
5.4 (3.1)
|
In TIM BPM Suite/ TIM FLOW through 9.1.2 multiple SQL injection vulnerabilities exists which allow … | 2026-01-09T18:31:36Z | 2026-01-09T18:31:36Z |
| ghsa-xg8w-4mgh-rwxq |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability was detected in RainyGao DocSys up to 2.02.36. The affected element is an unknown f… | 2026-01-09T18:31:35Z | 2026-01-09T18:31:35Z |
| ghsa-w3fc-rm7j-qh7j |
9.8 (3.1)
|
BeeS Software Solutions BET Portal contains an SQL injection vulnerability in the login functionali… | 2026-01-09T15:30:23Z | 2026-01-09T18:31:35Z |
| ghsa-mqfq-rfg7-86wc |
6.0 (3.1)
|
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions… | 2026-01-09T18:31:35Z | 2026-01-09T18:31:35Z |
| ghsa-96v6-28qx-cr4q |
2.3 (3.1)
|
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions… | 2026-01-09T18:31:35Z | 2026-01-09T18:31:35Z |
| ghsa-cp58-32qm-mgjw |
6.8 (3.1)
|
The NEX-Forms WordPress plugin before 9.1.8 does not sanitise and escape some of its settings. The… | 2026-01-09T06:31:06Z | 2026-01-09T18:31:34Z |
| ghsa-x687-v76r-f9gw |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: ext4: do not BUG when INLINE_D… | 2025-09-05T18:31:16Z | 2026-01-09T18:31:31Z |
| ghsa-grcg-mgx8-mfvf |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: eventpoll: Fix semi-unbounded … | 2025-08-19T18:31:34Z | 2026-01-09T18:31:31Z |
| ghsa-f5pp-p43c-5wxv |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for… | 2025-09-05T18:31:16Z | 2026-01-09T18:31:31Z |
| ghsa-c3j4-c39c-w5r2 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: smb/server: avoid deadlock whe… | 2025-09-05T18:31:16Z | 2026-01-09T18:31:31Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-1841 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-24T06:03:24.508190Z |
| gsd-2024-1865 | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-2813. Reason: This ca… | 2024-02-24T06:03:24.491243Z |
| gsd-2024-1852 | The WP-Members Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site … | 2024-02-24T06:03:24.490710Z |
| gsd-2024-1853 | Zemana AntiLogger v2.74.204.664 is vulnerable to an Arbitrary Process Termination vulnera… | 2024-02-24T06:03:24.430865Z |
| gsd-2024-1832 | A vulnerability has been found in SourceCodester Complete File Management System 1.0 and … | 2024-02-24T06:03:24.429450Z |
| gsd-2024-1868 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-24T06:03:24.413666Z |
| gsd-2024-1837 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-24T06:03:24.412463Z |
| gsd-2024-1820 | A vulnerability was found in code-projects Crime Reporting System 1.0. It has been declar… | 2024-02-24T06:03:24.399451Z |
| gsd-2024-1833 | A vulnerability was found in SourceCodester Employee Management System 1.0 and classified… | 2024-02-24T06:03:24.376452Z |
| gsd-2024-27290 | Docassemble is an expert system for guided interviews and document assembly. Prior to 1.4… | 2024-02-23T06:03:43.580634Z |
| gsd-2024-27287 | ESPHome is a system to control your ESP8266/ESP32 for Home Automation systems. Starting i… | 2024-02-23T06:03:43.575855Z |
| gsd-2024-27307 | JSONata is a JSON query and transformation language. Starting in version 1.4.0 and prior … | 2024-02-23T06:03:43.571125Z |
| gsd-2024-27286 | Zulip is an open-source team collaboration. When a user moves a Zulip message, they have … | 2024-02-23T06:03:43.570189Z |
| gsd-2024-27292 | Docassemble is an expert system for guided interviews and document assembly. The vulnerab… | 2024-02-23T06:03:43.568083Z |
| gsd-2024-27304 | pgx is a PostgreSQL driver and toolkit for Go. SQL injection can occur if an attacker can… | 2024-02-23T06:03:43.566567Z |
| gsd-2024-27295 | Directus is a real-time API and App dashboard for managing SQL database content. The pass… | 2024-02-23T06:03:43.564623Z |
| gsd-2024-27301 | Support App is an opensource application specialized in managing Apple devices. It's poss… | 2024-02-23T06:03:43.560774Z |
| gsd-2024-27288 | 1Panel is an open source Linux server operation and maintenance management panel. Prior t… | 2024-02-23T06:03:43.557634Z |
| gsd-2024-27284 | cassandra-rs is a Cassandra (CQL) driver for Rust. Code that attempts to use an item (e.g… | 2024-02-23T06:03:43.554301Z |
| gsd-2024-27303 | electron-builder is a solution to package and build a ready for distribution Electron, Pr… | 2024-02-23T06:03:43.542192Z |
| gsd-2024-27294 | dp-golang is a Puppet module for Go installations. Prior to 1.2.7, dp-golang could insta… | 2024-02-23T06:03:43.540847Z |
| gsd-2024-27296 | Directus is a real-time API and App dashboard for managing SQL database content. Prior to… | 2024-02-23T06:03:43.540200Z |
| gsd-2024-27289 | pgx is a PostgreSQL driver and toolkit for Go. Prior to version 4.18.2, SQL injection can… | 2024-02-23T06:03:43.537024Z |
| gsd-2024-27300 | phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and oth… | 2024-02-23T06:03:43.533257Z |
