Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-67647 |
8.4 (4.0)
|
SvelteKit Denial of service and possible SSRF when usi… |
sveltejs |
kit |
2026-01-15T18:33:25.295Z | 2026-01-15T18:58:01.975Z |
| CVE-2025-13844 |
8.4 (4.0)
|
CWE-415: Double Free vulnerability exists that co… |
Schneider Electric |
EcoStruxure Power Build Rapsody |
2026-01-15T18:28:37.316Z | 2026-01-15T18:55:41.866Z |
| CVE-2025-13845 |
8.4 (4.0)
|
CWE-416: Use After Free vulnerability that could … |
Schneider Electric |
EcoStruxure Power Build Rapsody |
2026-01-15T18:33:23.235Z | 2026-01-15T18:54:16.308Z |
| CVE-2025-70303 |
5.5 (3.1)
|
A heap overflow in the uncv_parse_config() functi… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T18:49:42.651Z |
| CVE-2025-62193 |
9.3 (4.0)
9.8 (3.1)
|
NOAA PMEL Live Access Server (LAS) PyFerret command in… |
National Oceanic and Atmospheric Administration (NOAA) |
Live Access Server (LAS) |
2026-01-15T16:44:15.708Z | 2026-01-15T18:47:34.506Z |
| CVE-2025-70307 |
7.5 (3.1)
|
A stack overflow in the dump_ttxt_sample function… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T18:44:51.463Z |
| CVE-2025-15378 |
7.2 (3.1)
|
AJS Footnotes <= 1.0 - Unauthenticated Stored Cross-Si… |
ajseidl |
AJS Footnotes |
2026-01-14T05:28:08.511Z | 2026-01-15T18:44:14.155Z |
| CVE-2025-70305 |
5.5 (3.1)
|
A stack overflow in the dmx_saf function of GPAC … |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T18:40:18.915Z |
| CVE-2025-70302 |
5.5 (3.1)
|
A heap overflow in the ghi_dmx_declare_opid_bin()… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T18:36:26.740Z |
| CVE-2026-0635 |
4.3 (3.1)
|
Responsive Accordion Slider <= 1.2.2 - Missing Authori… |
techknowprime |
Responsive Accordion Slider |
2026-01-14T05:28:08.887Z | 2026-01-15T18:33:19.942Z |
| CVE-2025-14613 |
7.2 (3.1)
|
GetContentFromURL <= 1.0 - Authenticated (Contributor+… |
daschmi |
GetContentFromURL |
2026-01-14T05:28:12.007Z | 2026-01-15T18:29:50.855Z |
| CVE-2021-47752 |
8.7 (4.0)
7.5 (3.1)
|
AWebServer GhostBuilding 18 - Denial of Service (DoS) |
Sylkat-Tools |
AWebServer GhostBuilding |
2026-01-15T15:52:02.828Z | 2026-01-15T18:27:31.113Z |
| CVE-2021-47753 |
9.3 (4.0)
9.8 (3.1)
|
phpKF CMS 3.00 Beta y6 - Remote Code Execution (RCE) (… |
Phpkf |
phpKF CMS |
2026-01-15T15:52:03.459Z | 2026-01-15T18:27:25.683Z |
| CVE-2021-47767 |
8.5 (4.0)
7.8 (3.1)
|
10-Strike Network Inventory Explorer Pro 9.31 - 'srvIn… |
10-Strike |
Strike Network Inventory Explorer Pro |
2026-01-15T15:52:09.919Z | 2026-01-15T18:27:09.610Z |
| CVE-2021-47768 |
5.3 (4.0)
6.1 (3.1)
|
ImportExportTools NG 10.0.4 - HTML Injection |
thundernest |
ImportExportTools NG |
2026-01-15T15:52:10.377Z | 2026-01-15T18:27:03.728Z |
| CVE-2021-47772 |
8.4 (4.0)
9.8 (3.1)
|
10-Strike Network Inventory Explorer Pro 9.31 - Buffer… |
10-Strike |
Strike Network Inventory Explorer Pro |
2026-01-15T15:52:11.805Z | 2026-01-15T18:26:45.942Z |
| CVE-2021-47773 |
8.5 (4.0)
7.8 (3.1)
|
Dynojet Power Core 2.3.0 - Unquoted Service Path |
Dynojet |
Dynojet Power Core |
2026-01-15T15:52:12.232Z | 2026-01-15T18:26:39.411Z |
| CVE-2026-23496 |
5.4 (3.1)
|
Pimcore Web2Print Tools Bundle "Favourite Output Chann… |
pimcore |
pimcore |
2026-01-15T16:58:39.431Z | 2026-01-15T18:26:33.948Z |
| CVE-2025-9014 |
6.3 (4.0)
|
Null Pointer Dereference Vulnerability on TL-WR841N |
TP-Link Systems Inc. |
TL-WR841N v14 |
2026-01-15T17:36:06.139Z | 2026-01-15T18:26:28.154Z |
| CVE-2025-70299 |
6.5 (3.1)
|
A heap overflow in the avi_parse_input_file() fun… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T18:23:54.704Z |
| CVE-2026-20075 |
4.8 (3.1)
|
Cisco Evolved Programmable Network Manager and Cisco P… |
Cisco |
Cisco Evolved Programmable Network Manager (EPNM) |
2026-01-15T16:32:15.838Z | 2026-01-15T18:11:54.678Z |
| CVE-2026-23494 |
4.3 (3.1)
|
Pimcore is Missing Function Level Authorization on "St… |
pimcore |
pimcore |
2026-01-15T16:52:58.729Z | 2026-01-15T18:08:13.110Z |
| CVE-2025-12178 |
6.4 (3.1)
|
SpiceForms Form Builder <= 1.0 - Authenticated (Contri… |
aankit |
SpiceForms Form Builder |
2026-01-14T05:28:12.421Z | 2026-01-15T18:00:12.192Z |
| CVE-2021-47757 |
8.7 (4.0)
8.8 (3.1)
|
Chikitsa Patient Management System 2.0.2 - 'plugin' Re… |
dharashah |
Chikitsa Patient Management System |
2026-01-15T15:52:04.994Z | 2026-01-15T17:57:01.374Z |
| CVE-2021-47758 |
8.7 (4.0)
8.8 (3.1)
|
Chikitsa Patient Management System 2.0.2 - Remote Code… |
dharashah |
Chikitsa Patient Management System |
2026-01-15T15:52:05.437Z | 2026-01-15T17:26:55.158Z |
| CVE-2025-14854 |
5.4 (3.1)
|
WP-CRM System – Manage Clients and Projects <= 3.4.5 -… |
nofearinc |
WP-CRM System – Manage Clients and Projects |
2026-01-14T05:28:12.974Z | 2026-01-15T17:26:26.971Z |
| CVE-2025-68492 |
4.2 (3.0)
2.3 (4.0)
|
Chainlit versions prior to 2.8.5 contain an autho… |
Chainlit |
Chainlit |
2026-01-14T06:27:14.846Z | 2026-01-15T17:24:34.226Z |
| CVE-2026-0739 |
4.4 (3.1)
|
WMF Mobile Redirector <= 1.2 - Authenticated (Administ… |
webbu |
WMF Mobile Redirector |
2026-01-14T06:40:04.088Z | 2026-01-15T17:23:06.026Z |
| CVE-2026-23495 |
4.3 (3.1)
|
Pimcore's Admin Classic Bundle is Missing Function Lev… |
pimcore |
pimcore |
2026-01-15T16:47:07.114Z | 2026-01-15T17:09:32.298Z |
| CVE-2025-70298 |
8.2 (3.1)
|
GPAC v2.4.0 was discovered to contain an out-of-b… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T17:05:50.552Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-13670 |
5.4 (4.0)
6.7 (3.1)
|
High Level Synthesis Compiler Security Advisory |
Altera |
