Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-0612 |
7.5 (3.1)
|
CVE-2026-0612 |
TheLibrarian |
TheLibrarian.io |
2026-01-16T12:44:59.806Z | 2026-01-16T21:42:52.062Z |
| CVE-2026-0613 |
7.5 (3.1)
|
CVE-2026-0613 |
TheLibrarian |
TheLibrarian.io |
2026-01-16T12:46:02.733Z | 2026-01-16T21:41:53.497Z |
| CVE-2026-0616 |
7.5 (3.1)
|
CVE-2026-0616 |
TheLibrarian |
TheLibrarian.io |
2026-01-16T12:46:58.266Z | 2026-01-16T21:40:36.626Z |
| CVE-2026-23634 |
0 (3.1)
|
Pepr Overly Permissive RBAC ClusterRole in Admin Mode |
defenseunicorns |
pepr |
2026-01-16T19:14:46.483Z | 2026-01-16T21:38:59.905Z |
| CVE-2026-23645 |
5.3 (4.0)
|
SiYuan Vulnerable to Stored Cross-Site Scripting (XSS)… |
siyuan-note |
siyuan |
2026-01-16T19:20:06.744Z | 2026-01-16T21:37:58.336Z |
| CVE-2026-23723 |
7.2 (3.1)
|
WeGIA has a Critical SQL Injection in Atendido_ocorren… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:27:26.790Z | 2026-01-16T21:36:57.181Z |
| CVE-2026-23722 |
9.1 (3.1)
|
WeGIA has a Reflected Cross-Site Scripting (XSS) vulne… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:29:53.736Z | 2026-01-16T21:35:52.457Z |
| CVE-2026-23724 |
4.3 (3.1)
|
WeGIA Stored Cross-Site Scripting (XSS) – atendido_ida… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:37:06.349Z | 2026-01-16T21:33:07.130Z |
| CVE-2021-47827 |
4.6 (4.0)
7.5 (3.1)
|
WebSSH for iOS 14.16.10 - 'mashREPL' Denial of Service |
WebSSH |
WebSSH for iOS |
2026-01-16T19:09:31.864Z | 2026-01-16T21:32:47.489Z |
| CVE-2021-47826 |
8.5 (4.0)
7.8 (3.1)
|
Acer Backup Manager Module 3.0.0.99 - 'IScheduleSvc.ex… |
Acer |
Acer Backup Manager Module |
2026-01-16T19:09:31.313Z | 2026-01-16T21:30:42.285Z |
| CVE-2021-47825 |
8.5 (4.0)
7.8 (3.1)
|
Acer Updater Service 1.2.3500.0 - 'UpdaterService.exe'… |
Acer |
Acer Updater Service |
2026-01-16T19:09:30.772Z | 2026-01-16T21:28:43.399Z |
| CVE-2021-47824 |
4.6 (4.0)
7.5 (3.1)
|
iDailyDiary 4.30 - Denial of Service (PoC) |
Splinterware |
iDailyDiary |
2026-01-16T19:09:30.285Z | 2026-01-16T21:26:31.093Z |
| CVE-2021-47828 |
8.5 (4.0)
7.8 (3.1)
|
BOOTP Turbo 2.0.0.1253 - 'bootpt.exe' Unquoted Service Path |
Weird-Solutions |
BOOTP Turbo |
2026-01-16T19:09:32.424Z | 2026-01-16T21:24:15.396Z |
| CVE-2026-23643 |
5.4 (3.1)
|
CakePHP PaginatorHelper::limitControl() vulnerable to … |
cakephp |
cakephp |
2026-01-16T20:38:45.170Z | 2026-01-16T21:21:56.372Z |
| CVE-2026-23744 |
9.8 (3.1)
|
REC in MCPJam inspector due to HTTP Endpoint exposes |
MCPJam |
inspector |
2026-01-16T20:10:37.458Z | 2026-01-16T21:15:53.738Z |
| CVE-2026-23725 |
5.3 (4.0)
|
WeGIA Stored Cross-Site Scripting (XSS) – nome Paramet… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:38:27.000Z | 2026-01-16T21:13:25.373Z |
| CVE-2020-36930 |
8.5 (4.0)
7.8 (3.1)
|
SysGauge 7.9.18 - ' SysGauge Server' Unquoted Service Path |
Sysgauge |
SysGauge |
2026-01-15T23:25:35.412Z | 2026-01-16T21:12:53.913Z |
| CVE-2021-47783 |
5.3 (4.0)
5.4 (3.1)
|
Phpwcms 1.9.30 - Arbitrary File Upload |
Phpwcms |
Phpwcms |
2026-01-15T23:25:38.320Z | 2026-01-16T21:12:48.295Z |
| CVE-2021-47785 |
7 (4.0)
9.8 (3.1)
|
Ether_MP3_CD_Burner 1.3.8 - Buffer Overflow (SEH) |
Mp3-Avi-Mpeg-Wmv-Rm-To-Audio-Cd-Burner |
Ether_MP3_CD_Burner |
2026-01-15T23:25:38.860Z | 2026-01-16T21:12:42.230Z |
| CVE-2021-47786 |
6.8 (4.0)
7.5 (3.1)
|
Redragon Gaming Mouse - 'REDRAGON_MOUSE.sys' Denial of… |
Redragon |
Redragon Gaming Mouse |
2026-01-15T23:25:39.342Z | 2026-01-16T21:12:36.886Z |
| CVE-2021-47787 |
8.5 (4.0)
7.8 (3.1)
|
TotalAV 5.15.69 - Unquoted Service Path |
Totalav |
TotalAV |
2026-01-15T23:25:39.809Z | 2026-01-16T21:12:31.193Z |
| CVE-2021-47788 |
8.7 (4.0)
8.8 (3.1)
|
WebsiteBaker 2.13.0 - Remote Code Execution (RCE) (Aut… |
Websitebaker |
WebsiteBaker |
2026-01-15T23:25:40.313Z | 2026-01-16T21:12:25.737Z |
| CVE-2021-47789 |
6.8 (4.0)
7.5 (3.1)
|
Yenkee Hornet Gaming Mouse - 'GM312Fltr.sys' Denial of… |
Yenkee |
Yenkee Hornet Gaming Mouse |
2026-01-15T23:25:40.816Z | 2026-01-16T21:12:19.982Z |
| CVE-2021-47790 |
8.5 (4.0)
7.8 (3.1)
|
Active WebCam 11.5 - Unquoted Service Path |
Pysoft |
Active WebCam |
2026-01-15T23:25:41.368Z | 2026-01-16T21:12:13.928Z |
| CVE-2021-47791 |
4.6 (4.0)
7.5 (3.1)
|
SmartFTP Client 10.0.2909.0 - 'Multiple' Denial of Service |
Smartftp |
SmartFTP Client |
2026-01-15T23:25:41.916Z | 2026-01-16T21:12:08.424Z |
| CVE-2021-47792 |
8.5 (4.0)
7.8 (3.1)
|
Remote Mouse 4.002 - Unquoted Service Path |
Remotemouse |
Remote Mouse |
2026-01-15T23:25:42.486Z | 2026-01-16T21:11:59.831Z |
| CVE-2021-47793 |
4.6 (4.0)
7.5 (3.1)
|
Telegram Desktop 2.9.2 - Denial of Service (PoC) |
Telegram |
Telegram Desktop |
2026-01-15T23:25:43.035Z | 2026-01-16T21:11:53.505Z |
| CVE-2021-47806 |
8.5 (4.0)
7.8 (3.1)
|
Dup Scout 13.5.28 - 'Multiple' Unquoted Service Path |
Dupscout |
Dup Scout |
2026-01-15T23:25:49.901Z | 2026-01-16T21:11:47.952Z |
| CVE-2021-47807 |
8.5 (4.0)
7.8 (3.1)
|
Sync Breeze 13.6.18 - 'Multiple' Unquoted Service Path |
Syncbreeze |
Sync Breeze |
2026-01-15T23:25:51.416Z | 2026-01-16T21:11:39.852Z |
| CVE-2021-47809 |
8.5 (4.0)
7.8 (3.1)
|
Disk Sorter Enterprise 13.6.12 - 'Disk Sorter Enterpri… |
Disksorter |
Disk Sorter Enterprise |
2026-01-15T23:25:52.468Z | 2026-01-16T21:11:27.965Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-14436 |
7.2 (3.1)
|
Brevo for WooCommerce <= 4.0.49 - Unauthenticated Stor… |
neeraj_slit |
Brevo for WooCommerce |
2026-01-08T21:21:54.638Z | 2026-01-09T18:13:04.825Z |
| CVE-2025-14172 |
6.5 (3.1)
|
WP Page Permalink Extension <= 1.5.4 - Missing Authori… |
infosatech |
WP Page Permalink Extension |
2026-01-09T11:15:34.916Z | 2026-01-09T16:58:27.051Z |
| CVE-2025-14146 |
5.3 (3.1)
|
Booking Calendar <= 10.14.10 - Unauthenticated Sensiti… |
wpdevelop |
Booking Calendar |
2026-01-09T07:22:09.760Z | 2026-01-09T19:18:29.801Z |
| CVE-2025-13967 |
6.4 (3.1)
|
Woodpecker for WordPress <= 3.0.4 - Authenticated (Con… |
woodpeckerleadform |
Woodpecker for WordPress |
2026-01-09T11:15:31.734Z | 2026-01-09T14:47:19.902Z |
| CVE-2025-13935 |
4.3 (3.1)
|
Tutor LMS – eLearning and online course solution <= 3.… |
themeum |
Tutor LMS – eLearning and online course solution |
2026-01-09T07:22:11.913Z | 2026-01-09T18:10:43.988Z |
| CVE-2025-13934 |
4.3 (3.1)
|
Tutor LMS – eLearning and online course solution <= 3.… |
themeum |
Tutor LMS – eLearning and online course solution |
2026-01-09T07:22:11.542Z | 2026-01-09T19:11:47.452Z |
| CVE-2025-13908 |
6.4 (3.1)
|
The Tooltip <= 1.0.2 - Authenticated (Contributor+) St… |
alobaidi |
The Tooltip |
2026-01-09T11:15:35.698Z | 2026-01-09T16:47:29.688Z |
| CVE-2025-13903 |
6.4 (3.1)
|
PullQuote <= 1.0 - Authenticated (Contributor+) Stored… |
ctietze |
PullQuote |
2026-01-09T11:15:30.170Z | 2026-01-09T19:11:59.849Z |
| CVE-2025-13900 |
6.4 (3.1)
|
WP Popup Magic <= 1.0.0 - Authenticated (Contributor+)… |
themelocation |
WP Popup Magic |
2026-01-09T09:19:47.637Z | 2026-01-09T18:02:20.631Z |
| CVE-2025-13897 |
6.4 (3.1)
|
Client Testimonial Slider <= 2.0 - Authenticated (Cont… |
amu02aftab |
Client Testimonial Slider |
2026-01-09T11:15:33.126Z | 2026-01-09T18:19:16.062Z |
| CVE-2025-13895 |
6.1 (3.1)
|
Top Position Google Finance <= 0.1.0 - Reflected Cross… |
top-position |
Top Position Google Finance |
2026-01-09T09:19:48.081Z | 2026-01-09T18:01:53.355Z |
| CVE-2025-13893 |
6.1 (3.1)
|
Lesson Plan Book <= 1.3 - Reflected Cross-Site Scripting |
burtrw |
Lesson Plan Book |
2026-01-09T11:15:30.823Z | 2026-01-09T14:51:20.686Z |
| CVE-2025-13892 |
6.1 (3.1)
|
MG AdvancedOptions <= 1.2 - Reflected Cross-Site Scripting |
mountaingrafix |
MG AdvancedOptions |
2026-01-09T11:15:33.718Z | 2026-01-09T17:53:55.148Z |
| CVE-2025-13862 |
6.4 (3.1)
|
Menu Card <= 0.8.0 - Authenticated (Contributor+) Stor… |
furqan-khanzada |
Menu Card |
2026-01-09T11:15:35.321Z | 2026-01-09T16:48:52.340Z |
| CVE-2025-13854 |
6.4 (3.1)
|
Curved Text <= 0.1 - Authenticated (Contributor+) Stor… |
soniz |
Curved Text |
2026-01-09T11:15:32.678Z | 2026-01-09T19:30:10.397Z |
| CVE-2025-13853 |
6.4 (3.1)
|
Nearby Now Reviews <= 5.2 - Authenticated (Contributor… |
lnbadmin1 |
Nearby Now Reviews |
2026-01-09T09:19:47.232Z | 2026-01-09T17:06:28.658Z |
| CVE-2025-13852 |
6.4 (3.1)
|
Debt.com Business in a Box <= 4.1.0 - Authenticated (C… |
debtcom |
Debt.com Business in a Box |
2026-01-09T11:15:31.249Z | 2026-01-09T14:48:04.310Z |
| CVE-2025-13753 |
4.3 (3.1)
|
WP Table Builder <= 2.0.19 - Incorrect Authorization t… |
wptb |
WP Table Builder – Drag & Drop Table Builder |
2026-01-09T07:22:12.280Z | 2026-01-09T18:09:45.205Z |
| CVE-2025-13749 |
4.3 (3.1)
|
Clearfy <= 2.4.0 - Cross-Site Request Forgery to Updat… |
creativemotion |
Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer |
2026-01-09T05:25:20.788Z | 2026-01-09T18:25:55.170Z |
| CVE-2025-13729 |
6.4 (3.1)
|
Entry Views <= 1.0.0 - Authenticated (Contributor+) St… |
greenshady |
Entry Views |
2026-01-09T09:19:46.607Z | 2026-01-09T18:02:49.336Z |
| CVE-2025-13717 |
5.3 (3.1)
|
Contact Form vCard Generator <= 2.4 - Missing Authoriz… |
ashishajani |
Contact Form vCard Generator |
2026-01-09T11:15:34.501Z | 2026-01-09T17:44:09.501Z |
| CVE-2025-13704 |
6.4 (3.1)
|
Autogen Headers Menu <= 1.0.1 - Authenticated (Contrib… |
amirshk |
Autogen Headers Menu |
2026-01-09T11:15:34.128Z | 2026-01-09T17:52:39.497Z |
| CVE-2025-13701 |
6.1 (3.1)
|
Shabat Keeper <= 0.4.4 - Reflected Cross-Site Scriptin… |
beshkin |
Shabat Keeper |
2026-01-09T11:15:32.224Z | 2026-01-09T19:32:49.805Z |
| CVE-2025-13628 |
4.3 (3.1)
|
Tutor LMS – eLearning and online course solution <= 3.… |
themeum |
Tutor LMS – eLearning and online course solution |
2026-01-09T07:22:10.781Z | 2026-01-09T19:11:27.064Z |
| CVE-2025-11453 |
6.4 (3.1)
|
Header and Footer Scripts <= 2.2.2 - Authenticated (Co… |
anand_kumar |
Header and Footer Scripts |
2026-01-09T11:15:36.142Z | 2026-01-09T17:03:41.270Z |
| CVE-2020-36875 |
9.3 (4.0)
|
AccessAlly < 3.3.2 Unauthenticated Arbitrary PHP Code … |
ACCESSALLY, INC. |
AccessAlly |
2026-01-09T16:41:06.883Z | 2026-01-09T18:36:57.869Z |
| CVE-2026-22805 |
2.1 (4.0)
|
Metabase channel test endpoint can reach internal loca… |
metabase |
metabase |
2026-01-12T22:36:35.272Z | 2026-01-13T19:07:47.948Z |
| CVE-2026-22798 |
5.9 (3.1)
|
hermes's raw options logging may disclose secrets pass… |
softwarepub |
hermes |
2026-01-12T22:00:30.175Z | 2026-01-13T19:08:22.846Z |
| CVE-2026-22786 |
7.3 (4.0)
|
Gin-vue-admin has arbitrary file upload vulnerability … |
flipped-aurora |
gin-vue-admin |
2026-01-12T21:09:01.732Z | 2026-01-13T19:15:06.777Z |
| CVE-2026-22772 |
5.8 (3.1)
|
Fulcio vulnerable to Server-Side Request Forgery (SSRF… |
sigstore |
fulcio |
2026-01-12T20:58:53.659Z | 2026-01-12T21:17:31.478Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-13934 | The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to unauthor… | 2026-01-09T08:15:57.007 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13908 | The The Tooltip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's … | 2026-01-09T12:15:52.950 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13903 | The PullQuote plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'p… | 2026-01-09T12:15:52.800 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13900 | The WP Popup Magic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'name'… | 2026-01-09T10:15:46.130 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13897 | The Client Testimonial Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via… | 2026-01-09T12:15:52.647 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13895 | The Top Position Google Finance plugin for WordPress is vulnerable to Reflected Cross-Site Scriptin… | 2026-01-09T10:15:45.943 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13893 | The Lesson Plan Book plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `… | 2026-01-09T12:15:52.493 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13892 | The MG AdvancedOptions plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the… | 2026-01-09T12:15:52.347 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13862 | The Menu Card plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `category` … | 2026-01-09T12:15:52.197 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13854 | The Curved Text plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'radius' … | 2026-01-09T12:15:52.040 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13853 | The Nearby Now Reviews plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'd… | 2026-01-09T10:15:45.770 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13852 | The Debt.com Business in a Box plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi… | 2026-01-09T12:15:51.890 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13753 | The WP Table Builder – Drag & Drop Table Builder plugin for WordPress is vulnerable to unauthorized… | 2026-01-09T08:15:56.833 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13749 | The Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer plugin for WordPres… | 2026-01-09T06:16:00.917 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13729 | The Entry Views plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's … | 2026-01-09T10:15:45.087 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13717 | The Contact Form vCard Generator plugin for WordPress is vulnerable to unauthorized access of data … | 2026-01-09T12:15:51.740 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13704 | The Autogen Headers Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the … | 2026-01-09T12:15:51.583 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13701 | The Shabat Keeper plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $_SE… | 2026-01-09T12:15:51.430 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-13628 | The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to unauthor… | 2026-01-09T08:15:56.660 | 2026-01-13T14:03:46.203 |
| fkie_cve-2025-11453 | The Header and Footer Scripts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via… | 2026-01-09T12:15:50.620 | 2026-01-13T14:03:46.203 |
| fkie_cve-2020-36875 | AccessAlly WordPress plugin versions prior to 3.3.2 contain an unauthenticated arbitrary PHP code e… | 2026-01-09T17:15:50.263 | 2026-01-13T14:03:46.203 |
| fkie_cve-2026-22805 | Metabase is an open-source data analytics platform. Prior to 55.13, 56.3, and 57.1, self-hosted Met… | 2026-01-12T23:15:53.217 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-22798 | hermes is an implementation of the HERMES workflow to automatize software publication with rich met… | 2026-01-12T22:16:08.780 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-22786 | Gin-vue-admin is a backstage management system based on vue and gin. Gin-vue-admin <= v2.8.7 has a … | 2026-01-12T22:16:08.190 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-22772 | Fulcio is a certificate authority for issuing code signing certificates for an OpenID Connect (OIDC… | 2026-01-12T21:15:59.457 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-22705 | RustCrypto: Signatures offers support for digital signatures, which provide authentication of data … | 2026-01-10T07:16:03.363 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-22701 | filelock is a platform-independent file lock for Python. Prior to version 3.20.3, a TOCTOU race con… | 2026-01-10T06:15:52.673 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-22698 | RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including… | 2026-01-10T06:15:52.220 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-22685 | DevToys is a desktop app for developers. In versions from 2.0.0.0 to before 2.0.9.0, a path travers… | 2026-01-10T06:15:51.743 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-22611 | AWS SDK for .NET works with Amazon Web Services to help build scalable solutions with Amazon S3, Am… | 2026-01-10T06:15:51.270 | 2026-01-13T14:03:18.990 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-r45v-2289-jgr4 |
4.6 (4.0)
|
Liferay Portal has stored cross-site scripting (XSS) vulnerability | 2025-09-15T12:31:25Z | 2025-12-20T03:01:43Z |
| ghsa-m55r-9fx8-725j |
5.1 (4.0)
|
Liferay Portal's System, Instance and Site Settings are vulnerable to Open Redirect | 2025-09-12T21:32:14Z | 2025-12-20T03:00:39Z |
| ghsa-g8fh-pfw3-8rmr |
5.1 (4.0)
|
Liferay Portal's selection modal is vulnerable to XSS | 2025-09-12T18:31:10Z | 2025-12-20T02:59:08Z |
| ghsa-v53g-736w-mgw4 |
5.3 (4.0)
|
Liferay Portal's Organization Selector exposes organization data to remote authenticated users | 2025-09-12T03:33:06Z | 2025-12-20T02:58:30Z |
| ghsa-wr8m-5h2p-4432 |
5.3 (4.0)
|
Liferay Portal API Allows Authenticated Users to Access Workflow Definitions by Name | 2025-09-11T18:35:53Z | 2025-12-20T02:57:55Z |
