Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-22911 |
5.3 (3.1)
|
Firmware update files may expose password hashes … |
SICK AG |
TDC-X401GL |
2026-01-15T13:02:29.453Z | 2026-01-15T14:39:02.055Z |
| CVE-2026-22917 |
4.3 (3.1)
|
Improper input handling in a system endpoint may … |
SICK AG |
TDC-X401GL |
2026-01-15T13:07:41.205Z | 2026-01-15T14:38:02.024Z |
| CVE-2025-47890 |
2.5 (3.1)
|
An URL Redirection to Untrusted Site vulnerabilit… |
Fortinet |
FortiSASE |
2025-10-14T15:22:50.356Z | 2026-01-15T14:37:59.566Z |
| CVE-2025-31366 |
4.5 (3.1)
|
An Improper Neutralization of Input During Web Pa… |
Fortinet |
FortiProxy |
2025-10-14T15:22:57.657Z | 2026-01-15T14:37:59.504Z |
| CVE-2025-12166 |
7.5 (3.1)
|
Simply Schedule Appointments <= 1.6.9.9 - Unauthentica… |
croixhaug |
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin |
2026-01-14T22:23:50.629Z | 2026-01-15T14:37:41.267Z |
| CVE-2026-22918 |
4.3 (3.1)
|
An attacker may exploit missing protection agains… |
SICK AG |
TDC-X401GL |
2026-01-15T13:08:02.039Z | 2026-01-15T14:36:41.215Z |
| CVE-2025-58413 |
6.9 (3.1)
|
A stack-based buffer overflow vulnerability in Fo… |
Fortinet |
FortiOS |
2025-11-18T17:01:22.032Z | 2026-01-15T14:36:06.527Z |
| CVE-2026-22646 |
4.3 (3.1)
|
Certain error messages returned by the applicatio… |
SICK AG |
Incoming Goods Suite |
2026-01-15T13:15:01.194Z | 2026-01-15T14:35:40.263Z |
| CVE-2026-22919 |
3.8 (3.1)
|
An attacker with administrative access may inject… |
SICK AG |
TDC-X401GL |
2026-01-15T13:08:31.700Z | 2026-01-15T14:34:02.134Z |
| CVE-2026-22920 |
3.7 (3.1)
|
The device's passwords have not been adequately s… |
SICK AG |
TDC-X401GL |
2026-01-15T13:09:04.276Z | 2026-01-15T14:32:47.107Z |
| CVE-2026-22184 |
4.6 (4.0)
|
zlib <= 1.3.1.2 untgz Global Buffer Overflow in TGZfname() |
zlib software |
zlib |
2026-01-07T20:25:19.892Z | 2026-01-15T14:12:13.493Z |
| CVE-2024-27778 |
8.3 (3.1)
|
An improper neutralization of special elements us… |
Fortinet |
FortiSandbox |
2025-01-14T14:09:34.439Z | 2026-01-15T13:53:21.675Z |
| CVE-2025-13154 |
6.8 (4.0)
5.5 (3.1)
|
An improper link following vulnerability was repo… |
Lenovo |
Vantage |
2026-01-14T22:16:13.569Z | 2026-01-15T13:44:54.451Z |
| CVE-2025-13454 |
5.7 (4.0)
4.7 (3.1)
|
A potential vulnerability was reported in ThinkPl… |
Lenovo |
ThinkPlus FU100 |
2026-01-14T22:18:18.306Z | 2026-01-15T13:37:01.823Z |
| CVE-2025-13453 |
7 (4.0)
6.8 (3.1)
|
A potential vulnerability was reported in some Th… |
Lenovo |
ThinkPlus FU100 |
2026-01-14T22:18:13.439Z | 2026-01-15T13:36:22.092Z |
| CVE-2025-32756 |
9.6 (3.1)
|
A stack-based buffer overflow vulnerability [CWE-… |
Fortinet |
FortiNDR |
2025-05-13T14:46:44.208Z | 2026-01-15T12:54:22.845Z |
| CVE-2025-4953 |
7.4 (3.1)
|
Podman: build context bind mount |
|
|
2025-09-16T14:54:50.045Z | 2026-01-15T10:02:59.511Z |
| CVE-2025-14327 |
7.5 (3.1)
|
Spoofing issue in the Downloads Panel component |
Mozilla |
Firefox |
2025-12-09T13:38:02.260Z | 2026-01-15T09:31:17.854Z |
| CVE-2026-0892 |
9.8 (3.1)
|
Memory safety bugs fixed in Firefox 147 and Thunderbird 147 |
Mozilla |
Firefox |
2026-01-13T13:30:59.874Z | 2026-01-15T09:31:17.329Z |
| CVE-2026-0891 |
8.1 (3.1)
|
Memory safety bugs fixed in Firefox ESR 140.7, Thunder… |
Mozilla |
Firefox |
2026-01-13T13:30:59.454Z | 2026-01-15T09:31:16.819Z |
| CVE-2026-0889 |
7.5 (3.1)
|
Denial-of-service in the DOM: Service Workers component |
Mozilla |
Firefox |
2026-01-13T13:30:58.675Z | 2026-01-15T09:31:15.710Z |
| CVE-2026-0888 |
5.3 (3.1)
|
Information disclosure in the XML component |
Mozilla |
Firefox |
2026-01-13T13:30:58.296Z | 2026-01-15T09:31:15.094Z |
| CVE-2026-0885 |
6.5 (3.1)
|
Use-after-free in the JavaScript: GC component |
Mozilla |
Firefox |
2026-01-13T13:30:56.939Z | 2026-01-15T09:31:13.413Z |
| CVE-2026-0884 |
9.8 (3.1)
|
Use-after-free in the JavaScript Engine component |
Mozilla |
Firefox |
2026-01-13T13:30:56.543Z | 2026-01-15T09:31:12.864Z |
| CVE-2026-0883 |
5.3 (3.1)
|
Information disclosure in the Networking component |
Mozilla |
Firefox |
2026-01-13T13:30:56.043Z | 2026-01-15T09:31:12.339Z |
| CVE-2026-0882 |
8.8 (3.1)
|
Use-after-free in the IPC component |
Mozilla |
Firefox |
2026-01-13T13:30:55.562Z | 2026-01-15T09:31:11.810Z |
| CVE-2026-0881 |
10 (3.1)
|
Sandbox escape in the Messaging System component |
Mozilla |
Firefox |
2026-01-13T13:30:55.122Z | 2026-01-15T09:31:11.249Z |
| CVE-2026-0880 |
8.8 (3.1)
|
Sandbox escape due to integer overflow in the Graphics… |
Mozilla |
Firefox |
2026-01-13T13:30:54.679Z | 2026-01-15T09:31:10.655Z |
| CVE-2026-0879 |
9.8 (3.1)
|
Sandbox escape due to incorrect boundary conditions in… |
Mozilla |
Firefox |
2026-01-13T13:30:54.207Z | 2026-01-15T09:31:10.036Z |
| CVE-2026-0878 |
8 (3.1)
|
Sandbox escape due to incorrect boundary conditions in… |
Mozilla |
Firefox |
2026-01-13T13:30:53.697Z | 2026-01-15T09:31:09.491Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-12551 |
6.1 (3.1)
|
WordPress ListingHub plugin 1.2.6 - Cross Site Scripti… |
e-plugins |
ListingHub |
2026-01-08T09:17:36.759Z | 2026-01-20T14:28:05.192Z |
| CVE-2025-12550 |
9.8 (3.1)
|
WordPress OchaHouse theme <= 2.2.8 - Local File Inclus… |
jwsthemes |
OchaHouse |
2026-01-08T09:17:36.554Z | 2026-01-20T14:28:05.164Z |
| CVE-2025-12549 |
9.8 (3.1)
|
WordPress Rozy - Flower Shop theme <= 1.2.25 - Local F… |
magentech |
Rozy - Flower Shop |
2026-01-08T09:17:36.012Z | 2026-01-20T14:28:05.344Z |
| CVE-2025-10019 |
6.5 (3.1)
|
WordPress Contact Form Email plugin <= 1.3.60 - Insecu… |
codepeople |
Contact Form Email |
2025-12-18T07:21:40.448Z | 2026-01-20T14:28:04.445Z |
| CVE-2024-53735 |
7.1 (3.1)
|
WordPress iPhone Webclip Manager plugin <= 0.5 - CSRF … |
Corourke |
iPhone Webclip Manager |
2026-01-05T16:41:08.654Z | 2026-01-20T14:31:54.884Z |
| CVE-2024-30516 |
7.5 (3.1)
|
WordPress Booking Package plugin <= 1.6.27 - Price Man… |
SaasProject |
Booking Package |
2026-01-05T16:38:43.668Z | 2026-01-20T14:31:54.985Z |
| CVE-2024-30461 |
7.1 (3.1)
|
WordPress Tumult Hype Animations plugin <= 1.9.11 - CS… |
Tumult Inc |
Tumult Hype Animations |