High Level Synthesis Compiler |
2025-12-12T02:34:57.848Z | 2025-12-12T19:51:30.180Z |
| CVE-2025-13669 |
5.4 (4.0)
6.7 (3.1)
|
High Level Synthesis Compiler Security Advisory |
Altera |
High Level Synthesis Compiler |
2025-12-12T02:30:28.238Z | 2025-12-12T19:53:19.341Z |
| CVE-2025-58410 |
7.5 (3.1)
|
GPU DDK - Multiple calls into PhysmemGEMPrimeExport ca… |
Imagination Technologies |
Graphics DDK |
2025-11-17T16:57:05.418Z | 2025-11-17T20:55:22.714Z |
| CVE-2025-13664 |
6.7 (3.1)
5.4 (4.0)
|
Quartus Prime Standard Security Advisory |
Altera |
Quartus Prime Standard |
2025-12-11T20:55:02.691Z | 2025-12-12T20:48:40.472Z |
| CVE-2025-13665 |
5.4 (4.0)
6.7 (3.1)
|
Quartus Prime Standard Security Advisory |
Altera |
Quartus Prime Standard |
2025-12-12T02:18:41.288Z | 2025-12-12T19:54:41.016Z |
| CVE-2025-59158 |
9.4 (4.0)
|
Coolify has Stored XSS in Project Name |
coollabsio |
coolify |
2026-01-05T17:44:41.498Z | 2026-01-05T19:29:34.205Z |
| CVE-2025-13663 |
6.7 (3.1)
5.4 (4.0)
|
Quartus Prime Pro Edition Installer Advisory |
Altera |
Quartus Prime Pro |
2025-12-11T20:35:24.735Z | 2025-12-11T21:03:49.282Z |
| CVE-2025-13668 |
5.4 (4.0)
6.7 (3.1)
|
Quartus Prime Pro Edition Advisory |
Altera |
Quartus Prime Pro |
2025-12-11T22:02:39.724Z | 2025-12-18T20:40:13.880Z |
| CVE-2025-63701 |
6.8 (3.1)
|
A heap corruption vulnerability exists in the Adv… |
n/a |
n/a |
2025-11-14T00:00:00.000Z | 2025-11-14T21:35:25.537Z |
| CVE-2025-59156 |
9.4 (4.0)
|
Coolify has Docker Compose Injection issue |
coollabsio |
coolify |
2026-01-05T17:39:42.702Z | 2026-01-05T19:53:41.559Z |
| CVE-2025-59157 |
10 (3.1)
|
Coolify has Git Repository RCE |
coollabsio |
coolify |
2026-01-05T17:41:29.557Z | 2026-01-05T19:38:25.314Z |
| CVE-2025-63680 |
8.6 (3.1)
|
Nero BackItUp in the Nero Productline is vulnerab… |
n/a |
n/a |
2025-11-14T00:00:00.000Z | 2025-11-14T19:21:27.874Z |
| CVE-2025-63291 |
5.4 (3.1)
|
When processing API requests, the Alteryx server … |
n/a |
n/a |
2025-11-14T00:00:00.000Z | 2025-11-16T21:06:15.784Z |
| CVE-2025-47531 |
7.5 (3.1)
|
WordPress XT Event Widget for Social Events <= 1.1.7 -… |
Xylus Themes |
XT Event Widget for Social Events |
2025-05-07T14:20:11.860Z | 2025-05-07T18:18:16.274Z |
| CVE-2025-47453 |
8.1 (3.1)
|
WordPress WP Smart Import <= 1.1.3 - Local File Inclus… |
Xylus Themes |
WP Smart Import |
2025-05-23T12:43:36.560Z | 2025-05-23T14:55:35.513Z |
| CVE-2025-59955 |
5.7 (4.0)
|
Coolify leaksensitive information `email_change_code` … |
coollabsio |
coolify |
2026-01-05T17:46:56.334Z | 2026-01-05T17:59:28.044Z |
| CVE-2025-58192 |
4.3 (3.1)
|
WordPress WP Bulk Delete Plugin <= 1.3.6 - Broken Acce… |
Xylus Themes |
WP Bulk Delete |
2025-08-27T17:45:38.564Z | 2025-08-27T18:35:25.066Z |
| CVE-2024-37103 |
4.3 (3.1)
|
WordPress Education Zone theme <= 1.3.4 - Cross Site R… |
Rara Theme |
Education Zone |
2025-01-02T12:00:40.865Z | 2025-01-02T17:05:35.107Z |
| CVE-2024-37104 |
4.3 (3.1)
|
WordPress Chic Lite theme <= 1.1.3 - Cross Site Reques… |
Rara Theme |
Chic Lite |
2025-01-02T12:00:41.473Z | 2025-01-02T17:05:12.793Z |
| CVE-2025-64419 |
9.7 (3.1)
|
Coolify vulnerable to command injection via docker-com… |
coollabsio |
coolify |
2026-01-05T19:16:44.379Z | 2026-01-05T19:32:27.040Z |
| CVE-2024-37412 |
4.3 (3.1)
|
WordPress Blossom Shop theme <= 1.1.7 - Cross Site Req… |
Blossom Themes |
Blossom Shop |
2025-01-02T12:00:47.258Z | 2025-01-02T14:52:06.447Z |
| CVE-2025-64420 |
10 (3.1)
|
Coolify members can see private key of root user |
coollabsio |
coolify |
2026-01-05T19:20:24.392Z | 2026-01-05T19:30:10.050Z |
| CVE-2025-64421 |
8.7 (4.0)
|
Coolify has a privilege escalation - low privileged us… |
coollabsio |
coolify |
2026-01-05T19:42:46.699Z | 2026-01-05T20:06:08.860Z |
| CVE-2024-37102 |
4.3 (3.1)
|
WordPress Vilva theme <= 1.2.2 - Cross Site Request Fo… |
Blossom Themes |
Vilva |
2025-01-02T12:00:40.257Z | 2025-01-02T17:05:55.744Z |
| CVE-2025-64422 |
5.5 (4.0)
|
Rate-limit bypass on login via X-Forwarded-Host header |
coollabsio |
coolify |
2026-01-05T20:29:34.750Z | 2026-01-05T20:38:39.110Z |
| CVE-2022-50691 |
9.3 (4.0)
9.8 (3.1)
|
MiniDVBLinux 5.4 Remote Root Command Execution via com… |
MiniDVBLinux |
MiniDVBLinux |
2025-12-30T22:41:33.477Z | 2026-01-12T13:48:37.265Z |
| CVE-2024-47352 |
7.1 (3.1)
|
WordPress WP Bulk Delete plugin <= 1.3.1 - Cross Site … |
Xylus Themes |
WP Bulk Delete |
2024-10-06T10:25:50.329Z | 2024-10-07T13:14:02.157Z |
| CVE-2024-38703 |
6.5 (3.1)
|
WordPress WP Event Aggregator plugin <= 1.7.9 - Cross … |
Xylus Themes |
WP Event Aggregator |
2024-07-20T07:32:15.077Z | 2024-08-02T04:19:20.241Z |
| CVE-2024-32531 |
7.1 (3.1)
|
WordPress GuCherry Blog theme <= 1.1.8 - Reflected Cro… |
Everest themes |
GuCherry Blog |
2024-04-17T09:31:11.094Z | 2024-08-02T02:13:39.791Z |
| CVE-2024-47313 |
5.1 (3.1)
|
WordPress Catch Base theme <= 3.4.6 - Cross Site Scrip… |
Catch Themes |
Catch Base |
2024-10-06T11:23:05.545Z | 2024-10-07T13:10:55.008Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-59158 | Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.… | 2026-01-05T18:15:43.790 | 2026-01-12T15:08:33.550 |
| fkie_cve-2025-13663 | Under certain circumstances, the Quartus Prime Pro Installer for Windows does not check the permiss… | 2025-12-11T21:15:46.307 | 2026-01-12T15:08:30.580 |
| fkie_cve-2025-13668 | A potential security vulnerability in Quartus® Prime Pro Edition Design Software may allow escalati… | 2025-12-11T22:15:53.097 | 2026-01-12T15:08:02.600 |
