Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-13504 |
6.1 (3.1)
|
WordPress Real Estate Pro plugin <= 2.1.4 - Reflected … |
e-plugins |
Real Estate Pro |
2026-01-08T09:17:36.949Z | 2026-01-20T14:28:05.174Z |
| CVE-2025-12550 |
9.8 (3.1)
|
WordPress OchaHouse theme <= 2.2.8 - Local File Inclus… |
jwsthemes |
OchaHouse |
2026-01-08T09:17:36.554Z | 2026-01-20T14:28:05.164Z |
| CVE-2025-22708 |
9.8 (3.1)
|
WordPress Mitech theme <= 2.3.4 - Local File Inclusion… |
ThemeMove |
Mitech |
2026-01-08T09:17:38.950Z | 2026-01-20T14:28:05.144Z |
| CVE-2025-31634 |
8.8 (3.1)
|
WordPress Insurance theme <= 3.5 - PHP Object Injectio… |
designthemes |
Insurance |
2025-10-22T14:32:05.043Z | 2026-01-20T14:28:05.105Z |
| CVE-2025-27004 |
6.1 (3.1)
|
WordPress Famous - Responsive Image And Video Grid Gal… |
LambertGroup |
Famous - Responsive Image And Video Grid Gallery WordPress Plugin |
2026-01-08T09:17:41.802Z | 2026-01-20T14:28:05.101Z |
| CVE-2025-14429 |
9.8 (3.1)
|
WordPress AeroLand theme <= 1.6.6 - Local File Inclusi… |
ThemeMove |
AeroLand |
2026-01-08T09:17:37.834Z | 2026-01-20T14:28:05.085Z |
| CVE-2025-32222 |
9.8 (3.1)
|
WordPress Widget Logic <= 6.0.5 - Remote Code Executio… |
Widgetlogic.org |
Widget Logic |
2025-11-06T15:53:22.717Z | 2026-01-20T14:28:05.039Z |
| CVE-2025-30944 |
7.5 (3.1)
|
WordPress Tablesome Table Premium <= 1.1.23 - Broken A… |
Essekia |
Tablesome Table Premium |
2025-10-22T14:32:04.793Z | 2026-01-20T14:28:05.029Z |
| CVE-2025-22288 |
4.1 (3.1)
|
WordPress Smush Image Compression and Optimization plu… |
WPMU DEV - Your All-in-One WordPress Platform |
Smush Image Compression and Optimization |
2025-11-06T15:53:18.126Z | 2026-01-20T14:28:05.015Z |
| CVE-2025-23705 |
7.1 (3.1)
|
WordPress Zielke Design Project Gallery plugin <= 2.5.… |
Terry Zielke |
Zielke Design Project Gallery |
2025-12-31T19:55:23.308Z | 2026-01-20T14:28:05.005Z |
| CVE-2025-22728 |
9.8 (3.1)
|
WordPress Workreap (theme's plugin) plugin <= 3.3.6 - … |
AmentoTech |
Workreap (theme's plugin) |
2026-01-08T09:17:40.670Z | 2026-01-20T14:28:04.993Z |
| CVE-2025-23504 |
9.8 (3.1)
|
WordPress Felan Framework plugin <= 1.1.3 - Account Ta… |
RiceTheme |
Felan Framework |
2026-01-08T09:17:40.900Z | 2026-01-20T14:28:04.968Z |
| CVE-2025-23707 |
7.1 (3.1)
|
WordPress En Masse plugin <= 1.0 - Reflected Cross Sit… |
Matamko |
En Masse |
2025-12-31T19:56:21.648Z | 2026-01-20T14:28:04.966Z |
| CVE-2025-14359 |
9.8 (3.1)
|
WordPress Oshine theme <= 7.2.7 - Local File Inclusion… |
brandexponents |
Oshine |
2026-01-08T09:17:37.351Z | 2026-01-20T14:28:04.952Z |
| CVE-2025-31047 |
8.8 (3.1)
|
WordPress Themify Edmin theme <= 2.0.0 - PHP Object In… |
Themify |
Themify Edmin |
2026-01-05T10:26:04.107Z | 2026-01-20T14:28:04.925Z |
| CVE-2025-31046 |
4.3 (3.1)
|
WordPress AnyWhere Elementor Pro plugin <= 2.29 - Brok… |
WPvibes |
AnyWhere Elementor Pro |
2026-01-05T10:24:56.305Z | 2026-01-20T14:28:04.908Z |
| CVE-2025-31054 |
7.1 (3.1)
|
WordPress Bloggie theme <= 2.0.8 - Cross Site Scriptin… |
Themefy |
Bloggie |
2025-12-31T20:05:20.832Z | 2026-01-20T14:28:04.874Z |
| CVE-2025-23719 |
7.1 (3.1)
|
WordPress ZhinaTwitterWidget plugin <= 1.0 - Reflected… |
zckevin |
ZhinaTwitterWidget |
2025-12-31T19:57:28.449Z | 2026-01-20T14:28:04.844Z |
| CVE-2025-23469 |
7.1 (3.1)
|
WordPress Sleekplan plugin <= 0.2.0 - Reflected Cross … |
Sleekplan |
Sleekplan |
2025-12-29T23:48:36.314Z | 2026-01-20T14:28:04.821Z |
| CVE-2025-31044 |
8.5 (3.1)
|
WordPress Premium SEO Pack <= 3.3.2 - SQL Injection Vu… |
AA-Team |
Premium SEO Pack |
2026-01-05T10:23:17.529Z | 2026-01-20T14:28:04.811Z |
| CVE-2025-14358 |
9.8 (3.1)
|
WordPress REHub Framework plugin <= 19.9.5 - Broken Ac… |
sizam |
REHub Framework |
2026-01-08T09:17:37.140Z | 2026-01-20T14:28:04.797Z |
| CVE-2025-30633 |
9.3 (3.1)
|
WordPress Amazon Native Shopping Recommendations Plugi… |
AA-Team |
Amazon Native Shopping Recommendations |
2026-01-05T10:21:09.369Z | 2026-01-20T14:28:04.771Z |
| CVE-2025-14430 |
9.8 (3.1)
|
WordPress Brook - Agency Business Creative theme <= 2.… |
ThemeMove |
Brook - Agency Business Creative |
2026-01-08T09:17:38.058Z | 2026-01-20T14:28:04.742Z |
| CVE-2025-28953 |
8.5 (3.1)
|
WordPress smart SEO plugin <= 4.0 - SQL Injection Vuln… |
axiomthemes |
smart SEO |
2025-11-06T15:53:18.852Z | 2026-01-20T14:28:04.720Z |
| CVE-2025-31029 |
5.4 (3.1)
|
WordPress replyMail plugin <= 1.2.0 - Cross Site Reque… |
bingu |
replyMail |
2025-11-06T15:53:19.694Z | 2026-01-20T14:28:04.716Z |
| CVE-2025-22509 |
9.8 (3.1)
|
WordPress Atlas theme <= 2.1.0 - Local File Inclusion … |
TMRW-studio |
Atlas |
2026-01-08T09:17:38.524Z | 2026-01-20T14:28:04.634Z |
| CVE-2025-14431 |
9.8 (3.1)
|
WordPress Navian theme <= 1.5.4 - Local File Inclusion… |
THEMELOGI |
Navian |
2026-01-08T09:17:38.310Z | 2026-01-20T14:28:04.567Z |
| CVE-2025-28973 |
6.5 (3.1)
|
WordPress Pro Bulk Watermark Plugin for WordPress <= 2… |
AA-Team |
Pro Bulk Watermark Plugin for WordPress |
2025-12-31T20:02:10.769Z | 2026-01-20T14:28:04.509Z |
| CVE-2025-13835 |
6.5 (3.1)
|
WordPress Arconix Shortcodes plugin <= 2.1.19 - Cross … |
Tyche Softwares |
Arconix Shortcodes |
2025-12-01T17:57:41.794Z | 2026-01-20T14:28:04.481Z |
| CVE-2025-14314 |
8.5 (3.1)
|
WordPress PopupKit plugin <= 2.1.5 - SQL Injection vul… |
Roxnor |
PopupKit |
2025-12-18T07:21:40.676Z | 2026-01-20T14:28:04.473Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-15405 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
PHPEMS cross-site request forgery |
n/a |
PHPEMS |
2026-01-01T15:02:06.258Z | 2026-02-23T08:01:57.542Z |
| CVE-2025-15394 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
iCMS POST Parameter ConfigAdmincp.php save code injection |
