Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-14854 |
5.4 (3.1)
|
WP-CRM System – Manage Clients and Projects <= 3.4.5 -… |
nofearinc |
WP-CRM System – Manage Clients and Projects |
2026-01-14T05:28:12.974Z | 2026-01-15T17:26:26.971Z |
| CVE-2025-68492 |
4.2 (3.0)
2.3 (4.0)
|
Chainlit versions prior to 2.8.5 contain an autho… |
Chainlit |
Chainlit |
2026-01-14T06:27:14.846Z | 2026-01-15T17:24:34.226Z |
| CVE-2026-0739 |
4.4 (3.1)
|
WMF Mobile Redirector <= 1.2 - Authenticated (Administ… |
webbu |
WMF Mobile Redirector |
2026-01-14T06:40:04.088Z | 2026-01-15T17:23:06.026Z |
| CVE-2026-23495 |
4.3 (3.1)
|
Pimcore's Admin Classic Bundle is Missing Function Lev… |
pimcore |
pimcore |
2026-01-15T16:47:07.114Z | 2026-01-15T17:09:32.298Z |
| CVE-2025-70298 |
8.2 (3.1)
|
GPAC v2.4.0 was discovered to contain an out-of-b… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T17:05:50.552Z |
| CVE-2026-22915 |
4.3 (3.1)
|
An attacker with low privileges may be able to re… |
SICK AG |
TDC-X401GL |
2026-01-15T13:06:44.048Z | 2026-01-15T17:03:58.009Z |
| CVE-2021-47759 |
6.8 (4.0)
6.2 (3.1)
|
MTPutty 1.0.1.21 - SSH Password Disclosure |
Ttyplus |
MTPutty |
2026-01-15T15:52:05.935Z | 2026-01-15T17:02:16.609Z |
| CVE-2025-70656 |
7.5 (3.1)
|
Tenda AX-1806 v1.0.0.1 was discovered to contain … |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T17:01:05.154Z |
| CVE-2025-37165 |
7.5 (3.1)
|
Exposure of VLAN information in unintended network int… |
Hewlett Packard Enterprise (HPE) |
Instant On |
2026-01-13T17:40:56.557Z | 2026-01-15T16:56:25.947Z |
| CVE-2026-22916 |
4.3 (3.1)
|
An attacker with low privileges may be able to tr… |
SICK AG |
TDC-X401GL |
2026-01-15T13:07:07.335Z | 2026-01-15T16:55:42.554Z |
| CVE-2021-47761 |
8.5 (4.0)
7.8 (3.1)
|
MilleGPG5 5.7.2 Luglio 2021 (x64) - Local Privilege Es… |
Millegpg |
MilleGPG5 |
2026-01-15T15:52:06.931Z | 2026-01-15T16:53:31.329Z |
| CVE-2021-47762 |
8.5 (4.0)
7.8 (3.1)
|
HTTPDebuggerPro 9.11 - Unquoted Service Path |
Httpdebugger |
HTTPDebuggerPro |
2026-01-15T15:52:07.433Z | 2026-01-15T16:52:37.108Z |
| CVE-2021-47763 |
8.8 (4.0)
8.2 (3.1)
|
Aimeos Laravel ecommerce platform 2021.10 LTS - 'sort'… |
Aimeos |
Aimeos Laravel ecommerce platform |
2026-01-15T15:52:07.958Z | 2026-01-15T16:51:11.006Z |
| CVE-2021-47766 |
7.1 (4.0)
7.1 (3.1)
|
Kmaleon 1.1.0.205 - 'tipocomb' SQL Injection (Authenticated) |
Levelprograms |
Kmaleon |
2026-01-15T15:52:09.398Z | 2026-01-15T16:47:08.921Z |
| CVE-2026-22867 |
8.7 (3.1)
|
LaSuite Doc affected by Stored XSS via Interlinking Block |
suitenumerique |
docs |
2026-01-15T16:31:34.397Z | 2026-01-15T16:46:57.161Z |
| CVE-2021-47774 |
8.4 (4.0)
9.8 (3.1)
|
Kingdia CD Extractor 3.0.2 - Buffer Overflow (SEH) |
En |
Kingdia CD Extractor |
2026-01-15T15:52:12.724Z | 2026-01-15T16:46:45.316Z |
| CVE-2026-22265 |
7.5 (3.1)
|
Roxy-WI has a Command Injection via grep parameter in … |
roxy-wi |
roxy-wi |
2026-01-15T16:27:52.446Z | 2026-01-15T16:46:11.782Z |
| CVE-2021-47775 |
8.4 (4.0)
8.4 (3.1)
|
YouTube Video Grabber 1.9.9.1 - Buffer Overflow (SEH) |
Litexmedia |
YouTube Video Grabber |
2026-01-15T15:52:13.223Z | 2026-01-15T16:46:04.528Z |
| CVE-2025-66417 |
7.5 (3.1)
|
GLPI has an unauthenticated SQL injection through the… |
glpi-project |
glpi |
2026-01-15T16:25:03.467Z | 2026-01-15T16:45:31.206Z |
| CVE-2025-66292 |
8.1 (3.1)
|
DPanel has an arbitrary file deletion vulnerability in… |
donknap |
dpanel |
2026-01-15T16:19:55.507Z | 2026-01-15T16:44:51.018Z |
| CVE-2025-70308 |
7.5 (3.1)
|
An out-of-bounds read in the GSF demuxer filter c… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T16:44:15.156Z |
| CVE-2025-70304 |
7.5 (3.1)
|
A buffer overflow in the vobsub_get_subpic_durati… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T16:43:16.567Z |
| CVE-2025-70310 |
5.5 (3.1)
|
A heap overflow in the vorbis_to_intern() functio… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T16:43:01.292Z |
| CVE-2021-47776 |
6.9 (4.0)
5.3 (3.1)
|
Umbraco v8.14.1 - 'baseUrl' SSRF |
umbraco |
Umbraco |
2026-01-15T15:52:13.737Z | 2026-01-15T16:40:33.352Z |
| CVE-2021-47777 |
8.8 (4.0)
8.2 (3.1)
|
Build Smart ERP 21.0817 - 'eidValue' SQL Injection (Un… |
Ribccs |
Build Smart ERP |
2026-01-15T15:52:14.242Z | 2026-01-15T16:40:07.115Z |
| CVE-2026-0992 |
2.9 (3.1)
|
Libxml2: libxml2: denial of service via crafted xml catalogs |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-01-15T14:20:24.934Z | 2026-01-15T16:39:47.982Z |
| CVE-2021-47781 |
6.7 (4.0)
9.8 (3.1)
|
Cmder Console Emulator 1.3.18 - 'Cmder.exe' Denial of … |
Cmder |
Cmder Console Emulator |
2026-01-15T15:52:14.687Z | 2026-01-15T16:39:37.145Z |
| CVE-2026-0989 |
3.7 (3.1)
|
Libxml2: unbounded relaxng include recursion leading t… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-01-15T14:20:23.274Z | 2026-01-15T16:39:34.311Z |
| CVE-2026-0990 |
5.9 (3.1)
|
Libxml2: libxml2: denial of service via uncontrolled r… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-01-15T14:20:06.515Z | 2026-01-15T16:39:20.891Z |
| CVE-2021-47784 |
6.7 (4.0)
7.5 (3.1)
|
Cyberfox Web Browser 52.9.1 - Denial of Service (PoC) |
Cyberfox |
Cyberfox Web Browser |
2026-01-15T15:52:15.185Z | 2026-01-15T16:39:13.224Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-49042 |
5.9 (3.1)
|
WordPress WooCommerce plugin <= 10.0.2 - Cross Site Sc… |
Automattic |
WooCommerce |
2025-10-29T04:50:12.507Z | 2026-01-20T14:28:06.098Z |
| CVE-2025-49041 |
6.5 (3.1)
|
WordPress Get Cash plugin <= 3.2.3 - Broken Access Con… |
The African Boss |
Get Cash |
2025-12-18T07:21:40.869Z | 2026-01-20T14:28:06.017Z |
| CVE-2025-49028 |
7.1 (3.1)
|
WordPress Zoho ZeptoMail plugin <= 3.3.1 - Cross Site … |
Zoho Mail |
Zoho ZeptoMail |
2025-12-31T09:05:02.812Z | 2026-01-20T14:28:06.018Z |
| CVE-2025-48338 |
7.5 (3.1)
|
WordPress WP Abstracts plugin <= 2.7.4 - Local File In… |
Kevon Adonis |
WP Abstracts |
2025-10-22T14:32:07.858Z | 2026-01-20T14:28:06.339Z |
| CVE-2025-48330 |
9.8 (3.1)
|
WordPress Real Time Validation for Gravity Forms <= 1.… |
