Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-49933 |
6.5 (3.1)
|
WordPress JetBlog plugin <= 2.4.4 - Cross Site Scripti… |
CrocoBlock |
JetBlog |
2025-10-22T14:32:15.603Z | 2026-01-20T14:28:07.844Z |
| CVE-2025-49940 |
6.5 (3.1)
|
WordPress Fusion Builder plugin <= 3.13.2 - Cross Site… |
ThemeFusion |
Fusion Builder |
2025-10-22T14:32:17.247Z | 2026-01-20T14:28:07.835Z |
| CVE-2025-49950 |
7.3 (3.1)
|
WordPress Official Integration for Billingo Plugin <= … |
billingo |
Official Integration for Billingo |
2025-10-22T14:32:18.932Z | 2026-01-20T14:28:07.828Z |
| CVE-2025-49953 |
7.1 (3.1)
|
WordPress ShareBang, Ultimate Social Share Buttons for… |
themeinity |
ShareBang, Ultimate Social Share Buttons for WordPress |
2025-10-22T14:32:19.616Z | 2026-01-20T14:28:07.826Z |
| CVE-2025-49954 |
7.1 (3.1)
|
WordPress WP-Click-Tracker Plugin <= 0.7.3 - Cross Sit… |
mithra62 |
WP-Click-Tracker |
2025-10-22T14:32:19.827Z | 2026-01-20T14:28:07.823Z |
| CVE-2025-49934 |
5.4 (3.1)
|
WordPress JetBlocks For Elementor plugin <= 1.3.18 - C… |
CrocoBlock |
JetBlocks For Elementor |
2025-10-22T14:32:15.865Z | 2026-01-20T14:28:07.810Z |
| CVE-2025-49952 |
6.3 (3.1)
|
WordPress Houzez Theme <= 4.1.1 - Insecure Direct Obje… |
favethemes |
Houzez |
2025-10-22T14:32:19.320Z | 2026-01-20T14:28:07.804Z |
| CVE-2025-49949 |
5.5 (3.1)
|
WordPress Templazee plugin <= 1.0.2 - Broken Access Co… |
templazee |
Templazee |
2025-10-22T14:32:18.660Z | 2026-01-20T14:28:07.803Z |
| CVE-2025-49935 |
7.4 (3.1)
|
WordPress WoodMart theme < 8.3.2 - Local File Inclusio… |
xtemos |
WoodMart |
2025-10-22T14:32:16.098Z | 2026-01-20T14:28:07.791Z |
| CVE-2025-49936 |
6.5 (3.1)
|
WordPress WoodMart theme < 8.3.2 - Cross Site Scriptin… |
xtemos |
WoodMart |
2025-10-22T14:32:16.302Z | 2026-01-20T14:28:07.770Z |
| CVE-2025-49931 |
9.3 (3.1)
|
WordPress JetSearch plugin <= 3.5.10 - SQL Injection v… |
CrocoBlock |
JetSearch |
2025-10-22T14:32:15.259Z | 2026-01-20T14:28:07.695Z |
| CVE-2025-49948 |
7.1 (3.1)
|
WordPress WP Super Edit plugin <= 2.5.4 - Cross Site S… |
Ahmad Awais |
WP Super Edit |
2025-10-22T14:32:18.319Z | 2026-01-20T14:28:07.687Z |
| CVE-2025-49941 |
8.1 (3.1)
|
WordPress GlamChic theme <= 1.0.11 - Local File Inclus… |
AncoraThemes |
GlamChic |
2025-12-18T07:21:44.421Z | 2026-01-20T14:28:07.677Z |
| CVE-2025-49944 |
7.1 (3.1)
|
WordPress WPCode Content Ratio plugin <= 2.0 - Cross S… |
Jonatan Jumbert |
WPCode Content Ratio |
2025-10-22T14:32:17.445Z | 2026-01-20T14:28:07.648Z |
| CVE-2025-49932 |
6.5 (3.1)
|
WordPress JetBlog plugin <= 2.4.4.1 - Cross Site Scrip… |
CrocoBlock |
JetBlog |
2025-10-22T14:32:15.443Z | 2026-01-20T14:28:07.647Z |
| CVE-2025-49930 |
7.1 (3.1)
|
WordPress JetSearch plugin <= 3.5.10 - Cross Site Scri… |
CrocoBlock |
JetSearch |
2025-10-22T14:32:15.035Z | 2026-01-20T14:28:07.642Z |
| CVE-2025-49926 |
7.3 (3.1)
|
WordPress Kalium theme <= 3.25 - Arbitrary Code Execut… |
Laborator |
Kalium |
2025-10-22T14:32:14.208Z | 2026-01-20T14:28:07.637Z |
| CVE-2025-49945 |
7.1 (3.1)
|
WordPress Shortcode Generator plugin <= 1.1 - Cross Si… |
kylegetson |
Shortcode Generator |
2025-10-22T14:32:17.676Z | 2026-01-20T14:28:07.632Z |
| CVE-2025-49920 |
5.4 (3.1)
|
WordPress Web Accessibility By accessiBe plugin <= 2.1… |
accessiBe |
Web Accessibility By accessiBe |
2025-10-22T14:32:12.844Z | 2026-01-20T14:28:07.628Z |
| CVE-2025-49939 |
6.5 (3.1)
|
WordPress JetElements For Elementor plugin <= 2.7.8 - … |
CrocoBlock |
JetElements For Elementor |
2025-10-22T14:32:17.061Z | 2026-01-20T14:28:07.611Z |
| CVE-2025-49929 |
6.5 (3.1)
|
WordPress Ultimate Blocks plugin <= 3.3.6 - Cross Site… |
Ultimate Blocks |
Ultimate Blocks |
2025-10-22T14:32:14.811Z | 2026-01-20T14:28:07.609Z |
| CVE-2025-49927 |
6.5 (3.1)
|
WordPress JetWooBuilder plugin <= 2.1.20.1 - Cross Sit… |
CrocoBlock |
JetWooBuilder |
2025-10-22T14:32:14.395Z | 2026-01-20T14:28:07.599Z |
| CVE-2025-49951 |
7.1 (3.1)
|
WordPress gAppointments Plugin <= 1.14.1 - Cross Site … |
wpcrunch |
gAppointments |
2025-10-22T14:32:19.132Z | 2026-01-20T14:28:07.591Z |
| CVE-2025-49942 |
8.1 (3.1)
|
WordPress Gardis theme <= 1.2.13 - Local File Inclusio… |
AncoraThemes |
Gardis |
2025-12-18T07:21:44.617Z | 2026-01-20T14:28:07.580Z |
| CVE-2025-49937 |
4.3 (3.1)
|
WordPress Smash Balloon Social Post Feed plugin <= 4.3… |
Syed Balkhi |
Smash Balloon Social Post Feed |
2025-10-22T14:32:16.676Z | 2026-01-20T14:28:07.564Z |
| CVE-2025-49917 |
4.4 (3.1)
|
WordPress Icegram Express Pro plugin <= 5.9.5 - Server… |
Icegram |
Icegram Express Pro |
2025-10-22T14:32:12.630Z | 2026-01-20T14:28:07.536Z |
| CVE-2025-49928 |
6.5 (3.1)
|
WordPress JetWooBuilder plugin <= 2.1.20 - Cross Site … |
CrocoBlock |
JetWooBuilder |
2025-10-22T14:32:14.597Z | 2026-01-20T14:28:07.500Z |
| CVE-2025-49918 |
5.9 (3.1)
|
WordPress VikBooking Hotel Booking Engine & PMS plugin… |
e4jvikwp |
VikBooking Hotel Booking Engine & PMS |
2025-12-18T07:21:44.067Z | 2026-01-20T14:28:07.426Z |
| CVE-2025-49916 |
8.6 (3.1)
|
WordPress MultiVendorX plugin <= 4.2.23 - Broken Acces… |
MultiVendorX |
MultiVendorX |
2025-10-22T14:32:12.420Z | 2026-01-20T14:28:07.416Z |
| CVE-2025-49915 |
9.3 (3.1)
|
WordPress SMS Alert Order Notifications plugin <= 3.8.… |
Cozy Vision |
SMS Alert Order Notifications |
2025-10-22T14:32:12.221Z | 2026-01-20T14:28:07.416Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-14379 |
4.4 (3.1)
|
Testimonials Creator 1.6 - Authenticated (Admin+) Stor… |
adoncreatives |
Testimonials Creator |
2026-01-14T05:28:07.014Z | 2026-01-15T20:07:54.708Z |
| CVE-2025-14338 |
8.5 (4.0)
|
Polkit authentication dis isabled by default in inputplumber |
https://github.com/ShadowBlip |
inputplumber |
2026-01-14T11:55:31.845Z | 2026-01-14T14:53:44.027Z |