n/a |
iCMS |
2025-12-31T19:02:14.256Z | 2026-01-02T19:42:59.224Z |
| CVE-2024-28867 |
5.9 (3.1)
|
Swift Prometheus un-sanitized metric name or labels ca… |
swift-server |
swift-prometheus |
2024-03-29T14:26:22.194Z | 2025-03-25T14:39:04.232Z |
| CVE-2025-15452 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
xnx3 wangmarket Backend Variable Search variableList.d… |
xnx3 |
wangmarket |
2026-01-05T02:02:09.544Z | 2026-02-23T08:15:53.792Z |
| CVE-2025-15451 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
xnx3 wangmarket System Variables variableSave.do cross… |
xnx3 |
wangmarket |
2026-01-05T01:32:09.347Z | 2026-02-23T08:15:32.162Z |
| CVE-2021-24977 |
N/A
|
Use Any Font < 6.2.1 - Unauthenticated Arbitrary CSS A… |
Unknown |
Use Any Font | Custom Font Uploader |
2022-02-28T09:06:26.000Z | 2024-08-03T19:49:14.458Z |
| CVE-2025-32457 |
7.7 (3.1)
|
ON Semiconductor Quantenna router_command.sh (in the g… |
ON Semiconductor |
Quantenna Wi-Fi chipset |
2025-06-08T21:03:24.532Z | 2025-06-10T13:23:32.884Z |
| CVE-2025-32456 |
7.7 (3.1)
|
ON Semiconductor Quantenna router_command.sh (in the p… |
ON Semiconductor |
Quantenna Wi-Fi chipset |
2025-06-08T21:03:12.814Z | 2025-06-10T13:24:14.742Z |
| CVE-2025-32455 |
7.7 (3.1)
|
ON Semiconductor Quantenna router_command.sh (in the r… |
ON Semiconductor |
Quantenna Wi-Fi chipset |
2025-06-08T21:02:58.816Z | 2025-06-09T18:38:09.297Z |
| CVE-2025-49306 |
6.5 (3.1)
|
WordPress WP Social Widget <= 2.3 - Cross Site Scripti… |
catchsquare |
WP Social Widget |
2025-06-06T12:53:48.782Z | 2025-06-06T16:05:12.823Z |
| CVE-2025-43026 |
7.1 (4.0)
|
HP Support Assistant – Potential Escalation of Privilege |
HP, Inc. |
HP Support Assistant |
2025-06-05T19:41:30.538Z | 2026-02-26T17:51:07.620Z |
| CVE-2025-3461 |
9.1 (3.1)
|
ON Semiconductor Quantenna Telnet Missing Authentication |
ON Semiconductor |
Quantenna Wi-Fi chipset |
2025-06-08T21:02:37.521Z | 2025-06-09T18:37:14.718Z |
| CVE-2025-36573 |
7.1 (3.1)
|
Dell Smart Dock Firmware, versions prior to 01.00… |
Dell |
Smart Dock |
2025-06-12T15:18:00.863Z | 2025-06-12T15:35:26.976Z |
| CVE-2025-27689 |
7.8 (3.1)
|
Dell iDRAC Tools, version(s) prior to 11.3.0.0, c… |
Dell |
iDRAC Tools |
2025-06-12T20:36:24.943Z | 2026-02-26T17:50:40.294Z |
| CVE-2025-52560 |
8.1 (3.1)
|
Kanboard Password Reset Poisoning via Host Header Injection |
kanboard |
kanboard |
2025-06-24T02:56:26.589Z | 2025-06-24T15:02:43.025Z |
| CVE-2023-3852 |
4.7 (3.1)
4.7 (3.0)
|
OpenRapid RapidCMS upload.php unrestricted upload |
OpenRapid |
RapidCMS |
2023-07-23T22:00:04.288Z | 2024-08-02T07:08:50.411Z |
| CVE-2025-3892 |
6.7 (3.1)
|
ACAP applications can be executed with elevated p… |
Axis Communications AB |
AXIS OS |
2025-08-12T05:14:43.655Z | 2026-02-26T17:49:43.547Z |
| CVE-2025-30027 |
6.7 (3.1)
|
An ACAP configuration file lacked sufficient inpu… |
Axis Communications AB |
AXIS OS |
2025-08-12T05:18:26.937Z | 2026-02-26T17:49:43.219Z |
| CVE-2025-7622 |
5.1 (4.0)
|
During an internal security assessment, a Server-… |
Axis Communications AB |
AXIS Camera Station Pro |
2025-08-12T05:09:23.834Z | 2025-08-12T17:59:32.228Z |
| CVE-2025-7616 |
5.1 (4.0)
5.5 (3.1)
5.5 (3.0)
|
gmg137 snap7-rs Public API pthread_cond_destroy memory… |
gmg137 |
snap7-rs |
2025-07-14T15:32:12.150Z | 2025-07-15T19:51:27.186Z |
| CVE-2025-55746 |
9.3 (3.1)
|
Directus allows unauthenticated file upload and file m… |
directus |
directus |
2025-08-20T17:58:06.762Z | 2025-08-20T18:20:03.663Z |
| CVE-2025-29903 |
5.2 (3.1)
|
In JetBrains Runtime before 21.0.6b872.80 arbitra… |
JetBrains |
Runtime |
2025-03-12T12:36:15.276Z | 2025-03-12T13:51:16.357Z |
| CVE-2023-53955 |
9.3 (4.0)
9.8 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x Authorization Bypas… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-22T21:37:15.319Z | 2025-12-22T22:03:50.814Z |
| CVE-2025-66177 |
8.8 (3.1)
|
There is a Stack overflow Vulnerability in the de… |
Hikvision |
DS-96xxxNI-Hx |
2026-01-13T01:47:54.031Z | 2026-01-13T17:27:13.199Z |
| CVE-2025-14333 |
8.1 (3.1)
|
Memory safety bugs fixed in Firefox ESR 140.6, Thunder… |
Mozilla |
Firefox |
2025-12-09T13:38:09.979Z | 2026-02-26T16:57:06.605Z |
| CVE-2025-68457 |
0.6 (4.0)
|
Orejime has executable code in HTML attributes |
boscop-fr |
orejime |
2025-12-19T16:40:30.258Z | 2026-01-13T16:53:35.324Z |
| CVE-2021-36193 |
6.3 (3.1)
|
Multiple stack-based buffer overflows in the comm… |
Fortinet |
FortiFone |
2022-02-02T11:19:47.000Z | 2026-01-13T16:32:40.255Z |
| CVE-2025-0717 |
3.5 (3.1)
|
Social Slider Feed < 2.2.9 - Admin+ Stored XSS |
Unknown |
Social Slider Feed |
2025-03-25T06:00:14.221Z | 2025-03-25T14:14:03.266Z |
| CVE-2025-30610 |
6.5 (3.1)
|
WordPress WP Social Widget - <= <= 2.2.6 Cross Site Sc… |
catchsquare |
WP Social Widget |
2025-03-24T13:47:28.086Z | 2025-03-24T22:00:49.968Z |
| CVE-2024-12010 |
7.2 (3.1)
|
A post-authentication command injection vulnerabi… |
Zyxel |
AX7501-B1 firmware |
2025-03-11T01:44:15.430Z | 2026-02-26T19:09:42.424Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2021-24977 | The Use Any Font | Custom Font Uploader WordPress plugin before 6.2.1 does not have any authorisati… | 2022-02-28T09:15:08.337 | 2026-01-13T20:33:51.607 |
| fkie_cve-2025-32457 | The Quantenna Wi-Fi chipset ships with a local control script, router_command.sh (in the get_file_f… | 2025-06-08T21:15:31.403 | 2026-01-13T20:25:19.797 |
| fkie_cve-2025-32456 | The Quantenna Wi-Fi chipset ships with a local control script, router_command.sh (in the put_file_t… | 2025-06-08T21:15:31.267 | 2026-01-13T20:20:46.173 |
| fkie_cve-2025-32455 | The Quantenna Wi-Fi chipset ships with a local control script, router_command.sh (in the run_cmd ar… | 2025-06-08T21:15:30.993 | 2026-01-13T20:12:22.423 |
