Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-48330 |
9.8 (3.1)
|
WordPress Real Time Validation for Gravity Forms <= 1.… |
Daman Jeet |
Real Time Validation for Gravity Forms |
2025-11-06T15:53:48.806Z | 2026-01-20T14:28:06.327Z |
| CVE-2025-49337 |
5.9 (3.1)
|
WordPress Dashboard Beacon plugin <= 1.2.0 - Cross Sit… |
janhenckens |
Dashboard Beacon |
2025-12-31T17:21:05.083Z | 2026-01-20T14:28:06.314Z |
| CVE-2025-49334 |
5.3 (3.1)
|
WordPress MyD Delivery plugin <= 1.3.7 - Insecure Dire… |
Eduardo Villão |
MyD Delivery |
2025-12-31T15:25:23.165Z | 2026-01-20T14:28:06.300Z |
| CVE-2025-49340 |
4.3 (3.1)
|
WordPress Direct Payments WP plugin <= 1.3.0 - Sensiti… |
Digages |
Direct Payments WP |
2025-12-31T16:30:03.883Z | 2026-01-20T14:28:06.289Z |
| CVE-2025-48093 |
7.1 (3.1)
|
WordPress Password only login plugin <= 0.2 - Reflecte… |
Calvaweb |
Password only login |
2025-10-22T14:32:06.499Z | 2026-01-20T14:28:06.143Z |
| CVE-2025-49042 |
5.9 (3.1)
|
WordPress WooCommerce plugin <= 10.0.2 - Cross Site Sc… |
Automattic |
WooCommerce |
2025-10-29T04:50:12.507Z | 2026-01-20T14:28:06.098Z |
| CVE-2025-48106 |
10 (3.1)
|
WordPress Clanora theme < 1.3.1 - Arbitrary File Uploa… |
CMSSuperHeroes |
Clanora |
2025-10-22T14:32:07.674Z | 2026-01-20T14:28:06.040Z |
| CVE-2025-48096 |
6.5 (3.1)
|
WordPress Custom CSS plugin <= 1.4.0 - Broken Access C… |
FRESHFACE |
Custom CSS |
2025-10-22T14:32:06.895Z | 2026-01-20T14:28:06.033Z |
| CVE-2025-48097 |
7.1 (3.1)
|
WordPress WSAnalytics plugin <= 1.1.2 - Reflected Cros… |
Shiva |
WSAnalytics |
2025-10-22T14:32:07.078Z | 2026-01-20T14:28:06.030Z |
| CVE-2025-48095 |
5.9 (3.1)
|
WordPress Survey Maker plugin <= 5.1.8.8 - Cross Site … |
Ays Pro |
Survey Maker |
2025-10-22T14:32:06.692Z | 2026-01-20T14:28:06.023Z |
| CVE-2025-49028 |
7.1 (3.1)
|
WordPress Zoho ZeptoMail plugin <= 3.3.1 - Cross Site … |
Zoho Mail |
Zoho ZeptoMail |
2025-12-31T09:05:02.812Z | 2026-01-20T14:28:06.018Z |
| CVE-2025-49041 |
6.5 (3.1)
|
WordPress Get Cash plugin <= 3.2.3 - Broken Access Con… |
The African Boss |
Get Cash |
2025-12-18T07:21:40.869Z | 2026-01-20T14:28:06.017Z |
| CVE-2025-48092 |
7.1 (3.1)
|
WordPress Fix Multiple Redirects plugin <= 1.2.3 - Ref… |
jurajpuchky |
Fix Multiple Redirects |
2025-10-22T14:32:06.317Z | 2026-01-20T14:28:06.013Z |
| CVE-2025-49060 |
10 (3.1)
|
WordPress Wastia theme < 1.1.3 - Arbitrary File Upload… |
CMSSuperHeroes |
Wastia |
2025-10-22T14:32:08.196Z | 2026-01-20T14:28:05.987Z |
| CVE-2025-48091 |
8.5 (3.1)
|
WordPress AnyComment plugin <= 0.3.6 - SQL Injection v… |
Alexander |
AnyComment |
2025-10-22T14:32:06.134Z | 2026-01-20T14:28:05.973Z |
| CVE-2025-48098 |
7.1 (3.1)
|
WordPress Survey Maker plugin <= 5.1.8.8 - Cross Site … |
Ays Pro |
Survey Maker |
2025-10-22T14:32:07.268Z | 2026-01-20T14:28:05.964Z |
| CVE-2025-48090 |
8.2 (3.1)
|
WordPress Blanka - One Page WordPress Theme Theme < 1.… |
CocoBasic |
Blanka - One Page WordPress Theme |
2025-11-06T15:53:43.727Z | 2026-01-20T14:28:05.889Z |
| CVE-2025-48099 |
4.7 (3.1)
|
WordPress Search & Filter plugin <= 1.2.17 - Cross Sit… |
Code Amp |
Search & Filter |
2025-10-22T14:32:07.494Z | 2026-01-20T14:28:05.849Z |
| CVE-2025-48089 |
9.8 (3.1)
|
WordPress Education WordPress Theme | HiStudy theme < … |
Rainbow-Themes |
Education WordPress Theme | HiStudy |
2025-11-06T15:53:43.152Z | 2026-01-20T14:28:05.780Z |
| CVE-2025-48087 |
6.5 (3.1)
|
WordPress Memberlite Shortcodes plugin <= 1.4.1 - Cros… |
Jason C. |
Memberlite Shortcodes |
2025-10-17T14:18:04.368Z | 2026-01-20T14:28:05.761Z |
| CVE-2025-31048 |
9.9 (3.1)
|
WordPress Shopo <= 1.1.4 - Arbitrary File Upload Vulne… |
Themify |
Shopo |
2026-01-05T10:27:01.221Z | 2026-01-20T14:28:05.731Z |
| CVE-2025-48083 |
8.8 (3.1)
|
WordPress wpNamedUsers plugin <= 0.5 - Cross Site Requ… |
andriassundskard |
wpNamedUsers |
2025-11-06T15:53:40.546Z | 2026-01-20T14:28:05.728Z |
| CVE-2025-48088 |
6.5 (3.1)
|
WordPress Ultimate Addons for WPBakery Page Builder pl… |
Brainstorm Force |
Ultimate Addons for WPBakery Page Builder |
2025-10-27T02:09:52.224Z | 2026-01-20T14:28:05.703Z |
| CVE-2025-48086 |
9.8 (3.1)
|
WordPress Ajax Search Lite plugin <= 4.13.3 - PHP Obje… |
wpdreams |
Ajax Search Lite |
2025-11-06T15:53:42.585Z | 2026-01-20T14:28:05.623Z |
| CVE-2025-48078 |
8.8 (3.1)
|
WordPress Slick Google Map plugin <= 0.3 - Cross Site … |
Norbert |
Slick Google Map |
2025-11-06T15:53:37.443Z | 2026-01-20T14:28:05.590Z |
| CVE-2025-48082 |
8.8 (3.1)
|
WordPress Progress Planner plugin <= 1.8.0 - Privilege… |
Progress Planner |
Progress Planner |
2025-10-22T14:32:05.935Z | 2026-01-20T14:28:05.589Z |
| CVE-2025-47566 |
7.1 (3.1)
|
WordPress ZoomSounds plugin <= 6.91 - Reflected Cross … |
ZoomSounds |
ZoomSounds |
2025-12-31T20:07:56.919Z | 2026-01-20T14:28:05.562Z |
| CVE-2025-22712 |
9.8 (3.1)
|
WordPress Typify theme <= 3.0.2 - Local File Inclusion… |
QantumThemes |
Typify |
2026-01-08T09:17:39.147Z | 2026-01-20T14:28:05.549Z |
| CVE-2025-48085 |
8.8 (3.1)
|
WordPress Simple Stripe plugin <= 0.9.17 - Cross Site … |
ZIPANG |
Simple Stripe |
2025-11-06T15:53:41.777Z | 2026-01-20T14:28:05.540Z |
| CVE-2025-47588 |
9.8 (3.1)
|
WordPress Dynamic Pricing With Discount Rules for WooC… |
acowebs |
Dynamic Pricing With Discount Rules for WooCommerce |
2025-11-06T15:53:35.904Z | 2026-01-20T14:28:05.523Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-62036 |
7.1 (3.1)
|
WordPress Togo theme < 1.0.4 - Cross Site Scripting (X… |
uxper |
Togo |
2025-11-06T15:55:32.766Z | 2026-01-20T14:28:13.319Z |
| CVE-2025-62035 |
8.8 (3.1)
|
WordPress Togo theme < 1.0.4 - PHP Object Injection vu… |
uxper |
Togo |
2025-11-06T15:55:31.398Z | 2026-01-20T14:28:13.288Z |
| CVE-2025-62034 |
8.8 (3.1)
|
WordPress Togo theme < 1.0.4 - Privilege Escalation vu… |
uxper |
Togo |
2025-11-06T15:55:30.572Z | 2026-01-20T14:28:13.109Z |
| CVE-2025-62033 |
6.5 (3.1)
|
WordPress Togo theme < 1.0.4 - Broken Access Control v… |
uxper |
Togo |
2025-11-06T15:55:29.843Z | 2026-01-20T14:28:13.043Z |
| CVE-2025-62032 |
6.5 (3.1)
|
WordPress tagDiv Cloud Library plugin < 3.9.2 - Cross … |
tagDiv |
tagDiv Cloud Library |
2025-11-06T15:55:29.230Z | 2026-01-20T14:28:13.043Z |
| CVE-2025-62031 |
7.1 (3.1)
|
WordPress tagDiv Composer plugin <= 5.4.1 - Cross Site… |
tagDiv |
tagDiv Composer |
2025-11-06T15:55:28.516Z | 2026-01-20T14:28:13.050Z |
| CVE-2025-62030 |
6.5 (3.1)
|
WordPress tagDiv Composer plugin <= 5.4.1 - Cross Site… |
tagDiv |
tagDiv Composer |
2025-11-06T15:55:27.866Z | 2026-01-20T14:28:13.039Z |
| CVE-2025-62029 |
8.1 (3.1)
|
WordPress Grevo theme <= 2.4 - Local File Inclusion vu… |
themesion |
Grevo |