| CVE-2025-14317 |
7.1 (4.0)
|
User Enumeration in Crazy Bubble Tea mobile application |
Emaintenance |
Crazy Bubble Tea |
2026-01-14T13:28:02.872Z | 2026-01-14T13:57:08.343Z |
| CVE-2025-14301 |
9.8 (3.1)
|
Integration Opvius AI for WooCommerce <= 1.3.0 - Unaut… |
woosaai |
Integration Opvius AI for WooCommerce |
2026-01-14T05:28:05.974Z | 2026-01-15T20:35:48.151Z |
| CVE-2025-14173 |
5.3 (3.1)
|
Perfit WooCommerce <= 1.0.1 - Missing Authorization to… |
perfitdev |
Perfit WooCommerce |
2026-01-14T06:40:07.972Z | 2026-01-14T20:25:32.624Z |
| CVE-2025-13627 |
4.4 (3.1)
|
Makesweat <= 0.1 - Authenticated (Administrator+) Stor… |
makesweat |
Makesweat |
2026-01-14T05:28:10.032Z | 2026-01-14T19:16:46.795Z |
| CVE-2025-13175 |
5.1 (4.0)
|
Insecure Password Storage in Y Soft SafeQ 6 |
YSoft |
SafeQ 6 |
2026-01-14T12:19:06.927Z | 2026-01-14T13:58:17.652Z |
| CVE-2025-12178 |
6.4 (3.1)
|
SpiceForms Form Builder <= 1.0 - Authenticated (Contri… |
aankit |
SpiceForms Form Builder |
2026-01-14T05:28:12.421Z | 2026-01-15T18:00:12.192Z |
| CVE-2025-12053 |
7.8 (3.1)
|
egwindrvx64.sys is potentially vulnerable to a buffer … |
Insyde Software |
InsydeH2O tools |
2026-01-14T01:27:11.791Z | 2026-01-14T23:34:48.257Z |
| CVE-2025-12052 |
7.8 (3.1)
|
egwindrv.sys is potentially vulnerable to a buffer overflow. |
Insyde Software |
InsydeH2O tools |
2026-01-14T01:23:54.933Z | 2026-01-14T23:27:53.305Z |
| CVE-2025-12051 |
7.8 (3.1)
|
H2OFFT64.sys is potentially vulnerable to a buffer overflow. |
Insyde Software |
InsydeH2O tools |
2026-01-14T01:17:54.753Z | 2026-01-14T23:27:15.424Z |
| CVE-2025-12050 |
7.8 (3.1)
|
In H2OFFT32.sys is potentially vulnerable to a buffer … |
Insyde Software |
InsydeH2O tools |
2026-01-14T01:13:33.407Z | 2026-01-14T23:26:28.947Z |
| CVE-2023-54340 |
8.8 (4.0)
8.2 (3.1)
|
WorkOrder CMS 0.1.0 - SQL Injection |
WorkOrder |
WorkOrder CMS |
2026-01-13T22:52:10.286Z | 2026-01-14T15:20:10.686Z |
| CVE-2023-54338 |
8.5 (4.0)
8.4 (3.1)
|
Tftpd32_SE 4.60 - 'Tftpd32_svc' Unquoted Service Path |
Pjo2 |
Tftpd32_SE |
2026-01-13T22:52:09.376Z | 2026-01-14T19:17:52.996Z |
| CVE-2023-54336 |
8.5 (4.0)
8.4 (3.1)
|
Mediconta 3.7.27 - 'servermedicontservice' Unquoted Se… |
Infonetsoftware |
Mediconta |
2026-01-13T22:52:08.464Z | 2026-01-14T19:18:05.811Z |
| CVE-2023-54333 |
8.8 (4.0)
8.2 (3.1)
|
Social-Share-Buttons 2.2.3 - SQL Injection via project… |
Wordpress |
Social-Share-Buttons |
2026-01-13T22:56:45.964Z | 2026-01-14T19:17:36.471Z |
| CVE-2023-53984 |
8.5 (4.0)
8.4 (3.1)
|
HotKey Clipboard 2.1.0.6 - Privilege Escalation Unquot… |
clevo |
HotKey Clipboard |
2026-01-13T22:52:04.070Z | 2026-01-14T19:18:46.511Z |
| CVE-2022-50938 |
8.5 (4.0)
8.4 (3.1)
|
CONTPAQi® AdminPAQ 14.0.0 - Unquoted Service Path |
Contpaqi |
CONTPAQ AdminPAQ |
2026-01-13T22:52:03.138Z | 2026-01-14T15:24:09.078Z |
| CVE-2022-50935 |
8.5 (4.0)
9.8 (3.1)
|
FLAME II MODEM USB - Unquoted Service Path |
Telcel |
FLAME II MODEM USB |
2026-01-13T22:52:01.474Z | 2026-01-14T19:19:08.990Z |
| CVE-2022-50930 |
8.5 (4.0)
8.4 (3.1)
|
Emerson PAC Machine Edition 9.80 Build 8695 - 'TrapiSe… |
Emerson |
Emerson PAC Machine Edition |
2026-01-13T22:51:58.910Z | 2026-01-14T15:29:51.155Z |
| CVE-2022-50929 |
8.5 (4.0)
8.4 (3.1)
|
Connectify Hotspot 2018 'ConnectifyService' - Unquoted… |
Connectify Inc |
Connectify Hotspot |
2026-01-13T22:51:58.403Z | 2026-01-14T15:35:25.053Z |
| CVE-2022-50927 |
8.5 (4.0)
6.2 (3.1)
|
Cyclades Serial Console Server 3.3.0 - Local Privilege… |
Vertiv |
Cyclades Serial Console Server |
2026-01-13T22:51:57.536Z | 2026-01-14T19:19:30.431Z |
| CVE-2022-50926 |
8.7 (4.0)
9.8 (3.1)
|
WAGO 750-8212 PFC200 G2 2ETH RS Privilege Escalation |
Wago |
WAGO 750-8212 PFC200 |
2026-01-13T22:51:57.087Z | 2026-01-14T19:19:35.988Z |
| CVE-2022-50924 |
8.5 (4.0)
8.4 (3.1)
|
Private Internet Access 3.3 - 'pia-service' Unquoted S… |
Private Internet Access |
Private Internet Access |
2026-01-13T22:51:56.185Z | 2026-01-14T19:19:47.229Z |
| CVE-2022-50922 |
8.6 (4.0)
9.8 (3.1)
|
Audio Conversion Wizard v2.01 - Buffer Overflow |
Litexmedia |
Audio Conversion Wizard |
2026-01-13T22:51:55.346Z | 2026-01-14T19:19:58.392Z |
| CVE-2022-50920 |
8.5 (4.0)
8.4 (3.1)
|
Sandboxie-Plus 5.50.2 - 'Service SbieSvc' Unquoted Ser… |
Sandboxie |
Sandboxie Plus |
2026-01-13T22:51:54.536Z | 2026-01-14T15:35:50.855Z |
| CVE-2022-50918 |
8.5 (4.0)
8.4 (3.1)
|
VIVE Runtime Service - 'ViveAgentService' Unquoted Ser… |
VIVE |
VIVE Runtime Service |
2026-01-13T22:51:53.793Z | 2026-01-14T15:40:55.859Z |
| CVE-2022-50914 |
8.5 (4.0)
8.4 (3.1)
|
EaseUS Data Recovery - 'ensserver.exe' Unquoted Servi… |
EaseUS |
EaseUS Data Recovery |
2026-01-13T22:51:52.098Z | 2026-01-14T16:06:40.140Z |
| CVE-2022-50913 |
8.5 (4.0)
8.4 (3.1)
|
TCQ - 'ITeCProteccioAppServer.exe' Unquoted Service Path |
ITEC |
TCQ |
2026-01-13T22:51:51.673Z | 2026-01-14T16:12:57.108Z |
| CVE-2022-50909 |
8.6 (4.0)
8.8 (3.1)
|
Algo 8028 Control Panel - Remote Code Execution (RCE) … |
Algo Solutions |
Algo 8028 |
2026-01-13T22:51:50.115Z | 2026-01-14T16:28:12.723Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-13627 | The Makesweat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'makesweat_… | 2026-01-14T06:15:51.817 | 2026-01-14T16:25:12.057 |
| fkie_cve-2025-13175 | Y Soft SafeQ 6 renders the Workflow Connector password field in a way that allows an administrator … | 2026-01-14T13:16:09.510 | 2026-01-14T16:25:12.057 |
| fkie_cve-2025-12178 | The SpiceForms Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via t… | 2026-01-14T06:15:50.760 | 2026-01-14T16:25:12.057 |
| fkie_cve-2025-12053 | The drivers in the tool packages use RTL_QUERY_REGISTRY_DIRECT flag to read a registry value to whi… | 2026-01-14T02:15:50.040 | 2026-01-14T16:25:12.057 |
