Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-37184 |
6.5 (3.1)
|
Unauthenticated Bypass Allows Multi-Factor Authenticat… |
Hewlett Packard Enterprise (HPE) |
EdgeConnect SD-WAN Orchestrator |
2026-01-14T16:19:45.879Z | 2026-01-14T16:46:09.552Z |
| CVE-2025-37181 |
7.2 (3.1)
|
Authenticated SQL Injection in EdgeConnect SD-WAN Orch… |
Hewlett Packard Enterprise (HPE) |
EdgeConnect SD-WAN Orchestrator |
2026-01-14T16:26:00.858Z | 2026-01-14T16:44:42.431Z |
| CVE-2025-37183 |
7.2 (3.1)
|
Authenticated SQL Injection in EdgeConnect SD-WAN Orch… |
Hewlett Packard Enterprise (HPE) |
EdgeConnect SD-WAN Orchestrator |
2026-01-14T16:18:14.058Z | 2026-01-14T16:44:25.188Z |
| CVE-2025-64723 |
4.8 (4.0)
|
Arduino IDE for macOS has TCC Bypass via Dynamic Libra… |
arduino |
arduino-ide |
2025-12-18T15:15:15.883Z | 2026-01-14T16:41:03.867Z |
| CVE-2025-37182 |
7.2 (3.1)
|
Authenticated SQL Injection in EdgeConnect SD-WAN Orch… |
Hewlett Packard Enterprise (HPE) |
EdgeConnect SD-WAN Orchestrator |
2026-01-14T16:17:12.170Z | 2026-01-14T16:40:21.747Z |
| CVE-2025-64710 |
5.3 (4.0)
|
Bitplatform Boilerplate has cross-site scripting vulne… |
bitfoundation |
bitplatform |
2025-11-13T01:40:55.653Z | 2026-01-14T16:36:25.003Z |
| CVE-2025-70968 |
9.8 (3.1)
|
FreeImage 3.18.0 contains a Use After Free in Plu… |
n/a |
n/a |
2026-01-14T00:00:00.000Z | 2026-01-14T16:31:37.711Z |
| CVE-2022-50908 |
5.1 (4.0)
7.2 (3.1)
|
Mailhog 1.0.1 - Stored Cross-Site Scripting (XSS) |
Mailhog |
Mailhog |
2026-01-13T22:51:49.736Z | 2026-01-14T16:31:12.700Z |
| CVE-2026-0529 |
6.5 (3.1)
|
Improper Validation of Array Index in Packetbeat Leadi… |
Elastic |
Packetbeat |
2026-01-14T10:09:02.462Z | 2026-01-14T16:31:01.455Z |
| CVE-2022-50909 |
8.6 (4.0)
8.8 (3.1)
|
Algo 8028 Control Panel - Remote Code Execution (RCE) … |
Algo Solutions |
Algo 8028 |
2026-01-13T22:51:50.115Z | 2026-01-14T16:28:12.723Z |
| CVE-2026-22198 |
5.1 (4.0)
|
GestSup < 3.2.60 Stored XSS in API Error Logs |
GestSup |
GestSup |
2026-01-09T16:19:11.386Z | 2026-01-14T16:22:23.313Z |
| CVE-2026-22197 |
7.5 (4.0)
|
GestSup < 3.2.60 Multiple SQL Injections in Asset List |
GestSup |
GestSup |
2026-01-09T16:18:48.461Z | 2026-01-14T16:22:01.793Z |
| CVE-2026-22196 |
7.7 (4.0)
|
GestSup < 3.2.60 SQL Injection in Ticket Creation |
GestSup |
GestSup |
2026-01-09T16:23:24.450Z | 2026-01-14T16:21:38.710Z |
| CVE-2026-22195 |
7.7 (4.0)
|
GestSup < 3.2.60 SQL Injection in Search Bar |
GestSup |
GestSup |
2026-01-09T16:18:27.853Z | 2026-01-14T16:21:13.711Z |
| CVE-2026-22194 |
8.9 (4.0)
|
GestSup <= 3.2.56 CSRF Allows Privileged Actions |
GestSup |
GestSup |
2026-01-09T16:17:55.920Z | 2026-01-14T16:19:51.773Z |
| CVE-2026-0532 |
8.6 (3.1)
|
External Control of File Name or Path and Server-Side … |
Elastic |
Kibana |
2026-01-14T10:14:57.415Z | 2026-01-14T16:18:47.674Z |
| CVE-2022-50912 |
9.3 (4.0)
9.8 (3.1)
|
ImpressCMS 1.4.4 - Unrestricted File Upload |
ImpressCMS |
ImpressCMS |
2026-01-13T22:51:51.296Z | 2026-01-14T16:15:05.429Z |
| CVE-2022-50913 |
8.5 (4.0)
8.4 (3.1)
|
TCQ - 'ITeCProteccioAppServer.exe' Unquoted Service Path |
ITEC |
TCQ |
2026-01-13T22:51:51.673Z | 2026-01-14T16:12:57.108Z |
| CVE-2025-67399 |
4.6 (3.1)
|
An issue in AIRTH SMART HOME AQI MONITOR Bootload… |
n/a |
n/a |
2026-01-14T00:00:00.000Z | 2026-01-14T16:09:43.888Z |
| CVE-2025-67859 |
5.1 (4.0)
|
Polkit Authorization Check can be Bypassed in the TLP … |
https://github.com/linrunner |
TLP |
2026-01-14T11:34:12.479Z | 2026-01-14T16:08:41.480Z |
| CVE-2022-50914 |
8.5 (4.0)
8.4 (3.1)
|
EaseUS Data Recovery - 'ensserver.exe' Unquoted Servi… |
EaseUS |
EaseUS Data Recovery |
2026-01-13T22:51:52.098Z | 2026-01-14T16:06:40.140Z |
| CVE-2022-50915 |
8.5 (4.0)
8.4 (3.1)
|
PTPublisher 2.3.4 - Unquoted Service Path |
Primera |
PTPublisher |
2026-01-13T22:51:52.516Z | 2026-01-14T16:05:35.504Z |
| CVE-2025-59342 |
5.5 (4.0)
|
esm.sh writes arbitrary files via path traversal in `X… |
esm-dev |
esm.sh |
2025-09-17T17:59:34.163Z | 2026-01-14T15:52:09.174Z |
| CVE-2022-50917 |
8.5 (4.0)
8.4 (3.1)
|
ProtonVPN 1.26.0 - Unquoted Service Path |
ProtonVPN |
ProtonVPN |
2026-01-13T22:51:53.350Z | 2026-01-14T15:47:13.635Z |
| CVE-2025-66005 |
8.5 (4.0)
|
Lack of Authentication in the InputManager D-Bus interface |
https://github.com/ShadowBlip |
inputplumber |
2026-01-14T11:53:49.844Z | 2026-01-14T15:46:07.870Z |
| CVE-2022-50918 |
8.5 (4.0)
8.4 (3.1)
|
VIVE Runtime Service - 'ViveAgentService' Unquoted Ser… |
VIVE |
VIVE Runtime Service |
2026-01-13T22:51:53.793Z | 2026-01-14T15:40:55.859Z |
| CVE-2022-50919 |
9.3 (4.0)
9.8 (3.1)
|
Tdarr 2.00.15 - Command Injection |
Tdarr |
Tdarr |
2026-01-13T22:51:54.173Z | 2026-01-14T15:37:23.386Z |
| CVE-2022-50920 |
8.5 (4.0)
8.4 (3.1)
|
Sandboxie-Plus 5.50.2 - 'Service SbieSvc' Unquoted Ser… |
Sandboxie |
Sandboxie Plus |
2026-01-13T22:51:54.536Z | 2026-01-14T15:35:50.855Z |
| CVE-2022-50929 |
8.5 (4.0)
8.4 (3.1)
|
Connectify Hotspot 2018 'ConnectifyService' - Unquoted… |
Connectify Inc |
Connectify Hotspot |
2026-01-13T22:51:58.403Z | 2026-01-14T15:35:25.053Z |
| CVE-2026-22211 |
5.1 (4.0)
|
TinyOS <= 2.1.2 Global Buffer Overflow in printfUART |
TinyOS |
TinyOS |
2026-01-14T15:19:54.833Z | 2026-01-14T15:35:01.567Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-66001 |
8.8 (3.1)
|
NeuVector OpenID Connect is vulnerable to man-in-the-m… |
SUSE |
neuvector |
2026-01-08T10:23:18.934Z | 2026-01-08T14:56:07.901Z |
| CVE-2025-62877 |
9.8 (3.1)
|
Harvest may expose OS default ssh login password via S… |
SUSE |
harvester |
2026-01-08T12:29:07.079Z | 2026-01-08T14:43:34.114Z |
| CVE-2025-4596 |
5.3 (4.0)
|
Information disclosure via IDOR in Asseco AMDX |
Asseco |
AMDX |
2026-01-08T14:58:23.907Z | 2026-01-08T15:36:32.702Z |
| CVE-2025-15346 |
9.3 (4.0)
|
wolfSSL Python library `CERT_REQUIRED` mode fails to e… |
