Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-14502 |
9.8 (3.1)
|
News and Blog Designer Bundle <= 1.1 - Unauthenticated… |
vaghasia3 |
News and Blog Designer Bundle |
2026-01-14T05:28:13.366Z | 2026-01-14T21:36:48.570Z |
| CVE-2025-55462 |
6.5 (3.1)
|
A CORS misconfiguration in Eramba Community and E… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-14T21:30:01.077Z |
| CVE-2025-71166 |
4.8 (4.0)
|
Typesetter CMS Reflected XSS via Move Message Handling |
Typesetter |
Typesetter |
2026-01-14T18:28:40.633Z | 2026-01-14T21:21:08.961Z |
| CVE-2025-71165 |
4.8 (4.0)
|
Typesetter CMS Reflected XSS via Status.php |
Typesetter |
Typesetter |
2026-01-14T18:28:21.375Z | 2026-01-14T21:20:28.046Z |
| CVE-2025-71164 |
4.8 (4.0)
|
Typesetter CMS Reflected XSS via Editing.php |
Typesetter |
Typesetter |
2026-01-14T18:27:45.418Z | 2026-01-14T21:19:20.087Z |
| CVE-2026-0959 |
5.3 (3.1)
|
Out-of-bounds Write in Wireshark |
Wireshark Foundation |
Wireshark |
2026-01-14T20:23:28.986Z | 2026-01-14T21:18:44.677Z |
| CVE-2026-0960 |
4.7 (3.1)
|
Loop with Unreachable Exit Condition ('Infinite Loop')… |
Wireshark Foundation |
Wireshark |
2026-01-14T20:23:33.849Z | 2026-01-14T21:15:57.975Z |
| CVE-2026-23498 |
7.2 (3.1)
|
Shopware Improper Control of Generation of Code in Twi… |
shopware |
shopware |
2026-01-14T18:31:19.070Z | 2026-01-14T21:15:57.391Z |
| CVE-2026-23497 |
1.3 (4.0)
|
Frappe LMS has a Stored XSS via Unsanitized Image File… |
frappe |
lms |
2026-01-14T18:25:52.052Z | 2026-01-14T21:15:21.105Z |
| CVE-2026-23492 |
8.8 (3.1)
|
Pimcore has a Blind SQL Injection in Admin Search Find… |
pimcore |
pimcore |
2026-01-14T18:21:55.237Z | 2026-01-14T21:14:46.329Z |
| CVE-2026-23477 |
7.7 (3.1)
|
Rocket.Chat Unauthorized Access to OAuth App Details |
RocketChat |
Rocket.Chat |
2026-01-14T18:16:05.178Z | 2026-01-14T21:14:08.081Z |
| CVE-2026-22819 |
5.9 (3.1)
|
Outray has a Race Condition in main/apps/web/src/route… |
akinloluwami |
outray |
2026-01-14T18:04:33.426Z | 2026-01-14T21:13:36.389Z |
| CVE-2026-22859 |
5.6 (4.0)
|
FreeRDP has a heap-buffer-overflow in urb_select_confi… |
FreeRDP |
FreeRDP |
2026-01-14T17:57:37.000Z | 2026-01-14T21:13:02.936Z |
| CVE-2026-22858 |
5.6 (4.0)
|
FreeRDP has a global-buffer-overflow in crypto_base64_decode |
FreeRDP |
FreeRDP |
2026-01-14T17:56:29.729Z | 2026-01-14T21:12:03.734Z |
| CVE-2026-0962 |
5.3 (3.1)
|
Out-of-bounds Write in Wireshark |
Wireshark Foundation |
Wireshark |
2026-01-14T20:23:38.829Z | 2026-01-14T21:11:23.281Z |
| CVE-2026-23550 |
10 (3.1)
|
WordPress Modular DS plugin <= 2.5.1 - Privilege Escal… |
Modular DS |
Modular DS |
2026-01-14T08:44:25.503Z | 2026-01-14T21:09:14.352Z |
| CVE-2026-0961 |
5.5 (3.1)
|
Out-of-bounds Write in Wireshark |
Wireshark Foundation |
Wireshark |
2026-01-14T20:23:48.832Z | 2026-01-14T21:08:38.074Z |
| CVE-2026-22855 |
5.6 (4.0)
|
FreeRDP has a heap-buffer-overflow in smartcard_unpack… |
FreeRDP |
FreeRDP |
2026-01-14T17:50:06.209Z | 2026-01-14T21:06:26.553Z |
| CVE-2025-15486 |
4.4 (3.1)
|
Kunze Law <= 2.1 - Authenticated (Administrator+) Stor… |
kunzemarketing |
Kunze Law |
2026-01-14T05:28:13.753Z | 2026-01-14T21:06:06.315Z |
| CVE-2026-23512 |
8.6 (3.1)
|
SumatraPDF has an Untrusted Search Path in sumatrapdf/… |
sumatrapdfreader |
sumatrapdf |
2026-01-14T20:31:08.724Z | 2026-01-14T21:04:47.478Z |
| CVE-2026-22851 |
6.9 (4.0)
|
FreeRDP RDPGFX ResetGraphics race leads to use-after-f… |
FreeRDP |
FreeRDP |
2026-01-14T17:43:28.114Z | 2026-01-14T21:03:36.764Z |
| CVE-2026-22779 |
6.3 (4.0)
|
BlackSheep ClientSession is vulnerable to CRLF injection |
Neoteroi |
BlackSheep |
2026-01-14T16:49:34.202Z | 2026-01-14T21:01:52.743Z |
| CVE-2026-0734 |
4.4 (3.1)
|
WP Allowed Hosts <= 1.0.8 - Authenticated (Administrat… |
dfieldfl |
WP Allowed Hosts |
2026-01-14T06:40:05.559Z | 2026-01-14T21:01:19.790Z |
| CVE-2026-0813 |
4.4 (3.1)
|
Short Link <= 1.0 - Authenticated (Administrator+) Sto… |
prasannasp |
Short Link |
2026-01-14T06:40:05.955Z | 2026-01-14T20:59:03.055Z |
| CVE-2025-15512 |
5.3 (3.1)
|
Aplazo Payment Gateway <= 1.4.2 - Missing Authorizatio… |
aplazopayment |
Aplazo Payment Gateway |
2026-01-14T06:40:06.342Z | 2026-01-14T20:52:03.376Z |
| CVE-2026-0741 |
4.4 (3.1)
|
Electric Studio Download Counter <= 2.4 - Authenticate… |
electric-studio |
Electric Studio Download Counter |
2026-01-14T06:40:06.713Z | 2026-01-14T20:48:23.806Z |
| CVE-2025-15513 |
5.3 (3.1)
|
Float Payment Gateway <= 1.1.9 - Improper Authorizatio… |
floattechnologies |
Float Payment Gateway |
2026-01-14T06:40:07.126Z | 2026-01-14T20:30:29.106Z |
| CVE-2025-14846 |
4.3 (3.1)
|
SocialChamp with WordPress <= 1.3.3 - Cross-Site Reque… |
socialchampio |
SocialChamp with WordPress |
2026-01-14T06:40:07.548Z | 2026-01-14T20:28:15.355Z |
| CVE-2025-14173 |
5.3 (3.1)
|
Perfit WooCommerce <= 1.0.1 - Missing Authorization to… |
perfitdev |
Perfit WooCommerce |
2026-01-14T06:40:07.972Z | 2026-01-14T20:25:32.624Z |
| CVE-2025-67835 |
6.5 (3.1)
|
Paessler PRTG Network Monitor before 25.4.114 all… |
n/a |
n/a |
2026-01-14T00:00:00.000Z | 2026-01-14T20:15:34.007Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-52768 |
8.1 (3.1)
|
WordPress Faith & Hope theme <= 2.13.0 - Local File In… |
AncoraThemes |
Faith & Hope |
2025-12-18T07:21:45.204Z | 2026-01-20T14:28:08.823Z |
| CVE-2025-52764 |
6.1 (3.1)
|
WordPress flexoslider plugin <= 1.0004 - Cross Site Sc… |
marielav |
flexoslider |
2025-11-06T15:53:56.937Z | 2026-01-20T14:28:09.106Z |
| CVE-2025-52763 |
7.1 (3.1)
|
WordPress Nifty Backups plugin <= 1.08 - Cross Site Sc… |
NickDuncan |
Nifty Backups |
2025-10-22T14:32:28.478Z | 2026-01-20T14:28:08.616Z |
| CVE-2025-52760 |
6.1 (3.1)
|
WordPress MultiSite Clone Duplicator plugin <= 1.5.3 -… |
Globalis |