| fkie_cve-2025-12052 | The drivers in the tool packages use RTL_QUERY_REGISTRY_DIRECT flag to read a registry value to whi… | 2026-01-14T02:15:49.873 | 2026-01-14T16:25:12.057 |
| fkie_cve-2025-12051 | The drivers in the tool packages use RTL_QUERY_REGISTRY_DIRECT flag to read a registry value to whi… | 2026-01-14T02:15:49.700 | 2026-01-14T16:25:12.057 |
| fkie_cve-2025-12050 | The drivers in the tool packages use RTL_QUERY_REGISTRY_DIRECT flag to read a registry value to whi… | 2026-01-14T01:15:49.743 | 2026-01-14T16:25:12.057 |
| fkie_cve-2023-54340 | WorkOrder CMS 0.1.0 contains a SQL injection vulnerability that allows unauthenticated attackers to… | 2026-01-13T23:16:01.953 | 2026-01-14T16:25:12.057 |
| fkie_cve-2023-54338 | Tftpd32 SE 4.60 contains an unquoted service path vulnerability that allows local attackers to pote… | 2026-01-13T23:16:01.593 | 2026-01-14T16:25:12.057 |
| fkie_cve-2023-54336 | Mediconta 3.7.27 contains an unquoted service path vulnerability in the servermedicontservice that … | 2026-01-13T23:16:01.230 | 2026-01-14T16:25:12.057 |
| fkie_cve-2023-54333 | Social-Share-Buttons 2.2.3 contains a critical SQL injection vulnerability in the project_id parame… | 2026-01-13T23:16:00.693 | 2026-01-14T16:25:12.057 |
| fkie_cve-2023-53984 | Clevo HotKey Clipboard 2.1.0.6 contains an unquoted service path vulnerability in the HKClipSvc ser… | 2026-01-13T23:15:59.430 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50938 | CONTPAQi AdminPAQ 14.0.0 contains an unquoted service path vulnerability in the AppKeyLicenseServer… | 2026-01-13T23:15:59.057 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50935 | Flame II HSPA USB Modem contains an unquoted service path vulnerability in its Windows service conf… | 2026-01-13T23:15:58.517 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50930 | Emerson PAC Machine Edition 9.80 contains an unquoted service path vulnerability in the TrapiServer… | 2026-01-13T23:15:57.583 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50929 | Connectify Hotspot 2018 contains an unquoted service path vulnerability in its ConnectifyService ex… | 2026-01-13T23:15:57.407 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50927 | Cyclades Serial Console Server 3.3.0 contains a local privilege escalation vulnerability due to ove… | 2026-01-13T23:15:57.047 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50926 | WAGO 750-8212 PFC200 G2 2ETH RS firmware contains a privilege escalation vulnerability that allows … | 2026-01-13T23:15:56.870 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50924 | Private Internet Access 3.3 contains an unquoted service path vulnerability that allows local users… | 2026-01-13T23:15:56.503 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50922 | Audio Conversion Wizard v2.01 contains a buffer overflow vulnerability that allows attackers to exe… | 2026-01-13T23:15:56.143 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50920 | Sandboxie-Plus 5.50.2 contains an unquoted service path vulnerability in the SbieSvc Windows servic… | 2026-01-13T23:15:55.783 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50918 | VIVE Runtime Service 1.0.0.4 contains an unquoted service path vulnerability that allows local user… | 2026-01-13T23:15:55.420 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50914 | EaseUS Data Recovery 15.1.0.0 contains an unquoted service path vulnerability in the EaseUS UPDATE … | 2026-01-13T23:15:54.713 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50913 | ITeC ITeCProteccioAppServer contains an unquoted service path vulnerability that allows local attac… | 2026-01-13T23:15:54.523 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50909 | Algo 8028 Control Panel version 3.3.3 contains a command injection vulnerability in the fm-data.lua… | 2026-01-13T23:15:53.810 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50908 | Mailhog 1.0.1 contains a stored cross-site scripting vulnerability that allows attackers to inject … | 2026-01-13T23:15:53.627 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50904 | Wondershare UBackit 2.0.5 contains an unquoted service path vulnerability that allows local users t… | 2026-01-13T23:15:52.910 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50902 | Wondershare FamiSafe 1.0 contains an unquoted service path vulnerability in the FSService that allo… | 2026-01-13T23:15:52.540 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50896 | Testa 3.5.1 contains a reflected cross-site scripting vulnerability in the login.php redirect param… | 2026-01-13T23:15:51.473 | 2026-01-14T16:25:12.057 |
| fkie_cve-2022-50808 | CoolerMaster MasterPlus 1.8.5 contains an unquoted service path vulnerability in the MPService that… | 2026-01-13T23:15:50.193 | 2026-01-14T16:25:12.057 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-2gxx-2hcr-3whr |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: clk: qcom: mmcc-msm8974: fix t… | 2024-05-01T06:31:42Z | 2025-12-23T03:30:17Z |
| ghsa-vrj2-8hr4-9mhm |
8.2 (3.1)
9.3 (4.0)
|
WebTareas 2.4 contains a SQL injection vulnerability in the webTareasSID cookie parameter that allo… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:32Z |
| ghsa-rq32-m8jv-7mjg |
9.8 (3.1)
|
Authentication bypass vulnerability in Xiongmai XM530 IP cameras on Firmware V5.00.R02.000807D8.100… | 2025-12-23T00:30:32Z | 2025-12-23T00:30:32Z |
| ghsa-r4wq-665p-whrq |
8.7 (4.0)
|
wb2osz/direwolf (Dire Wolf) versions up to and including 1.8, prior to commit 3658a87, contain a re… | 2025-12-23T00:30:32Z | 2025-12-23T00:30:32Z |
| ghsa-p7j3-m97j-2qqg |
6.4 (3.1)
5.1 (4.0)
|
