Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-47810 |
8.5 (4.0)
7.8 (3.1)
|
WibuKey Runtime 6.51 - 'WkSvW32.exe' Unquoted Service Path |
Wibu |
WibuKey Runtime |
2026-01-15T23:25:53.004Z | 2026-01-16T21:11:21.941Z |
| CVE-2021-47820 |
5.1 (4.0)
5.3 (3.1)
|
Ubee EVW327 - 'Enable Remote Access' Cross-Site Reques… |
Ubeeinteractive |
Ubee EVW327 |
2026-01-16T19:09:28.103Z | 2026-01-16T21:11:04.439Z |
| CVE-2021-47821 |
4.6 (4.0)
7.5 (3.1)
|
RarmaRadio 2.72.8 - Denial of Service |
Raimersoft |
RarmaRadio |
2026-01-16T19:09:28.755Z | 2026-01-16T21:10:57.463Z |
| CVE-2021-47822 |
8.5 (4.0)
7.8 (3.1)
|
DiskBoss Service 12.2.18 - 'diskbsa.exe' Unquoted Serv… |
Diskboss |
DiskBoss Service |
2026-01-16T19:09:29.278Z | 2026-01-16T21:10:51.517Z |
| CVE-2021-47823 |
8.5 (4.0)
7.8 (3.1)
|
ePowerSvc 6.0.3008.0 - 'ePowerSvc.exe' Unquoted Servi… |
Acer |
ePowerSvc |
2026-01-16T19:09:29.777Z | 2026-01-16T21:10:45.724Z |
| CVE-2021-47829 |
8.5 (4.0)
7.8 (3.1)
|
DHCP Broadband 4.1.0.1503 - 'dhcpt.exe' Unquoted Servi… |
Weird-Solutions |
DHCP Broadband |
2026-01-16T19:09:33.007Z | 2026-01-16T21:10:39.122Z |
| CVE-2021-47831 |
4.6 (4.0)
7.5 (3.1)
|
Sandboxie 5.49.7 - Denial of Service |
Sandboxie-Plus |
Sandboxie |
2026-01-16T19:09:33.511Z | 2026-01-16T21:10:33.549Z |
| CVE-2021-47833 |
8.5 (4.0)
7.8 (3.1)
|
WifiHotSpot 1.0.0.0 - 'WifiHotSpotService.exe' Unquote… |
Gearboxcomputers |
WifiHotSpot |
2026-01-16T19:09:34.511Z | 2026-01-16T21:10:22.022Z |
| CVE-2021-47834 |
5.1 (4.0)
6.4 (3.1)
|
Schlix CMS 2.2.6-6 - 'title' Persistent Cross-Site Scr… |
Schlix |
Schlix CMS |
2026-01-16T19:09:35.087Z | 2026-01-16T21:10:15.922Z |
| CVE-2021-47835 |
5.1 (4.0)
7.2 (3.1)
|
Freeter 1.2.1 - Persistent Cross-Site Scripting |
Freeter |
Freeter |
2026-01-16T19:09:35.592Z | 2026-01-16T21:10:09.940Z |
| CVE-2021-47836 |
5.1 (4.0)
6.1 (3.1)
|
Markdown Explorer 0.1.1 - Persistent Cross-Site Scripting |
jersou |
Markdown Explorer |
2026-01-16T19:09:36.197Z | 2026-01-16T21:10:01.232Z |
| CVE-2021-47837 |
5.1 (4.0)
7.2 (3.1)
|
Markdownify 1.2.0 - Persistent Cross-Site Scripting |
amitmerchant1990 |
Markdownify |
2026-01-16T19:09:36.840Z | 2026-01-16T21:09:54.575Z |
| CVE-2021-47838 |
5.1 (4.0)
7.2 (3.1)
|
Markright 1.0 - Persistent Cross-Site Scripting |
dvcrn |
Markright |
2026-01-16T19:09:37.362Z | 2026-01-16T21:09:48.312Z |
| CVE-2026-23726 |
4.8 (4.0)
|
WeGIA has an Open Redirect Vulnerability in control.ph… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:40:05.352Z | 2026-01-16T21:09:43.665Z |
| CVE-2021-47839 |
5.1 (4.0)
7.2 (3.1)
|
Marky 0.0.1 - Persistent Cross-Site Scripting |
vesparny |
Marky |
2026-01-16T19:09:37.915Z | 2026-01-16T21:09:40.977Z |
| CVE-2021-47840 |
5.1 (4.0)
7.2 (3.1)
|
Moeditor 0.2.0 - Persistent Cross-Site Scripting |
Moeditor |
Moeditor |
2026-01-16T19:09:38.403Z | 2026-01-16T21:09:34.290Z |
| CVE-2021-47841 |
5.1 (4.0)
6.1 (3.1)
|
SnipCommand 0.1.0 - Persistent Cross-Site Scripting |
gurayyarar |
SnipCommand |
2026-01-16T19:09:38.962Z | 2026-01-16T21:09:27.690Z |
| CVE-2021-47842 |
5.1 (4.0)
7.2 (3.1)
|
StudyMD 0.3.2 - Persistent Cross-Site Scripting |
jotron |
StudyMD |
2026-01-16T19:09:39.451Z | 2026-01-16T21:09:21.414Z |
| CVE-2021-47844 |
5.1 (4.0)
6.1 (3.1)
|
Xmind 2020 - Persistent Cross-Site Scripting |
Xmind |
Xmind |
2026-01-16T19:09:40.133Z | 2026-01-16T21:09:15.560Z |
| CVE-2021-47845 |
8.5 (4.0)
7.8 (3.1)
|
Spy Emergency 25.0.650 - Unquoted Service Path |
Spy-Emergency |
Spy Emergency |
2026-01-16T19:09:40.743Z | 2026-01-16T21:09:09.941Z |
| CVE-2021-47847 |
8.5 (4.0)
7.8 (3.1)
|
Disk Sorter Server 13.6.12 - 'Disk Sorter Server' Unqu… |
Disksorter |
Disk Sorter Server |
2026-01-16T19:09:41.243Z | 2026-01-16T21:09:04.485Z |
| CVE-2012-10064 |
9.3 (4.0)
|
Omni Secure Files < 0.1.14 Unauthenticated Arbitrary F… |
Omnilogic |
Omni Secure Files |
2026-01-16T20:10:13.429Z | 2026-01-16T21:08:58.048Z |
| CVE-2019-25297 |
5.1 (4.0)
|
Poll, Survey & Quiz Maker Plugin by Opinion Stage < 19… |
Assaf Parag |
Poll, Survey & Quiz Maker Plugin by Opinion Stage |
2026-01-16T20:14:10.132Z | 2026-01-16T21:08:52.376Z |
| CVE-2026-23800 |
10 (3.1)
|
WordPress Modular DS plugin <= 2.5.2 - Privilege Escal… |
|
Modular DS |
2026-01-16T20:40:13.232Z | 2026-01-16T21:08:46.900Z |
| CVE-2026-23728 |
4.8 (4.0)
|
WeGIA has an Open Redirect Vulnerability in control.ph… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:46:07.119Z | 2026-01-16T21:04:41.135Z |
| CVE-2026-23729 |
4.8 (4.0)
|
WeGIA has an Open Redirect Vulnerability in control.ph… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:47:10.017Z | 2026-01-16T21:02:05.778Z |
| CVE-2021-47816 |
5.3 (4.0)
8.8 (3.1)
|
Thecus N4800Eco Nas Server Control Panel - Command Injection |
Thecus |
Thecus N4800Eco Nas Server Control Panel |
2026-01-16T19:09:26.929Z | 2026-01-16T20:43:27.338Z |
| CVE-2026-23730 |
4.8 (4.0)
|
WeGIA has an Open Redirect Vulnerability in control.ph… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:48:23.636Z | 2026-01-16T20:34:21.127Z |
| CVE-2026-23731 |
4.3 (3.1)
|
WeGIA Clickjacking Vulnerability |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:50:16.344Z | 2026-01-16T20:31:29.007Z |
| CVE-2026-23735 |
8.7 (4.0)
|
Concurrent Execution using Shared Resource with Improp… |
graphql-hive |
graphql-modules |
2026-01-16T20:04:19.672Z | 2026-01-16T20:28:19.571Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-22705 |
6.4 (3.1)
|
RustCrypto: Signatures has timing side-channel in ML-D… |
RustCrypto |
signatures |
2026-01-10T06:14:20.292Z | 2026-01-12T16:43:06.463Z |
| CVE-2026-22701 |
5.3 (3.1)
|
filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vu… |
tox-dev |
filelock |
2026-01-10T05:59:28.872Z | 2026-01-12T16:45:50.638Z |
| CVE-2026-22698 |
8.7 (4.0)
|
RustCrypto SM2-PKE has 32-bit Biased Nonce Vulnerability |
RustCrypto |
elliptic-curves |
2026-01-10T05:17:19.993Z | 2026-01-12T16:48:30.706Z |
| CVE-2026-22685 |
8.8 (3.1)
|
DevToys Path Traversal (“Zip Slip”) Vulnerability in D… |
DevToys-app |
DevToys |
2026-01-10T05:43:19.856Z | 2026-01-12T14:39:28.330Z |
| CVE-2026-22611 |
3.7 (3.1)
|
AWS SDK for .NET V4 adopted defense in depth enhanceme… |
aws |
aws-sdk-net |
2026-01-10T05:37:08.297Z | 2026-01-12T14:39:57.770Z |
| CVE-2026-22212 |
4.8 (4.0)
|
TinyOS <= 2.1.2 Stack-Based Buffer Overflow in mcp2200gpio |
TinyOS |
TinyOS |
2026-01-12T23:02:45.973Z | 2026-01-13T19:06:27.766Z |
| CVE-2026-0855 |
8.7 (4.0)
8.8 (3.1)
|
Merit LILIN|IP Camera - OS Command Injection |
Merit LILIN |
P2 |
2026-01-12T06:44:40.227Z | 2026-01-16T02:09:56.328Z |
| CVE-2026-0854 |
8.7 (4.0)
8.8 (3.1)
|
Merit LILIN|NVR - OS Command Injection |
Merit LILIN |
DH032 |
2026-01-12T05:58:52.175Z | 2026-01-12T14:56:28.862Z |
| CVE-2026-0853 |
6.9 (4.0)
5.3 (3.1)
|
A-Plus Video Technologies|NVR - Sensitive Data Exposure |
A-Plus Video Technologies |
AP-RM864P |
2026-01-12T03:26:47.546Z | 2026-01-12T15:54:38.969Z |
| CVE-2026-0843 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
jiujiujia/victor123/wxw850227 jjjfood/jjjshop_food ind… |
jiujiujia |
jjjfood |
2026-01-11T09:02:05.907Z | 2026-02-23T08:30:43.138Z |
| CVE-2026-0842 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Flycatcher Toys smART Sketcher Bluetooth Low Energy mi… |
Flycatcher Toys |
smART Sketcher |
2026-01-11T08:02:06.221Z | 2026-02-23T08:30:28.781Z |
| CVE-2026-0831 |
5.3 (3.1)
|
Templately <= 3.4.8 - Unauthenticated Limited Arbitrar… |
wpdevteam |
Templately – Elementor & Gutenberg Template Library: 6500+ Free & Pro Ready Templates And Cloud! |
2026-01-10T09:22:18.126Z | 2026-01-12T13:09:57.883Z |
| CVE-2026-0511 |
8.1 (3.1)
|
Multiple vulnerabilities in SAP Fiori App (Intercompan… |
SAP_SE |
SAP Fiori App (Intercompany Balance Reconciliation) |
2026-01-13T01:15:50.942Z | 2026-02-26T15:04:48.349Z |
| CVE-2026-0510 |
3 (3.1)
|
Obsolete Encryption Algorithm Used in NW AS Java UME U… |
SAP_SE |
NW AS Java UME User Mapping |
2026-01-13T01:15:43.846Z | 2026-01-13T18:26:48.509Z |
| CVE-2026-0507 |
8.4 (3.1)
|
OS Command Injection vulnerability in SAP Application … |
SAP_SE |
SAP Application Server for ABAP and SAP NetWeaver RFCSDK |
2026-01-13T01:15:36.687Z | 2026-02-26T15:04:48.627Z |
| CVE-2026-0504 |
3.8 (3.1)
|
Insufficient Input Handling in JNDI Operations of SAP … |
SAP_SE |
SAP Identity Management |
2026-01-13T01:14:27.040Z | 2026-01-13T19:06:11.135Z |
| CVE-2026-0503 |
6.4 (3.1)
|
Missing Authorization check in in SAP ERP Central Comp… |
SAP_SE |
SAP ERP Central Component and SAP S/4HANA (SAP EHS Management) |
2026-01-13T01:14:20.823Z | 2026-01-13T19:09:43.485Z |
| CVE-2026-0501 |
9.9 (3.1)
|
SQL Injection Vulnerability in SAP S/4HANA Private Clo… |
SAP_SE |
SAP S/4HANA Private Cloud and On-Premise (Financials � General Ledger) |
2026-01-13T01:14:05.294Z | 2026-02-26T15:04:48.911Z |
| CVE-2026-0499 |
6.1 (3.1)
|
Cross-Site Scripting (XSS) vulnerability in SAP NetWea… |
SAP_SE |
SAP NetWeaver Enterprise Portal |
2026-01-13T01:13:47.482Z | 2026-01-13T14:47:20.849Z |
| CVE-2026-0497 |
4.3 (3.1)
|
Missing Authorization check in Business Server Pages A… |
SAP_SE |
Business Server Pages Application (Product Designer Web UI) |
2026-01-13T01:13:35.718Z | 2026-01-13T15:15:00.816Z |
| CVE-2026-0496 |
6.6 (3.1)
|
Multiple vulnerabilities in SAP Fiori App (Intercompan… |
SAP_SE |
SAP Fiori App (Intercompany Balance Reconciliation) |
2026-01-13T01:13:28.818Z | 2026-01-13T15:15:21.939Z |
| CVE-2026-0495 |
5.1 (3.1)
|
Multiple vulnerabilities in SAP Fiori App (Intercompan… |
SAP_SE |
SAP Fiori App (Intercompany Balance Reconciliation) |
2026-01-13T01:13:20.999Z | 2026-01-13T15:15:41.236Z |
| CVE-2026-0494 |
4.3 (3.1)
|
Information Disclosure vulnerability in SAP Fiori App … |
SAP_SE |
SAP Fiori App (Intercompany Balance Reconciliation) |
2026-01-13T01:13:14.370Z | 2026-01-13T16:19:32.833Z |
| CVE-2026-0493 |
4.3 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in SAP… |
SAP_SE |
SAP Fiori App (Intercompany Balance Reconciliation) |
2026-01-13T01:13:06.863Z | 2026-01-13T19:07:00.934Z |
| CVE-2026-0491 |
9.1 (3.1)
|
Code Injection vulnerability in SAP Landscape Transformation |
SAP_SE |
SAP Landscape Transformation |
2026-01-13T01:12:53.331Z | 2026-02-26T15:04:49.849Z |
| CVE-2025-67147 |
9.8 (3.1)
|
Multiple SQL Injection vulnerabilities exist in a… |
n/a |
n/a |
2026-01-12T00:00:00.000Z | 2026-01-12T21:21:52.528Z |
| CVE-2025-41006 |
9.3 (4.0)
|
Multiple vulnerabilities in Imaster products Open conf… |
Imaster |
MEMS Events CRM |
2026-01-12T14:39:11.953Z | 2026-01-12T16:23:28.618Z |
| CVE-2025-41005 |
8.7 (4.0)
|
Multiple vulnerabilities in Imaster products Open conf… |
Imaster |
MEMS Events CRM |
2026-01-12T14:35:20.087Z | 2026-01-12T16:23:34.442Z |
| CVE-2025-41004 |
8.7 (4.0)
|
Multiple vulnerabilities in Imaster products Open conf… |
Imaster |
Patient Record Management System |
2026-01-12T13:55:28.273Z | 2026-01-12T14:20:07.352Z |
| CVE-2025-41003 |
5.1 (4.0)
|
Multiple vulnerabilities in Imaster products Open conf… |
Imaster |
Patient Record Management System |
2026-01-12T13:50:34.267Z | 2026-01-12T14:29:51.672Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-22212 | TinyOS versions up to and including 2.1.2 contain a stack-based buffer overflow vulnerability in th… | 2026-01-12T23:15:52.140 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0855 | Certain IP Camera models developed by Merit LILIN has a OS Command Injection vulnerability, allowin… | 2026-01-12T07:16:19.840 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0854 | Certain DVR/NVR models developed by Merit LILIN has a OS Command Injection vulnerability, allowing … | 2026-01-12T06:16:11.040 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0853 | Certain NVR models developed by A-Plus Video Technologies has a Sensitive Data Exposure vulnerabili… | 2026-01-12T04:15:46.840 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0843 | A vulnerability has been found in jiujiujia/victor123/wxw850227 jjjfood and jjjshop_food up to 2026… | 2026-01-11T09:15:50.810 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0842 | A flaw has been found in Flycatcher Toys smART Sketcher up to 2.0. This affects an unknown part of … | 2026-01-11T08:16:00.150 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0831 | The Templately plugin for WordPress is vulnerable to Arbitrary File Write in all versions up to, an… | 2026-01-10T10:15:50.960 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0511 | SAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks f… | 2026-01-13T02:15:53.800 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0510 | The User Management Engine (UME) in NetWeaver Application Server for Java (NW AS Java) utilizes an … | 2026-01-13T02:15:53.597 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0507 | Due to an OS Command Injection vulnerability in SAP Application Server for ABAP and SAP NetWeaver R… | 2026-01-13T02:15:53.427 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0504 | Due to insufficient input handling, the SAP Identity Management REST interface allows an authentica… | 2026-01-13T02:15:53.110 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0503 | Due to missing authorization check in the SAP ERP Central Component (SAP ECC) and SAP S/4HANA (SAP … | 2026-01-13T02:15:52.953 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0501 | Due to insufficient input validation in SAP S/4HANA Private Cloud and On-Premise (Financials Genera… | 2026-01-13T02:15:52.797 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0499 | SAP NetWeaver Enterprise Portal allows an unauthenticated attacker to inject malicious scripts into… | 2026-01-13T02:15:52.467 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0497 | SAP Product Designer Web UI of Business Server Pages allows authenticated non-administrative users … | 2026-01-13T02:15:52.150 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0496 | SAP Fiori App Intercompany Balance Reconciliation allows an attacker with high privileges to uploa… | 2026-01-13T02:15:51.990 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0495 | SAP Fiori App Intercompany Balance Reconciliation allows an attacker with high privileges to send … | 2026-01-13T02:15:51.830 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0494 | Under certain conditions SAP Fiori App Intercompany Balance Reconciliation application allows an at… | 2026-01-13T02:15:51.667 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0493 | Due to a Cross-Site Request Forgery (CSRF) vulnerability in SAP Fiori App Intercompany Balance Reco… | 2026-01-13T02:15:51.420 | 2026-01-13T14:03:18.990 |
| fkie_cve-2026-0491 | SAP Landscape Transformation allows an attacker with admin privileges to exploit a vulnerability in… | 2026-01-13T02:15:50.743 | 2026-01-13T14:03:18.990 |
| fkie_cve-2025-67147 | Multiple SQL Injection vulnerabilities exist in amansuryawanshi Gym-Management-System-PHP 1.0 via t… | 2026-01-12T21:15:59.133 | 2026-01-13T14:03:18.990 |
| fkie_cve-2025-41006 | Imaster's MEMS Events CRM contains an SQL injection vulnerability in ‘phone’ parameter in ‘/memsdem… | 2026-01-12T15:16:02.910 | 2026-01-13T14:03:18.990 |
| fkie_cve-2025-41005 | Imaster's MEMS Events CRM contains an SQL injection vulnerability in‘keyword’ parameter in ‘/memsde… | 2026-01-12T15:16:02.770 | 2026-01-13T14:03:18.990 |
| fkie_cve-2025-41004 | Imaster's Patient Records Management System is vulnerable to SQL Injection in the endpoint ‘/projec… | 2026-01-12T14:16:02.073 | 2026-01-13T14:03:18.990 |
| fkie_cve-2025-41003 | Imaster's Patient Record Management System contains a stored Cross-Site Scripting (XSS) vulnerabili… | 2026-01-12T14:16:01.920 | 2026-01-13T14:03:18.990 |
| fkie_cve-2025-40978 | Stored Cross-Site Scripting (XSS) vulnerability in WorkDo's eCommerceGo SaaS, consisting of a store… | 2026-01-12T12:16:07.130 | 2026-01-13T14:03:18.990 |
| fkie_cve-2025-40977 | Stored Cross-Site Scripting (XSS) vulnerability in WorkDo's eCommerceGo SaaS, consisting of a lack … | 2026-01-12T12:16:06.997 | 2026-01-13T14:03:18.990 |
| fkie_cve-2025-40976 | Stored Cross-Site Scripting (XSS) vulnerability in WorkDo's TicketGo, consisting of a lack of prope… | 2026-01-12T12:16:06.857 | 2026-01-13T14:03:18.990 |
| fkie_cve-2025-40975 | Stored Cross-Site Scripting (XSS) vulnerability in WorkDo's HRMGo, consisting of a lack of proper v… | 2026-01-12T12:16:05.607 | 2026-01-13T14:03:18.990 |
| fkie_cve-2025-40944 | A vulnerability has been identified in SIMATIC ET 200AL IM 157-1 PN (6ES7157-1AB00-0AB0) (All versi… | 2026-01-13T10:15:58.457 | 2026-01-13T14:03:18.990 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-rv95-896h-c2vc |
6.1 (3.1)
|
Express.js Open Redirect in malformed URLs | 2024-03-25T19:40:26Z | 2025-12-20T00:09:30Z |
| ghsa-5993-7p27-66g5 |
7.7 (3.1)
|
Langflow vulnerable to Server-Side Request Forgery | 2025-12-19T22:52:59Z | 2025-12-19T22:52:59Z |
| ghsa-vc5p-v9hr-52mj |
6.3 (4.0)
|
Apache Log4j does not verify the TLS hostname in its Socket Appender | 2025-12-18T21:31:44Z | 2025-12-19T22:08:02Z |
| ghsa-v4p2-2w39-mhrj |
7.5 (4.0)
|
Apache NiFi GetAsanaObject Processor has Remote Code Execution via Unsafe Deserialization | 2025-12-19T12:31:24Z | 2025-12-19T21:45:09Z |
| ghsa-24v3-254g-jv85 |
2.1 (4.0)
|
Tuta Mail has DOM attribute and CSS injection in its Contact Viewer feature | 2025-12-19T21:32:35Z | 2025-12-19T21:32:35Z |
| ghsa-w6jr-fv5g-m8h5 |
8.8 (3.1)
8.7 (4.0)
|
Dotclear 2.25.3 contains a remote code execution vulnerability that allows authenticated attackers … | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-rjr9-j2mx-g65q |
9.8 (3.1)
9.3 (4.0)
|
Lilac-Reloaded for Nagios 2.0.8 contains a remote code execution vulnerability in the autodiscovery… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-r9qg-6q9c-jpvx |
8.8 (3.1)
8.7 (4.0)
|
Flatnux 2021-03.25 contains an authenticated file upload vulnerability that allows administrative u… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-qhww-qrj4-8v34 |
8.4 (3.1)
8.5 (4.0)
|
OCS Inventory NG 2.3.0.0 contains an unquoted service path vulnerability that allows local attacker… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-qh83-9fpx-6f4r |
9.8 (3.1)
9.3 (4.0)
|
Ever Gauzy v0.281.9 contains a JWT authentication vulnerability that allows attackers to exploit we… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-m5gx-365m-gfgx |
7.5 (3.1)
8.6 (4.0)
|
LDAP Tool Box Self Service Password 1.5.2 contains a password reset vulnerability that allows attac… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-g4gm-4wgj-pr24 |
6.4 (3.1)
5.1 (4.0)
|
WebsiteBaker 2.13.3 contains a stored cross-site scripting vulnerability that allows authenticated … | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-fq6c-qxhp-r3x2 |
8.8 (3.1)
8.7 (4.0)
|
BrainyCP 1.0 contains an authenticated remote code execution vulnerability that allows logged-in us… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-f8f5-8p87-wcm5 |
7.3 (3.1)
5.5 (4.0)
|
A security flaw has been discovered in code-projects Simple Stock System 1.0. Affected by this issu… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-cjf9-p6jj-3g6r |
9.8 (3.1)
9.3 (4.0)
|
InnovaStudio WYSIWYG Editor 5.4 contains an unrestricted file upload vulnerability that allows atta… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-9crh-xp9v-855p |
8.4 (3.1)
8.5 (4.0)
|
AspEmail 5.6.0.2 contains a binary permission vulnerability that allows local users to escalate pri… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-6hw7-52j7-xmq2 |
6.2 (3.1)
8.5 (4.0)
|
ActFax 10.10 contains an unquoted service path vulnerability that allows local attackers to potenti… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-4h23-hj4v-f4xg |
9.8 (3.1)
8.5 (4.0)
|
FileZilla Client 3.63.1 contains a DLL hijacking vulnerability that allows attackers to execute mal… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-442c-qj97-8m6f |
8.4 (3.1)
8.5 (4.0)
|
Arcsoft PhotoStudio 6.0.0.172 contains an unquoted service path vulnerability in the ArcSoft Exchan… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-3v2h-mrqq-5ppw |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability was identified in itsourcecode Student Management System 1.0. Affected by this vuln… | 2025-12-19T21:30:20Z | 2025-12-19T21:30:20Z |
| ghsa-rfqh-qhwq-hww8 |
4.7 (3.1)
2.0 (4.0)
|
A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpa… | 2025-12-19T21:30:19Z | 2025-12-19T21:30:19Z |
| ghsa-rcrh-rjwq-6v33 |
6.3 (4.0)
|
Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') vulnerability in Q… | 2025-12-19T21:30:19Z | 2025-12-19T21:30:19Z |
| ghsa-hv75-87h9-4p5h |
9.3 (4.0)
|
AVideo versions 14.3.1 prior to 20.1 contain an unauthenticated remote code execution vulnerability… | 2025-12-19T18:31:17Z | 2025-12-19T21:30:19Z |
| ghsa-g3cx-78c9-hh2c |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability was detected in code-projects Simple Blood Donor Management System 1.0. The affecte… | 2025-12-19T21:30:19Z | 2025-12-19T21:30:19Z |
| ghsa-4jvq-53ch-ccmg |
9.8 (3.1)
9.3 (4.0)
|
A vulnerability has been found in TOTOLINK T10 4.1.8cu.5083_B20200521. This affects the function sp… | 2025-12-19T21:30:19Z | 2025-12-19T21:30:19Z |
| ghsa-hv82-jj64-jf47 |
9.8 (3.1)
9.3 (4.0)
|
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated a… | 2025-12-19T03:31:17Z | 2025-12-19T21:30:18Z |
| ghsa-9rpf-6v9q-87h5 |
7.5 (3.1)
6.9 (4.0)
|
AVideo versions prior to 20.0 expose sensitive user information through an unauthenticated public A… | 2025-12-17T21:30:49Z | 2025-12-19T21:30:18Z |
| ghsa-9jhw-7r2c-h2mf |
7.5 (3.1)
6.9 (4.0)
|
AVideo versions prior to 20.0 disclose absolute filesystem paths via multiple public API endpoints.… | 2025-12-17T21:30:49Z | 2025-12-19T21:30:18Z |
| ghsa-8p6j-22m6-97x2 |
6.1 (3.1)
4.8 (4.0)
|
AVideo versions prior to 20.0 contain an open redirect vulnerability caused by insufficient validat… | 2025-12-17T21:30:49Z | 2025-12-19T21:30:18Z |
| ghsa-7p9f-x9pw-w3x4 |
9.8 (3.1)
|
Use-after-free in the Disability Access APIs component. This vulnerability affects Firefox < 146.0.1. | 2025-12-18T15:30:43Z | 2025-12-19T21:30:18Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-24358 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.965362Z |
| gsd-2024-24606 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.965153Z |
| gsd-2024-24452 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.964947Z |
| gsd-2024-24156 | Cross Site Scripting (XSS) vulnerability in Gnuboard g6 before Github commit 58c737a263ac… | 2024-01-26T06:02:25.964730Z |
| gsd-2024-24378 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.964512Z |
| gsd-2024-24040 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.964300Z |
| gsd-2024-24081 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.964094Z |
| gsd-2024-24487 | An issue discovered in silex technology DS-600 Firmware v.1.4.1 allows a remote attacker … | 2024-01-26T06:02:25.963884Z |
| gsd-2024-24446 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.963678Z |
| gsd-2024-24218 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.963474Z |
| gsd-2024-24131 | SuperWebMailer v9.31.0.01799 was discovered to contain a reflected cross-site scripting (… | 2024-01-26T06:02:25.963247Z |
| gsd-2024-24630 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.963036Z |
| gsd-2024-24671 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.962777Z |
| gsd-2024-24036 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.962559Z |
| gsd-2024-24282 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.962351Z |
| gsd-2024-24677 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.962142Z |
| gsd-2024-24398 | Directory Traversal vulnerability in Stimulsoft GmbH Stimulsoft Dashboard.JS before v.202… | 2024-01-26T06:02:25.961933Z |
| gsd-2024-24161 | MRCMS 3.0 contains an Arbitrary File Read vulnerability in /admin/file/edit.do as the inc… | 2024-01-26T06:02:25.961726Z |
| gsd-2024-24628 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.961521Z |
| gsd-2024-24336 | A multiple Cross-site scripting (XSS) vulnerability in the '/members/moremember.pl', and … | 2024-01-26T06:02:25.961314Z |
| gsd-2024-24642 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.961110Z |
| gsd-2024-24109 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.960897Z |
| gsd-2024-24069 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.960694Z |
| gsd-2024-24089 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.960484Z |
| gsd-2024-24562 | vantage6-UI is the official user interface for the vantage6 server. In affected versions … | 2024-01-26T06:02:25.960229Z |
| gsd-2024-24361 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.960013Z |
| gsd-2024-24469 | Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker t… | 2024-01-26T06:02:25.959800Z |
| gsd-2024-24332 | TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vul… | 2024-01-26T06:02:25.959584Z |
| gsd-2024-24062 | springboot-manager v1.6 is vulnerable to Cross Site Scripting (XSS) via /sys/role. | 2024-01-26T06:02:25.959369Z |
| gsd-2024-24224 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-26T06:02:25.959152Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-181740 | Malicious code in avangi-ogoa-inmi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181739 | Malicious code in avangi-ogoa-inlubami (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181738 | Malicious code in avangi-oga-inmi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181737 | Malicious code in avangi-oa-inmi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181736 | Malicious code in avangi-holai-inulmi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181735 | Malicious code in avangi-holai-inulami (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181734 | Malicious code in avangi-holai-inmi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181733 | Malicious code in avangi-hola-inmi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181732 | Malicious code in avang-oliutka-tabar (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181731 | Malicious code in astam-ifut-duoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181730 | Malicious code in astam-ifut-dugoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181729 | Malicious code in astam-ifut-diugoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181728 | Malicious code in astam-ifut-dinuugoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181727 | Malicious code in astam-ifut-dinuhugoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181726 | Malicious code in astam-ifut-dinuhsuouhgoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181725 | Malicious code in astam-ifut-dinuhsuougoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181724 | Malicious code in astam-ifut-dinuhsukosuhgoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181723 | Malicious code in astam-ifut-dinuhsugoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181722 | Malicious code in astam-ifut-dinugoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181721 | Malicious code in astam-ifut-daoba (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181720 | Malicious code in astam-ifut-dakniaba (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181719 | Malicious code in astam-ifut-daknaba (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181718 | Malicious code in astam-ifut-dakiula (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181717 | Malicious code in astam-ifut-dakioba (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181716 | Malicious code in astam-ifut-dakila (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181715 | Malicious code in astam-ifut-dakia (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181714 | Malicious code in astam-ifut-daki (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181713 | Malicious code in astam-ifut-dakakuioba (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181712 | Malicious code in astam-ifut-dakaknuioba (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-181711 | Malicious code in astam-ifut-dakaknuiloba (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2022:0131 | Red Hat Security Advisory: thunderbird security update | 2022-01-12T12:04:13+00:00 | 2025-11-21T18:27:50+00:00 |
| rhsa-2022:0130 | Red Hat Security Advisory: firefox security update | 2022-01-12T11:59:09+00:00 | 2025-11-21T18:27:50+00:00 |
| rhsa-2022:0129 | Red Hat Security Advisory: thunderbird security update | 2022-01-12T12:27:03+00:00 | 2025-11-21T18:27:50+00:00 |
| rhsa-2022:0127 | Red Hat Security Advisory: thunderbird security update | 2022-01-12T13:09:04+00:00 | 2025-11-21T18:27:49+00:00 |
| rhsa-2022:0126 | Red Hat Security Advisory: firefox security update | 2022-01-12T12:04:06+00:00 | 2025-11-21T18:27:48+00:00 |
| rhsa-2022:0125 | Red Hat Security Advisory: firefox security update | 2022-01-12T11:48:38+00:00 | 2025-11-21T18:27:48+00:00 |
| rhsa-2022:0124 | Red Hat Security Advisory: firefox security update | 2022-01-12T12:35:54+00:00 | 2025-11-21T18:27:48+00:00 |
| rhsa-2022:0123 | Red Hat Security Advisory: thunderbird security update | 2022-01-12T10:26:41+00:00 | 2025-11-21T18:27:48+00:00 |
| rhsa-2022:0114 | Red Hat Security Advisory: OpenShift Container Platform 4.7.41 security update | 2022-01-19T13:25:21+00:00 | 2025-11-21T18:27:47+00:00 |
| rhsa-2022:0108 | Red Hat Security Advisory: ansible-runner security and bug fix update | 2022-01-11T20:57:59+00:00 | 2025-11-21T18:27:47+00:00 |
| rhsa-2022:0083 | Red Hat Security Advisory: Red Hat build of Eclipse Vert.x 4.1.8 security update | 2022-01-20T12:12:50+00:00 | 2025-11-21T18:27:46+00:00 |
| rhsa-2022:0081 | Red Hat Security Advisory: virt:av and virt-devel:av security and bug fix update | 2022-01-11T16:07:00+00:00 | 2025-11-21T18:27:46+00:00 |
| rhsa-2022:0078 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2022-01-11T16:03:29+00:00 | 2025-11-21T18:27:45+00:00 |
| rhsa-2022:0076 | Red Hat Security Advisory: idm:DL1 security update | 2022-01-11T16:10:10+00:00 | 2025-11-21T18:27:45+00:00 |
| rhsa-2022:0075 | Red Hat Security Advisory: webkit2gtk3 security update | 2022-01-11T16:09:12+00:00 | 2025-11-21T18:27:45+00:00 |
| rhsa-2022:0074 | Red Hat Security Advisory: samba security update | 2022-01-11T16:37:24+00:00 | 2025-11-21T18:27:45+00:00 |
| rhsa-2022:0073 | Red Hat Security Advisory: cpio security update | 2022-01-11T16:30:24+00:00 | 2025-11-21T18:27:44+00:00 |
| rhsa-2022:0072 | Red Hat Security Advisory: kernel security update | 2022-01-11T16:30:21+00:00 | 2025-11-21T18:27:43+00:00 |
| rhsa-2022:0026 | Red Hat Security Advisory: OpenShift Container Platform 4.6.53 security update | 2022-01-12T09:50:38+00:00 | 2025-11-21T18:27:43+00:00 |
| rhsa-2022:0065 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2022-01-11T17:38:53+00:00 | 2025-11-21T18:27:42+00:00 |
| rhsa-2022:0063 | Red Hat Security Advisory: kernel security and bug fix update | 2022-01-11T17:40:38+00:00 | 2025-11-21T18:27:42+00:00 |
| rhsa-2022:0059 | Red Hat Security Advisory: webkitgtk4 security update | 2022-01-11T18:03:28+00:00 | 2025-11-21T18:27:42+00:00 |
| rhsa-2022:0003 | Red Hat Security Advisory: xorg-x11-server security update | 2022-01-03T10:32:28+00:00 | 2025-11-21T18:27:41+00:00 |
| rhsa-2022:0047 | Red Hat Security Advisory: Red Hat OpenShift Enterprise Logging security and bug fix update (5.0.11) | 2022-01-10T12:24:26+00:00 | 2025-11-21T18:27:40+00:00 |
| rhsa-2022:0044 | Red Hat Security Advisory: Red Hat OpenShift Enterprise Logging bug fix and security update (5.3.2) | 2022-01-10T07:28:57+00:00 | 2025-11-21T18:27:40+00:00 |
| rhsa-2022:0043 | Red Hat Security Advisory: Red Hat OpenShift Enterprise Logging security and bug fix update (5.2.5) | 2022-01-10T07:15:36+00:00 | 2025-11-21T18:27:40+00:00 |
| rhsa-2022:0042 | Red Hat Security Advisory: Red Hat OpenShift Enterprise Logging security and bug fix update (5.1.6) | 2022-01-10T06:37:56+00:00 | 2025-11-21T18:27:40+00:00 |
| rhsa-2022:0034 | Red Hat Security Advisory: security update of rh-sso-7/sso75 container images for IBM P/Z | 2022-01-05T18:18:34+00:00 | 2025-11-21T18:27:39+00:00 |
| rhsa-2022:0024 | Red Hat Security Advisory: OpenShift Container Platform 4.6.53 security update | 2022-01-12T08:49:15+00:00 | 2025-11-21T18:27:37+00:00 |
| rhsa-2022:0015 | Red Hat Security Advisory: security update of rh-sso-7/sso75 container images | 2022-01-04T16:15:32+00:00 | 2025-11-21T18:27:37+00:00 |
| ID | Description | Updated |
|---|---|---|
| var-201412-0490 | Digicom DG-5514T ADSL router with firmware 3.2 generates predictable session IDs, which a… | 2025-04-12T23:22:20.816000Z |
| var-201501-0290 | Cisco AnyConnect on Android and OS X does not properly verify the host type, which allows… | 2025-04-12T23:22:20.606000Z |
| var-201501-0414 | Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote … | 2025-04-12T23:22:20.505000Z |
| var-201502-0151 | Cross-site scripting (XSS) vulnerability in the Administrator report page on Cisco Web Se… | 2025-04-12T23:22:20.213000Z |
| var-201504-0283 | Multiple cross-site request forgery (CSRF) vulnerabilities in API features in Cisco Unifi… | 2025-04-12T23:22:19.519000Z |
| var-201506-0068 | PACTware 4.1 SP3 allows remote attackers to cause a denial of service (application crash)… | 2025-04-12T23:22:19Z |
| var-201506-0299 | Cisco AnyConnect Secure Mobility Client 3.1(60) on Windows does not properly validate pat… | 2025-04-12T23:22:18.758000Z |
| var-201507-0511 | Cisco Videoscape Policy Resource Manager (PRM) 3.5.4 allows remote attackers to cause a d… | 2025-04-12T23:22:14.800000Z |
| var-201507-0532 | The boot implementation on Cisco ASR 5000 and 5500 devices with software 14.0 allows loca… | 2025-04-12T23:22:14.764000Z |
| var-201508-0091 | Cross-site request forgery (CSRF) vulnerability in Cisco Prime Infrastructure 1.2(0.103) … | 2025-04-12T23:22:14.166000Z |
| var-201508-0133 | Cross-site scripting (XSS) vulnerability in pfSense before 2.2.3 allows remote attackers … | 2025-04-12T23:22:14.140000Z |
| var-201509-0011 | Cisco Application Visibility and Control (AVC) 15.3(3)JA, when FlexConnect is enabled, al… | 2025-04-12T23:22:13.885000Z |
| var-201509-0433 | Multiple stack-based buffer overflows in unspecified DLL files in Advantech WebAccess bef… | 2025-04-12T23:22:13.667000Z |
| var-201510-0025 | The report-generation web interface in the Solution Engine in Cisco Secure Access Control… | 2025-04-12T23:22:13.534000Z |
| var-201511-0005 | Cross-site request forgery (CSRF) vulnerability in Cisco Prime Collaboration Assurance 10… | 2025-04-12T23:22:13.105000Z |
| var-201511-0090 | Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface (GUI)… | 2025-04-12T23:22:13.042000Z |
| var-201511-0089 | Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface (GUI)… | 2025-04-12T23:22:13.008000Z |
| var-201512-0012 | Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 a… | 2025-04-12T23:22:12.602000Z |
| var-201601-0045 | The web GUI on Cisco Small Business 500 devices 1.2.0.92 allows remote attackers to cause… | 2025-04-12T23:22:12.011000Z |
| var-201602-0185 | Swann SRNVW-470LCD devices with firmware through 0114 and SWNVW-470CAM devices with firmw… | 2025-04-12T23:22:10.447000Z |
| var-201604-0295 | flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway … | 2025-04-12T23:22:09.641000Z |
| var-201604-0296 | SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A… | 2025-04-12T23:22:09.608000Z |
| var-201604-0294 | The web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices wit… | 2025-04-12T23:22:09.571000Z |
| var-201605-0349 | Environmental Systems Corporation (ESC) 8832 Data Controller 3.02 and earlier mishandles … | 2025-04-12T23:22:09.143000Z |
| var-201605-0350 | Environmental Systems Corporation (ESC) 8832 Data Controller 3.02 and earlier allows remo… | 2025-04-12T23:22:09.103000Z |
| var-201606-0257 | ABB PCM600 before 2.7 improperly stores PCM600 authentication credentials, which allows l… | 2025-04-12T23:22:08.758000Z |
| var-201606-0255 | ABB PCM600 before 2.7 improperly stores OPC Server IEC61850 passwords in unspecified temp… | 2025-04-12T23:22:08.719000Z |
| var-201606-0251 | ABB PCM600 before 2.7 improperly stores the main application password after a password ch… | 2025-04-12T23:22:08.681000Z |
| var-201606-0248 | ABB PCM600 before 2.7 uses an improper hash algorithm for the main application password, … | 2025-04-12T23:22:08.637000Z |
| var-201609-0315 | Cisco Fog Director 1.0(0) for IOx allows remote authenticated users to bypass intended ac… | 2025-04-12T23:22:04.192000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2018:3590-3 | Security update for wireshark | 2019-04-27T14:30:00Z | 2019-04-27T14:30:00Z |
| suse-su-2018:3342-2 | Security update for ntp | 2019-04-27T14:07:41Z | 2019-04-27T14:07:41Z |
| suse-su-2019:0427-2 | Security update for kernel-firmware | 2019-04-27T13:57:15Z | 2019-04-27T13:57:15Z |
| suse-su-2018:2908-2 | Security update for the Linux Kernel | 2019-04-27T13:55:00Z | 2019-04-27T13:55:00Z |
| suse-su-2018:3447-2 | Security update for net-snmp | 2019-04-27T13:48:52Z | 2019-04-27T13:48:52Z |
| suse-su-2018:3864-2 | Security update for openssl | 2019-04-27T13:33:27Z | 2019-04-27T13:33:27Z |
| suse-su-2018:3884-2 | Security update for rpm | 2019-04-27T13:29:59Z | 2019-04-27T13:29:59Z |
| suse-su-2018:3033-3 | Security update for texlive | 2019-04-27T13:24:16Z | 2019-04-27T13:24:16Z |
| suse-su-2019:0450-2 | Security update for procps | 2019-04-27T13:16:38Z | 2019-04-27T13:16:38Z |
| suse-su-2019:14032-1 | Security update for libssh2_org | 2019-04-27T08:51:26Z | 2019-04-27T08:51:26Z |
| suse-su-2019:1060-1 | Security update for libssh2_org | 2019-04-27T07:46:24Z | 2019-04-27T07:46:24Z |
| suse-su-2019:1059-1 | Security update for libssh2_org | 2019-04-27T07:44:04Z | 2019-04-27T07:44:04Z |
| suse-su-2019:14031-1 | Security update for libssh2_org | 2019-04-27T07:31:34Z | 2019-04-27T07:31:34Z |
| suse-su-2018:2991-3 | Security update for openslp | 2019-04-26T20:47:31Z | 2019-04-26T20:47:31Z |
| suse-su-2019:0019-2 | Security update for polkit | 2019-04-26T20:46:23Z | 2019-04-26T20:46:23Z |
| suse-su-2018:4210-2 | Security update for libqt5-qtbase | 2019-04-26T20:38:14Z | 2019-04-26T20:38:14Z |
| suse-su-2019:1033-2 | Security update for ImageMagick | 2019-04-26T20:29:16Z | 2019-04-26T20:29:16Z |
| suse-su-2019:0482-2 | Security update for python | 2019-04-26T20:13:56Z | 2019-04-26T20:13:56Z |
| suse-su-2019:1047-1 | Security update for pacemaker | 2019-04-26T09:09:12Z | 2019-04-26T09:09:12Z |
| suse-su-2019:1042-1 | Security update for libvirt | 2019-04-26T06:41:19Z | 2019-04-26T06:41:19Z |
| suse-su-2019:1040-1 | Security update for samba | 2019-04-25T15:09:44Z | 2019-04-25T15:09:44Z |
| suse-su-2019:1039-1 | Security update for freeradius-server | 2019-04-25T12:57:45Z | 2019-04-25T12:57:45Z |
| suse-su-2019:1038-1 | Security update for wireshark | 2019-04-25T12:56:20Z | 2019-04-25T12:56:20Z |
| suse-su-2019:1037-1 | Security update for samba | 2019-04-25T12:55:23Z | 2019-04-25T12:55:23Z |
| suse-su-2019:1036-1 | Security update for wireshark | 2019-04-25T12:53:52Z | 2019-04-25T12:53:52Z |
| suse-su-2019:1033-1 | Security update for ImageMagick | 2019-04-25T10:47:46Z | 2019-04-25T10:47:46Z |
| suse-su-2019:14030-1 | Security update for openssh | 2019-04-25T08:34:53Z | 2019-04-25T08:34:53Z |
| suse-su-2019:1030-1 | Security update for webkit2gtk3 | 2019-04-25T07:50:08Z | 2019-04-25T07:50:08Z |
| suse-su-2019:1019-1 | Security update for ImageMagick | 2019-04-24T11:03:25Z | 2019-04-24T11:03:25Z |
| suse-su-2019:1018-1 | Security update for jasper | 2019-04-24T11:02:35Z | 2019-04-24T11:02:35Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2024-28193 | SuiteCRM存在未明漏洞(CNVD-2024-28193) | 2024-06-13 | 2024-06-20 |
| cnvd-2024-28192 | Dell BIOS存在未明漏洞(CNVD-2024-28192) | 2024-06-13 | 2024-06-20 |
| cnvd-2024-28191 | SuiteCRM路径遍历漏洞(CNVD-2024-28191) | 2023-11-21 | 2024-06-20 |
| cnvd-2024-28190 | SuiteCRM服务器端请求伪造漏洞 | 2023-11-21 | 2024-06-20 |
| cnvd-2024-28189 | SuiteCRM代码注入漏洞 | 2023-11-21 | 2024-06-20 |
| cnvd-2024-28188 | SuiteCRM HTML注入漏洞 | 2023-11-21 | 2024-06-20 |
| cnvd-2024-28187 | SuiteCRM代码问题漏洞(CNVD-2024-28187) | 2024-02-28 | 2024-06-20 |
| cnvd-2024-28186 | SuiteCRM代码问题漏洞(CNVD-2024-28186) | 2024-03-13 | 2024-06-20 |
| cnvd-2024-27538 | Adobe Experience Manager跨站脚本漏洞(CNVD-2024-27538) | 2024-06-17 | 2024-06-20 |
| cnvd-2024-27537 | Adobe Experience Manager跨站脚本漏洞(CNVD-2024-27537) | 2024-06-17 | 2024-06-20 |
| cnvd-2024-27536 | Adobe Experience Manager跨站脚本漏洞(CNVD-2024-27536) | 2024-06-17 | 2024-06-20 |
| cnvd-2024-27535 | Adobe Experience Manager跨站脚本漏洞(CNVD-2024-27535) | 2024-06-17 | 2024-06-20 |
| cnvd-2024-27534 | Adobe Experience Manager跨站脚本漏洞(CNVD-2024-27534) | 2024-06-17 | 2024-06-20 |
| cnvd-2024-27533 | Adobe Experience Manager跨站脚本漏洞(CNVD-2024-27533) | 2024-06-17 | 2024-06-20 |
| cnvd-2024-27532 | Siemens SINEC NMS路径遍历漏洞(CNVD-2024-27532) | 2024-04-12 | 2024-06-20 |
| cnvd-2024-27531 | Siemens RUGGEDCOM CROSSBOW缺少关键功能身份验证漏洞 | 2024-05-16 | 2024-06-20 |
| cnvd-2024-27530 | Siemens RUGGEDCOM CROSSBOW文件名或路径外部控制漏洞(CNVD-2024-27530) | 2024-05-16 | 2024-06-20 |
| cnvd-2024-27529 | Siemens RUGGEDCOM CROSSBOW文件名或路径外部控制漏洞(CNVD-2024-27529) | 2024-05-16 | 2024-06-20 |
| cnvd-2024-27528 | Siemens RUGGEDCOM CROSSBOW文件名或路径外部控制漏洞 | 2024-05-16 | 2024-06-20 |
| cnvd-2024-27527 | Siemens RUGGEDCOM CROSSBOW路径遍历漏洞 | 2024-05-16 | 2024-06-20 |
| cnvd-2023-62713 | 长沙友点软件科技有限公司YouDianCMS存在命令执行漏洞 | 2023-06-27 | 2024-06-20 |
| cnvd-2024-29339 | Adobe ColdFusion安全绕过漏洞(CNVD-2024-29339) | 2023-07-24 | 2024-06-19 |
| cnvd-2024-29338 | Adobe Commerce命令注入漏洞 | 2023-08-11 | 2024-06-19 |
| cnvd-2024-27526 | Siemens RUGGEDCOM CROSSBOW信息泄露漏洞 | 2024-05-16 | 2024-06-19 |
| cnvd-2024-27525 | Siemens PS/IGES Parasolid Translator组件类型混淆漏洞(CNVD-2024-27525) | 2024-05-16 | 2024-06-19 |
| cnvd-2024-27524 | Siemens PS/IGES Parasolid Translator组件越界读取漏洞(CNVD-2024-27524) | 2024-05-16 | 2024-06-19 |
| cnvd-2024-27523 | Siemens PS/IGES Parasolid Translator组件越界读取漏洞(CNVD-2024-27523) | 2024-05-16 | 2024-06-19 |
| cnvd-2024-27522 | Siemens PS/IGES Parasolid Translator组件越界读取漏洞(CNVD-2024-27522) | 2024-05-16 | 2024-06-19 |
| cnvd-2024-27521 | Oracle MySQL Server存在未明漏洞(CNVD-2024-27521) | 2024-02-22 | 2024-06-19 |
| cnvd-2024-27520 | Oracle MySQL Server存在未明漏洞(CNVD-2024-27520) | 2024-02-22 | 2024-06-19 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2007-avi-208 | Vulnérabilité dans CAPICOM | 2007-05-09T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-avi-207 | Multiples vulnérabilités d'Internet Explorer | 2007-05-09T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-avi-206 | Multiples vulnérabilités dans Microsoft Exchange | 2007-05-09T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-avi-205 | Vulnérabilité dans Microsoft Office | 2007-05-09T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-avi-204 | Plusieurs vulnérabilités dans Microsoft Word | 2007-05-09T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-avi-203 | Plusieurs vulnérabilités dans Microsoft Excel | 2007-05-09T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-avi-202 | Vulnérabilités dans Novell SecureLogin | 2007-05-07T00:00:00.000000 | 2007-05-07T00:00:00.000000 |
| certa-2007-avi-177 | Multiples vulnérabilités dans X.Org et XFree86 | 2007-04-16T00:00:00.000000 | 2007-05-07T00:00:00.000000 |
| certa-2007-avi-129 | Vulnérabilité dans CUPS | 2007-03-15T00:00:00.000000 | 2007-05-07T00:00:00.000000 |
| certa-2007-avi-200 | Vulnérabilités dans Mambo | 2007-05-04T00:00:00.000000 | 2007-05-04T00:00:00.000000 |
| certa-2007-avi-198 | Multiples vulnérabilités dans Cisco ASA et PIX | 2007-05-03T00:00:00.000000 | 2007-05-03T00:00:00.000000 |
| certa-2007-avi-197 | Multiples vulnérabilités du logiciel Qemu | 2007-05-03T00:00:00.000000 | 2007-05-03T00:00:00.000000 |
| certa-2007-avi-196 | Vulnérabilité de VMware workstation | 2007-05-03T00:00:00.000000 | 2007-05-03T00:00:00.000000 |
| certa-2007-avi-195 | Vulnérabilité des produits Symantec | 2007-05-03T00:00:00.000000 | 2007-05-03T00:00:00.000000 |
| certa-2007-avi-185 | Multiples vulnérabilités dans Apple MacOS X | 2007-04-20T00:00:00.000000 | 2007-05-03T00:00:00.000000 |
| certa-2007-avi-199 | Vulnérabilité de BIND | 2007-05-02T00:00:00.000000 | 2007-05-02T00:00:00.000000 |
| certa-2007-avi-194 | Vulnérabilité dans QuickTime | 2007-05-02T00:00:00.000000 | 2007-05-02T00:00:00.000000 |
| certa-2007-avi-193 | Vulnérabilité dans HP StorageWorks | 2007-04-26T00:00:00.000000 | 2007-04-26T00:00:00.000000 |
| certa-2007-avi-192 | Vulnérabilité dans Computer Associates CleverPath Portal | 2007-04-26T00:00:00.000000 | 2007-04-26T00:00:00.000000 |
| certa-2007-avi-191 | Vulnérabilité CISCO | 2007-04-26T00:00:00.000000 | 2007-04-26T00:00:00.000000 |
| certa-2007-avi-190 | Vulnérabilité du Netflow Collection Engine de Cisco | 2007-04-26T00:00:00.000000 | 2007-04-26T00:00:00.000000 |
| certa-2007-avi-189 | Vulnérabilité dans Courier-IMAP | 2007-04-25T00:00:00.000000 | 2007-04-25T00:00:00.000000 |
| certa-2007-avi-188 | Vulnérabilités dans BrightStor ARCserve Backup Media Server | 2007-04-25T00:00:00.000000 | 2007-04-25T00:00:00.000000 |
| certa-2007-avi-187 | Vulnérabilité de PostgreSQL | 2007-04-25T00:00:00.000000 | 2007-04-25T00:00:00.000000 |
| certa-2007-avi-186 | Vulnérabilités dans des produits Check Point ZoneAlarm | 2007-04-24T00:00:00.000000 | 2007-04-24T00:00:00.000000 |
| certa-2007-avi-184 | Vulnérabilité dans Novell GroupWise | 2007-04-19T00:00:00.000000 | 2007-04-19T00:00:00.000000 |
| certa-2007-avi-183 | Vulnérabilités dans IBM Tivoli Monitoring | 2007-04-19T00:00:00.000000 | 2007-04-19T00:00:00.000000 |
| certa-2006-avi-568 | Multiples vulnérabilités dans les produits Mozilla | 2006-12-21T00:00:00.000000 | 2007-04-19T00:00:00.000000 |
| certa-2007-avi-181 | Vulnérabilité dans McAfee e-Business Server | 2007-04-18T00:00:00.000000 | 2007-04-18T00:00:00.000000 |
| certa-2007-avi-180 | Multiples vulnérabilités dans FileZilla | 2007-04-18T00:00:00.000000 | 2007-04-18T00:00:00.000000 |