Daman Jeet |
Real Time Validation for Gravity Forms |
2025-11-06T15:53:48.806Z | 2026-01-20T14:28:06.327Z |
| CVE-2025-48290 |
9.8 (3.1)
|
WordPress Kinsley theme <= 3.4.4 - Local File Inclusio… |
bslthemes |
Kinsley |
2025-11-06T15:53:47.362Z | 2026-01-20T14:28:06.389Z |
| CVE-2025-48106 |
10 (3.1)
|
WordPress Clanora theme < 1.3.1 - Arbitrary File Uploa… |
CMSSuperHeroes |
Clanora |
2025-10-22T14:32:07.674Z | 2026-01-20T14:28:06.040Z |
| CVE-2025-48099 |
4.7 (3.1)
|
WordPress Search & Filter plugin <= 1.2.17 - Cross Sit… |
Code Amp |
Search & Filter |
2025-10-22T14:32:07.494Z | 2026-01-20T14:28:05.849Z |
| CVE-2025-48098 |
7.1 (3.1)
|
WordPress Survey Maker plugin <= 5.1.8.8 - Cross Site … |
Ays Pro |
Survey Maker |
2025-10-22T14:32:07.268Z | 2026-01-20T14:28:05.964Z |
| CVE-2025-48097 |
7.1 (3.1)
|
WordPress WSAnalytics plugin <= 1.1.2 - Reflected Cros… |
Shiva |
WSAnalytics |
2025-10-22T14:32:07.078Z | 2026-01-20T14:28:06.030Z |
| CVE-2025-48096 |
6.5 (3.1)
|
WordPress Custom CSS plugin <= 1.4.0 - Broken Access C… |
FRESHFACE |
Custom CSS |
2025-10-22T14:32:06.895Z | 2026-01-20T14:28:06.033Z |
| CVE-2025-48095 |
5.9 (3.1)
|
WordPress Survey Maker plugin <= 5.1.8.8 - Cross Site … |
Ays Pro |
Survey Maker |
2025-10-22T14:32:06.692Z | 2026-01-20T14:28:06.023Z |
| CVE-2025-48093 |
7.1 (3.1)
|
WordPress Password only login plugin <= 0.2 - Reflecte… |
Calvaweb |
Password only login |
2025-10-22T14:32:06.499Z | 2026-01-20T14:28:06.143Z |
| CVE-2025-48092 |
7.1 (3.1)
|
WordPress Fix Multiple Redirects plugin <= 1.2.3 - Ref… |
jurajpuchky |
Fix Multiple Redirects |
2025-10-22T14:32:06.317Z | 2026-01-20T14:28:06.013Z |
| CVE-2025-48091 |
8.5 (3.1)
|
WordPress AnyComment plugin <= 0.3.6 - SQL Injection v… |
Alexander |
AnyComment |
2025-10-22T14:32:06.134Z | 2026-01-20T14:28:05.973Z |
| CVE-2025-48090 |
8.2 (3.1)
|
WordPress Blanka - One Page WordPress Theme Theme < 1.… |
CocoBasic |
Blanka - One Page WordPress Theme |
2025-11-06T15:53:43.727Z | 2026-01-20T14:28:05.889Z |
| CVE-2025-48089 |
9.8 (3.1)
|
WordPress Education WordPress Theme | HiStudy theme < … |
Rainbow-Themes |
Education WordPress Theme | HiStudy |
2025-11-06T15:53:43.152Z | 2026-01-20T14:28:05.780Z |
| CVE-2025-48088 |
6.5 (3.1)
|
WordPress Ultimate Addons for WPBakery Page Builder pl… |
Brainstorm Force |
Ultimate Addons for WPBakery Page Builder |
2025-10-27T02:09:52.224Z | 2026-01-20T14:28:05.703Z |
| CVE-2025-48087 |
6.5 (3.1)
|
WordPress Memberlite Shortcodes plugin <= 1.4.1 - Cros… |
Jason C. |
Memberlite Shortcodes |
2025-10-17T14:18:04.368Z | 2026-01-20T14:28:05.761Z |
| CVE-2025-48086 |
9.8 (3.1)
|
WordPress Ajax Search Lite plugin <= 4.13.3 - PHP Obje… |
wpdreams |
Ajax Search Lite |
2025-11-06T15:53:42.585Z | 2026-01-20T14:28:05.623Z |
| CVE-2025-48085 |
8.8 (3.1)
|
WordPress Simple Stripe plugin <= 0.9.17 - Cross Site … |
ZIPANG |
Simple Stripe |
2025-11-06T15:53:41.777Z | 2026-01-20T14:28:05.540Z |
| CVE-2025-48083 |
8.8 (3.1)
|
WordPress wpNamedUsers plugin <= 0.5 - Cross Site Requ… |
andriassundskard |
wpNamedUsers |
2025-11-06T15:53:40.546Z | 2026-01-20T14:28:05.728Z |
| CVE-2025-48082 |
8.8 (3.1)
|
WordPress Progress Planner plugin <= 1.8.0 - Privilege… |
Progress Planner |
Progress Planner |
2025-10-22T14:32:05.935Z | 2026-01-20T14:28:05.589Z |
| CVE-2025-48078 |
8.8 (3.1)
|
WordPress Slick Google Map plugin <= 0.3 - Cross Site … |
Norbert |
Slick Google Map |
2025-11-06T15:53:37.443Z | 2026-01-20T14:28:05.590Z |
| CVE-2025-48077 |
8.8 (3.1)
|
WordPress Block Country plugin <= 1.0 - Cross Site Req… |
nitinmaurya12 |
Block Country |
2025-11-06T15:53:36.642Z | 2026-01-20T14:28:05.512Z |
| CVE-2025-47588 |
9.8 (3.1)
|
WordPress Dynamic Pricing With Discount Rules for WooC… |
acowebs |
Dynamic Pricing With Discount Rules for WooCommerce |
2025-11-06T15:53:35.904Z | 2026-01-20T14:28:05.523Z |
| CVE-2025-47566 |
7.1 (3.1)
|
WordPress ZoomSounds plugin <= 6.91 - Reflected Cross … |
ZoomSounds |
ZoomSounds |
2025-12-31T20:07:56.919Z | 2026-01-20T14:28:05.562Z |
| CVE-2025-46255 |
7.5 (3.1)
|
WordPress LoginWP - Pro Plugin <= 4.0.8.5 - Settings C… |
Marketing Fire LLC |
LoginWP - Pro |
2026-01-05T16:44:34.478Z | 2026-01-20T14:28:05.508Z |
| CVE-2025-39561 |
6.5 (3.1)
|
WordPress LoginWP - Pro Plugin <= 4.0.8.5 - Broken Acc… |
Marketing Fire, LLC |
LoginWP - Pro |
2026-01-05T16:50:25.554Z | 2026-01-20T14:28:05.437Z |
| CVE-2025-39534 |
7.1 (3.1)
|
WordPress Terms Dictionary Plugin <= 1.5.1 - Reflected… |
Somonator |
Terms Dictionary |
2025-10-22T14:32:05.744Z | 2026-01-20T14:28:05.517Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-49042 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-29T05:15:37.080 | 2026-01-20T15:16:31.663 |
| fkie_cve-2025-49041 | Missing Authorization vulnerability in The African Boss Get Cash get-cash allows Exploiting Incorre… | 2025-12-18T08:15:49.837 | 2026-01-20T15:16:31.493 |
| fkie_cve-2025-49028 | Cross-Site Request Forgery (CSRF) vulnerability in Zoho Mail Zoho ZeptoMail allows Stored XSS.This … | 2025-12-31T09:15:50.830 | 2026-01-20T15:16:31.343 |
| fkie_cve-2025-48338 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-10-22T15:15:35.023 | 2026-01-20T15:16:31.197 |
| fkie_cve-2025-48330 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:15:52.780 | 2026-01-20T15:16:31.047 |
| fkie_cve-2025-48290 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:15:52.627 | 2026-01-20T15:16:30.903 |
| fkie_cve-2025-48106 | Unrestricted Upload of File with Dangerous Type vulnerability in CMSSuperHeroes Clanora clanora all… | 2025-10-22T15:15:34.880 | 2026-01-20T15:16:30.760 |
| fkie_cve-2025-48099 | Cross-Site Request Forgery (CSRF) vulnerability in Code Amp Search & Filter search-filter allows Cr… | 2025-10-22T15:15:34.733 | 2026-01-20T15:16:30.600 |
| fkie_cve-2025-48098 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:34.600 | 2026-01-20T15:16:30.450 |
| fkie_cve-2025-48097 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:34.467 | 2026-01-20T15:16:30.300 |