2026-01-05T16:36:41.495Z | 2026-01-20T14:31:54.980Z |
| CVE-2024-24844 |
7.5 (3.1)
|
WordPress PowerPack Pro for Elementor plugin <= 2.10.6… |
IdeaBox Creations |
PowerPack Pro for Elementor |
2025-12-23T12:06:04.875Z | 2026-01-20T14:31:54.892Z |
| CVE-2024-23511 |
6.5 (3.1)
|
WordPress The Plus Addons for Elementor plugin <= 5.3.… |
POSIMYTH |
The Plus Addons for Elementor Page Builder Lite |
2026-01-05T13:33:57.628Z | 2026-01-20T14:31:54.867Z |
| CVE-2025-14822 |
3.1 (3.1)
|
DoS from quadratic complexity in model.ParseHashtags |
Mattermost |
Mattermost |
2026-01-16T08:52:43.848Z | 2026-01-16T13:00:45.911Z |
| CVE-2025-43025 |
4.8 (4.0)
|
HP Universal Print Driver – Potential Denial of Service |
HP Inc. |
Universal Print Driver |
2025-07-02T19:43:46.888Z | 2025-07-02T20:08:18.601Z |
| CVE-2025-20997 |
6.2 (3.1)
|
Incorrect default permission in Framework for Gal… |
Samsung Mobile |
Samsung Mobile Devices |
2025-07-08T10:34:26.815Z | 2025-07-11T13:30:15.085Z |
| CVE-2026-21894 |
6.5 (3.1)
|
n8n's Missing Stripe-Signature Verification Allows Una… |
n8n-io |
n8n |
2026-01-08T09:56:04.274Z | 2026-01-08T14:42:36.631Z |
| CVE-2026-21877 |
10 (3.1)
|
n8n is vulnerable to Remote Code Execution via Arbitra… |
n8n-io |
n8n |
2026-01-08T00:39:58.697Z | 2026-01-08T18:59:10.198Z |
| CVE-2025-14435 |
6.8 (3.1)
|
Application-Level DoS via infinite re-render loop in u… |
Mattermost |
Mattermost |
2026-01-16T11:25:35.817Z | 2026-01-16T14:09:00.429Z |
| CVE-2025-9086 |
7.5 (3.1)
|
Out of bounds read for cookie path |
curl |
curl |
2025-09-12T05:10:03.815Z | 2026-01-08T09:51:46.552Z |
| CVE-2025-10966 |
4.3 (3.1)
|
missing SFTP host verification with wolfSSH |
curl |
curl |
2025-11-07T07:26:30.351Z | 2025-11-10T20:26:07.282Z |
| CVE-2026-22819 |
5.9 (3.1)
|
Outray has a Race Condition in main/apps/web/src/route… |
akinloluwami |
outray |
2026-01-14T18:04:33.426Z | 2026-01-14T21:13:36.389Z |
| CVE-2025-10148 |
5.3 (3.1)
|
predictable WebSocket mask |
curl |
curl |
2025-09-12T05:10:37.469Z | 2025-11-18T20:05:32.822Z |
| CVE-2025-13034 |
5.9 (3.1)
|
No QUIC certificate pinning with GnuTLS |
curl |
curl |
2026-01-08T10:00:25.773Z | 2026-01-08T14:58:20.565Z |
| CVE-2025-14524 |
5.3 (3.1)
|
bearer token leak on cross-protocol redirect |
curl |
curl |
2026-01-08T10:07:25.655Z | 2026-01-09T19:25:30.460Z |
| CVE-2026-22820 |
6.3 (4.0)
|
Outray cli is vulnerable to race conditions in tunnels… |
akinloluwami |
outray |
2026-01-14T15:06:51.127Z | 2026-01-14T15:19:46.837Z |
| CVE-2025-14819 |
5.3 (3.1)
|
OpenSSL partial chain store policy bypass |
curl |
curl |
2026-01-08T10:07:54.408Z | 2026-01-08T15:02:04.303Z |
| CVE-2025-15079 |
5.3 (3.1)
|
libssh global known_hosts override |
curl |
curl |
2026-01-08T10:08:13.410Z | 2026-01-08T14:46:47.042Z |
| CVE-2025-15224 |
3.1 (3.1)
|
libssh key passphrase bypass without agent set |
curl |
curl |
2026-01-08T10:08:27.516Z | 2026-01-08T14:39:55.278Z |
| CVE-2025-62595 |
4.3 (3.1)
|
Koa Vulnerable to Open Redirect via Trailing Double-Sl… |
koajs |
koa |
2025-10-21T16:20:43.809Z | 2025-10-21T16:35:48.461Z |
| CVE-2025-25200 |
9.2 (4.0)
|
Koa has Inefficient Regular Expression Complexity |
koajs |
koa |
2025-02-12T17:59:04.615Z | 2025-02-12T19:29:10.232Z |
| CVE-2025-20998 |
5.5 (3.1)
|
Improper access control in SamsungAccount for Gal… |
Samsung Mobile |
Samsung Mobile Devices |
2025-07-08T10:34:27.871Z | 2025-07-11T13:30:37.481Z |
| CVE-2025-21004 |
6.2 (3.1)
|
Improper verification of intent by broadcast rece… |
Samsung Mobile |
Samsung Mobile Devices |
2025-07-08T10:34:34.247Z | 2025-07-08T18:13:09.259Z |
| CVE-2025-43019 |
5.8 (4.0)
|
HP Support Assistant – Potential Escalation of Privilege |
HP Inc. |
HP Support Assistant |
2025-07-08T15:25:34.337Z | 2025-07-08T15:35:59.639Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-12551 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:45.283 | 2026-01-20T15:16:13.297 |
| fkie_cve-2025-12550 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-08T10:15:45.150 | 2026-01-20T15:16:13.160 |
| fkie_cve-2025-12549 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-08T10:15:44.100 | 2026-01-20T15:16:13.027 |
| fkie_cve-2025-10019 | Authorization Bypass Through User-Controlled Key vulnerability in codepeople Contact Form Email con… | 2025-12-18T08:15:48.657 | 2026-01-20T15:16:12.810 |
| fkie_cve-2024-53735 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-05T17:15:44.590 | 2026-01-20T15:16:12.700 |
| fkie_cve-2024-30516 | Improper Validation of Specified Quantity in Input vulnerability in SaasProject Booking Package all… | 2026-01-05T17:15:44.430 | 2026-01-20T15:16:12.587 |
| fkie_cve-2024-30461 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-01-05T17:15:43.417 | 2026-01-20T15:16:12.477 |
| fkie_cve-2024-24844 | Missing Authorization vulnerability in IdeaBox Creations PowerPack Pro for Elementor allows Exploit… | 2025-12-23T12:15:44.557 | 2026-01-20T15:16:12.357 |
| fkie_cve-2024-23511 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-01-05T14:15:52.977 | 2026-01-20T15:16:12.190 |
| fkie_cve-2025-14822 | Mattermost versions 10.11.x <= 10.11.8 fail to validate input size before processing hashtags which… | 2026-01-16T09:16:01.460 | 2026-01-20T15:11:19.127 |
| fkie_cve-2025-43025 | HP Universal Print Driver is potentially vulnerable to denial of service due to buffer overflow in … | 2025-07-02T20:15:30.550 | 2026-01-20T15:10:09.143 |
| fkie_cve-2025-20997 | Incorrect default permission in Framework for Galaxy Watch prior to SMR Jul-2025 Release 1 allows l… | 2025-07-08T11:15:25.000 | 2026-01-20T15:09:19.373 |
| fkie_cve-2026-21894 | n8n is an open source workflow automation platform. In versions from 0.150.0 to before 2.2.2, an au… | 2026-01-08T10:15:55.970 | 2026-01-20T15:09:07.647 |
| fkie_cve-2026-21877 | n8n is an open source workflow automation platform. In versions 0.121.2 and below, an authenticated… | 2026-01-08T01:15:55.697 | 2026-01-20T15:08:24.850 |
| fkie_cve-2025-14435 | Mattermost versions 10.11.x <= 10.11.8, 11.1.x <= 11.1.1, 11.0.x <= 11.0.6 fail to prevent infinite… | 2026-01-16T12:15:49.583 | 2026-01-20T15:06:30.110 |