wolfSSL |
wolfSSL-py |
2026-01-07T23:32:11.146Z | 2026-01-08T19:22:49.043Z |
| CVE-2025-14984 |
6.4 (3.1)
|
Gutenverse Form <= 2.3.2 - Authenticated (Author+) Sto… |
jegstudio |
Gutenverse Form – Contact Form Builder, Booking, Reservation, Subscribe for Block Editor |
2026-01-08T09:20:52.204Z | 2026-01-08T15:15:49.752Z |
| CVE-2025-14275 |
6.4 (3.1)
|
Jeg Elementor Kit <= 3.0.1 - Authenticated (Contributo… |
jegtheme |
Jeg Kit for Elementor – Powerful Addons for Elementor, Widgets & Templates for WordPress |
2026-01-08T02:21:16.382Z | 2026-01-08T16:21:58.848Z |
| CVE-2025-13679 |
6.5 (3.1)
|
Tutor LMS <= 3.9.3 - Missing Authorization to Authenti… |
themeum |
Tutor LMS – eLearning and online course solution |
2026-01-08T07:04:12.744Z | 2026-01-08T15:04:10.378Z |
| CVE-2025-12640 |
4.3 (3.1)
|
Folders – Unlimited Folders to Organize Media Library … |
galdub |
Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager |
2026-01-08T02:21:16.994Z | 2026-01-08T16:20:05.877Z |
| CVE-2019-25296 |
9.8 (3.1)
|
WP Cost Estimation <= 9.642 - Missing Authorization to… |
loopus |
WP Cost Estimation & Payment Forms Builder |
2026-01-08T02:21:17.399Z | 2026-01-08T16:45:20.953Z |
| CVE-2019-25295 |
6.5 (3.1)
|
WP Cost Estimation < 9.660 - Upload Directory Traversal |
loopus |
WP Cost Estimation & Payment Forms Builder |
2026-01-08T01:50:10.508Z | 2026-01-08T16:25:07.777Z |
| CVE-2019-25291 |
9.3 (4.0)
7.5 (3.1)
|
INIM Electronics Smartliving SmartLAN/G/SI <=6.x Hard-… |
INIM Electronics s.r.l. |
Smartliving SmartLAN/G/SI |
2026-01-07T23:10:05.042Z | 2026-01-08T19:24:13.174Z |
| CVE-2019-25290 |
6.9 (4.0)
5.3 (3.1)
|
INIM Electronics Smartliving SmartLAN/G/SI <=6.x Unaut… |
INIM Electronics s.r.l. |
Smartliving SmartLAN/G/SI |
2026-01-07T23:10:04.541Z | 2026-01-08T19:24:33.517Z |
| CVE-2019-25289 |
8.7 (4.0)
8.8 (3.1)
|
INIM Electronics SmartLiving SmartLAN/G/SI <=6.x Remot… |
INIM Electronics s.r.l. |
SmartLiving SmartLAN/G/SI |
2026-01-07T23:10:04.081Z | 2026-01-08T19:24:50.385Z |
| CVE-2019-25282 |
5.1 (4.0)
9.8 (3.1)
|
V-SOL GPON/EPON OLT Platform V2.03.62R_IPv6 v2.03 Open… |
Guangzhou V |
V-SOL GPON/EPON OLT Platform |
2026-01-07T23:10:02.783Z | 2026-01-08T19:25:13.144Z |
| CVE-2019-25268 |
8.6 (4.0)
9.8 (3.1)
|
NREL BEopt 2.8.0 Insecure Library Loading Arbitrary Co… |
NREL |
BEopt |
2026-01-07T23:09:58.121Z | 2026-01-08T19:26:09.416Z |
| CVE-2019-25259 |
5.1 (4.0)
5.3 (3.1)
|
Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 Cro… |
Leica Geosystems AG |
Leica Geosystems GR10/GR25/GR30/GR50 GNSS |
2026-01-07T23:09:57.621Z | 2026-01-08T19:26:27.630Z |
| CVE-2019-25231 |
8.5 (4.0)
8.4 (3.1)
|
devolo dLAN Cockpit 4.3.1 Unquoted Service Path Privil… |
devolo AG |
devolo dLAN Cockpit |
2026-01-07T23:09:57.200Z | 2026-01-08T19:26:44.290Z |
| CVE-2025-21063 |
4.6 (3.1)
|
Improper access control in Samsung Voice Recorder… |
Samsung Mobile |
Samsung Voice Recorder |
2025-10-10T06:33:21.908Z | 2025-10-10T10:24:41.556Z |
| CVE-2025-11651 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
UTT 进取 518G formRemoteControl sub_4247AC buffer overflow |
UTT |
进取 518G |
2025-10-12T23:32:06.071Z | 2025-10-14T20:08:25.323Z |
| CVE-2025-11652 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
UTT 进取 518G formTaskEdit_ap buffer overflow |
UTT |
进取 518G |
2025-10-13T00:02:05.104Z | 2025-10-14T13:42:48.256Z |
| CVE-2025-60355 |
9.8 (3.1)
|
zhangyd-c OneBlog before 2.3.9 was vulnerable to … |
n/a |
n/a |
2025-10-28T00:00:00.000Z | 2025-10-29T13:59:43.618Z |
| CVE-2025-61304 |
9.8 (3.1)
|
OS command injection vulnerability in Dynatrace A… |
n/a |
n/a |
2025-11-05T00:00:00.000Z | 2025-11-05T19:26:14.228Z |
| CVE-2025-63248 |
7.5 (3.1)
|
DWSurvey 6.14.0 is vulnerable to Incorrect Access… |
n/a |
n/a |
2025-11-05T00:00:00.000Z | 2025-11-05T20:03:23.117Z |
| CVE-2025-38723 |
N/A
|
LoongArch: BPF: Fix jump offset calculation in tailcall |
Linux |
Linux |
2025-09-04T15:33:16.547Z | 2025-11-03T17:41:51.527Z |
| CVE-2025-38724 |
N/A
|
nfsd: handle get_client_locked() failure in nfsd4_setc… |
Linux |
Linux |
2025-09-04T15:33:22.370Z | 2025-11-03T17:41:53.468Z |
| CVE-2025-38725 |
N/A
|
net: usb: asix_devices: add phy_mask for ax88772 mdio bus |
Linux |
Linux |
2025-09-04T15:33:23.468Z | 2025-11-03T17:41:54.427Z |
| CVE-2025-38727 |
N/A
|
netlink: avoid infinite retry looping in netlink_unicast() |
Linux |
Linux |
2025-09-04T15:33:25.286Z | 2025-11-03T17:41:56.297Z |
| CVE-2025-38728 |
N/A
|
smb3: fix for slab out of bounds on mount to ksmbd |
Linux |
Linux |
2025-09-04T15:33:26.039Z | 2025-11-03T17:41:57.246Z |
| CVE-2025-38729 |
N/A
|
ALSA: usb-audio: Validate UAC3 power domain descriptors, too |
Linux |
Linux |
2025-09-04T15:33:26.896Z | 2025-11-03T17:41:59.112Z |
| CVE-2025-63917 |
7.1 (3.1)
|
PDFPatcher thru 1.1.3.4663 executable's XML bookm… |
n/a |
n/a |
2025-11-17T00:00:00.000Z | 2025-11-17T19:48:24.068Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-14984 | The Gutenverse Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG file … | 2026-01-08T10:15:46.833 | 2026-01-08T18:08:18.457 |
| fkie_cve-2025-14275 | The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all vers… | 2026-01-08T03:15:43.033 | 2026-01-08T18:08:18.457 |
| fkie_cve-2025-13679 | The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to unauthor… | 2026-01-08T07:15:48.403 | 2026-01-08T18:08:18.457 |
| fkie_cve-2025-12640 | The Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager plugin… | 2026-01-08T03:15:42.873 | 2026-01-08T18:08:18.457 |
| fkie_cve-2019-25296 | The WP Cost Estimation plugin for WordPress is vulnerable to arbitrary file uploads and deletion du… | 2026-01-08T03:15:41.970 | 2026-01-08T18:08:18.457 |
| fkie_cve-2019-25295 | The WP Cost Estimation plugin for WordPress is vulnerable to Upload Directory Traversal in versions… | 2026-01-08T02:15:52.447 | 2026-01-08T18:08:18.457 |