| fkie_cve-2025-48096 | Missing Authorization vulnerability in FRESHFACE Custom CSS custom-css-editor allows Exploiting Inc… | 2025-10-22T15:15:34.333 | 2026-01-20T15:16:30.157 |
| fkie_cve-2025-48095 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:34.210 | 2026-01-20T15:16:30.013 |
| fkie_cve-2025-48093 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:34.090 | 2026-01-20T15:16:29.843 |
| fkie_cve-2025-48092 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:33.963 | 2026-01-20T15:16:29.667 |
| fkie_cve-2025-48091 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-10-22T15:15:33.840 | 2026-01-20T15:16:28.740 |
| fkie_cve-2025-48090 | Path Traversal: '.../...//' vulnerability in CocoBasic Blanka - One Page WordPress Theme blanka-wp … | 2025-11-06T16:15:52.423 | 2026-01-20T15:16:27.027 |
| fkie_cve-2025-48089 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-11-06T16:15:52.270 | 2026-01-20T15:16:26.877 |
| fkie_cve-2025-48088 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:15:50.727 | 2026-01-20T15:16:26.767 |
| fkie_cve-2025-48087 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-17T15:15:38.730 | 2026-01-20T15:16:26.650 |
| fkie_cve-2025-48086 | Deserialization of Untrusted Data vulnerability in wpdreams Ajax Search Lite ajax-search-lite allow… | 2025-11-06T16:15:52.120 | 2026-01-20T15:16:26.520 |
| fkie_cve-2025-48085 | Cross-Site Request Forgery (CSRF) vulnerability in ZIPANG Simple Stripe simple-stripe allows Stored… | 2025-11-06T16:15:51.970 | 2026-01-20T15:16:26.377 |
| fkie_cve-2025-48083 | Cross-Site Request Forgery (CSRF) vulnerability in andriassundskard wpNamedUsers wpnamedusers allow… | 2025-11-06T16:15:51.810 | 2026-01-20T15:16:26.243 |
| fkie_cve-2025-48082 | Incorrect Privilege Assignment vulnerability in Progress Planner Progress Planner progress-planner … | 2025-10-22T15:15:33.707 | 2026-01-20T15:16:26.110 |
| fkie_cve-2025-48078 | Cross-Site Request Forgery (CSRF) vulnerability in Norbert Slick Google Map slick-google-map allows… | 2025-11-06T16:15:51.670 | 2026-01-20T15:16:25.983 |
| fkie_cve-2025-48077 | Cross-Site Request Forgery (CSRF) vulnerability in nitinmaurya12 Block Country block-country allows… | 2025-11-06T16:15:51.513 | 2026-01-20T15:16:25.853 |
| fkie_cve-2025-47588 | Improper Control of Generation of Code ('Code Injection') vulnerability in acowebs Dynamic Pricing … | 2025-11-06T16:15:51.363 | 2026-01-20T15:16:25.713 |
| fkie_cve-2025-47566 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T20:15:42.650 | 2026-01-20T15:16:25.607 |
| fkie_cve-2025-46255 | Missing Authorization vulnerability in Marketing Fire LLC LoginWP - Pro allows Accessing Functional… | 2026-01-05T17:15:45.480 | 2026-01-20T15:16:25.347 |
| fkie_cve-2025-39561 | Missing Authorization vulnerability in Marketing Fire, LLC LoginWP - Pro allows Accessing Functiona… | 2026-01-05T17:15:45.330 | 2026-01-20T15:16:24.937 |
| fkie_cve-2025-39534 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:33.580 | 2026-01-20T15:16:24.800 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-3f5f-xgrj-97pf |
8.3 (4.0)
|
Parse Server is vulnerable to Server-Side Request Forgery (SSRF) via Instagram OAuth Adapter | 2025-12-16T22:35:40Z | 2026-01-07T14:54:59Z |
| ghsa-wj54-8jf7-3rv3 |
|
Rejected reason: Not used | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-pwqh-789q-mcjf |
|
Rejected reason: Not used | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-pf5p-h92c-mh7g |
|
Rejected reason: Not used | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-p2cj-h5f7-496j |
|
Rejected reason: Not used | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-h2fp-m732-cq75 |
7.8 (3.1)
8.5 (4.0)
|
Origin validation error issue exists in Fujitsu Security Solution AuthConductor Client Basic V2 2.0… | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-gfrj-v9v7-jwvw |
|
Rejected reason: Not used | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-cxfq-64mm-m832 |
4.7 (3.1)
2.0 (4.0)
|
A security vulnerability has been detected in invoiceninja up to 5.12.38. The affected element is t… | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-cp87-939x-535c |
|
Rejected reason: Not used | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-9j5j-4qcf-3wmv |
8.2 (3.1)
|
The iPaymu Payment Gateway for WooCommerce plugin for WordPress is vulnerable to Missing Authentica… | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-3x47-hh2w-gf29 |
|
Rejected reason: Not used | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-39j9-xxmr-pch7 |
7.3 (3.1)
5.5 (4.0)
|
A flaw has been found in projectworlds House Rental and Property Listing 1.0. Impacted is an unknow… | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-2qfg-m3c3-m867 |
2.4 (3.1)
1.9 (4.0)
|
A vulnerability was detected in projectworlds House Rental and Property Listing 1.0. This issue aff… | 2026-01-07T12:31:25Z | 2026-01-07T12:31:25Z |
| ghsa-x98j-9gfh-hpwf |
6.6 (3.1)
|
Memory corruption while handling buffer mapping operations in the cryptographic driver. | 2026-01-07T12:31:23Z | 2026-01-07T12:31:24Z |
| ghsa-wq3v-p2w9-j7mf |
6.7 (3.1)
|
Memory corruption while parsing clock configuration data for a specific hardware type. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-w75v-7c2j-x3qx |
8.4 (3.1)
|
Cryptographic issue may occur while encrypting license data. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-vq6q-rf95-5qf7 |
7.8 (3.1)
|
Memory corruption while deinitializing a HDCP session. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-r33h-4w36-wx5h |
6.7 (3.1)
|
Memory corruption while accessing a synchronization object during concurrent operations. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-p4mr-j524-29rh |
6.7 (3.1)
|
Memory corruption while processing shared command buffer packet between camera userspace and kernel. | 2026-01-07T12:31:23Z | 2026-01-07T12:31:24Z |
| ghsa-hxfv-75rx-qf59 |
7.8 (3.1)
|
Memory corruption while processing a secure logging command in the trusted application. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-hf7c-8q5w-3w2j |
7.8 (3.1)
|