| fkie_cve-2025-9086 | 1. A cookie is set using the `secure` keyword for `https://target` 2. curl is redirected to or ot… | 2025-09-12T06:15:44.100 | 2026-01-20T14:58:01.347 |
| fkie_cve-2025-10966 | curl's code for managing SSH connections when SFTP was done using the wolfSSH powered backend was f… | 2025-11-07T08:15:39.617 | 2026-01-20T14:57:03.173 |
| fkie_cve-2026-22819 | Outray openSource ngrok alternative. Prior to 0.1.5, this vulnerability allows a user i.e a free pl… | 2026-01-14T18:16:42.330 | 2026-01-20T14:56:26.523 |
| fkie_cve-2025-10148 | curl's websocket code did not update the 32 bit mask pattern for each new outgoing frame as the sp… | 2025-09-12T06:15:40.020 | 2026-01-20T14:55:47.997 |
| fkie_cve-2025-13034 | When using `CURLOPT_PINNEDPUBLICKEY` option with libcurl or `--pinnedpubkey` with the curl tool,cur… | 2026-01-08T10:15:45.407 | 2026-01-20T14:54:02.730 |
| fkie_cve-2025-14524 | When an OAuth2 bearer token is used for an HTTP(S) transfer, and that transfer performs a cross-pro… | 2026-01-08T10:15:46.607 | 2026-01-20T14:53:11.017 |
| fkie_cve-2026-22820 | Outray openSource ngrok alternative. Prior to 0.1.5, a TOCTOU race condition vulnerability allows a… | 2026-01-14T15:16:05.663 | 2026-01-20T14:52:10.373 |
| fkie_cve-2025-14819 | When doing TLS related transfers with reused easy or multi handles and altering the `CURLSSLOPT_NO… | 2026-01-08T10:15:46.730 | 2026-01-20T14:51:26.263 |
| fkie_cve-2025-15079 | When doing SSH-based transfers using either SCP or SFTP, and setting the known_hosts file, libcurl … | 2026-01-08T10:15:47.100 | 2026-01-20T14:50:24.330 |
| fkie_cve-2025-15224 | When doing SSH-based transfers using either SCP or SFTP, and asked to do public key authentication,… | 2026-01-08T10:15:47.207 | 2026-01-20T14:47:52.710 |
| fkie_cve-2025-62595 | Koa is expressive middleware for Node.js using ES2017 async functions. In versions 2.16.2 to before… | 2025-10-21T17:15:40.737 | 2026-01-20T14:45:48.283 |
| fkie_cve-2025-25200 | Koa is expressive middleware for Node.js using ES2017 async functions. Prior to versions 0.21.2, 1.… | 2025-02-12T18:15:28.110 | 2026-01-20T14:42:45.760 |
| fkie_cve-2025-20998 | Improper access control in SamsungAccount for Galaxy Watch prior to SMR Jul-2025 Release 1 allows l… | 2025-07-08T11:15:25.137 | 2026-01-20T14:42:28.020 |
| fkie_cve-2025-21004 | Improper verification of intent by broadcast receiver in System UI for Galaxy Watch prior to SMR Ju… | 2025-07-08T11:15:25.923 | 2026-01-20T14:41:30.180 |
| fkie_cve-2025-43019 | A potential security vulnerability has been identified in the HP Support Assistant, which allows a … | 2025-07-08T16:15:57.763 | 2026-01-20T14:39:40.063 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-mpqx-xpq7-hgwg |
7.5 (3.1)
|
The Reviewify plugin for WordPress is vulnerable to unauthorized modification of data due to a miss… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-mcph-7hqh-4gc6 |
4.4 (3.1)
|
The Multi-column Tag Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admi… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-m7m9-whjq-j43v |
6.4 (3.1)
|
The Cool YT Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'video… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-hw36-6mpj-328j |
4.3 (3.1)
|
The Simcast plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to,… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-h546-gvh8-c9p8 |
6.4 (3.1)
|
The AI BotKit – AI Chatbot & Live Support for WordPress plugin for WordPress is vulnerable to Store… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-g666-7hq6-674c |
6.4 (3.1)
|
The 1180px Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cl… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-g2wj-p4r7-x5gf |
4.3 (3.1)
|
The Mamurjor Employee Info plugin for WordPress is vulnerable to Cross-Site Request Forgery in all … | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-fgqr-9c4q-7qr8 |
6.4 (3.1)
|
The Wish To Go plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcode attr… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-9j7c-jg35-gccj |
6.4 (3.1)
|
The Snillrik Restaurant plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-9g9p-66m2-jpjj |
6.4 (3.1)
|
The STM Gallery 1.9 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'comp… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-7gr4-rjpr-h39f |
6.4 (3.1)
|
The EDD Download Info plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ed… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-6h9h-22rh-cwhj |
6.4 (3.1)
|
The WP Js List Pages Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting v… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-69c5-xxxm-r666 |
6.5 (3.1)
|
The EmailKit plugin for WordPress is vulnerable to Arbitrary File Read via Path Traversal in all ve… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-4xf7-4jcw-7w6g |
6.1 (3.1)
|
The Starred Review plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the PHP… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-45q3-g2m4-vhg9 |
6.4 (3.1)
|
The PhotoFade plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'time' para… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-42hr-36hh-j6c4 |
4.4 (3.1)
|
The Email Customizer for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Script… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-2r8p-4r3c-hw34 |
6.4 (3.1)
|
The Smart App Banners plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'si… | 2026-01-07T12:31:21Z | 2026-01-07T12:31:21Z |
| ghsa-x8rq-m8j4-85pr |
2.7 (3.1)
|
The Rankology SEO and Analytics Tool plugin for WordPress is vulnerable to unauthorized modificatio… | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-r66h-95rg-mcj6 |
6.4 (3.1)
|
The Stylish Order Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi… | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-pfhj-w78h-ggpc |
8.6 (3.1)
|
The MoneySpace plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions… | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-mwqq-jmph-r66g |
4.3 (3.1)
|