| fkie_cve-2025-49306 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-06-06T13:15:46.303 | 2026-01-13T20:04:21.693 |
| fkie_cve-2025-43026 | A potential security vulnerability has been identified in the HP Support Assistant for versions pri… | 2025-06-05T20:15:26.067 | 2026-01-13T20:02:40.320 |
| fkie_cve-2025-3461 | The Quantenna Wi-Fi chips ship with an unauthenticated telnet interface by default. This is an inst… | 2025-06-08T21:15:33.030 | 2026-01-13T20:01:27.457 |
| fkie_cve-2025-36573 | Dell Smart Dock Firmware, versions prior to 01.00.08.01, contain an Insertion of Sensitive Informat… | 2025-06-12T16:15:23.003 | 2026-01-13T19:43:45.170 |
| fkie_cve-2025-27689 | Dell iDRAC Tools, version(s) prior to 11.3.0.0, contain(s) an Improper Access Control vulnerability… | 2025-06-12T21:15:20.113 | 2026-01-13T19:41:52.837 |
| fkie_cve-2025-52560 | Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.… | 2025-06-24T03:15:34.653 | 2026-01-13T19:35:51.907 |
| fkie_cve-2023-3852 | A vulnerability was found in OpenRapid RapidCMS up to 1.3.1. It has been declared as critical. This… | 2023-07-23T22:15:09.477 | 2026-01-13T19:17:39.980 |
| fkie_cve-2025-3892 | ACAP applications can be executed with elevated privileges, potentially leading to privilege escala… | 2025-08-12T06:15:26.040 | 2026-01-13T18:56:35.630 |
| fkie_cve-2025-30027 | An ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code… | 2025-08-12T06:15:25.617 | 2026-01-13T18:54:52.183 |
| fkie_cve-2025-7622 | During an internal security assessment, a Server-Side Request Forgery (SSRF) vulnerability that all… | 2025-08-12T05:15:32.227 | 2026-01-13T18:46:46.573 |
| fkie_cve-2025-7616 | A vulnerability, which was classified as critical, has been found in gmg137 snap7-rs up to 1.142.1.… | 2025-07-14T16:15:27.377 | 2026-01-13T18:37:16.450 |
| fkie_cve-2025-55746 | Directus is a real-time API and App dashboard for managing SQL database content. From 10.8.0 to bef… | 2025-08-20T18:15:35.183 | 2026-01-13T18:29:53.387 |
| fkie_cve-2025-29903 | In JetBrains Runtime before 21.0.6b872.80 arbitrary dynamic library execution due to insecure macOS… | 2025-03-12T13:15:37.823 | 2026-01-13T18:28:52.163 |
| fkie_cve-2023-53955 | SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an insecure direct object reference vulnerability that … | 2025-12-22T22:15:59.980 | 2026-01-13T18:23:14.093 |
| fkie_cve-2025-66177 | There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision NVR… | 2026-01-13T03:16:01.250 | 2026-01-13T18:16:06.193 |
| fkie_cve-2025-14333 | Memory safety bugs present in Firefox ESR 140.5, Thunderbird ESR 140.5, Firefox 145 and Thunderbird… | 2025-12-09T16:17:40.990 | 2026-01-13T18:16:05.093 |
| fkie_cve-2025-68457 | Orejime is a consent manager that focuses on accessibility. On HTML elements handled by Orejime pri… | 2025-12-19T17:15:53.393 | 2026-01-13T17:15:59.040 |
| fkie_cve-2021-36193 | Multiple stack-based buffer overflows in the command line interpreter of FortiWeb before 6.4.2 may … | 2022-02-02T12:15:07.977 | 2026-01-13T17:15:55.737 |
| fkie_cve-2025-0717 | To exploit the vulnerability, it is necessary: | 2025-03-25T06:15:40.123 | 2026-01-13T16:23:32.933 |
| fkie_cve-2025-30610 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-03-24T14:15:33.680 | 2026-01-13T16:21:58.863 |
| fkie_cve-2024-12010 | A post-authentication command injection vulnerability in the ”zyUtilMailSend” function of the Zyxel… | 2025-03-11T02:15:10.773 | 2026-01-13T16:19:21.343 |
| fkie_cve-2025-68665 | LangChain is a framework for building LLM-powered applications. Prior to @langchain/core versions 0… | 2025-12-23T23:15:45.097 | 2026-01-13T16:17:22.673 |
| fkie_cve-2024-11253 | A post-authentication command injection vulnerability in the "DNSServer” parameter of the diagnosti… | 2025-03-11T02:15:10.043 | 2026-01-13T16:11:20.030 |
| fkie_cve-2025-68664 | LangChain is a framework for building agents and LLM-powered applications. Prior to versions 0.3.81… | 2025-12-23T23:15:44.933 | 2026-01-13T15:58:23.373 |
| fkie_cve-2024-12009 | A post-authentication command injection vulnerability in the "ZyEE" function of the Zyxel EX5601-T1… | 2025-03-11T02:15:10.590 | 2026-01-13T15:54:51.293 |
| fkie_cve-2023-53963 | SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an unauthenticated OS command injection vulnerability t… | 2025-12-22T22:16:00.693 | 2026-01-13T15:42:50.763 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-38p8-mxmp-83gm |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability was identified in DedeCMS up to 5.7.118. This impacts an unknown function of the fi… | 2025-12-22T03:30:16Z | 2025-12-22T03:30:16Z |
| ghsa-vf6v-86gw-v5p3 |
5.7 (3.1)
5.1 (4.0)
|
A Path Traversal vulnerability in usbmuxd allows local users to escalate to the service user.This i… | 2025-12-10T09:30:25Z | 2025-12-22T03:30:15Z |
| ghsa-wm3h-v48w-fqgf |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability has been found in SeaCMS up to 13.3. The affected element is an unknown function of… | 2025-12-22T00:30:23Z | 2025-12-22T00:30:23Z |
| ghsa-2x92-78m7-jjc3 |
4.7 (3.1)
2.0 (4.0)
|
A vulnerability was found in SeaCMS up to 13.3. The impacted element is an unknown function of the … | 2025-12-22T00:30:23Z | 2025-12-22T00:30:23Z |
| ghsa-78xx-mv96-jm4q |
5.3 (3.1)
|
The Pure WC Variation Swatches WordPress plugin through 1.1.7 does not have an authorization check … | 2025-12-20T06:30:12Z | 2025-12-21T18:30:16Z |
| ghsa-p622-mwq3-26f2 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: swiotlb: fix info leak with DM… | 2024-07-16T15:30:49Z | 2025-12-21T12:30:23Z |
| ghsa-xfvw-x4qw-5mgr |
8.8 (3.1)
7.4 (4.0)
|
A vulnerability has been found in Tenda FH1201 1.2.0.14(408). Affected is the function sprintf of t… | 2025-12-21T09:30:17Z | 2025-12-21T09:30:17Z |
| ghsa-hxpp-w5pc-mh6j |
8.8 (3.1)
7.4 (4.0)
|
A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14(408)/1.2.0.8(8155). This impacts the func… | 2025-12-21T09:30:17Z | 2025-12-21T09:30:17Z |
| ghsa-rfp7-8jvc-hr8q |
8.1 (3.1)
|
The Redirection for Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due… | 2025-12-21T09:30:16Z | 2025-12-21T09:30:16Z |
| ghsa-6p3q-9mgc-93rh |
7.2 (3.1)
|
The SureForms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form field … | 2025-12-21T09:30:16Z | 2025-12-21T09:30:16Z |
| ghsa-29qw-ccch-hcg3 |
8.8 (3.1)
7.4 (4.0)
|
A vulnerability was detected in Tenda AC18 15.03.05.05. This affects the function sprintf of the fi… | 2025-12-21T06:31:12Z | 2025-12-21T06:31:12Z |
| ghsa-w4w5-g48q-278g |
7.4 (3.1)
|
Yealink RPS before 2025-06-27 allows unauthorized access to information, including AutoP URL addres… | 2025-12-21T06:31:11Z | 2025-12-21T06:31:11Z |
| ghsa-pp3h-r2wg-4x23 |
7.3 (3.1)
5.5 (4.0)
|
A security flaw has been discovered in Campcodes Complete Online Beauty Parlor Management System 1.… | 2025-12-21T06:31:11Z | 2025-12-21T06:31:11Z |
| ghsa-j3pp-w9ff-2f4x |
6.4 (3.1)
|
The Image Photo Gallery Final Tiles Grid plugin for WordPress is vulnerable to Stored Cross-Site Sc… | 2025-12-21T06:31:11Z | 2025-12-21T06:31:11Z |
| ghsa-grx3-26h2-7973 |
7.2 (3.1)
|
The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to Store… | 2025-12-21T06:31:11Z | 2025-12-21T06:31:11Z |
| ghsa-fcq9-xmgf-q7q3 |
2.4 (3.1)
1.9 (4.0)
|
A weakness has been identified in Campcodes Complete Online Beauty Parlor Management System 1.0. Th… | 2025-12-21T06:31:11Z | 2025-12-21T06:31:11Z |
| ghsa-f39m-23x8-34jr |
8.8 (3.1)
7.4 (4.0)
|
A security vulnerability has been detected in Tenda AC18 15.03.05.05. The impacted element is the f… | 2025-12-21T06:31:11Z | 2025-12-21T06:31:11Z |
| ghsa-87pr-jc7p-jpc4 |
4.3 (3.1)
|
The Web to SugarCRM Lead plugin for WordPress is vulnerable to Cross-Site Request Forgery in all ve… | 2025-12-21T06:31:10Z | 2025-12-21T06:31:10Z |
| ghsa-7j2x-pfr2-m22p |
6.1 (3.1)
|
The Product Table for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Script… | 2025-12-21T06:31:10Z | 2025-12-21T06:31:10Z |
| ghsa-5vq3-62fq-x6vj |
2.7 (3.1)
|
The Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress is vulnerable to a… | 2025-12-21T06:31:10Z | 2025-12-21T06:31:10Z |
| ghsa-37xp-g99p-rjh7 |
6.4 (3.1)
|
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Me… | 2025-12-21T06:31:10Z | 2025-12-21T06:31:10Z |
| ghsa-whf8-7c9w-8vgj |
7.5 (3.1)
|
The Post Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX plugin for WordPress is v… | 2025-12-21T03:31:11Z | 2025-12-21T03:31:11Z |
| ghsa-c659-mqpq-vxcf |
4.4 (3.1)
|
The WC Builder – WooCommerce Page Builder for WPBakery plugin for WordPress is vulnerable to Stored… | 2025-12-21T03:31:11Z | 2025-12-21T03:31:11Z |
| ghsa-8gc8-cg2q-4q27 |
5.3 (3.1)
|
The Frontend Post Submission Manager Lite plugin for WordPress is vulnerable to Missing Authorizati… | 2025-12-21T03:31:11Z | 2025-12-21T03:31:11Z |
| ghsa-27mc-m39v-wccj |
5.3 (3.1)
|
The Tainacan plugin for WordPress is vulnerable to unauthorized metadata section creation due to mi… | 2025-12-21T03:31:10Z | 2025-12-21T03:31:11Z |
| ghsa-hh7x-pgq5-fv57 |
6.4 (3.1)
|
The WishSuite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'button_tex… | 2025-12-21T03:31:10Z | 2025-12-21T03:31:10Z |
| ghsa-wc95-5wmq-fwmr |
6.1 (3.1)
|
The Five Star Restaurant Reservations – WordPress Booking Plugin plugin for WordPress is vulnerable… | 2025-12-21T03:31:09Z | 2025-12-21T03:31:09Z |
| ghsa-gpq3-q3g7-r2vm |
5.4 (3.1)
|
Missing Authorization vulnerability in HappyFiles HappyFiles Pro allows Exploiting Incorrectly Conf… | 2025-12-21T03:31:09Z | 2025-12-21T03:31:09Z |
| ghsa-g9g9-jxmh-4rpc |
4.3 (3.1)
|
Vulnerability in mojofywp WP Affiliate Disclosure wp-affiliate-disclosure.This issue affects WP Aff… | 2025-12-21T03:31:09Z | 2025-12-21T03:31:09Z |
| ghsa-6jvq-p5jv-23xf |
7.7 (3.1)
|
Missing Authorization vulnerability in HappyFiles HappyFiles Pro happyfiles-pro allows Exploiting I… | 2025-12-21T03:31:09Z | 2025-12-21T03:31:09Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-24261 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.992249Z |
| gsd-2024-24421 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.992026Z |
| gsd-2024-24120 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.991805Z |
| gsd-2024-24429 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.991582Z |
| gsd-2024-24242 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.991349Z |
| gsd-2024-24410 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.991094Z |
| gsd-2024-24173 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.990858Z |
| gsd-2024-24117 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.990619Z |
| gsd-2024-24522 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.990395Z |
| gsd-2024-24595 | Allegro AI’s open-source version of ClearML stores passwords in plaintext within the Mong… | 2024-01-26T06:02:25.990168Z |
| gsd-2024-24281 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.989941Z |
| gsd-2024-24494 | Cross Site Scripting vulnerability in Daily Habit Tracker v.1.0 allows a remote attacker … | 2024-01-26T06:02:25.989705Z |
| gsd-2024-24349 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.989439Z |
| gsd-2024-24653 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.989222Z |
| gsd-2024-24387 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.988971Z |
| gsd-2024-24515 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.988748Z |
| gsd-2024-24520 | An issue in Lepton CMS v.7.0.0 allows a local attacker to execute arbitrary code via the … | 2024-01-26T06:02:25.988493Z |
| gsd-2024-24347 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.988222Z |
| gsd-2024-24137 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.987935Z |
| gsd-2024-24244 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.987655Z |
| gsd-2024-24669 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.987372Z |
| gsd-2024-24226 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.987098Z |
| gsd-2024-24549 | Denial of Service due to improper input validation vulnerability for HTTP/2 requests in A… | 2024-01-26T06:02:25.986887Z |
| gsd-2024-24376 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.986642Z |
| gsd-2024-24419 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.986383Z |
| gsd-2024-24051 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.986171Z |
| gsd-2024-24035 | Cross Site Scripting (XSS) vulnerability in Setor Informatica SIL 3.1 allows attackers to… | 2024-01-26T06:02:25.985956Z |
| gsd-2024-24363 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.985740Z |
| gsd-2024-24651 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.985509Z |
| gsd-2024-24039 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.985285Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-181860 | Malicious code in avangs-olium-niluva (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181859 | Malicious code in avangs-olium-nilua (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181858 | Malicious code in avangs-olium-nilant (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181857 | Malicious code in avangs-olium-nila (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181856 | Malicious code in avangs-olium-nil (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181855 | Malicious code in avangs-olium-niant (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181854 | Malicious code in avangs-olium-ni (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181853 | Malicious code in avangs-olium-anmni (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181852 | Malicious code in avangs-olium-ani (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181851 | Malicious code in avangs-olium-anaumni (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181850 | Malicious code in avangs-olium-anaumini (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181849 | Malicious code in avangs-olium-anamni (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181848 | Malicious code in avangs-olios-nolyi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181847 | Malicious code in avangs-olios-noly (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181846 | Malicious code in avangs-olios-noliyi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181845 | Malicious code in avangs-olios-nolibyi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181844 | Malicious code in avangs-olios-nolibamayi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181843 | Malicious code in avangs-olios-nolibaayi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181842 | Malicious code in avangs-olios-nol (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181841 | Malicious code in avangs-olioms-nolisfsdf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181840 | Malicious code in avangs-olioms-nolisfdf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181839 | Malicious code in avangs-olioms-nolisfasghdf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181838 | Malicious code in avangs-olioms-nolisfasdf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181837 | Malicious code in avangs-olioms-nolisf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181836 | Malicious code in avangs-olioms-nolisdf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181835 | Malicious code in avangs-olioms-nolifgu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181834 | Malicious code in avangs-olioms-nolifau (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181833 | Malicious code in avangs-olioms-nolifagu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181832 | Malicious code in avangs-olioms-nolifa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181831 | Malicious code in avangs-olioms-nolif (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2022:0474 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.0 ansible-runner security update | 2022-02-08T15:00:17+00:00 | 2025-11-21T18:28:36+00:00 |
| rhsa-2022:0473 | Red Hat Security Advisory: aide security update | 2022-02-08T15:26:27+00:00 | 2025-11-21T18:28:36+00:00 |
| rhsa-2022:0472 | Red Hat Security Advisory: aide security update | 2022-02-08T15:03:41+00:00 | 2025-11-21T18:28:36+00:00 |
| rhsa-2022:0469 | Red Hat Security Advisory: Red Hat AMQ Streams 2.0.1 release and security update | 2022-02-08T13:56:51+00:00 | 2025-11-21T18:28:36+00:00 |
| rhsa-2022:0460 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.1 ansible-runner security update | 2022-02-08T03:43:23+00:00 | 2025-11-21T18:28:36+00:00 |
| rhsa-2022:0464 | Red Hat Security Advisory: aide security update | 2022-02-08T11:36:14+00:00 | 2025-11-21T18:28:35+00:00 |
| rhsa-2022:0440 | Red Hat Security Advisory: aide security update | 2022-02-07T08:39:31+00:00 | 2025-11-21T18:28:35+00:00 |
| rhsa-2022:0458 | Red Hat Security Advisory: samba security update | 2022-02-07T17:44:30+00:00 | 2025-11-21T18:28:34+00:00 |
| rhsa-2022:0457 | Red Hat Security Advisory: samba security update | 2022-02-07T17:43:54+00:00 | 2025-11-21T18:28:34+00:00 |
| rhsa-2022:0456 | Red Hat Security Advisory: aide security update | 2022-02-07T17:26:56+00:00 | 2025-11-21T18:28:34+00:00 |
| rhsa-2022:0450 | Red Hat Security Advisory: Red Hat Single Sign-On 7.5.1 for OpenShift image security and enhancement update | 2022-02-07T14:45:54+00:00 | 2025-11-21T18:28:34+00:00 |
| rhsa-2022:0446 | Red Hat Security Advisory: Red Hat Single Sign-On 7.4.10 security update | 2022-02-07T13:43:49+00:00 | 2025-11-21T18:28:34+00:00 |
| rhsa-2022:0449 | Red Hat Security Advisory: Red Hat Single Sign-On 7.5.1 security update | 2022-02-07T13:48:02+00:00 | 2025-11-21T18:28:33+00:00 |
| rhsa-2022:0448 | Red Hat Security Advisory: Red Hat Single Sign-On 7.5.1 security update on RHEL 8 | 2022-02-07T13:54:48+00:00 | 2025-11-21T18:28:33+00:00 |
| rhsa-2022:0447 | Red Hat Security Advisory: Red Hat Single Sign-On 7.5.1 security update on RHEL 7 | 2022-02-07T13:55:22+00:00 | 2025-11-21T18:28:32+00:00 |
| rhsa-2022:0445 | Red Hat Security Advisory: Red Hat Single Sign-On 7.4.10 on OpenJ9 for OpenShift image security update | 2022-02-07T14:22:21+00:00 | 2025-11-21T18:28:32+00:00 |
| rhsa-2022:0444 | Red Hat Security Advisory: Red Hat Single Sign-On 7.4.10 on OpenJDK for OpenShift image security update | 2022-02-07T13:41:18+00:00 | 2025-11-21T18:28:31+00:00 |
| rhsa-2022:0443 | Red Hat Security Advisory: RHV-H security update (redhat-virtualization-host) 4.3.21 | 2022-02-07T10:46:52+00:00 | 2025-11-21T18:28:31+00:00 |
| rhsa-2022:0442 | Red Hat Security Advisory: log4j security update | 2022-02-07T11:07:00+00:00 | 2025-11-21T18:28:31+00:00 |
| rhsa-2022:0441 | Red Hat Security Advisory: aide security update | 2022-02-07T08:38:46+00:00 | 2025-11-21T18:28:31+00:00 |
| rhsa-2022:0439 | Red Hat Security Advisory: rh-maven36-log4j12 security update | 2022-02-03T19:09:28+00:00 | 2025-11-21T18:28:30+00:00 |
| rhsa-2022:0438 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4 security update | 2022-02-03T18:51:47+00:00 | 2025-11-21T18:28:30+00:00 |
| rhsa-2022:0437 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4 security update | 2022-02-03T18:43:46+00:00 | 2025-11-21T18:28:29+00:00 |
| rhsa-2022:0436 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4 security update | 2022-02-03T18:30:42+00:00 | 2025-11-21T18:28:29+00:00 |
| rhsa-2022:0435 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4 security update | 2022-02-03T18:23:56+00:00 | 2025-11-21T18:28:29+00:00 |
| rhsa-2022:0430 | Red Hat Security Advisory: Red Hat Data Grid 7.3.9 security update | 2022-02-03T14:04:37+00:00 | 2025-11-21T18:28:28+00:00 |
| rhsa-2022:0422 | Red Hat Security Advisory: varnish:6 security update | 2022-02-03T12:20:54+00:00 | 2025-11-21T18:28:28+00:00 |
| rhsa-2022:0421 | Red Hat Security Advisory: varnish:6 security update | 2022-02-03T12:12:55+00:00 | 2025-11-21T18:28:27+00:00 |
| rhsa-2022:0420 | Red Hat Security Advisory: varnish:6 security update | 2022-02-03T12:03:09+00:00 | 2025-11-21T18:28:27+00:00 |
| rhsa-2022:0415 | Red Hat Security Advisory: Red Hat Single Sign-On 7.5.1 for OpenShift image security and enhancement update | 2022-02-02T20:04:40+00:00 | 2025-11-21T18:28:27+00:00 |
| ID | Description | Updated |
|---|---|---|
| var-201502-0145 | Cisco ASR 5500 System Architecture Evolution (SAE) Gateway devices allow remote attackers… | 2025-04-12T23:31:28.124000Z |
| var-201502-0403 | Huawei Quidway switches with firmware before V200R005C00SPC300 allows remote attackers to… | 2025-04-12T23:31:27.885000Z |
| var-201504-0273 | Cisco Web Security Appliance (WSA) devices with software 8.5.0-ise-147 do not properly re… | 2025-04-12T23:31:23.764000Z |
| var-201504-0272 | Cisco Web Security Appliance (WSA) devices with software 8.5.0-ise-147 do not properly re… | 2025-04-12T23:31:23.734000Z |
| var-201508-0372 | Cross-site scripting (XSS) vulnerability in the WebGUI in pfSense before 2.2.3 allows rem… | 2025-04-12T23:31:22.349000Z |
| var-201508-0604 | Cross-site request forgery (CSRF) vulnerability on Actiontec GT784WN modems with firmware… | 2025-04-12T23:31:21.805000Z |
| var-201508-0603 | Actiontec GT784WN modems with firmware before NCS01-1.0.13 have hardcoded credentials, wh… | 2025-04-12T23:31:21.772000Z |
| var-201510-0012 | SQL injection vulnerability in Cisco Prime Collaboration Provisioning 10.6 and 11.0 allow… | 2025-04-12T23:31:21.450000Z |
| var-201511-0010 | The web interface in Cisco Unified Computing System (UCS) 2.2(5b)A on blade servers allow… | 2025-04-12T23:31:21.003000Z |
| var-201601-0044 | Cross-site scripting (XSS) vulnerability in Cisco Unity Connection (UC) 10.5(2.3009) allo… | 2025-04-12T23:31:20.418000Z |
| var-201601-0359 | Fortinet FortiClient Linux SSLVPN before build 2313, when installed on Linux in a home di… | 2025-04-12T23:31:20.304000Z |
| var-201604-0062 | Directory traversal vulnerability in ICONICS WebHMI 9 and earlier allows remote attackers… | 2025-04-12T23:31:19.705000Z |
| var-201604-0545 | Untrusted search path vulnerability in Cisco WebEx Productivity Tools 2.40.5001.10012 all… | 2025-04-12T23:31:19.485000Z |
| var-201605-0409 | Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified Com… | 2025-04-12T23:31:19.300000Z |
| var-201611-0179 | A vulnerability on Samsung Mobile M(6.0) devices exists because external access to System… | 2025-04-12T23:31:13.537000Z |
| var-201410-0061 | Cisco WebEx Meetings Server allows remote authenticated users to obtain sensitive informa… | 2025-04-12T23:30:48.950000Z |
| var-201412-0110 | The eSpace Meeting ActiveX control (eSpaceStatusCtrl.dll) in Huawei eSpace Desktop before… | 2025-04-12T23:30:44.410000Z |
| var-201507-0639 | The Juniper SRX Series services gateways with Junos OS 12.1X46 before 12.1X46-D35, 12.1X4… | 2025-04-12T23:30:41.383000Z |