Memory corruption occurs when a secure application is launched on a device with insufficient memory. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-h4qp-j8rr-r5w8 |
7.8 (3.1)
|
Memory corruption when accessing resources in kernel driver. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-gr5m-fj76-2rh6 |
6.5 (3.1)
|
Transient DOS while parsing a WLAN management frame with a Vendor Specific Information Element. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-gcfv-hrxv-4rjx |
7.8 (3.1)
|
Memory corruption while preprocessing IOCTLs in sensors. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-g526-grm4-mp7h |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-f68m-39vr-72p3 |
7.8 (3.1)
|
Memory corruption while processing identity credential operations in the trusted application. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-f2fq-4c3c-jhm8 |
4.3 (3.1)
|
Missing Authorization vulnerability in Crocoblock JetEngine allows Exploiting Incorrectly Configure… | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-cwq4-2p5f-m7g7 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-93hm-9f4h-hw39 |
7.8 (3.1)
|
Memory Corruption when multiple threads concurrently access and modify shared resources. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ghsa-8qwr-pfhr-5887 |
6.7 (3.1)
|
Memory corruption while performing sensor register read operations. | 2026-01-07T12:31:24Z | 2026-01-07T12:31:24Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-27042 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.332468Z |
| gsd-2024-27108 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.332247Z |
| gsd-2024-27106 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.331972Z |
| gsd-2024-27070 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.331696Z |
| gsd-2024-27056 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.331479Z |
| gsd-2024-27046 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.331144Z |
| gsd-2024-27117 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.330911Z |
| gsd-2024-27096 | GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Ser… | 2024-02-20T06:02:29.330620Z |
| gsd-2024-27057 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.330329Z |
| gsd-2024-27055 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.330049Z |
| gsd-2024-26416 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.329586Z |
| gsd-2024-26998 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.328854Z |
| gsd-2024-26336 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.328635Z |
| gsd-2024-26803 | In the Linux kernel, the following vulnerability has been resolved: net: veth: clear GRO… | 2024-02-20T06:02:29.328156Z |
| gsd-2024-26506 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.327875Z |
| gsd-2024-26494 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.327141Z |
| gsd-2024-26366 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.326914Z |
| gsd-2024-26727 | In the Linux kernel, the following vulnerability has been resolved: btrfs: do not ASSERT… | 2024-02-20T06:02:29.326348Z |
| gsd-2024-26369 | An issue in the HistoryQosPolicy component of FastDDS v2.12.x, v2.11.x, v2.10.x, and v2.6… | 2024-02-20T06:02:29.326095Z |
| gsd-2024-26976 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.325546Z |
| gsd-2024-26823 | In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: … | 2024-02-20T06:02:29.324327Z |
| gsd-2024-26637 | In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: rely o… | 2024-02-20T06:02:29.323562Z |
| gsd-2024-26952 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.323275Z |
| gsd-2024-26918 | In the Linux kernel, the following vulnerability has been resolved: PCI: Fix active stat… | 2024-02-20T06:02:29.322743Z |
| gsd-2024-26763 | In the Linux kernel, the following vulnerability has been resolved: dm-crypt: don't modi… | 2024-02-20T06:02:29.322476Z |
| gsd-2024-26364 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.322223Z |
| gsd-2024-26717 | In the Linux kernel, the following vulnerability has been resolved: HID: i2c-hid-of: fix… | 2024-02-20T06:02:29.321672Z |
| gsd-2024-26751 | In the Linux kernel, the following vulnerability has been resolved: ARM: ep93xx: Add ter… | 2024-02-20T06:02:29.321092Z |
| gsd-2024-26781 | In the Linux kernel, the following vulnerability has been resolved: mptcp: fix possible … | 2024-02-20T06:02:29.320590Z |
| gsd-2024-26943 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.320354Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-185392 | Malicious code in aether-mui-postgres-mira (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185391 | Malicious code in aether-hologram-genomics-xanthus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185390 | Malicious code in aether-foundation-request-tectonophysics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185389 | Malicious code in aether-dione-test-markdown-pdf (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185388 | Malicious code in adonis-tectonophysics-tectonic-helmet (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185387 | Malicious code in adonis-prettier-stylelint-ignite-magellan (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185386 | Malicious code in adonis-cosmos-eslint-plugin-izar (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185385 | Malicious code in adonis-comet-sedna-geomorphology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185384 | Malicious code in adonis-child-process-pegasus-repository (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185383 | Malicious code in achernar-zenith-ultra-joviology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185382 | Malicious code in achernar-ursa-server-testcafe (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185381 | Malicious code in achernar-oberon-lint-staged-config (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185380 | Malicious code in achernar-hermes-centauri-module (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185379 | Malicious