myBB Forums 1.8.26 contains a stored cross-site scripting vulnerability in the forum management sys… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:32Z |
| ghsa-hmwx-xj5h-5xh5 |
8.8 (3.1)
8.6 (4.0)
|
PhotoShow 3.0 contains a remote code execution vulnerability that allows authenticated administrato… | 2025-12-23T00:30:32Z | 2025-12-23T00:30:32Z |
| ghsa-c2r6-r382-m667 |
8.2 (3.1)
9.3 (4.0)
|
Atom CMS 2.0 contains an unauthenticated SQL injection vulnerability that allows remote attackers t… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:32Z |
| ghsa-9wx9-rprp-6rxh |
9.8 (3.1)
8.7 (4.0)
|
ProjectSend r1605 contains a remote code execution vulnerability that allows attackers to upload ma… | 2025-12-23T00:30:32Z | 2025-12-23T00:30:32Z |
| ghsa-9gf5-28vp-q243 |
6.5 (3.1)
|
Authenticated Remote Code Execution (RCE) in PluXml CMS 5.8.22 allows an attacker with administrato… | 2025-12-23T00:30:32Z | 2025-12-23T00:30:32Z |
| ghsa-6573-vpm8-2vpq |
7.5 (3.1)
8.8 (4.0)
|
D-Link DSL-124 ME_1.00 contains a configuration file disclosure vulnerability that allows unauthent… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:32Z |
| ghsa-4hv2-45c6-qhf8 |
6.4 (3.1)
5.1 (4.0)
|
myBB Forums 1.8.26 contains a stored cross-site scripting vulnerability in the forum announcement s… | 2025-12-23T00:30:32Z | 2025-12-23T00:30:32Z |
| ghsa-3gw2-m37j-rx57 |
7.5 (3.1)
|
An issue was discovered in Xiongmai XM530 IP cameras on firmware V5.00.R02.000807D8.10010.346624.S.… | 2025-12-23T00:30:32Z | 2025-12-23T00:30:32Z |
| ghsa-28g2-hxcm-j3q2 |
8.7 (4.0)
|
wb2osz/direwolf (Dire Wolf) versions up to and including 1.8, prior to commit 694c954, contain a st… | 2025-12-23T00:30:32Z | 2025-12-23T00:30:32Z |
| ghsa-xh8h-mfrv-w6wh |
9.8 (3.1)
9.3 (4.0)
|
SOUND4 LinkAndShare Transmitter 1.1.2 contains a format string vulnerability that allows attackers … | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-w64x-6gx5-c298 |
8.4 (3.1)
8.5 (4.0)
|
Zillya Total Security 3.0.2367.0 contains a privilege escalation vulnerability that allows low-priv… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-w5jc-9pqr-q5xr |
7.5 (3.1)
9.3 (4.0)
|
Screen SFT DAB 600/C firmware 1.9.3 contains an authentication bypass vulnerability that allows att… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-vw7m-92hg-3cxx |
9.8 (3.1)
9.3 (4.0)
|
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an unauthenticated OS command injection vulnerability t… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-vfjq-wcxg-p5r3 |
7.5 (3.1)
|
youlai-boot V2.21.1 is vulnerable to Incorrect Access Control. The getRoleForm function in SysRoleC… | 2025-12-22T21:30:33Z | 2025-12-23T00:30:31Z |
| ghsa-rghc-mxjc-cmxr |
6.8 (3.1)
6.9 (4.0)
|
Hasura GraphQL 1.3.3 contains a local file read vulnerability that allows attackers to access syste… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-r33w-hjh8-m5jj |
7.5 (3.1)
9.3 (4.0)
|
Screen SFT DAB 600/C firmware 1.9.3 contains a session management vulnerability that allows attacke… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-q82f-8246-gmrw |
5.3 (3.1)
5.1 (4.0)
|
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains a cross-site request forgery vulnerability that allows … | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-pq7c-p2xf-3j66 |
9.8 (3.1)
9.3 (4.0)
|
Screen SFT DAB 600/C Firmware 1.9.3 contains a session management vulnerability that allows attacke… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-m7j7-jjh9-5g39 |
7.5 (3.1)
8.8 (4.0)
|
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an unauthenticated directory traversal vulnerability th… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-jcf7-5pqw-fpmw |
8.4 (3.1)
8.5 (4.0)
|
Wondershare MirrorGo 2.0.11.346 contains a local privilege escalation vulnerability due to incorrec… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-gj7r-228j-689h |
9.8 (3.1)
9.3 (4.0)
|
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an insecure direct object reference vulnerability that … | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-f2jf-x5m2-c7qh |
8.8 (3.1)
8.7 (4.0)
|
WebTareas 2.4 contains a file upload vulnerability that allows authenticated users to upload malici… | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-c963-4j6g-xhmv |
7.5 (3.1)
8.7 (4.0)
|
Hasura GraphQL 1.3.3 contains a denial of service vulnerability that allows attackers to overwhelm … | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-9h8q-9mhq-w5q4 |
8.4 (3.1)
8.5 (4.0)
|
Cobian Backup Gravity 11.2.0.582 contains an unquoted service path vulnerability that allows local … | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ghsa-8vpj-fwmm-xmcm |
7.1 (3.1)
|
youlai-boot V2.21.1 is vulnerable to Incorrect Access Control. The importUsers function in SysUserC… | 2025-12-22T21:30:33Z | 2025-12-23T00:30:31Z |
| ghsa-8p9c-w6fc-vjgh |
5.3 (3.1)
6.9 (4.0)
|
Hasura GraphQL 1.3.3 contains a server-side request forgery vulnerability that allows attackers to … | 2025-12-23T00:30:31Z | 2025-12-23T00:30:31Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-24618 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.026304Z |
| gsd-2024-24664 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.026077Z |
| gsd-2024-24465 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.025860Z |
| gsd-2024-24442 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.025646Z |
| gsd-2024-24418 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.025432Z |
| gsd-2024-24292 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.025183Z |
| gsd-2024-24620 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.024924Z |
| gsd-2024-24516 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.024708Z |