The WP Status Notifier plugin for WordPress is vulnerable to Cross-Site Request Forgery in all vers… | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-jvgx-vgv6-vgp9 |
5.3 (3.1)
|
The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin f… | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-gc57-jf4p-c7fv |
4.3 (3.1)
|
The HelpDesk contact form plugin for WordPress is vulnerable to Cross-Site Request Forgery in all v… | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-f993-f86j-2hw6 |
5.3 (3.1)
|
The Unify plugin for WordPress is vulnerable to unauthorized modification of data due to a missing … | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-c494-7f9x-6wf4 |
4.3 (3.1)
|
The MTCaptcha WordPress Plugin for WordPress is vulnerable to Cross-Site Request Forgery in all ver… | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-9m68-hxf3-3w7w |
6.1 (3.1)
|
The Premmerce WooCommerce Customers Manager plugin for WordPress is vulnerable to Reflected Cross-S… | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-9559-p8wg-q54v |
5.3 (3.1)
|
The Moosend Landing Pages plugin for WordPress is vulnerable to unauthorized modification of data d… | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-943g-jpq4-jf4f |
5.4 (3.1)
|
The aBlocks – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to unauthorized modific… | 2026-01-07T12:31:19Z | 2026-01-07T12:31:20Z |
| ghsa-8jxh-xpcf-824x |
5.3 (3.1)
|
The Guest posting / Frontend Posting / Front Editor – WP Front User Submit plugin for WordPress is … | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ghsa-7q6w-ggv8-84g7 |
7.5 (3.1)
|
The Latest Registered Users plugin for WordPress is vulnerable to unauthorized user data export in … | 2026-01-07T12:31:20Z | 2026-01-07T12:31:20Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-26872 | In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not re… | 2024-02-20T06:02:29.297075Z |
| gsd-2024-26423 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.296845Z |
| gsd-2024-26439 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.296290Z |
| gsd-2024-26641 | In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: make sur… | 2024-02-20T06:02:29.295784Z |
| gsd-2024-26376 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.295551Z |
| gsd-2024-26835 | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables… | 2024-02-20T06:02:29.295296Z |
| gsd-2024-26738 | In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iomm… | 2024-02-20T06:02:29.295062Z |
| gsd-2024-26847 | In the Linux kernel, the following vulnerability has been resolved: powerpc/rtas: use co… | 2024-02-20T06:02:29.294272Z |
| gsd-2024-26358 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.294040Z |
| gsd-2024-26679 | In the Linux kernel, the following vulnerability has been resolved: inet: read sk->sk_fa… | 2024-02-20T06:02:29.293792Z |
| gsd-2024-26788 | In the Linux kernel, the following vulnerability has been resolved: dmaengine: fsl-qdma:… | 2024-02-20T06:02:29.292712Z |
| gsd-2024-26731 | In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix NU… | 2024-02-20T06:02:29.292482Z |
| gsd-2024-26805 | In the Linux kernel, the following vulnerability has been resolved: netlink: Fix kernel-… | 2024-02-20T06:02:29.292241Z |
| gsd-2024-26891 | In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Don't is… | 2024-02-20T06:02:29.291982Z |
| gsd-2024-26957 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.291709Z |
| gsd-2024-26922 | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate… | 2024-02-20T06:02:29.291477Z |
| gsd-2024-26772 | In the Linux kernel, the following vulnerability has been resolved: ext4: avoid allocati… | 2024-02-20T06:02:29.291246Z |
| gsd-2024-26654 | In the Linux kernel, the following vulnerability has been resolved: ALSA: sh: aica: reor… | 2024-02-20T06:02:29.290681Z |
| gsd-2024-26986 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.290407Z |
| gsd-2024-26344 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.289897Z |
| gsd-2024-26547 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.289670Z |
| gsd-2024-26581 | In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_r… | 2024-02-20T06:02:29.289435Z |
| gsd-2024-26927 | In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Add some … | 2024-02-20T06:02:29.289205Z |
| gsd-2024-26769 | In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: avoid dead… | 2024-02-20T06:02:29.288973Z |
| gsd-2024-26935 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.288682Z |
| gsd-2024-26531 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.287907Z |
| gsd-2024-26977 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.287678Z |
| gsd-2024-26797 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Pre… | 2024-02-20T06:02:29.287401Z |
| gsd-2024-26795 | In the Linux kernel, the following vulnerability has been resolved: riscv: Sparse-Memory… | 2024-02-20T06:02:29.286886Z |
| gsd-2024-26920 | In the Linux kernel, the following vulnerability has been resolved: tracing/trigger: Fix… | 2024-02-20T06:02:29.286609Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-185311 | Malicious code in tunis-kt-gahf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185310 | Malicious code in tunis-kt-gaf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185309 | Malicious code in tunis-kt-gabisayynufsgf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185308 | Malicious code in tunis-kt-gabisayusgf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185307 | Malicious code in tunis-kt-gabisayufsgf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185306 | Malicious code in tunis-kt-gabisaynufsgf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185305 | Malicious code in tunis-kt-gabisaygf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185304 | Malicious code in tunis-kt-gabisagf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185303 | Malicious code in tunis-kt-gabisaf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185302 | Malicious code in tunis-kt-gabiaf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185301 | Malicious code in tunis-kt-gabf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185300 | Malicious code in tunis-kt-gabaf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185299 | Malicious code in tunis-kjt-gs (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185298 | Malicious code in tunis-kjt-gms (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185297 | Malicious code in tunis-kjt-gmas (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185296 | Malicious code in tunis-kjt-gimas (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185295 | Malicious code in tunis-kjt-gavimas (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185294 | Malicious code in tunis-kjt-gas (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185293 | Malicious code in tunis-kjt-garvimas (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185292 | Malicious code in tunis-kjt-garvfuavimas (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185291 | Malicious code in tunis-kjt-garvfuaavimas (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185290 | Malicious code in tunis-kjt-garuavimas (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185289 | Malicious code in tunis-kjt-garfuavimas (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185288 | Malicious code in tunis-kjt-gabs (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185287 | Malicious code in tunis-kjt-gabisyygf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185286 | Malicious code in tunis-kjt-gabisygf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185285 | Malicious code in tunis-kjt-gabisyf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185284 | Malicious code in tunis-kjt-gabisy (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185283 | Malicious code in tunis-kjt-gabisayynufsgf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185282 | Malicious code in tunis-kjt-gabisayyngf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:0403 | Red Hat Security Advisory: iperf3 security update | 2025-01-20T01:22:14+00:00 | 2025-11-21T19:18:06+00:00 |
| rhsa-2025:0402 | Red Hat Security Advisory: iperf3 security update | 2025-01-20T01:37:29+00:00 | 2025-11-21T19:18:05+00:00 |
| rhsa-2025:0377 | Red Hat Security Advisory: Security and bug fixes for NetworkManager | 2025-01-16T14:22:50+00:00 | 2025-11-21T19:18:02+00:00 |
| rhsa-2025:0362 | Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.2 release and security update | 2025-01-16T19:35:08+00:00 | 2025-11-21T19:18:01+00:00 |
| rhsa-2025:0361 | Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.2 release and security update | 2025-01-16T19:34:01+00:00 | 2025-11-21T19:18:01+00:00 |
| rhsa-2025:0346 | Red Hat Security Advisory: iperf3 security update | 2025-01-15T22:39:19+00:00 | 2025-11-21T19:18:00+00:00 |
| rhsa-2025:0343 | Red Hat Security Advisory: Red Hat JBoss Web Server 6.0.5 release and security update | 2025-01-21T13:19:07+00:00 | 2025-11-21T19:17:59+00:00 |
| rhsa-2025:0342 | Red Hat Security Advisory: Red Hat JBoss Web Server 6.0.5 release and security update | 2025-01-21T13:16:03+00:00 | 2025-11-21T19:17:59+00:00 |
| rhsa-2025:0314 | Red Hat Security Advisory: raptor2 security update | 2025-01-14T16:04:10+00:00 | 2025-11-21T19:17:59+00:00 |
| rhsa-2025:0334 | Red Hat Security Advisory: ipa security update | 2025-01-15T13:57:03+00:00 | 2025-11-21T19:17:58+00:00 |
| rhsa-2025:0326 | Red Hat Security Advisory: raptor2 security update | 2025-01-15T09:00:12+00:00 | 2025-11-21T19:17:56+00:00 |
| rhsa-2025:0319 | Red Hat Security Advisory: raptor2 security update | 2025-01-14T16:12:30+00:00 | 2025-11-21T19:17:56+00:00 |
| rhsa-2025:0318 | Red Hat Security Advisory: raptor2 security update | 2025-01-14T16:22:25+00:00 | 2025-11-21T19:17:55+00:00 |
| rhsa-2025:0316 | Red Hat Security Advisory: raptor2 security update | 2025-01-14T15:52:20+00:00 | 2025-11-21T19:17:55+00:00 |
| rhsa-2025:0315 | Red Hat Security Advisory: raptor2 security update | 2025-01-14T15:17:40+00:00 | 2025-11-21T19:17:55+00:00 |
| rhsa-2025:0313 | Red Hat Security Advisory: raptor2 security update | 2025-01-14T15:22:25+00:00 | 2025-11-21T19:17:54+00:00 |
| rhsa-2025:0312 | Red Hat Security Advisory: raptor2 security update | 2025-01-14T15:49:55+00:00 | 2025-11-21T19:17:54+00:00 |
| rhsa-2025:0311 | Red Hat Security Advisory: raptor2 security update | 2025-01-14T11:11:45+00:00 | 2025-11-21T19:17:53+00:00 |
| rhsa-2025:0310 | Red Hat Security Advisory: raptor2 security update | 2025-01-14T11:20:55+00:00 | 2025-11-21T19:17:53+00:00 |
| rhsa-2025:0287 | Red Hat Security Advisory: thunderbird security update | 2025-01-13T11:32:57+00:00 | 2025-11-21T19:17:53+00:00 |
| rhsa-2025:0300 | Red Hat Security Advisory: Red Hat build of Keycloak 26.0.8 Update | 2025-01-13T15:43:34+00:00 | 2025-11-21T19:17:52+00:00 |
| rhsa-2025:0299 | Red Hat Security Advisory: Red Hat build of Keycloak 26.0.8 Images Update | 2025-01-13T15:47:25+00:00 | 2025-11-21T19:17:52+00:00 |
| rhsa-2025:0288 | Red Hat Security Advisory: Bug fix of NetworkManager | 2025-01-13T11:42:27+00:00 | 2025-11-21T19:17:52+00:00 |
| rhsa-2025:0286 | Red Hat Security Advisory: thunderbird security update | 2025-01-13T11:48:57+00:00 | 2025-11-21T19:17:51+00:00 |
| rhsa-2025:0284 | Red Hat Security Advisory: thunderbird security update | 2025-01-13T11:25:17+00:00 | 2025-11-21T19:17:51+00:00 |
| rhsa-2025:0283 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-01-13T10:57:47+00:00 | 2025-11-21T19:17:51+00:00 |
| rhsa-2025:0282 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-01-13T11:31:07+00:00 | 2025-11-21T19:17:50+00:00 |
| rhsa-2025:0281 | Red Hat Security Advisory: thunderbird security update | 2025-01-13T10:52:33+00:00 | 2025-11-21T19:17:50+00:00 |
| rhsa-2025:0279 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-01-13T10:55:12+00:00 | 2025-11-21T19:17:50+00:00 |
| rhsa-2025:0278 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-01-13T10:45:21+00:00 | 2025-11-21T19:17:50+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2021-33655 | When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFOkernel will write memory out of bounds. | 2022-07-02T00:00:00.000Z | 2022-08-25T00:00:00.000Z |