| gsd-2024-27309 | While an Apache Kafka cluster is being migrated from ZooKeeper mode to KRaft mode, in som… | 2024-02-23T06:03:43.529837Z |
| gsd-2024-27293 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-23T06:03:43.526024Z |
| gsd-2024-27305 | aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd i… | 2024-02-23T06:03:43.524132Z |
| gsd-2024-27285 | YARD is a Ruby Documentation tool. The "frames.html" file within the Yard Doc's generated… | 2024-02-23T06:03:43.523375Z |
| gsd-2024-27297 | Nix is a package manager for Linux and other Unix systems. A fixed-output derivations on … | 2024-02-23T06:03:43.509309Z |
| gsd-2024-27291 | Docassemble is an expert system for guided interviews and document assembly. Prior to 1.4… | 2024-02-23T06:03:43.506108Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-185955 | Malicious code in byte-decompress-cold-deploy-wind (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185954 | Malicious code in byte-assert-finally-hot-sanitize (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185953 | Malicious code in bunyan-titan-sadr-loop (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185952 | Malicious code in bunyan-spectron-webdriver-less-magellan (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185951 | Malicious code in bunyan-resonance-mensa-concurrently (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185950 | Malicious code in bunyan-release-it-carpo-request (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185949 | Malicious code in bunyan-redis-capella-html-webpack-plugin (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185948 | Malicious code in bunyan-radioastronomy-interstellarmedium-outercore (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185947 | Malicious code in bunyan-pegasus-primatology-quantum-computing (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185946 | Malicious code in bunyan-jasmine-winston-geoarchaeology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185945 | Malicious code in bunyan-cosmicray-membrane-terser (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185944 | Malicious code in bunyan-carina-adonis-mysql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185943 | Malicious code in bunyan-callback-pipe-mysql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185942 | Malicious code in bunyan-areology-glaciology-charon (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185941 | Malicious code in bundle-theta-virtualize-sanitize-sigma (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185940 | Malicious code in bundle-static-pipe-mu-float (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185939 | Malicious code in bundle-alert-runtime-private-bundle (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185938 | Malicious code in bulma-yonder-acamar-ichnology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185937 | Malicious code in bulma-titan-axios-ariel (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185936 | Malicious code in bulma-regulus-mesosphere-resolvers (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185935 | Malicious code in bulma-rate-limiter-nodemon-aurora (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185934 | Malicious code in bulma-promise-redgiant-xenobiology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185933 | Malicious code in bulma-interferometry-mesosphere-jabbah (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185932 | Malicious code in bulma-equinox-build-nova (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185931 | Malicious code in build-perseus-repository-asteroid (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185930 | Malicious code in build-neptunology-neptunology-adonis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185929 | Malicious code in build-hapi-registry-quark (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185928 | Malicious code in build-geoarchaeology-mutation-library (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185927 | Malicious code in build-farout-cz-conventional-changelog-rocket (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185926 | Malicious code in build-enceladus-supernova-joviology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2022-1678 | tribe29 checkmk: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-10-11T22:00:00.000+00:00 | 2023-02-20T23:00:00.000+00:00 |
| wid-sec-w-2022-1623 | tribe29 checkmk: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-10-04T22:00:00.000+00:00 | 2023-02-20T23:00:00.000+00:00 |
| wid-sec-w-2022-1259 | tribe29 checkmk: Mehrere Schwachstellen ermöglichen Codeausführung | 2022-09-01T22:00:00.000+00:00 | 2023-02-20T23:00:00.000+00:00 |