| fkie_cve-2025-63701 | A heap corruption vulnerability exists in the Advantech TP-3250 printer driver's DrvUI_x64_ADVANTEC… | 2025-11-14T20:15:47.717 | 2026-01-12T15:05:40.583 |
| fkie_cve-2025-59156 | Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.… | 2026-01-05T18:15:43.197 | 2026-01-12T15:03:44.317 |
| fkie_cve-2025-59157 | Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.… | 2026-01-05T18:15:43.643 | 2026-01-12T15:02:21.787 |
| fkie_cve-2025-63680 | Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw (CWE-22) th… | 2025-11-14T19:16:01.360 | 2026-01-12T14:56:54.810 |
| fkie_cve-2025-63291 | When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs … | 2025-11-14T19:16:01.163 | 2026-01-12T14:52:42.000 |
| fkie_cve-2025-47531 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-05-07T15:16:10.197 | 2026-01-12T14:49:17.340 |
| fkie_cve-2025-47453 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-05-23T13:15:37.700 | 2026-01-12T14:48:14.463 |
| fkie_cve-2025-59955 | Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.… | 2026-01-05T18:15:43.927 | 2026-01-12T14:48:13.057 |
| fkie_cve-2025-58192 | Missing Authorization vulnerability in Xylus Themes WP Bulk Delete allows Exploiting Incorrectly Co… | 2025-08-27T18:15:46.467 | 2026-01-12T14:47:15.660 |
| fkie_cve-2024-37103 | Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Education Zone allows Cross Site Requ… | 2025-01-02T12:15:17.590 | 2026-01-12T14:46:27.620 |
| fkie_cve-2024-37104 | Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Chic Lite allows Cross Site Request F… | 2025-01-02T12:15:17.733 | 2026-01-12T14:45:59.637 |
| fkie_cve-2025-64419 | Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.… | 2026-01-05T20:16:02.527 | 2026-01-12T14:38:09.697 |
| fkie_cve-2024-37412 | Cross-Site Request Forgery (CSRF) vulnerability in Blossom Themes Blossom Shop allows Cross Site Re… | 2025-01-02T12:15:18.997 | 2026-01-12T14:36:34.527 |
| fkie_cve-2025-64420 | Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.… | 2026-01-05T20:16:02.700 | 2026-01-12T14:31:59.247 |
| fkie_cve-2025-64421 | Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.… | 2026-01-05T20:16:02.860 | 2026-01-12T14:26:45.450 |
| fkie_cve-2024-37102 | Cross-Site Request Forgery (CSRF) vulnerability in Blossom Themes Vilva allows Cross Site Request F… | 2025-01-02T12:15:17.457 | 2026-01-12T14:25:37.607 |
| fkie_cve-2025-64422 | Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.… | 2026-01-05T21:16:12.403 | 2026-01-12T14:23:36.950 |
| fkie_cve-2022-50691 | MiniDVBLinux 5.4 contains a remote command execution vulnerability that allows unauthenticated atta… | 2025-12-30T23:15:43.620 | 2026-01-12T14:16:00.837 |
| fkie_cve-2024-47352 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2024-10-06T11:15:14.590 | 2026-01-12T14:04:38.373 |
| fkie_cve-2024-38703 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2024-07-20T08:15:10.903 | 2026-01-12T14:02:59.027 |
| fkie_cve-2024-32531 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2024-04-17T10:15:12.337 | 2026-01-12T13:54:25.347 |
| fkie_cve-2024-47313 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2024-10-06T12:15:07.363 | 2026-01-12T13:44:18.990 |
| fkie_cve-2024-44010 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2024-10-06T13:15:11.720 | 2026-01-12T13:34:34.073 |
| fkie_cve-2025-32154 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-04-04T16:15:23.833 | 2026-01-12T13:19:34.733 |
| fkie_cve-2025-38051 | In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-fre… | 2025-06-18T10:15:37.693 | 2026-01-12T13:11:24.650 |
| fkie_cve-2024-56644 | In the Linux kernel, the following vulnerability has been resolved: net/ipv6: release expired exce… | 2024-12-27T15:15:24.163 | 2026-01-12T13:10:13.060 |
| fkie_cve-2025-22921 | FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the c… | 2025-02-18T22:15:18.040 | 2026-01-12T13:08:11.540 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-fgg3-677x-v53c |
5.4 (3.1)
5.1 (4.0)
|
A reflected cross-site scripting vulnerability in Kentico Xperience allows attackers to inject mali… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-cxwj-5fh2-c47j |
7.5 (3.1)
8.7 (4.0)
|
A denial of service vulnerability in Kentico Xperience allows attackers to launch DoS attacks via s… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-cmw6-fq3j-c224 |
5.4 (3.1)
5.1 (4.0)
|
A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to inject malicio… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-chq4-5285-wpm4 |
5.3 (3.1)
6.9 (4.0)
|
An information disclosure vulnerability in Kentico Xperience allows public users to access sensitiv… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-chj5-cq2p-wvfv |
4.3 (3.1)
5.3 (4.0)
|
An information disclosure vulnerability in Kentico Xperience allows authenticated users to view sen… | 2025-12-18T21:31:42Z | 2025-12-18T21:31:43Z |
| ghsa-9pjc-73w7-429v |
4.6 (3.1)
5.1 (4.0)
|
An HTML injection vulnerability in Kentico Xperience allows attackers to inject malicious HTML valu… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-9jrm-mcr7-5p6m |
7.5 (3.1)
6.9 (4.0)
|
A cryptography vulnerability in Kentico Xperience allows attackers to potentially manipulate URL ha… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-97c9-gh8x-2vv2 |
5.4 (3.1)
5.3 (4.0)
|
WBiz Desk 1.2 contains a SQL injection vulnerability that allows non-admin users to manipulate data… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-8rr6-65c8-jjwx |
5.4 (3.1)
5.1 (4.0)
|
RockMongo 1.1.7 contains a stored cross-site scripting vulnerability that allows attackers to injec… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-8mxv-5w5f-4rv8 |