| fkie_cve-2019-25291 | INIM Electronics Smartliving SmartLAN/G/SI <=6.x contains hard-coded credentials in its Linux distr… | 2026-01-08T00:15:59.143 | 2026-01-08T18:08:18.457 |
| fkie_cve-2019-25290 | Smartliving SmartLAN/G/SI <=6.x contains an unauthenticated server-side request forgery vulnerabili… | 2026-01-08T00:15:58.973 | 2026-01-08T18:08:18.457 |
| fkie_cve-2019-25289 | SmartLiving SmartLAN <=6.x contains an authenticated remote command injection vulnerability in the … | 2026-01-08T00:15:58.797 | 2026-01-08T18:08:18.457 |
| fkie_cve-2019-25282 | V-SOL GPON/EPON OLT Platform v2.03 contains an open redirect vulnerability in the script that allow… | 2026-01-08T00:15:58.450 | 2026-01-08T18:08:18.457 |
| fkie_cve-2019-25268 | NREL BEopt 2.8.0.0 contains a DLL hijacking vulnerability that allows attackers to load arbitrary l… | 2026-01-08T00:15:57.417 | 2026-01-08T18:08:18.457 |
| fkie_cve-2019-25259 | Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 contains a cross-site request forgery vulnerabil… | 2026-01-08T00:15:57.247 | 2026-01-08T18:08:18.457 |
| fkie_cve-2019-25231 | devolo dLAN Cockpit 4.3.1 contains an unquoted service path vulnerability in the 'DevoloNetworkServ… | 2026-01-08T00:15:57.063 | 2026-01-08T18:08:18.457 |
| fkie_cve-2025-21063 | Improper access control in Samsung Voice Recorder prior to version 21.5.73.12 in Android 15 and 21.… | 2025-10-10T07:15:42.493 | 2026-01-08T18:01:26.477 |
| fkie_cve-2025-11651 | A vulnerability has been found in UTT 进取 518G up to V3v3.2.7-210919-161313. This vulnerability affe… | 2025-10-13T00:15:33.753 | 2026-01-08T18:00:50.647 |
| fkie_cve-2025-11652 | A vulnerability was found in UTT 进取 518G up to V3v3.2.7-210919-161313. This issue affects some unkn… | 2025-10-13T01:15:47.957 | 2026-01-08T17:59:14.613 |
| fkie_cve-2025-60355 | zhangyd-c OneBlog before 2.3.9 was vulnerable to SSTI (Server-Side Template Injection) via FreeMark… | 2025-10-28T18:15:38.983 | 2026-01-08T17:54:55.737 |
| fkie_cve-2025-61304 | OS command injection vulnerability in Dynatrace ActiveGate ping extension up to 1.016 via crafted i… | 2025-11-05T16:15:40.770 | 2026-01-08T17:50:05.627 |
| fkie_cve-2025-63248 | DWSurvey 6.14.0 is vulnerable to Incorrect Access Control. When deleting a questionnaire, replacing… | 2025-11-05T17:15:45.663 | 2026-01-08T17:47:08.723 |
| fkie_cve-2025-38723 | In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Fix jump offse… | 2025-09-04T16:15:42.130 | 2026-01-08T17:42:36.560 |
| fkie_cve-2025-38724 | In the Linux kernel, the following vulnerability has been resolved: nfsd: handle get_client_locked… | 2025-09-04T16:15:42.273 | 2026-01-08T17:39:18.610 |
| fkie_cve-2025-38725 | In the Linux kernel, the following vulnerability has been resolved: net: usb: asix_devices: add ph… | 2025-09-04T16:15:42.420 | 2026-01-08T17:38:10.343 |
| fkie_cve-2025-38727 | In the Linux kernel, the following vulnerability has been resolved: netlink: avoid infinite retry … | 2025-09-04T16:15:42.713 | 2026-01-08T17:34:29.383 |
| fkie_cve-2025-38728 | In the Linux kernel, the following vulnerability has been resolved: smb3: fix for slab out of boun… | 2025-09-04T16:15:42.867 | 2026-01-08T17:31:44.547 |
| fkie_cve-2025-38729 | In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Validate UAC3… | 2025-09-04T16:15:43.013 | 2026-01-08T17:31:17.310 |
| fkie_cve-2025-63917 | PDFPatcher thru 1.1.3.4663 executable's XML bookmark import functionality does not restrict XML ext… | 2025-11-17T17:15:51.207 | 2026-01-08T17:27:25.843 |
| fkie_cve-2024-30149 | HCL AppScan Source <= 10.6.0 does not properly validate a TLS/SSL certificate for an executable. | 2024-10-31T09:15:02.993 | 2026-01-08T17:24:04.957 |
| fkie_cve-2025-63918 | PDFPatcher executable does not validate user-supplied file paths, allowing directory traversal atta… | 2025-11-17T17:15:51.333 | 2026-01-08T17:18:51.550 |
| fkie_cve-2025-67712 | There is an HTML injection issue in Esri ArcGIS Web AppBuilder developer edition versions prior to … | 2025-12-19T20:15:55.450 | 2026-01-08T17:15:49.637 |
| fkie_cve-2025-58407 | Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware to… | 2025-11-17T18:15:57.880 | 2026-01-08T17:13:38.533 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-rpx3-f938-xj5q |
5.3 (4.0)
|
Liferay Portal and DXP does not properly expire sessions | 2025-09-24T03:30:26Z | 2025-12-16T23:59:11Z |
| ghsa-jh9h-8xf2-25wj |
4.8 (4.0)
|
Liferay has a stored cross-site scripting (XSS) vulnerability via a a publication’s “Name” text field | 2025-09-22T18:30:37Z | 2025-12-16T23:47:28Z |
| ghsa-chr3-w547-85hw |
6.9 (4.0)
|
Liferay Portal Commerce component has Incorrect Permission Assignment for Critical Resource | 2025-09-19T21:31:21Z | 2025-12-16T23:46:58Z |
| ghsa-3j6h-5v68-hvqg |
6.9 (4.0)
|
Liferay Portal CAPTCHA Bypass for Gogo Shell | 2025-08-05T00:30:26Z | 2025-12-16T23:45:24Z |
| ghsa-6qcg-28jh-hm7r |
6.9 (4.0)
|
Liferay Portal Reflected XSS in blogs-web | 2025-08-08T18:32:22Z | 2025-12-16T23:45:09Z |
| ghsa-9v35-4xcr-w9ph |
7.5 (3.1)
8.7 (4.0)
|
NetBird uses a static initialization vector (IV) | 2024-08-01T18:32:50Z | 2025-12-16T23:31:03Z |
| ghsa-fh5r-crhr-qrrq |
7.5 (3.1)
|
Apache CXF: Denial of Service vulnerability with temporary files | 2025-01-21T12:30:47Z | 2025-12-16T23:29:48Z |
| ghsa-35g6-rrw3-v6xc |
8.3 (3.1)
|
FlowiseAI/Flosise has File Upload vulnerability | 2025-10-08T19:34:21Z | 2025-12-16T23:18:27Z |
| ghsa-vfm5-cr22-jg3m |
5.3 (3.1)
|
ABP Account Module has an Open Redirect through Improper validation in its register function | 2025-12-16T18:31:35Z | 2025-12-16T23:12:33Z |
| ghsa-wphj-fx3q-84ch |
8.1 (3.1)
|
systeminformation has a Command Injection vulnerability in fsSize() function on Windows | 2025-12-16T22:37:23Z | 2025-12-16T22:37:23Z |
| ghsa-cfpf-hrx2-8rv6 |
7.5 (3.1)
|
Expr has Denial of Service via Unbounded Recursion in Builtin Functions | 2025-12-16T22:34:16Z | 2025-12-16T22:34:16Z |
| ghsa-g239-q96q-x4qm |
7.5 (3.1)
|
@vitejs/plugin-rsc has an Arbitrary File Read via `/__vite_rsc_findSourceMapURL` Endpoint | 2025-12-16T22:32:26Z | 2025-12-16T22:32:27Z |
| ghsa-vc89-hccf-rq55 |
5.9 (3.1)
|
Hash collision in typelevel jawn | 2022-01-06T23:48:35Z | 2025-12-16T22:29:13Z |
| ghsa-93ww-vwhw-jwxm |
6.5 (3.1)
7.1 (4.0)
|
On affected platforms running Arista EOS with OSPFv3 configured, a specially crafted packet can cau… | 2025-12-16T21:30:55Z | 2025-12-16T21:30:55Z |
| ghsa-2q8j-p5mw-6mf5 |
6.2 (3.1)
|
Insecure defaults in the Server Agent component of Fortra's Core Privileged Access Manager (BoKS) c… | 2025-12-16T21:30:55Z | 2025-12-16T21:30:55Z |
| ghsa-x3gp-g59c-2vm8 |
5.4 (3.1)
|
nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) via the Currencies functionality. | 2025-12-16T21:30:54Z | 2025-12-16T21:30:54Z |
| ghsa-v9r5-r2c9-w7g7 |
5.4 (3.1)
|
nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) via the Blog posts functionality in … | 2025-12-16T21:30:54Z | 2025-12-16T21:30:54Z |
| ghsa-9gm8-6rq9-qj6f |
9.8 (3.1)
|
Apache Commons Text versions prior to 1.10.0 included interpolation features that could be abused w… | 2025-12-16T18:31:35Z | 2025-12-16T21:30:54Z |
| ghsa-6vj9-7994-7367 |
6.5 (3.1)
|
An issue was discovered in Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router on firmware version V1… | 2025-12-16T18:31:32Z | 2025-12-16T21:30:54Z |
| ghsa-6h7w-vjm9-6785 |
5.3 (3.1)
|
InvoicePlane commit debb446c is vulnerable to Incorrect Access Control. The invoices/view handler f… | 2025-12-16T18:31:32Z | 2025-12-16T21:30:54Z |
| ghsa-53gg-7r73-4vf2 |
5.4 (3.1)
|
An authorization bypass vulnerability in FileMaker Server Admin Console allowed administrator roles… | 2025-12-16T18:31:35Z | 2025-12-16T21:30:54Z |
| ghsa-2jrm-5c9c-9px7 |
5.3 (3.1)
|
To enhance security, the FileMaker Server 22.0.4 installer now includes an option to disable IIS sh… | 2025-12-16T18:31:35Z | 2025-12-16T21:30:54Z |
| ghsa-mc79-8xp6-rcw8 |
4.3 (3.1)
|
An SSTI (Server-Side Template Injection) vulnerability exists in the get_terms_and_conditions metho… | 2025-12-15T18:30:40Z | 2025-12-16T21:30:52Z |
| ghsa-hc98-xxm8-jfgj |
4.3 (3.1)
|
An SSTI (Server-Side Template Injection) vulnerability exists in the get_contract_template method o… | 2025-12-15T18:30:40Z | 2025-12-16T21:30:52Z |
| ghsa-37qv-3hw5-x3ph |
5.4 (3.1)
4.8 (4.0)
|
SolarEdge monitoring platform contains a Cross‑Site Scripting (XSS) flaw that allows an authenticat… | 2025-12-12T15:30:41Z | 2025-12-16T21:30:51Z |
| ghsa-2pvv-7qr9-h5rq |
5.5 (3.1)
|
This issue was addressed with improved state management. This issue is fixed in macOS Tahoe 26.1. A… | 2025-12-12T21:31:39Z | 2025-12-16T21:30:51Z |
| ghsa-r99r-5wp8-8w99 |
5.3 (3.1)
|
An uncontrolled resource consumption vulnerability in the web server of Zyxel DX3301-T0 firmware ve… | 2025-11-18T03:31:14Z | 2025-12-16T21:30:50Z |
| ghsa-p49g-r9vw-4fm8 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: displayport:… | 2025-05-29T15:31:09Z | 2025-12-16T21:30:50Z |
| ghsa-jgxp-fpw7-p364 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: fix region l… | 2025-05-29T15:31:09Z | 2025-12-16T21:30:50Z |
| ghsa-fjj2-p33c-f8qq |
9.8 (3.1)
|
A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 through … | 2025-12-09T18:30:46Z | 2025-12-16T21:30:50Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-23525 | The Spreadsheet::ParseXLSX package before 0.30 for Perl allows XXE attacks because it neg… | 2024-01-18T06:02:57.894245Z |
| gsd-2024-22377 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-18T06:02:57.758379Z |
| gsd-2024-22477 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-18T06:02:57.531932Z |
| gsd-2024-21800 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-18T06:02:56.773301Z |
| gsd-2024-21832 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-18T06:02:56.277896Z |
| gsd-2024-0662 | The FancyBox for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Script… | 2024-01-18T06:02:56.185420Z |
| gsd-2024-0655 | A vulnerability has been found in Novel-Plus 4.3.0-RC1 and classified as critical. Affect… | 2024-01-18T06:02:56.168378Z |
| gsd-2024-0663 | ** REJECT ** REJECT: This is a false positive report. | 2024-01-18T06:02:56.166000Z |
| gsd-2024-0649 | A vulnerability was found in ZhiHuiYun up to 4.4.13 and classified as critical. This issu… | 2024-01-18T06:02:56.164285Z |
| gsd-2024-0659 | The Easy Digital Downloads – Sell Digital Files (eCommerce Store & Payments Made Easy) pl… | 2024-01-18T06:02:56.159914Z |
| gsd-2024-0641 | A denial of service vulnerability was found in tipc_crypto_key_revoke in net/tipc/crypto.… | 2024-01-18T06:02:56.141003Z |
| gsd-2024-0665 | The WP Customer Area plugin for WordPress is vulnerable to Reflected Cross-Site Scripting… | 2024-01-18T06:02:56.114123Z |
| gsd-2024-0666 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-18T06:02:56.110304Z |
| gsd-2024-0642 | Inadequate access control in the C21 Live Encoder and Live Mosaic product, version 5.3. T… | 2024-01-18T06:02:56.099200Z |
| gsd-2024-0668 | The Advanced Database Cleaner plugin for WordPress is vulnerable to PHP Object Injection … | 2024-01-18T06:02:56.090222Z |
| gsd-2024-0639 | A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in… | 2024-01-18T06:02:56.078483Z |
| gsd-2024-0664 | The Meks Smart Social Widget plugin for WordPress is vulnerable to Stored Cross-Site Scri… | 2024-01-18T06:02:56.067707Z |
| gsd-2024-0648 | A vulnerability has been found in Yunyou CMS up to 2.2.6 and classified as critical. This… | 2024-01-18T06:02:56.053241Z |
| gsd-2024-0650 | A vulnerability was found in Project Worlds Visitor Management System 1.0. It has been cl… | 2024-01-18T06:02:56.031966Z |