| wid-sec-w-2022-0971 | Red Hat OpenShift: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-05-08T22:00:00.000+00:00 | 2023-02-20T23:00:00.000+00:00 |
| wid-sec-w-2023-0425 | IBM Security Verify Access: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-02-19T23:00:00.000+00:00 | 2023-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-0423 | Zabbix: Schwachstelle ermöglicht Privilegieneskalation | 2023-02-19T23:00:00.000+00:00 | 2023-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-0421 | SaltStack Salt: Schwachstelle ermöglicht Codeausführung | 2023-02-19T23:00:00.000+00:00 | 2023-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-0419 | IBM MQ: Mehrere Schwachstellen | 2023-02-19T23:00:00.000+00:00 | 2023-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-0417 | Joomla: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-02-16T23:00:00.000+00:00 | 2023-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-0339 | Snort: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2021-01-13T23:00:00.000+00:00 | 2023-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-0026 | IBM Maximo Asset Management: Mehrere Schwachstellen | 2023-01-04T23:00:00.000+00:00 | 2023-02-19T23:00:00.000+00:00 |
| wid-sec-w-2022-2335 | IBM AIX: Mehrere Schwachstellen | 2022-12-14T23:00:00.000+00:00 | 2023-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-0415 | Kibana: Schwachstelle ermöglicht Darstellen falscher Informationen | 2023-02-16T23:00:00.000+00:00 | 2023-02-16T23:00:00.000+00:00 |
| wid-sec-w-2023-0413 | Mattermost: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-02-16T23:00:00.000+00:00 | 2023-02-16T23:00:00.000+00:00 |
| wid-sec-w-2023-0412 | IBM Security Guardium: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-02-16T23:00:00.000+00:00 | 2023-02-16T23:00:00.000+00:00 |
| wid-sec-w-2023-0411 | Fortinet FortiOS: Schwachstelle ermöglicht Cross-Site Scripting | 2023-02-16T23:00:00.000+00:00 | 2023-02-16T23:00:00.000+00:00 |
| wid-sec-w-2023-0410 | Fortinet FortiAnalyzer: Schwachstelle ermöglicht Cross-Site Scripting | 2023-02-16T23:00:00.000+00:00 | 2023-02-16T23:00:00.000+00:00 |
| wid-sec-w-2023-0409 | Fortinet FortiSandbox: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-02-16T23:00:00.000+00:00 | 2023-02-16T23:00:00.000+00:00 |
| wid-sec-w-2023-0408 | Fortinet FortiAuthenticator: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-02-16T23:00:00.000+00:00 | 2023-02-16T23:00:00.000+00:00 |
| wid-sec-w-2023-0368 | Microsoft Exchange: Mehrere Schwachstellen ermöglichen Codeausführung | 2023-02-14T23:00:00.000+00:00 | 2023-02-16T23:00:00.000+00:00 |
| wid-sec-w-2023-0058 | Microsoft Exchange Server: Mehrere Schwachstellen | 2023-01-10T23:00:00.000+00:00 | 2023-02-16T23:00:00.000+00:00 |
| wid-sec-w-2023-0406 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2019-04-03T22:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2023-0403 | Netgate pfSense: Mehrere Schwachstellen | 2023-02-15T23:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2023-0401 | Cisco Identity Services Engine (ISE): Schwachstelle ermöglicht Cross-Site Scripting | 2023-02-15T23:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2023-0399 | Cisco AsyncOS: Mehrere Schwachstellen | 2023-02-15T23:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2023-0396 | Red Hat OpenShift Network observability: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-02-15T23:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2022-2403 | Linux Kernel ksmbd: Mehrere Schwachstellen | 2022-12-22T23:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2022-1900 | Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2022-10-30T23:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2022-1631 | Cisco Web Security Appliance: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-10-05T22:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2022-1599 | Android Patchday October 2022 | 2022-10-03T22:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:4225 | Red Hat Security Advisory: mod_auth_openidc security update | 2025-04-28T00:22:37+00:00 | 2025-11-21T19:34:13+00:00 |
| rhsa-2025:4224 | Red Hat Security Advisory: mod_auth_openidc security update | 2025-04-28T00:22:52+00:00 | 2025-11-21T19:34:13+00:00 |
| rhsa-2025:4098 | Red Hat Security Advisory: libxslt security update | 2025-04-23T10:23:14+00:00 | 2025-11-21T19:34:13+00:00 |
| rhsa-2025:4192 | Red Hat Security Advisory: mod_auth_openidc:2.3 security update | 2025-04-24T16:08:21+00:00 | 2025-11-21T19:34:12+00:00 |
| rhsa-2025:4170 | Red Hat Security Advisory: thunderbird security update | 2025-04-24T11:34:54+00:00 | 2025-11-21T19:34:11+00:00 |
| rhsa-2025:4169 | Red Hat Security Advisory: thunderbird security update | 2025-04-24T11:29:08+00:00 | 2025-11-21T19:34:11+00:00 |
| rhsa-2025:4128 | Red Hat Security Advisory: mod_auth_openidc:2.3 security update | 2025-04-23T10:20:19+00:00 | 2025-11-21T19:34:11+00:00 |