MultiSite Clone Duplicator |
2025-10-22T14:32:28.248Z | 2026-01-20T14:28:08.789Z |
| CVE-2025-52758 |
9.1 (3.1)
|
WordPress Zippy plugin <= 1.7.0 - Arbitrary File Uploa… |
Gesundheit Bewegt GmbH |
Zippy |
2025-10-22T14:32:27.961Z | 2026-01-20T14:28:08.584Z |
| CVE-2025-52757 |
6.3 (3.1)
|
WordPress SUMO Memberships for WooCommerce plugin <= 7… |
FantasticPlugins |
SUMO Memberships for WooCommerce |
2025-10-22T14:32:27.245Z | 2026-01-20T14:28:08.665Z |
| CVE-2025-52756 |
7.4 (3.1)
|
WordPress WP Last Modified Info plugin <= 1.9.2 - Remo… |
Sayan Datta |
WP Last Modified Info |
2025-10-22T14:32:26.710Z | 2026-01-20T14:28:08.525Z |
| CVE-2025-52755 |
7.1 (3.1)
|
WordPress Child Themes plugin <= 1.0.1 - Cross Site Sc… |
Chris Taylor |
Child Themes |
2025-10-22T14:32:26.093Z | 2026-01-20T14:28:08.903Z |
| CVE-2025-52754 |
7.1 (3.1)
|
WordPress Sello ChannelConnector plugin <= 1.6.3 - Cro… |
selloio |
Sello ChannelConnector |
2025-10-22T14:32:25.569Z | 2026-01-20T14:28:08.610Z |
| CVE-2025-52753 |
7.1 (3.1)
|
WordPress Contact Form by Supsystic plugin <= 1.7.35 -… |
supsystic |
Contact Form by Supsystic |
2025-10-22T14:32:25.219Z | 2026-01-20T14:28:09.147Z |
| CVE-2025-52752 |
6.5 (3.1)
|
WordPress IDonatePro plugin <= 2.1.9 - Sensitive Data … |
ThemeAtelier |
IDonatePro |
2025-10-22T14:32:25.039Z | 2026-01-20T14:28:08.978Z |
| CVE-2025-52751 |
7.1 (3.1)
|
WordPress Slide Puzzle plugin <= 1.0.0 - Cross Site Sc… |
colome |
Slide Puzzle |
2025-10-22T14:32:24.841Z | 2026-01-20T14:28:08.664Z |
| CVE-2025-52750 |
7.1 (3.1)
|
WordPress Emu2 plugin <= 0.83b - Cross Site Scripting … |
Juergen Schulze |
Emu2 |
2025-10-22T14:32:24.658Z | 2026-01-20T14:28:08.656Z |
| CVE-2025-52749 |
7.1 (3.1)
|
WordPress Uji Countdown plugin <= 2.3.3 - Cross Site S… |
Activity Track |
Uji Countdown |
2025-10-22T14:32:24.442Z | 2026-01-20T14:28:08.525Z |
| CVE-2025-52748 |
7.1 (3.1)
|
WordPress Directory Pro plugin <= 2.5.5 - Cross Site S… |
e-plugins |
Directory Pro |
2025-10-22T14:32:24.265Z | 2026-01-20T14:28:08.584Z |
| CVE-2025-52745 |
8.1 (3.1)
|
WordPress Farm Agrico theme <= 1.3.11 - Local File Inc… |
AncoraThemes |
Farm Agrico |
2025-12-18T07:21:44.978Z | 2026-01-20T14:28:08.668Z |
| CVE-2025-52743 |
7.1 (3.1)
|
WordPress oik-privacy-policy Plugin <= 1.4.9 - Cross S… |
bobbingwide |
oik-privacy-policy |
2025-10-22T14:32:24.069Z | 2026-01-20T14:28:08.836Z |
| CVE-2025-52742 |
7.1 (3.1)
|
WordPress Pets Plugin <= 1.4.1 - Cross Site Scripting … |
Igor Benic |
Pets |
2025-10-22T14:32:23.806Z | 2026-01-20T14:28:08.492Z |
| CVE-2025-52740 |
8.8 (3.1)
|
WordPress Boldermail Plugin <= 2.4.0 - PHP Object Inje… |
Hernan Villanueva |
Boldermail |
2025-10-22T14:32:23.272Z | 2026-01-20T14:28:08.764Z |
| CVE-2025-52739 |
7.1 (3.1)
|
WordPress Sala theme <= 1.1.3 - Cross Site Scripting (… |
uxper |
Sala |
2025-12-31T20:10:29.616Z | 2026-01-20T14:28:08.584Z |
| CVE-2025-52738 |
6.5 (3.1)
|
WordPress Wikipedia Preview Plugin <= 1.15.0 - Broken … |
Wikimedia Foundation |
Wikipedia Preview |
2025-10-22T14:32:23.016Z | 2026-01-20T14:28:08.230Z |
| CVE-2025-52737 |
8.8 (3.1)
|
WordPress WP Store Locator plugin <= 2.2.260 - PHP Obj… |
Tijmen Smit |
WP Store Locator |
2025-10-22T14:32:22.788Z | 2026-01-20T14:28:08.263Z |
| CVE-2025-52736 |
7.1 (3.1)
|
WordPress Finale Lite Plugin <= 2.20.0 - Cross Site Sc… |
Daman Jeet |
Finale Lite |
2025-10-22T14:32:22.566Z | 2026-01-20T14:28:08.492Z |
| CVE-2025-50053 |
7.1 (3.1)
|
WordPress Blappsta Mobile App Plugin – Your native, mo… |
nebelhorn |
Blappsta Mobile App Plugin – Your native, mobile iPhone App and Android App |
2025-12-31T20:09:03.413Z | 2026-01-20T14:28:08.302Z |
| CVE-2025-49992 |
7.1 (3.1)
|
WordPress LearnPress Export Import Plugin <= 4.0.9 - C… |
ThimPress |
LearnPress Export Import |
2025-10-22T14:32:21.965Z | 2026-01-20T14:28:08.282Z |
| CVE-2025-49963 |
7.1 (3.1)
|
WordPress Simple Stripe Checkout plugin <= 1.1.28 - Cr… |
growniche |
Simple Stripe Checkout |
2025-10-22T14:32:21.783Z | 2026-01-20T14:28:08.285Z |
| CVE-2025-49962 |
7.1 (3.1)
|
WordPress bbPress Notify plugin <= 2.19.4 - Cross Site… |
useStrict |
bbPress Notify |
2025-10-22T14:32:21.576Z | 2026-01-20T14:28:08.371Z |
| CVE-2025-49961 |
6.3 (3.1)
|
WordPress Breeze Checkout plugin <= 1.4.0 - Broken Acc… |
Breeze Team |
Breeze Checkout |
2025-10-22T14:32:21.376Z | 2026-01-20T14:28:08.365Z |
| CVE-2025-49960 |
6.5 (3.1)
|
WordPress LeadBI Plugin for WordPress plugin <= 1.7 - … |
leadbi |
LeadBI Plugin for WordPress |
2025-10-22T14:32:21.173Z | 2026-01-20T14:28:08.311Z |
| CVE-2025-49959 |
7.1 (3.1)
|
WordPress bbPress Move Topics plugin <= 1.1.6 - Cross … |
Pascal Casier |
bbPress Move Topics |
2025-10-22T14:32:20.965Z | 2026-01-20T14:28:08.267Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-52753 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:45.190 | 2026-01-20T15:16:49.493 |
| fkie_cve-2025-52752 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ThemeAt… | 2025-10-22T15:15:45.070 | 2026-01-20T15:16:49.360 |
| fkie_cve-2025-52751 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:44.947 | 2026-01-20T15:16:49.233 |
| fkie_cve-2025-52750 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:44.827 | 2026-01-20T15:16:49.107 |
| fkie_cve-2025-52749 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:44.710 | 2026-01-20T15:16:48.973 |
| fkie_cve-2025-52748 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:44.593 | 2026-01-20T15:16:48.840 |
| fkie_cve-2025-52745 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:52.750 | 2026-01-20T15:16:48.703 |
| fkie_cve-2025-52743 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:44.467 | 2026-01-20T15:16:48.567 |
| fkie_cve-2025-52742 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:44.340 | 2026-01-20T15:16:48.430 |
| fkie_cve-2025-52740 | Deserialization of Untrusted Data vulnerability in Hernan Villanueva Boldermail boldermail allows O… | 2025-10-22T15:15:44.087 | 2026-01-20T15:16:48.147 |
| fkie_cve-2025-52739 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T20:15:42.937 | 2026-01-20T15:16:48.043 |
| fkie_cve-2025-52738 | Missing Authorization vulnerability in Wikimedia Foundation Wikipedia Preview wikipedia-preview all… | 2025-10-22T15:15:43.960 | 2026-01-20T15:16:47.913 |
| fkie_cve-2025-52737 | Deserialization of Untrusted Data vulnerability in Tijmen Smit WP Store Locator wp-store-locator al… | 2025-10-22T15:15:43.837 | 2026-01-20T15:16:47.780 |
| fkie_cve-2025-52736 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:43.713 | 2026-01-20T15:16:47.650 |
| fkie_cve-2025-50053 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T20:15:42.793 | 2026-01-20T15:16:47.220 |
| fkie_cve-2025-49992 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:43.280 | 2026-01-20T15:16:47.090 |
| fkie_cve-2025-49963 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:43.157 | 2026-01-20T15:16:46.960 |
| fkie_cve-2025-49962 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:43.027 | 2026-01-20T15:16:46.830 |
| fkie_cve-2025-49961 | Missing Authorization vulnerability in Breeze Team Breeze Checkout breeze-checkout allows Exploitin… | 2025-10-22T15:15:42.873 | 2026-01-20T15:16:46.700 |
| fkie_cve-2025-49960 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:42.720 | 2026-01-20T15:16:46.563 |
| fkie_cve-2025-49959 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:42.567 | 2026-01-20T15:16:46.423 |
| fkie_cve-2025-49958 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:42.410 | 2026-01-20T15:16:46.290 |
| fkie_cve-2025-49957 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:42.270 | 2026-01-20T15:16:46.157 |
| fkie_cve-2025-49956 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:42.140 | 2026-01-20T15:16:46.027 |
| fkie_cve-2025-49955 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:42.013 | 2026-01-20T15:16:45.900 |
| fkie_cve-2025-49954 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:41.873 | 2026-01-20T15:16:45.767 |
| fkie_cve-2025-49953 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:41.747 | 2026-01-20T15:16:45.630 |
| fkie_cve-2025-49952 | Authorization Bypass Through User-Controlled Key vulnerability in favethemes Houzez houzez allows E… | 2025-10-22T15:15:41.620 | 2026-01-20T15:16:45.503 |
| fkie_cve-2025-49951 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:41.497 | 2026-01-20T15:16:45.370 |
| fkie_cve-2025-49950 | Missing Authorization vulnerability in billingo Official Integration for Billingo billingo allows P… | 2025-10-22T15:15:41.373 | 2026-01-20T15:16:45.240 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-rw7g-7xvc-g4p7 |
6.4 (3.1)
|
The MediaPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's m… | 2026-01-06T12:30:19Z | 2026-01-06T12:30:19Z |
| ghsa-whhx-3948-x97c |
4.3 (3.1)
|
The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress plu… | 2026-01-06T09:30:29Z | 2026-01-06T09:30:29Z |
| ghsa-qc8j-wvjf-7jfj |
8.8 (3.1)
|
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when t… | 2025-09-23T18:30:24Z | 2026-01-06T09:30:29Z |
| ghsa-p5mw-m48c-rc39 |
6.5 (3.1)
|
The Appointment Booking and Scheduling Calendar Plugin – WP Timetics plugin for WordPress is vulner… | 2026-01-06T09:30:29Z | 2026-01-06T09:30:29Z |
| ghsa-c79c-p5w8-9wmc |
5.3 (3.1)
|
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthorized modificati… | 2026-01-06T09:30:29Z | 2026-01-06T09:30:29Z |
| ghsa-76rq-mr82-f3r3 |
5.4 (3.1)
|
The MasterStudy LMS WordPress Plugin – for Online Courses and Education plugin for WordPress is vul… | 2026-01-06T09:30:29Z | 2026-01-06T09:30:29Z |
| ghsa-69m7-6xqg-m79v |
4.3 (3.1)
|
The Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI plugin for WordPress is vulnera… | 2026-01-06T09:30:29Z | 2026-01-06T09:30:29Z |
| ghsa-xm4x-3r5h-vwfr |
8.8 (3.1)
8.7 (4.0)
|
Authentication bypass issue exists in OpenBlocks series versions prior to FW5.0.8, which may allow … | 2026-01-06T09:30:28Z | 2026-01-06T09:30:28Z |
| ghsa-g226-hwqv-xjmg |
6.4 (3.1)
|
The Table Field Add-on for ACF and SCF plugin for WordPress is vulnerable to Stored Cross-Site Scri… | 2026-01-06T09:30:28Z | 2026-01-06T09:30:28Z |
| ghsa-98r3-6xf8-x8r5 |
6.4 (3.1)
|
The Phlox theme for WordPress is vulnerable to Stored Cross-Site Scripting via the `data-caption` H… | 2026-01-06T09:30:28Z | 2026-01-06T09:30:28Z |
| ghsa-69vq-x493-hfcp |
5.3 (3.1)
|
The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Information… | 2026-01-06T09:30:28Z | 2026-01-06T09:30:28Z |
| ghsa-67fh-hvmh-rhv8 |
4.9 (3.1)
|
An Improper Validation of Integrity Check Value in Zscaler Client Connector on Windows allows an au… | 2023-11-21T12:30:26Z | 2026-01-06T09:30:28Z |
| ghsa-mg8c-3xfc-654p |
9.8 (3.1)
|
The FS Registration Password plugin for WordPress is vulnerable to privilege escalation via account… | 2026-01-06T06:31:28Z | 2026-01-06T06:31:28Z |
| ghsa-j698-78g5-98mv |
5.3 (3.1)
|
The Popupkit plugin for WordPress is vulnerable to arbitrary subscriber data deletion due to missin… | 2026-01-06T06:31:28Z | 2026-01-06T06:31:28Z |
| ghsa-g496-ghvr-j5ch |
6.4 (3.1)
|
The URL Image Importer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG Fi… | 2026-01-06T06:31:28Z | 2026-01-06T06:31:28Z |
| ghsa-9g62-4vwm-573r |
6.4 (3.1)
|
The Xagio SEO – AI Powered SEO plugin for WordPress is vulnerable to Server-Side Request Forgery in… | 2026-01-06T06:31:28Z | 2026-01-06T06:31:28Z |
| ghsa-7fc4-wq7j-5wjr |
9.8 (3.1)
|
The AS Password Field In Default Registration Form plugin for WordPress is vulnerable to privilege … | 2026-01-06T06:31:28Z | 2026-01-06T06:31:28Z |
| ghsa-6qr6-x63g-2597 |
7.2 (3.1)
|
The BuddyPress Xprofile Custom Field Types plugin for WordPress is vulnerable to arbitrary file del… | 2026-01-06T06:31:28Z | 2026-01-06T06:31:28Z |
| ghsa-r2mf-gj7h-w7cp |
6.5 (3.1)
|
The FastDup – Fastest WordPress Migration & Duplicator plugin for WordPress is vulnerable to Path T… | 2026-01-06T06:31:27Z | 2026-01-06T06:31:27Z |
| ghsa-p4jc-hx56-jqh2 |
6.4 (3.1)
|
The ForumWP – Forum & Discussion Board plugin for WordPress is vulnerable to Stored Cross-Site Scri… | 2026-01-06T06:31:27Z | 2026-01-06T06:31:27Z |
| ghsa-m25w-9pgg-vxgv |
|
Rejected reason: Not used | 2026-01-06T06:31:27Z | 2026-01-06T06:31:27Z |
| ghsa-j78w-vwvq-w4vf |
|
Rejected reason: Not used | 2026-01-06T06:31:27Z | 2026-01-06T06:31:27Z |
| ghsa-j3cg-8qm3-2r3j |
|
Rejected reason: Not used | 2026-01-06T06:31:27Z | 2026-01-06T06:31:27Z |
| ghsa-f3j8-26w9-vx4x |
6.5 (3.1)
|
The Page Expire Popup/Redirection for WordPress plugin for WordPress is vulnerable to time-based SQ… | 2026-01-06T06:31:27Z | 2026-01-06T06:31:27Z |
| ghsa-97w3-wx69-wx87 |
|
Rejected reason: Not used | 2026-01-06T06:31:27Z | 2026-01-06T06:31:27Z |
| ghsa-9677-rfqw-p4m4 |
5.3 (3.1)
|
The ilGhera Support System for WooCommerce plugin for WordPress is vulnerable to unauthorized modif… | 2026-01-06T06:31:27Z | 2026-01-06T06:31:27Z |
| ghsa-6c93-64vp-fj9p |
|
Rejected reason: Not used | 2026-01-06T06:31:27Z | 2026-01-06T06:31:27Z |
| ghsa-69fx-52xh-r6f9 |
|
Rejected reason: Not used | 2026-01-06T06:31:27Z | 2026-01-06T06:31:27Z |
| ghsa-57qr-59m9-6w74 |
4.9 (3.1)
|
The Form Vibes – Database Manager for Forms plugin for WordPress is vulnerable to SQL Injection via… | 2026-01-06T06:31:26Z | 2026-01-06T06:31:27Z |
| ghsa-3556-v99j-j522 |
5.3 (3.1)
|
The Popup and Slider Builder by Depicter – Add Email collecting Popup, Popup Modal, Coupon Popup, I… | 2026-01-06T06:31:26Z | 2026-01-06T06:31:27Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-26372 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.176938Z |
| gsd-2024-26904 | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix data race… | 2024-02-20T06:02:29.176425Z |
| gsd-2024-26469 | Server-Side Request Forgery (SSRF) vulnerability in Tunis Soft "Product Designer" (produc… | 2024-02-20T06:02:29.176138Z |
| gsd-2024-26729 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix… | 2024-02-20T06:02:29.175610Z |
| gsd-2024-26441 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.175333Z |
| gsd-2024-26746 | In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Ens… | 2024-02-20T06:02:29.175042Z |
| gsd-2024-26707 | In the Linux kernel, the following vulnerability has been resolved: net: hsr: remove WAR… | 2024-02-20T06:02:29.174597Z |
| gsd-2024-26516 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.174206Z |
| gsd-2024-26947 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.173663Z |
| gsd-2024-26374 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.173439Z |
| gsd-2024-26975 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.173217Z |
| gsd-2024-26507 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.172934Z |
| gsd-2024-26836 | In the Linux kernel, the following vulnerability has been resolved: platform/x86: think-… | 2024-02-20T06:02:29.172710Z |
| gsd-2024-26721 | In the Linux kernel, the following vulnerability has been resolved: drm/i915/dsc: Fix th… | 2024-02-20T06:02:29.172421Z |
| gsd-2024-26341 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.171625Z |
| gsd-2024-26785 | In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix protect… | 2024-02-20T06:02:29.171351Z |
| gsd-2024-26936 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.170996Z |
| gsd-2024-26967 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.170772Z |
| gsd-2024-26859 | In the Linux kernel, the following vulnerability has been resolved: net/bnx2x: Prevent a… | 2024-02-20T06:02:29.170488Z |
| gsd-2024-26651 | In the Linux kernel, the following vulnerability has been resolved: sr9800: Add check fo… | 2024-02-20T06:02:29.170192Z |
| gsd-2024-26714 | In the Linux kernel, the following vulnerability has been resolved: interconnect: qcom: … | 2024-02-20T06:02:29.169907Z |
| gsd-2024-26675 | In the Linux kernel, the following vulnerability has been resolved: ppp_async: limit MRU… | 2024-02-20T06:02:29.169625Z |
| gsd-2024-26625 | In the Linux kernel, the following vulnerability has been resolved: llc: call sock_orpha… | 2024-02-20T06:02:29.169401Z |
| gsd-2024-26671 | In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix IO hang … | 2024-02-20T06:02:29.169091Z |
| gsd-2024-26520 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.168863Z |
| gsd-2024-26339 | swftools v0.9.2 was discovered to contain a strcpy parameter overlap via /home/swftools/s… | 2024-02-20T06:02:29.168631Z |
| gsd-2024-26604 | In the Linux kernel, the following vulnerability has been resolved: Revert "kobject: Rem… | 2024-02-20T06:02:29.168405Z |
| gsd-2024-26421 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.167781Z |
| gsd-2024-26495 | Cross Site Scripting (XSS) vulnerability in Friendica versions after v.2023.12, allows a … | 2024-02-20T06:02:29.167551Z |
| gsd-2024-26425 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.166726Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-185016 | Malicious code in sonic-koig-tmoerocnca (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185015 | Malicious code in sonic-koig-tmoerocca (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185014 | Malicious code in sonic-koig-tmoeroca (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185013 | Malicious code in sonic-koig-tmoerca (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185012 | Malicious code in sonic-koig-tmoeca (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185011 | Malicious code in sonic-koig-tmoca (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185010 | Malicious code in sonic-koig-tmoc (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185009 | Malicious code in sonic-koig-tm (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185008 | Malicious code in sonic-koig-timexa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185007 | Malicious code in sonic-koig-timesxa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185006 | Malicious code in sonic-koig-timesexa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185005 | Malicious code in sonic-koig-timea (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185004 | Malicious code in sonic-koig-tima (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185003 | Malicious code in sonic-koig-tim (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185002 | Malicious code in sonic-kig-tnadeaxwqcav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185001 | Malicious code in sonic-kig-tnadeaxav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-185000 | Malicious code in sonic-kig-tnadeav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184999 | Malicious code in sonic-kig-tnadeaav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184998 | Malicious code in sonic-kig-tnadav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184997 | Malicious code in sonic-kig-tnaav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184996 | Malicious code in sonic-kig-tifuav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184995 | Malicious code in sonic-kig-tifuacfivfav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184994 | Malicious code in sonic-kig-tifuacfivaffacfav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184993 | Malicious code in sonic-kig-tifuacfivafav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184992 | Malicious code in sonic-kig-tifuacfivacfav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184991 | Malicious code in sonic-kig-tifuacfivaacfav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184990 | Malicious code in sonic-kig-tifuacfifav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184989 | Malicious code in sonic-kig-tifuacffav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184988 | Malicious code in sonic-kig-tifuacfav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184987 | Malicious code in sonic-kig-tifuacav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:6995 | Red Hat Security Advisory: kernel-rt security update | 2024-09-24T00:37:46+00:00 | 2025-11-21T19:12:48+00:00 |
| rhsa-2024:6994 | Red Hat Security Advisory: kernel security update | 2024-09-24T01:21:41+00:00 | 2025-11-21T19:12:48+00:00 |
| rhsa-2024:6986 | Red Hat Security Advisory: nano security update | 2024-09-24T01:24:42+00:00 | 2025-11-21T19:12:43+00:00 |
| rhsa-2024:6975 | Red Hat Security Advisory: python3 security update | 2024-09-24T03:08:07+00:00 | 2025-11-21T19:12:43+00:00 |
| rhsa-2024:6963 | Red Hat Security Advisory: gtk3 security update | 2024-09-24T01:12:46+00:00 | 2025-11-21T19:12:42+00:00 |
| rhsa-2024:6973 | Red Hat Security Advisory: dovecot security update | 2024-09-24T02:57:32+00:00 | 2025-11-21T19:12:41+00:00 |
| rhsa-2024:6964 | Red Hat Security Advisory: virt:rhel and virt-devel:rhel security update | 2024-09-24T03:34:37+00:00 | 2025-11-21T19:12:40+00:00 |
| rhsa-2024:6931 | Red Hat Security Advisory: edk2 security update | 2024-09-23T11:12:05+00:00 | 2025-11-21T19:12:36+00:00 |
| rhsa-2024:6928 | Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP6 security update | 2024-09-24T11:48:26+00:00 | 2025-11-21T19:12:36+00:00 |
| rhsa-2024:6927 | Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP6 security update | 2024-09-24T11:46:28+00:00 | 2025-11-21T19:12:36+00:00 |
| rhsa-2024:6909 | Red Hat Security Advisory: python3.9 security update | 2024-09-23T02:01:43+00:00 | 2025-11-21T19:12:33+00:00 |
| rhsa-2024:6892 | Red Hat Security Advisory: firefox update | 2024-09-19T18:28:34+00:00 | 2025-11-21T19:12:31+00:00 |
| rhsa-2024:6891 | Red Hat Security Advisory: firefox update | 2024-09-19T18:25:09+00:00 | 2025-11-21T19:12:31+00:00 |
| rhsa-2024:6850 | Red Hat Security Advisory: firefox update | 2024-09-19T12:18:18+00:00 | 2025-11-21T19:12:27+00:00 |
| rhsa-2024:6849 | Red Hat Security Advisory: edk2 security update | 2024-09-19T11:31:58+00:00 | 2025-11-21T19:12:25+00:00 |
| rhsa-2024:6848 | Red Hat Security Advisory: pcp security update | 2024-09-19T12:22:58+00:00 | 2025-11-21T19:12:24+00:00 |
| rhsa-2024:6847 | Red Hat Security Advisory: pcp security update | 2024-09-19T12:18:53+00:00 | 2025-11-21T19:12:23+00:00 |
| rhsa-2024:6846 | Red Hat Security Advisory: pcp security update | 2024-09-19T11:35:53+00:00 | 2025-11-21T19:12:22+00:00 |
| rhsa-2024:6845 | Red Hat Security Advisory: edk2 security update | 2024-09-19T11:40:53+00:00 | 2025-11-21T19:12:22+00:00 |
| rhsa-2024:6844 | Red Hat Security Advisory: pcp security update | 2024-09-19T12:19:04+00:00 | 2025-11-21T19:12:20+00:00 |
| rhsa-2024:6843 | Red Hat Security Advisory: pcp security update | 2024-09-19T11:46:03+00:00 | 2025-11-21T19:12:20+00:00 |
| rhsa-2024:6842 | Red Hat Security Advisory: pcp security update | 2024-09-19T12:16:43+00:00 | 2025-11-21T19:12:19+00:00 |
| rhsa-2024:6840 | Red Hat Security Advisory: pcp security update | 2024-09-19T11:40:53+00:00 | 2025-11-21T19:12:19+00:00 |
| rhsa-2024:6838 | Red Hat Security Advisory: firefox update | 2024-09-19T11:31:15+00:00 | 2025-11-21T19:12:17+00:00 |
| rhsa-2024:6837 | Red Hat Security Advisory: pcp security update | 2024-09-19T11:58:43+00:00 | 2025-11-21T19:12:17+00:00 |
| rhsa-2024:6827 | Red Hat Security Advisory: OpenShift Container Platform 4.16.14 security update | 2024-09-24T15:45:04+00:00 | 2025-11-21T19:12:17+00:00 |
| rhsa-2024:6816 | Red Hat Security Advisory: thunderbird security update | 2024-09-19T06:49:37+00:00 | 2025-11-21T19:12:15+00:00 |
| rhsa-2024:6786 | Red Hat Security Advisory: firefox update | 2024-09-18T21:11:10+00:00 | 2025-11-21T19:12:15+00:00 |
| rhsa-2024:6782 | Red Hat Security Advisory: firefox update | 2024-09-18T21:06:06+00:00 | 2025-11-21T19:12:12+00:00 |
| rhsa-2024:6757 | Red Hat Security Advisory: libnbd security update | 2024-09-18T13:15:00+00:00 | 2025-11-21T19:12:12+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-30189 | Windows Autopilot Device Management and Enrollment Client Spoofing Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30188 | HEVC Video Extensions Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30184 | .NET and Visual Studio Information Disclosure Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30180 | Azure RTOS GUIX Studio Information Disclosure Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30179 | Azure RTOS GUIX Studio Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30178 | Azure RTOS GUIX Studio Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30177 | Azure RTOS GUIX Studio Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30173 | Microsoft Excel Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30172 | Microsoft Office Information Disclosure Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30171 | Microsoft Office Information Disclosure Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30168 | Microsoft Photos App Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30167 | AV1 Video Extension Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30166 | Local Security Authority Subsystem Service Elevation of Privilege Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30165 | Windows Kerberos Elevation of Privilege Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30163 | Windows Hyper-V Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30162 | Windows Kernel Information Disclosure Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30161 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30160 | Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30159 | Microsoft Office Information Disclosure Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30158 | Microsoft SharePoint Server Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30155 | Windows Kernel Denial of Service Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30154 | Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30153 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30152 | Windows Network Address Translation (NAT) Denial of Service Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30151 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30149 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30148 | Windows Desired State Configuration (DSC) Information Disclosure Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30147 | Windows Installer Elevation of Privilege Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30146 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| msrc_cve-2022-30143 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | 2022-06-14T07:00:00.000Z | 2022-06-14T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201604-0101 | The chat feature in the Real-Time Collaboration (RTC) services 7.3 and 7.4 in SAP NetWeav… | 2025-04-13T23:22:21.769000Z |
| var-201604-0122 | The Enqueue Server in SAP NetWeaver JAVA AS 7.1 through 7.4 allows remote attackers to ca… | 2025-04-13T23:22:21.736000Z |
| var-201604-0332 | The Video0 driver in Huawei P8 smartphones with software GRA-UL00 before GRA-UL00C00B350,… | 2025-04-13T23:22:21.511000Z |
| var-201604-0561 | Cisco Wireless LAN Controller (WLC) Software 7.4 before 7.4.130.0(MD) and 7.5, 7.6, and 8… | 2025-04-13T23:22:21.449000Z |
| var-201605-0408 | Cisco TelePresence Video Communications Server (VCS) X8.x before X8.7.2 allows remote att… | 2025-04-13T23:22:21.324000Z |
| var-201605-0555 | Cisco AsyncOS 8.0 before 8.0.6-119 on Web Security Appliance (WSA) devices allows remote … | 2025-04-13T23:22:21.257000Z |
| var-201606-0194 | Cross-site scripting (XSS) vulnerability in Epoch Web Mailing List 0.31 and earlier allow… | 2025-04-13T23:22:21.133000Z |
| var-201606-0278 | Cisco IOS 15.2(1)T1.11 and 15.2(2)TST allows remote attackers to cause a denial of servic… | 2025-04-13T23:22:21.084000Z |
| var-201607-0386 | An unspecified ActiveX control in Schneider Electric SoMachine HVAC Programming Software … | 2025-04-13T23:22:20.898000Z |
| var-201608-0003 | Juniper Junos OS before 12.1X46-D50, 12.1X47 before 12.1X47-D23, 12.3X48 before 12.3X48-D… | 2025-04-13T23:22:20.775000Z |
| var-201608-0066 | Directory traversal vulnerability in cgi-bin/login.cgi on Crestron AirMedia AM-100 device… | 2025-04-13T23:22:20.702000Z |
| var-201608-0067 | Directory traversal vulnerability in cgi-bin/rftest.cgi on Crestron AirMedia AM-100 devic… | 2025-04-13T23:22:20.664000Z |
| var-201608-0234 | Directory traversal vulnerability in the web interface on Cisco RV180 and RV180W devices … | 2025-04-13T23:22:20.598000Z |
| var-201608-0287 | Cross-site scripting (XSS) vulnerability in Fortinet FortiAnalyzer 5.x before 5.0.12 and … | 2025-04-13T23:22:20.536000Z |
| var-201608-0285 | Cross-site scripting (XSS) vulnerability in the address added page in Fortinet FortiManag… | 2025-04-13T23:22:20.504000Z |
| var-201608-0286 | Cross-site scripting (XSS) vulnerability in the Web-UI in Fortinet FortiManager 5.x befor… | 2025-04-13T23:22:20.474000Z |
| var-201608-0276 | Cross-site scripting (XSS) vulnerability in the appliance web-application in Fortinet For… | 2025-04-13T23:22:20.443000Z |
| var-201608-0297 | Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.… | 2025-04-13T23:22:20.405000Z |
| var-201609-0170 | Buffer overflow in the Authentication, Authorization and Accounting (AAA) module in Huawe… | 2025-04-13T23:22:20.283000Z |
| var-201609-0317 | Cisco AsyncOS through 9.5.0-444 on Web Security Appliance (WSA) devices allows remote att… | 2025-04-13T23:22:20.253000Z |
| var-201609-0359 | Cisco Cloud Services Platform (CSP) 2100 2.0 allows remote attackers to execute arbitrary… | 2025-04-13T23:22:20.221000Z |
| var-201609-0567 | Huawei AnyMail before 2.6.0301.0060 allows remote attackers to cause a denial of service … | 2025-04-13T23:22:20.141000Z |
| var-201610-0019 | The lmadmin component in Flexera FlexNet Publisher (aka Flex License Manager) before 2015… | 2025-04-13T23:22:20.065000Z |
| var-201610-0206 | On Samsung Galaxy S4 through S7 devices, the "omacp" app ignores security information emb… | 2025-04-13T23:22:20.030000Z |
| var-201610-0267 | The FTP service in Cisco AsyncOS on Email Security Appliance (ESA) devices 9.6.0-000 thro… | 2025-04-13T23:22:19.962000Z |
| var-201610-0288 | A vulnerability in the detection engine reassembly of HTTP packets for Cisco Firepower Sy… | 2025-04-13T23:22:19.930000Z |
| var-201610-0351 | The (1) SCTC_REFRESH_EXPORT_TAB_COMP, (2) SCTC_REFRESH_CHECK_ENV, and (3) SCTC_TMS_MAINTA… | 2025-04-13T23:22:19.821000Z |
| var-201611-0024 | A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS… | 2025-04-13T23:22:19.581000Z |
| var-201611-0121 | An elevation of privilege vulnerability in the kernel ION subsystem in Android before 201… | 2025-04-13T23:22:18.691000Z |
| var-201611-0172 | A vulnerability in the email filtering functionality of Cisco AsyncOS Software for Cisco … | 2025-04-13T23:22:18.658000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2021:3207-1 | Security update for the Linux Kernel | 2021-09-23T14:19:32Z | 2021-09-23T14:19:32Z |
| suse-su-2021:3206-1 | Security update for the Linux Kernel | 2021-09-23T14:17:20Z | 2021-09-23T14:17:20Z |
| suse-su-2021:3205-1 | Security update for the Linux Kernel | 2021-09-23T14:16:08Z | 2021-09-23T14:16:08Z |
| suse-su-2021:3202-1 | Security update for linuxptp | 2021-09-23T09:29:13Z | 2021-09-23T09:29:13Z |
| suse-su-2021:3201-1 | Security update for hivex | 2021-09-23T09:28:56Z | 2021-09-23T09:28:56Z |
| suse-su-2021:3196-1 | Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) | 2021-09-23T09:27:25Z | 2021-09-23T09:27:25Z |
| suse-su-2021:3194-1 | Security update for grilo | 2021-09-23T09:25:51Z | 2021-09-23T09:25:51Z |
| suse-su-2021:3193-1 | Security update for ffmpeg | 2021-09-23T09:25:21Z | 2021-09-23T09:25:21Z |
| suse-su-2021:3192-1 | Security update for the Linux Kernel | 2021-09-22T15:19:26Z | 2021-09-22T15:19:26Z |
| suse-su-2021:3191-1 | Security update for MozillaFirefox | 2021-09-22T14:47:35Z | 2021-09-22T14:47:35Z |
| suse-su-2021:3187-1 | Security update for samba | 2021-09-22T13:09:41Z | 2021-09-22T13:09:41Z |
| suse-ru-2021:3185-1 | Recommended update for sssd | 2021-09-22T11:43:56Z | 2021-09-22T11:43:56Z |
| suse-su-2021:3184-1 | Security update for nodejs14 | 2021-09-22T11:06:01Z | 2021-09-22T11:06:01Z |
| suse-su-2021:3004-2 | Security update for libtpms | 2021-09-21T14:39:00Z | 2021-09-21T14:39:00Z |
| suse-su-2021:2966-2 | Security update for openssl-1_1 | 2021-09-21T14:38:54Z | 2021-09-21T14:38:54Z |
| suse-ru-2021:3115-2 | Recommended update for mozilla-nspr, mozilla-nss | 2021-09-21T14:38:27Z | 2021-09-21T14:38:27Z |
| suse-su-2021:2937-2 | Security update for libesmtp | 2021-09-21T14:38:11Z | 2021-09-21T14:38:11Z |
| suse-su-2021:3181-1 | Security update for xen | 2021-09-21T14:31:40Z | 2021-09-21T14:31:40Z |
| suse-su-2021:3180-1 | Security update for ghostscript | 2021-09-21T14:30:47Z | 2021-09-21T14:30:47Z |
| suse-su-2021:3179-1 | Security update for the Linux Kernel | 2021-09-21T14:28:58Z | 2021-09-21T14:28:58Z |
| suse-su-2021:3178-1 | Security update for the Linux Kernel | 2021-09-21T14:28:38Z | 2021-09-21T14:28:38Z |
| suse-su-2021:3177-1 | Security update for the Linux Kernel | 2021-09-21T14:28:24Z | 2021-09-21T14:28:24Z |
| suse-su-2021:3174-1 | Security update for grafana-piechart-panel | 2021-09-21T14:27:36Z | 2021-09-21T14:27:36Z |
| suse-su-2021:3170-1 | Security update for SUSE Manager Server 4.2 | 2021-09-20T15:26:33Z | 2021-09-20T15:26:33Z |
| suse-ru-2021:3162-1 | Recommended update for SUSE Manager 4.2.2 Release Notes | 2021-09-20T15:24:13Z | 2021-09-20T15:24:13Z |
| suse-su-2021:3151-1 | Security update for cobbler | 2021-09-20T15:21:44Z | 2021-09-20T15:21:44Z |
| suse-su-2021:3144-1 | Security update for openssl | 2021-09-20T05:58:04Z | 2021-09-20T05:58:04Z |
| suse-su-2021:14802-1 | Security update for openssl | 2021-09-18T15:14:56Z | 2021-09-18T15:14:56Z |
| suse-su-2021:14801-1 | Security update for openssl1 | 2021-09-18T15:13:59Z | 2021-09-18T15:13:59Z |
| suse-su-2021:3141-1 | Security update for xen | 2021-09-18T12:37:44Z | 2021-09-18T12:37:44Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-01791 | IBM Cognos Controller信息泄露漏洞(CNVD-2025-01791) | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01790 | IBM Cognos Controller文件上传漏洞 | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01789 | IBM Cognos Controller文件上传漏洞(CNVD-2025-01789) | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01788 | IBM Cognos Controller文件上传漏洞(CNVD-2025-01788) | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01787 | IBM Cognos Controller信息泄露漏洞(CNVD-2025-01787) | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01786 | IBM Cognos Controller存在未明漏洞 | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01785 | IBM Db2拒绝服务漏洞(CNVD-2025-01785) | 2024-11-28 | 2025-01-20 |
| cnvd-2025-01784 | IBM Db2拒绝服务漏洞(CNVD-2025-01784) | 2024-12-13 | 2025-01-20 |
| cnvd-2025-01783 | IBM Db2拒绝服务漏洞(CNVD-2025-01783) | 2024-12-13 | 2025-01-20 |
| cnvd-2025-01105 | 北京亚控科技发展有限公司开发中心存在未授权访问漏洞 | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01097 | 北京中庆现代技术股份有限公司教育云平台存在文件上传漏洞(CNVD-C-2024-945982) | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01096 | 北京中庆现代技术股份有限公司教育云平台存在文件上传漏洞(CNVD-C-2024-945978) | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01094 | 北京中庆现代技术股份有限公司教育云平台存在文件上传漏洞 | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01093 | 北京中庆现代技术股份有限公司教育云平台存在任意文件读取漏洞 | 2024-12-06 | 2025-01-20 |
| cnvd-2025-01601 | 上海上讯信息技术股份有限公司邮件安全防御系统存在目录遍历漏洞 | 2024-12-04 | 2025-01-18 |
| cnvd-2025-01586 | 北京中庆现代技术股份有限公司教育云平台存在逻辑缺陷漏洞 | 2024-12-04 | 2025-01-18 |
| cnvd-2025-02165 | D-Link DIR-816 A2 /goform/form2AdvanceSetup.cgi访问控制错误漏洞 | 2025-01-16 | 2025-01-17 |
| cnvd-2025-02164 | D-Link DIR-816 A2 /goform/form2IPQoSTcAdd访问控制错误漏洞 | 2025-01-16 | 2025-01-17 |
| cnvd-2025-02163 | D-Link DIR-816 A2 /goform/form2Dhcpd.cgi访问控制错误漏洞 | 2025-01-16 | 2025-01-17 |
| cnvd-2025-02162 | D-Link DIR-816 A2 /goform/form2LocalAclEditcfg.cgi访问控制错误漏洞 | 2025-01-16 | 2025-01-17 |
| cnvd-2025-02108 | D-Link DIR-878信息泄露漏洞 | 2025-01-17 | 2025-01-17 |
| cnvd-2025-01844 | Fortinet FortiDeceptor跨站脚本漏洞 | 2025-01-17 | 2025-01-17 |
| cnvd-2025-01829 | Adobe Photoshop数字错误漏洞 | 2025-01-17 | 2025-01-17 |
| cnvd-2025-01823 | Google Android wbrc_bt_dev_write函数越界写入漏洞 | 2025-01-16 | 2025-01-17 |
| cnvd-2025-01822 | Google Android prepare_response_locked函数输入验证错误漏洞 | 2025-01-16 | 2025-01-17 |
| cnvd-2025-01821 | Google Android GetCellInfoList函数越界读取漏洞 | 2025-01-16 | 2025-01-17 |
| cnvd-2025-01820 | Google Android DevmemValidateFlags函数越界写入漏洞 | 2025-01-16 | 2025-01-17 |
| cnvd-2025-01819 | Google Android cc_SendCcImsInfoIndMsg函数越界写入漏洞 | 2025-01-16 | 2025-01-17 |
| cnvd-2025-01814 | TOTOLINK A6000R action_reboot命令注入漏洞 | 2025-01-13 | 2025-01-17 |
| cnvd-2025-01813 | TOTOLINK A6000R enable_wsh命令注入漏洞 | 2025-01-13 | 2025-01-17 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2012-avi-440 | Vulnérabilité dans Microsoft Office | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-439 | Vulnérabilité dans les moteurs JScript et VBScript de Microsoft | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-438 | Vulnérabilité dans le noyau Windows | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-436 | Vulnérabilité dans Windows Remote Desktop Protocol | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-435 | Multiples vulnérabilités dans Internet Explorer | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-437 | Multiples vulnérabilités dans les composants réseau Microsoft Windows | 2012-08-14T00:00:00.000000 | 2012-08-14T00:00:00.000000 |
| certa-2012-avi-434 | Vulnérabilité dans libTIFF | 2012-08-14T00:00:00.000000 | 2012-08-14T00:00:00.000000 |
| certa-2012-avi-433 | Vulnérabilité dans Cisco IOS | 2012-08-14T00:00:00.000000 | 2012-08-14T00:00:00.000000 |
| certa-2012-avi-432 | Vulnérabilité dans Cisco Emergency Responder | 2012-08-14T00:00:00.000000 | 2012-08-14T00:00:00.000000 |
| certa-2012-avi-431 | Vulnérabilités dans les produits IBM WebSphere | 2012-08-14T00:00:00.000000 | 2012-08-14T00:00:00.000000 |
| certa-2012-avi-430 | Vulnérabilités dans PHP | 2012-08-14T00:00:00.000000 | 2012-08-14T00:00:00.000000 |
| certa-2012-avi-429 | Vulnérabilité dans Oracle Database Server | 2012-08-14T00:00:00.000000 | 2012-08-14T00:00:00.000000 |
| certa-2012-avi-428 | Vulnérabilité dans Xen | 2012-08-13T00:00:00.000000 | 2012-08-13T00:00:00.000000 |
| certa-2012-avi-427 | Vulnérabilités dans Google Chrome | 2012-08-10T00:00:00.000000 | 2012-08-10T00:00:00.000000 |
| certa-2012-avi-426 | Vulnérabilité dans EMC Iomega StorCenter | 2012-08-09T00:00:00.000000 | 2012-08-09T00:00:00.000000 |
| certa-2012-avi-425 | Vulnérabilité des drivers NVidia | 2012-08-08T00:00:00.000000 | 2012-08-08T00:00:00.000000 |
| certa-2012-avi-424 | Vulnérabilité dans Siemens Synco OZW | 2012-08-08T00:00:00.000000 | 2012-08-08T00:00:00.000000 |
| certa-2012-avi-423 | Vulnérabilité dans HP Network Node Manager I | 2012-08-07T00:00:00.000000 | 2012-08-07T00:00:00.000000 |
| certa-2012-avi-421 | Vulnérabilité dans Adobe Flash Player | 2012-08-06T00:00:00.000000 | 2012-08-06T00:00:00.000000 |
| certa-2012-avi-252 | Vulnérabilité dans Adobe Flash Player | 2012-05-07T00:00:00.000000 | 2012-08-06T00:00:00.000000 |
| certa-2012-avi-176 | Vulnérabilités dans Adobe Flash Player | 2012-03-29T00:00:00.000000 | 2012-08-06T00:00:00.000000 |
| certa-2012-avi-115 | Vulnérabilités dans Adobe Flash Player | 2012-03-06T00:00:00.000000 | 2012-08-06T00:00:00.000000 |
| certa-2012-avi-084 | Vulnérabilités dans Adobe Flash Player | 2012-02-17T00:00:00.000000 | 2012-08-06T00:00:00.000000 |
| certa-2012-avi-420 | Vulnérabilités dans Opera | 2012-08-03T00:00:00.000000 | 2012-08-03T00:00:00.000000 |
| certa-2012-avi-419 | Multiples vulnérabilités dans IBM AIX | 2012-08-03T00:00:00.000000 | 2012-08-03T00:00:00.000000 |
| certa-2012-avi-418 | Vulnérablités dans IBM Eclipse Help System | 2012-08-03T00:00:00.000000 | 2012-08-03T00:00:00.000000 |
| certa-2012-avi-417 | Vulnérabilités dans Citrix Access Gateway | 2012-08-03T00:00:00.000000 | 2012-08-03T00:00:00.000000 |
| certa-2012-avi-416 | Vulnérabilités dans Kerberos | 2012-08-02T00:00:00.000000 | 2012-08-02T00:00:00.000000 |
| certa-2012-avi-415 | Vulnérabilités dans Google Chrome | 2012-08-02T00:00:00.000000 | 2012-08-02T00:00:00.000000 |
| certa-2012-avi-414 | Vulnérabilités dans IBM Rational Directory Server | 2012-08-01T00:00:00.000000 | 2012-08-01T00:00:00.000000 |