| var-201508-0093 | The guest portal in Cisco Identity Services Engine (ISE) 3300 1.2(0.899) does not restric… | 2025-04-12T23:30:41.346000Z |
| var-201510-0006 | The REST interface in Cisco Unified Communications Manager IM and Presence Service 11.5(1… | 2025-04-12T23:30:41.138000Z |
| var-201510-0195 | 3S-Smart CODESYS Gateway Server before 2.3.9.48 allows remote attackers to cause a denial… | 2025-04-12T23:30:41.070000Z |
| var-201511-0222 | The Management I/O (MIO) component in Cisco Firepower Extensible Operating System 1.1(1.1… | 2025-04-12T23:30:40.187000Z |
| var-201512-0417 | The Cisco WebEx Meetings application before 8.5.1 for Android improperly initializes cust… | 2025-04-12T23:30:39.887000Z |
| var-201601-0426 | The Operation and Maintenance Unit (OMU) in Huawei VCN500 with software before V100R002C0… | 2025-04-12T23:30:39.552000Z |
| var-201602-0061 | The REST interface in Cisco Spark 2015-06 allows remote authenticated users to obtain sen… | 2025-04-12T23:30:39.350000Z |
| var-201603-0159 | Cisco NX-OS 7.1(1)N1(1) on Nexus 5500, 5600, and 6000 devices does not properly validate … | 2025-04-12T23:30:38.923000Z |
| var-201606-0058 | Lenovo BIOS EFI Driver allows local administrators to execute arbitrary code with System … | 2025-04-12T23:30:38.210000Z |
| var-201606-0457 | Huawei Honor WS851 routers with software 1.1.21.1 and earlier allow remote attackers to m… | 2025-04-12T23:30:37.864000Z |
| var-201608-0289 | HPE FOS before 7.4.1d and 8.x before 8.0.1 on StoreFabric B switches allows remote attack… | 2025-04-12T23:30:37.552000Z |
| var-201609-0330 | Fortinet FortiSwitch FSW-108D-POE, FSW-124D, FSW-124D-POE, FSW-224D-POE, FSW-224D-FPOE, F… | 2025-04-12T23:30:33.777000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2019:1371-1 | Security update for xen | 2019-05-28T13:33:16Z | 2019-05-28T13:33:16Z |
| suse-su-2019:1289-1 | Security update for the Linux Kernel | 2019-05-28T11:38:31Z | 2019-05-28T11:38:31Z |
| suse-su-2019:1369-1 | Security update for NetworkManager | 2019-05-28T11:16:11Z | 2019-05-28T11:16:11Z |
| suse-su-2019:1368-1 | Recommended update for sles12sp3-docker-image, sles12sp4-image, system-user-root | 2019-05-28T11:15:44Z | 2019-05-28T11:15:44Z |
| suse-su-2019:1365-1 | Security update for php7 | 2019-05-28T08:52:40Z | 2019-05-28T08:52:40Z |
| suse-su-2019:1364-1 | Security update for systemd | 2019-05-28T08:51:42Z | 2019-05-28T08:51:42Z |
| suse-su-2019:1363-1 | Security update for curl | 2019-05-28T08:51:21Z | 2019-05-28T08:51:21Z |
| suse-su-2019:1362-1 | Security update for openssl | 2019-05-28T08:50:04Z | 2019-05-28T08:50:04Z |
| suse-su-2019:1360-1 | Security update for php72 | 2019-05-27T13:30:37Z | 2019-05-27T13:30:37Z |
| suse-su-2019:1357-1 | Security update for curl | 2019-05-27T11:29:19Z | 2019-05-27T11:29:19Z |
| suse-su-2019:1356-1 | Security update for libvirt | 2019-05-27T11:28:58Z | 2019-05-27T11:28:58Z |
| suse-su-2019:1354-1 | Security update for screen | 2019-05-24T17:05:06Z | 2019-05-24T17:05:06Z |
| suse-su-2019:1353-1 | Security update for bluez | 2019-05-24T12:42:40Z | 2019-05-24T12:42:40Z |
| suse-su-2019:1352-1 | Security update for python3 | 2019-05-24T12:41:54Z | 2019-05-24T12:41:54Z |
| suse-su-2019:1351-1 | Security update for gnutls | 2019-05-24T12:41:14Z | 2019-05-24T12:41:14Z |
| suse-su-2019:1349-1 | Security update for xen | 2019-05-24T12:04:34Z | 2019-05-24T12:04:34Z |
| suse-su-2019:1348-1 | Security update for xen | 2019-05-24T12:04:18Z | 2019-05-24T12:04:18Z |
| suse-su-2019:1347-1 | Security update for libvirt | 2019-05-24T12:04:01Z | 2019-05-24T12:04:01Z |
| suse-su-2019:1345-1 | Security update for java-1_7_1-ibm | 2019-05-24T12:00:33Z | 2019-05-24T12:00:33Z |
| suse-su-2019:1340-1 | Security update for libu2f-host | 2019-05-24T10:57:35Z | 2019-05-24T10:57:35Z |
| suse-su-2019:1339-1 | Security update for bluez | 2019-05-24T10:57:06Z | 2019-05-24T10:57:06Z |
| suse-su-2019:14064-1 | Security update for curl | 2019-05-24T09:56:38Z | 2019-05-24T09:56:38Z |
| suse-su-2019:14063-1 | Security update for xen | 2019-05-24T07:26:09Z | 2019-05-24T07:26:09Z |
| suse-su-2019:1326-1 | Security update for sysstat | 2019-05-23T13:18:42Z | 2019-05-23T13:18:42Z |
| suse-su-2019:1325-1 | Security update for php5 | 2019-05-23T13:18:02Z | 2019-05-23T13:18:02Z |
| suse-su-2019:1323-1 | Security update for python-Jinja2 | 2019-05-23T13:16:34Z | 2019-05-23T13:16:34Z |
| suse-su-2019:1321-1 | Security update for python-Pillow | 2019-05-23T11:47:16Z | 2019-05-23T11:47:16Z |
| suse-su-2019:1313-1 | Security update for ucode-intel | 2019-05-22T11:06:39Z | 2019-05-22T11:06:39Z |
| suse-su-2019:1308-1 | Security update for java-1_8_0-ibm | 2019-05-21T16:35:27Z | 2019-05-21T16:35:27Z |
| suse-su-2019:14058-1 | Security update for gnutls | 2019-05-21T16:15:00Z | 2019-05-21T16:15:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2024-29332 | Mozilla Firefox信息泄露漏洞(CNVD-2024-29332) | 2024-06-14 | 2024-06-27 |
| cnvd-2024-29331 | Mozilla Firefox内存损坏漏洞(CNVD-2024-29331) | 2024-06-14 | 2024-06-27 |
| cnvd-2024-29144 | Mozilla Firefox释放后重用漏洞(CNVD-2024-29144) | 2024-06-14 | 2024-06-27 |
| cnvd-2024-29143 | Mozilla Firefox内存安全漏洞 | 2024-06-14 | 2024-06-27 |
| cnvd-2024-29142 | Mozilla Firefox释放后重用漏洞(CNVD-2024-29142) | 2024-06-14 | 2024-06-27 |
| cnvd-2024-29141 | Mozilla Firefox安全绕过漏洞(CNVD-2024-29141) | 2024-06-14 | 2024-06-27 |
| cnvd-2024-29140 | Mozilla Firefox安全绕过漏洞(CNVD-2024-29140) | 2024-06-14 | 2024-06-27 |
| cnvd-2024-29139 | Mozilla Firefox存在未明漏洞(CNVD-2024-29139) | 2024-06-14 | 2024-06-27 |
| cnvd-2024-29138 | Mozilla Firefox安全绕过漏洞(CNVD-2024-29138) | 2024-06-17 | 2024-06-27 |
| cnvd-2024-29137 | Mozilla Firefox欺骗漏洞(CNVD-2024-29137) | 2024-06-17 | 2024-06-27 |
| cnvd-2024-23771 | 用友网络科技股份有限公司用友U8+CRM存在信息泄露漏洞 | 2024-05-13 | 2024-06-27 |
| cnvd-2024-23722 | 福建顶点软件股份有限公司LiveBOS存在文件上传漏洞 | 2024-05-13 | 2024-06-27 |
| cnvd-2024-29334 | Mozilla Firefox安全绕过漏洞(CNVD-2024-29334) | 2024-06-14 | 2024-06-26 |
| cnvd-2024-29333 | Mozilla Firefox释放后重用漏洞(CNVD-2024-29333) | 2024-06-14 | 2024-06-26 |
| cnvd-2024-29289 | Google Chrome释放后重用漏洞(CNVD-2024-29289) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29288 | Google Chrome数据验证错误漏洞(CNVD-2024-29288) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29287 | Google Chrome代码执行漏洞(CNVD-2024-29287) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29286 | Google Chrome安全绕过漏洞(CNVD-2024-29286) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29285 | Google Chrome安全绕过漏洞(CNVD-2024-29285) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29284 | Google Chrome代码执行漏洞(CNVD-2024-29284) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29283 | Google Chrome释放后重用漏洞(CNVD-2024-29283) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29282 | Google Chrome越界读取漏洞(CNVD-2024-29282) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29281 | Google Chrome安全绕过漏洞(CNVD-2024-29281) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29280 | Google Chrome安全绕过漏洞(CNVD-2024-29280) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29279 | Google Chrome安全绕过漏洞(CNVD-2024-29279) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29278 | Google Chrome数据验证错误漏洞 | 2024-04-18 | 2024-06-26 |
| cnvd-2024-29277 | Google Chrome安全绕过漏洞(CNVD-2024-29277) | 2024-04-18 | 2024-06-26 |
| cnvd-2024-28961 | Adobe Commerce服务器端请求伪造漏洞 | 2024-06-14 | 2024-06-26 |
| cnvd-2024-28960 | Adobe Commerce文件上传漏洞 | 2024-06-14 | 2024-06-26 |
| cnvd-2024-28959 | Adobe Commerce输入验证错误漏洞(CNVD-2024-28959) | 2024-06-14 | 2024-06-26 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2007-avi-329 | Vulnérabilités dans plusieurs produits Computer Associates | 2007-07-25T00:00:00.000000 | 2007-07-25T00:00:00.000000 |
| certa-2007-avi-328 | Vulnérabilité dans Kerio MailServer | 2007-07-24T00:00:00.000000 | 2007-07-24T00:00:00.000000 |
| certa-2007-avi-326 | Vulnérabilité d'IBM WebSphere | 2007-07-24T00:00:00.000000 | 2007-07-24T00:00:00.000000 |
| certa-2007-avi-325 | Multiples vulnérabilités dans Citrix Access Gateway | 2007-07-20T00:00:00.000000 | 2007-07-20T00:00:00.000000 |
| certa-2007-avi-324 | Multiples vulnérabilités du navigateur Opera | 2007-07-20T00:00:00.000000 | 2007-07-20T00:00:00.000000 |
| certa-2007-avi-322 | Plusieurs vulnérabilités dans Ipswitch IMail Server | 2007-07-19T00:00:00.000000 | 2007-07-19T00:00:00.000000 |
| certa-2007-avi-321 | Vulnérabilité dans Cisco Wide Area Application Services (WAAS) | 2007-07-19T00:00:00.000000 | 2007-07-19T00:00:00.000000 |
| certa-2007-avi-311 | Multiples vulnérabilités dans les produits Oracle | 2007-07-18T00:00:00.000000 | 2007-07-19T00:00:00.000000 |
| certa-2007-avi-320 | Vulnérabilité d'IBM Tivoli Provisioning Manager | 2007-07-18T00:00:00.000000 | 2007-07-18T00:00:00.000000 |
| certa-2007-avi-319 | Vulnérabilité dans HP ServiceGuard | 2007-07-18T00:00:00.000000 | 2007-07-18T00:00:00.000000 |
| certa-2007-avi-317 | Vulnérabilité des produits RSA | 2007-07-18T00:00:00.000000 | 2007-07-18T00:00:00.000000 |
| certa-2007-avi-316 | Vulnérabilité dans Kaspersky Anti-Virus pour Check Point Firewall-1 | 2007-07-18T00:00:00.000000 | 2007-07-18T00:00:00.000000 |
| certa-2007-avi-315 | Multiples vulnérabilités dans les produits CA | 2007-07-18T00:00:00.000000 | 2007-07-18T00:00:00.000000 |
| certa-2007-avi-314 | Multiples vulnérabilités dans des produits Hitachi | 2007-07-18T00:00:00.000000 | 2007-07-18T00:00:00.000000 |
| certa-2007-avi-312 | Vulnérabilité dans IPSwitch WS_FTP Logging Server | 2007-07-18T00:00:00.000000 | 2007-07-18T00:00:00.000000 |
| certa-2007-avi-310 | Vulnérabilité dans la commande rcp sous Sun Solaris | 2007-07-12T00:00:00.000000 | 2007-07-12T00:00:00.000000 |
| certa-2007-avi-309 | Multiples vulnérabilités des produits Symantec | 2007-07-12T00:00:00.000000 | 2007-07-12T00:00:00.000000 |
| certa-2007-avi-308 | Multiples vulnérabilités dans Apple QuickTime | 2007-07-12T00:00:00.000000 | 2007-07-12T00:00:00.000000 |
| certa-2007-avi-307 | Multiples vulnérabilités de AVG Antivirus | 2007-07-12T00:00:00.000000 | 2007-07-12T00:00:00.000000 |
| certa-2007-avi-305 | Vulnérabilité dans AIX d'IBM | 2007-07-12T00:00:00.000000 | 2007-07-12T00:00:00.000000 |
| certa-2007-avi-304 | Vulnérabilité dans Cisco Unified Communications Manager | 2007-07-12T00:00:00.000000 | 2007-07-12T00:00:00.000000 |
| certa-2007-avi-303 | Vulnérabilité dans Symantec Backup Exec | 2007-07-12T00:00:00.000000 | 2007-07-12T00:00:00.000000 |
| certa-2007-avi-298 | Vulnérabilité dans 3Com TippingPoint IPS | 2007-07-11T00:00:00.000000 | 2007-07-12T00:00:00.000000 |
| certa-2007-avi-302 | Vulnérabilité dans Sun Java Secure Socket Extension | 2007-07-11T00:00:00.000000 | 2007-07-11T00:00:00.000000 |
| certa-2007-avi-301 | Vulnérabilité dans la machine virtuelle Java de Sun | 2007-07-11T00:00:00.000000 | 2007-07-11T00:00:00.000000 |
| certa-2007-avi-300 | Vulnérabilités dans Drupal | 2007-07-11T00:00:00.000000 | 2007-07-11T00:00:00.000000 |
| certa-2007-avi-299 | Vulnérabilités dans Adobe Flash Player | 2007-07-11T00:00:00.000000 | 2007-07-11T00:00:00.000000 |
| certa-2007-avi-297 | Multiples vulnérabiliés du Common Management Agent (CMA) de McAfee | 2007-07-11T00:00:00.000000 | 2007-07-11T00:00:00.000000 |
| certa-2007-avi-296 | Vulnérabilité dans Microsoft Internet Information Services (IIS) | 2007-07-11T00:00:00.000000 | 2007-07-11T00:00:00.000000 |
| certa-2007-avi-295 | Vulnérabilités dans Microsoft .NET Framework | 2007-07-11T00:00:00.000000 | 2007-07-11T00:00:00.000000 |