2025-10-22T14:32:51.220Z | 2026-01-20T14:28:13.045Z |
| CVE-2025-62028 |
4.3 (3.1)
|
WordPress Salient theme < 17.4.0 - Broken Access Contr… |
ThemeNectar |
Salient |
2025-11-06T15:55:27.077Z | 2026-01-20T14:28:13.042Z |
| CVE-2025-62027 |
5.4 (3.1)
|
WordPress Event Tickets plugin <= 5.26.3 - Broken Acce… |
StellarWP |
Event Tickets |
2025-10-22T14:32:51.014Z | 2026-01-20T14:28:13.042Z |
| CVE-2025-62026 |
4.3 (3.1)
|
WordPress Blockspare plugin <= 3.2.13.2 - Sensitive Da… |
Blockspare |
Blockspare |
2025-10-22T14:32:50.799Z | 2026-01-20T14:28:13.037Z |
| CVE-2025-62025 |
9.8 (3.1)
|
WordPress JobSearch plugin < 3.0.8 - PHP Object Inject… |
eyecix |
JobSearch |
2025-10-22T14:32:50.582Z | 2026-01-20T14:28:13.040Z |
| CVE-2025-62024 |
6.5 (3.1)
|
WordPress Pie Calendar plugin <= 1.2.9 - Cross Site Sc… |
Jonathan Jernigan |
Pie Calendar |
2025-10-22T14:32:50.360Z | 2026-01-20T14:28:13.043Z |
| CVE-2025-62023 |
9.8 (3.1)
|
WordPress s2Member plugin <= 250905 - Remote Code Exec… |
Cristián Lávaque |
s2Member |
2025-10-22T14:32:50.026Z | 2026-01-20T14:28:13.041Z |
| CVE-2025-62022 |
7.5 (3.1)
|
WordPress BuddyPress plugin <= 14.3.4 - Broken Access … |
BuddyPress |
BuddyPress |
2025-10-22T14:32:49.815Z | 2026-01-20T14:28:13.037Z |
| CVE-2025-62021 |
4.3 (3.1)
|
WordPress Acknowledgify plugin <= 1.1.3 - Broken Acces… |
Made Neat |
Acknowledgify |
2025-10-22T14:32:49.606Z | 2026-01-20T14:28:13.041Z |
| CVE-2025-62020 |
7.1 (3.1)
|
WordPress VOD Infomaniak plugin <= 1.5.11 - Cross Site… |
Infomaniak Network |
VOD Infomaniak |
2025-10-22T14:32:49.407Z | 2026-01-20T14:28:13.039Z |
| CVE-2025-62019 |
6.5 (3.1)
|
WordPress Recipe Card Blocks for Gutenberg & Elementor… |
WPZOOM |
Recipe Card Blocks for Gutenberg & Elementor |
2025-10-22T14:32:49.208Z | 2026-01-20T14:28:13.056Z |
| CVE-2025-62018 |
5.3 (3.1)
|
WordPress Kallyas theme <= 4.22.0 - Broken Access Cont… |
hogash |
Kallyas |
2025-11-06T15:55:26.361Z | 2026-01-20T14:28:13.058Z |
| CVE-2025-62017 |
5.4 (3.1)
|
WordPress Kallyas theme <= 4.22.0 - Broken Access Cont… |
hogash |
Kallyas |
2025-11-06T15:55:25.294Z | 2026-01-20T14:28:13.042Z |
| CVE-2025-62016 |
9.9 (3.1)
|
WordPress Kallyas theme <= 4.22.0 - Arbitrary File Upl… |
hogash |
Kallyas |
2025-11-06T15:55:24.586Z | 2026-01-20T14:28:13.045Z |
| CVE-2025-62015 |
7.6 (3.1)
|
WordPress Advanced Coupons for WooCommerce Coupons plu… |
Josh Kohlbach |
Advanced Coupons for WooCommerce Coupons |
2025-10-22T14:32:49.014Z | 2026-01-20T14:28:12.860Z |
| CVE-2025-62014 |
8.1 (3.1)
|
WordPress ITok theme <= 1.1.42 - Local File Inclusion … |
ApusTheme |
ITok |
2025-11-06T15:55:23.874Z | 2026-01-20T14:28:13.268Z |
| CVE-2025-62013 |
4.3 (3.1)
|
WordPress UiChemy plugin <= 4.0.0 - Broken Access Cont… |
POSIMYTH |
UiChemy |
2025-10-22T14:32:48.799Z | 2026-01-20T14:28:13.040Z |
| CVE-2025-62012 |
6.5 (3.1)
|
WordPress TheGem (Elementor) theme <= 5.10.5 - Cross S… |
CodexThemes |
TheGem (Elementor) |
2025-11-06T15:55:23.261Z | 2026-01-20T14:28:13.036Z |
| CVE-2025-62011 |
6.5 (3.1)
|
WordPress TheGem theme <= 5.10.5 - Cross Site Scriptin… |
CodexThemes |
TheGem |
2025-11-06T15:55:22.593Z | 2026-01-20T14:28:13.042Z |
| CVE-2025-62010 |
8.1 (3.1)
|
WordPress Famita theme <= 1.54 - Local File Inclusion … |
ApusTheme |
Famita |
2025-11-06T15:55:21.866Z | 2026-01-20T14:28:13.040Z |
| CVE-2025-62009 |
4.3 (3.1)
|
WordPress UPC/EAN/GTIN Code Generator plugin <= 2.0.2 … |
Dmitry V. (CEO of "UKR Solution") |
UPC/EAN/GTIN Code Generator |
2025-10-22T14:32:48.527Z | 2026-01-20T14:28:13.052Z |
| CVE-2025-62008 |
8.8 (3.1)
|
WordPress Product Table For WooCommerce plugin <= 1.2.… |
acowebs |
Product Table For WooCommerce |
2025-10-22T14:32:48.273Z | 2026-01-20T14:28:13.044Z |
| CVE-2025-62007 |
8.8 (3.1)
|
WordPress Voice Feedback plugin <= 1.0.3 - Privilege E… |
bPlugins |
Voice Feedback |
2025-10-22T14:32:47.880Z | 2026-01-20T14:28:12.873Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-62036 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:09.920 | 2026-01-20T15:17:42.427 |
| fkie_cve-2025-62035 | Deserialization of Untrusted Data vulnerability in uxper Togo togo.This issue affects Togo: from n/… | 2025-11-06T16:16:09.780 | 2026-01-20T15:17:42.293 |
| fkie_cve-2025-62034 | Incorrect Privilege Assignment vulnerability in uxper Togo togo.This issue affects Togo: from n/a t… | 2025-11-06T16:16:09.613 | 2026-01-20T15:17:42.153 |
| fkie_cve-2025-62033 | Missing Authorization vulnerability in uxper Togo togo.This issue affects Togo: from n/a through < 1.0.4. | 2025-11-06T16:16:09.470 | 2026-01-20T15:17:42.010 |
| fkie_cve-2025-62032 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:09.303 | 2026-01-20T15:17:41.873 |
| fkie_cve-2025-62031 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:09.160 | 2026-01-20T15:17:41.740 |
| fkie_cve-2025-62030 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:09.007 | 2026-01-20T15:17:41.590 |
| fkie_cve-2025-62029 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-10-22T15:16:04.287 | 2026-01-20T15:17:41.433 |
| fkie_cve-2025-62028 | Missing Authorization vulnerability in ThemeNectar Salient salient.This issue affects Salient: from… | 2025-11-06T16:16:08.857 | 2026-01-20T15:17:41.293 |
| fkie_cve-2025-62027 | Missing Authorization vulnerability in StellarWP Event Tickets event-tickets.This issue affects Eve… | 2025-10-22T15:16:04.160 | 2026-01-20T15:17:41.163 |
| fkie_cve-2025-62026 | Insertion of Sensitive Information Into Sent Data vulnerability in Blockspare Blockspare blockspare… | 2025-10-22T15:16:04.037 | 2026-01-20T15:17:41.030 |
| fkie_cve-2025-62025 | Deserialization of Untrusted Data vulnerability in eyecix JobSearch wp-jobsearch.This issue affects… | 2025-10-22T15:16:03.913 | 2026-01-20T15:17:40.880 |
| fkie_cve-2025-62024 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:16:03.797 | 2026-01-20T15:17:40.720 |
| fkie_cve-2025-62023 | Improper Control of Generation of Code ('Code Injection') vulnerability in Cristián Lávaque s2Membe… | 2025-10-22T15:16:03.667 | 2026-01-20T15:17:40.567 |
| fkie_cve-2025-62022 | Missing Authorization vulnerability in BuddyPress BuddyPress buddypress.This issue affects BuddyPre… | 2025-10-22T15:16:03.547 | 2026-01-20T15:17:40.413 |
| fkie_cve-2025-62021 | Missing Authorization vulnerability in Made Neat Acknowledgify acknowledgify.This issue affects Ack… | 2025-10-22T15:16:03.423 | 2026-01-20T15:17:40.270 |
| fkie_cve-2025-62020 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:16:03.300 | 2026-01-20T15:17:40.120 |
| fkie_cve-2025-62019 | Missing Authorization vulnerability in WPZOOM Recipe Card Blocks for Gutenberg & Elementor recipe-c… | 2025-10-22T15:16:03.163 | 2026-01-20T15:17:39.963 |