| rhsa-2025:4051 | Red Hat Security Advisory: gnutls security update | 2025-04-23T10:39:54+00:00 | 2025-11-21T19:34:10+00:00 |
| rhsa-2025:4049 | Red Hat Security Advisory: libtasn1 security update | 2025-04-23T11:47:59+00:00 | 2025-11-21T19:34:10+00:00 |
| rhsa-2025:4043 | Red Hat Security Advisory: bluez security update | 2025-04-23T10:40:54+00:00 | 2025-11-21T19:34:09+00:00 |
| rhsa-2025:4039 | Red Hat Security Advisory: virtuoso-opensource security update | 2025-04-23T10:07:49+00:00 | 2025-11-21T19:34:09+00:00 |
| rhsa-2025:4032 | Red Hat Security Advisory: thunderbird security update | 2025-04-23T10:10:10+00:00 | 2025-11-21T19:34:08+00:00 |
| rhsa-2025:4031 | Red Hat Security Advisory: thunderbird security update | 2025-04-23T10:11:19+00:00 | 2025-11-21T19:34:08+00:00 |
| rhsa-2025:4030 | Red Hat Security Advisory: thunderbird security update | 2025-04-23T10:12:24+00:00 | 2025-11-21T19:34:08+00:00 |
| rhsa-2025:4029 | Red Hat Security Advisory: thunderbird security update | 2025-04-23T10:17:09+00:00 | 2025-11-21T19:34:08+00:00 |
| rhsa-2025:3978 | Red Hat Security Advisory: postgresql security update | 2025-04-17T07:19:08+00:00 | 2025-11-21T19:34:08+00:00 |
| rhsa-2025:4028 | Red Hat Security Advisory: thunderbird security update | 2025-04-23T10:10:54+00:00 | 2025-11-21T19:34:07+00:00 |
| rhsa-2025:4026 | Red Hat Security Advisory: thunderbird security update | 2025-04-23T10:12:34+00:00 | 2025-11-21T19:34:07+00:00 |
| rhsa-2025:4027 | Red Hat Security Advisory: thunderbird security update | 2025-04-23T10:12:09+00:00 | 2025-11-21T19:34:06+00:00 |
| rhsa-2025:4025 | Red Hat Security Advisory: libxslt security update | 2025-04-23T11:55:24+00:00 | 2025-11-21T19:34:06+00:00 |
| rhsa-2025:3965 | Red Hat Security Advisory: openvswitch3.4 security update | 2025-04-17T00:20:17+00:00 | 2025-11-21T19:34:05+00:00 |
| rhsa-2025:3997 | Red Hat Security Advisory: mod_auth_openidc:2.3 security update | 2025-04-23T11:58:55+00:00 | 2025-11-21T19:34:04+00:00 |
| rhsa-2025:3974 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-04-17T06:50:23+00:00 | 2025-11-21T19:34:03+00:00 |
| rhsa-2025:3970 | Red Hat Security Advisory: openvswitch3.1 security update | 2025-04-17T00:13:47+00:00 | 2025-11-21T19:34:03+00:00 |
| rhsa-2025:3964 | Red Hat Security Advisory: openvswitch3.3 security update | 2025-04-17T00:13:47+00:00 | 2025-11-21T19:34:02+00:00 |
| rhsa-2025:3963 | Red Hat Security Advisory: openvswitch3.1 security update | 2025-04-17T00:07:52+00:00 | 2025-11-21T19:34:02+00:00 |
| rhsa-2025:3961 | Red Hat Security Advisory: kpatch-patch-5_14_0-70_112_1, kpatch-patch-5_14_0-70_121_1, kpatch-patch-5_14_0-70_124_1, and kpatch-patch-5_14_0-70_85_1 security update | 2025-04-16T19:59:36+00:00 | 2025-11-21T19:34:02+00:00 |
| rhsa-2025:3945 | Red Hat Security Advisory: mod_auth_openidc security update | 2025-04-16T10:34:55+00:00 | 2025-11-21T19:34:01+00:00 |
| rhsa-2025:3801 | Red Hat Security Advisory: RHEL AI 1.5 hdf5 security update | 2025-04-10T09:42:14+00:00 | 2025-11-21T19:33:47+00:00 |
| rhsa-2025:3756 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-04-09T14:03:47+00:00 | 2025-11-21T19:33:46+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-23374 | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 2023-02-14T08:00:00.000Z | 2023-02-09T08:00:00.000Z |
| msrc_cve-2023-21794 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2023-02-14T08:00:00.000Z | 2023-02-09T08:00:00.000Z |
| msrc_cve-2022-4883 | A flaw was found in libXpm. When processing files with .Z or .gz extensions the library calls external programs to compress and uncompress files relying on the PATH environment variable to find these programs which could allow a malicious user to execute other programs by manipulating the PATH environment variable. | 2023-02-01T00:00:00.000Z | 2023-02-08T00:00:00.000Z |
| msrc_cve-2022-46285 | A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the end-of-file condition will not be detected leading to an infinite loop and resulting in a Denial of Service in the application linked to the library. | 2023-02-01T00:00:00.000Z | 2023-02-08T00:00:00.000Z |
| msrc_cve-2022-44666 | Windows Contacts Remote Code Execution Vulnerability | 2022-12-13T08:00:00.000Z | 2023-02-07T08:00:00.000Z |
| msrc_cve-2023-0512 | Divide By Zero in vim/vim | 2023-01-04T00:00:00.000Z | 2023-02-07T00:00:00.000Z |
| msrc_cve-2023-0266 | Use after free in SNDRV_CTL_IOCTL_ELEM in Linux Kernel | 2023-01-04T00:00:00.000Z | 2023-02-07T00:00:00.000Z |
| msrc_cve-2022-44617 | A flaw was found in libXpm. When processing a file with width of 0 and a very large height some parser functions will be called repeatedly and can lead to an infinite loop resulting in a Denial of Service in the application linked to the library. | 2023-02-01T00:00:00.000Z | 2023-02-07T00:00:00.000Z |