code in achernar-elara-flare-lyra (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185378 | Malicious code in accretion-kastra-nightmare-module (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185377 | Malicious code in accretion-avior-radiometric-fetch (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185376 | Malicious code in acamar-xenon-eslint-magellan (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185375 | Malicious code in acamar-prettier-stylelint-run-script-hapi (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185374 | Malicious code in acamar-postgres-gammarayburst-astrophysics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185373 | Malicious code in acamar-higgs-izar-deneb (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185372 | Malicious code in acamar-halley-eclipse-kronos (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185371 | Malicious code in acamar-comet-flare-robotics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185370 | Malicious code in acamar-child-process-oauth-nodejs (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185369 | Malicious code in abstract-wind-sed-void-chi (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185368 | Malicious code in abstract-mu-kappa-authenticate-decode (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185367 | Malicious code in abstract-interface-stub-delta-cloud (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185366 | Malicious code in abstract-hash-key-report-load (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185365 | Malicious code in abstract-decrypt-async-public-phi (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185364 | Malicious code in ablation-semantic-ui-readable-xerxes (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185363 | Malicious code in ablation-scripts-pino-terraforming (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:10211 | Red Hat Security Advisory: kernel security update | 2025-07-02T13:30:01+00:00 | 2025-11-21T19:19:04+00:00 |
| rhsa-2025:10196 | Red Hat Security Advisory: thunderbird security update | 2025-07-02T08:27:06+00:00 | 2025-11-21T19:19:04+00:00 |
| rhsa-2025:10195 | Red Hat Security Advisory: thunderbird security update | 2025-07-02T08:12:06+00:00 | 2025-11-21T19:19:03+00:00 |
| rhsa-2025:10193 | Red Hat Security Advisory: kernel-rt security update | 2025-07-02T06:48:51+00:00 | 2025-11-21T19:19:03+00:00 |
| rhsa-2025:1019 | Red Hat Security Advisory: Satellite 6.16.2 Async Update | 2025-02-04T16:17:19+00:00 | 2025-11-21T19:19:03+00:00 |
| rhsa-2025:10188 | Red Hat Security Advisory: firefox security update | 2025-07-02T06:13:12+00:00 | 2025-11-21T19:19:02+00:00 |
| rhsa-2025:10179 | Red Hat Security Advisory: kernel security update | 2025-07-02T04:39:40+00:00 | 2025-11-21T19:19:02+00:00 |
| rhsa-2025:10163 | Red Hat Security Advisory: thunderbird security update | 2025-07-01T20:14:29+00:00 | 2025-11-21T19:19:02+00:00 |
| rhsa-2025:10187 | Red Hat Security Advisory: firefox security update | 2025-07-02T05:30:15+00:00 | 2025-11-21T19:19:01+00:00 |
| rhsa-2025:10186 | Red Hat Security Advisory: firefox security update | 2025-07-02T05:46:15+00:00 | 2025-11-21T19:19:01+00:00 |
| rhsa-2025:10185 | Red Hat Security Advisory: firefox security update | 2025-07-02T05:40:55+00:00 | 2025-11-21T19:19:01+00:00 |
| rhsa-2025:10184 | Red Hat Security Advisory: firefox security update | 2025-07-02T05:27:20+00:00 | 2025-11-21T19:19:01+00:00 |
| rhsa-2025:10183 | Red Hat Security Advisory: firefox security update | 2025-07-02T05:31:50+00:00 | 2025-11-21T19:19:00+00:00 |
| rhsa-2025:10182 | Red Hat Security Advisory: firefox security update | 2025-07-02T05:12:47+00:00 | 2025-11-21T19:18:59+00:00 |
| rhsa-2025:10181 | Red Hat Security Advisory: firefox security update | 2025-07-02T05:20:30+00:00 | 2025-11-21T19:18:59+00:00 |
| rhsa-2025:10174 | Red Hat Security Advisory: kernel security update | 2025-07-01T22:46:34+00:00 | 2025-11-21T19:18:58+00:00 |
| rhsa-2025:10166 | Red Hat Security Advisory: thunderbird security update | 2025-07-01T19:42:24+00:00 | 2025-11-21T19:18:57+00:00 |
| rhsa-2025:10165 | Red Hat Security Advisory: thunderbird security update | 2025-07-01T19:51:09+00:00 | 2025-11-21T19:18:57+00:00 |
| rhsa-2025:10164 | Red Hat Security Advisory: thunderbird security update | 2025-07-01T21:44:49+00:00 | 2025-11-21T19:18:57+00:00 |
| rhsa-2025:10162 | Red Hat Security Advisory: microcode_ctl security update | 2025-07-01T19:48:14+00:00 | 2025-11-21T19:18:56+00:00 |
| rhsa-2025:10161 | Red Hat Security Advisory: thunderbird security update | 2025-07-01T19:47:39+00:00 | 2025-11-21T19:18:55+00:00 |
| rhsa-2025:10160 | Red Hat Security Advisory: thunderbird security update | 2025-07-01T20:50:11+00:00 | 2025-11-21T19:18:55+00:00 |
| rhsa-2025:10159 | Red Hat Security Advisory: thunderbird security update | 2025-07-01T21:20:39+00:00 | 2025-11-21T19:18:54+00:00 |
| rhsa-2025:10126 | Red Hat Security Advisory: microcode_ctl security update | 2025-07-01T16:55:49+00:00 | 2025-11-21T19:18:52+00:00 |
| rhsa-2025:10111 | Red Hat Security Advisory: microcode_ctl security update | 2025-07-01T15:49:13+00:00 | 2025-11-21T19:18:51+00:00 |
| rhsa-2025:10109 | Red Hat Security Advisory: microcode_ctl security update | 2025-07-01T18:51:54+00:00 | 2025-11-21T19:18:50+00:00 |
| rhsa-2025:10108 | Red Hat Security Advisory: microcode_ctl security update | 2025-07-01T15:39:18+00:00 | 2025-11-21T19:18:50+00:00 |
| rhsa-2025:10107 | Red Hat Security Advisory: microcode_ctl security update | 2025-07-01T15:33:58+00:00 | 2025-11-21T19:18:50+00:00 |
| rhsa-2025:10103 | Red Hat Security Advisory: microcode_ctl security update | 2025-07-01T14:44:03+00:00 | 2025-11-21T19:18:50+00:00 |