| fkie_cve-2025-62018 | Missing Authorization vulnerability in hogash Kallyas kallyas.This issue affects Kallyas: from n/a … | 2025-11-06T16:16:08.713 | 2026-01-20T15:17:39.830 |
| fkie_cve-2025-62017 | Missing Authorization vulnerability in hogash Kallyas kallyas.This issue affects Kallyas: from n/a … | 2025-11-06T16:16:08.567 | 2026-01-20T15:17:39.687 |
| fkie_cve-2025-62016 | Unrestricted Upload of File with Dangerous Type vulnerability in hogash Kallyas kallyas.This issue … | 2025-11-06T16:16:08.420 | 2026-01-20T15:17:39.533 |
| fkie_cve-2025-62015 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-10-22T15:16:03.040 | 2026-01-20T15:17:39.387 |
| fkie_cve-2025-62014 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:08.290 | 2026-01-20T15:17:39.253 |
| fkie_cve-2025-62013 | Missing Authorization vulnerability in POSIMYTH UiChemy uichemy.This issue affects UiChemy: from n/… | 2025-10-22T15:16:02.910 | 2026-01-20T15:17:39.100 |
| fkie_cve-2025-62012 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:08.130 | 2026-01-20T15:17:38.950 |
| fkie_cve-2025-62011 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:07.970 | 2026-01-20T15:17:38.807 |
| fkie_cve-2025-62010 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:07.820 | 2026-01-20T15:17:38.667 |
| fkie_cve-2025-62009 | Cross-Site Request Forgery (CSRF) vulnerability in Dmitry V. (CEO of "UKR Solution") UPC/EAN/GTIN C… | 2025-10-22T15:16:02.780 | 2026-01-20T15:17:38.517 |
| fkie_cve-2025-62008 | Deserialization of Untrusted Data vulnerability in acowebs Product Table For WooCommerce product-ta… | 2025-10-22T15:16:02.650 | 2026-01-20T15:17:38.360 |
| fkie_cve-2025-62007 | Incorrect Privilege Assignment vulnerability in bPlugins Voice Feedback voice-feedback allows Privi… | 2025-10-22T15:16:02.530 | 2026-01-20T15:17:38.210 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-f5pp-p43c-5wxv |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for… | 2025-09-05T18:31:16Z | 2026-01-09T18:31:31Z |
| ghsa-c3j4-c39c-w5r2 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: smb/server: avoid deadlock whe… | 2025-09-05T18:31:16Z | 2026-01-09T18:31:31Z |
| ghsa-6237-rh4h-82p6 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: fix refc… | 2025-09-05T18:31:17Z | 2026-01-09T18:31:31Z |
| ghsa-5rr4-wq82-9m3m |
7.1 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bound… | 2025-09-05T18:31:17Z | 2026-01-09T18:31:31Z |
| ghsa-5fwx-5j9v-m6cp |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: MIPS: Don't crash in stack_top… | 2025-09-05T18:31:16Z | 2026-01-09T18:31:31Z |
| ghsa-4vq4-24qf-gq5w |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: scsi: libiscsi: Initialize isc… | 2025-09-05T18:31:16Z | 2026-01-09T18:31:31Z |
| ghsa-2q77-jcrx-vvrf |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Check for hdwq nul… | 2025-09-05T18:31:16Z | 2026-01-09T18:31:31Z |
| ghsa-rfgj-8gwg-qp4f |
6.5 (3.1)
|
Missing Authorization vulnerability in ThemeHunk Advance WordPress Search Plugin.This issue affects… | 2024-05-08T12:30:33Z | 2026-01-09T18:31:30Z |
| ghsa-jxrj-72jp-j9h8 |
8.5 (3.1)
|
Deserialization of Untrusted Data vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy:… | 2024-04-18T09:30:45Z | 2026-01-09T18:31:30Z |
| ghsa-v98v-ff95-f3cp |
9.9 (3.1)
|
n8n Vulnerable to Remote Code Execution via Expression Injection | 2025-12-22T16:19:13Z | 2026-01-09T16:53:15Z |
| ghsa-qxvq-6pww-3w8q |
4.3 (3.1)
|
The Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to… | 2026-01-06T09:30:29Z | 2026-01-09T15:30:23Z |
| ghsa-p83v-m67p-pffw |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: clk: xilinx: vcu: unregister p… | 2025-08-19T18:31:33Z | 2026-01-09T15:30:23Z |
| ghsa-jrm9-r928-4c26 |
5.9 (3.1)
|
An issue was discovered in the Camera in Samsung Mobile Processor and Wearable Processor Exynos 133… | 2026-01-05T21:30:32Z | 2026-01-09T15:30:23Z |
| ghsa-7g87-hx7m-ppg8 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: avoid deadlock by… | 2025-09-11T18:35:50Z | 2026-01-09T15:30:23Z |
| ghsa-q6w5-3c4x-vchv |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs… | 2025-08-19T18:31:33Z | 2026-01-09T15:30:22Z |
| ghsa-p2qj-w526-vfr2 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix crash when r… | 2025-08-19T18:31:33Z | 2026-01-09T15:30:22Z |
| ghsa-j327-57v5-q43v |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: ipv6: reject malicious packets… | 2025-08-19T18:31:33Z | 2026-01-09T15:30:22Z |
| ghsa-96xf-fhqr-wqvv |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: Make EEH driver d… | 2025-08-19T18:31:33Z | 2026-01-09T15:30:22Z |
| ghsa-6x6v-877j-v9fv |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix KMSAN uninit-value i… | 2025-08-19T18:31:33Z | 2026-01-09T15:30:22Z |
| ghsa-6fm3-hv4h-3737 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid panic in f2… | 2025-08-19T18:31:33Z | 2026-01-09T15:30:22Z |
| ghsa-39q5-4vqc-9p73 |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: pptp: ensure minimal skb lengt… | 2025-08-19T18:31:33Z | 2026-01-09T15:30:22Z |
| ghsa-v7r8-8p5c-h4xw |
5.3 (3.1)
|
XWiki AdminTools application doesn't set permissions on the AdminTools space | 2025-11-18T17:42:53Z | 2026-01-09T14:35:26Z |
| ghsa-x2rg-q7qq-q3c7 |
6.5 (3.1)
|
The WP Page Permalink Extension plugin for WordPress is vulnerable to Missing Authorization in all … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-wc63-83rx-8qcg |
6.4 (3.1)
|
The Woodpecker for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-pc52-v769-jjvw |
6.4 (3.1)
|
The Client Testimonial Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-m6m8-c4cv-c66j |
8.8 (4.0)
|
This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-hfqg-hpcg-h9rx |
6.4 (3.1)
|
The Curved Text plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'radius' … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-gfjh-r2j2-6qf3 |
6.1 (3.1)
|
The MG AdvancedOptions plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-gcqp-g44c-653f |
6.4 (3.1)
|
The PullQuote plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'p… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-g36m-9jqw-jhm4 |
6.1 (3.1)
|
The Lesson Plan Book plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-27306 | aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. A XSS vul… | 2024-02-23T06:03:43.500643Z |
| gsd-2024-27302 | go-zero is a web and rpc framework. Go-zero allows user to specify a CORS Filter with a c… | 2024-02-23T06:03:43.495921Z |
| gsd-2024-27299 | phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and oth… | 2024-02-23T06:03:43.492266Z |