| gsd-2024-24521 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.024487Z |
| gsd-2024-24184 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.024271Z |
| gsd-2024-24297 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.024051Z |
| gsd-2024-24324 | TOTOLINK A8000RU v7.1cu.643_B20200521 was discovered to contain a hardcoded password for … | 2024-01-26T06:02:26.023835Z |
| gsd-2024-24164 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.023619Z |
| gsd-2024-24491 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.023387Z |
| gsd-2024-24026 | An arbitrary File upload vulnerability exists in Novel-Plus v4.3.0-RC1 and prior versions… | 2024-01-26T06:02:26.023141Z |
| gsd-2024-24205 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.022921Z |
| gsd-2024-24463 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.022685Z |
| gsd-2024-24012 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.022449Z |
| gsd-2024-24510 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.022183Z |
| gsd-2024-24438 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.021960Z |
| gsd-2024-24247 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.021742Z |
| gsd-2024-24672 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.021520Z |
| gsd-2024-24353 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.021305Z |
| gsd-2024-24408 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.021089Z |
| gsd-2024-24044 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.020866Z |
| gsd-2024-24095 | Code-projects Simple Stock System 1.0 is vulnerable to SQL Injection. | 2024-01-26T06:02:26.020653Z |
| gsd-2024-24194 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.020438Z |
| gsd-2024-24273 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.020223Z |
| gsd-2024-24295 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.020006Z |
| gsd-2024-24602 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:26.019787Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-182010 | Malicious code in flights-lutug-oiad (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-182009 | Malicious code in flights-lutug-adisdfbasdglonolo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-182008 | Malicious code in flights-lutug-adibasdglonolo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-182007 | Malicious code in flights-lutug-adibanlo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-182006 | Malicious code in flights-lutug-adibalonolo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-182005 | Malicious code in flights-lutug-adibalonlo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-182004 | Malicious code in flights-lutug-adibalnlo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-182003 | Malicious code in flights-lutug-adibal (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-182002 | Malicious code in flights-lutug-adia (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-182001 | Malicious code in flights-lutug-ad (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-182000 | Malicious code in flights-lutg-oikd (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181999 | Malicious code in flights-lutg-oido (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181998 | Malicious code in flights-lutg-oidmo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181997 | Malicious code in flights-lutg-oidamo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181996 | Malicious code in flights-lutg-oidai (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181995 | Malicious code in flights-lutg-oidablamo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181994 | Malicious code in flights-lutg-oidabio (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181993 | Malicious code in flights-lutg-oidabilo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181992 | Malicious code in flights-lutg-oidabilmo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181991 | Malicious code in flights-lutg-oidabilamo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181990 | Malicious code in flights-lutg-oidabi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181989 | Malicious code in flights-lutg-oidabamo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181988 | Malicious code in flights-lutg-oida (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181987 | Malicious code in flights-lutg-oid (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181986 | Malicious code in flights-lutg-oduli (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181985 | Malicious code in flights-lutg-odli (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181984 | Malicious code in flights-lutg-odi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181983 | Malicious code in flights-lutg-od (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181982 | Malicious code in flights-lutg-obolduli (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181981 | Malicious code in flights-lutg-obolavuhiaduli (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2022:1248 | Red Hat Security Advisory: OpenShift Container Platform 4.7.48 packages and security update | 2022-04-13T13:49:48+00:00 | 2025-11-21T18:29:45+00:00 |
| rhsa-2022:1213 | Red Hat Security Advisory: kernel security update | 2022-04-05T15:52:18+00:00 | 2025-11-21T18:29:45+00:00 |
| rhsa-2022:1209 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2022-04-05T15:11:04+00:00 | 2025-11-21T18:29:44+00:00 |
| rhsa-2022:1199 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2022-04-05T17:31:47+00:00 | 2025-11-21T18:29:44+00:00 |
| rhsa-2022:1198 | Red Hat Security Advisory: kernel security, bug fix, and enhancement update | 2022-04-05T17:30:30+00:00 | 2025-11-21T18:29:44+00:00 |
| rhsa-2022:1186 | Red Hat Security Advisory: kpatch-patch security update | 2022-04-05T08:46:44+00:00 | 2025-11-21T18:29:44+00:00 |
| rhsa-2022:1185 | Red Hat Security Advisory: kpatch-patch security update | 2022-04-05T08:55:03+00:00 | 2025-11-21T18:29:43+00:00 |
| rhsa-2022:1166 | Red Hat Security Advisory: OpenShift Container Platform 4.7.47 bug fix and security update | 2022-04-11T11:27:29+00:00 | 2025-11-21T18:29:41+00:00 |
| rhsa-2022:1162 | Red Hat Security Advisory: OpenShift Container Platform 4.10.8 bug fix and security update | 2022-04-08T05:03:26+00:00 | 2025-11-21T18:29:41+00:00 |
| rhsa-2022:1158 | Red Hat Security Advisory: OpenShift Container Platform 4.9.27 bug fix and security update | 2022-04-08T09:55:30+00:00 | 2025-11-21T18:29:40+00:00 |
| rhsa-2022:1154 | Red Hat Security Advisory: OpenShift Container Platform 4.8.36 security update | 2022-04-11T20:04:08+00:00 | 2025-11-21T18:29:40+00:00 |
| rhsa-2022:1153 | Red Hat Security Advisory: OpenShift Container Platform 4.8.36 security update | 2022-04-11T19:48:07+00:00 | 2025-11-21T18:29:40+00:00 |
| rhsa-2022:1107 | Red Hat Security Advisory: kernel security update | 2022-03-29T10:01:25+00:00 | 2025-11-21T18:29:38+00:00 |
| rhsa-2022:1106 | Red Hat Security Advisory: kernel security update | 2022-03-29T08:45:56+00:00 | 2025-11-21T18:29:37+00:00 |
| rhsa-2022:1104 | Red Hat Security Advisory: kernel security update | 2022-03-29T08:55:12+00:00 | 2025-11-21T18:29:37+00:00 |
| rhsa-2022:1103 | Red Hat Security Advisory: kpatch-patch security update | 2022-03-29T09:13:01+00:00 | 2025-11-21T18:29:37+00:00 |
| rhsa-2022:1074 | Red Hat Security Advisory: screen security update | 2022-03-28T10:37:22+00:00 | 2025-11-21T18:29:35+00:00 |
| rhsa-2022:1025 | Red Hat Security Advisory: OpenShift Container Platform 4.10.6 security update | 2022-03-28T11:56:19+00:00 | 2025-11-21T18:29:35+00:00 |
| rhsa-2022:1070 | Red Hat Security Advisory: expat security update | 2022-03-28T09:49:06+00:00 | 2025-11-21T18:29:34+00:00 |
| rhsa-2022:1068 | Red Hat Security Advisory: expat security update | 2022-03-28T09:00:37+00:00 | 2025-11-21T18:29:33+00:00 |
| rhsa-2022:1053 | Red Hat Security Advisory: Red Hat Virtualization Host security and enhancement update [ovirt-4.4.10] Async #2 | 2022-03-24T13:33:20+00:00 | 2025-11-21T18:29:32+00:00 |
| rhsa-2022:1042 | Red Hat Security Advisory: Red Hat OpenShift GitOps security update | 2022-03-23T21:53:20+00:00 | 2025-11-21T18:29:31+00:00 |
| rhsa-2022:1041 | Red Hat Security Advisory: Red Hat OpenShift GitOps security update | 2022-03-23T21:18:40+00:00 | 2025-11-21T18:29:31+00:00 |
| rhsa-2022:1040 | Red Hat Security Advisory: Red Hat OpenShift GitOps security update | 2022-03-23T21:17:24+00:00 | 2025-11-21T18:29:31+00:00 |
| rhsa-2022:1039 | Red Hat Security Advisory: Red Hat OpenShift GitOps security update | 2022-03-23T21:19:59+00:00 | 2025-11-21T18:29:31+00:00 |
| rhsa-2022:1021 | Red Hat Security Advisory: OpenShift Container Platform 4.9.26 security update | 2022-03-29T07:05:08+00:00 | 2025-11-21T18:29:30+00:00 |
| rhsa-2022:1012 | Red Hat Security Advisory: expat security update | 2022-03-22T16:25:30+00:00 | 2025-11-21T18:29:29+00:00 |
| rhsa-2022:0999 | Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (openstack-nova) security update | 2022-03-23T22:12:22+00:00 | 2025-11-21T18:29:28+00:00 |
| rhsa-2022:0996 | Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (openstack-neutron) security update | 2022-03-23T22:12:25+00:00 | 2025-11-21T18:29:26+00:00 |
| rhsa-2022:0995 | Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (openstack-tripleo-heat-templates) security update | 2022-03-23T22:11:58+00:00 | 2025-11-21T18:29:26+00:00 |
| ID | Description | Updated |
|---|---|---|
| var-201609-0243 | The Kerberos 5 (aka krb5) PAM module in Apple OS X before 10.12 does not use constant-tim… | 2025-04-13T19:41:45.283000Z |
| var-201503-0095 | WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, all… | 2025-04-13T19:41:42.731000Z |
| var-201506-0071 | Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows a… | 2025-04-13T19:41:42.657000Z |
| var-201501-0254 | CoreGraphics in Apple OS X before 10.10 allows remote attackers to execute arbitrary code… | 2025-04-13T19:41:39.453000Z |
| var-201508-0110 | CoreText in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to exe… | 2025-04-13T19:41:39.224000Z |
| var-201409-0504 | WebKit in Apple iOS before 8 makes it easier for remote attackers to track users during p… | 2025-04-13T19:41:35.034000Z |
| var-201410-1059 | Bluetooth in Apple OS X before 10.10 does not require encryption for HID Low Energy devic… | 2025-04-13T19:41:00.838000Z |
| var-201610-0296 | The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 thr… | 2025-04-13T19:40:59.901000Z |
| var-201411-0266 | WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attack… | 2025-04-13T19:40:59.383000Z |
| var-201509-0040 | CFNetwork in Apple iOS before 9 relies on the hardware UID for its cache encryption key, … | 2025-04-13T19:40:58.497000Z |
| var-201501-0621 | The App Store process in CommerceKit Framework in Apple OS X before 10.10.2 places Apple … | 2025-04-13T19:40:57.957000Z |
| var-201610-0301 | Cisco IOS XE 3.1 through 3.17 and 16.1 on 64-bit platforms allows remote attackers to cau… | 2025-04-13T19:40:26.623000Z |
| var-201504-0080 | Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5 does not properly selec… | 2025-04-13T19:40:26.157000Z |
| var-201405-0237 | WebKit, as used in Apple Safari before 6.1.4 and 7.x before 7.0.4, allows remote attacker… | 2025-04-13T19:40:23.468000Z |
| var-201403-0266 | USB Host in Apple iOS before 7.1 and Apple TV before 6.1 allows physically proximate atta… | 2025-04-13T19:40:22.723000Z |
| var-201509-0057 | The WebKit Canvas implementation in Apple iOS before 9 allows remote attackers to bypass … | 2025-04-13T19:40:00.243000Z |
| var-201507-0406 | The NVIDIA graphics driver in Apple OS X before 10.10.4 allows attackers to execute arbit… | 2025-04-13T19:40:00.035000Z |
| var-201603-0145 | Bluetooth in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a pr… | 2025-04-13T19:39:28.561000Z |
| var-201509-0123 | WebKit, as used in JavaScriptCore in Apple iOS before 9 and iTunes before 12.3, allows re… | 2025-04-13T19:38:57.321000Z |
| var-201605-0468 | libxslt, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and w… | 2025-04-13T19:38:57.262000Z |
| var-201404-0212 | IOKit in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 pla… | 2025-04-13T19:38:56.785000Z |
| var-201508-0265 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 on Windows and OS X … | 2025-04-13T19:38:51.848000Z |
| var-201507-0451 | CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execu… | 2025-04-13T19:38:51.622000Z |
| var-201609-0248 | S2 Camera in Apple iOS before 10 and OS X before 10.12 allows attackers to execute arbitr… | 2025-04-13T19:38:51.578000Z |
| var-201605-0461 | Use-after-free vulnerability in the IOAccelContext2::clientMemoryForType method in Apple … | 2025-04-13T19:38:51.284000Z |
| var-201609-0229 | WebKit in Apple iOS before 10, tvOS before 10, iTunes before 12.5.1 on Windows, and Safar… | 2025-04-13T19:38:20.568000Z |
| var-201501-0256 | The Intel Graphics Driver in Apple OS X before 10.10.2 allows local users to gain privile… | 2025-04-13T19:38:19.878000Z |
| var-201512-0107 | Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allow … | 2025-04-13T19:38:18.786000Z |
| var-201508-0036 | ntfs in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial… | 2025-04-13T19:38:18.273000Z |
| var-201602-0391 | The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME … | 2025-04-13T19:38:16.096000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2019:1772-1 | Security update for python-Pillow | 2019-07-08T15:11:44Z | 2019-07-08T15:11:44Z |
| suse-su-2019:1769-1 | Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP1) | 2019-07-08T12:32:47Z | 2019-07-08T12:32:47Z |
| suse-su-2019:1768-1 | Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP3) | 2019-07-08T12:32:27Z | 2019-07-08T12:32:27Z |
| suse-su-2019:1767-1 | Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP2) | 2019-07-08T12:32:02Z | 2019-07-08T12:32:02Z |
| suse-su-2019:1765-1 | Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP1) | 2019-07-08T12:31:38Z | 2019-07-08T12:31:38Z |
| suse-su-2019:0838-2 | Security update for bash | 2019-07-05T17:46:48Z | 2019-07-05T17:46:48Z |
| suse-su-2019:1398-2 | Security update for libpng16 | 2019-07-05T11:03:58Z | 2019-07-05T11:03:58Z |
| suse-su-2019:1750-1 | Security update for libu2f-host, pam_u2f | 2019-07-04T14:07:36Z | 2019-07-04T14:07:36Z |
| suse-su-2019:1749-1 | Security update for libu2f-host | 2019-07-04T14:06:56Z | 2019-07-04T14:06:56Z |
| suse-su-2019:0048-2 | Security update for helm-mirror | 2019-07-04T12:26:14Z | 2019-07-04T12:26:14Z |
| suse-su-2019:1746-1 | Security update for php5 | 2019-07-04T09:36:26Z | 2019-07-04T09:36:26Z |
| suse-su-2019:1744-1 | Security update for the Linux Kernel | 2019-07-04T08:37:42Z | 2019-07-04T08:37:42Z |
| suse-su-2019:1733-1 | Security update for elfutils | 2019-07-03T11:54:57Z | 2019-07-03T11:54:57Z |
| suse-su-2019:1206-2 | Security update for bzip2 | 2019-07-03T08:55:58Z | 2019-07-03T08:55:58Z |
| suse-su-2019:1290-2 | Security update for nmap | 2019-07-03T08:55:36Z | 2019-07-03T08:55:36Z |
| suse-su-2019:1372-2 | Security update for libtasn1 | 2019-07-03T08:55:12Z | 2019-07-03T08:55:12Z |
| suse-su-2019:1389-2 | Security update for cronie | 2019-07-03T08:54:41Z | 2019-07-03T08:54:41Z |
| suse-su-2019:1374-2 | Security update for taglib | 2019-07-02T16:35:32Z | 2019-07-02T16:35:32Z |
| suse-su-2019:1725-1 | Security update for php7 | 2019-07-02T14:50:26Z | 2019-07-02T14:50:26Z |
| suse-su-2019:1724-1 | Security update for php72 | 2019-07-02T14:49:12Z | 2019-07-02T14:49:12Z |
| suse-su-2019:1722-1 | Security update for glib2 | 2019-07-02T10:06:13Z | 2019-07-02T10:06:13Z |
| suse-su-2019:1721-1 | Security update for dnsmasq | 2019-07-02T10:02:18Z | 2019-07-02T10:02:18Z |
| suse-su-2019:1267-2 | Security update for graphviz | 2019-07-02T08:33:25Z | 2019-07-02T08:33:25Z |
| suse-su-2019:1220-2 | Security update for cf-cli | 2019-07-02T08:32:10Z | 2019-07-02T08:32:10Z |
| suse-su-2019:1266-2 | Security update for evolution | 2019-07-02T08:31:58Z | 2019-07-02T08:31:58Z |
| suse-su-2019:14111-1 | Security update for dbus-1 | 2019-07-02T08:31:38Z | 2019-07-02T08:31:38Z |
| suse-su-2019:1207-2 | Security update for 389-ds | 2019-07-01T13:04:11Z | 2019-07-01T13:04:11Z |
| suse-su-2019:1221-2 | Security update for libxslt | 2019-07-01T13:03:38Z | 2019-07-01T13:03:38Z |
| suse-su-2019:1351-2 | Security update for gnutls | 2019-07-01T13:03:03Z | 2019-07-01T13:03:03Z |
| suse-su-2019:1357-2 | Security update for curl | 2019-07-01T13:02:43Z | 2019-07-01T13:02:43Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2024-28353 | Sonatype Nexus Repository存在路径遍历漏洞 | 2024-05-25 | 2024-07-07 |
| cnvd-2024-25226 | 深圳学海云帆科技有限公司Readpaper存在XSS漏洞 | 2024-05-23 | 2024-07-07 |
| cnvd-2024-25234 | 用友网络科技股份有限公司NC Cloud存在SQL注入漏洞 | 2024-05-22 | 2024-07-06 |
| cnvd-2024-25232 | 西门子(中国)有限公司多款产品存在拒绝服务漏洞 | 2024-05-22 | 2024-07-06 |
| cnvd-2024-25231 | 西门子(中国)有限公司多款产品存在拒绝服务漏洞(CNVD-C-2024-309064) | 2024-05-22 | 2024-07-06 |
| cnvd-2024-25230 | 西门子(中国)有限公司多款产品存在拒绝服务漏洞(CNVD-C-2024-309062) | 2024-05-22 | 2024-07-06 |
| cnvd-2024-25229 | 西门子(中国)有限公司WinCC存在拒绝服务漏洞(CNVD-C-2024-309044) | 2024-05-22 | 2024-07-06 |
| cnvd-2024-25227 | 西门子(中国)有限公司SIMATIC S7-1500存在拒绝服务漏洞 | 2024-05-22 | 2024-07-06 |
| cnvd-2024-31395 | Tenda A301缓冲区溢出漏洞(CNVD-2024-31395) | 2024-07-05 | 2024-07-05 |
| cnvd-2024-31393 | Dell BIOS输入验证错误漏洞(CNVD-2024-31393) | 2024-07-05 | 2024-07-05 |
| cnvd-2024-31391 | Cisco NX-OS Software命令注入漏洞(CNVD-2024-31391) | 2024-07-05 | 2024-07-05 |
| cnvd-2024-31387 | Dell PowerScale OneFS存在未明漏洞(CNVD-2024-31387) | 2024-07-05 | 2024-07-05 |
| cnvd-2024-31386 | Tenda A301存在未明漏洞(CNVD-2024-31386) | 2024-07-05 | 2024-07-05 |
| cnvd-2024-30834 | IBM InfoSphere Information Server存在未明漏洞(CNVD-2024-30834) | 2024-07-02 | 2024-07-05 |
| cnvd-2024-30639 | Rockwell Automation Arena Simulation Software缓冲区溢出漏洞(CNVD-2024-30639) | 2023-10-31 | 2024-07-05 |
| cnvd-2024-30638 | TP-LINK AX1500操作系统命令注入漏洞 | 2024-04-03 | 2024-07-05 |
| cnvd-2024-30632 | TP-LINK ER7206命令执行漏洞 | 2024-06-28 | 2024-07-05 |
| cnvd-2024-30630 | IBM InfoSphere Information Server跨站脚本漏洞(CNVD-2024-30630) | 2024-07-02 | 2024-07-05 |
| cnvd-2024-30629 | Mattermost访问控制不当漏洞 | 2024-07-04 | 2024-07-05 |
| cnvd-2024-30628 | Mattermost信息泄露漏洞(CNVD-2024-30628) | 2024-07-04 | 2024-07-05 |
| cnvd-2024-29674 | FFmpeg缓冲区溢出漏洞(CNVD-2024-29674) | 2024-04-29 | 2024-07-05 |
| cnvd-2024-29673 | Cybozu Garoon信息泄露漏洞(CNVD-2024-29673) | 2024-05-16 | 2024-07-05 |
| cnvd-2024-29672 | Cybozu Garoon资源管理错误漏洞 | 2024-05-16 | 2024-07-05 |
| cnvd-2024-29671 | Cybozu Garoon跨站脚本漏洞(CNVD-2024-29671) | 2024-05-16 | 2024-07-05 |
| cnvd-2024-29670 | Cybozu Garoon信息泄露漏洞(CNVD-2024-29670) | 2024-05-16 | 2024-07-05 |
| cnvd-2024-29669 | Cybozu Garoon信息泄露漏洞(CNVD-2024-29669) | 2024-05-16 | 2024-07-05 |
| cnvd-2024-29668 | Cybozu Garoon拒绝服务漏洞(CNVD-2024-29668) | 2024-05-16 | 2024-07-05 |
| cnvd-2024-29667 | Cybozu Garoon安全绕过漏洞(CNVD-2024-29667) | 2024-05-16 | 2024-07-05 |
| cnvd-2024-29666 | Cybozu Garoon安全绕过漏洞(CNVD-2024-29666) | 2024-05-16 | 2024-07-05 |
| cnvd-2024-29665 | IBM Db2用户枚举漏洞 | 2024-06-21 | 2024-07-05 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2007-avi-477 | Multiples vulnérabilités dans Apple QuickTime | 2007-11-06T00:00:00.000000 | 2007-11-06T00:00:00.000000 |
| certa-2007-avi-467 | Vulnérabilité dans CUPS | 2007-11-02T00:00:00.000000 | 2007-11-06T00:00:00.000000 |
| certa-2007-avi-476 | Multiples vulnérabilités dans gFTP | 2007-11-05T00:00:00.000000 | 2007-11-05T00:00:00.000000 |
| certa-2007-avi-475 | Vulnérabilité dans Avaya | 2007-11-05T00:00:00.000000 | 2007-11-05T00:00:00.000000 |
| certa-2007-avi-474 | Vulnérabilité de l'antivirus Symantec | 2007-11-05T00:00:00.000000 | 2007-11-05T00:00:00.000000 |
| certa-2007-avi-473 | Multiples vulnérabilités dans les extensions de Nagios | 2007-11-02T00:00:00.000000 | 2007-11-02T00:00:00.000000 |
| certa-2007-avi-472 | Multiples vulnérabilités de SonicWALL SSL VPN | 2007-11-02T00:00:00.000000 | 2007-11-02T00:00:00.000000 |
| certa-2007-avi-471 | Vulnérabilité de Blue Coat Security Gateway OS | 2007-11-02T00:00:00.000000 | 2007-11-02T00:00:00.000000 |
| certa-2007-avi-470 | Vulnérabilité de Tomcat WebDAV et | 2007-11-02T00:00:00.000000 | 2007-11-02T00:00:00.000000 |
| certa-2007-avi-468 | Vulnérabilité dans Novell BorderManager | 2007-11-02T00:00:00.000000 | 2007-11-02T00:00:00.000000 |
| certa-2007-avi-463 | Vulnérabilités dans Symantec Mail Security | 2007-10-31T00:00:00.000000 | 2007-11-02T00:00:00.000000 |
| certa-2007-avi-466 | Vulnérabilité dans les serveurs Sun Fire X2100/X2200 M2 | 2007-10-31T00:00:00.000000 | 2007-10-31T00:00:00.000000 |
| certa-2007-avi-465 | Vulnérabilité dans NuFW | 2007-10-31T00:00:00.000000 | 2007-10-31T00:00:00.000000 |
| certa-2007-avi-464 | Multiples vulnérabilités dans IBM AIX | 2007-10-31T00:00:00.000000 | 2007-10-31T00:00:00.000000 |
| certa-2007-avi-462 | Vulnérabilité de McAfee e-Business Server | 2007-10-31T00:00:00.000000 | 2007-10-31T00:00:00.000000 |
| certa-2007-avi-461 | Multiples vulnérabilités dans IBM Lotus Domino | 2007-10-29T00:00:00.000000 | 2007-10-29T00:00:00.000000 |
| certa-2007-avi-460 | Vulnérabilités dans OpenLDAP | 2007-10-29T00:00:00.000000 | 2007-10-29T00:00:00.000000 |
| certa-2007-avi-459 | Multiples Vulnérabilités dans IBM Lotus Notes | 2007-10-26T00:00:00.000000 | 2007-10-26T00:00:00.000000 |
| certa-2007-avi-458 | Multiples vulnérabilités de HP OpenView | 2007-10-26T00:00:00.000000 | 2007-10-26T00:00:00.000000 |
| certa-2007-avi-457 | Multiples vulnérabilités dans RealPlayer | 2007-10-26T00:00:00.000000 | 2007-10-26T00:00:00.000000 |
| certa-2007-avi-456 | Vulnérabilité de l'antivirus Trend Micro | 2007-10-26T00:00:00.000000 | 2007-10-26T00:00:00.000000 |
| certa-2007-avi-455 | Vulnérabilité d'Acrobat et Adobe Reader | 2007-10-24T00:00:00.000000 | 2007-10-24T00:00:00.000000 |
| certa-2007-avi-454 | Vulnérabilité dans la machine virtuelle Java | 2007-10-24T00:00:00.000000 | 2007-10-24T00:00:00.000000 |
| certa-2007-avi-453 | Vulnérabilités de Netscape Navigator | 2007-10-24T00:00:00.000000 | 2007-10-24T00:00:00.000000 |
| certa-2007-avi-452 | Vulnérabilité de CA HIPS | 2007-10-22T00:00:00.000000 | 2007-10-22T00:00:00.000000 |
| certa-2007-avi-451 | Vulnérabilité dans Nagios | 2007-10-22T00:00:00.000000 | 2007-10-22T00:00:00.000000 |
| certa-2007-avi-450 | Vulnérabilité dans RealPlayer | 2007-10-22T00:00:00.000000 | 2007-10-22T00:00:00.000000 |
| certa-2007-avi-449 | Vulnérabilité EAP dans les produits Cisco | 2007-10-22T00:00:00.000000 | 2007-10-22T00:00:00.000000 |
| certa-2007-avi-446 | Multiples vulnérabilités dans des produits Mozilla | 2007-10-19T00:00:00.000000 | 2007-10-22T00:00:00.000000 |
| certa-2007-avi-448 | Multiples vulnérabilités dans des produits Nortel | 2007-10-19T00:00:00.000000 | 2007-10-19T00:00:00.000000 |