| msrc_cve-2021-28861 | Python 3.x through 3.10 has an open redirection vulnerability in lib/http/server.py due to no protection against multiple (/) at the beginning of URI path which may leads to information disclosure. NOTE: this is disputed by a third party because the http.server.html documentation page states "Warning: http.server is not recommended for production. It only implements basic security checks." | 2022-08-02T00:00:00.000Z | 2022-08-25T00:00:00.000Z |
| msrc_cve-2021-3659 | A NULL pointer dereference flaw was found in the Linux kernel’s IEEE 802.15.4 wireless networking subsystem in the way the user closes the LR-WPAN connection. This flaw allows a local user to crash the system. The highest threat from this vulnerability is to system availability. | 2022-08-02T00:00:00.000Z | 2022-08-24T00:00:00.000Z |
| msrc_cve-2022-32091 | MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc. | 2022-07-02T00:00:00.000Z | 2022-08-23T00:00:00.000Z |
| msrc_cve-2022-32081 | MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in prepare_inplace_add_virtual at /storage/innobase/handler/handler0alter.cc. | 2022-07-02T00:00:00.000Z | 2022-08-23T00:00:00.000Z |
| msrc_cve-2022-2889 | Use After Free in vim/vim | 2022-08-02T00:00:00.000Z | 2022-08-20T00:00:00.000Z |
| msrc_cve-2022-35820 | Windows Bluetooth Driver Elevation of Privilege Vulnerability | 2022-08-09T07:00:00.000Z | 2022-08-19T07:00:00.000Z |
| msrc_cve-2022-35751 | Windows Hyper-V Elevation of Privilege Vulnerability | 2022-08-09T07:00:00.000Z | 2022-08-19T07:00:00.000Z |
| msrc_cve-2022-35742 | Microsoft Outlook Denial of Service Vulnerability | 2022-08-09T07:00:00.000Z | 2022-08-19T07:00:00.000Z |
| msrc_cve-2022-2874 | NULL Pointer Dereference in vim/vim | 2022-08-02T00:00:00.000Z | 2022-08-19T00:00:00.000Z |
| msrc_cve-2022-2862 | Use After Free in vim/vim | 2022-08-02T00:00:00.000Z | 2022-08-19T00:00:00.000Z |
| msrc_cve-2022-2849 | Heap-based Buffer Overflow in vim/vim | 2022-08-02T00:00:00.000Z | 2022-08-19T00:00:00.000Z |
| msrc_cve-2022-2845 | Improper Validation of Specified Quantity in Input in vim/vim | 2022-08-02T00:00:00.000Z | 2022-08-19T00:00:00.000Z |
| msrc_cve-2022-2819 | Heap-based Buffer Overflow in vim/vim | 2022-08-02T00:00:00.000Z | 2022-08-18T00:00:00.000Z |
| msrc_cve-2022-2817 | Use After Free in vim/vim | 2022-08-02T00:00:00.000Z | 2022-08-18T00:00:00.000Z |
| msrc_cve-2022-2816 | Out-of-bounds Read in vim/vim | 2022-08-02T00:00:00.000Z | 2022-08-18T00:00:00.000Z |
| msrc_cve-2022-2503 | Linux Kernel LoadPin bypass via dm-verity table reload | 2022-08-02T00:00:00.000Z | 2022-08-18T00:00:00.000Z |
| msrc_cve-2022-32189 | Panic when decoding Float and Rat types in math/big | 2022-08-02T00:00:00.000Z | 2022-08-16T00:00:00.000Z |
| msrc_cve-2022-30633 | Stack exhaustion when unmarshaling certain documents in encoding/xml | 2022-08-02T00:00:00.000Z | 2022-08-16T00:00:00.000Z |
| msrc_cve-2022-30632 | Stack exhaustion on crafted paths in path/filepath | 2022-08-02T00:00:00.000Z | 2022-08-16T00:00:00.000Z |
| msrc_cve-2022-30630 | Stack exhaustion in Glob on certain paths in io/fs | 2022-08-02T00:00:00.000Z | 2022-08-16T00:00:00.000Z |
| msrc_cve-2022-1973 | A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. This flaw allows a local attacker to crash the system and leads to a kernel information leak problem. | 2022-08-02T00:00:00.000Z | 2022-08-16T00:00:00.000Z |
| msrc_cve-2022-1158 | A flaw was found in KVM. When updating a guest's page table entry vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes this flaw allows unprivileged local users on the host to write outside the userspace region and potentially corrupt the kernel resulting in a denial of service condition. | 2022-08-02T00:00:00.000Z | 2022-08-16T00:00:00.000Z |
| msrc_cve-2022-35822 | Windows Defender Credential Guard Security Feature Bypass Vulnerability | 2022-08-09T07:00:00.000Z | 2022-08-15T07:00:00.000Z |
| msrc_cve-2022-34711 | Windows Defender Credential Guard Elevation of Privilege Vulnerability | 2022-08-09T07:00:00.000Z | 2022-08-15T07:00:00.000Z |
| msrc_cve-2022-1012 | A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem. | 2022-08-02T00:00:00.000Z | 2022-08-12T00:00:00.000Z |
| msrc_cve-2022-34713 | Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability | 2022-08-09T07:00:00.000Z | 2022-08-10T07:00:00.000Z |
| msrc_cve-2022-29154 | An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example overwrite the .ssh/authorized_keys file). | 2022-08-02T00:00:00.000Z | 2022-08-10T00:00:00.000Z |
| msrc_cve-2022-35827 | Visual Studio Remote Code Execution Vulnerability | 2022-08-09T07:00:00.000Z | 2022-08-09T07:00:00.000Z |
| msrc_cve-2022-35826 | Visual Studio Remote Code Execution Vulnerability | 2022-08-09T07:00:00.000Z | 2022-08-09T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201601-0459 | Cross-site scripting (XSS) vulnerability in the login form in the integrated web server o… | 2025-04-13T23:26:39.884000Z |
| var-201601-0585 | Juniper ScreenOS before 6.3.0r21, when ssh-pka is configured and enabled, allows remote a… | 2025-04-13T23:26:39.800000Z |
| var-201602-0052 | Cross-site scripting (XSS) vulnerability in the management interface in Cisco Jabber Gues… | 2025-04-13T23:26:39.646000Z |
| var-201602-0073 | Dell SecureWorks app before 2.1 for iOS does not validate SSL certificates, which allows … | 2025-04-13T23:26:39.614000Z |
| var-201602-0220 | Cisco Nexus 9000 Application Centric Infrastructure (ACI) Mode switches with software bef… | 2025-04-13T23:26:39.556000Z |
| var-201602-0345 | Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 11.x before … | 2025-04-13T23:26:39.477000Z |
| var-201602-0346 | The Administrative Web Interface in Citrix NetScaler Application Delivery Controller (ADC… | 2025-04-13T23:26:39.447000Z |
| var-201603-0024 | The Qualcomm performance component in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, … | 2025-04-13T23:26:39.382000Z |
| var-201604-0057 | Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.… | 2025-04-13T23:26:38.823000Z |
| var-201604-0309 | Buffer overflow in tibemsd in the server in TIBCO Enterprise Message Service (EMS) before… | 2025-04-13T23:26:38.709000Z |
| var-201604-0456 | Integer overflow in the graphics drivers in Huawei Mate S smartphones with software CRR-T… | 2025-04-13T23:26:38.650000Z |
| var-201605-0549 | The XML API in TelePresence Codec (TC) 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.3.2, 7.3.3, 7.3.4, a… | 2025-04-13T23:26:38.404000Z |
| var-201606-0459 | Memory leak in Huawei AR3200 before V200R007C00SPC900 allows remote attackers to cause a … | 2025-04-13T23:26:37.925000Z |
| var-201607-0147 | Apple AirPort Base Station Firmware before 7.6.7 and 7.7.x before 7.7.7 misparses DNS dat… | 2025-04-13T23:26:37.878000Z |
| var-201607-0420 | Cisco IOS XR 5.x through 5.2.5 on NCS 6000 devices allows remote attackers to cause a den… | 2025-04-13T23:26:37.816000Z |
| var-201607-0462 | Cross-site scripting (XSS) vulnerability in the volume backup service module in Huawei Pu… | 2025-04-13T23:26:37.783000Z |
| var-201608-0226 | The rate-limit feature in the 802.11 protocol implementation on Cisco Aironet 1800, 2800,… | 2025-04-13T23:26:37.571000Z |
| var-201608-0247 | Cross-site scripting (XSS) vulnerability in Cisco Identity Services Engine 1.3(0.876) all… | 2025-04-13T23:26:37.541000Z |
| var-201609-0307 | Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco F… | 2025-04-13T23:26:37.414000Z |
| var-201609-0389 | Cisco WebEx Meetings Server 2.6 allows remote attackers to execute arbitrary commands by … | 2025-04-13T23:26:37.356000Z |
| var-201610-0280 | A vulnerability in the local Certificate Authority (CA) feature of Cisco ASA Software bef… | 2025-04-13T23:26:37.273000Z |
| var-201610-0320 | A vulnerability in Advanced Malware Protection (AMP) for Cisco Email Security Appliances … | 2025-04-13T23:26:37.234000Z |
| var-201610-0341 | A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco Asyn… | 2025-04-13T23:26:37.197000Z |
| var-201611-0164 | A vulnerability in the web framework code of Cisco Identity Services Engine (ISE) could a… | 2025-04-13T23:26:36.892000Z |
| var-201612-0164 | A vulnerability in the web-based management interface of Cisco Firepower Management Cente… | 2025-04-13T23:26:36.718000Z |
| var-201612-0227 | A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Sec… | 2025-04-13T23:26:36.578000Z |
| var-201612-0374 | A vulnerability in the Decrypt for End-User Notification configuration parameter of Cisco… | 2025-04-13T23:26:36.260000Z |
| var-201403-0205 | Intelligent Automation for Cloud (IAC) in Cisco Cloud Portal 9.4.1 and earlier includes a… | 2025-04-13T23:25:29.063000Z |
| var-201404-0015 | CRLF injection vulnerability in the CGI implementation in Microsoft Internet Information … | 2025-04-13T23:25:28.850000Z |
| var-201404-0447 | Cross-site scripting (XSS) vulnerability in Advanced_Wireless_Content.asp in ASUS RT-AC68… | 2025-04-13T23:25:28.790000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2021:4021-1 | Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP5) | 2021-12-14T08:15:51Z | 2021-12-14T08:15:51Z |
| suse-su-2021:4018-1 | Security update for fetchmail | 2021-12-14T07:59:15Z | 2021-12-14T07:59:15Z |
| suse-su-2021:4015-1 | Security update for python3 | 2021-12-13T16:16:28Z | 2021-12-13T16:16:28Z |
| suse-su-2021:4011-1 | Security update for sles12sp2-docker-image | 2021-12-13T12:03:12Z | 2021-12-13T12:03:12Z |
| suse-su-2021:4004-1 | Security update for glib-networking | 2021-12-13T09:58:19Z | 2021-12-13T09:58:19Z |
| suse-su-2021:4003-1 | Security update for bcm43xx-firmware | 2021-12-13T09:30:19Z | 2021-12-13T09:30:19Z |
| suse-su-2021:4002-1 | Security update for python-pip | 2021-12-13T09:30:12Z | 2021-12-13T09:30:12Z |
| suse-su-2021:4001-1 | Security update for python-pip | 2021-12-13T09:30:04Z | 2021-12-13T09:30:04Z |
| suse-su-2021:4000-1 | Security update for MozillaFirefox | 2021-12-12T09:52:15Z | 2021-12-12T09:52:15Z |
| suse-su-2021:3997-1 | Security update for glib-networking | 2021-12-10T16:33:15Z | 2021-12-10T16:33:15Z |
| suse-su-2021:3996-1 | Security update for ImageMagick | 2021-12-10T16:32:42Z | 2021-12-10T16:32:42Z |
| suse-su-2021:3995-1 | Security update for MozillaFirefox | 2021-12-10T16:32:12Z | 2021-12-10T16:32:12Z |
| suse-su-2021:14859-1 | Security update for MozillaFirefox | 2021-12-10T16:30:46Z | 2021-12-10T16:30:46Z |
| suse-su-2021:3993-1 | Security update for MozillaFirefox | 2021-12-10T14:04:20Z | 2021-12-10T14:04:20Z |
| suse-su-2021:3992-1 | Security update for the Linux RT Kernel | 2021-12-10T11:37:38Z | 2021-12-10T11:37:38Z |
| suse-su-2021:3979-1 | Security update for the Linux RT Kernel | 2021-12-09T15:29:50Z | 2021-12-09T15:29:50Z |
| suse-su-2021:3978-1 | Security update for the Linux RT Kernel | 2021-12-09T10:12:22Z | 2021-12-09T10:12:22Z |
| suse-su-2021:3977-1 | Security update for xen | 2021-12-09T10:05:29Z | 2021-12-09T10:05:29Z |
| suse-su-2021:3291-1 | Security update for glibc | 2021-12-08T15:40:30Z | 2021-12-08T15:40:30Z |
| suse-su-2021:3972-1 | Security update for the Linux Kernel | 2021-12-08T10:39:54Z | 2021-12-08T10:39:54Z |
| suse-su-2021:3969-1 | Security update for the Linux Kernel | 2021-12-07T14:31:45Z | 2021-12-07T14:31:45Z |
| suse-su-2021:3968-1 | Security update for xen | 2021-12-07T14:31:13Z | 2021-12-07T14:31:13Z |
| suse-su-2021:3964-1 | Security update for nodejs14 | 2021-12-07T07:57:42Z | 2021-12-07T07:57:42Z |
| suse-su-2021:3454-2 | Security update for krb5 | 2021-12-06T18:58:17Z | 2021-12-06T18:58:17Z |
| suse-su-2021:14858-1 | Security update for mozilla-nss | 2021-12-06T16:45:38Z | 2021-12-06T16:45:38Z |
| suse-su-2021:3951-1 | Security update for openssh | 2021-12-06T14:00:13Z | 2021-12-06T14:00:13Z |
| suse-su-2021:3950-1 | Security update for openssh | 2021-12-06T13:59:58Z | 2021-12-06T13:59:58Z |
| suse-su-2021:3949-1 | Security update for clamav | 2021-12-06T13:59:32Z | 2021-12-06T13:59:32Z |
| suse-su-2021:3948-1 | Security update for mariadb | 2021-12-06T13:58:47Z | 2021-12-06T13:58:47Z |
| suse-su-2021:3947-1 | Security update for openssh | 2021-12-06T13:58:18Z | 2021-12-06T13:58:18Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-02588 | Inductive Automation Ignition代码问题漏洞 | 2022-07-21 | 2025-02-07 |
| cnvd-2025-02584 | Adobe Acrobat Reader XML外部实体注入漏洞 | 2024-12-13 | 2025-02-07 |
| cnvd-2025-02587 | Broadcom Symantec Privileged Access Management权限提升漏洞 | 2022-08-31 | 2025-02-06 |
| cnvd-2025-02586 | Linksys E8450 id_email_check_btn命令注入漏洞 | 2025-01-24 | 2025-02-06 |
| cnvd-2025-02585 | Linksys E8450 userEmail命令注入漏洞 | 2025-01-24 | 2025-02-06 |
| cnvd-2025-02583 | Apple iPadOS和iPhone OS信息泄露漏洞 | 2025-01-03 | 2025-02-06 |
| cnvd-2025-02582 | Apple macOS访问控制漏洞 | 2025-01-03 | 2025-02-06 |
| cnvd-2025-02581 | Apple iPhone OS和iPadOS隐私泄露漏洞 | 2025-01-03 | 2025-02-06 |
| cnvd-2025-02580 | Apple多款产品权限问题漏洞 | 2025-01-13 | 2025-02-06 |
| cnvd-2025-02578 | Linksys WUMC710命令注入漏洞 | 2023-01-11 | 2025-02-06 |
| cnvd-2025-02577 | Dell BIOS输入验证错误漏洞(CNVD-2025-02577) | 2023-06-28 | 2025-02-06 |
| cnvd-2025-02576 | Dell BIOS输入验证错误漏洞(CNVD-2025-02576) | 2023-06-28 | 2025-02-06 |
| cnvd-2025-02575 | Dell BIOS缓冲区溢出漏洞 | 2023-06-28 | 2025-02-06 |
| cnvd-2025-02574 | Ffmpeg代码问题漏洞(CNVD-2025-02574) | 2023-08-15 | 2025-02-06 |
| cnvd-2025-02573 | Dell EMC AppSync访问控制错误漏洞 | 2023-10-07 | 2025-02-06 |
| cnvd-2025-02572 | Dell Common Event Enabler访问控制错误漏洞 | 2023-10-13 | 2025-02-06 |
| cnvd-2025-02569 | SonicWall SonicOS授权问题漏洞 | 2024-02-19 | 2025-02-06 |
| cnvd-2025-02568 | Dell SmartFabric OS10跨站请求伪造漏洞 | 2024-09-09 | 2025-02-06 |
| cnvd-2025-02567 | Dell SmartFabric OS10命令执行漏洞(CNVD-2025-02567) | 2024-11-15 | 2025-02-06 |
| cnvd-2025-02566 | Dell SmartFabric OS10命令注入漏洞(CNVD-2025-02566) | 2024-11-15 | 2025-02-06 |
| cnvd-2025-02565 | Dell SmartFabric OS10命令注入漏洞 | 2024-11-19 | 2025-02-06 |
| cnvd-2025-02564 | Dell SmartFabric OS10未授权访问漏洞 | 2024-11-19 | 2025-02-06 |
| cnvd-2025-02563 | Dell PowerScale OneFS拒绝服务漏洞(CNVD-2025-02563) | 2024-12-13 | 2025-02-06 |
| cnvd-2025-02562 | Adobe ColdFusion路径遍历漏洞(CNVD-2025-0256230) | 2024-12-25 | 2025-02-06 |
| cnvd-2025-02561 | Dell PowerStore参数注入漏洞 | 2024-12-25 | 2025-02-06 |
| cnvd-2025-02560 | Dell ECS缓冲区溢出漏洞 | 2024-12-27 | 2025-02-06 |
| cnvd-2025-02559 | Dell ECS认证绕过漏洞 | 2024-12-30 | 2025-02-06 |
| cnvd-2025-02558 | Linux kernel net:lapb模块缓冲区溢出漏洞 | 2025-01-03 | 2025-02-06 |
| cnvd-2025-02557 | Huawei Myna输入验证错误漏洞 | 2025-01-03 | 2025-02-06 |
| cnvd-2025-02556 | Dcat Admin admin/articles/create接口跨站脚本漏洞 | 2025-01-03 | 2025-02-06 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2012-avi-738 | Vulnérabilités dans Adobe Photoshop Camera Raw | 2012-12-14T00:00:00.000000 | 2012-12-14T00:00:00.000000 |
| certa-2012-avi-737 | Multiples vulnérabilités dans Bluecoat Reporter | 2012-12-14T00:00:00.000000 | 2012-12-14T00:00:00.000000 |
| certa-2012-avi-736 | Vulnérabilités dans IBM Lotus Fondations | 2012-12-14T00:00:00.000000 | 2012-12-14T00:00:00.000000 |
| certa-2012-avi-735 | Multiples vulnérabilités dans IBM Rational Publishing Engine | 2012-12-14T00:00:00.000000 | 2012-12-14T00:00:00.000000 |
| certa-2012-avi-734 | Vulnérabilité dans les produits Avaya | 2012-12-13T00:00:00.000000 | 2012-12-13T00:00:00.000000 |
| certa-2012-avi-733 | Vulnérabilité dans Citrix XenApp | 2012-12-13T00:00:00.000000 | 2012-12-13T00:00:00.000000 |
| certa-2012-avi-732 | Vulnérabilité dans Citrix XenDesktop | 2012-12-13T00:00:00.000000 | 2012-12-13T00:00:00.000000 |
| certa-2012-avi-731 | Vulnérabilité dans IBM SPSS Modeler Premium | 2012-12-13T00:00:00.000000 | 2012-12-13T00:00:00.000000 |
| certa-2012-avi-730 | Vulnérabilité dans le système SCADA Siemens Automation License Manager | 2012-12-13T00:00:00.000000 | 2012-12-13T00:00:00.000000 |
| certa-2012-avi-729 | Vulnérabilités dans Bluecoat IntelligenceCenter et ProxySG | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-728 | Vulnérabilités dans Symantec Endpoint Protection | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-727 | Vulnérabilités dans HP OpenVMS LOGIN et ACMELOGIN | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-726 | Multiples vulnérabilités dans Adobe Flash Player | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-725 | Vulnérabilité dans Adobe ColdFusion | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-724 | Multiples vulnérabilités dans Google Chrome | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-723 | Vulnérabilité dans le composant Windows IP-HTTPS | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-722 | Vulnérabilité dans Microsoft Windows DirectPlay | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-721 | Vulnérabilité dans le composant de traitement des fichiers dans Windows | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-720 | Multiples vulnérabilités dans les pilotes en mode noyau de Windows | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-719 | Multiples vulnérabilités dans Microsoft Exchange Server | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-718 | Vulnérabilité dans Microsoft Word | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-717 | Multiples vulnérabilités dans Internet Explorer | 2012-12-12T00:00:00.000000 | 2012-12-12T00:00:00.000000 |
| certa-2012-avi-716 | Multiples vulnérabilités dans IBM WebSphere Application Server | 2012-12-11T00:00:00.000000 | 2012-12-11T00:00:00.000000 |
| certa-2012-avi-715 | Vulnérabilité dans IBM Tivoli Directory Server | 2012-12-11T00:00:00.000000 | 2012-12-11T00:00:00.000000 |
| certa-2012-avi-714 | Multiples vulnérabilités dans IBM Rational | 2012-12-11T00:00:00.000000 | 2012-12-11T00:00:00.000000 |
| certa-2012-avi-713 | Vulnérabilité dans Avaya Experience Portal | 2012-12-10T00:00:00.000000 | 2012-12-10T00:00:00.000000 |
| certa-2012-avi-712 | Vulnérabilité dans IBM Tivoli Monitoring | 2012-12-10T00:00:00.000000 | 2012-12-10T00:00:00.000000 |
| certa-2012-avi-711 | Vulnérabilité dans IBM Informix | 2012-12-10T00:00:00.000000 | 2012-12-10T00:00:00.000000 |
| certa-2012-avi-710 | Vulnérabilité dans HP Network Node Manager | 2012-12-07T00:00:00.000000 | 2012-12-07T00:00:00.000000 |
| certa-2012-avi-709 | Vulnérabilité dans les imprimantes HP Color LaserJet | 2012-12-07T00:00:00.000000 | 2012-12-07T00:00:00.000000 |