| gsd-2024-27308 | Mio is a Metal I/O library for Rust. When using named pipes on Windows, mio will under so… | 2024-02-23T06:03:43.490396Z |
| gsd-2024-27298 | parse-server is a Parse Server for Node.js / Express. This vulnerability allows SQL injec… | 2024-02-23T06:03:43.484928Z |
| gsd-2024-1801 | In Progress® Telerik® Reporting versions prior to 2024 Q1 (18.0.24.130), a code executio… | 2024-02-23T06:03:41.538201Z |
| gsd-2024-1792 | The CMB2 plugin for WordPress is vulnerable to PHP Object Injection in all versions up to… | 2024-02-23T06:03:41.537115Z |
| gsd-2024-1808 | The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Stor… | 2024-02-23T06:03:41.534806Z |
| gsd-2024-1742 | Invocation of the sqlplus command with sensitive information in the command line in the m… | 2024-02-23T06:03:41.533365Z |
| gsd-2024-1755 | The NPS computy WordPress plugin through 2.7.5 does not have CSRF checks in some places, … | 2024-02-23T06:03:41.525040Z |
| gsd-2024-1782 | The Blue Triad EZAnalytics plugin for WordPress is vulnerable to Reflected Cross-Site Scr… | 2024-02-23T06:03:41.520997Z |
| gsd-2024-1789 | The WP SMTP plugin for WordPress is vulnerable to SQL Injection via the 'search' paramete… | 2024-02-23T06:03:41.520586Z |
| gsd-2024-1816 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-23T06:03:41.519429Z |
| gsd-2024-1798 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-23T06:03:41.510684Z |
| gsd-2024-1806 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile &… | 2024-02-23T06:03:41.496401Z |
| gsd-2024-1751 | The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable t… | 2024-02-23T06:03:41.496105Z |
| gsd-2024-1786 | ** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which w… | 2024-02-23T06:03:41.479477Z |
| gsd-2024-1796 | The HUSKY – Products Filter for WooCommerce Professional plugin for WordPress is vulnerab… | 2024-02-23T06:03:41.479113Z |
| gsd-2024-1785 | The Contests by Rewards Fuel plugin for WordPress is vulnerable to Cross-Site Request For… | 2024-02-23T06:03:41.473572Z |
| gsd-2024-1768 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-23T06:03:41.467375Z |
| gsd-2024-1791 | The CodeMirror Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting v… | 2024-02-23T06:03:41.459274Z |
| gsd-2024-1805 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-23T06:03:41.457290Z |
| gsd-2024-1797 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-23T06:03:41.426473Z |
| gsd-2024-1740 | In lunary-ai/lunary version 1.0.1, a vulnerability exists where a user removed from an or… | 2024-02-23T06:03:41.424937Z |
| gsd-2024-1810 | The Archivist – Custom Archive Templates plugin for WordPress is vulnerable to Reflected … | 2024-02-23T06:03:41.410291Z |
| gsd-2024-1781 | A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_20230719. It has been rat… | 2024-02-23T06:03:41.407490Z |
| gsd-2024-1744 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-23T06:03:41.403847Z |
| gsd-2024-1778 | The Admin side data storage for Contact Form 7 plugin for WordPress is vulnerable to unau… | 2024-02-23T06:03:41.403598Z |
| gsd-2024-1769 | The JM Twitter Cards plugin for WordPress is vulnerable to Information Exposure in all ve… | 2024-02-23T06:03:41.403218Z |
| gsd-2024-1799 | The GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks… | 2024-02-23T06:03:41.373005Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-185925 | Malicious code in build-eleventy-deneb-gemini (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185924 | Malicious code in build-commitlint-config-angular-lithosphere-string (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185923 | Malicious code in buffer-package-bionics-graphql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185922 | Malicious code in buffer-mocha-astrophysics-technosignature (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185921 | Malicious code in buffer-css-loader-draco-sirius (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185920 | Malicious code in buffer-apex-paleontology-cli (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185919 | Malicious code in buffer-aldebaran-norma-test (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185918 | Malicious code in browserify-seismology-vega-quito (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185917 | Malicious code in browserify-sedna-apollo-airbnb (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185916 | Malicious code in browserify-nodemon-proxima-markdown (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185915 | Malicious code in browserify-izar-archaeogenetics-darkmatter (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185914 | Malicious code in browserify-eslint-plugin-heka-mui (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185913 | Malicious code in browserify-cosmiconfig-testcafe-await (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185912 | Malicious code in browserify-astrometry-stratigraphy-foundation (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185911 | Malicious code in brane-venus-betelgeuse-altair (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185910 | Malicious code in brane-pm2-isostasy-jekyll (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185909 | Malicious code in brane-nashira-cluster-spawn (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185908 | Malicious code in brane-mocha-elektra-farout (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185907 | Malicious code in brane-kardashevscale-coronalmassejection-izar (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185906 | Malicious code in brane-halley-solarnebula-stratosphere (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185905 | Malicious code in boson-style-loader-less-loader-superflare (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185904 | Malicious code in boson-module-subscription-scripts (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185903 | Malicious code in boson-hugo-cosmology-mineralogy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185902 | Malicious code in boson-fornax-redshift-andromeda (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185901 | Malicious code in boson-forever-leda-pegasus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185900 | Malicious code in boson-build-tachyon-solis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185899 | Malicious code in boson-apex-parcel-cybernetics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185898 | Malicious code in borealis-rigel-string-exoplanetology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185897 | Malicious code in borealis-promise-spinner-ora (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185896 | Malicious code in borealis-hermes-bellatrix-geochronology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2022-1440 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2019-04-28T22:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2022-1036 | IBM WebSphere Application Server: Mehrere Schwachstellen | 2022-04-05T22:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2022-0960 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2020-07-02T22:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2022-0611 | Mozilla Firefox und Thunderbird: Mehrere Schwachstellen | 2022-01-11T23:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2022-0412 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2022-06-20T22:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2022-0323 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2022-05-10T22:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2022-0309 | Linux Kernel: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2018-03-08T23:00:00.000+00:00 | 2023-02-15T23:00:00.000+00:00 |
| wid-sec-w-2023-0394 | git for Windows: Mehrere Schwachstellen | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0392 | SolarWinds Orion: Mehrere Schwachstellen ermöglichen Codeausführung | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0388 | Microsoft Apps: Mehrere Schwachstellen ermöglichen Codeausführung | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0387 | Adobe FrameMaker: Mehrere Schwachstellen | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0386 | Adobe Connect: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0384 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0381 | Intel Driver and Support Assistant: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0380 | Camunda: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0379 | Arista EOS: Schwachstelle ermöglicht Privilegieneskalation | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0376 | Intel Chipset: Mehrere Schwachstellen | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0375 | NetApp ActiveIQ Unified Manager: Schwachstelle ermöglicht Denial of Service | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0372 | Citrix Systems Virtual Apps and Desktops: Schwachstelle ermöglicht Privilegieneskalation | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0365 | Adobe Photoshop: Mehrere Schwachstellen | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0363 | Apache Sling: Schwachstelle ermöglicht Codeausführung | 2023-02-14T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0280 | Ipswitch WS_FTP Server: Schwachstelle ermöglicht Privilegieneskalation | 2023-02-05T23:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0064 | Apache Portable Runtime (APR): Schwachstelle ermöglicht Denial of Service | 2021-08-24T22:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2022-1156 | Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation | 2022-08-23T22:00:00.000+00:00 | 2023-02-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0357 | Siemens TIA Portal: Schwachstelle ermöglicht Privilegieneskalation | 2023-02-13T23:00:00.000+00:00 | 2023-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-0356 | SAP Software: Mehrere Schwachstellen | 2023-02-13T23:00:00.000+00:00 | 2023-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-0355 | Apple Safari: Schwachstelle ermöglicht Codeausführung | 2023-02-13T23:00:00.000+00:00 | 2023-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-0354 | IBM QRadar SIEM: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-02-13T23:00:00.000+00:00 | 2023-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-0351 | SonicWall Email Security: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-02-13T23:00:00.000+00:00 | 2023-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-0348 | ownCloud Android App: Schwachstelle ermöglicht Manipulation von Dateien | 2023-02-13T23:00:00.000+00:00 | 2023-02-13T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:3755 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-04-09T14:04:57+00:00 | 2025-11-21T19:33:46+00:00 |
| rhsa-2025:3713 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-04-08T21:04:15+00:00 | 2025-11-21T19:33:45+00:00 |
| rhsa-2025:3670 | Red Hat Security Advisory: redhat-ds:12 security update | 2025-04-08T00:15:08+00:00 | 2025-11-21T19:33:44+00:00 |
| rhsa-2025:3663 | Red Hat Security Advisory: 389-ds-base security update | 2025-04-08T01:08:43+00:00 | 2025-11-21T19:33:43+00:00 |
| rhsa-2025:3637 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update | 2025-04-07T15:17:27+00:00 | 2025-11-21T19:33:43+00:00 |
| rhsa-2025:3635 | Red Hat Security Advisory: Red Hat Ceph Storage 8.0 security, bug fix, and enhancement updates | 2025-04-07T15:27:59+00:00 | 2025-11-21T19:33:43+00:00 |
| rhsa-2025:3631 | Red Hat Security Advisory: python3.12 security update | 2025-04-07T10:54:31+00:00 | 2025-11-21T19:33:43+00:00 |
| rhsa-2025:3636 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update | 2025-04-07T15:16:07+00:00 | 2025-11-21T19:33:42+00:00 |
| rhsa-2025:3628 | Red Hat Security Advisory: firefox security update | 2025-04-07T08:21:11+00:00 | 2025-11-21T19:33:41+00:00 |
| rhsa-2025:3634 | Red Hat Security Advisory: python3.11 security update | 2025-04-07T15:15:37+00:00 | 2025-11-21T19:33:40+00:00 |
| rhsa-2025:3629 | Red Hat Security Advisory: gimp security update | 2025-04-07T08:42:21+00:00 | 2025-11-21T19:33:40+00:00 |
| rhsa-2025:3627 | Red Hat Security Advisory: libxslt security update | 2025-04-07T06:38:36+00:00 | 2025-11-21T19:33:40+00:00 |
| rhsa-2025:3626 | Red Hat Security Advisory: libxslt security update | 2025-04-07T02:20:05+00:00 | 2025-11-21T19:33:39+00:00 |
| rhsa-2025:3625 | Red Hat Security Advisory: libxslt security update | 2025-04-07T02:21:55+00:00 | 2025-11-21T19:33:39+00:00 |
| rhsa-2025:3624 | Red Hat Security Advisory: libxslt security update | 2025-04-07T02:23:25+00:00 | 2025-11-21T19:33:38+00:00 |
| rhsa-2025:3623 | Red Hat Security Advisory: firefox security update | 2025-04-07T02:13:45+00:00 | 2025-11-21T19:33:38+00:00 |
| rhsa-2025:3621 | Red Hat Security Advisory: firefox security update | 2025-04-07T02:18:05+00:00 | 2025-11-21T19:33:38+00:00 |
| rhsa-2025:3620 | Red Hat Security Advisory: firefox security update | 2025-04-07T02:18:25+00:00 | 2025-11-21T19:33:38+00:00 |
| rhsa-2025:3619 | Red Hat Security Advisory: libxslt security update | 2025-04-07T02:02:05+00:00 | 2025-11-21T19:33:37+00:00 |
| rhsa-2025:3617 | Red Hat Security Advisory: gimp security update | 2025-04-07T02:19:40+00:00 | 2025-11-21T19:33:36+00:00 |