| rhsa-2025:10102 | Red Hat Security Advisory: microcode_ctl security update | 2025-07-01T14:55:04+00:00 | 2025-11-21T19:18:49+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-35831 | Windows Remote Access Connection Manager Information Disclosure Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-35830 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-35828 | Microsoft Defender for Endpoint for Mac Elevation of Privilege Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-35805 | Microsoft Dynamics CRM (on-premises) Remote Code Execution Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-35803 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34729 | Windows GDI Elevation of Privilege Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34728 | Windows Graphics Component Information Disclosure Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34727 | Microsoft ODBC Driver Remote Code Execution Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34726 | Microsoft ODBC Driver Remote Code Execution Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34725 | Windows ALPC Elevation of Privilege Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34724 | Windows DNS Server Denial of Service Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34723 | Windows DPAPI (Data Protection Application Programming Interface) Information Disclosure Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34722 | Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34720 | Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34719 | Windows Distributed File System (DFS) Elevation of Privilege Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-34700 | Microsoft Dynamics CRM (on-premises) Remote Code Execution Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-33679 | Windows Kerberos Elevation of Privilege Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-33647 | Windows Kerberos Elevation of Privilege Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-30200 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-30196 | Windows Secure Channel Denial of Service Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-36049 | Flux2 Helm Controller denial of service | 2022-09-02T00:00:00.000Z | 2022-09-13T00:00:00.000Z |
| msrc_cve-2022-40023 | Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects babelplugin and linguaplugin. | 2022-09-02T00:00:00.000Z | 2022-09-10T00:00:00.000Z |
| msrc_cve-2022-25310 | A segmentation fault (SEGV) flaw was found in the Fribidi package and affects the fribidi_remove_bidi_marks() function of the lib/fribidi.c file. This flaw allows an attacker to pass a specially crafted file to Fribidi leading to a crash and causing a denial of service. | 2022-09-02T00:00:00.000Z | 2022-09-10T00:00:00.000Z |
| msrc_cve-2022-25309 | A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidi_cap_rtl_to_unicode() function of the fribidi-char-sets-cap-rtl.c file. This flaw allows an attacker to pass a specially crafted file to the Fribidi application with the '--caprtl' option leading to a crash and causing a denial of service. | 2022-09-02T00:00:00.000Z | 2022-09-10T00:00:00.000Z |
| msrc_cve-2022-39842 | An issue was discovered in the Linux kernel before 5.19. In pxa3xx_gcu_write in drivers/video/fbdev/pxa3xx-gcu.c the count parameter has a type conflict of size_t versus int causing an integer overflow and bypassing the size check. After that because it is used as the third argument to copy_from_user() a heap overflow may occur. NOTE: the original discoverer disputes that the overflow can actually happen. | 2022-09-02T00:00:00.000Z | 2022-09-09T00:00:00.000Z |
| msrc_cve-2022-39190 | An issue was discovered in net/netfilter/nf_tables_api.c in the Linux kernel before 5.19.6. A denial of service can occur upon binding to an already bound chain. | 2022-09-02T00:00:00.000Z | 2022-09-09T00:00:00.000Z |
| msrc_cve-2022-39189 | An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain KVM_VCPU_PREEMPTED situations. | 2022-09-02T00:00:00.000Z | 2022-09-09T00:00:00.000Z |
| msrc_cve-2022-39188 | An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap) a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs. | 2022-09-02T00:00:00.000Z | 2022-09-09T00:00:00.000Z |
| msrc_cve-2022-36055 | Denial of service in Helm | 2022-09-02T00:00:00.000Z | 2022-09-09T00:00:00.000Z |
| msrc_cve-2022-3134 | Use After Free in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-09T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201512-0416 | Cisco IOS XE 15.4(3)S on ASR 1000 devices improperly loads software packages, which allow… | 2025-04-13T23:27:27.583000Z |
| var-201601-0007 | The Admin portal in Cisco Identity Services Engine (ISE) 1.1.x, 1.2.0 before patch 17, 1.… | 2025-04-13T23:27:27.490000Z |
| var-201601-0490 | The DCERPC Inspection implementation in Cisco Adaptive Security Appliance (ASA) Software … | 2025-04-13T23:27:26.740000Z |
| var-201602-0045 | Cisco Application Policy Infrastructure Controller (APIC) devices with software before 1.… | 2025-04-13T23:27:26.647000Z |
| var-201603-0034 | Cisco TelePresence Video Communication Server (VCS) X8.5.1 and X8.5.2 allows remote authe… | 2025-04-13T23:27:26.584000Z |
| var-201603-0286 | The password-management administration component in Cisco Policy Suite (CPS) 7.0.1.3, 7.0… | 2025-04-13T23:27:26.396000Z |
| var-201604-0426 | CRLF injection vulnerability in CA API Gateway (formerly Layer7 API Gateway) 7.1 before 7… | 2025-04-13T23:27:26.045000Z |
| var-201604-0554 | Ipswitch MOVEit File Transfer (formerly DMZ) 8.1 and earlier, when configured to support … | 2025-04-13T23:27:25.985000Z |
| var-201606-0055 | Huawei OceanStor 5300 V3, 5500 V3, 5600 V3, 5800 V3, 6800 V3, 18800 V3, and 18500 V3 befo… | 2025-04-13T23:27:25.764000Z |
| var-201606-0181 | Corega CG-WLBARAGM devices allow remote attackers to cause a denial of service (reboot) v… | 2025-04-13T23:27:25.730000Z |
| var-201606-0286 | SQL injection vulnerability in the SQL database in Cisco Prime Collaboration Deployment b… | 2025-04-13T23:27:25.610000Z |
| var-201607-0438 | Cisco FireSIGHT System Software 5.3.0, 5.3.1, 5.4.0, 6.0, and 6.0.1 allows remote attacke… | 2025-04-13T23:27:25.254000Z |
| var-201607-0459 | Huawei HiSuite before 4.0.4.204_ove (Out of China) and before 4.0.4.301 (China) use a wea… | 2025-04-13T23:27:25.220000Z |