4.6 (3.1)
5.1 (4.0)
|
A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to inject malicio… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-8c7w-wmmg-f7mj |
6.5 (3.1)
7.1 (4.0)
|
EasyPHP Webserver 14.1 contains a path traversal vulnerability that allows remote users with low pr… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-7jxx-888h-j89w |
5.4 (3.1)
5.1 (4.0)
|
A reflected cross-site scripting vulnerability in Kentico Xperience allows attackers to inject mali… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-739f-j5mp-m83f |
4.6 (3.1)
5.1 (4.0)
|
A reflected cross-site scripting vulnerability in Kentico Xperience allows authenticated users to i… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-6j36-r33q-6mrw |
5.3 (3.1)
6.9 (4.0)
|
An information disclosure vulnerability in Kentico Xperience allows attackers to view sensitive sta… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-6g8v-p5hp-pmc2 |
5.4 (3.1)
2.1 (4.0)
|
A security flaw has been discovered in Campcodes Advanced Voting Management System 1.0. The impacte… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-5w2x-g68p-qvmf |
5.3 (3.1)
6.9 (4.0)
|
GLPI 9.5.7 contains a username enumeration vulnerability in the lost password recovery mechanism th… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-4rrg-j6g5-6x9x |
8.8 (3.1)
9.4 (4.0)
|
File Thingie 2.5.7 contains an authenticated file upload vulnerability that allows remote attackers… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-492m-wpjc-qpc3 |
5.4 (3.1)
5.1 (4.0)
|
Cameleon CMS 2.7.4 contains a persistent cross-site scripting vulnerability that allows authenticat… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-3mj9-vrrp-55v4 |
6.5 (3.1)
6.9 (4.0)
|
A CRLF injection vulnerability in Kentico Xperience allows attackers to manipulate URL query string… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-32c9-9352-jvgc |
4.6 (3.1)
5.1 (4.0)
|
A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to inject malicio… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-24h9-pvx3-c6g5 |
7.8 (3.1)
8.5 (4.0)
|
Hubstaff 1.6.14 contains a DLL search order hijacking vulnerability that allows attackers to replac… | 2025-12-18T21:31:43Z | 2025-12-18T21:31:43Z |
| ghsa-wxvc-763r-j974 |
7.2 (3.1)
8.6 (4.0)
|
An access control bypass vulnerability in Kentico Xperience allows administrators to modify global … | 2025-12-18T21:31:42Z | 2025-12-18T21:31:42Z |
| ghsa-w3cw-f63h-9g34 |
6.5 (3.1)
|
Unicode RTLO characters could allow malicious websites to spoof filenames in the downloads UI for F… | 2025-12-18T15:30:43Z | 2025-12-18T21:31:42Z |
| ghsa-r65g-q984-5j72 |
7.5 (3.1)
|
Integer overflow vulnerability in the yuv2ya16_X_c_template function in libswscale/output.c in FFmp… | 2025-12-18T15:30:44Z | 2025-12-18T21:31:42Z |
| ghsa-q5wr-jxr7-gxfv |
8.8 (3.1)
|
The Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery plugin for WordPress is vulnerabl… | 2025-12-18T12:30:27Z | 2025-12-18T21:31:42Z |
| ghsa-p5ww-mf7h-6qxg |
4.6 (3.1)
5.1 (4.0)
|
A stored cross-site scripting vulnerability in Kentico Xperience allows administration users to inj… | 2025-12-18T21:31:42Z | 2025-12-18T21:31:42Z |
| ghsa-hhh6-7j8c-5mhg |
8.8 (3.1)
8.7 (4.0)
|
A SQL injection vulnerability in Kentico Xperience allows authenticated editors to inject malicious… | 2025-12-18T21:31:42Z | 2025-12-18T21:31:42Z |
| ghsa-fcwr-xg8x-ppc3 |
4.6 (3.1)
5.1 (4.0)
|
A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to upload files w… | 2025-12-18T21:31:42Z | 2025-12-18T21:31:42Z |
| ghsa-92qg-hfhr-ppvq |
6.8 (4.0)
|
Access of Uninitialized Pointer vulnerability in TP-Link WR940N and WR941ND allows local unauthenti… | 2025-12-18T21:31:42Z | 2025-12-18T21:31:42Z |
| ghsa-627j-54m3-3qr2 |
6.3 (3.1)
2.1 (4.0)
|
A flaw has been found in SourceCodester Client Database Management System 1.0. This affects an unkn… | 2025-12-18T21:31:42Z | 2025-12-18T21:31:42Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-23849 | In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is… | 2024-01-24T06:02:25.083139Z |
| gsd-2024-23917 | In JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible | 2024-01-24T06:02:25.082147Z |
| gsd-2024-23895 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:25.079871Z |
| gsd-2024-23925 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-24T06:02:25.076184Z |
| gsd-2024-23599 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-24T06:02:25.072604Z |
| gsd-2024-23898 | Jenkins 2.217 through 2.441 (both inclusive), LTS 2.222.1 through 2.426.2 (both inclusive… | 2024-01-24T06:02:25.067828Z |
| gsd-2024-23922 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-24T06:02:25.065012Z |
| gsd-2024-23871 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:25.064063Z |
| gsd-2024-23851 | copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to all… | 2024-01-24T06:02:25.052693Z |
| gsd-2024-23932 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-24T06:02:25.039088Z |
| gsd-2024-23891 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:25.037301Z |
| gsd-2024-23874 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:25.036958Z |
| gsd-2024-23897 | Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI … | 2024-01-24T06:02:25.036624Z |
| gsd-2024-23903 | Jenkins GitLab Branch Source Plugin 684.vea_fa_7c1e2fe3 and earlier uses a non-constant t… | 2024-01-24T06:02:25.028920Z |
| gsd-2024-23863 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:25.027703Z |
| gsd-2024-23882 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:25.022787Z |
| gsd-2024-23902 | A cross-site request forgery (CSRF) vulnerability in Jenkins GitLab Branch Source Plugin … | 2024-01-24T06:02:25.010097Z |
| gsd-2024-23900 | Jenkins Matrix Project Plugin 822.v01b_8c85d16d2 and earlier does not sanitize user-defin… | 2024-01-24T06:02:25.007700Z |
| gsd-2024-23940 | Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer pr… | 2024-01-24T06:02:24.996584Z |
| gsd-2024-23890 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:24.991755Z |
| gsd-2024-23927 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-24T06:02:24.987244Z |
| gsd-2024-23606 | An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The … | 2024-01-24T06:02:24.982932Z |
| gsd-2024-23884 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:24.976934Z |
| gsd-2024-23926 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-24T06:02:24.973404Z |
| gsd-2024-23933 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-24T06:02:24.972595Z |
| gsd-2024-23854 | ** REJECT ** This CVE ID was unused by the CNA. | 2024-01-24T06:02:24.966062Z |
| gsd-2024-23869 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:24.961436Z |
| gsd-2024-23894 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:24.952488Z |
| gsd-2024-23862 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:24.952164Z |
| gsd-2024-23892 | A vulnerability has been reported in Cups Easy (Purchase & Inventory), version 1.0, where… | 2024-01-24T06:02:24.950836Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-181500 | Malicious code in gun6 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181499 | Malicious code in gun5 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181498 | Malicious code in gun4 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181497 | Malicious code in gun3 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181496 | Malicious code in gun2 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181495 | Malicious code in gun1 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181494 | Malicious code in gntc_94 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181493 | Malicious code in geulis94 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181492 | Malicious code in cukul94 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181491 | Malicious code in cewe9 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181490 | Malicious code in cewe8 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181489 | Malicious code in cewe7 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181488 | Malicious code in cewe6 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181487 | Malicious code in cewe5 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181486 | Malicious code in cewe4 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181485 | Malicious code in cewe30 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181484 | Malicious code in cewe3 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181483 | Malicious code in cewe29 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181482 | Malicious code in cewe28 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181481 | Malicious code in cewe27 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181480 | Malicious code in cewe26 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181479 | Malicious code in cewe25 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181478 | Malicious code in cewe24 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181477 | Malicious code in cewe23 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181476 | Malicious code in cewe22 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181475 | Malicious code in cewe21 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181474 | Malicious code in cewe20 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181473 | Malicious code in cewe2 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181472 | Malicious code in cewe19 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| mal-2025-181471 | Malicious code in cewe18 (npm) | 2025-11-12T21:45:37Z | 2025-11-12T21:45:37Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2021:4033 | Red Hat Security Advisory: binutils security update | 2021-11-01T08:22:15+00:00 | 2025-11-21T18:25:55+00:00 |
| rhsa-2021:4032 | Red Hat Security Advisory: Openshift Logging 5.2.3 bug fix and security update | 2021-11-17T03:31:35+00:00 | 2025-11-21T18:25:55+00:00 |
| rhsa-2021:4008 | Red Hat Security Advisory: OpenShift Container Platform 4.6.49 security update | 2021-11-03T20:41:53+00:00 | 2025-11-21T18:25:54+00:00 |
| rhsa-2021:3956 | Red Hat Security Advisory: xstream security update | 2021-10-25T06:54:35+00:00 | 2025-11-21T18:25:54+00:00 |
| rhsa-2021:4000 | Red Hat Security Advisory: kpatch-patch security update | 2021-10-26T16:28:07+00:00 | 2025-11-21T18:25:53+00:00 |
| rhsa-2021:3988 | Red Hat Security Advisory: samba security update | 2021-10-26T07:48:38+00:00 | 2025-11-21T18:25:53+00:00 |
| rhsa-2021:3982 | Red Hat Security Advisory: rh-ruby30-ruby security update | 2021-10-25T20:55:50+00:00 | 2025-11-21T18:25:53+00:00 |
| rhsa-2021:3968 | Red Hat Security Advisory: OpenJDK 11.0.13 security update for Windows Builds | 2021-10-25T12:24:29+00:00 | 2025-11-21T18:25:51+00:00 |
| rhsa-2021:3961 | Red Hat Security Advisory: OpenJDK 8u312 Windows Builds release and security update | 2021-10-25T11:55:43+00:00 | 2025-11-21T18:25:51+00:00 |
| rhsa-2021:3960 | Red Hat Security Advisory: OpenJDK 8u312 security update for Portable Linux Builds | 2021-10-25T11:55:27+00:00 | 2025-11-21T18:25:51+00:00 |
| rhsa-2021:3959 | Red Hat Security Advisory: Red Hat build of Eclipse Vert.x 4.1.5 security update | 2021-11-10T16:40:33+00:00 | 2025-11-21T18:25:51+00:00 |
| rhsa-2021:3955 | Red Hat Security Advisory: redhat-ds:11 security, bug fix, and enhancement update | 2021-10-25T06:38:28+00:00 | 2025-11-21T18:25:49+00:00 |
| rhsa-2021:3930 | Red Hat Security Advisory: OpenShift Container Platform 4.7.36 security and bug fix update | 2021-10-27T08:09:26+00:00 | 2025-11-21T18:25:49+00:00 |
| rhsa-2021:3943 | Red Hat Security Advisory: RHV-H security update (redhat-virtualization-host) 4.3.19 | 2021-10-20T09:54:00+00:00 | 2025-11-21T18:25:48+00:00 |
| rhsa-2021:3942 | Red Hat Security Advisory: openvswitch2.11 security update | 2021-10-20T09:54:03+00:00 | 2025-11-21T18:25:47+00:00 |
| rhsa-2021:3934 | Red Hat Security Advisory: OpenShift Container Platform 4.9.4 packages and security update | 2021-10-26T16:03:30+00:00 | 2025-11-21T18:25:47+00:00 |
| rhsa-2021:3926 | Red Hat Security Advisory: OpenShift Container Platform 4.8.17 security and bug fix update | 2021-10-27T07:57:50+00:00 | 2025-11-21T18:25:46+00:00 |
| rhsa-2021:3915 | Red Hat Security Advisory: OpenShift Container Platform 3.11.542 security update | 2021-10-28T16:00:30+00:00 | 2025-11-21T18:25:46+00:00 |
| rhsa-2021:3909 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2021-10-19T06:54:40+00:00 | 2025-11-21T18:25:45+00:00 |
| rhsa-2021:3906 | Red Hat Security Advisory: 389-ds:1.4 security and bug fix update | 2021-10-19T07:00:26+00:00 | 2025-11-21T18:25:44+00:00 |
| rhsa-2021:3904 | Red Hat Security Advisory: kernel security and bug fix update | 2021-10-19T07:19:01+00:00 | 2025-11-21T18:25:44+00:00 |
| rhsa-2021:3903 | Red Hat Security Advisory: curl security update | 2021-10-19T07:18:27+00:00 | 2025-11-21T18:25:44+00:00 |
| rhsa-2021:3900 | Red Hat Security Advisory: systemd security update | 2021-10-19T07:18:34+00:00 | 2025-11-21T18:25:44+00:00 |
| rhsa-2021:3893 | Red Hat Security Advisory: java-1.8.0-openjdk security and bug fix update | 2021-10-20T13:47:24+00:00 | 2025-11-21T18:25:43+00:00 |
| rhsa-2021:3892 | Red Hat Security Advisory: java-11-openjdk security and bug fix update | 2021-10-20T15:36:17+00:00 | 2025-11-21T18:25:43+00:00 |
| rhsa-2021:3891 | Red Hat Security Advisory: java-11-openjdk security update | 2021-10-20T13:59:39+00:00 | 2025-11-21T18:25:43+00:00 |
| rhsa-2021:3889 | Red Hat Security Advisory: java-1.8.0-openjdk security and bug fix update | 2021-10-20T14:40:00+00:00 | 2025-11-21T18:25:42+00:00 |
| rhsa-2021:3887 | Red Hat Security Advisory: java-11-openjdk security update | 2021-10-20T13:49:32+00:00 | 2025-11-21T18:25:42+00:00 |
| rhsa-2021:3886 | Red Hat Security Advisory: java-11-openjdk security update | 2021-10-20T13:12:25+00:00 | 2025-11-21T18:25:42+00:00 |
| rhsa-2021:3885 | Red Hat Security Advisory: java-1.8.0-openjdk security update | 2021-10-20T13:36:23+00:00 | 2025-11-21T18:25:41+00:00 |
| ID | Description | Updated |
|---|---|---|
| var-201502-0039 | Fortinet FortiClient 5.2.028 for iOS does not validate certificates, which makes it easie… | 2025-04-12T23:04:51.804000Z |
| var-201502-0477 | time.htm in the web interface on SerVision HVG Video Gateway devices with firmware before… | 2025-04-12T23:04:51.625000Z |
| var-201502-0072 | time.htm in the web interface on SerVision HVG Video Gateway devices with firmware throug… | 2025-04-12T23:04:51.591000Z |
| var-201502-0478 | The web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a100 … | 2025-04-12T23:04:51.554000Z |
| var-201503-0073 | Cross-site request forgery (CSRF) vulnerability in XZERES 442SR OS on 442SR wind turbines… | 2025-04-12T23:04:51.366000Z |
| var-201503-0178 | Cisco Mobility Services Engine (MSE) 8.0(110.0) allows remote authenticated users to disc… | 2025-04-12T23:04:51.142000Z |
| var-201504-0065 | Inductive Automation Ignition 7.7.2 allows remote authenticated users to bypass a brute-f… | 2025-04-12T23:04:45.388000Z |
| var-201504-0079 | Inductive Automation Ignition 7.7.2 does not terminate a session upon a logout action, wh… | 2025-04-12T23:04:45.350000Z |
| var-201504-0075 | Cross-site scripting (XSS) vulnerability in Inductive Automation Ignition 7.7.2 allows re… | 2025-04-12T23:04:45.311000Z |
| var-201504-0066 | Inductive Automation Ignition 7.7.2 uses MD5 password hashes, which makes it easier for c… | 2025-04-12T23:04:45.272000Z |
| var-201504-0077 | Inductive Automation Ignition 7.7.2 allows remote attackers to obtain sensitive informati… | 2025-04-12T23:04:45.233000Z |
| var-201504-0078 | Inductive Automation Ignition 7.7.2 stores cleartext OPC Server credentials, which allows… | 2025-04-12T23:04:45.197000Z |
| var-201504-0264 | Cisco Unified Communications Domain Manager 8.1(4) allows remote authenticated users to o… | 2025-04-12T23:04:44.768000Z |
| var-201506-0156 | Cisco Unified MeetingPlace 8.6(1.9) allows remote attackers to read arbitrary files via a… | 2025-04-12T23:04:43.138000Z |
| var-201508-0129 | Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote authe… | 2025-04-12T23:04:40.419000Z |
| var-201508-0310 | Chiyu BF-660C fingerprint access-control devices allow remote attackers to bypass authent… | 2025-04-12T23:04:35.835000Z |
| var-201508-0309 | Cross-site scripting (XSS) vulnerability on Chiyu BF-630, BF-630W, and BF-660C fingerprin… | 2025-04-12T23:04:35.800000Z |
| var-201509-0013 | Cisco Content Security Management Appliance (SMA) 7.8.0-000 does not properly validate cr… | 2025-04-12T23:04:35.727000Z |
| var-201509-0265 | Schneider Electric InduSoft Web Studio before 8.0 allows remote attackers to execute arbi… | 2025-04-12T23:04:34.154000Z |
| var-201510-0023 | Cross-site scripting (XSS) vulnerability in Cisco Secure Access Control Server (ACS) 5.7(… | 2025-04-12T23:04:33.577000Z |
| var-201510-0444 | Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in pr… | 2025-04-12T23:04:33.258000Z |
| var-201603-0038 | Cross-site scripting (XSS) vulnerability in XZERES 442SR OS on 442SR wind turbines allows… | 2025-04-12T23:04:31.800000Z |
| var-201511-0019 | ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 a… | 2025-04-12T23:04:31.704000Z |
| var-201511-0018 | The Ice Faces servlet in ag_server_service.exe in the AggreGate Server Service in Tibbo A… | 2025-04-12T23:04:31.669000Z |
| var-201511-0230 | The XML parser in the management interface in Cisco Adaptive Security Appliance (ASA) Sof… | 2025-04-12T23:04:30.777000Z |
| var-201512-0423 | Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unity Conne… | 2025-04-12T23:04:29.927000Z |
| var-201601-0156 | The presentation transmission permission management mechanism in Huawei TE30, TE40, TE50,… | 2025-04-12T23:04:26.017000Z |
| var-201601-0033 | Advantech WebAccess before 8.1 allows remote attackers to cause a denial of service (out-… | 2025-04-12T23:04:23.957000Z |
| var-201601-0040 | Race condition in Advantech WebAccess before 8.1 allows remote attackers to execute arbit… | 2025-04-12T23:04:23.796000Z |
| var-201601-0639 | Advantech WebAccess before 8.1 allows remote attackers to read sensitive cleartext inform… | 2025-04-12T23:04:23.595000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2019:0466-1 | Security update for kernel-firmware | 2019-02-22T09:52:49Z | 2019-02-22T09:52:49Z |
| suse-su-2018:3033-2 | Security update for texlive | 2019-02-21T12:16:48Z | 2019-02-21T12:16:48Z |
| suse-su-2019:0457-1 | Security update for qemu | 2019-02-21T06:07:42Z | 2019-02-21T06:07:42Z |
| suse-su-2019:0450-1 | Security update for procps | 2019-02-20T15:43:19Z | 2019-02-20T15:43:19Z |
| suse-su-2019:0449-1 | Security update for php5 | 2019-02-20T13:40:10Z | 2019-02-20T13:40:10Z |
| suse-su-2019:0448-1 | Security update for python-numpy | 2019-02-20T07:38:41Z | 2019-02-20T07:38:41Z |
| suse-su-2019:0447-1 | Security update for libqt5-qtbase | 2019-02-20T07:38:29Z | 2019-02-20T07:38:29Z |
| suse-su-2019:0439-1 | Security update for the Linux Kernel | 2019-02-19T14:35:53Z | 2019-02-19T14:35:53Z |
| suse-su-2019:0438-1 | Security update for gvfs | 2019-02-19T14:35:34Z | 2019-02-19T14:35:34Z |
| suse-su-2019:0435-1 | Security update for qemu | 2019-02-19T12:12:38Z | 2019-02-19T12:12:38Z |
| suse-su-2019:0428-1 | Security update for systemd | 2019-02-19T10:00:42Z | 2019-02-19T10:00:42Z |
| suse-su-2019:0427-1 | Security update for kernel-firmware | 2019-02-19T08:26:52Z | 2019-02-19T08:26:52Z |
| suse-su-2019:0426-1 | Security update for systemd | 2019-02-18T16:46:59Z | 2019-02-18T16:46:59Z |
| suse-su-2019:0425-1 | Security update for systemd | 2019-02-18T16:46:43Z | 2019-02-18T16:46:43Z |
| suse-su-2019:0424-1 | Security update for systemd | 2019-02-18T16:46:33Z | 2019-02-18T16:46:33Z |
| suse-su-2019:0423-1 | Security update for qemu | 2019-02-18T15:26:50Z | 2019-02-18T15:26:50Z |
| suse-su-2019:0422-1 | Security update for kernel-firmware | 2019-02-18T15:26:13Z | 2019-02-18T15:26:13Z |
| suse-su-2019:0419-1 | Security update for python-numpy | 2019-02-18T08:56:27Z | 2019-02-18T08:56:27Z |
| suse-su-2019:0418-1 | Security update for python-numpy | 2019-02-16T10:34:02Z | 2019-02-16T10:34:02Z |
| suse-su-2019:13962-1 | Security update for kvm | 2019-02-15T10:43:11Z | 2019-02-15T10:43:11Z |
| suse-su-2019:0414-1 | Security update for dovecot23 | 2019-02-15T06:04:40Z | 2019-02-15T06:04:40Z |
| suse-su-2019:13961-1 | Security update for php53 | 2019-02-14T16:25:47Z | 2019-02-14T16:25:47Z |
| suse-su-2019:0396-1 | Security update for python-paramiko | 2019-02-14T14:15:42Z | 2019-02-14T14:15:42Z |
| suse-su-2019:0395-1 | Security update for nodejs6 | 2019-02-14T13:59:06Z | 2019-02-14T13:59:06Z |
| suse-su-2019:0394-1 | Security update for rubygem-loofah | 2019-02-14T13:47:10Z | 2019-02-14T13:47:10Z |
| suse-su-2019:0393-1 | Security update for podofo | 2019-02-14T13:46:21Z | 2019-02-14T13:46:21Z |
| suse-su-2019:0392-1 | Security update for couchdb | 2019-02-14T13:45:21Z | 2019-02-14T13:45:21Z |
| suse-su-2019:0391-1 | Security update for python-PyKMIP | 2019-02-14T13:44:35Z | 2019-02-14T13:44:35Z |
| suse-su-2019:0390-1 | Security update for util-linux | 2019-02-14T13:44:08Z | 2019-02-14T13:44:08Z |
| suse-su-2019:0387-1 | Security update for build | 2019-02-14T10:55:29Z | 2019-02-14T10:55:29Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2024-26088 | D-Link G416代码执行漏洞 | 2024-05-27 | 2024-06-06 |
| cnvd-2024-26087 | D-Link D-View代码执行漏洞 | 2024-05-27 | 2024-06-06 |
| cnvd-2024-26086 | D-Link DIR-3040内存泄露漏洞 | 2024-05-27 | 2024-06-06 |
| cnvd-2024-26085 | SAP Bank Account Management授权问题漏洞 | 2024-05-30 | 2024-06-06 |
| cnvd-2024-26045 | Rockwell Automation ControlLogix and GuardLogix拒绝服务漏洞 | 2024-02-02 | 2024-06-06 |
| cnvd-2024-26044 | Rockwell Automation FactoryTalk View SE SQL注入漏洞 | 2024-05-20 | 2024-06-06 |
| cnvd-2024-26019 | Mitsubishi Electric MELSEC-Q Series和MELSEC-L Series远程代码执行漏洞 | 2024-03-19 | 2024-06-06 |
| cnvd-2024-26018 | Mitsubishi Electric MELSEC iQ-R series信息泄露漏洞 | 2024-04-22 | 2024-06-06 |
| cnvd-2024-23838 | 普元信息技术股份有限公司微服务平台存在命令执行漏洞 | 2024-04-22 | 2024-06-06 |
| cnvd-2024-23827 | 西安瑞友信息技术资讯有限公司瑞友天翼应用虚拟化系统存在SQL注入漏洞(CNVD-2024-23827) | 2024-04-22 | 2024-06-06 |
| cnvd-2024-23806 | 福建科立讯通信有限公司指挥调度管理平台存在SQL注入漏洞(CNVD-2024-23806) | 2024-04-22 | 2024-06-06 |
| cnvd-2024-26508 | Fortinet FortiWeb资源管理错误漏洞(CNVD-2024-26508) | 2021-12-22 | 2024-06-05 |
| cnvd-2024-26507 | Fortinet FortiSOAR代码注入漏洞 | 2022-09-15 | 2024-06-05 |
| cnvd-2024-26505 | Fortinet FortiOS访问控制错误漏洞(CNVD-2024-26505) | 2023-07-13 | 2024-06-05 |
| cnvd-2024-26328 | Fortinet FortiOS远程代码执行漏洞 | 2023-06-16 | 2024-06-05 |
| cnvd-2024-26327 | Fortinet FortiOS缓冲区溢出漏洞(CNVD-2024-26327) | 2023-06-20 | 2024-06-05 |
| cnvd-2024-26326 | Fortinet FortiSIEM访问控制错误漏洞 | 2023-06-21 | 2024-06-05 |
| cnvd-2024-26084 | Google Chrome存在未明漏洞(CNVD-2024-26084) | 2024-05-27 | 2024-06-05 |
| cnvd-2024-26083 | IBM Security Verify Access输入验证错误漏洞(CNVD-2024-26083) | 2024-06-04 | 2024-06-05 |
| cnvd-2024-26082 | D-Link DIR-2150代码执行漏洞 | 2024-05-27 | 2024-06-05 |
| cnvd-2024-26081 | Dell Data Protection Advisor加密问题漏洞 | 2024-05-31 | 2024-06-05 |
| cnvd-2024-26080 | MantisBT跨站脚本漏洞(CNVD-2024-26080) | 2024-05-31 | 2024-06-05 |
| cnvd-2024-25620 | Oracle MySQL Server存在未明漏洞(CNVD-2024-25620) | 2024-02-22 | 2024-06-05 |
| cnvd-2024-25617 | Oracle MySQL Server存在未明漏洞(CNVD-2024-25617) | 2024-02-22 | 2024-06-05 |
| cnvd-2024-25616 | Oracle MySQL Server存在未明漏洞(CNVD-2024-25616) | 2024-02-22 | 2024-06-05 |
| cnvd-2024-25615 | Oracle MySQL Server存在未明漏洞(CNVD-2024-25615) | 2023-10-20 | 2024-06-05 |
| cnvd-2024-25614 | Oracle MySQL Server存在未明漏洞(CNVD-2024-25614) | 2024-02-22 | 2024-06-05 |
| cnvd-2024-25613 | Mozilla Firefox for iOS安全绕过漏洞(CNVD-2024-25613) | 2024-04-09 | 2024-06-05 |
| cnvd-2024-25612 | Mozilla Firefox for iOS安全绕过漏洞 | 2024-04-09 | 2024-06-05 |
| cnvd-2024-25596 | Mozilla Firefox代码执行漏洞(CNVD-2024-25596) | 2024-03-26 | 2024-06-05 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2006-avi-534 | Vulnérabilités dans SAP Internet Graphics Service | 2006-12-06T00:00:00.000000 | 2006-12-06T00:00:00.000000 |
| certa-2006-avi-533 | Multiples vulnérabilité du produit Trend Micro Office Scan | 2006-12-06T00:00:00.000000 | 2006-12-06T00:00:00.000000 |
| certa-2006-avi-532 | Vulnérabilité de Citrix | 2006-12-06T00:00:00.000000 | 2006-12-06T00:00:00.000000 |
| certa-2006-avi-531 | Vulnérabilité dans Novell ZENworks Patch Management | 2006-12-06T00:00:00.000000 | 2006-12-06T00:00:00.000000 |
| certa-2006-avi-530 | Vulnérabilité dans Ruby | 2006-12-06T00:00:00.000000 | 2006-12-06T00:00:00.000000 |
| certa-2006-avi-529 | Vulnérabilités dans IBM Tivoli | 2006-12-06T00:00:00.000000 | 2006-12-06T00:00:00.000000 |
| certa-2006-avi-528 | Vulnérabilité dans Sun Java System | 2006-12-05T00:00:00.000000 | 2006-12-05T00:00:00.000000 |
| certa-2006-avi-527 | Vulnérabilités dans F-Prot Antivirus pour UNIX | 2006-12-05T00:00:00.000000 | 2006-12-05T00:00:00.000000 |
| certa-2006-avi-525 | Vulnérabilité dans Novell ZENworks Asset Management | 2006-12-04T00:00:00.000000 | 2006-12-04T00:00:00.000000 |
| certa-2006-avi-524 | Multiples vulnérabilités de ProFTPD | 2006-12-04T00:00:00.000000 | 2006-12-04T00:00:00.000000 |
| certa-2006-avi-523 | Vulnérabilité du logiciel GnuPG | 2006-12-04T00:00:00.000000 | 2006-12-04T00:00:00.000000 |
| certa-2006-avi-522 | Multiples vulnérabilités de Xerox WorkCenter | 2006-12-01T00:00:00.000000 | 2006-12-01T00:00:00.000000 |
| certa-2006-avi-521 | Vulnérabilité dans F-Secure Antivirus et F-Secure Internet Gatekeeper | 2006-12-01T00:00:00.000000 | 2006-12-01T00:00:00.000000 |
| certa-2006-avi-520 | Vulnérabilité Novell | 2006-12-01T00:00:00.000000 | 2006-12-01T00:00:00.000000 |
| certa-2006-avi-519 | Vulnérabilité de Kronolith | 2006-12-01T00:00:00.000000 | 2006-12-01T00:00:00.000000 |
| certa-2006-avi-518 | Vulérabilité dans KOffice | 2006-12-01T00:00:00.000000 | 2006-12-01T00:00:00.000000 |
| certa-2006-avi-517 | Multiples vulnérabilités dans Apple Mac OS X | 2006-11-29T00:00:00.000000 | 2006-11-29T00:00:00.000000 |
| certa-2006-avi-515 | Vulnérabilité dans Symantec NetBackup PureDisk | 2006-11-29T00:00:00.000000 | 2006-11-29T00:00:00.000000 |
| certa-2006-avi-514 | Vulnérabilité de GNU Radius | 2006-11-28T00:00:00.000000 | 2006-11-28T00:00:00.000000 |
| certa-2006-avi-513 | Vulnérabilités dans VMware | 2006-11-23T00:00:00.000000 | 2006-11-23T00:00:00.000000 |
| certa-2006-avi-512 | Vulnérabilité dans Kerio WinRoute Firewall | 2006-11-23T00:00:00.000000 | 2006-11-23T00:00:00.000000 |
| certa-2006-avi-511 | Vulnérabilité de CA personal Firewall | 2006-11-23T00:00:00.000000 | 2006-11-23T00:00:00.000000 |
| certa-2006-avi-510 | Vulnérabilité dans PHPMyAdmin | 2006-11-23T00:00:00.000000 | 2006-11-23T00:00:00.000000 |
| certa-2006-avi-508 | Vulnérabilité dans Apple MAC OS X | 2006-11-23T00:00:00.000000 | 2006-11-23T00:00:00.000000 |
| certa-2006-avi-509 | Vulnérabilité dans OpenBSD | 2006-11-22T00:00:00.000000 | 2006-11-22T00:00:00.000000 |
| certa-2006-avi-507 | Multiples vulnérabilités dans IBM Websphere | 2006-11-22T00:00:00.000000 | 2006-11-22T00:00:00.000000 |
| certa-2006-avi-506 | Vulnérabilité dans libpng | 2006-06-01T00:00:00.000000 | 2006-11-17T00:00:00.000000 |
| certa-2006-avi-505 | Multiples vulnérabilités dans Citrix Access Gateway | 2006-11-17T00:00:00.000000 | 2006-11-17T00:00:00.000000 |
| certa-2006-avi-504 | Vulnérabilité de WinZip | 2006-11-17T00:00:00.000000 | 2006-11-17T00:00:00.000000 |
| certa-2006-avi-481 | Vulnérabilité dans PHP | 2006-11-09T00:00:00.000000 | 2006-11-17T00:00:00.000000 |