| rhsa-2025:3615 | Red Hat Security Advisory: libxslt security update | 2025-04-07T01:56:15+00:00 | 2025-11-21T19:33:36+00:00 |
| rhsa-2025:3614 | Red Hat Security Advisory: libxslt security update | 2025-04-07T01:34:15+00:00 | 2025-11-21T19:33:36+00:00 |
| rhsa-2025:3613 | Red Hat Security Advisory: libxslt security update | 2025-04-07T01:28:16+00:00 | 2025-11-21T19:33:36+00:00 |
| rhsa-2025:3612 | Red Hat Security Advisory: libxslt security update | 2025-04-07T01:38:10+00:00 | 2025-11-21T19:33:36+00:00 |
| rhsa-2025:3590 | Red Hat Security Advisory: firefox security update | 2025-04-03T10:56:15+00:00 | 2025-11-21T19:33:34+00:00 |
| rhsa-2025:3589 | Red Hat Security Advisory: firefox security update | 2025-04-03T10:48:15+00:00 | 2025-11-21T19:33:34+00:00 |
| rhsa-2025:3587 | Red Hat Security Advisory: firefox security update | 2025-04-03T10:41:45+00:00 | 2025-11-21T19:33:33+00:00 |
| rhsa-2025:3582 | Red Hat Security Advisory: firefox security update | 2025-04-03T10:40:50+00:00 | 2025-11-21T19:33:32+00:00 |
| rhsa-2025:3581 | Red Hat Security Advisory: firefox security update | 2025-04-03T10:10:55+00:00 | 2025-11-21T19:33:32+00:00 |
| rhsa-2025:3556 | Red Hat Security Advisory: firefox security update | 2025-04-03T01:26:31+00:00 | 2025-11-21T19:33:29+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-21883 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-01-04T00:00:00.000Z | 2023-01-26T00:00:00.000Z |
| msrc_cve-2023-21882 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N). | 2023-01-04T00:00:00.000Z | 2023-01-26T00:00:00.000Z |
| msrc_cve-2023-21881 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-01-04T00:00:00.000Z | 2023-01-26T00:00:00.000Z |
| msrc_cve-2023-21880 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H). | 2023-01-04T00:00:00.000Z | 2023-01-26T00:00:00.000Z |
| msrc_cve-2023-21538 | .NET Denial of Service Vulnerability | 2023-01-10T08:00:00.000Z | 2023-01-25T08:00:00.000Z |
| msrc_cve-2023-21879 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-01-04T00:00:00.000Z | 2023-01-25T00:00:00.000Z |
| msrc_cve-2023-21878 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-01-04T00:00:00.000Z | 2023-01-25T00:00:00.000Z |
| msrc_cve-2023-21877 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H). | 2023-01-04T00:00:00.000Z | 2023-01-25T00:00:00.000Z |
| msrc_cve-2023-21876 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2023-01-04T00:00:00.000Z | 2023-01-25T00:00:00.000Z |
| msrc_cve-2023-21875 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.31 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized creation deletion or modification access to critical data or all MySQL Server accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 5.9 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H). | 2023-01-04T00:00:00.000Z | 2023-01-25T00:00:00.000Z |
| msrc_cve-2022-41861 | A flaw was found in freeradius. A malicious RADIUS client or home server can send a malformed abinary attribute which can cause the server to crash. | 2023-01-04T00:00:00.000Z | 2023-01-25T00:00:00.000Z |
| msrc_cve-2022-41860 | In freeradius when an EAP-SIM supplicant sends an unknown SIM option the server will try to look that option up in the internal dictionaries. This lookup will fail but the SIM code will not check for that failure. Instead it will dereference a NULL pointer and cause the server to crash. | 2023-01-04T00:00:00.000Z | 2023-01-25T00:00:00.000Z |
| msrc_cve-2022-44689 | Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability | 2022-12-13T08:00:00.000Z | 2023-01-24T08:00:00.000Z |
| msrc_cve-2023-23559 | In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5 there is an integer overflow in an addition. | 2023-01-04T00:00:00.000Z | 2023-01-24T00:00:00.000Z |
| msrc_cve-2023-23454 | cbq_classify in net/sched/sch_cbq.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service (slab-out-of-bounds read) because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification results). | 2023-01-04T00:00:00.000Z | 2023-01-24T00:00:00.000Z |
| msrc_cve-2023-22745 | Buffer Overlow in TSS2_RC_Decode in tpm2-tss | 2023-01-04T00:00:00.000Z | 2023-01-24T00:00:00.000Z |
| msrc_cve-2023-22458 | Integer overflow in multiple Redis commands can lead to denial-of-service | 2023-01-04T00:00:00.000Z | 2023-01-24T00:00:00.000Z |
| msrc_cve-2022-41858 | A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel information. | 2023-01-04T00:00:00.000Z | 2023-01-24T00:00:00.000Z |
| msrc_cve-2023-21549 | Windows SMB Witness Service Elevation of Privilege Vulnerability | 2023-01-10T08:00:00.000Z | 2023-01-23T08:00:00.000Z |
| msrc_cve-2023-21524 | Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability | 2023-01-10T08:00:00.000Z | 2023-01-23T08:00:00.000Z |
| msrc_cve-2022-38014 | Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability | 2022-11-08T08:00:00.000Z | 2023-01-23T08:00:00.000Z |
| msrc_cve-2022-4379 | A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial | 2023-01-04T00:00:00.000Z | 2023-01-23T00:00:00.000Z |
| msrc_cve-2022-41953 | Git clone remote code execution vulnerability in git-for-windows | 2023-01-04T00:00:00.000Z | 2023-01-23T00:00:00.000Z |
| msrc_cve-2022-41903 | Integer overflow in `git archive` `git log --format` leading to RCE in git | 2023-01-04T00:00:00.000Z | 2023-01-23T00:00:00.000Z |
| msrc_cve-2022-41721 | Request smuggling due to improper request handling in golang.org/x/net/http2/h2c | 2023-01-04T00:00:00.000Z | 2023-01-23T00:00:00.000Z |
| msrc_cve-2022-36760 | Apache HTTP Server: mod_proxy_ajp Possible request smuggling | 2023-01-04T00:00:00.000Z | 2023-01-23T00:00:00.000Z |
| msrc_cve-2023-23455 | atm_tc_enqueue in net/sched/sch_atm.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification results). | 2023-01-04T00:00:00.000Z | 2023-01-21T00:00:00.000Z |
| msrc_cve-2023-0288 | Heap-based Buffer Overflow in vim/vim | 2023-01-04T00:00:00.000Z | 2023-01-20T00:00:00.000Z |
| msrc_cve-2022-4344 | Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file | 2023-01-04T00:00:00.000Z | 2023-01-20T00:00:00.000Z |
| msrc_cve-2023-21719 | Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability | 2023-01-10T08:00:00.000Z | 2023-01-19T08:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201512-0512 | ASUS Japan WL-330NUL devices with firmware before 3.0.0.42 allow remote attackers to caus… | 2025-04-13T23:37:30.656000Z |
| var-201512-0554 | The iControl API in F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.… | 2025-04-13T23:37:30.624000Z |
| var-201601-0395 | Heap-based buffer overflow in the HIFI driver in Huawei Mate 7 phones with software MT7-U… | 2025-04-13T23:37:30.491000Z |
| var-201601-0416 | The DroneDeleteOldMeasurements implementation in Ipswitch WhatsUp Gold before 16.4 does n… | 2025-04-13T23:37:30.455000Z |
| var-201602-0051 | Cross-site scripting (XSS) vulnerability in Cisco Unity Connection 11.5(0.199) allows rem… | 2025-04-13T23:37:29.817000Z |
| var-201602-0156 | LINE 4.3.0.724 and earlier on Windows and 4.3.1 and earlier on OS X allows remote authent… | 2025-04-13T23:37:29.789000Z |
| var-201602-0387 | The SSH implementation on IBM Security Access Manager for Web appliances 7.0 before 7.0.0… | 2025-04-13T23:37:29.706000Z |
| var-201603-0044 | Cross-site scripting (XSS) vulnerability in the web server in Rockwell Automation Allen-B… | 2025-04-13T23:37:29.667000Z |
| var-201604-0058 | Juniper Junos OS before 13.2X51-D40, 14.x before 14.1X53-D30, and 15.x before 15.1X53-D20… | 2025-04-13T23:37:29.550000Z |
| var-201604-0079 | IAB.exe in Rockwell Automation Integrated Architecture Builder (IAB) before 9.6.0.8 and 9… | 2025-04-13T23:37:29.512000Z |
| var-201604-0560 | Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) S… | 2025-04-13T23:37:29.343000Z |
| var-201605-0315 | Cross-site scripting (XSS) vulnerability on I-O DATA DEVICE WN-G300R devices with firmwar… | 2025-04-13T23:37:29.122000Z |
| var-201606-0288 | Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified Con… | 2025-04-13T23:37:28.963000Z |
| var-201607-0312 | Cross-site request forgery (CSRF) vulnerability on NTT EAST Hikari Denwa routers with fir… | 2025-04-13T23:37:28.832000Z |
| var-201607-0436 | Cisco Wireless LAN Controller (WLC) devices 7.4(121.0) and 8.0(0.30220.385) allow remote … | 2025-04-13T23:37:28.769000Z |
| var-201607-0457 | Moxa MGate MB3180 before 1.8, MGate MB3280 before 2.7, MGate MB3480 before 2.6, MGate MB3… | 2025-04-13T23:37:28.732000Z |
| var-201608-0074 | D-Link Multiple router products offered by have a stack-based buffer overflow vulnerabili… | 2025-04-13T23:37:28.534000Z |
| var-201608-0244 | Cisco IOS 15.5(3)S3, 15.6(1)S2, 15.6(2)S1, and 15.6(2)T1 does not properly dequeue invali… | 2025-04-13T23:37:28.405000Z |
| var-201609-0096 | Memory leak in Huawei S9300, S5300, S5700, S6700, S7700, S9700, and S12700 devices allows… | 2025-04-13T23:37:28.220000Z |
| var-201609-0306 | Session fixation vulnerability in Cisco Firepower Management Center and Cisco FireSIGHT S… | 2025-04-13T23:37:28.159000Z |
| var-201609-0390 | Cisco WebEx Meetings Server 2.6 allows remote attackers to cause a denial of service (CPU… | 2025-04-13T23:37:28.130000Z |
| var-201610-0283 | Cisco Firepower Management Center 6.0.1 has hardcoded database credentials, which allows … | 2025-04-13T23:37:28.058000Z |
| var-201611-0019 | A vulnerability has been identified in SIMATIC CP 343-1 Advanced (incl. SIPLUS NET varian… | 2025-04-13T23:37:27.819000Z |
| var-201611-0166 | A vulnerability in the Slowpath of StarOS for Cisco ASR 5500 Series routers with Data Pro… | 2025-04-13T23:37:27.721000Z |
| var-201612-0160 | A vulnerability in IPv6 packet fragment reassembly of StarOS for Cisco Aggregation Servic… | 2025-04-13T23:37:27.620000Z |
| var-201612-0370 | A vulnerability in the File Management Utility, the Download File form, and the Serviceab… | 2025-04-13T23:37:27.580000Z |
| var-201701-0496 | NETGEAR Arlo base stations with firmware 1.7.5_6178 and earlier, Arlo Q devices with firm… | 2025-04-13T23:37:27.447000Z |
| var-201403-0131 | Cross-site scripting (XSS) vulnerability in index.php in Aker Secure Mail Gateway 2.5.2 a… | 2025-04-13T23:36:36.982000Z |
| var-201403-0278 | Directory traversal vulnerability in McAfee Web Gateway (MWG) 7.4.x before 7.4.1, 7.3.x b… | 2025-04-13T23:36:36.888000Z |
| var-201403-0465 | The End User Safelist/Blocklist (aka SLBL) service in Cisco AsyncOS Software for Email Se… | 2025-04-13T23:36:36.378000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-ru-2022:1391-1 | Recommended update for salt | 2022-04-25T14:41:59Z | 2022-04-25T14:41:59Z |
| suse-ru-2022:1389-1 | Recommended update for salt | 2022-04-25T14:41:23Z | 2022-04-25T14:41:23Z |
| suse-ru-2022:1385-1 | Recommended update for Salt | 2022-04-25T14:40:30Z | 2022-04-25T14:40:30Z |
| suse-ru-2022:1384-1 | Recommended update for Salt | 2022-04-25T14:39:28Z | 2022-04-25T14:39:28Z |
| suse-su-2022:1369-1 | Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP3) | 2022-04-25T14:11:46Z | 2022-04-25T14:11:46Z |
| suse-su-2022:1376-1 | Security update for mutt | 2022-04-25T13:42:05Z | 2022-04-25T13:42:05Z |
| suse-su-2022:1375-1 | Security update for xen | 2022-04-25T13:40:49Z | 2022-04-25T13:40:49Z |
| suse-su-2022:1335-1 | Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP1) | 2022-04-25T12:04:15Z | 2022-04-25T12:04:15Z |
| suse-su-2022:1359-1 | Security update for xen | 2022-04-25T11:26:19Z | 2022-04-25T11:26:19Z |
| suse-su-2022:1326-1 | Security update for the Linux Kernel (Live Patch 7 for SLE 15 SP3) | 2022-04-24T15:04:02Z | 2022-04-24T15:04:02Z |
| suse-su-2022:1322-1 | Security update for the Linux Kernel (Live Patch 23 for SLE 12 SP5) | 2022-04-23T21:34:29Z | 2022-04-23T21:34:29Z |
| suse-su-2022:1320-1 | Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP4) | 2022-04-23T19:04:03Z | 2022-04-23T19:04:03Z |
| suse-su-2022:1318-1 | Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP4) | 2022-04-23T04:06:04Z | 2022-04-23T04:06:04Z |
| suse-su-2022:1316-1 | Security update for podofo | 2022-04-22T15:00:45Z | 2022-04-22T15:00:45Z |
| suse-su-2022:1315-1 | Security update for netty | 2022-04-22T15:00:17Z | 2022-04-22T15:00:17Z |
| suse-su-2022:1313-1 | Security update for SDL2 | 2022-04-22T14:13:14Z | 2022-04-22T14:13:14Z |
| suse-su-2022:1312-1 | Security update for SDL | 2022-04-22T14:11:15Z | 2022-04-22T14:11:15Z |
| suse-su-2022:14943-1 | Security update for SDL | 2022-04-22T14:09:44Z | 2022-04-22T14:09:44Z |
| suse-su-2022:1308-1 | Security update for libxml2 | 2022-04-22T14:07:55Z | 2022-04-22T14:07:55Z |
| suse-su-2022:1307-1 | Security update for dnsmasq | 2022-04-22T13:30:05Z | 2022-04-22T13:30:05Z |
| suse-su-2022:1306-1 | Security update for git | 2022-04-22T13:28:29Z | 2022-04-22T13:28:29Z |
| suse-su-2022:1305-1 | Security update for libinput | 2022-04-22T13:26:56Z | 2022-04-22T13:26:56Z |
| suse-su-2022:1304-1 | Security update for tomcat | 2022-04-22T13:25:55Z | 2022-04-22T13:25:55Z |
| suse-su-2022:1303-1 | Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP4) | 2022-04-22T09:50:27Z | 2022-04-22T09:50:27Z |
| suse-su-2022:1300-1 | Security update for xen | 2022-04-22T06:39:52Z | 2022-04-22T06:39:52Z |
| suse-su-2022:1297-1 | Security update for swtpm | 2022-04-21T15:32:01Z | 2022-04-21T15:32:01Z |
| suse-su-2022:1296-1 | Security update for openjpeg | 2022-04-21T15:29:02Z | 2022-04-21T15:29:02Z |
| suse-su-2022:1294-1 | Security update for tomcat | 2022-04-21T13:59:35Z | 2022-04-21T13:59:35Z |
| suse-su-2022:1293-1 | Security update for tomcat | 2022-04-21T12:59:36Z | 2022-04-21T12:59:36Z |
| suse-su-2022:1292-1 | Security update for tomcat | 2022-04-21T12:58:07Z | 2022-04-21T12:58:07Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-05713 | Adobe Commerce路径遍历漏洞(CNVD-2025-05713) | 2025-02-17 | 2025-03-26 |
| cnvd-2025-05708 | Adobe Commerce跨站脚本漏洞(CNVD-2025-05708) | 2025-02-17 | 2025-03-26 |
| cnvd-2025-05707 | Adobe Commerce跨站脚本漏洞(CNVD-2025-05707) | 2025-02-17 | 2025-03-26 |
| cnvd-2025-05701 | Adobe Commerce跨站脚本漏洞(CNVD-2025-05701) | 2025-02-17 | 2025-03-26 |
| cnvd-2025-05697 | Adobe Commerce跨站脚本漏洞(CNVD-2025-05697) | 2025-02-17 | 2025-03-26 |
| cnvd-2025-05696 | Adobe Commerce跨站脚本漏洞(CNVD-2025-05696) | 2025-02-17 | 2025-03-26 |
| cnvd-2025-05695 | Adobe Commerce跨站脚本漏洞(CNVD-2025-05695) | 2025-02-17 | 2025-03-26 |
| cnvd-2025-05694 | Adobe Commerce跨站脚本漏洞(CNVD-2025-05694) | 2025-02-17 | 2025-03-26 |
| cnvd-2025-06483 | Cisco Secure Web Appliance输入验证错误漏洞 | 2025-02-18 | 2025-03-25 |
| cnvd-2025-06356 | 零视技术(上海)有限公司H5S视频平台存在逻辑缺陷漏洞 | 2025-02-08 | 2025-03-25 |
| cnvd-2025-05986 | Cisco Firepower Threat Defense和Cisco FirePOWER Services存在拒绝服务漏洞 | 2024-10-31 | 2025-03-25 |
| cnvd-2025-05985 | Cisco Firepower Threat Defense和Cisco Adaptive Security Appliance授权问题漏洞 | 2024-10-31 | 2025-03-25 |
| cnvd-2025-05984 | Cisco Unified Contact Center Management Portal跨站脚本漏洞 | 2024-11-01 | 2025-03-25 |
| cnvd-2025-05983 | Cisco IP Phone信息泄露漏洞 | 2024-11-11 | 2025-03-25 |
| cnvd-2025-05947 | Cisco TelePresence Collaboration Endpoint和Cisco RoomOS存在未明漏洞 | 2024-11-21 | 2025-03-25 |
| cnvd-2025-05780 | festo多款产品存在拒绝服务漏洞 | 2025-02-08 | 2025-03-25 |
| cnvd-2025-05706 | Apache Atlas跨站脚本漏洞(CNVD-2025-05706) | 2025-02-18 | 2025-03-25 |
| cnvd-2025-05705 | Apache James资源管理错误漏洞 | 2025-02-18 | 2025-03-25 |
| cnvd-2025-05704 | Apache Doris路径遍历漏洞 | 2025-02-18 | 2025-03-25 |
| cnvd-2025-05703 | Apache Hive授权问题漏洞 | 2025-02-18 | 2025-03-25 |
| cnvd-2025-05702 | Apache Hive信任管理问题漏洞 | 2025-02-18 | 2025-03-25 |
| cnvd-2025-05699 | Apache EventMesh反序列化漏洞(CNVD-2025-05699) | 2025-02-19 | 2025-03-25 |
| cnvd-2025-05698 | Apache StreamPipes权限提升漏洞(CNVD-2025-05698) | 2025-03-07 | 2025-03-25 |
| cnvd-2025-05693 | Adobe InDesign越界写入漏洞(CNVD-2025-05693) | 2025-03-14 | 2025-03-25 |
| cnvd-2025-05692 | Adobe InDesign越界写入漏洞(CNVD-2025-05692) | 2025-03-14 | 2025-03-25 |
| cnvd-2025-05691 | Adobe InDesign越界写入漏洞(CNVD-2025-05691) | 2025-03-14 | 2025-03-25 |
| cnvd-2025-05992 | Google Chrome V8释放后使用漏洞(CNVD-2025-0599274) | 2024-12-17 | 2025-03-24 |
| cnvd-2025-05991 | Google Chrome V8类型混淆漏洞( CNVD-2025-0599103) | 2024-12-20 | 2025-03-24 |
| cnvd-2025-05990 | Google Android非法授权漏洞(CNVD-2025-0599078) | 2024-12-23 | 2025-03-24 |
| cnvd-2025-05989 | Google Vertex AI信息泄露漏洞 | 2024-12-26 | 2025-03-24 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2013-avi-602 | Vulnérabilité dans Apple Keynote | 2013-10-24T00:00:00.000000 | 2013-10-24T00:00:00.000000 |
| certa-2013-avi-601 | Multiples vulnérabilités dans Apple OS X Mavericks | 2013-10-24T00:00:00.000000 | 2013-10-24T00:00:00.000000 |
| certa-2013-avi-600 | Multiples vulnérabilités dans Apple Safari | 2013-10-24T00:00:00.000000 | 2013-10-24T00:00:00.000000 |
| certa-2013-avi-599 | Multiples vulnérabilités dans Apple iOS | 2013-10-24T00:00:00.000000 | 2013-10-24T00:00:00.000000 |
| certa-2013-avi-598 | Vulnérabilité dans Citrix XenDesktop | 2013-10-23T00:00:00.000000 | 2013-10-23T00:00:00.000000 |
| certa-2013-avi-597 | Multiples vulnérabilités dans le noyau Linux de Ubuntu | 2013-10-22T00:00:00.000000 | 2013-10-22T00:00:00.000000 |
| certa-2013-avi-596 | Multiples vulnérabilités dans Apache Struts | 2013-10-21T00:00:00.000000 | 2013-10-21T00:00:00.000000 |
| certa-2013-avi-595 | Multiples vulnérabilités dans Apple OS X et Mac OS X | 2013-10-21T00:00:00.000000 | 2013-10-21T00:00:00.000000 |
| certa-2013-avi-594 | Multiples vulnérabilités dans VMware vSphere | 2013-10-21T00:00:00.000000 | 2013-10-21T00:00:00.000000 |
| certa-2013-avi-593 | Multiples vulnérabilités dans Oracle Solaris | 2013-10-18T00:00:00.000000 | 2013-10-18T00:00:00.000000 |
| certa-2013-avi-592 | Multiples vulnérabilités dans Puppet | 2013-10-17T00:00:00.000000 | 2013-10-17T00:00:00.000000 |
| certa-2013-avi-591 | Vulnérabilité dans Ruby on Rails | 2013-10-17T00:00:00.000000 | 2013-10-17T00:00:00.000000 |
| certa-2013-avi-590 | Multiples vulnérabilités dans Oracle Solaris | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-589 | Multiples vulnérabilités dans Oracle MySQL | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-588 | Multiples vulnérabilités dans Oracle Virtualization | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-587 | Multiples vulnérabilités dans Oracle et Sun Systems Products Suite | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-586 | Multiples vulnérabilités dans Oracle Java SE | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-585 | Multiples vulnérabilités dans Oracle Primavera Products Suite | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-584 | Vulnérabilité dans Oracle FLEXCUBE | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-583 | Vulnérabilité dans Oracle Retail Invoice Matching | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-582 | Multiples vulnérabilités dans Oracle Health Sciences InForm | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-581 | Multiples vulnérabilités dans Oracle iLearning | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-580 | Multiples vulnérabilités dans Oracle Siebel | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-579 | Multiples vulnérabilités dans Oracle PeopleSoft Enterprise | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-578 | Multiples vulnérabilités dans Oracle Supply Chain Products Suite | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-577 | Vulnérabilité dans Oracle E-Business Suite | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-576 | Multiples vulnérabilités dans Oracle Enterprise Manager Grid Control | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-575 | Multiples vulnérabilités dans Oracle Fusion Middleware | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-574 | Multiples vulnérabilités dans Oracle Database | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-573 | Multiples vulnérabilités dans Google Chrome | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |