Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-14384 |
4.3 (3.1)
|
All in One SEO – Powerful SEO Plugin to Boost SEO Rank… |
smub |
All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic |
2026-01-16T04:44:36.103Z | 2026-01-16T14:10:21.442Z |
| CVE-2026-0858 |
6.1 (3.1)
|
Versions of the package net.sourceforge.plantuml:… |
n/a |
net.sourceforge.plantuml:plantuml |
2026-01-16T05:00:06.808Z | 2026-01-16T14:10:00.485Z |
| CVE-2025-14435 |
6.8 (3.1)
|
Application-Level DoS via infinite re-render loop in u… |
Mattermost |
Mattermost |
2026-01-16T11:25:35.817Z | 2026-01-16T14:09:00.429Z |
| CVE-2025-14510 |
8.1 (3.1)
9.2 (4.0)
|
ABB Ability OPTIMAX Authentication Bypass in Single-Sign On |
ABB |
ABB Ability OPTIMAX |
2026-01-16T13:02:30.774Z | 2026-01-16T14:08:21.597Z |
| CVE-2026-23769 |
6.5 (3.1)
|
lucy-xss-filter before commit e5826c0 allows an a… |
NAVER |
lucy-xss-filter |
2026-01-16T05:23:56.494Z | 2026-01-16T14:05:51.238Z |
| CVE-2026-1022 |
8.7 (4.0)
7.5 (3.1)
|
Gotac|Statistics Database System - Arbitrary File Read |
Gotac |
Statistics Database System |
2026-01-16T03:33:46.923Z | 2026-01-16T14:04:31.040Z |
| CVE-2026-1023 |
8.7 (4.0)
7.5 (3.1)
|
Gotac|Statistics Database System - Missing Authentication |
Gotac |
Statistics Database System |
2026-01-16T03:43:02.419Z | 2026-01-16T14:04:01.712Z |
| CVE-2025-14982 |
4.3 (3.1)
|
Booking Calendar <= 10.14.11 - Missing Authorization t… |
wpdevelop |
Booking Calendar |
2026-01-16T04:44:33.474Z | 2026-01-16T14:03:32.703Z |
| CVE-2026-0823 |
N/A
|
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accidental usage. | N/A | N/A | 2026-01-16T14:03:21.731Z | |
| CVE-2025-15527 |
4.3 (3.1)
|
WP Recipe Maker <= 10.2.2 - Insecure Direct Object Ref… |
brechtvds |
WP Recipe Maker |
2026-01-16T04:44:33.994Z | 2026-01-16T14:02:58.723Z |
| CVE-2025-15526 |
5.3 (3.1)
|
Fancy Product Designer | WooCommerce WordPress <= 6.4.… |
radykal |
Fancy Product Designer |
2026-01-16T04:44:34.337Z | 2026-01-16T14:02:37.573Z |
| CVE-2025-12641 |
6.5 (3.1)
|
Awesome Support – WordPress HelpDesk & Support Plugin … |
awesomesupport |
Awesome Support – WordPress HelpDesk & Support Plugin |
2026-01-16T04:44:34.683Z | 2026-01-16T14:02:11.686Z |
| CVE-2025-12957 |
8.8 (3.1)
|
All-in-One Video Gallery <= 4.5.7 - Authenticated (Aut… |
plugins360 |
All-in-One Video Gallery |
2026-01-16T04:44:35.026Z | 2026-01-16T14:01:40.735Z |
| CVE-2026-0975 |
7.8 (3.1)
|
DIAView - Command Injection Vulnerability |
Delta Electronics |
DIAView |
2026-01-16T06:01:59.903Z | 2026-01-16T14:00:54.208Z |
| CVE-2026-0916 |
6.4 (3.1)
|
Related Posts by Taxonomy <= 2.7.6 - Authenticated (Co… |
keesiemeijer |
Related Posts by Taxonomy |
2026-01-16T06:43:19.795Z | 2026-01-16T13:59:41.136Z |
| CVE-2026-0942 |
5.3 (3.1)
|
Rede Itaú for WooCommerce — Payment PIX, Credit Card a… |
linknacional |
Rede Itaú for WooCommerce — Payment PIX, Credit Card and Debit |
2026-01-16T06:43:20.555Z | 2026-01-16T13:58:49.102Z |
| CVE-2026-0939 |
5.3 (3.1)
|
Rede Itaú for WooCommerce — Payment PIX, Credit Card a… |
linknacional |
Rede Itaú for WooCommerce — Payment PIX, Credit Card and Debit |
2026-01-16T06:43:20.971Z | 2026-01-16T13:57:52.515Z |
| CVE-2025-14853 |
4.3 (3.1)
|
LEAV Last Email Address Validator <= 1.7.1 - Cross-Sit… |
smings |
LEAV Last Email Address Validator |
2026-01-16T06:43:21.401Z | 2026-01-16T13:56:51.236Z |
| CVE-2025-14793 |
5 (3.1)
|
DK PDF – WordPress PDF Generator <= 2.3.0 - Authentica… |
torstenbulk |
DK PDF – WordPress PDF Generator |
2026-01-16T06:43:21.806Z | 2026-01-16T13:51:11.988Z |
| CVE-2026-1003 |
4.3 (3.1)
|
GetGenie – AI Content Writer with Keyword Research & S… |
roxnor |
GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools |
2026-01-16T07:23:09.127Z | 2026-01-16T13:50:30.935Z |
| CVE-2025-14375 |
6.1 (3.1)
|
RSS Aggregator – RSS Import, News Feeds, Feed to Post,… |
rebelcode |
RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging |
2026-01-16T07:23:09.745Z | 2026-01-16T13:48:29.591Z |
| CVE-2024-1132 |
8.1 (3.1)
|
Keycloak: path transversal in redirection validation |
|
|
2024-04-17T13:21:19.130Z | 2026-01-16T13:47:13.836Z |
| CVE-2026-20759 |
8.8 (3.0)
8.7 (4.0)
|
OS Command Injection vulnerability exists in mult… |
TOA Corporation |
Multiple Network Cameras TRIFORA 3 series |
2026-01-16T08:16:45.444Z | 2026-01-16T13:45:56.900Z |
| CVE-2026-20894 |
4.8 (3.0)
4.8 (4.0)
|
Cross-site scripting vulnerability exists in mult… |
TOA Corporation |
Multiple Network Cameras TRIFORA 3 series |
2026-01-16T08:16:57.696Z | 2026-01-16T13:45:31.792Z |
| CVE-2026-22876 |
6.5 (3.0)
7.1 (4.0)
|
Path Traversal vulnerability exists in multiple N… |
TOA Corporation |
Multiple Network Cameras TRIFORA 3 series |
2026-01-16T08:17:13.902Z | 2026-01-16T13:45:02.768Z |
| CVE-2026-1004 |
5.3 (3.1)
|
Essential Addons for Elementor <= 6.5.5 - Missing Auth… |
wpdevteam |
Essential Addons for Elementor – Popular Elementor Templates & Widgets |
2026-01-16T08:23:37.542Z | 2026-01-16T13:44:34.348Z |
| CVE-2025-10145 |
N/A
|
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-7073. Reason: This candidate is a reservation duplicate of CVE-2023-7073. Notes: All CVE users should reference CVE-2023-7073 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | N/A | N/A | 2025-10-28T05:27:29.647Z | 2026-01-16T13:38:47.020Z |
| CVE-2024-3677 |
6.4 (3.1)
|
Ultimate 410 Gone Status Code <= 1.1.4 - Authenticated… |
tinyweb |
Ultimate 410 Gone Status Code |
2024-05-02T16:52:16.923Z | 2026-01-16T13:27:01.163Z |
| CVE-2025-13558 |
5.4 (3.1)
|
Blog2Social <= 8.7.0 - Missing Authorization to Authen… |
pr-gateway |
Blog2Social: Social Media Auto Post & Scheduler |
2025-11-25T04:37:59.997Z | 2026-01-16T13:14:41.204Z |
| CVE-2026-0913 |
6.4 (3.1)
|
User Submitted Posts <= 20260110 - Authenticated (Cont… |
specialk |
User Submitted Posts – Enable Users to Submit Posts from the Front End |
2026-01-16T08:23:38.119Z | 2026-01-16T13:10:40.814Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-54722 |
7.1 (3.1)
|
WordPress WooTour plugin <= 3.6.3 - Cross Site Scripti… |
Ex-Themes |
WooTour |
2025-11-06T15:54:16.991Z | 2026-01-20T14:28:09.895Z |
| CVE-2025-54721 |
7.1 (3.1)
|
WordPress Resca theme <= 3.0.2 - Cross Site Scripting … |
ThimPress |
Resca |
2025-11-06T15:54:16.209Z | 2026-01-20T14:28:09.884Z |
| CVE-2025-54719 |
8.8 (3.1)
|
WordPress Yogi - Health Beauty & Yoga Theme <= 2.9.2 -… |
NooTheme |
Yogi - Health Beauty & Yoga |
2025-11-06T15:54:15.371Z | 2026-01-20T14:28:09.932Z |
| CVE-2025-54718 |
7.1 (3.1)
|
WordPress Yogi - Health Beauty & Yoga theme <= 2.9.2 -… |
NooTheme |
Yogi - Health Beauty & Yoga |
2025-11-06T15:54:14.634Z | 2026-01-20T14:28:09.933Z |
| CVE-2025-54711 |
7.1 (3.1)
|
WordPress Info Cards Plugin <= 1.0.11 - Broken Access … |
bPlugins |
Info Cards |
2025-11-06T15:54:14.029Z | 2026-01-20T14:28:09.984Z |
| CVE-2025-54045 |
4.3 (3.1)
|
WordPress CM On Demand Search And Replace plugin <= 1.… |
CreativeMindsSolutions |
CM On Demand Search And Replace |
2025-12-16T08:12:46.351Z | 2026-01-20T14:28:09.965Z |
| CVE-2025-54005 |
4.3 (3.1)
|
WordPress SKT Page Builder plugin <= 4.9 - Broken Acce… |
sonalsinha21 |
SKT Page Builder |
2025-12-16T08:12:45.965Z | 2026-02-05T16:27:33.105Z |
| CVE-2025-54004 |
2.6 (3.1)
|
WordPress WCFM – Frontend Manager for WooCommerce plug… |
WC Lovers |
WCFM – Frontend Manager for WooCommerce |
2025-12-16T08:12:45.704Z | 2026-02-05T16:27:50.467Z |
| CVE-2025-53586 |
9.8 (3.1)
|
WordPress WeMusic Theme <= 1.9.1 - PHP Object Injectio… |
NooTheme |
WeMusic |
2025-11-06T15:54:13.387Z | 2026-01-20T14:28:09.916Z |
| CVE-2025-53585 |
7.1 (3.1)
|
WordPress WeMusic theme <= 1.9.1 - Cross Site Scriptin… |
NooTheme |
WeMusic |
2025-11-06T15:54:12.787Z | 2026-01-20T14:28:10.097Z |
| CVE-2025-53574 |
6.1 (3.1)
|
WordPress Doliconnect Plugin <= 9.3.2 - Cross Site Scr… |
ptibogxiv |
Doliconnect |
2025-11-06T15:54:11.607Z | 2026-01-20T14:28:09.876Z |
| CVE-2025-53573 |
7.1 (3.1)
|
WordPress Epic Review Plugin <= 1.0.2 - Cross Site Scr… |
jegtheme |
Epic Review |
2025-11-06T15:54:10.426Z | 2026-01-20T14:28:09.871Z |
| CVE-2025-53453 |
8.2 (3.1)
|
WordPress Hygia theme <= 1.16 - Local File Inclusion v… |
axiomthemes |
Hygia |
2025-12-18T07:21:49.127Z | 2026-02-03T16:05:11.528Z |
| CVE-2025-53449 |
8.1 (3.1)
|
WordPress Convex theme <= 1.11 - Local File Inclusion … |
axiomthemes |
Convex |
2025-12-18T07:21:48.947Z | 2026-01-20T14:28:09.907Z |
| CVE-2025-53448 |
8.1 (3.1)
|
WordPress Rally theme <= 1.1 - Local File Inclusion vu… |
axiomthemes |
Rally |
2025-12-18T07:21:48.769Z | 2026-01-20T14:28:09.880Z |
| CVE-2025-53447 |
8.1 (3.1)
|
WordPress Assembly theme <= 1.1 - Local File Inclusion… |
axiomthemes |
Assembly |
2025-12-18T07:21:48.588Z | 2026-01-20T14:28:09.843Z |
| CVE-2025-53446 |
8.1 (3.1)
|
WordPress Beautique theme <= 1.5 - Local File Inclusio… |
axiomthemes |
Beautique |
2025-12-18T07:21:48.403Z | 2026-01-20T14:28:09.895Z |
| CVE-2025-53445 |
8.1 (3.1)
|
WordPress Catwalk theme <= 1.4 - Local File Inclusion … |
axiomthemes |
Catwalk |
2025-12-18T07:21:48.218Z | 2026-01-20T14:28:09.892Z |
| CVE-2025-53443 |
8.1 (3.1)
|
WordPress Smash theme <= 1.7 - Local File Inclusion vu… |
axiomthemes |
Smash |
2025-12-18T07:21:48.033Z | 2026-01-20T14:28:09.805Z |
| CVE-2025-53442 |
8.1 (3.1)
|
WordPress Rentic theme <= 1.1 - Local File Inclusion v… |
axiomthemes |
Rentic |
2025-12-18T07:21:47.842Z | 2026-01-20T14:28:09.727Z |
| CVE-2025-53441 |
8.1 (3.1)
|
WordPress Greeny theme <= 2.6 - Local File Inclusion v… |
axiomthemes |
Greeny |
2025-12-18T07:21:47.651Z | 2026-01-20T14:28:09.749Z |
| CVE-2025-53439 |
8.1 (3.1)
|
WordPress Harper theme <= 1.13 - Local File Inclusion … |
axiomthemes |
Harper |
2025-12-18T07:21:47.455Z | 2026-01-20T14:28:09.777Z |
| CVE-2025-53438 |
8.1 (3.1)
|
WordPress FitLine theme <= 1.6 - Local File Inclusion … |
axiomthemes |
FitLine |
2025-12-18T07:21:47.228Z | 2026-01-20T14:28:09.672Z |
| CVE-2025-53437 |
8.1 (3.1)
|
WordPress Greenorganic theme <= 2.45 - Local File Incl… |
ApusTheme |
Greenorganic |
2025-12-18T07:21:47.030Z | 2026-01-20T14:28:09.573Z |
| CVE-2025-53436 |
8.1 (3.1)
|
WordPress Monki theme <= 2.0.4 - Local File Inclusion … |
BZOTheme |
Monki |
2025-12-18T07:21:46.801Z | 2026-01-20T14:28:09.817Z |
| CVE-2025-53435 |
8.1 (3.1)
|
WordPress Plan My Day theme <= 1.1.13 - Local File Inc… |
axiomthemes |
Plan My Day |
2025-12-18T07:21:46.620Z | 2026-01-20T14:28:09.726Z |
| CVE-2025-53434 |
8.1 (3.1)
|
WordPress ChildHope theme <= 1.1.8 - Local File Inclus… |
AncoraThemes |
ChildHope |
2025-12-18T07:21:46.434Z | 2026-01-20T14:28:09.778Z |
| CVE-2025-53433 |
9.8 (3.1)
|
WordPress EasyEat theme <= 1.9.0 - Local File Inclusio… |
AncoraThemes |
EasyEat |
2025-12-18T07:21:46.182Z | 2026-01-20T14:28:09.496Z |
| CVE-2025-53432 |
8.1 (3.1)
|
WordPress Echo theme <= 1.15.0 - Local File Inclusion … |
AncoraThemes |
Echo |
2025-12-18T07:21:45.954Z | 2026-01-20T14:28:09.429Z |
| CVE-2025-53431 |
8.1 (3.1)
|
WordPress Emberlyn theme <= 1.3.1 - Local File Inclusi… |
AncoraThemes |
Emberlyn |
2025-12-18T07:21:45.771Z | 2026-01-20T14:28:09.478Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-54722 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:15:58.277 | 2026-01-20T15:17:00.967 |
| fkie_cve-2025-54721 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:15:58.053 | 2026-01-20T15:17:00.827 |
| fkie_cve-2025-54719 | Deserialization of Untrusted Data vulnerability in NooTheme Yogi - Health Beauty & Yoga noo-yogi al… | 2025-11-06T16:15:57.837 | 2026-01-20T15:17:00.693 |
| fkie_cve-2025-54718 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:15:57.677 | 2026-01-20T15:17:00.543 |
| fkie_cve-2025-54711 | Missing Authorization vulnerability in bPlugins Info Cards info-cards allows Accessing Functionalit… | 2025-11-06T16:15:57.523 | 2026-01-20T15:17:00.403 |
| fkie_cve-2025-54045 | Missing Authorization vulnerability in CreativeMindsSolutions CM On Demand Search And Replace cm-on… | 2025-12-16T09:15:52.563 | 2026-01-20T15:16:59.933 |
| fkie_cve-2025-54005 | Missing Authorization vulnerability in sonalsinha21 SKT Page Builder skt-builder allows Exploiting … | 2025-12-16T09:15:52.440 | 2026-01-20T15:16:59.753 |
| fkie_cve-2025-54004 | Missing Authorization vulnerability in WC Lovers WCFM – Frontend Manager for WooCommerce wc-fronten… | 2025-12-16T09:15:52.283 | 2026-01-20T15:16:59.613 |
| fkie_cve-2025-53586 | Deserialization of Untrusted Data vulnerability in NooTheme WeMusic noo-wemusic allows Object Injec… | 2025-11-06T16:15:57.373 | 2026-01-20T15:16:59.010 |
| fkie_cve-2025-53585 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:15:57.227 | 2026-01-20T15:16:58.880 |
| fkie_cve-2025-53574 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:15:57.080 | 2026-01-20T15:16:58.750 |
| fkie_cve-2025-53573 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:15:56.930 | 2026-01-20T15:16:58.610 |
| fkie_cve-2025-53453 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:55.530 | 2026-01-20T15:16:58.333 |
| fkie_cve-2025-53449 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:55.403 | 2026-01-20T15:16:58.197 |
| fkie_cve-2025-53448 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:55.270 | 2026-01-20T15:16:58.050 |
| fkie_cve-2025-53447 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:55.140 | 2026-01-20T15:16:57.907 |
| fkie_cve-2025-53446 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:55.017 | 2026-01-20T15:16:57.767 |
| fkie_cve-2025-53445 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:54.887 | 2026-01-20T15:16:57.630 |
| fkie_cve-2025-53443 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:54.760 | 2026-01-20T15:16:57.477 |
| fkie_cve-2025-53442 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:54.633 | 2026-01-20T15:16:57.340 |
| fkie_cve-2025-53441 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:54.507 | 2026-01-20T15:16:57.200 |
| fkie_cve-2025-53439 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:54.380 | 2026-01-20T15:16:57.043 |
| fkie_cve-2025-53438 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:54.247 | 2026-01-20T15:16:56.883 |
| fkie_cve-2025-53437 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:54.117 | 2026-01-20T15:16:56.737 |
| fkie_cve-2025-53436 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:53.983 | 2026-01-20T15:16:56.403 |
| fkie_cve-2025-53435 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:53.853 | 2026-01-20T15:16:56.263 |
| fkie_cve-2025-53434 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:53.710 | 2026-01-20T15:16:56.130 |
| fkie_cve-2025-53433 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:53.563 | 2026-01-20T15:16:55.997 |
| fkie_cve-2025-53432 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:53.440 | 2026-01-20T15:16:55.870 |
| fkie_cve-2025-53431 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:53.303 | 2026-01-20T15:16:55.740 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-cv8x-jq62-5vm3 |
6.5 (3.1)
7.1 (4.0)
|
QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a SQL Injection vulnerability, … | 2026-01-05T09:30:19Z | 2026-01-05T09:30:19Z |
| ghsa-cgwf-m37v-c9cx |
6.5 (3.1)
7.1 (4.0)
|
QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a Missing Authorization vulnera… | 2026-01-05T09:30:19Z | 2026-01-05T09:30:19Z |
| ghsa-6wc2-45q5-vfvr |
8.8 (3.1)
7.4 (4.0)
|
A vulnerability has been found in UTT 进取 520W 1.7.7-180627. This issue affects the function strcpy … | 2026-01-05T09:30:19Z | 2026-01-05T09:30:19Z |
| ghsa-42r3-w28v-2547 |
4.3 (3.1)
5.3 (4.0)
|
QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a Path Traversal vulnerability,… | 2026-01-05T09:30:19Z | 2026-01-05T09:30:19Z |
| ghsa-fr6p-v5vw-96vx |
8.8 (3.1)
7.4 (4.0)
|
A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is t… | 2026-01-05T06:30:28Z | 2026-01-05T06:30:28Z |
| ghsa-8vf6-8hqj-7qr2 |
8.8 (3.1)
7.4 (4.0)
|
A vulnerability was detected in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the f… | 2026-01-05T06:30:28Z | 2026-01-05T06:30:28Z |
| ghsa-3rg8-47q7-qh6r |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability was determined in bg5sbk MiniCMS up to 1.8. This affects an unknown function of the… | 2026-01-05T06:30:27Z | 2026-01-05T06:30:28Z |
| ghsa-q273-h833-fw3m |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability was found in bg5sbk MiniCMS up to 1.8. The impacted element is an unknown function … | 2026-01-05T06:30:27Z | 2026-01-05T06:30:27Z |
| ghsa-p6hr-wcj3-8rqw |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability has been found in bg5sbk MiniCMS up to 1.8. The affected element is an unknown func… | 2026-01-05T06:30:27Z | 2026-01-05T06:30:27Z |
| ghsa-c6qr-xj7q-ppxr |
6.5 (3.1)
5.5 (4.0)
|
A flaw has been found in bg5sbk MiniCMS up to 1.8. Impacted is the function delete_page of the file… | 2026-01-05T06:30:27Z | 2026-01-05T06:30:27Z |
| ghsa-v676-f8gm-92r9 |
7.5 (3.1)
|
1. A cookie is set using the `secure` keyword for `https://target` 2. curl is redirected to or othe… | 2025-09-12T06:30:26Z | 2026-01-05T03:30:27Z |
| ghsa-v2jh-chh6-cf52 |
2.4 (3.1)
1.9 (4.0)
|
A weakness has been identified in xnx3 wangmarket up to 4.9. This affects the function variableList… | 2026-01-05T03:30:27Z | 2026-01-05T03:30:27Z |
| ghsa-mp3x-hgj4-gx83 |
2.4 (3.1)
1.9 (4.0)
|
A security flaw has been discovered in xnx3 wangmarket up to 4.9. Affected by this issue is some un… | 2026-01-05T03:30:27Z | 2026-01-05T03:30:27Z |
| ghsa-mhxp-2mqc-j942 |
6.3 (3.1)
5.3 (4.0)
|
A vulnerability was found in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. … | 2026-01-05T03:30:27Z | 2026-01-05T03:30:27Z |
| ghsa-3qff-j79f-jf26 |
5.4 (3.1)
5.3 (4.0)
|
A vulnerability was determined in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d2… | 2026-01-05T03:30:27Z | 2026-01-05T03:30:27Z |
| ghsa-2wmv-mm4p-p4mx |
6.3 (3.1)
2.1 (4.0)
|
A security vulnerability has been detected in milvus up to 2.6.7. This vulnerability affects the fu… | 2026-01-05T03:30:27Z | 2026-01-05T03:30:27Z |
| ghsa-c5cp-vx83-jhqx |
8.8 (4.0)
|
Langflow Missing Authentication on Critical API Endpoints | 2026-01-02T21:11:50Z | 2026-01-05T01:01:41Z |
| ghsa-p7p7-fp6f-jwrr |
7.3 (3.1)
5.5 (4.0)
|
A flaw has been found in Seeyon Zhiyuan OA Web Application System up to 20251223. The impacted elem… | 2026-01-05T00:30:16Z | 2026-01-05T00:30:16Z |
| ghsa-gpmm-h5qv-gcpf |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability has been found in Seeyon Zhiyuan OA Web Application System up to 20251223. This aff… | 2026-01-05T00:30:16Z | 2026-01-05T00:30:16Z |
| ghsa-8fc9-vxf4-v7wm |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability was found in code-projects Online Product Reservation System 1.0. This affects an u… | 2026-01-04T15:30:21Z | 2026-01-04T15:30:21Z |
| ghsa-x9w7-fj93-8rc4 |
4.7 (3.1)
2.0 (4.0)
|
A vulnerability was determined in CRMEB up to 5.6.1. This vulnerability affects unknown code of the… | 2026-01-04T12:30:21Z | 2026-01-04T12:30:21Z |
| ghsa-g4c4-3wvv-75rq |
6.3 (3.1)
2.1 (4.0)
|
A flaw has been found in code-projects Online Product Reservation System 1.0. Affected by this vuln… | 2026-01-04T12:30:21Z | 2026-01-04T12:30:21Z |
| ghsa-g3px-2f97-p7gh |
4.7 (3.1)
2.0 (4.0)
|
A vulnerability was identified in CRMEB up to 5.6.1. This issue affects some unknown processing of … | 2026-01-04T12:30:21Z | 2026-01-04T12:30:21Z |
| ghsa-5pq5-xxph-mrwm |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability has been found in code-projects Online Product Reservation System 1.0. Affected by … | 2026-01-04T12:30:21Z | 2026-01-04T12:30:21Z |
| ghsa-57vq-6p22-fhvx |
4.9 (3.1)
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-01-04T12:30:21Z | 2026-01-04T12:30:21Z |
| ghsa-v45g-9jff-2vqr |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability was detected in code-projects Online Product Reservation System 1.0. Affected is an… | 2026-01-04T09:30:26Z | 2026-01-04T09:30:26Z |
| ghsa-823v-5fjj-p7fm |
7.3 (3.1)
5.5 (4.0)
|
A security vulnerability has been detected in code-projects Online Product Reservation System 1.0. … | 2026-01-04T06:30:26Z | 2026-01-04T06:30:26Z |
| ghsa-p3fv-jq23-qg6f |
6.3 (3.1)
2.1 (4.0)
|
A weakness has been identified in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. … | 2026-01-04T03:30:27Z | 2026-01-04T03:30:27Z |
| ghsa-qv6w-cq5f-xpvw |
5.3 (3.1)
6.9 (4.0)
|
Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains an information disclosure vulnera… | 2026-01-04T00:30:17Z | 2026-01-04T00:30:17Z |
| ghsa-5f5h-xp93-w647 |
6.5 (3.1)
6.9 (4.0)
|
Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains a broken access control vulnerabi… | 2026-01-04T00:30:17Z | 2026-01-04T00:30:17Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-26699 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix… | 2024-02-20T06:02:29.067074Z |
| gsd-2024-26877 | In the Linux kernel, the following vulnerability has been resolved: crypto: xilinx - cal… | 2024-02-20T06:02:29.066779Z |
| gsd-2024-26661 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add… | 2024-02-20T06:02:29.066483Z |
| gsd-2024-26607 | In the Linux kernel, the following vulnerability has been resolved: drm/bridge: sii902x:… | 2024-02-20T06:02:29.065816Z |
| gsd-2024-26561 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.065469Z |
| gsd-2024-26620 | In the Linux kernel, the following vulnerability has been resolved: s390/vfio-ap: always… | 2024-02-20T06:02:29.065092Z |
| gsd-2024-26692 | In the Linux kernel, the following vulnerability has been resolved: smb: Fix regression … | 2024-02-20T06:02:29.064798Z |
| gsd-2024-26911 | In the Linux kernel, the following vulnerability has been resolved: drm/buddy: Fix alloc… | 2024-02-20T06:02:29.064197Z |
| gsd-2024-26489 | A cross-site scripting (XSS) vulnerability in the Addon JD Flusity 'Social block links' m… | 2024-02-20T06:02:29.063879Z |
| gsd-2024-26966 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.063281Z |
| gsd-2024-26485 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.062371Z |
| gsd-2024-26696 | In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix hang in … | 2024-02-20T06:02:29.062070Z |
| gsd-2024-26334 | swftools v0.9.2 was discovered to contain a segmentation violation via the function compi… | 2024-02-20T06:02:29.061423Z |
| gsd-2024-26519 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.061180Z |
| gsd-2024-26811 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate payl… | 2024-02-20T06:02:29.059850Z |
| gsd-2024-26526 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.059548Z |
| gsd-2024-26370 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.059245Z |
| gsd-2024-26491 | A cross-site scripting (XSS) vulnerability in the Addon JD Flusity 'Media Gallery with de… | 2024-02-20T06:02:29.058993Z |
| gsd-2024-26543 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.058613Z |
| gsd-2024-26979 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:29.057884Z |
| gsd-2024-1634 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:28.033429Z |
| gsd-2024-1635 | A vulnerability was found in Undertow. This vulnerability impacts a server that supports … | 2024-02-20T06:02:28.028758Z |
| gsd-2024-1629 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:28.021529Z |
| gsd-2024-1623 | Insufficient session timeout vulnerability in the FAST3686 V2 Vodafone router from Sagemc… | 2024-02-20T06:02:28.020921Z |
| gsd-2024-1648 | electron-pdf version 20.0.0 allows an external attacker to remotely obtain arbitrary loc… | 2024-02-20T06:02:28.018808Z |
| gsd-2024-1637 | The 360 Javascript Viewer plugin for WordPress is vulnerable to unauthorized modification… | 2024-02-20T06:02:28.014834Z |
| gsd-2024-1617 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:28.013310Z |
| gsd-2024-1612 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:28.000809Z |
| gsd-2024-1653 | The Categorify plugin for WordPress is vulnerable to unauthorized modification of data du… | 2024-02-20T06:02:27.997544Z |
| gsd-2024-1639 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-20T06:02:27.995052Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-184749 | Malicious code in one-kat-ibudaafrufdaca (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184748 | Malicious code in one-kat-ibuafrfdaca (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184747 | Malicious code in one-kat-ibaa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184746 | Malicious code in one-kat-iba (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184745 | Malicious code in one-kat-ia (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184744 | Malicious code in one-kat-fidulgaucfav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184743 | Malicious code in one-kat-fidulav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184742 | Malicious code in one-kat-fidulafav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184741 | Malicious code in one-kat-fidlav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184740 | Malicious code in oloc-yg-uti (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184739 | Malicious code in oloc-yg-uthi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184738 | Malicious code in oloc-yg-uthgai (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184737 | Malicious code in oloc-yg-uhiti (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184736 | Malicious code in oloc-yg-uhitaggfadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184735 | Malicious code in oloc-yg-uhitaggafadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184734 | Malicious code in oloc-yg-uhitaggadusafadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184733 | Malicious code in oloc-yg-uhitaggadufadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184732 | Malicious code in oloc-yg-uhitaggadtusafadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184731 | Malicious code in oloc-yg-uhitaggadatusafadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184730 | Malicious code in oloc-yg-uhitafi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184729 | Malicious code in oloc-yg-uhitafdi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184728 | Malicious code in oloc-uyg-ui (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184727 | Malicious code in oloc-uyg-uhitaggafadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184726 | Malicious code in oloc-uyg-uhitaggadtusafadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184725 | Malicious code in oloc-uyg-uhitaggadafadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184724 | Malicious code in oloc-uyg-uhitaggaafadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184723 | Malicious code in oloc-uyg-uhitagfadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184722 | Malicious code in oloc-uyg-uhifadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184721 | Malicious code in oloc-uyg-uhiagfadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184720 | Malicious code in oloc-uyg-uhiafadi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:4420 | Red Hat Security Advisory: virt:rhel and virt-devel:rhel security update | 2024-07-09T10:20:57+00:00 | 2025-11-21T19:05:45+00:00 |
| rhsa-2024:4419 | Red Hat Security Advisory: edk2 security update | 2024-07-09T10:02:47+00:00 | 2025-11-21T19:05:45+00:00 |
| rhsa-2024:4418 | Red Hat Security Advisory: less security update | 2024-07-09T10:04:57+00:00 | 2025-11-21T19:05:44+00:00 |
| rhsa-2024:4417 | Red Hat Security Advisory: libreswan security update | 2024-07-09T10:02:47+00:00 | 2025-11-21T19:05:44+00:00 |
| rhsa-2024:4416 | Red Hat Security Advisory: less security update | 2024-07-09T10:03:01+00:00 | 2025-11-21T19:05:43+00:00 |
| rhsa-2024:4415 | Red Hat Security Advisory: kernel security and bug fix update | 2024-07-09T09:24:52+00:00 | 2025-11-21T19:05:42+00:00 |
| rhsa-2024:4413 | Red Hat Security Advisory: pki-core security update | 2024-07-09T09:23:17+00:00 | 2025-11-21T19:05:42+00:00 |
| rhsa-2024:4412 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2024-07-09T09:23:17+00:00 | 2025-11-21T19:05:42+00:00 |
| rhsa-2024:4411 | Red Hat Security Advisory: booth security update | 2024-07-09T09:23:47+00:00 | 2025-11-21T19:05:40+00:00 |
| rhsa-2024:4409 | Red Hat Security Advisory: linux-firmware security update | 2024-07-09T08:57:38+00:00 | 2025-11-21T19:05:40+00:00 |
| rhsa-2024:4408 | Red Hat Security Advisory: tpm2-tss security update | 2024-07-09T08:53:17+00:00 | 2025-11-21T19:05:40+00:00 |
| rhsa-2024:4400 | Red Hat Security Advisory: booth security update | 2024-07-09T08:50:52+00:00 | 2025-11-21T19:05:40+00:00 |
| rhsa-2024:4406 | Red Hat Security Advisory: python3 security update | 2024-07-09T08:59:52+00:00 | 2025-11-21T19:05:37+00:00 |
| rhsa-2024:4403 | Red Hat Security Advisory: pki-core security update | 2024-07-09T08:55:46+00:00 | 2025-11-21T19:05:36+00:00 |
| rhsa-2024:4377 | Red Hat Security Advisory: libreswan security update | 2024-07-08T13:55:29+00:00 | 2025-11-21T19:05:30+00:00 |
| rhsa-2024:4373 | Red Hat Security Advisory: virt:rhel and virt-devel:rhel security update | 2024-07-08T14:38:09+00:00 | 2025-11-21T19:05:29+00:00 |
| rhsa-2024:4376 | Red Hat Security Advisory: libreswan security update | 2024-07-08T14:36:14+00:00 | 2025-11-21T19:05:28+00:00 |
| rhsa-2024:4374 | Red Hat Security Advisory: virt:rhel and virt-devel:rhel security update | 2024-07-08T13:56:19+00:00 | 2025-11-21T19:05:28+00:00 |
| rhsa-2024:4372 | Red Hat Security Advisory: virt:rhel and virt-devel:rhel security update | 2024-07-08T14:44:49+00:00 | 2025-11-21T19:05:27+00:00 |
| rhsa-2024:4370 | Red Hat Security Advisory: python3 security update | 2024-07-08T11:45:14+00:00 | 2025-11-21T19:05:26+00:00 |
| rhsa-2024:4369 | Red Hat Security Advisory: less security update | 2024-07-08T11:44:09+00:00 | 2025-11-21T19:05:25+00:00 |
| rhsa-2024:4367 | Red Hat Security Advisory: pki-core security update | 2024-07-08T11:26:51+00:00 | 2025-11-21T19:05:24+00:00 |
| rhsa-2024:4366 | Red Hat Security Advisory: less security update | 2024-07-08T11:12:34+00:00 | 2025-11-21T19:05:22+00:00 |
| rhsa-2024:4353 | Red Hat Security Advisory: nodejs:16 security update | 2024-07-08T02:34:57+00:00 | 2025-11-21T19:05:22+00:00 |
| rhsa-2024:4351 | Red Hat Security Advisory: virt:rhel and virt-devel:rhel security and bug fix update | 2024-07-08T02:57:12+00:00 | 2025-11-21T19:05:20+00:00 |
| rhsa-2024:4273 | Red Hat Security Advisory: Red Hat OpenStack Platform 16.2.6 security update | 2024-07-02T16:47:37+00:00 | 2025-11-21T19:05:15+00:00 |
| rhsa-2024:4278 | Red Hat Security Advisory: qemu-kvm security update | 2024-07-02T20:04:04+00:00 | 2025-11-21T19:05:13+00:00 |
| rhsa-2024:4277 | Red Hat Security Advisory: qemu-kvm security update | 2024-07-02T19:54:29+00:00 | 2025-11-21T19:05:12+00:00 |
| rhsa-2024:4276 | Red Hat Security Advisory: qemu-kvm security update | 2024-07-02T19:42:59+00:00 | 2025-11-21T19:05:11+00:00 |
| rhsa-2024:4274 | Red Hat Security Advisory: Red Hat OpenStack Platform 17.1.3 (openstack-nova) security update | 2024-07-02T16:47:24+00:00 | 2025-11-21T19:05:11+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-27387 | MariaDB Server v10.7 and below was discovered to contain a global buffer overflow in the component decimal_bin_size which is exploited via specially crafted SQL statements. | 2022-04-02T00:00:00.000Z | 2022-04-21T00:00:00.000Z |
| msrc_cve-2022-27386 | MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component sql/sql_class.cc. | 2022-04-02T00:00:00.000Z | 2022-04-21T00:00:00.000Z |
| msrc_cve-2022-27385 | An issue in the component Used_tables_and_const_cache::used_tables_and_const_cache_join of MariaDB Server v10.7 and below was discovered to allow attackers to cause a Denial of Service (DoS) via specially crafted SQL statements. | 2022-04-02T00:00:00.000Z | 2022-04-21T00:00:00.000Z |
| msrc_cve-2022-27382 | MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component Item_field::used_tables/update_depend_map_for_order. | 2022-04-02T00:00:00.000Z | 2022-04-21T00:00:00.000Z |
| msrc_cve-2022-27378 | An issue in the component Create_tmp_table::finalize of MariaDB Server v10.7 and below was discovered to allow attackers to cause a Denial of Service (DoS) via specially crafted SQL statements. | 2022-04-02T00:00:00.000Z | 2022-04-21T00:00:00.000Z |
| msrc_cve-2022-24070 | Apache Subversion mod_dav_svn is vulnerable to memory corruption | 2022-04-02T00:00:00.000Z | 2022-04-21T00:00:00.000Z |
| msrc_cve-2021-28544 | Apache Subversion SVN authz protected copyfrom paths regression | 2022-04-02T00:00:00.000Z | 2022-04-21T00:00:00.000Z |
| msrc_cve-2022-26919 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-19T07:00:00.000Z |
| msrc_cve-2022-26809 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-19T07:00:00.000Z |
| msrc_cve-2022-24543 | Windows Upgrade Assistant Remote Code Execution Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-19T07:00:00.000Z |
| msrc_cve-2022-26635 | PHP-Memcached v2.2.0 and below contains an improper NULL termination which allows attackers to execute CLRF injection. Note: Third parties have disputed this as not affecting PHP-Memcached directly. | 2022-04-02T00:00:00.000Z | 2022-04-19T00:00:00.000Z |
| msrc_cve-2022-24801 | HTTP Request Smuggling in twisted.web | 2022-04-02T00:00:00.000Z | 2022-04-16T00:00:00.000Z |
| msrc_cve-2021-41372 | Power BI Report Server Spoofing Vulnerability | 2021-11-09T08:00:00.000Z | 2022-04-15T07:00:00.000Z |
| msrc_cve-2022-28893 | The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring that sockets are in the intended state. | 2022-04-02T00:00:00.000Z | 2022-04-15T00:00:00.000Z |
| msrc_cve-2022-28796 | jbd2_journal_wait_updates in fs/jbd2/transaction.c in the Linux kernel before 5.17.1 has a use-after-free caused by a transaction_t race condition. | 2022-04-02T00:00:00.000Z | 2022-04-15T00:00:00.000Z |
| msrc_cve-2022-26924 | YARP Denial of Service Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26921 | Visual Studio Code Elevation of Privilege Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26920 | Windows Graphics Component Information Disclosure Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26914 | Win32k Elevation of Privilege Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26911 | Skype for Business Information Disclosure Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26910 | Skype for Business and Lync Spoofing Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26907 | Azure SDK for .NET Information Disclosure Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26904 | Windows User Profile Service Elevation of Privilege Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26898 | Azure Site Recovery Remote Code Execution Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26897 | Azure Site Recovery Information Disclosure Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26831 | Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26830 | DiskUsage.exe Remote Code Execution Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26829 | Windows DNS Server Remote Code Execution Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26828 | Windows Bluetooth Driver Elevation of Privilege Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| msrc_cve-2022-26827 | Windows File Server Resource Management Service Elevation of Privilege Vulnerability | 2022-04-12T08:00:00.000Z | 2022-04-12T08:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201508-0096 | Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial o… | 2025-04-13T23:18:04.674000Z |
| var-201508-0099 | Cisco IOS XE 2.1.0 through 2.2.3 and 2.3.0 on ASR 1000 devices, when NAT Application Laye… | 2025-04-13T23:18:04.644000Z |
| var-201508-0492 | Buffer overflow in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 7.3(0)ZN(0.9); N… | 2025-04-13T23:18:04.276000Z |
| var-201509-0015 | Cisco IOS 15.2(3)E and earlier and IOS XE 3.6(2)E and earlier allow remote attackers to c… | 2025-04-13T23:18:04.153000Z |
| var-201509-0203 | SQL injection vulnerability in Synology Video Station before 1.5-0763 allows remote attac… | 2025-04-13T23:18:04.121000Z |
| var-201509-0202 | SQL injection vulnerability in Synology Video Station before 1.5-0757 allows remote attac… | 2025-04-13T23:18:04.092000Z |
| var-201509-0204 | Synology Video Station before 1.5-0763 allows remote attackers to execute arbitrary shell… | 2025-04-13T23:18:04.061000Z |
| var-201510-0027 | SQL injection vulnerability in the web framework in Cisco Prime Service Catalog 11.0 allo… | 2025-04-13T23:18:03.724000Z |
| var-201510-0029 | Cisco Unified Communications Domain Manager before 10.6(1) provides different error messa… | 2025-04-13T23:18:03.695000Z |
| var-201511-0001 | Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125… | 2025-04-13T23:18:02.627000Z |
| var-201511-0054 | Cross-site scripting (XSS) vulnerability in adv_pwd_cgi in the web management interface o… | 2025-04-13T23:18:02.588000Z |
| var-201511-0053 | Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125… | 2025-04-13T23:18:02.551000Z |
| var-201511-0055 | Cross-site request forgery (CSRF) vulnerability in adv_pwd_cgi in the web management inte… | 2025-04-13T23:18:02.512000Z |
| var-201511-0043 | Unspecified vulnerability in Virtual Table Server (VTS) in HP LoadRunner 11.52, 12.00, 12… | 2025-04-13T23:18:02.473000Z |
| var-201511-0085 | The datastor kernel module in F5 BIG-IP Analytics, APM, ASM, Link Controller, and LTM 11.… | 2025-04-13T23:18:02.445000Z |
| var-201511-0232 | Cisco ASR 5000 devices with software 16.0(900) allow remote attackers to cause a denial o… | 2025-04-13T23:18:02.111000Z |
| var-201512-0070 | Eaton Cooper Power Systems ProView 4.x and 5.x before 5.1 on Form 6 controls and Idea and… | 2025-04-13T23:18:01.971000Z |
| var-201512-0385 | Cisco Jabber 10.6.x, 11.0.x, and 11.1.x on Windows allows man-in-the-middle attackers to … | 2025-04-13T23:18:01.853000Z |
| var-201512-0511 | ASUS Japan WL-330NUL devices with firmware before 3.0.0.42 allow remote attackers to exec… | 2025-04-13T23:18:01.793000Z |
| var-201601-0163 | The EnableNetwork method in the Network class in plugins/mechanism/Network.py in Blueman … | 2025-04-13T23:18:01.694000Z |
| var-201602-0050 | Multiple cross-site scripting (XSS) vulnerabilities in Cisco WebEx Meetings Server 2.5.1.… | 2025-04-13T23:18:01.180000Z |
| var-201602-0071 | Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA Software before 8.4(7… | 2025-04-13T23:18:01.142000Z |
| var-201602-0386 | IBM Security Access Manager for Web 7.0 before 7.0.0 IF21, 8.0 before 8.0.1.3 IF4, and 9.… | 2025-04-13T23:18:00.964000Z |
| var-201603-0043 | Schneider Electric Struxureware Building Operations Automation Server AS 1.7 and earlier … | 2025-04-13T23:18:00.921000Z |
| var-201603-0295 | Cisco IOS 15.0 through 15.5 and IOS XE 3.3 through 3.16 allow remote attackers to cause a… | 2025-04-13T23:18:00.773000Z |
| var-201604-0055 | Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D… | 2025-04-13T23:18:00.736000Z |
| var-201604-0097 | Multiple cross-site scripting (XSS) vulnerabilities in Sophos Cyberoam CR100iNG UTM appli… | 2025-04-13T23:18:00.671000Z |
| var-201604-0328 | Memory leak in Huawei S5300EI, S5300SI, S5310HI, and S6300EI Campus series switches with … | 2025-04-13T23:18:00.533000Z |
| var-201604-0559 | Cisco AireOS 4.1 through 7.4.120.0, 7.5.x, and 7.6.100.0 on Wireless LAN Controller (WLC)… | 2025-04-13T23:18:00.424000Z |
| var-201605-0551 | SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and … | 2025-04-13T23:17:55.385000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2021:2414-1 | Security update for caribou | 2021-07-20T13:26:23Z | 2021-07-20T13:26:23Z |
| suse-su-2021:2413-1 | Security update for containerd | 2021-07-20T13:25:56Z | 2021-07-20T13:25:56Z |
| suse-su-2021:2412-1 | Security update for containerd | 2021-07-20T13:25:44Z | 2021-07-20T13:25:44Z |
| suse-su-2021:2410-1 | Security update for systemd | 2021-07-20T12:41:31Z | 2021-07-20T12:41:31Z |
| suse-su-2021:2409-1 | Security update for the Linux Kernel | 2021-07-20T12:40:51Z | 2021-07-20T12:40:51Z |
| suse-su-2021:2408-1 | Security update for the Linux Kernel | 2021-07-20T12:40:34Z | 2021-07-20T12:40:34Z |
| suse-su-2021:2407-1 | Security update for the Linux Kernel | 2021-07-20T12:40:21Z | 2021-07-20T12:40:21Z |
| suse-su-2021:2406-1 | Security update for the Linux Kernel | 2021-07-20T12:40:03Z | 2021-07-20T12:40:03Z |
| suse-su-2021:2405-1 | Security update for systemd | 2021-07-20T12:22:03Z | 2021-07-20T12:22:03Z |
| suse-su-2021:2404-1 | Security update for systemd | 2021-07-20T12:21:36Z | 2021-07-20T12:21:36Z |
| suse-su-2021:2398-1 | Security update for go1.15 | 2021-07-19T14:57:33Z | 2021-07-19T14:57:33Z |
| suse-su-2021:2393-1 | Security update for MozillaFirefox | 2021-07-19T07:01:57Z | 2021-07-19T07:01:57Z |
| suse-su-2021:2392-1 | Security update for go1.16 | 2021-07-19T06:50:27Z | 2021-07-19T06:50:27Z |
| suse-su-2021:2389-1 | Security update for MozillaFirefox | 2021-07-16T11:27:43Z | 2021-07-16T11:27:43Z |
| suse-su-2021:2387-1 | Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP2) | 2021-07-16T10:01:59Z | 2021-07-16T10:01:59Z |
| suse-su-2021:14766-1 | Security update for MozillaFirefox | 2021-07-16T09:09:38Z | 2021-07-16T09:09:38Z |
| suse-su-2021:2384-1 | Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP3) | 2021-07-16T07:56:20Z | 2021-07-16T07:56:20Z |
| suse-su-2021:2377-1 | Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP2) | 2021-07-16T07:56:10Z | 2021-07-16T07:56:10Z |
| suse-su-2021:2366-1 | Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP2) | 2021-07-15T13:22:44Z | 2021-07-15T13:22:44Z |
| suse-su-2021:2372-1 | Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP1) | 2021-07-15T13:22:34Z | 2021-07-15T13:22:34Z |
| suse-su-2021:2367-1 | Security update for the Linux Kernel (Live Patch 24 for SLE 15) | 2021-07-15T13:22:14Z | 2021-07-15T13:22:14Z |
| suse-su-2021:2368-1 | Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP4) | 2021-07-15T13:21:53Z | 2021-07-15T13:21:53Z |
| suse-su-2021:2361-1 | Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP2) | 2021-07-15T13:20:52Z | 2021-07-15T13:20:52Z |
| suse-su-2021:2354-1 | Security update for nodejs14 | 2021-07-15T13:19:01Z | 2021-07-15T13:19:01Z |
| suse-su-2021:2353-1 | Security update for nodejs10 | 2021-07-15T13:18:32Z | 2021-07-15T13:18:32Z |
| suse-su-2021:2352-1 | Security update for the Linux Kernel | 2021-07-15T13:16:30Z | 2021-07-15T13:16:30Z |
| suse-su-2021:2349-1 | Security update for the Linux Kernel | 2021-07-14T15:37:23Z | 2021-07-14T15:37:23Z |
| suse-su-2021:2344-1 | Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP1) | 2021-07-14T15:09:28Z | 2021-07-14T15:09:28Z |
| suse-su-2021:2332-1 | Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP1) | 2021-07-14T15:09:09Z | 2021-07-14T15:09:09Z |
| suse-su-2021:2327-1 | Security update for nodejs12 | 2021-07-14T15:08:17Z | 2021-07-14T15:08:17Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-00201 | Adobe Substance 3D Painter不受信任搜索路径漏洞 | 2024-11-15 | 2025-01-02 |
| cnvd-2025-00200 | Adobe Substance 3D Painter堆缓冲区溢出漏洞(CNVD-2025-00200) | 2024-11-15 | 2025-01-02 |
| cnvd-2025-00199 | Adobe Substance 3D Painter堆缓冲区溢出漏洞(CNVD-2025-00199) | 2024-11-15 | 2025-01-02 |
| cnvd-2025-00198 | Adobe Substance 3D Painter越界写入漏洞(CNVD-2025-00198) | 2024-11-15 | 2025-01-02 |
| cnvd-2025-00197 | Adobe Substance 3D Painter堆缓冲区溢出漏洞(CNVD-2025-00197) | 2024-11-15 | 2025-01-02 |
| cnvd-2024-49053 | 青岛东胜伟业软件有限公司东胜物流软件存在信息泄露漏洞(CNVD-2024-49053) | 2024-11-17 | 2025-01-01 |
| cnvd-2024-49052 | 青岛东胜伟业软件有限公司东胜物流软件存在信息泄露漏洞(CNVD-2024-49052) | 2024-11-17 | 2025-01-01 |
| cnvd-2024-49864 | 用友网络科技股份有限公司NC存在SQL注入漏洞 | 2024-11-25 | 2024-12-31 |
| cnvd-2024-49800 | 武汉达梦数据库股份有限公司达梦新云缓存数据库存在二进制漏洞 | 2024-11-22 | 2024-12-31 |
| cnvd-2024-49648 | Fortinet FortiOS访问控制错误漏洞(CNVD-2024-49648) | 2024-11-15 | 2024-12-31 |
| cnvd-2024-49647 | Fortinet FortiClient数据伪造问题漏洞(CNVD-2024-49647) | 2024-11-15 | 2024-12-31 |
| cnvd-2024-49646 | TP-LINK Archer C7访问控制错误漏洞 | 2024-12-06 | 2024-12-31 |
| cnvd-2024-49645 | JFinalCMS SQL注入漏洞(CNVD-2024-49645) | 2024-12-13 | 2024-12-31 |
| cnvd-2024-49644 | JFinalCMS跨站请求伪造漏洞(CNVD-2024-49644) | 2024-12-13 | 2024-12-31 |
| cnvd-2024-49643 | TP-LINK VN020缓冲区溢出漏洞 | 2024-12-13 | 2024-12-31 |
| cnvd-2024-49627 | SAP NetWeaver Enterprise Portal跨站脚本漏洞(CNVD-2024-49627) | 2024-10-14 | 2024-12-31 |
| cnvd-2024-49626 | SAP HANA输入验证错误漏洞(CNVD-2024-49626) | 2024-10-17 | 2024-12-31 |
| cnvd-2024-49623 | Dell NetWorker Management Console信任管理问题漏洞 | 2024-12-06 | 2024-12-31 |
| cnvd-2024-49622 | Dell OpenManage Server Administrator输入验证错误漏洞 | 2024-12-13 | 2024-12-31 |
| cnvd-2024-49621 | Dell OpenManage Server Administrator授权问题漏洞 | 2024-12-13 | 2024-12-31 |
| cnvd-2024-49649 | IceCMS身份验证错误漏洞 | 2024-09-27 | 2024-12-30 |
| cnvd-2024-49636 | SAP Global Label Management SQL注入漏洞 | 2024-05-30 | 2024-12-30 |
| cnvd-2024-49635 | SAP PDCE授权问题漏洞 | 2024-07-19 | 2024-12-30 |
| cnvd-2024-49634 | SAP Enable Now授权问题漏洞 | 2024-07-19 | 2024-12-30 |
| cnvd-2024-49633 | SAP Student Life Cycle Management授权问题漏洞 | 2024-08-21 | 2024-12-30 |
| cnvd-2024-49632 | SAP NetWeaver授权问题漏洞(CNVD-2024-49632) | 2024-09-18 | 2024-12-30 |
| cnvd-2024-49631 | SAP NetWeaver Enterprise Portal跨站脚本漏洞(CNVD-2024-49631) | 2024-09-18 | 2024-12-30 |
| cnvd-2024-49630 | SAP NetWeaver AS跨站脚本漏洞(CNVD-2024-49630) | 2024-09-18 | 2024-12-30 |
| cnvd-2024-49629 | SAP NetWeaver Application Server跨站脚本漏洞(CNVD-2024-49629) | 2024-09-18 | 2024-12-30 |
| cnvd-2024-49628 | SAP Commerce Backoffice跨站脚本漏洞 | 2024-10-14 | 2024-12-30 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2012-avi-169 | Vulnérabilité dans OpenOffice et LibreOffice | 2012-03-26T00:00:00.000000 | 2012-03-27T00:00:00.000000 |
| certa-2012-avi-172 | Vulnérabilités dans MediaWiki | 2012-03-26T00:00:00.000000 | 2012-03-26T00:00:00.000000 |
| certa-2012-avi-171 | Multiples vulnérabilités dans IBM AIX | 2012-03-26T00:00:00.000000 | 2012-03-26T00:00:00.000000 |
| certa-2012-avi-170 | Multiples vulnérabilités dans Chrome | 2012-03-26T00:00:00.000000 | 2012-03-26T00:00:00.000000 |
| certa-2012-avi-168 | Vulnérabilité dans CA ARCserv Backup | 2012-03-22T00:00:00.000000 | 2012-03-22T00:00:00.000000 |
| certa-2012-avi-167 | Vulnérabilités dans GnuTLS | 2012-03-22T00:00:00.000000 | 2012-03-22T00:00:00.000000 |
| certa-2012-avi-166 | Multiples vulnérabilités dans Novell ZENworks | 2012-03-22T00:00:00.000000 | 2012-03-22T00:00:00.000000 |
| certa-2012-avi-165 | Multiples vulnérabilités dans Citrix XenServer | 2012-03-22T00:00:00.000000 | 2012-03-22T00:00:00.000000 |
| certa-2012-avi-164 | Vulnérabilité dans Libpng | 2012-03-22T00:00:00.000000 | 2012-03-22T00:00:00.000000 |
| certa-2012-avi-163 | Multiples vulnérabilités dans Moodle | 2012-03-22T00:00:00.000000 | 2012-03-22T00:00:00.000000 |
| certa-2012-avi-162 | Multiples vulnérabilités dans RSA enVision | 2012-03-21T00:00:00.000000 | 2012-03-21T00:00:00.000000 |
| certa-2012-avi-161 | Vulnérabilité dans Nginx | 2012-03-21T00:00:00.000000 | 2012-03-21T00:00:00.000000 |
| certa-2012-avi-160 | Vulnérabilité dans JBoss | 2012-03-21T00:00:00.000000 | 2012-03-21T00:00:00.000000 |
| certa-2012-avi-159 | Multiples vulnérabilités dans Dell PowerVaul ML6000 | 2012-03-21T00:00:00.000000 | 2012-03-21T00:00:00.000000 |
| certa-2012-avi-158 | Vulnérabilités dans Aruba Networks | 2012-03-20T00:00:00.000000 | 2012-03-20T00:00:00.000000 |
| certa-2012-avi-157 | Multiples vulnérabilités dans VLC | 2012-03-20T00:00:00.000000 | 2012-03-20T00:00:00.000000 |
| certa-2012-avi-156 | Multiples vulnérabilités dans IBM HTTP Server | 2012-03-20T00:00:00.000000 | 2012-03-20T00:00:00.000000 |
| certa-2012-avi-155 | Multiples vulnérabilités dans Citrix Licensing Administration Console | 2012-03-19T00:00:00.000000 | 2012-03-19T00:00:00.000000 |
| certa-2012-avi-154 | Vulnérabilité dans IBM Tivoli Endpoint Manager | 2012-03-19T00:00:00.000000 | 2012-03-19T00:00:00.000000 |
| certa-2012-avi-153 | Vulnérabilités dans Asterisk | 2012-03-19T00:00:00.000000 | 2012-03-19T00:00:00.000000 |
| certa-2012-avi-152 | Vulnérabilités dans Joomla! | 2012-03-19T00:00:00.000000 | 2012-03-19T00:00:00.000000 |
| certa-2012-avi-151 | Multiples vulnérabilités dans VMware | 2012-03-19T00:00:00.000000 | 2012-03-19T00:00:00.000000 |
| certa-2012-avi-150 | Vulnérabilités dans Cisco 6500 et 5500 | 2012-03-16T00:00:00.000000 | 2012-03-16T00:00:00.000000 |
| certa-2012-avi-149 | Vulnérabilité dans Cisco Catalyst 6500 et 5500 | 2012-03-16T00:00:00.000000 | 2012-03-16T00:00:00.000000 |
| certa-2012-avi-148 | Multiples vulnérabilités dans les équipements XEROX | 2012-03-16T00:00:00.000000 | 2012-03-16T00:00:00.000000 |
| certa-2012-avi-147 | Vulnérabilité dans OpenLDAP | 2012-03-16T00:00:00.000000 | 2012-03-16T00:00:00.000000 |
| certa-2012-avi-146 | Multiples vulnérabilités dans HP Data Protector Express | 2012-03-15T00:00:00.000000 | 2012-03-15T00:00:00.000000 |
| certa-2012-avi-145 | Vulnérabilité dans Adobe ColdFusion | 2012-03-15T00:00:00.000000 | 2012-03-15T00:00:00.000000 |
| certa-2012-avi-144 | Vulnérabilité dans CISCO ASA 5500 | 2012-03-15T00:00:00.000000 | 2012-03-15T00:00:00.000000 |
| certa-2012-avi-143 | Multiples vulnérabilités dans McAfee EWS et MEG | 2012-03-15T00:00:00.000000 | 2012-03-15T00:00:00.000000 |