| ghsa-5wxc-3jfw-w94p |
7.4 (4.0)
|
Liferay Portal is vulnerable to Insecure Direct Object Reference (IDOR) attack through Authenticati… | 2025-09-11T18:35:53Z | 2025-12-20T02:57:24Z |
| ghsa-jhgr-j9cj-8j62 |
5.1 (4.0)
|
Liferay Portal is vulnerable to Reflected XSS attack through get_editor path | 2025-09-10T21:30:19Z | 2025-12-20T02:57:01Z |
| ghsa-66x6-8jgv-qpfh |
4.6 (4.0)
|
Liferay Portal and Liferay DXP vulnerable to Stored Cross-site Scripting | 2025-09-10T18:30:16Z | 2025-12-20T02:56:22Z |
| ghsa-fvp7-jj9m-3qpf |
6.2 (4.0)
|
Liferay Portal's Incorrect Authorization vulnerability can lead to guest users to obtaining sensiti… | 2025-09-10T21:30:19Z | 2025-12-20T02:55:23Z |
| ghsa-x5fw-8xgx-q6c9 |
5.3 (4.0)
|
Liferay Portal is vulnerable to XSS attack through its search bar portlet | 2025-09-09T21:30:26Z | 2025-12-20T02:53:14Z |
| ghsa-88g3-pv3w-5wmr |
4.6 (4.0)
|
Liferay Portal is vulnerable to XSS attacks via its remote app title field | 2025-09-09T21:30:26Z | 2025-12-20T02:52:39Z |
| ghsa-876g-49r6-33qj |
4.6 (4.0)
|
Liferay Portal allows improper access through the expandoTableLocalService | 2025-08-29T21:32:02Z | 2025-12-20T02:51:48Z |
| ghsa-w3cr-3xw2-rp78 |
6.7 (4.0)
|
Liferay Portal users are able to add system admin portlets to pages | 2025-08-22T21:31:16Z | 2025-12-20T02:50:08Z |
| ghsa-fvqv-593q-qp8r |
5.3 (4.0)
|
Liferay Portal Reflected Cross-Site Scripting Vulnerability via PortalUtil.escapeRedirect | 2025-08-22T18:31:24Z | 2025-12-20T02:47:51Z |
| ghsa-qpp6-f3qj-rggq |
5.3 (4.0)
|
Liferay Portal's Unlimited File Upload Could Result in DoS | 2025-08-22T03:30:24Z | 2025-12-20T02:46:22Z |
| ghsa-p9gc-59hf-x48p |
7.1 (4.0)
|
Liferay Portal Vulnerable to Cross-Site Request Forgery | 2025-08-20T15:31:42Z | 2025-12-20T02:45:38Z |
| ghsa-5fx5-cff6-f3fp |
5.3 (4.0)
|
Liferay Portal Unauthenticated File Access via URL | 2025-08-20T15:31:41Z | 2025-12-20T02:44:54Z |
| ghsa-3hg2-rh4r-8qf6 |
5.9 (3.1)
8.2 (4.0)
|
Apache StreamPark: Use the user’s password as the secret key Vulnerability | 2025-12-12T18:30:35Z | 2025-12-20T02:40:33Z |
| ghsa-3fp2-6mwq-4q3j |
6.9 (4.0)
|
Liferay Portal Vulnerable to Cross-Site Scripting through URLs | 2025-08-20T12:31:15Z | 2025-12-20T02:38:39Z |
| ghsa-3cm8-v4mc-gppg |
7.8 (3.1)
|
Path traversal in binwalk | 2023-01-26T21:30:20Z | 2025-12-20T02:33:01Z |
| ghsa-6gvq-jcmp-8959 |
6.5 (3.1)
|
ALTCHA Proof-of-Work Vulnerable to Challenge Splicing and Replay | 2025-12-16T00:43:52Z | 2025-12-20T02:32:17Z |
| ghsa-f8q4-jwww-x3wv |
5.9 (3.1)
8.2 (4.0)
|
Race Condition in Paramiko | 2022-03-19T00:01:03Z | 2025-12-20T02:31:13Z |
| ghsa-r7v6-mfhq-g3m2 |
7.1 (4.0)
|
Fickling has Code Injection vulnerability via pty.spawn() | 2025-12-15T23:37:28Z | 2025-12-20T02:30:48Z |
| ghsa-565g-hwwr-4pp3 |
7.1 (4.0)
|
Fickling has missing detection for marshal.loads and types.FunctionType in unsafe modules list | 2025-12-15T23:35:55Z | 2025-12-20T02:30:33Z |
| ghsa-84h7-rjj3-6jx4 |
6.5 (3.1)
|
Netty has a CRLF Injection vulnerability in io.netty.handler.codec.http.HttpRequestEncoder | 2025-12-15T23:28:49Z | 2025-12-20T02:30:14Z |
| ghsa-3pmh-24wp-xpf4 |
4.3 (3.1)
|
Weblate has Systematic User and Project Enumeration via Broken Authorization in REST API (IDOR) | 2025-12-15T22:32:03Z | 2025-12-20T02:29:58Z |
| ghsa-pj86-258h-qrvf |
5.3 (3.1)
|
Weblate's over‑permissive webhook endpoint enables mass repository updates and component enumeration | 2025-12-15T22:01:04Z | 2025-12-20T02:29:46Z |
| ghsa-j7c9-79x7-8hpr |
5.0 (3.1)
|
step-ca Has Improper Authorization Check for SSH Certificate Revocation | 2025-12-03T16:27:59Z | 2025-12-20T02:28:23Z |
| ghsa-rmj9-74gc-9wvx |
6.4 (3.1)
|
The Beaver Builder Plugin (Starter Version) plugin for WordPress is vulnerable to Stored Cross-Site… | 2025-10-23T15:30:34Z | 2025-12-20T00:30:26Z |
| ghsa-38jr-29fh-w9vm |
7.4 (3.1)
|
ansys-geometry-core OS Command Injection vulnerability | 2024-03-25T19:37:46Z | 2025-12-20T00:11:45Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-24584 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.971783Z |
| gsd-2024-24528 | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate w… | 2024-01-26T06:02:25.971574Z |
| gsd-2024-24531 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.971360Z |
| gsd-2024-24211 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.971148Z |
| gsd-2024-24285 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.970944Z |
| gsd-2024-24437 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.970729Z |
| gsd-2024-24176 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.970474Z |
| gsd-2024-24329 | TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vul… | 2024-01-26T06:02:25.970263Z |
| gsd-2024-24058 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.970053Z |
| gsd-2024-24241 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.969846Z |
| gsd-2024-24316 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.969635Z |
| gsd-2024-24432 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.969415Z |
| gsd-2024-24215 | An issue in the component /cgi-bin/GetJsonValue.cgi of Cellinx NVT Web Server 5.0.0.014 a… | 2024-01-26T06:02:25.969203Z |
| gsd-2024-24416 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.968999Z |
| gsd-2024-24532 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.968794Z |
| gsd-2024-24119 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.968590Z |
| gsd-2024-24310 | In the module "Generate barcode on invoice / delivery slip" (ecgeneratebarcode) from Ethe… | 2024-01-26T06:02:25.968386Z |
| gsd-2024-24597 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.968180Z |
| gsd-2024-24453 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.967923Z |
| gsd-2024-24402 | An issue in Nagios XI 2024R1.01 allows a remote attacker to escalate privileges via a cra… | 2024-01-26T06:02:25.967714Z |
| gsd-2024-24567 | Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. Vyper compi… | 2024-01-26T06:02:25.967512Z |
| gsd-2024-24542 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.967279Z |
| gsd-2024-24031 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.967073Z |
| gsd-2024-24423 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.966870Z |
| gsd-2024-24267 | gpac v2.2.1 was discovered to contain a memory leak via the gfio_blob variable in the gf_… | 2024-01-26T06:02:25.966651Z |
| gsd-2024-24041 | A stored cross-site scripting (XSS) vulnerability in Travel Journal Using PHP and MySQL w… | 2024-01-26T06:02:25.966447Z |
| gsd-2024-24563 | Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can … | 2024-01-26T06:02:25.966238Z |
| gsd-2024-24393 | File Upload vulnerability index.php in Pichome v.1.1.01 allows a remote attacker to execu… | 2024-01-26T06:02:25.966035Z |
| gsd-2024-24221 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.965824Z |
| gsd-2024-24118 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.965619Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-181770 | Malicious code in avangi-olia-tabialauoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181769 | Malicious code in avangi-olia-tabauoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181768 | Malicious code in avangi-olia-tabaua (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181767 | Malicious code in avangi-olia-tabaluoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181766 | Malicious code in avangi-olia-tabalauoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181765 | Malicious code in avangi-olia-tab (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181764 | Malicious code in avangi-olia-iuaimai (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181763 | Malicious code in avangi-olia-itniabu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181762 | Malicious code in avangi-olia-itnabu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181761 | Malicious code in avangi-olia-itaniu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181760 | Malicious code in avangi-olia-itaniabu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181759 | Malicious code in avangi-olia-itani (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181758 | Malicious code in avangi-olia-iiai (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181757 | Malicious code in avangi-olia-iani (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181756 | Malicious code in avangi-olia-iaimai (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181755 | Malicious code in avangi-olia-iaiai (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181754 | Malicious code in avangi-olia-iai (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181753 | Malicious code in avangi-ogolia-iualm (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181752 | Malicious code in avangi-ogolia-iualimi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181751 | Malicious code in avangi-ogolia-iualimai (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181750 | Malicious code in avangi-ogolia-iualim (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181749 | Malicious code in avangi-ogolia-inualumi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181748 | Malicious code in avangi-ogolia-inualum (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181747 | Malicious code in avangi-ogolia-inualubami (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181746 | Malicious code in avangi-ogolia- (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181745 | Malicious code in avangi-ogoia-inulubami (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181744 | Malicious code in avangi-ogoia-inualubami (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181743 | Malicious code in avangi-ogoia-inlubami (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181742 | Malicious code in avangi-ogoa-inumi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181741 | Malicious code in avangi-ogoa-inubami (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2022:0219 | Red Hat Security Advisory: Red Hat AMQ Streams 1.6.6 release and security update | 2022-01-20T18:19:18+00:00 | 2025-11-21T18:28:01+00:00 |
| rhsa-2022:0216 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4 security update | 2022-01-20T16:00:06+00:00 | 2025-11-21T18:28:01+00:00 |
| rhsa-2022:0209 | Red Hat Security Advisory: java-11-openjdk security update | 2022-01-24T09:45:54+00:00 | 2025-11-21T18:28:01+00:00 |
| rhsa-2022:0205 | Red Hat Security Advisory: Red Hat Data Grid 8.2.3 security update | 2022-01-20T11:39:58+00:00 | 2025-11-21T18:28:01+00:00 |
| rhsa-2022:0204 | Red Hat Security Advisory: java-11-openjdk security update | 2022-01-24T10:22:30+00:00 | 2025-11-21T18:28:00+00:00 |
| rhsa-2022:0202 | Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.6.3 security and bug fix update | 2022-01-20T06:31:23+00:00 | 2025-11-21T18:27:59+00:00 |
| rhsa-2022:0199 | Red Hat Security Advisory: libreswan security update | 2022-01-19T19:33:16+00:00 | 2025-11-21T18:27:59+00:00 |
| rhsa-2022:0190 | Red Hat Security Advisory: Satellite 6.10.2 Async Bug Fix Update | 2022-01-19T14:43:30+00:00 | 2025-11-21T18:27:58+00:00 |
| rhsa-2022:0188 | Red Hat Security Advisory: kernel security and bug fix update | 2022-01-19T15:12:10+00:00 | 2025-11-21T18:27:58+00:00 |
| rhsa-2022:0187 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2022-01-19T14:22:29+00:00 | 2025-11-21T18:27:58+00:00 |
| rhsa-2022:0186 | Red Hat Security Advisory: kernel security, bug fix, and enhancement update | 2022-01-19T14:48:44+00:00 | 2025-11-21T18:27:57+00:00 |
| rhsa-2022:0185 | Red Hat Security Advisory: java-11-openjdk security update | 2022-01-24T09:46:34+00:00 | 2025-11-21T18:27:57+00:00 |
| rhsa-2022:0184 | Red Hat Security Advisory: gegl04 security update | 2022-01-19T11:08:18+00:00 | 2025-11-21T18:27:57+00:00 |
| rhsa-2022:0181 | Red Hat Security Advisory: OpenShift Container Platform 4.6.54 extras and security update | 2022-01-27T08:24:22+00:00 | 2025-11-21T18:27:57+00:00 |
| rhsa-2022:0178 | Red Hat Security Advisory: gegl04 security update | 2022-01-19T10:05:34+00:00 | 2025-11-21T18:27:56+00:00 |
| rhsa-2022:0177 | Red Hat Security Advisory: gegl04 security update | 2022-01-19T10:04:06+00:00 | 2025-11-21T18:27:56+00:00 |
| rhsa-2022:0176 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2022-01-19T10:03:15+00:00 | 2025-11-21T18:27:56+00:00 |
| rhsa-2022:0166 | Red Hat Security Advisory: OpenJDK 17.0.2 security update for Portable Linux Builds | 2022-01-24T11:39:02+00:00 | 2025-11-21T18:27:55+00:00 |
| rhsa-2022:0165 | Red Hat Security Advisory: OpenJDK 17.0.2 security update for Windows Builds | 2022-01-24T11:39:16+00:00 | 2025-11-21T18:27:55+00:00 |
| rhsa-2022:0164 | Red Hat Security Advisory: Red Hat Single Sign-On 7.5.1 for OpenShift image security and enhancement update | 2022-01-18T14:52:40+00:00 | 2025-11-21T18:27:55+00:00 |
| rhsa-2022:0152 | Red Hat Security Advisory: Red Hat Single Sign-On 7.5.1 security update on RHEL 8 | 2022-01-17T21:33:24+00:00 | 2025-11-21T18:27:55+00:00 |
| rhsa-2022:0162 | Red Hat Security Advisory: gegl security update | 2022-01-18T14:07:54+00:00 | 2025-11-21T18:27:54+00:00 |
| rhsa-2022:0161 | Red Hat Security Advisory: java-17-openjdk security update | 2022-01-19T10:05:03+00:00 | 2025-11-21T18:27:54+00:00 |
| rhsa-2022:0128 | Red Hat Security Advisory: thunderbird security update | 2022-01-12T12:21:24+00:00 | 2025-11-21T18:27:54+00:00 |
| rhsa-2022:0157 | Red Hat Security Advisory: kernel security update | 2022-01-18T08:53:13+00:00 | 2025-11-21T18:27:53+00:00 |
| rhsa-2022:0155 | Red Hat Security Advisory: Red Hat Single Sign-On 7.5.1 security update | 2022-01-17T21:45:58+00:00 | 2025-11-21T18:27:52+00:00 |
| rhsa-2022:0151 | Red Hat Security Advisory: Red Hat Single Sign-On 7.5.1 security update on RHEL 7 | 2022-01-17T21:33:04+00:00 | 2025-11-21T18:27:52+00:00 |
| rhsa-2022:0138 | Red Hat Security Advisory: Red Hat AMQ Streams 2.0.0 release and security update | 2022-01-13T15:25:07+00:00 | 2025-11-21T18:27:51+00:00 |
| rhsa-2022:0133 | Red Hat Security Advisory: Red Hat Virtualization Host security and bug fix update [ovirt-4.4.9] Async #2 | 2022-01-12T14:41:12+00:00 | 2025-11-21T18:27:50+00:00 |
| rhsa-2022:0132 | Red Hat Security Advisory: firefox security update | 2022-01-12T12:08:53+00:00 | 2025-11-21T18:27:50+00:00 |
| ID | Description | Updated |
|---|---|---|
| var-201512-0415 | Cross-site request forgery (CSRF) vulnerability on Cisco DPQ3925 devices with EDVA 5.5.2 … | 2025-04-12T23:25:48.912000Z |
| var-201512-0541 | Pacom 1000 CCU and RTU GMS devices allow remote attackers to spoof the controller-to-base… | 2025-04-12T23:25:48.815000Z |
| var-201604-0379 | The management interface in LenovoEMC EZ Media & Backup (hm3), ix2/ix2-dl, ix4-300d, px12… | 2025-04-12T23:25:47.251000Z |
| var-201604-0526 | Apple iBooks Author before 2.4.1 allows remote attackers to read arbitrary files via an i… | 2025-04-12T23:25:47.164000Z |
| var-201604-0568 | Cisco IOS XR 4.2.3, 4.3.0, 4.3.4, and 5.3.1 on ASR 9000 devices allows remote attackers t… | 2025-04-12T23:25:47.096000Z |
| var-201607-0244 | Directory traversal vulnerability in Fortinet FortiWeb before 5.5.3 allows remote authent… | 2025-04-12T23:25:46.086000Z |
| var-201607-0454 | General Electric (GE) Digital Proficy HMI/SCADA - CIMPLICITY before 8.2 SIM 27 mishandles… | 2025-04-12T23:25:45.959000Z |
| var-201608-0407 | The Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 (2013) devices makes in… | 2025-04-12T23:25:45.672000Z |
| var-202407-2073 | A vulnerability was found in Tenda AX1806 1.0.0.1. Affected by this issue is the function… | 2025-04-12T23:25:31.596000Z |
| var-202410-3569 | DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction… | 2025-04-12T23:25:31.149000Z |
| var-201409-0175 | The NETGEAR ProSafe Plus Configuration Utility creates configuration backup files contain… | 2025-04-12T23:24:41.748000Z |
| var-201411-0252 | Buffer overflow in decode.cpp in Cisco OpenH264 1.2.0 and earlier allows remote attackers… | 2025-04-12T23:24:41.001000Z |
| var-201411-0420 | Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote att… | 2025-04-12T23:24:40.826000Z |
| var-201502-0153 | The SOAP interface in Cisco Hosted Collaboration Solution (HCS) allows remote attackers t… | 2025-04-12T23:24:39.282000Z |
| var-201505-0319 | Huawei E355s Mobile WiFi with firmware before 22.158.45.02.625 and WEBUI before 13.100.04… | 2025-04-12T23:24:38.086000Z |
| var-201506-0252 | The web-based administrative interface in Cisco WebEx Meeting Center provides different e… | 2025-04-12T23:24:37.828000Z |
| var-201508-0023 | The Siemens COMPAS Mobile application before 1.6 for Android does not properly verify X.5… | 2025-04-12T23:24:37.282000Z |
| var-201508-0128 | The Internet Access Point Protocol (IAPP) module on Cisco Wireless LAN Controller (WLC) d… | 2025-04-12T23:24:37.221000Z |
| var-201508-0508 | Cisco NX-OS on Nexus 9000 devices 11.1(1c) allows remote authenticated users to cause a d… | 2025-04-12T23:24:37.036000Z |
| var-201511-0106 | An unspecified module in Huawei eSpace U1910, U1911, U1930, U1960, U1980, and U1981 unifi… | 2025-04-12T23:24:32.281000Z |
| var-201602-0182 | The API on Fisher-Price Smart Toy Bear devices allows remote attackers to obtain sensitiv… | 2025-04-12T23:24:31.457000Z |
| var-201604-0059 | Juniper Junos OS 14.1X53 before 14.1X53-D30 on QFX Series switches allows remote attacker… | 2025-04-12T23:24:31.217000Z |
| var-201606-0129 | Huawei Mate 8 smartphones with software NXT-AL10 before NXT-AL10C00B182, NXT-CL00 before … | 2025-04-12T23:24:30.498000Z |
| var-201608-0152 | The LG Electronics bootloader Android before 2016-08-05 on Nexus 5X devices allows attack… | 2025-04-12T23:24:29.887000Z |
| var-201609-0047 | Multiple cross-site request forgery (CSRF) vulnerabilities in Huawei WS331a routers with … | 2025-04-12T23:24:29.576000Z |
| var-201609-0048 | The management interface of Huawei WS331a routers with software before WS331a-10 V100R001… | 2025-04-12T23:24:29.538000Z |
| var-201404-0293 | SQL injection vulnerability in SAP BI Universal Data Integration allows remote attackers … | 2025-04-12T23:22:25.772000Z |
| var-201404-0564 | Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco WebEx Meeti… | 2025-04-12T23:22:25.600000Z |
| var-201410-0060 | The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.2(.2.4) … | 2025-04-12T23:22:22.231000Z |
| var-201411-0359 | Stack-based buffer overflow in Advantech WebAccess, formerly BroadWin WebAccess, before 8… | 2025-04-12T23:22:21.359000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2019:1124-1 | Security update for openssl | 2019-04-30T16:05:36Z | 2019-04-30T16:05:36Z |
| suse-su-2019:1123-1 | Security update for yubico-piv-tool | 2019-04-30T16:04:51Z | 2019-04-30T16:04:51Z |
| suse-su-2019:1122-1 | Security update for hostinfo, supportutils | 2019-04-30T16:04:21Z | 2019-04-30T16:04:21Z |
| suse-su-2019:1121-1 | Security update for gnutls | 2019-04-30T16:02:47Z | 2019-04-30T16:02:47Z |
| suse-su-2019:1111-1 | Security update for libjpeg-turbo | 2019-04-30T10:59:46Z | 2019-04-30T10:59:46Z |
| suse-su-2019:1110-1 | Security update for ovmf | 2019-04-30T10:58:49Z | 2019-04-30T10:58:49Z |
| suse-su-2019:1108-1 | Security update for pacemaker | 2019-04-30T10:57:38Z | 2019-04-30T10:57:38Z |
| suse-su-2019:1102-1 | Security update for glibc | 2019-04-30T10:07:50Z | 2019-04-30T10:07:50Z |
| suse-su-2019:14033-1 | Security update for atftp | 2019-04-29T12:39:21Z | 2019-04-29T12:39:21Z |
| suse-su-2019:1091-1 | Security update for atftp | 2019-04-29T12:34:16Z | 2019-04-29T12:34:16Z |
| suse-su-2019:1088-1 | Security update for wpa_supplicant | 2019-04-29T11:30:12Z | 2019-04-29T11:30:12Z |
| suse-su-2019:1086-1 | Security update for freeradius-server | 2019-04-29T09:27:36Z | 2019-04-29T09:27:36Z |
| suse-su-2018:3467-2 | Security update for smt | 2019-04-29T06:38:18Z | 2019-04-29T06:38:18Z |
| suse-su-2018:3776-2 | Security update for openssh | 2019-04-29T06:09:11Z | 2019-04-29T06:09:11Z |
| suse-su-2019:0125-2 | Security update for openssh | 2019-04-29T06:02:04Z | 2019-04-29T06:02:04Z |
| suse-su-2019:0231-2 | Security update for spice | 2019-04-29T05:56:32Z | 2019-04-29T05:56:32Z |
| suse-su-2019:0060-2 | Security update for LibVNCServer | 2019-04-29T05:55:37Z | 2019-04-29T05:55:37Z |
| suse-su-2019:0313-2 | Security update for LibVNCServer | 2019-04-29T05:45:01Z | 2019-04-29T05:45:01Z |
| suse-su-2018:3749-3 | Security update for MozillaFirefox | 2019-04-27T16:09:30Z | 2019-04-27T16:09:30Z |
| suse-su-2019:0471-2 | Security update for qemu | 2019-04-27T15:57:03Z | 2019-04-27T15:57:03Z |
| suse-su-2018:3973-2 | Security update for qemu | 2019-04-27T15:51:47Z | 2019-04-27T15:51:47Z |
| suse-su-2018:4090-2 | Security update for ghostscript | 2019-04-27T15:39:06Z | 2019-04-27T15:39:06Z |
| suse-su-2019:0243-2 | Security update for python3 | 2019-04-27T15:38:34Z | 2019-04-27T15:38:34Z |
| suse-su-2018:2975-3 | Security update for ghostscript | 2019-04-27T15:19:13Z | 2019-04-27T15:19:13Z |
| suse-su-2018:4088-2 | Security update for git | 2019-04-27T15:10:55Z | 2019-04-27T15:10:55Z |
| suse-su-2019:0057-2 | Security update for java-1_8_0-openjdk | 2019-04-27T15:02:56Z | 2019-04-27T15:02:56Z |
| suse-su-2018:4064-2 | Security update for java-1_8_0-ibm | 2019-04-27T15:02:25Z | 2019-04-27T15:02:25Z |
| suse-su-2018:3436-2 | Security update for clamav | 2019-04-27T14:50:55Z | 2019-04-27T14:50:55Z |
| suse-su-2018:3064-3 | Security update for java-1_8_0-openjdk | 2019-04-27T14:50:46Z | 2019-04-27T14:50:46Z |
| suse-su-2018:3933-2 | Security update for java-1_7_1-ibm | 2019-04-27T14:30:10Z | 2019-04-27T14:30:10Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2024-28501 | ZTE ZXHN H388X未授权访问漏洞 | 2024-06-20 | 2024-06-21 |
| cnvd-2024-27553 | Adobe Substance 3D Stager越界读取漏洞(CNVD-2024-27553) | 2023-12-15 | 2024-06-21 |
| cnvd-2024-27552 | Adobe Substance 3D Designer越界写入漏洞(CNVD-2024-27552) | 2023-12-15 | 2024-06-21 |
| cnvd-2024-27551 | Adobe Substance 3D Designer越界读取漏洞(CNVD-2024-27551) | 2023-12-15 | 2024-06-21 |
| cnvd-2024-27550 | Adobe Substance 3D Designer越界读取漏洞(CNVD-2024-27550) | 2023-12-15 | 2024-06-21 |
| cnvd-2024-27547 | Adobe Framemaker越界读取漏洞(CNVD-2024-27547) | 2024-05-20 | 2024-06-21 |
| cnvd-2024-27546 | Adobe Framemaker缓冲区溢出漏洞(CNVD-2024-27546) | 2024-05-20 | 2024-06-21 |
| cnvd-2024-27545 | Adobe Framemaker堆缓冲区溢出漏洞(CNVD-2024-27545) | 2024-05-20 | 2024-06-21 |
| cnvd-2024-27544 | Adobe Dreamweaver操作系统命令注入漏洞 | 2024-05-20 | 2024-06-21 |
| cnvd-2024-27543 | Adobe Substance 3D Designer越界读取漏洞(CNVD-2024-27543) | 2024-05-20 | 2024-06-21 |
| cnvd-2024-27542 | Adobe Experience Manager跨站脚本漏洞(CNVD-2024-27542) | 2024-06-13 | 2024-06-21 |
| cnvd-2024-27541 | Adobe Experience Manager访问控制不当漏洞 | 2024-06-13 | 2024-06-21 |
| cnvd-2024-27540 | Adobe Audition越界读取漏洞(CNVD-2024-27540) | 2024-06-13 | 2024-06-21 |
| cnvd-2024-27539 | Adobe Audition空指针取消引用漏洞 | 2024-06-13 | 2024-06-21 |
| cnvd-2024-24693 | 北京美特软件技术有限公司MetaCRM6客户关系管理系统存在文件上传漏洞(CNVD-2024-24693) | 2024-05-07 | 2024-06-21 |
| cnvd-2024-24567 | 北京星网锐捷网络技术有限公司RG-UAC 6000-E20C存在命令执行漏洞(CNVD-2024-24567) | 2024-05-07 | 2024-06-21 |
| cnvd-2024-24564 | 北京星网锐捷网络技术有限公司NBR6210-E存在命令执行漏洞(CNVD-2024-24564) | 2024-05-07 | 2024-06-21 |
| cnvd-2024-29344 | Dell Common Event Enabler反序列化漏洞 | 2024-06-13 | 2024-06-20 |
| cnvd-2024-29343 | Dell Client Platform授权问题漏洞 | 2024-06-18 | 2024-06-20 |
| cnvd-2024-29342 | Dell BIOS缓冲区溢出漏洞(CNVD-2024-29342) | 2024-06-18 | 2024-06-20 |
| cnvd-2024-29341 | Dell BIOS输入验证错误漏洞(CNVD-2024-29341) | 2024-06-18 | 2024-06-20 |
| cnvd-2024-29340 | Dell BIOS输入验证错误漏洞(CNVD-2024-29340) | 2024-06-18 | 2024-06-20 |
| cnvd-2024-28617 | Adobe Experience Manager跨站脚本漏洞(CNVD-2024-28617) | 2024-06-18 | 2024-06-20 |
| cnvd-2024-28616 | Adobe Experience Manager跨站脚本漏洞(CNVD-2024-28616) | 2024-06-18 | 2024-06-20 |
| cnvd-2024-28615 | Adobe Experience Manager跨站脚本漏洞(CNVD-2024-28615) | 2024-06-18 | 2024-06-20 |
| cnvd-2024-28514 | SuiteCRM远程执行代码漏洞 | 2022-04-19 | 2024-06-20 |
| cnvd-2024-28365 | Linux kernel存在未明漏洞(CNVD-2024-28365) | 2024-06-17 | 2024-06-20 |
| cnvd-2024-28364 | Linux kernel存在未明漏洞(CNVD-2024-28364) | 2024-06-05 | 2024-06-20 |
| cnvd-2024-28363 | Linux kernel存在未明漏洞(CNVD-2024-28363) | 2024-06-12 | 2024-06-20 |
| cnvd-2024-28194 | Cisco Finesse Web管理接口跨站请求伪造漏洞 | 2024-06-11 | 2024-06-20 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2007-avi-235 | Vulnérabilités dans Avast! Antivirus | 2007-05-30T00:00:00.000000 | 2007-05-30T00:00:00.000000 |
| certa-2007-avi-234 | Multiples vulnérabilités dans Apple Mac OS X | 2007-05-30T00:00:00.000000 | 2007-05-30T00:00:00.000000 |
| certa-2007-avi-233 | Vulnérabilités dans Apple QuickTime | 2007-05-30T00:00:00.000000 | 2007-05-30T00:00:00.000000 |
| certa-2007-avi-158 | Multiples vulnérabilités de Kerberos | 2007-04-04T00:00:00.000000 | 2007-05-30T00:00:00.000000 |
| certa-2007-avi-232 | Multiples vulnérabilités d'Antivir | 2007-05-29T00:00:00.000000 | 2007-05-29T00:00:00.000000 |
| certa-2007-avi-231 | Vulnérabilité dans Symantec Enterprise Security Manager | 2007-05-29T00:00:00.000000 | 2007-05-29T00:00:00.000000 |
| certa-2007-avi-230 | Vulnérabilités dans NOD32 | 2007-05-29T00:00:00.000000 | 2007-05-29T00:00:00.000000 |
| certa-2007-avi-229 | Vulnérabilité dans Tomcat | 2007-05-29T00:00:00.000000 | 2007-05-29T00:00:00.000000 |
| certa-2007-avi-225 | Vulnérabilité dans Vim | 2007-05-24T00:00:00.000000 | 2007-05-29T00:00:00.000000 |
| certa-2007-avi-201 | Multiples vulnérabilités dans PHP | 2007-05-07T00:00:00.000000 | 2007-05-29T00:00:00.000000 |
| certa-2007-avi-151 | Vulnérabilité mod_perl pour Apache | 2007-04-03T00:00:00.000000 | 2007-05-29T00:00:00.000000 |
| certa-2006-avi-501 | Multiples vulnérabilités dans les produits VMware | 2006-11-15T00:00:00.000000 | 2007-05-29T00:00:00.000000 |
| certa-2007-avi-228 | Vulnérabilité d'un produit Citrix | 2007-05-25T00:00:00.000000 | 2007-05-25T00:00:00.000000 |
| certa-2007-avi-227 | Vulnérabilité dans Opera | 2007-05-24T00:00:00.000000 | 2007-05-24T00:00:00.000000 |
| certa-2007-avi-224 | Multiples vulnérabilités dans des produits Cisco | 2007-05-24T00:00:00.000000 | 2007-05-24T00:00:00.000000 |
| certa-2007-avi-223 | Vulnérabilités dans les pilotes sans-fil MadWifi | 2007-05-24T00:00:00.000000 | 2007-05-24T00:00:00.000000 |
| certa-2007-avi-222 | Vulnérabilités dans MySQL | 2007-05-18T00:00:00.000000 | 2007-05-18T00:00:00.000000 |
| certa-2007-avi-221 | Vulnérabilité dans Norton Personal Firewall 2004 | 2007-05-18T00:00:00.000000 | 2007-05-18T00:00:00.000000 |
| certa-2007-avi-220 | Vulnérabilité dans HP Systems Insight Manager | 2007-05-16T00:00:00.000000 | 2007-05-16T00:00:00.000000 |
| certa-2007-avi-219 | Multiples vulnérabilités dans Samba | 2007-05-15T00:00:00.000000 | 2007-05-16T00:00:00.000000 |
| certa-2007-avi-218 | Vulnérabilité dans MySQL | 2007-05-11T00:00:00.000000 | 2007-05-11T00:00:00.000000 |
| certa-2007-avi-217 | Multiples Vulnérabilités des produits CA | 2007-05-11T00:00:00.000000 | 2007-05-11T00:00:00.000000 |
| certa-2007-avi-214 | Vulnérabilité dans Novell NetMail | 2007-05-10T00:00:00.000000 | 2007-05-11T00:00:00.000000 |
| certa-2007-avi-216 | Vulnérabilité dans les produits Cisco | 2007-05-10T00:00:00.000000 | 2007-05-10T00:00:00.000000 |
| certa-2007-avi-215 | Vulnérabilité de Websphere | 2007-05-10T00:00:00.000000 | 2007-05-10T00:00:00.000000 |
| certa-2007-avi-213 | Vulnérabilités dans SquirrelMail | 2007-05-10T00:00:00.000000 | 2007-05-10T00:00:00.000000 |
| certa-2007-avi-212 | Vulnérabilité de plusieurs produits de sécurité | 2007-05-09T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-avi-211 | Vulnérabilité dans HP Tru64 | 2007-05-09T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-avi-210 | Vulnérabilités dans Trend Micro ServerProtect | 2007-05-09T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-avi-209 | Vulnérabilité de l'interface Microsoft DNS RPC | 2007-05-09T00:00:00.000000 | 2007-05-09T00:00:00.000000 |