| msrc_cve-2022-3924 | named configured to answer from stale cache may terminate unexpectedly at recursive-clients soft quota | 2023-01-04T00:00:00.000Z | 2023-02-07T00:00:00.000Z |
| msrc_cve-2022-27666 | A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat. | 2022-03-02T00:00:00.000Z | 2023-02-07T00:00:00.000Z |
| msrc_cve-2023-21725 | Windows Malicious Software Removal Tool Elevation of Privilege Vulnerability | 2023-01-10T08:00:00.000Z | 2023-02-06T08:00:00.000Z |
| msrc_cve-2022-42919 | Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non-default configuration. The Python multiprocessing library when used with the forkserver start method on Linux allows pickles to be deserialized from any user in the same machine local network namespace which in many system configurations means any user on the same machine. Pickles can execute arbitrary code. Thus this allows for local user privilege escalation to the user that any forkserver process is running as. Setting multiprocessing.util.abstract_sockets_supported to False is a workaround. The forkserver start method for multiprocessing is not the default start method. This issue is Linux specific because only Linux supports abstract namespace sockets. CPython before 3.9 does not make use of Linux abstract namespace sockets by default. Support for users manually specifying an abstract namespace socket was added as a bugfix in 3.7.8 and 3.8.3 but users would need to make specific | 2022-11-02T00:00:00.000Z | 2023-02-06T00:00:00.000Z |
| msrc_cve-2022-25147 | Apache Portable Runtime Utility (APR-util): out-of-bounds writes in the apr_base64 family of functions | 2023-01-04T00:00:00.000Z | 2023-02-06T00:00:00.000Z |
| msrc_cve-2022-38725 | An integer overflow in the RFC3164 parser in One Identity syslog-ng 3.0 through 3.37 allows remote attackers to cause a Denial of Service via crafted syslog input that is mishandled by the tcp or network function. syslog-ng Premium Edition 7.0.30 and syslog-ng Store Box 6.10.0 are also affected. | 2023-01-04T00:00:00.000Z | 2023-02-04T00:00:00.000Z |
| msrc_cve-2022-3736 | named configured to answer from stale cache may terminate unexpectedly while processing RRSIG queries | 2023-01-04T00:00:00.000Z | 2023-02-04T00:00:00.000Z |
| msrc_cve-2022-3094 | An UPDATE message flood may cause named to exhaust all available memory | 2023-01-04T00:00:00.000Z | 2023-02-04T00:00:00.000Z |
| msrc_cve-2023-21720 | Microsoft Edge (Chromium-based) Tampering Vulnerability | 2023-02-14T08:00:00.000Z | 2023-02-03T08:00:00.000Z |
| msrc_cve-2022-1943 | A flaw out of bounds memory write in the Linux kernel UDF file system functionality was found in the way user triggers some file operation which triggers udf_write_fi(). A local user could use this flaw to crash the system or potentially | 2022-06-02T00:00:00.000Z | 2023-02-03T00:00:00.000Z |
| msrc_cve-2023-0469 | A use-after-free flaw was found in io_uring/filetable.c in io_install_fixed_file in the io_uring subcomponent in the Linux Kernel during call cleanup. This flaw may lead to a denial of service. | 2023-01-04T00:00:00.000Z | 2023-02-02T00:00:00.000Z |
| msrc_cve-2023-0468 | A use-after-free flaw was found in io_uring/poll.c in io_poll_check_events in the io_uring subcomponent in the Linux Kernel due to a race condition of poll_refs. This flaw may cause a NULL pointer dereference. | 2023-01-04T00:00:00.000Z | 2023-02-02T00:00:00.000Z |
| msrc_cve-2023-0394 | A NULL pointer dereference flaw was found in rawv6_push_pending_frames in net/ipv6/raw.c in the network subcomponent in the Linux kernel. This flaw causes the system to crash. | 2023-01-04T00:00:00.000Z | 2023-02-02T00:00:00.000Z |
| msrc_cve-2022-41064 | .NET Framework Information Disclosure Vulnerability | 2022-11-08T08:00:00.000Z | 2023-02-01T08:00:00.000Z |
| msrc_cve-2023-0433 | Heap-based Buffer Overflow in vim/vim | 2023-01-04T00:00:00.000Z | 2023-01-31T00:00:00.000Z |
| msrc_cve-2022-48281 | processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g. "WRITE of size 307203") via a crafted TIFF image. | 2023-01-04T00:00:00.000Z | 2023-01-31T00:00:00.000Z |
| msrc_cve-2023-24056 | In pkgconf through 1.9.3 variable duplication can cause unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconf_tuple_parse. For example a .pc file containing a few hundred bytes can expand to one billion bytes. | 2023-01-04T00:00:00.000Z | 2023-01-30T00:00:00.000Z |
| msrc_cve-2022-47929 | In the Linux kernel before 6.1.6 a NULL pointer dereference bug in the traffic control subsystem allows an unprivileged user to trigger a denial of service (system crash) via a crafted traffic control configuration that is set up with "tc qdisc" and "tc class" commands. This affects qdisc_graft in net/sched/sch_api.c. | 2023-01-04T00:00:00.000Z | 2023-01-30T00:00:00.000Z |