| var-201606-0433 | Buffer overflow in the web-based management interface on Cisco RV110W devices with firmwa… | 2025-04-13T23:27:25.187000Z |
| var-201607-0543 | Buffer overflow in the web-based management interface on Cisco RV110W devices with firmwa… | 2025-04-13T23:27:25.152000Z |
| var-201608-0035 | Buffer overflow in the Wi-Fi driver in Huawei P8 smartphones with software before GRA-CL0… | 2025-04-13T23:27:25.081000Z |
| var-201608-0221 | Cisco AnyConnect Secure Mobility Client before 4.2.05015 and 4.3.x before 4.3.02039 misha… | 2025-04-13T23:27:24.931000Z |
| var-201608-0242 | Cross-site scripting (XSS) vulnerability on Cisco IP Phone 8800 devices with software 11.… | 2025-04-13T23:27:24.896000Z |
| var-201609-0388 | Cisco Small Business 220 devices with firmware before 1.0.1.1 have a hardcoded SNMP commu… | 2025-04-13T23:27:24.550000Z |
| var-201609-0432 | The parse_string function in cjson.c in the cJSON library mishandles UTF8/16 strings, whi… | 2025-04-13T23:27:24.517000Z |
| var-201609-0560 | XML external entity (XXE) vulnerability in the Hyper Management Module (HMM) in Huawei E9… | 2025-04-13T23:27:24.454000Z |
| var-201610-0268 | Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT System Software 4.10.2… | 2025-04-13T23:27:24.389000Z |
| var-201610-0366 | Fortinet FortiWLC 6.1-2-29 and earlier, 7.0-9-1, 7.0-10-0, 8.0-5-0, 8.1-2-0, and 8.2-4-0 … | 2025-04-13T23:27:24.353000Z |
| var-201610-0365 | The rsyncd server in Fortinet FortiWLC 6.1-2-29 and earlier, 7.0-9-1, 7.0-10-0, 8.0-5-0, … | 2025-04-13T23:27:24.314000Z |
| var-201611-0162 | Multiple vulnerabilities in the web framework code of the Cisco Prime Collaboration Provi… | 2025-04-13T23:27:23.943000Z |
| var-201611-0370 | Unrestricted file upload vulnerability in the Blog appearance in the "Install or upgrade … | 2025-04-13T23:27:23.171000Z |
| var-201612-0162 | A vulnerability in HTTP URL parsing of Cisco AsyncOS for Cisco Web Security Appliance (WS… | 2025-04-13T23:27:23.129000Z |
| var-201612-0372 | A vulnerability in the Cisco Unified Reporting upload tool accessed via the Cisco Unified… | 2025-04-13T23:27:22.979000Z |
| var-201609-0097 | Heap-based buffer overflow in the pdf_load_mesh_params function in pdf/pdf-shade.c in MuP… | 2025-04-13T23:27:22.749000Z |
| var-201411-0377 | Untrusted search path vulnerability in Huawei Mobile Partner for Windows 23.009.05.03.101… | 2025-04-13T23:27:21.881000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:0069-1 | Security update for libmspack | 2022-01-13T14:12:43Z | 2022-01-13T14:12:43Z |
| suse-su-2022:0068-1 | Security update for the Linux Kernel | 2022-01-13T14:11:18Z | 2022-01-13T14:11:18Z |
| suse-su-2022:0065-1 | Security update for apache2 | 2022-01-12T16:47:51Z | 2022-01-12T16:47:51Z |
| suse-su-2022:0064-1 | Security update for python39-pip | 2022-01-12T16:46:55Z | 2022-01-12T16:46:55Z |
| suse-ru-2021:4173-2 | Recommended update for samba | 2022-01-12T14:28:26Z | 2022-01-12T14:28:26Z |
| suse-su-2022:0062-1 | Security update for openexr | 2022-01-12T13:18:37Z | 2022-01-12T13:18:37Z |
| suse-su-2022:0061-1 | Security update for openexr | 2022-01-12T13:18:12Z | 2022-01-12T13:18:12Z |
| suse-su-2022:0060-1 | Security update for python36-pip | 2022-01-12T13:16:03Z | 2022-01-12T13:16:03Z |
| suse-su-2022:0058-1 | Security update for MozillaThunderbird | 2022-01-12T08:20:26Z | 2022-01-12T08:20:26Z |
| suse-su-2022:0056-1 | Security update for the Linux Kernel | 2022-01-11T15:21:38Z | 2022-01-11T15:21:38Z |
| suse-su-2022:0052-1 | Security update for libsndfile | 2022-01-11T09:16:03Z | 2022-01-11T09:16:03Z |
| suse-su-2022:0050-1 | Security update for net-snmp | 2022-01-11T09:11:52Z | 2022-01-11T09:11:52Z |
| suse-su-2022:0045-1 | Security update for libvirt | 2022-01-11T07:52:10Z | 2022-01-11T07:52:10Z |
| suse-su-2022:0043-1 | Security update for systemd | 2022-01-11T07:50:27Z | 2022-01-11T07:50:27Z |
| suse-su-2022:0042-1 | Security update for libvirt | 2022-01-10T11:05:24Z | 2022-01-10T11:05:24Z |
| suse-su-2022:0041-1 | Security update for libvirt | 2022-01-10T11:04:46Z | 2022-01-10T11:04:46Z |
| suse-su-2022:0040-1 | Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container | 2022-01-10T09:45:13Z | 2022-01-10T09:45:13Z |
| suse-fu-2022:0039-1 | Feature update for zxing-cpp libreoffice | 2022-01-10T08:14:02Z | 2022-01-10T08:14:02Z |
| suse-su-2022:0034-1 | Security update for libsndfile | 2022-01-05T16:22:27Z | 2022-01-05T16:22:27Z |
| suse-su-2022:14872-1 | Security update for libsndfile | 2022-01-05T16:20:52Z | 2022-01-05T16:20:52Z |
| suse-su-2022:0032-1 | Security update for libvirt | 2022-01-05T16:20:11Z | 2022-01-05T16:20:11Z |
| suse-su-2022:0031-1 | Security update for libvirt | 2022-01-05T16:19:46Z | 2022-01-05T16:19:46Z |
| suse-su-2022:0030-1 | Security update for net-snmp | 2022-01-05T16:18:11Z | 2022-01-05T16:18:11Z |
| suse-su-2022:0029-1 | Security update for python-Babel | 2022-01-05T16:14:57Z | 2022-01-05T16:14:57Z |
| suse-su-2022:0028-1 | Security update for python-Babel | 2022-01-05T16:14:36Z | 2022-01-05T16:14:36Z |
| suse-su-2022:0021-1 | Security update for libvirt | 2022-01-04T15:06:23Z | 2022-01-04T15:06:23Z |
| suse-su-2021:4210-1 | Security update for gegl | 2021-12-31T08:55:36Z | 2021-12-31T08:55:36Z |
| suse-su-2021:4209-1 | Security update for gegl | 2021-12-31T08:55:02Z | 2021-12-31T08:55:02Z |
| suse-su-2021:4202-1 | Security update for mariadb | 2021-12-30T08:37:36Z | 2021-12-30T08:37:36Z |
| suse-su-2021:4201-1 | Security update for kernel-firmware | 2021-12-30T08:37:06Z | 2021-12-30T08:37:06Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-02821 | IBM Maximo Application Suite输入验证错误漏洞 | 2025-02-06 | 2025-02-13 |
| cnvd-2025-02820 | IBM Maximo Application Suite跨站脚本漏洞(CNVD-2025-02820) | 2025-02-06 | 2025-02-13 |
| cnvd-2025-02819 | IBM Maximo Application Suite SQL注入漏洞 | 2025-02-06 | 2025-02-13 |
| cnvd-2025-02817 | IBM Cloud Pak System信息泄露漏洞(CNVD-2025-02817) | 2025-02-06 | 2025-02-13 |
| cnvd-2025-02816 | IBM Cloud Pak System路径遍历漏洞 | 2025-02-06 | 2025-02-13 |