| gsd-2024-0656 | The Password Protected – Ultimate Plugin to Password Protect Your WordPress Content with … | 2024-01-18T06:02:56.021085Z |
| gsd-2024-0660 | The Formidable Forms – Contact Form, Survey, Quiz, Payment, Calculator Form & Custom Form… | 2024-01-18T06:02:55.999677Z |
| gsd-2024-0661 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-18T06:02:55.996800Z |
| gsd-2024-0654 | A vulnerability, which was classified as problematic, was found in DeepFaceLab pretrained… | 2024-01-18T06:02:55.991980Z |
| gsd-2024-0647 | A vulnerability, which was classified as problematic, was found in Sparksuite SimpleMDE u… | 2024-01-18T06:02:55.973927Z |
| gsd-2024-0657 | The Internal Link Juicer: SEO Auto Linker for WordPress plugin for WordPress is vulnerabl… | 2024-01-18T06:02:55.928284Z |
| gsd-2024-0644 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-18T06:02:55.909046Z |
| gsd-2024-0638 | Least privilege violation in the Checkmk agent plugins mk_oracle, mk_oracle.ps1, and mk_o… | 2024-01-18T06:02:55.889398Z |
| gsd-2024-0643 | Unrestricted upload of dangerous file types in the C21 Live Encoder and Live Mosaic produ… | 2024-01-18T06:02:55.851731Z |
| gsd-2024-0646 | An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Securi… | 2024-01-18T06:02:55.814992Z |
| gsd-2024-0640 | The format of the source doesn't require a description, click on the link for more details. | 2024-01-18T06:02:55.813417Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-180870 | Malicious code in teate-thy-sonic-rapuj (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180869 | Malicious code in teate-thy-sonic-rapkun (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180868 | Malicious code in teate-thy-sonic-ramjak (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180867 | Malicious code in teate-thy-sonic-rahhek (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180866 | Malicious code in teate-thy-sonic-pusge (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180865 | Malicious code in teate-thy-sonic-pumut (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180864 | Malicious code in teate-thy-sonic-pumho (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180863 | Malicious code in teate-thy-sonic-pukfu (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180862 | Malicious code in teate-thy-sonic-pujo (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180861 | Malicious code in teate-thy-sonic-puha (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180860 | Malicious code in teate-thy-sonic-pugut (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180859 | Malicious code in teate-thy-sonic-pugfa (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180858 | Malicious code in teate-thy-sonic-pudog (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180857 | Malicious code in teate-thy-sonic-puchis (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180856 | Malicious code in teate-thy-sonic-poume (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180855 | Malicious code in teate-thy-sonic-posel (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180854 | Malicious code in teate-thy-sonic-poma (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180853 | Malicious code in teate-thy-sonic-pojmi (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180852 | Malicious code in teate-thy-sonic-pocra (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180851 | Malicious code in teate-thy-sonic-pobob (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180850 | Malicious code in teate-thy-sonic-pizda (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180849 | Malicious code in teate-thy-sonic-piwkez (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180848 | Malicious code in teate-thy-sonic-pitfab (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180847 | Malicious code in teate-thy-sonic-piru (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180846 | Malicious code in teate-thy-sonic-pipmag (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180845 | Malicious code in teate-thy-sonic-pikweb (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180844 | Malicious code in teate-thy-sonic-piji (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180843 | Malicious code in teate-thy-sonic-pija (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180842 | Malicious code in teate-thy-sonic-pigje (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| mal-2025-180841 | Malicious code in teate-thy-sonic-pice (npm) | 2025-11-12T20:46:07Z | 2025-11-12T20:46:07Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2021:0528 | Red Hat Security Advisory: python security update | 2021-02-16T08:44:41+00:00 | 2025-11-21T18:20:20+00:00 |
| rhsa-2021:0526 | Red Hat Security Advisory: kernel security and bug fix update | 2021-02-16T08:47:10+00:00 | 2025-11-21T18:20:20+00:00 |
| rhsa-2021:0525 | Red Hat Security Advisory: net-snmp security update | 2021-02-16T08:47:01+00:00 | 2025-11-21T18:20:20+00:00 |
| rhsa-2021:0509 | Red Hat Security Advisory: subversion:1.10 security update | 2021-02-15T07:33:57+00:00 | 2025-11-21T18:20:19+00:00 |
| rhsa-2021:0508 | Red Hat Security Advisory: subversion:1.10 security update | 2021-02-15T07:44:00+00:00 | 2025-11-21T18:20:19+00:00 |
| rhsa-2021:0507 | Red Hat Security Advisory: subversion:1.10 security update | 2021-02-15T07:35:38+00:00 | 2025-11-21T18:20:19+00:00 |
| rhsa-2021:0471 | Red Hat Security Advisory: dotnet3.1 security and bugfix update | 2021-02-10T16:39:44+00:00 | 2025-11-21T18:20:18+00:00 |
| rhsa-2021:0491 | Red Hat Security Advisory: Red Hat JBoss Web Server 3.1 Service Pack 11 security update | 2021-02-11T13:39:36+00:00 | 2025-11-21T18:20:17+00:00 |
| rhsa-2021:0489 | Red Hat Security Advisory: Red Hat JBoss Web Server 3.1 Service Pack 11 security update | 2021-02-11T13:38:43+00:00 | 2025-11-21T18:20:17+00:00 |
| rhsa-2021:0488 | Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP6 security update | 2021-02-11T13:29:52+00:00 | 2025-11-21T18:20:17+00:00 |
| rhsa-2021:0486 | Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP6 security update | 2021-02-11T13:19:08+00:00 | 2025-11-21T18:20:16+00:00 |
| rhsa-2021:0476 | Red Hat Security Advisory: dotnet5.0 security and bugfix update | 2021-02-10T17:37:45+00:00 | 2025-11-21T18:20:16+00:00 |
| rhsa-2021:0474 | Red Hat Security Advisory: dotnet security and bugfix update | 2021-02-10T17:31:17+00:00 | 2025-11-21T18:20:15+00:00 |
| rhsa-2021:0473 | Red Hat Security Advisory: .NET 5.0 on Red Hat Enterprise Linux security and bugfix update | 2021-02-10T17:01:19+00:00 | 2025-11-21T18:20:15+00:00 |
| rhsa-2021:0472 | Red Hat Security Advisory: .NET Core 3.1 on Red Hat Enterprise Linux security and bugfix update | 2021-02-10T17:01:20+00:00 | 2025-11-21T18:20:15+00:00 |
| rhsa-2021:0470 | Red Hat Security Advisory: .NET Core 2.1 on Red Hat Enterprise Linux security and bugfix update | 2021-02-10T17:01:10+00:00 | 2025-11-21T18:20:15+00:00 |
| rhsa-2021:0459 | Red Hat Security Advisory: qemu-kvm-rhev security update | 2021-02-09T13:45:07+00:00 | 2025-11-21T18:20:14+00:00 |
| rhsa-2021:0433 | Red Hat Security Advisory: Red Hat Data Grid 8.1.1 security update | 2021-02-08T12:54:50+00:00 | 2025-11-21T18:20:13+00:00 |
| rhsa-2021:0429 | Red Hat Security Advisory: OpenShift Container Platform 4.5.33 packages and security update | 2021-03-03T04:19:25+00:00 | 2025-11-21T18:20:13+00:00 |
| rhsa-2021:0428 | Red Hat Security Advisory: OpenShift Container Platform 4.5.33 bug fix and security update | 2021-03-03T04:39:52+00:00 | 2025-11-21T18:20:13+00:00 |
| rhsa-2021:0423 | Red Hat Security Advisory: OpenShift Container Platform 4.6.17 security and packages update | 2021-02-17T19:06:25+00:00 | 2025-11-21T18:20:13+00:00 |
| rhsa-2021:0417 | Red Hat Security Advisory: Red Hat AMQ Broker 7.8.1 release and security update | 2021-02-04T13:36:09+00:00 | 2025-11-21T18:20:11+00:00 |
| rhsa-2021:0411 | Red Hat Security Advisory: flatpak security update | 2021-02-04T11:18:24+00:00 | 2025-11-21T18:20:11+00:00 |
| rhsa-2021:0401 | Red Hat Security Advisory: Red Hat Virtualization Host security bug fix and enhancement update [ovirt-4.4.4] | 2021-02-03T16:14:40+00:00 | 2025-11-21T18:20:11+00:00 |
| rhsa-2021:0397 | Red Hat Security Advisory: thunderbird security update | 2021-02-03T10:45:03+00:00 | 2025-11-21T18:20:11+00:00 |
| rhsa-2021:0395 | Red Hat Security Advisory: RHV-H security, bug fix, enhancement update (redhat-virtualization-host) 4.3.13 | 2021-02-03T10:39:04+00:00 | 2025-11-21T18:20:11+00:00 |
| rhsa-2021:0347 | Red Hat Security Advisory: qemu-kvm security and bug fix update | 2021-02-02T12:06:09+00:00 | 2025-11-21T18:20:11+00:00 |
| rhsa-2021:0384 | Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R18 security and bug fix update | 2021-02-02T14:23:19+00:00 | 2025-11-21T18:20:10+00:00 |
| rhsa-2021:0383 | Red Hat Security Advisory: RHV-M (ovirt-engine) 4.4.z security, bug fix, enhancement upd[ovirt-4.4.4] 0-day | 2021-02-02T13:58:20+00:00 | 2025-11-21T18:20:09+00:00 |
| rhsa-2021:0381 | Red Hat Security Advisory: RHV-M(ovirt-engine) 4.4.z security, bug fix, enhancement update [ovirt-4.4.4] | 2021-02-02T13:57:58+00:00 | 2025-11-21T18:20:09+00:00 |
| ID | Description | Updated |
|---|---|---|
| var-202403-1392 | Under certain conditions SAP NetWeaver WSRM - version 7.50, allows an attacker to access … | 2025-04-11T23:12:34.284000Z |
| var-201003-0261 | Unspecified vulnerability in Cisco IOS 12.4, when NAT SCCP fragmentation support is enabl… | 2025-04-11T23:12:17.814000Z |
| var-201003-0360 | Visialis ABB Forum 1.1 stores sensitive information under the web root with insufficient … | 2025-04-11T23:12:17.719000Z |
| var-201005-0063 | Cross-site scripting (XSS) vulnerability in Cisco Router and Security Device Manager (SDM… | 2025-04-11T23:12:17.248000Z |
| var-201006-0352 | Heap-based buffer overflow in the PNG decoder in Ziproxy 3.1.0 allows remote attackers to… | 2025-04-11T23:12:16.881000Z |
| var-201009-0275 | Multiple cross-site scripting (XSS) vulnerabilities in Synology Disk Station 2.x before D… | 2025-04-11T23:12:12.078000Z |
| var-201009-0246 | The FTP authentication module in Synology Disk Station 2.x logs passwords to the web appl… | 2025-04-11T23:12:12.048000Z |
| var-201101-0018 | The web authentication form in the NT4 authentication component in Citrix Access Gateway … | 2025-04-11T23:12:11.613000Z |
| var-201101-0167 | Unspecified vulnerability in the Audit Vault component in Oracle Audit Vault 10.2.3.2 all… | 2025-04-11T23:12:11.532000Z |
| var-201102-0158 | The eCS component (ECSQdmn.exe) in CA ETrust Secure Content Manager 8.0 and CA Gateway Se… | 2025-04-11T23:12:11.343000Z |
| var-201103-0084 | The stateless address autoconfiguration (aka SLAAC) functionality in the IPv6 networking … | 2025-04-11T23:12:11.087000Z |
| var-201108-0027 | Integer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitra… | 2025-04-11T23:12:09.868000Z |
| var-201109-0073 | The ACL implementation in Cisco NX-OS 5.0(2) and 5.0(3) before 5.0(3)N2(1) on Nexus 5000 … | 2025-04-11T23:12:09.676000Z |
| var-201110-0152 | The ipv6 component in Cisco IOS before 15.1(4)M1.3 allows remote attackers to conduct fin… | 2025-04-11T23:12:09.351000Z |
| var-201110-0448 | Cisco Video Surveillance 2421 and 2500 series cameras with software 1.1.x and 2.x before … | 2025-04-11T23:12:09.139000Z |
| var-201112-0091 | Stack-based buffer overflow in the CGenericScheduler::AddTask function in cmdHandlerRedAl… | 2025-04-11T23:12:08.779000Z |
| var-201112-0196 | The Server Administration Panel in Parallels Plesk Panel 10.2.0_build1011110331.18 sends … | 2025-04-11T23:12:08.701000Z |
| var-201112-0217 | Multiple cross-site scripting (XSS) vulnerabilities in Parallels Plesk Small Business Pan… | 2025-04-11T23:12:08.673000Z |
| var-201112-0259 | The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 … | 2025-04-11T23:12:08.638000Z |
| var-201201-0167 | An unspecified ActiveX control in ActBar.ocx in Siemens Tecnomatix FactoryLink 6.6.1 (aka… | 2025-04-11T23:12:08.565000Z |
| var-201201-0166 | Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 … | 2025-04-11T23:12:08.524000Z |
| var-201205-0159 | The ZTE sync_agent program for Android 2.3.4 on the Score M device uses a hardcoded ztex1… | 2025-04-11T23:12:08.026000Z |
| var-201208-0268 | Unspecified vulnerability in Hitachi Cobol GUI Option 06-00, 06-01 through 06-01-/A, 07-0… | 2025-04-11T23:12:07.367000Z |
| var-201208-0310 | Directory traversal vulnerability in the XML Server in IOServer before 1.0.19.0, when the… | 2025-04-11T23:12:07.330000Z |
| var-201209-0075 | Untrusted search path vulnerability in tbb.dll in Intel Threading Building Blocks (TBB) 2… | 2025-04-11T23:12:06.558000Z |
| var-201209-0243 | Cisco Unity Connection (UC) 8.6, 9.0, and 9.5 allows remote attackers to cause a denial o… | 2025-04-11T23:12:02.782000Z |
| var-201209-0390 | Cisco IOS 15.0 through 15.3 allows remote authenticated users to cause a denial of servic… | 2025-04-11T23:12:02.723000Z |
| var-201210-0342 | Stack-based buffer overflow in the guac_client_plugin_open function in libguac in Guacamo… | 2025-04-11T23:12:02.339000Z |
| var-201210-0426 | Multiple PHP remote file inclusion vulnerabilities in SAPID CMS 1.2.3 Stable allow remote… | 2025-04-11T23:12:02.275000Z |
| var-201212-0070 | The web interface on (1) Foscam and (2) Wansview IP cameras allows remote attackers to by… | 2025-04-11T23:12:01.831000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2018:2563-1 | Security update for spice | 2018-08-30T14:10:34Z | 2018-08-30T14:10:34Z |
| suse-su-2018:2561-1 | Security update for cobbler | 2018-08-30T14:10:22Z | 2018-08-30T14:10:22Z |
| suse-su-2018:2557-1 | Security update for libtirpc | 2018-08-30T07:34:38Z | 2018-08-30T07:34:38Z |
| suse-su-2018:2556-1 | Security update for qemu | 2018-08-30T06:45:12Z | 2018-08-30T06:45:12Z |
| suse-su-2018:2555-1 | Security update for libzypp, zypper | 2018-08-30T06:44:57Z | 2018-08-30T06:44:57Z |
| suse-su-2018:2554-1 | Security update for apache2 | 2018-08-30T06:44:40Z | 2018-08-30T06:44:40Z |
| suse-su-2018:2551-1 | Security update for cobbler | 2018-08-29T15:39:58Z | 2018-08-29T15:39:58Z |
| suse-su-2018:2550-1 | Security update for cobbler | 2018-08-29T15:39:49Z | 2018-08-29T15:39:49Z |
| suse-su-2018:2553-1 | Security update for ImageMagick | 2018-08-29T15:29:19Z | 2018-08-29T15:29:19Z |
| suse-su-2018:2545-1 | Security update for openssl1 | 2018-08-28T15:32:39Z | 2018-08-28T15:32:39Z |
| suse-su-2018:2539-1 | Security update for the Linux Kernel | 2018-08-28T11:02:00Z | 2018-08-28T11:02:00Z |
| suse-su-2018:2538-1 | Security update for the Linux Kernel | 2018-08-28T11:01:55Z | 2018-08-28T11:01:55Z |
| suse-su-2018:2535-1 | Security update for libreoffice | 2018-08-28T09:05:41Z | 2018-08-28T09:05:41Z |
| suse-su-2018:2536-1 | Security update for grafana, kafka, logstash and monasca-installer | 2018-08-28T09:05:28Z | 2018-08-28T09:05:28Z |
| suse-su-2018:2534-1 | Security update for compat-openssl097g | 2018-08-28T09:05:06Z | 2018-08-28T09:05:06Z |
| suse-su-2018:2528-1 | Security update for xen | 2018-08-27T10:02:13Z | 2018-08-27T10:02:13Z |
| suse-su-2018:2530-1 | Security update for openssh | 2018-08-27T09:17:34Z | 2018-08-27T09:17:34Z |
| suse-su-2018:2527-1 | Security update for gdm | 2018-08-27T09:17:19Z | 2018-08-27T09:17:19Z |
| suse-su-2018:2492-1 | Security update for openssl | 2018-08-24T11:03:46Z | 2018-08-24T11:03:46Z |
| suse-su-2018:2486-1 | Security update for openssl | 2018-08-23T14:21:34Z | 2018-08-23T14:21:34Z |
| suse-su-2018:2485-1 | Security update for libreoffice | 2018-08-23T14:18:59Z | 2018-08-23T14:18:59Z |
| suse-su-2018:2483-1 | Security update for xen | 2018-08-23T12:15:49Z | 2018-08-23T12:15:49Z |
| suse-su-2018:2482-1 | Security update for xen | 2018-08-22T16:10:03Z | 2018-08-22T16:10:03Z |
| suse-su-2018:2481-1 | Security update for podofo | 2018-08-22T14:58:50Z | 2018-08-22T14:58:50Z |
| suse-su-2018:2480-1 | Security update for xen | 2018-08-22T14:31:48Z | 2018-08-22T14:31:48Z |
| suse-su-2018:2475-1 | Security update for ImageMagick | 2018-08-22T06:45:57Z | 2018-08-22T06:45:57Z |
| suse-su-2018:2474-1 | Security update for the Linux Kernel (Live Patch 0 for SLE 15) | 2018-08-21T15:13:27Z | 2018-08-21T15:13:27Z |
| suse-su-2018:2473-1 | Security update for the Linux Kernel (Live Patch 2 for SLE 15) | 2018-08-21T15:13:21Z | 2018-08-21T15:13:21Z |
| suse-su-2018:2472-1 | Security update for the Linux Kernel (Live Patch 1 for SLE 15) | 2018-08-21T15:13:14Z | 2018-08-21T15:13:14Z |
| suse-su-2018:2470-1 | Security update for gtk2 | 2018-08-21T12:55:58Z | 2018-08-21T12:55:58Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2024-20296 | Tenda F1203 formQuickIndex方法缓冲区溢出漏洞 | 2024-03-29 | 2024-04-19 |
| cnvd-2024-20286 | TP-LINK AC1350存在未明漏洞(CNVD-2024-20286) | 2024-04-11 | 2024-04-19 |
| cnvd-2024-20266 | Tenda W30E frmL7PlotForm函数栈缓冲区溢出漏洞 | 2024-04-18 | 2024-04-19 |
| cnvd-2024-20265 | Tenda W30E命令注入漏洞 | 2024-04-18 | 2024-04-19 |
| cnvd-2024-18610 | Tenda W30E formSetCfm函数栈缓冲区溢出漏洞 | 2024-04-18 | 2024-04-19 |
| cnvd-2024-18609 | Tenda W20E栈缓冲区溢出漏洞 | 2024-04-18 | 2024-04-19 |
| cnvd-2024-18608 | Tenda W30E fromRouteStatic函数缓冲区溢出漏洞 | 2024-04-18 | 2024-04-19 |
| cnvd-2024-18358 | Kirby CMS跨站脚本漏洞 | 2024-03-14 | 2024-04-19 |
| cnvd-2024-18357 | Setor Informatica SIL跨站脚本漏洞 | 2024-03-12 | 2024-04-19 |
| cnvd-2024-18335 | Rockwell Automation PowerFlex 527输入验证错误漏洞 | 2024-03-27 | 2024-04-19 |
| cnvd-2024-18334 | Rockwell Automation Arena Simulation Software未初始化指针访问漏洞 | 2024-03-27 | 2024-04-19 |
| cnvd-2024-18333 | Rockwell Automation Arena Simulation Software免费后使用漏洞 | 2024-03-27 | 2024-04-19 |
| cnvd-2024-18332 | Rockwell Automation Arena Simulation Software堆缓冲区溢出漏洞 | 2024-03-27 | 2024-04-19 |
| cnvd-2024-17860 | Apple iOS和Apple iPadOS缓冲区溢出漏洞 | 2022-04-14 | 2024-04-19 |
| cnvd-2024-17662 | 亿赛通电子文档安全管理系统存在反序列化漏洞(CNVD-2024-17662) | 2024-03-05 | 2024-04-19 |
| cnvd-2024-20757 | Palo Alto Networks GlobalProtect存在未明漏洞(CNVD-2024-20757) | 2024-03-15 | 2024-04-18 |
| cnvd-2024-20756 | Palo Alto Networks GlobalProtect存在未明漏洞(CNVD-2024-20756) | 2024-03-29 | 2024-04-18 |
| cnvd-2024-20512 | Palo Alto Networks PAN-OS跨站脚本漏洞(CNVD-2024-20512) | 2023-06-16 | 2024-04-18 |
| cnvd-2024-20511 | Palo Alto Networks PAN-OS XML API命令注入漏洞 | 2023-12-22 | 2024-04-18 |
| cnvd-2024-20510 | Palo Alto Networks PAN-OS存在未明漏洞(CNVD-2024-20510) | 2024-03-19 | 2024-04-18 |
| cnvd-2024-20509 | Palo Alto Networks PAN-OS跨站脚本漏洞(CNVD-2024-20509) | 2024-03-19 | 2024-04-18 |
| cnvd-2024-20508 | Palo Alto Networks PAN-OS存在未明漏洞(CNVD-2024-20508) | 2024-03-19 | 2024-04-18 |
| cnvd-2024-20507 | Palo Alto Networks PAN-OS存在未明漏洞(CNVD-2024-20507) | 2024-03-19 | 2024-04-18 |
| cnvd-2024-20506 | Palo Alto Networks PAN-OS存在未明漏洞(CNVD-2024-20506) | 2024-03-19 | 2024-04-18 |
| cnvd-2024-20505 | Palo Alto Networks PAN-OS信任管理问题漏洞 | 2024-04-15 | 2024-04-18 |
| cnvd-2024-20504 | Palo Alto Networks PAN-OS存在未明漏洞(CNVD-2024-20504) | 2024-04-15 | 2024-04-18 |
| cnvd-2024-20503 | Palo Alto Networks PAN-OS存在未明漏洞(CNVD-2024-20503) | 2024-04-15 | 2024-04-18 |
| cnvd-2024-20502 | Palo Alto Networks PAN-OS存在未明漏洞(CNVD-2024-20502) | 2024-04-15 | 2024-04-18 |
| cnvd-2024-20501 | Palo Alto Networks PAN-OS存在未明漏洞(CNVD-2024-20501) | 2024-04-15 | 2024-04-18 |
| cnvd-2024-20500 | Palo Alto Networks PAN-OS存在未明漏洞(CNVD-2024-20500) | 2024-04-15 | 2024-04-18 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2005-avi-394 | Vulnérabilité dans Microsoft DirectX | 2005-10-12T00:00:00.000000 | 2005-10-24T00:00:00.000000 |
| certa-2005-avi-421 | Vulnérabilité dans HP OpenView | 2005-10-20T00:00:00.000000 | 2005-10-20T00:00:00.000000 |
| certa-2005-avi-420 | Vulnérabilité de certains produits Cisco | 2005-10-20T00:00:00.000000 | 2005-10-20T00:00:00.000000 |
| certa-2005-avi-419 | Multiples vulnérabilités dans les produits Symantec pour Mac OS | 2005-10-20T00:00:00.000000 | 2005-10-20T00:00:00.000000 |
| certa-2005-avi-418 | Vulnérabilité de Squid | 2005-10-20T00:00:00.000000 | 2005-10-20T00:00:00.000000 |
| certa-2005-avi-417 | Multiples vulnérabilités dans le logiciel Ethereal | 2005-10-20T00:00:00.000000 | 2005-10-20T00:00:00.000000 |
| certa-2005-avi-416 | Vulnérabilité sur phpMyAdmin | 2005-10-20T00:00:00.000000 | 2005-10-20T00:00:00.000000 |
| certa-2005-avi-415 | Vulnérabilité de NetPBM | 2005-10-19T00:00:00.000000 | 2005-10-19T00:00:00.000000 |
| certa-2005-avi-414 | Multiples vulnérabilités d'Oracle | 2005-10-19T00:00:00.000000 | 2005-10-19T00:00:00.000000 |
| certa-2005-avi-413 | Multiples vulnérabilités dans IBM DB2 | 2005-10-19T00:00:00.000000 | 2005-10-19T00:00:00.000000 |
| certa-2005-avi-412 | Multiples vulnérabilités dans Nortel Centrex IP CLient Manager | 2005-10-19T00:00:00.000000 | 2005-10-19T00:00:00.000000 |
| certa-2005-avi-411 | Vulnérabilité du système de fichiers proc sous Solaris 10 | 2005-10-19T00:00:00.000000 | 2005-10-19T00:00:00.000000 |
| certa-2005-avi-408 | Vulnérabilité de Snort | 2005-10-19T00:00:00.000000 | 2005-10-19T00:00:00.000000 |
| certa-2005-avi-410 | Vulnérbilité d'AIX LSCFG | 2005-10-18T00:00:00.000000 | 2005-10-18T00:00:00.000000 |
| certa-2005-avi-409 | Vulnérabilité dans TotalStorage SAN Volume Controller | 2005-10-18T00:00:00.000000 | 2005-10-18T00:00:00.000000 |
| certa-2005-avi-406 | Vulnérabilité de Microsoft Network Connection Manager | 2005-10-14T00:00:00.000000 | 2005-10-14T00:00:00.000000 |
| certa-2005-avi-405 | Multiples vulnérabilités dans Sun Solaris | 2005-10-14T00:00:00.000000 | 2005-10-14T00:00:00.000000 |
| certa-2005-avi-384 | Multiples vulnérabilités dans cfengine | 2005-10-07T00:00:00.000000 | 2005-10-14T00:00:00.000000 |
| certa-2005-avi-404 | Vulnérabilité dans VERITAS NetBackup | 2005-10-13T00:00:00.000000 | 2005-10-13T00:00:00.000000 |
| certa-2005-avi-402 | Vulnérabilité dans SGI IRIX | 2005-10-12T00:00:00.000000 | 2005-10-12T00:00:00.000000 |
| certa-2005-avi-401 | Multiples vulnérabilités dans Microsoft Windows Shell et Web View | 2005-10-12T00:00:00.000000 | 2005-10-12T00:00:00.000000 |
| certa-2005-avi-399 | Vulnérabilité d'un composant Microsoft Windows et Exchange Server | 2005-10-12T00:00:00.000000 | 2005-10-12T00:00:00.000000 |
| certa-2005-avi-398 | Vulnérabilité dans le module Plug and Play (PnP) de Microsoft Windows. | 2005-10-12T00:00:00.000000 | 2005-10-12T00:00:00.000000 |
| certa-2005-avi-397 | Vulnérabilité dans le service client pour Netware de Microsoft | 2005-10-12T00:00:00.000000 | 2005-10-12T00:00:00.000000 |
| certa-2005-avi-396 | Vulnérabilité de Microsoft Internet Explorer | 2005-10-12T00:00:00.000000 | 2005-10-12T00:00:00.000000 |
| certa-2005-avi-395 | Vulnérabilité dans le client FTP Microsoft | 2005-10-12T00:00:00.000000 | 2005-10-12T00:00:00.000000 |
| certa-2005-avi-392 | Vulnérabilité de xli | 2005-10-11T00:00:00.000000 | 2005-10-12T00:00:00.000000 |
| certa-2005-avi-388 | Vulnérabilité de la bibliothèque multimedia xine-lib | 2005-10-10T00:00:00.000000 | 2005-10-12T00:00:00.000000 |
| certa-2005-avi-371 | Vulnérabilité de Squid | 2005-03-08T00:00:00.000000 | 2005-10-12T00:00:00.000000 |
| certa-2005-avi-391 | Vulnérabilité des antivirus Kaspersky et F-Secure | 2005-10-11T00:00:00.000000 | 2005-10-11T00:00:00.000000 |