| msrc_cve-2022-35977 | Integer overflow in certain command arguments can drive Redis to OOM panic | 2023-01-04T00:00:00.000Z | 2023-01-30T00:00:00.000Z |
| msrc_cve-2023-21712 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | 2023-01-10T08:00:00.000Z | 2023-01-27T08:00:00.000Z |
| msrc_cve-2021-42291 | Active Directory Domain Services Elevation of Privilege Vulnerability | 2021-11-09T08:00:00.000Z | 2023-01-26T08:00:00.000Z |
| msrc_cve-2023-21887 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: GIS). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-01-04T00:00:00.000Z | 2023-01-26T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201411-0455 | Cross-site scripting (XSS) vulnerability in s_network.asp in the Denon AVR-3313CI audio/v… | 2025-04-13T23:37:37.761000Z |
| var-201412-0527 | host-deny.sh in OSSEC before 2.8.1 writes to temporary files with predictable filenames w… | 2025-04-13T23:37:37.113000Z |
| var-201412-0588 | XML external entity (XXE) vulnerability in the WebHMI server in Yokogawa Electric Corpora… | 2025-04-13T23:37:37.074000Z |
| var-201412-0590 | FUJITSU F-12C, ARROWS Tab LTE F-01D, ARROWS Kiss F-03D, and REGZA Phone T-01D for Android… | 2025-04-13T23:37:37.042000Z |
| var-201501-0247 | Juniper Junos 11.4 before 11.4R13, 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D30… | 2025-04-13T23:37:36.856000Z |
| var-201501-0583 | Multiple cross-site request forgery (CSRF) vulnerabilities in webconfig/wlan/country.html… | 2025-04-13T23:37:36.736000Z |
| var-201502-0133 | The web interface in Cisco Integrated Management Controller in Cisco Unified Computing Sy… | 2025-04-13T23:37:36.563000Z |
| var-201503-0175 | The web-authentication functionality on Cisco Wireless LAN Controller (WLC) devices 7.3(1… | 2025-04-13T23:37:36.340000Z |
| var-201504-0288 | Cisco IOS 15.5S and IOS XE allow remote authenticated users to cause a denial of service … | 2025-04-13T23:37:36.127000Z |
| var-201505-0014 | The automatic signature update functionality in the (1) Phone Home feature in F5 BIG-IP L… | 2025-04-13T23:37:32.408000Z |
| var-201506-0115 | The management web interface in Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400,… | 2025-04-13T23:37:32.195000Z |
| var-201506-0157 | Cisco ONS 15454 System Software 10.30 and 10.301 allows remote attackers to cause a denia… | 2025-04-13T23:37:32.161000Z |
| var-201506-0243 | The administrative web interface in Cisco Identity Services Engine (ISE) before 1.3 allow… | 2025-04-13T23:37:32.078000Z |
| var-201506-0306 | The web-based user interface in Cisco Jabber through 9.6(3) and 9.7 through 9.7(5) on Win… | 2025-04-13T23:37:32.015000Z |
| var-201507-0241 | Cisco Videoscape Distribution Suite Service Broker (aka VDS-SB), when a VDSM configuratio… | 2025-04-13T23:37:31.870000Z |
| var-201507-0514 | The web framework in Cisco UCS Central Software 1.3(0.99) allows remote attackers to read… | 2025-04-13T23:37:31.779000Z |
| var-201508-0010 | GE Healthcare Optima MR360 does not require authentication for the HIPAA emergency login … | 2025-04-13T23:37:31.686000Z |
| var-201508-0201 | Pulse Connect Secure (aka PCS and formerly Juniper PCS) PSC6000, PCS6500, and MAG PSC360 … | 2025-04-13T23:37:31.593000Z |
| var-201508-0392 | The IPsec SA establishment process on Innominate mGuard devices with firmware 8.x before … | 2025-04-13T23:37:31.514000Z |
| var-201509-0020 | Cisco Secure Access Control Server (ACS) Solution Engine 5.7(0.15) allows remote authenti… | 2025-04-13T23:37:31.442000Z |
| var-201510-0005 | Cisco Email Security Appliance (ESA) 8.5.6-106 and 9.6.0-042 allows remote authenticated … | 2025-04-13T23:37:31.270000Z |
| var-201510-0007 | Cisco Wireless LAN Controller (WLC) devices with software 7.0(240.0), 7.3(101.0), and 7.4… | 2025-04-13T23:37:31.237000Z |
| var-201510-0028 | Cisco ASR 5500 System Architecture Evolution (SAE) Gateway devices with software 19.1.0.6… | 2025-04-13T23:37:31.200000Z |
| var-201510-0030 | Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight Management Center … | 2025-04-13T23:37:31.170000Z |
| var-201511-0004 | Cisco AsyncOS before 8.5.7-042, 9.x before 9.1.0-032, 9.1.x before 9.1.1-023, and 9.5.x a… | 2025-04-13T23:37:31.069000Z |
| var-201511-0006 | Cisco AsyncOS before 8.5.7-043, 9.x before 9.1.1-023, and 9.5.x and 9.6.x before 9.6.0-04… | 2025-04-13T23:37:31.033000Z |
| var-201511-0008 | Cisco AsyncOS 8.x before 8.0.8-113, 8.1.x and 8.5.x before 8.5.3-051, 8.6.x and 8.7.x bef… | 2025-04-13T23:37:30.995000Z |
| var-201512-0241 | Huawei USG5500, USG2100, USG2200, and USG5100 unified security gateways with software bef… | 2025-04-13T23:37:30.799000Z |
| var-201512-0386 | The Mobile and Remote Access (MRA) services implementation in Cisco Unified Communication… | 2025-04-13T23:37:30.744000Z |
| var-201512-0407 | Multiple cross-site scripting (XSS) vulnerabilities in Cisco Emergency Responder 10.5(1a)… | 2025-04-13T23:37:30.711000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:1454-1 | Security update for python-pip | 2022-04-28T09:15:23Z | 2022-04-28T09:15:23Z |
| suse-su-2022:1453-1 | Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP3) | 2022-04-28T09:03:59Z | 2022-04-28T09:03:59Z |
| suse-su-2022:1448-1 | Security update for python-requests | 2022-04-28T08:18:24Z | 2022-04-28T08:18:24Z |
| suse-su-2022:1447-1 | Security update for python-paramiko | 2022-04-28T07:47:28Z | 2022-04-28T07:47:28Z |
| suse-su-2022:1446-1 | Security update for python-paramiko | 2022-04-28T07:47:16Z | 2022-04-28T07:47:16Z |
| suse-su-2022:1440-1 | Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) | 2022-04-27T14:40:36Z | 2022-04-27T14:40:36Z |
| suse-su-2022:1437-1 | Security update for buildah | 2022-04-27T12:55:23Z | 2022-04-27T12:55:23Z |
| suse-su-2022:1436-1 | Security update for libaom | 2022-04-27T12:53:28Z | 2022-04-27T12:53:28Z |
| suse-su-2022:1435-1 | Security update for firewalld, golang-github-prometheus-prometheus | 2022-04-27T12:34:56Z | 2022-04-27T12:34:56Z |
| suse-su-2022:1434-1 | Security update for golang-github-prometheus-prometheus | 2022-04-27T12:33:28Z | 2022-04-27T12:33:28Z |
| suse-su-2022:1433-1 | Security update for golang-github-prometheus-prometheus | 2022-04-27T12:33:17Z | 2022-04-27T12:33:17Z |
| suse-su-2022:1431-1 | Security update for webkit2gtk3 | 2022-04-27T09:34:55Z | 2022-04-27T09:34:55Z |
| suse-su-2022:1430-1 | Security update for cifs-utils | 2022-04-27T08:01:56Z | 2022-04-27T08:01:56Z |
| suse-su-2022:1429-1 | Security update for cifs-utils | 2022-04-27T08:00:29Z | 2022-04-27T08:00:29Z |
| suse-su-2022:1428-1 | Security update for cifs-utils | 2022-04-27T08:00:07Z | 2022-04-27T08:00:07Z |
| suse-su-2022:1427-1 | Security update for cifs-utils | 2022-04-27T08:00:00Z | 2022-04-27T08:00:00Z |
| suse-su-2022:14951-1 | Security update for cifs-utils | 2022-04-27T07:59:50Z | 2022-04-27T07:59:50Z |
| suse-su-2022:14950-1 | Security update for cifs-utils | 2022-04-27T07:59:37Z | 2022-04-27T07:59:37Z |
| suse-fu-2022:1419-1 | Feature update for grafana | 2022-04-27T07:20:15Z | 2022-04-27T07:20:15Z |
| suse-su-2022:1418-1 | Security update for ant | 2022-04-27T07:19:42Z | 2022-04-27T07:19:42Z |
| suse-su-2022:1417-1 | Security update for ant | 2022-04-27T07:19:20Z | 2022-04-27T07:19:20Z |
| suse-su-2022:1411-1 | Security update for go1.17 | 2022-04-26T15:49:12Z | 2022-04-26T15:49:12Z |
| suse-su-2022:1410-1 | Security update for go1.18 | 2022-04-26T15:48:39Z | 2022-04-26T15:48:39Z |
| suse-su-2022:1408-1 | Security update for xen | 2022-04-26T09:19:38Z | 2022-04-26T09:19:38Z |
| suse-su-2022:1407-1 | Security update for the Linux Kernel | 2022-04-26T09:19:06Z | 2022-04-26T09:19:06Z |
| suse-su-2022:1402-1 | Security update for the Linux Kernel | 2022-04-26T06:55:18Z | 2022-04-26T06:55:18Z |
| suse-su-2022:1329-1 | Security update for the Linux Kernel (Live Patch 28 for SLE 15) | 2022-04-25T15:04:13Z | 2022-04-25T15:04:13Z |
| suse-su-2022:1397-1 | Security update for SUSE Manager Server 4.2 | 2022-04-25T14:43:53Z | 2022-04-25T14:43:53Z |
| suse-su-2022:1396-1 | Security update for SUSE Manager Client Tools | 2022-04-25T14:43:36Z | 2022-04-25T14:43:36Z |
| suse-ru-2022:1392-1 | Recommended update for salt | 2022-04-25T14:42:45Z | 2022-04-25T14:42:45Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-06052 | Huawei HarmonyOS UI框架模块日志信息控制不当漏洞 | 2025-02-18 | 2025-03-28 |
| cnvd-2025-06050 | Huawei HarmonyOS和EMUI emcom模块越界写入漏洞 | 2025-02-18 | 2025-03-28 |
| cnvd-2025-06049 | TRENDnet TEW-929DRU /cbi_addcert.htm页面跨站脚本漏洞 | 2025-03-13 | 2025-03-28 |
| cnvd-2025-06048 | X2CRM跨站脚本漏洞 | 2024-10-17 | 2025-03-28 |
| cnvd-2025-06047 | OneBlog模板注入漏洞 | 2025-03-03 | 2025-03-28 |
| cnvd-2025-06046 | Google Chrome沙箱逃逸漏洞 | 2025-03-28 | 2025-03-28 |
| cnvd-2025-06045 | Open Panel权限提升漏洞 | 2025-03-21 | 2025-03-28 |
| cnvd-2025-06044 | D-Link DAP-1620 mod_graph_auth_uri_handler函数堆栈缓冲区溢出漏洞 | 2025-03-27 | 2025-03-28 |
| cnvd-2025-06043 | D-Link DAP-1620 check_dws_cookie函数堆栈缓冲区溢出漏洞 | 2025-03-27 | 2025-03-28 |
| cnvd-2025-05930 | 统信软件技术有限公司统信UOS系统存在任意文件读取漏洞 | 2025-02-06 | 2025-03-28 |
| cnvd-2025-05907 | 上海上讯信息技术股份有限公司运维管理审计系统存在文件上传漏洞 | 2025-01-28 | 2025-03-28 |
| cnvd-2025-06548 | Tencent TDSQL存在未明漏洞(CNVD-2025-06548) | 2024-01-09 | 2025-03-27 |
| cnvd-2025-06042 | Google Chrome安全绕过漏洞(CNVD-2025-06042) | 2025-01-17 | 2025-03-27 |
| cnvd-2025-06041 | Google Chrome安全绕过漏洞(CNVD-2025-06041) | 2025-01-17 | 2025-03-27 |
| cnvd-2025-06040 | Google Chrome安全绕过漏洞(CNVD-2025-06040) | 2025-01-17 | 2025-03-27 |
| cnvd-2025-06039 | Google Chrome代码执行漏洞(CNVD-2025-06039) | 2025-01-17 | 2025-03-27 |
| cnvd-2025-06038 | Google Chrome代码执行漏洞(CNVD-2025-06038) | 2025-01-17 | 2025-03-27 |
| cnvd-2025-06037 | Google Chrome安全绕过漏洞(CNVD-2025-06037) | 2025-01-17 | 2025-03-27 |
| cnvd-2025-05946 | Cisco Secure Email Gateway访问控制错误漏洞 | 2025-02-24 | 2025-03-27 |
| cnvd-2025-05886 | Ingress NGINX Controller存在远程代码执行漏洞(CNVD-2025-05886) | 2025-03-27 | 2025-03-27 |
| cnvd-2025-05885 | Ingress NGINX Controller存在远程代码执行漏洞(CNVD-2025-05885) | 2025-03-27 | 2025-03-27 |
| cnvd-2025-05884 | Ingress NGINX Controller存在远程代码执行漏洞( CNVD-2025-05884) | 2025-03-27 | 2025-03-27 |
| cnvd-2025-05883 | Ingress NGINX Controller存在远程代码执行漏洞( CNVD-2025-05883) | 2025-03-27 | 2025-03-27 |
| cnvd-2025-05817 | Vite存在访问控制错误漏洞(CNVD-2025-05817) | 2025-03-27 | 2025-03-27 |
| cnvd-2025-06512 | Tencent WeChat存在未明漏洞(CNVD-2025-06512) | 2024-07-31 | 2025-03-26 |
| cnvd-2025-06484 | Apple GarageBand存在未明漏洞(CNVD-2025-06484) | 2025-02-17 | 2025-03-26 |
| cnvd-2025-05995 | Linux kernel存在内存泄露漏洞(CNVD-2025-05995) | 2025-03-05 | 2025-03-26 |
| cnvd-2025-05716 | Vercel Next.js权限绕过漏洞 | 2025-03-25 | 2025-03-26 |
| cnvd-2025-05715 | Adobe Commerce权限提升漏洞(CNVD-2025-05715) | 2025-02-17 | 2025-03-26 |
| cnvd-2025-05714 | Adobe Commerce安全绕过漏洞(CNVD-2025-05714) | 2025-02-17 | 2025-03-26 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2013-avi-632 | Vulnérabilité dans le pilote de gestion des sockets de Microsoft Windows | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-631 | Vulnérabilité dans Microsoft Hyper-V | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-630 | Multiples vulnérabilités dans Microsoft Office | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-629 | Vulnérabilité dans Microsoft ActiveX | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-628 | Vulnérabilité dans Microsoft GDI | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-627 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-626 | Multiples vulnérabilités dans SPIP | 2013-11-12T00:00:00.000000 | 2013-11-12T00:00:00.000000 |
| certa-2013-avi-625 | Vulnérabilité dans Xen | 2013-11-12T00:00:00.000000 | 2013-11-12T00:00:00.000000 |
| certa-2013-avi-624 | Multiples vulnérabilités dans Samba | 2013-11-12T00:00:00.000000 | 2013-11-12T00:00:00.000000 |
| certa-2013-avi-623 | Vulnérabilité dans OpenSSH | 2013-11-12T00:00:00.000000 | 2013-11-12T00:00:00.000000 |
| certa-2013-avi-622 | Vulnérabilité dans ISC BIND | 2013-11-08T00:00:00.000000 | 2013-11-08T00:00:00.000000 |
| certa-2013-avi-621 | Vulnérabilité dans IBM Lotus Sametime WebPlayer | 2013-11-08T00:00:00.000000 | 2013-11-08T00:00:00.000000 |
| certa-2013-avi-620 | Vulnérabilité dans Cisco TelePresence VX Clinical Assistant | 2013-11-07T00:00:00.000000 | 2013-11-07T00:00:00.000000 |
| certa-2013-avi-619 | Vulnérabilité dans Cisco WAAS Mobile | 2013-11-07T00:00:00.000000 | 2013-11-07T00:00:00.000000 |
| certa-2013-avi-618 | Vulnérabilité dans Cisco IOS Software | 2013-11-07T00:00:00.000000 | 2013-11-07T00:00:00.000000 |
| certa-2013-avi-617 | Multiples vulnérabilités dans Xen | 2013-11-05T00:00:00.000000 | 2013-11-05T00:00:00.000000 |
| certa-2013-avi-616 | Multiples vulnérabilités dans Wireshark | 2013-11-04T00:00:00.000000 | 2013-11-04T00:00:00.000000 |
| certa-2013-avi-615 | Multiples vulnérabilités dans Cisco IOS XE Software | 2013-10-31T00:00:00.000000 | 2013-10-31T00:00:00.000000 |
| certa-2013-avi-614 | Vulnérabilité dans EMC Unisphere | 2013-10-31T00:00:00.000000 | 2013-10-31T00:00:00.000000 |
| certa-2013-avi-613 | Multiples vulnérabilités dans les produits Mozilla | 2013-10-31T00:00:00.000000 | 2013-10-31T00:00:00.000000 |
| certa-2013-avi-612 | Vulnérabilité dans EMC NetWorker | 2013-10-29T00:00:00.000000 | 2013-10-29T00:00:00.000000 |
| certa-2013-avi-611 | Multiples vulnérabilités dans F5-ARX | 2013-10-29T00:00:00.000000 | 2013-10-29T00:00:00.000000 |
| certa-2013-avi-610 | Multiples vulnérabilités dans McAfee Firewall Enterprise | 2013-10-29T00:00:00.000000 | 2013-10-29T00:00:00.000000 |
| certa-2013-avi-609 | Vulnérabilité dans EMC RSA | 2013-10-25T00:00:00.000000 | 2013-10-25T00:00:00.000000 |
| certa-2013-avi-608 | Vulnérabilité dans Cisco IOS XR | 2013-10-24T00:00:00.000000 | 2013-10-24T00:00:00.000000 |
| certa-2013-avi-607 | Multiples vulnérabilités dans Cisco Identity Services Engine | 2013-10-24T00:00:00.000000 | 2013-10-24T00:00:00.000000 |
| certa-2013-avi-606 | Vulnérabilité dans les produits Cisco | 2013-10-24T00:00:00.000000 | 2013-10-24T00:00:00.000000 |
| certa-2013-avi-605 | Multiples vulnérabilités dans Apple iTunes | 2013-10-24T00:00:00.000000 | 2013-10-24T00:00:00.000000 |
| certa-2013-avi-604 | Multiples vulnérabilités dans Apple Remote Desktop | 2013-10-24T00:00:00.000000 | 2013-10-24T00:00:00.000000 |
| certa-2013-avi-603 | Multiples vulnérabilités dans Apple OS X Server | 2013-10-24T00:00:00.000000 | 2013-10-24T00:00:00.000000 |