| cnvd-2025-02742 | Hitachi Energy RTU500 series CMU firmware缓冲区溢出漏洞 | 2022-08-26 | 2025-02-13 |
| cnvd-2025-02741 | Hitachi Energy RTU500 series CMU Firmware拒绝服务漏洞 | 2023-12-11 | 2025-02-13 |
| cnvd-2025-02740 | Hitachi Energy RTU500 series CMU Firmware跨站脚本漏洞 | 2023-12-11 | 2025-02-13 |
| cnvd-2025-02739 | Hitachi Energy RTU500 series CMU Firmware跨站脚本漏洞(CNVD-2025-02739) | 2023-12-18 | 2025-02-13 |
| cnvd-2025-02738 | Hitachi Energy RTU500 Scripting interface信任管理问题漏洞 | 2023-12-21 | 2025-02-13 |
| cnvd-2025-02737 | Hitachi Energy RTU500 series CMU Firmware输入验证错误漏洞 | 2023-12-21 | 2025-02-12 |
| cnvd-2025-02736 | Hitachi Energy RTU500 series CMU Firmware存在未明漏洞 | 2024-03-29 | 2025-02-12 |
| cnvd-2025-02735 | Hitachi Energy RTU500 series CMU Firmware存在未明漏洞(CNVD-2025-02735) | 2024-04-03 | 2025-02-12 |
| cnvd-2025-02734 | Hitachi Energy RTU500 series CMU Firmware存在未明漏洞( CNVD-2025-02734) | 2024-05-11 | 2025-02-12 |
| cnvd-2025-02733 | Samsung DSP驱动程序越界写入漏洞(CNVD-2025-02733) | 2021-04-01 | 2025-02-12 |
| cnvd-2025-02732 | Samsung libsdffextractor库输入验证错误漏洞 | 2021-06-18 | 2025-02-12 |
| cnvd-2025-02731 | Samsung libsdffextractor库输入验证错误漏洞(CNVD-2025-02731) | 2021-06-18 | 2025-02-12 |
| cnvd-2025-02730 | Samsung libsflacextractor库输入验证错误漏洞(CNVD-2025-02730) | 2021-06-18 | 2025-02-12 |
| cnvd-2025-02729 | Samsung libsdffextractor库输入验证错误漏洞(CNVD-2025-02729) | 2021-06-18 | 2025-02-12 |
| cnvd-2025-02728 | Samsung libsapeextractor库输入验证错误漏洞(CNVD-2025-02728) | 2021-06-18 | 2025-02-12 |
| cnvd-2025-02725 | Samsung RRC MeasurementReport异常条件处理漏洞 | 2021-12-14 | 2025-02-12 |
| cnvd-2025-02724 | Samsung SemRewardManager BSSID信息泄露漏洞 | 2021-12-14 | 2025-02-12 |
| cnvd-2025-02851 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-02851) | 2024-12-13 | 2025-02-11 |
| cnvd-2025-02850 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-02850) | 2024-12-13 | 2025-02-11 |
| cnvd-2025-02849 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-02849) | 2024-12-13 | 2025-02-11 |
| cnvd-2025-02848 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-02848) | 2024-12-13 | 2025-02-11 |
| cnvd-2025-02847 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-02847) | 2024-12-13 | 2025-02-11 |
| cnvd-2025-02846 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-02846) | 2024-12-13 | 2025-02-11 |
| cnvd-2025-02845 | Adobe Connect输入验证错误漏洞(CNVD-2025-02845) | 2024-12-13 | 2025-02-11 |
| cnvd-2025-02844 | Adobe Connect跨站脚本漏洞(CNVD-2025-02844) | 2024-12-13 | 2025-02-11 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2013-avi-062 | Multiples vulnérabilités dans Cisco Wireless LAN Controllers | 2013-01-24T00:00:00.000000 | 2013-01-24T00:00:00.000000 |
| certa-2013-avi-061 | Vulnérabilité dans IBM WebSphere | 2013-01-24T00:00:00.000000 | 2013-01-24T00:00:00.000000 |
| certa-2013-avi-060 | Vulnérabilités dans Xen | 2013-01-23T00:00:00.000000 | 2013-01-23T00:00:00.000000 |
| certa-2013-avi-059 | Multiples vulnérabilités dans Google Chrome | 2013-01-23T00:00:00.000000 | 2013-01-23T00:00:00.000000 |
| certa-2013-avi-058 | Vulnérabilité dans F5 BIG-IP | 2013-01-23T00:00:00.000000 | 2013-01-23T00:00:00.000000 |
| certa-2013-avi-057 | Vulnérabilité dans EMC Avamar | 2013-01-23T00:00:00.000000 | 2013-01-23T00:00:00.000000 |
| certa-2013-avi-056 | Vulnérabilité dans Snort | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-055 | Vulnérabilités dans EMC AlphaStor | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-054 | Vulnérabilités dans Avaya Aura Experience Portal | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-053 | Vulnérabilités dans le produit Cisco WRT54GL | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-052 | Multiples vulnérabilités dans Moodle | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-051 | Vulnérabilité dans IBM Informix | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-050 | Vulnérabilité dans Foxit Reader | 2013-01-21T00:00:00.000000 | 2013-01-21T00:00:00.000000 |
| certa-2013-avi-049 | Multiples vulnérabilités dans Novell eDirectory | 2013-01-21T00:00:00.000000 | 2013-01-21T00:00:00.000000 |
| certa-2013-avi-048 | Vulnérabilité dans le système SCADA Schneider Electric SESU | 2013-01-18T00:00:00.000000 | 2013-01-18T00:00:00.000000 |
| certa-2013-avi-047 | Multiples vulnérabilités dans le système SCADA Rockwell Automation Controllogix | 2013-01-17T00:00:00.000000 | 2013-01-17T00:00:00.000000 |
| certa-2013-avi-046 | Multiples vulnérabilités dans Drupal | 2013-01-17T00:00:00.000000 | 2013-01-17T00:00:00.000000 |
| certa-2013-avi-045 | Multiples vulnérabilités dans Xen | 2013-01-17T00:00:00.000000 | 2013-01-17T00:00:00.000000 |
| certa-2013-avi-044 | Vulnérabilité dans Cisco ASA 1000V Cloud Firewall H.323 | 2013-01-17T00:00:00.000000 | 2013-01-17T00:00:00.000000 |
| certa-2013-avi-043 | Vulnérabilité dans IBM Cognos TM1 | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-042 | Vulnérabilité dans Oracle Supply Chain Products Suite | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-041 | Multiples vulnérabilités dans Oracle Fusion Middleware | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-040 | Multiples vulnérabilités dans Oracle Enterprise Manager Grid Control | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-039 | Multiples vulnérabilités dans Oracle Database Mobile/Lite Server | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-038 | Multiples vulnérabilités dans Oracle PeopleSoft Products | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-037 | Multiples vulnérabilités dans Oracle E-Business Suite | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-036 | Vulnérabilité dans Oracle Database Server | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-035 | Multiples vulnérabilités dans Oracle Siebel CRM | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-034 | Multiples vulnérabilités dans Oracle MySQL | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-033 | Vulnérabilité dans Oracle Virtualization | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |