Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-66058	6.5 (3.1)	WordPress Post Grid and Gutenberg Blocks plugin <= 2.3…	PickPlugins	Post Grid and Gutenberg Blocks	2025-12-18T16:15:15.498Z	2026-01-20T14:28:23.035Z
CVE-2025-64635	5.4 (3.1)	WordPress Feeds for YouTube plugin <= 2.4.0 - Broken A…	Syed Balkhi	Feeds for YouTube	2025-12-16T08:12:51.705Z	2026-01-20T14:28:23.027Z
CVE-2025-64633	5.3 (3.1)	WordPress Norebro Extra plugin <= 1.6.8 - Content Inje…	colabrio	Norebro Extra	2025-12-16T08:12:50.943Z	2026-01-20T14:28:23.014Z
CVE-2025-66053	6.5 (3.1)	WordPress Enfold theme <= 7.1.2 - Cross Site Scripting…	Kriesi	Enfold	2025-11-21T12:29:53.446Z	2026-01-20T14:28:22.999Z
CVE-2025-66063	5.4 (3.1)	WordPress WP Google Review Slider plugin <= 17.4 - Bro…	jgwhite33	WP Google Review Slider	2025-11-21T12:29:55.169Z	2026-01-20T14:28:22.981Z
CVE-2025-64632	5.3 (3.1)	WordPress Google XML Sitemaps plugin <= 4.1.21 - Broke…	Auctollo	Google XML Sitemaps	2025-12-16T08:12:50.749Z	2026-01-20T14:28:22.956Z
CVE-2025-64631	5 (3.1)	WordPress WCFM Marketplace plugin <= 3.6.15 - Broken A…	WC Lovers	WCFM Marketplace	2025-12-16T08:12:50.537Z	2026-01-20T14:28:22.954Z
CVE-2025-64639	5.3 (3.1)	WordPress WP Compress for MainWP plugin <= 6.50.07 - B…	WP Compress	WP Compress for MainWP	2025-12-16T08:12:52.102Z	2026-01-20T14:28:22.952Z
CVE-2025-64630	4.7 (3.1)	WordPress Business Directory plugin <= 6.4.19 - Broken…	Strategy11 Team	Business Directory	2025-12-16T08:12:50.318Z	2026-01-20T14:28:22.925Z
CVE-2025-64383	6.5 (3.1)	WordPress Qi Blocks plugin <= 1.4.3 - Cross Site Scrip…	Qode	Qi Blocks	2025-11-13T09:24:35.862Z	2026-01-20T14:28:22.843Z
CVE-2025-64382	4.3 (3.1)	WordPress Order Export & Order Import for WooCommerce …	WebToffee	Order Export & Order Import for WooCommerce	2025-11-13T09:24:35.435Z	2026-01-20T14:28:22.800Z
CVE-2025-64378	7.5 (3.1)	WordPress ListingPro theme < 2.9.10 - Broken Access Co…	CridioStudio	ListingPro	2025-12-18T07:22:16.946Z	2026-01-20T14:28:22.742Z
CVE-2025-64381	6.5 (3.1)	WordPress Booking Calendar plugin <= 10.14.7 - Cross S…	wpdevelop	Booking Calendar	2025-11-13T09:24:35.014Z	2026-01-20T14:28:22.737Z
CVE-2025-64379	4.3 (3.1)	WordPress Booster for WooCommerce plugin <= 7.4.0 - Br…	Pluggabl	Booster for WooCommerce	2025-11-13T09:24:34.101Z	2026-01-20T14:28:22.712Z
CVE-2025-64380	6.5 (3.1)	WordPress Booster for WooCommerce plugin <= 7.3.2 - Cr…	Pluggabl	Booster for WooCommerce	2025-11-13T09:24:34.585Z	2026-01-20T14:28:22.707Z
CVE-2025-64377	8.1 (3.1)	WordPress ListingPro theme < 2.9.10 - Local File Inclu…	CridioStudio	ListingPro	2025-12-18T07:22:16.752Z	2026-01-20T14:28:22.647Z
CVE-2025-64376	7.1 (3.1)	WordPress ListingPro theme < 2.9.10 - Cross Site Scrip…	CridioStudio	ListingPro	2025-12-18T07:22:16.555Z	2026-01-20T14:28:22.643Z
CVE-2025-64366	7.6 (3.1)	WordPress MasterStudy LMS plugin <= 3.6.27 - SQL Injec…	Stylemix	MasterStudy LMS	2025-10-31T11:42:39.301Z	2026-01-20T14:28:22.594Z
CVE-2025-64375	6.5 (3.1)	WordPress WP Social Ninja plugin <= 3.20.1 - Broken Ac…	Mahmudul Hasan Arif	WP Social Ninja	2025-12-18T07:22:16.373Z	2026-01-20T14:28:22.576Z
CVE-2025-64374	9.9 (3.1)	WordPress Motors theme <= 5.6.81 - Arbitrary File Uplo…	StylemixThemes	Motors	2025-12-18T07:22:16.202Z	2026-01-20T14:28:22.572Z
CVE-2025-64360	7.5 (3.1)	WordPress Consulting Elementor Widgets plugin <= 1.4.2…	StylemixThemes	Consulting Elementor Widgets	2025-10-31T11:42:32.330Z	2026-01-20T14:28:22.556Z
CVE-2025-64373	8.1 (3.1)	WordPress Traveler theme < 3.2.6 - Local File Inclusio…	shinetheme	Traveler	2025-12-18T07:22:16.006Z	2026-01-20T14:28:22.551Z
CVE-2025-64365	6.5 (3.1)	WordPress Ohio Extra plugin <= 3.6.0 - Cross Site Scri…	colabrio	Ohio Extra	2025-10-31T11:42:38.588Z	2026-01-20T14:28:22.551Z
CVE-2025-64363	7.5 (3.1)	WordPress Kleo theme < 5.5.0 - Local File Inclusion vu…	SeventhQueen	Kleo	2025-10-31T11:42:37.131Z	2026-01-20T14:28:22.551Z
CVE-2025-64367	6.5 (3.1)	WordPress Groundhogg plugin <= 4.2.6 - Cross Site Scri…	Adrian Tobey	Groundhogg	2025-10-31T11:42:40.076Z	2026-01-20T14:28:22.541Z
CVE-2025-64370	5.3 (3.1)	WordPress YOP Poll plugin <= 6.5.38 - Broken Access Co…	YOP	YOP Poll	2025-11-13T09:24:33.651Z	2026-01-20T14:28:22.538Z
CVE-2025-64368	5.4 (3.1)	WordPress Bard theme <= 1.6 - Cross Site Request Forge…	Mikado-Themes	Bard	2025-10-31T11:42:40.843Z	2026-01-20T14:28:22.538Z
CVE-2025-64361	6.5 (3.1)	WordPress Consulting Elementor Widgets plugin <= 1.4.2…	StylemixThemes	Consulting Elementor Widgets	2025-10-31T11:42:33.072Z	2026-01-20T14:28:22.533Z
CVE-2025-64359	7.5 (3.1)	WordPress Consulting theme < 6.7.5 - Local File Inclus…	StylemixThemes	Consulting	2025-10-31T11:42:31.602Z	2026-01-20T14:28:22.532Z
CVE-2025-64352	2.7 (3.1)	WordPress Essential Addons for Elementor plugin <= 6.2…	WPDeveloper	Essential Addons for Elementor	2025-10-31T11:42:23.045Z	2026-01-20T14:28:22.531Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-66530	8.8 (3.1)	WordPress Webba Booking plugin <= 6.2.1 - Broken Acces…	Webba Appointment Booking	Webba Booking	2025-12-09T14:13:53.897Z	2026-01-20T14:28:24.537Z
CVE-2025-66529	8.8 (3.1)	WordPress Chartify plugin <= 3.6.3 - Cross Site Reques…	Ays Pro	Chartify	2025-12-09T14:13:53.647Z	2026-01-20T14:28:24.493Z
CVE-2025-66528	8.1 (3.1)	WordPress Thank You Page Customizer for WooCommerce pl…	VillaTheme	Thank You Page Customizer for WooCommerce	2025-12-09T14:13:53.449Z	2026-01-20T14:28:24.582Z
CVE-2025-66527	4.3 (3.1)	WordPress Lobo theme <= 2.8.6 - Broken Access Control …	VanKarWai	Lobo	2025-12-09T14:13:53.255Z	2026-01-20T14:28:24.494Z
CVE-2025-66526	4.3 (3.1)	WordPress Tablesome plugin <= 1.1.34 - Broken Access C…	Essekia	Tablesome	2025-12-09T14:13:53.002Z	2026-01-20T14:28:24.435Z
CVE-2025-66525	4.3 (3.1)	WordPress Elastic Email Sender plugin <= 1.2.20 - Brok…	Elastic Email	Elastic Email Sender	2025-12-09T14:13:52.779Z	2026-01-20T14:28:24.494Z
CVE-2025-66167	5.4 (3.1)	WordPress Lottier plugin <= 1.1.1 - Broken Access Cont…	merkulove	Lottier	2025-12-16T08:12:56.806Z	2026-01-20T14:28:24.481Z
CVE-2025-66166	5.4 (3.1)	WordPress Lottier for Elementor plugin <= 1.0.9 - Brok…	merkulove	Lottier for Elementor	2025-12-16T08:12:56.603Z	2026-01-20T14:28:24.430Z
CVE-2025-66165	5.4 (3.1)	WordPress Lottier for WPBakery plugin <= 1.1.7 - Broke…	merkulove	Lottier for WPBakery	2025-12-16T08:12:56.408Z	2026-01-20T14:28:24.537Z
CVE-2025-66164	5.4 (3.1)	WordPress Laser plugin <= 1.1.1 - Broken Access Contro…	merkulove	Laser	2025-12-16T08:12:56.211Z	2026-01-20T14:28:24.509Z
CVE-2025-66163	5.4 (3.1)	WordPress Masker for Elementor plugin <= 1.1.4 - Broke…	merkulove	Masker for Elementor	2025-12-16T08:12:55.859Z	2026-01-20T14:28:24.419Z
CVE-2025-66162	5.4 (3.1)	WordPress Spoter for Elementor plugin <= 1.04 - Broken…	merkulove	Spoter for Elementor	2025-12-16T08:12:55.672Z	2026-01-20T14:28:24.446Z
CVE-2025-66161	5.4 (3.1)	WordPress Grider for Elementor plugin <= 1.0.8 - Broke…	merkulove	Grider for Elementor	2025-12-16T08:12:55.484Z	2026-01-20T14:28:24.442Z
CVE-2025-66160	5.4 (3.1)	WordPress Select Graphist for Elementor Graphist for …	merkulove	Select Graphist for Elementor Graphist for Elementor	2025-12-31T16:50:19.182Z	2026-01-20T14:28:24.538Z
CVE-2025-66159	5.4 (3.1)	WordPress Walker for Elementor plugin <= 1.1.6 - Broke…	merkulove	Walker for Elementor	2025-12-31T16:51:12.320Z	2026-01-20T14:28:24.501Z
CVE-2025-66158	5.4 (3.1)	WordPress Gmaper for Elementor plugin <= 1.0.9 - Broke…	merkulove	Gmaper for Elementor	2025-12-31T16:51:58.259Z	2026-01-20T14:28:24.495Z
CVE-2025-66157	5.4 (3.1)	WordPress Slider for Elementor plugin <= 1.0.10 - Brok…	merkulove	Slider for Elementor	2025-12-31T16:58:24.314Z	2026-01-20T14:28:24.553Z
CVE-2025-66156	5.4 (3.1)	WordPress Watcher for Elementor plugin <= 1.0.9 - Brok…	merkulove	Watcher for Elementor	2025-12-31T16:59:07.770Z	2026-01-20T14:28:24.495Z
CVE-2025-66155	5.4 (3.1)	WordPress Questionar for Elementor plugin <= 1.1.7 - B…	merkulove	Questionar for Elementor	2025-12-31T17:00:37.052Z	2026-01-20T14:28:24.566Z
CVE-2025-66154	5.4 (3.1)	WordPress Couponer for Elementor plugin <= 1.1.7 - Bro…	merkulove	Couponer for Elementor	2025-12-31T17:01:26.537Z	2026-01-20T14:28:24.410Z
CVE-2025-66153	5.4 (3.1)	WordPress Headinger for Elementor plugin <= 1.1.4 - Br…	merkulove	Headinger for Elementor	2025-12-31T18:31:21.816Z	2026-01-20T14:28:24.444Z
CVE-2025-66152	5.4 (3.1)	WordPress Criptopayer for Elementor plugin <= 1.0.1 - …	merkulove	Criptopayer for Elementor	2025-12-31T18:32:07.924Z	2026-01-20T14:28:24.511Z
CVE-2025-66151	5.4 (3.1)	WordPress Countdowner for Elementor plugin <= 1.0.4 - …	merkulove	Countdowner for Elementor	2025-12-31T18:32:49.483Z	2026-01-20T14:28:24.546Z
CVE-2025-66150	5.4 (3.1)	WordPress Appender plugin <= 1.1.1 - Broken Access Con…	merkulove	Appender	2025-12-31T18:35:57.735Z	2026-01-20T14:28:24.539Z
CVE-2025-66149	5.4 (3.1)	WordPress UnGrabber plugin <= 3.1.3 - Broken Access Co…	merkulove	UnGrabber	2025-12-31T18:38:14.772Z	2026-01-20T14:28:24.511Z
CVE-2025-66148	5.4 (3.1)	WordPress Conformer for Elementor plugin <= 1.0.7 - Br…	merkulove	Conformer for Elementor	2025-12-31T19:49:17.102Z	2026-01-20T14:28:24.475Z
CVE-2025-66147	5.4 (3.1)	WordPress Coder for Elementor plugin <= 1.0.13 - Broke…	merkulove	Coder for Elementor	2025-12-16T08:12:55.284Z	2026-01-20T14:28:24.524Z
CVE-2025-66146	5.4 (3.1)	WordPress Logger for Elementor plugin <= 1.0.9 - Broke…	merkulove	Logger for Elementor	2025-12-31T19:50:21.260Z	2026-01-20T14:28:24.515Z
CVE-2025-66145	5.4 (3.1)	WordPress Worker for WPBakery plugin <= 1.1.1 - Broken…	merkulove	Worker for WPBakery	2025-12-31T19:51:22.621Z	2026-01-20T14:28:24.457Z
CVE-2025-66144	5.4 (3.1)	WordPress Worker for Elementor plugin <= 1.0.10 - Brok…	merkulove	Worker for Elementor	2025-12-31T19:51:58.516Z	2026-01-20T14:28:24.464Z

ID	Description	Published	Updated
fkie_cve-2025-66163	Missing Authorization vulnerability in merkulove Masker for Elementor masker-elementor allows Explo…	2025-12-16T09:15:58.547	2026-01-20T15:19:12.593
fkie_cve-2025-66162	Missing Authorization vulnerability in merkulove Spoter for Elementor spoter-elementor allows Explo…	2025-12-16T09:15:58.413	2026-01-20T15:19:12.467
fkie_cve-2025-66161	Missing Authorization vulnerability in merkulove Grider for Elementor grider-elementor allows Explo…	2025-12-16T09:15:58.290	2026-01-20T15:19:12.340
fkie_cve-2025-66160	Missing Authorization vulnerability in merkulove Select Graphist for Elementor Graphist for Element…	2025-12-31T17:15:50.783	2026-01-20T15:19:12.247
fkie_cve-2025-66159	Missing Authorization vulnerability in merkulove Walker for Elementor allows Exploiting Incorrectly…	2025-12-31T17:15:50.583	2026-01-20T15:19:12.150
fkie_cve-2025-66158	Missing Authorization vulnerability in merkulove Gmaper for Elementor allows Exploiting Incorrectly…	2025-12-31T17:15:50.410	2026-01-20T15:19:12.053
fkie_cve-2025-66157	Missing Authorization vulnerability in merkulove Slider for Elementor allows Exploiting Incorrectly…	2025-12-31T17:15:49.593	2026-01-20T15:19:11.957
fkie_cve-2025-66156	Missing Authorization vulnerability in merkulove Watcher for Elementor allows Exploiting Incorrectl…	2025-12-31T17:15:49.387	2026-01-20T15:19:11.837
fkie_cve-2025-66155	Missing Authorization vulnerability in merkulove Questionar for Elementor allows Exploiting Incorre…	2025-12-31T17:15:49.240	2026-01-20T15:19:11.700
fkie_cve-2025-66154	Missing Authorization vulnerability in merkulove Couponer for Elementor allows Exploiting Incorrect…	2025-12-31T17:15:48.977	2026-01-20T15:19:11.600
fkie_cve-2025-66153	Missing Authorization vulnerability in merkulove Headinger for Elementor allows Exploiting Incorrec…	2025-12-31T19:15:44.690	2026-01-20T15:19:11.500
fkie_cve-2025-66152	Missing Authorization vulnerability in merkulove Criptopayer for Elementor allows Exploiting Incorr…	2025-12-31T19:15:44.533	2026-01-20T15:19:11.400
fkie_cve-2025-66151	Missing Authorization vulnerability in merkulove Countdowner for Elementor allows Exploiting Incorr…	2025-12-31T19:15:44.380	2026-01-20T15:19:11.300
fkie_cve-2025-66150	Missing Authorization vulnerability in merkulove Appender allows Exploiting Incorrectly Configured …	2025-12-31T19:15:44.237	2026-01-20T15:19:11.203
fkie_cve-2025-66149	Missing Authorization vulnerability in merkulove UnGrabber allows Exploiting Incorrectly Configured…	2025-12-31T19:15:44.080	2026-01-20T15:19:11.103
fkie_cve-2025-66148	Missing Authorization vulnerability in merkulove Conformer for Elementor allows Exploiting Incorrec…	2025-12-31T20:15:43.480	2026-01-20T15:19:11.010
fkie_cve-2025-66147	Missing Authorization vulnerability in merkulove Coder for Elementor coder-elementor allows Exploit…	2025-12-16T09:15:58.167	2026-01-20T15:19:10.883
fkie_cve-2025-66146	Missing Authorization vulnerability in merkulove Logger for Elementor allows Exploiting Incorrectly…	2025-12-31T20:15:43.350	2026-01-20T15:19:10.787
fkie_cve-2025-66145	Missing Authorization vulnerability in merkulove Worker for WPBakery allows Exploiting Incorrectly …	2025-12-31T20:15:43.213	2026-01-20T15:19:10.683
fkie_cve-2025-66144	Missing Authorization vulnerability in merkulove Worker for Elementor allows Exploiting Incorrectly…	2025-12-31T20:15:43.073	2026-01-20T15:19:10.587
fkie_cve-2025-66134	Missing Authorization vulnerability in NinjaTeam FileBird Pro filebird-pro allows Exploiting Incorr…	2025-12-16T09:15:58.040	2026-01-20T15:19:10.450
fkie_cve-2025-66133	Missing Authorization vulnerability in WP Legal Pages WP Cookie Notice for GDPR, CCPA & ePrivacy Co…	2025-12-16T09:15:57.913	2026-01-20T15:19:10.320
fkie_cve-2025-66132	Authorization Bypass Through User-Controlled Key vulnerability in FAPI Business s.r.o. FAPI Member …	2025-12-16T09:15:57.780	2026-01-20T15:19:10.190
fkie_cve-2025-66131	Missing Authorization vulnerability in yaadsarig Yaad Sarig Payment Gateway For WC yaad-sarig-payme…	2025-12-16T09:15:57.653	2026-01-20T15:19:10.060
fkie_cve-2025-66130	Missing Authorization vulnerability in etruel WP Views Counter wpecounter allows Exploiting Incorre…	2025-12-16T09:15:57.527	2026-01-20T15:19:09.927
fkie_cve-2025-66129	Missing Authorization vulnerability in wppochipp Pochipp pochipp allows Exploiting Incorrectly Conf…	2025-12-16T09:15:57.397	2026-01-20T15:19:09.800
fkie_cve-2025-66128	Missing Authorization vulnerability in Brevo Sendinblue for WooCommerce woocommerce-sendinblue-news…	2025-12-16T09:15:57.267	2026-01-20T15:19:09.670
fkie_cve-2025-66127	Missing Authorization vulnerability in g5theme Essential Real Estate essential-real-estate allows E…	2025-12-16T09:15:57.140	2026-01-20T15:19:09.533
fkie_cve-2025-66126	Insertion of Sensitive Information Into Sent Data vulnerability in wowpress.host Fix Media Library …	2025-12-16T09:15:56.993	2026-01-20T15:19:09.390
fkie_cve-2025-66125	Insertion of Sensitive Information Into Sent Data vulnerability in Nitesh Ultimate Auction ultimat…	2025-12-16T09:15:56.853	2026-01-20T15:19:09.223

ID	Severity	Description	Published	Updated
ghsa-jxgx-9wwv-2g4h	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-j934-wxvm-8fw9	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-hrc4-whhq-v375	6.5 (3.1)	Missing Authorization vulnerability in Wealcoder Animation Addons for Elementor animation-addons-fo…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-hgf5-67r8-3fcm	5.9 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-h6rm-qgch-65pr	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-gwq3-r365-h2g8	5.3 (3.1)	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in alekv P…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-fqq6-293f-f549	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-f36m-hf38-h6rh	5.3 (3.1)	Missing Authorization vulnerability in WebCodingPlace Image Caption Hover Pro image-caption-hover-p…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-cqxc-j3v9-5m9g	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-9r4p-xvf3-9x4q	6.5 (3.1)	Missing Authorization vulnerability in WP Delicious WP Delicious delicious-recipes allows Exploitin…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-9gx8-7m79-g5p3	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-98c9-f4v9-v6qr	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-93x9-7c94-7879	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-93x7-mfr3-2vx3	5.4 (3.1)	Missing Authorization vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-8q5w-6x37-j5hg	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-865r-5g86-hfxf	5.3 (3.1)	Missing Authorization vulnerability in Saad Iqbal Post SMTP post-smtp allows Exploiting Incorrectly…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-7f3f-ppww-82r3	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-74xg-56wg-gvpj	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-6pvg-49r3-g3c7	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-6j84-m7wp-j9jm	7.1 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in Jacques Malgrange Rencontre rencontre allows Sto…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-59m8-jmcc-pxx7	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-57rv-vq9v-c6qg	5.9 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-5263-ggmq-48gj	5.4 (3.1)	Missing Authorization vulnerability in Oleksandr Lysyi Debug Log Viewer debug-log-viewer allows Exp…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-3662-gvg6-j9xx	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2wqc-47g4-pm22	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2w86-r6rm-76wr	5.3 (3.1)	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in uixthem…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-2q9h-6v2j-hfpp	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2jf2-fhpf-vfw3	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2hgv-qvvq-63hq	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-29qw-9m44-pf9w	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z

ID	Description	Package	Published	Updated
pysec-2020-242	netius prior to 1.17.58 is vulnerable to HTTP Request Smuggling. HTTP pipelining issues a…	netius	2020-05-21T15:15:00Z	2021-11-23T06:07:22.013113Z
pysec-2019-220	In Pallets Jinja before 2.8.1, str.format allows a sandbox escape.	jinja2	2019-04-08T13:29:00Z	2021-11-22T04:57:52.929678Z
pysec-2019-217	In Pallets Jinja before 2.10.1, str.format_map allows a sandbox escape.	jinja2	2019-04-07T00:29:00Z	2021-11-22T04:57:52.862665Z
pysec-2014-97	Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy Digi…	apache-libcloud	2014-01-07T18:55:00Z	2021-11-22T04:57:51.510127Z
pysec-2021-430	django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generat…	django-helpdesk	2021-11-13T09:15:00Z	2021-11-19T07:28:03.664110Z
pysec-2021-429	SLO generator allows for loading of YAML files that if crafted in a specific format can a…	slo-generator	2021-10-04T10:15:00Z	2021-11-16T21:20:29.712720Z
pysec-2018-104	python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an informat…	oslo-middleware	2018-05-08T17:29:00Z	2021-11-16T21:20:29.327956Z
pysec-2021-428	nbdime provides tools for diffing and merging of Jupyter Notebooks. In affected versions …	nbdime	2021-11-03T18:15:00Z	2021-11-16T21:20:29.137127Z
pysec-2013-34	Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote…	graphite-web	2013-09-27T10:08:00Z	2021-11-16T21:20:28.715114Z
pysec-2017-100	Cross-site scripting (XSS) vulnerability in Cherry Music before 0.36.0 allows remote auth…	cherrymusic	2017-03-27T15:59:00Z	2021-11-16T21:20:28.264266Z
pysec-2017-99	Directory traversal vulnerability in Cherry Music before 0.36.0 allows remote authenticat…	cherrymusic	2017-03-27T15:59:00Z	2021-11-16T21:20:28.227902Z
pysec-2011-24	libcloud before 0.4.1 does not verify SSL certificates for HTTPS connections, which allow…	apache-libcloud	2011-09-12T12:41:00Z	2021-11-16T21:20:27.993612Z
pysec-2021-426	The verify function in the Stark Bank Python ECDSA library (ecdsa-python) 2.0.0 fails to …	starkbank-ecdsa	2021-11-09T22:15:00Z	2021-11-16T03:58:45.828098Z
pysec-2020-267	Red Discord Bot before version 3.4.1 has an unauthorized privilege escalation exploit in …	red-discordbot	2020-10-28T17:15:00Z	2021-11-16T03:58:45.518170Z
pysec-2020-266	Red Discord Bot before versions 3.3.12 and 3.4 has a Remote Code Execution vulnerability …	red-discordbot	2020-08-21T18:15:00Z	2021-11-16T03:58:45.466484Z
pysec-2020-265	In Red Discord Bot before version 3.3.11, a RCE exploit has been discovered in the Trivia…	red-discordbot	2020-08-21T17:15:00Z	2021-11-16T03:58:45.413825Z
pysec-2019-218	libnmap < v0.6.3 is affected by: XML Injection. The impact is: Denial of service (DoS) by…	python-libnmap	2019-07-15T03:15:00Z	2021-11-16T03:58:45.118185Z
pysec-2021-425	Matrix is an ecosystem for open federated Instant Messaging and Voice over IP. In version…	matrix-synapse	2021-08-31T17:15:00Z	2021-11-16T03:58:44.571857Z
pysec-2021-424	Matrix is an ecosystem for open federated Instant Messaging and Voice over IP. In version…	matrix-synapse	2021-08-31T16:15:00Z	2021-11-16T03:58:44.500451Z
pysec-2020-264	In "I hate money" before version 4.1.5, an authenticated member of one project can modify…	ihatemoney	2020-07-27T18:15:00Z	2021-11-16T03:58:44.236145Z
pysec-2021-423	An issue in Gate One 1.2.0 allows attackers to bypass to the verification check done by t…	gateone	2021-10-06T13:15:00Z	2021-11-16T03:58:44.124463Z
pysec-2020-263	A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When …	djangorestframework	2020-09-30T20:15:00Z	2021-11-16T03:58:43.874175Z
pysec-2021-422	Bot Framework SDK Information Disclosure Vulnerability	botframework-connector	2021-01-12T20:15:00Z	2021-11-16T03:58:43.637745Z
pysec-2021-421	Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (…	babel	2021-10-20T21:15:00Z	2021-11-16T03:58:43.401152Z
pysec-2020-262	In Airflow versions prior to 1.10.13, when creating a user using airflow CLI, the passwor…	apache-airflow	2020-12-14T10:15:00Z	2021-11-16T03:58:43.269619Z
pysec-2019-216	A malicious admin user could edit the state of objects in the Airflow metadata database t…	apache-airflow	2019-10-30T22:15:00Z	2021-11-16T03:58:43.222984Z
pysec-2019-215	A number of HTTP endpoints in the Airflow webserver (both RBAC and classic) did not have …	apache-airflow	2019-04-10T20:29:00Z	2021-11-16T03:58:43.176949Z
pysec-2019-214	A malicious admin user could edit the state of objects in the Airflow metadata database t…	apache-airflow	2019-04-10T20:29:00Z	2021-11-16T03:58:43.132049Z
pysec-2021-420	TensorFlow is an open source platform for machine learning. In affected versions TensorFl…	tensorflow	2021-11-05T23:15:00Z	2021-11-13T06:52:46.380831Z
pysec-2021-419	TensorFlow is an open source platform for machine learning. In affected versions the `Imm…	tensorflow	2021-11-05T23:15:00Z	2021-11-13T06:52:46.221231Z

ID	Description	Type

ID	Description	Updated
gsd-2024-32588	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.604699Z
gsd-2024-32582	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.604505Z
gsd-2024-32498	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.604307Z
gsd-2024-32515	Missing Authorization vulnerability in Qamar Sheeraz, Nasir Ahmad Mega Addons For Element…	2024-04-16T05:01:54.604094Z
gsd-2024-32534	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.603657Z
gsd-2024-32601	Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Popup Anything.…	2024-04-16T05:01:54.603461Z
gsd-2024-32596	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.602047Z
gsd-2024-32504	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.600594Z
gsd-2024-32600	Deserialization of Untrusted Data vulnerability in Averta Master Slider.This issue affect…	2024-04-16T05:01:54.599191Z
gsd-2024-32584	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.598992Z
gsd-2024-32508	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.598484Z
gsd-2024-32512	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.598023Z
gsd-2024-32517	Missing Authorization vulnerability in WooCommerce & WordPress Tutorials Custom Thank You…	2024-04-16T05:01:54.595211Z
gsd-2024-32488	In Foxit PDF Reader and Editor before 2024.1, Local Privilege Escalation could occur duri…	2024-04-16T05:01:54.594334Z
gsd-2024-32493	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.593382Z
gsd-2024-32509	Missing Authorization vulnerability in Loopus WP Cost Estimation & Payment Forms Builder.…	2024-04-16T05:01:54.587442Z
gsd-2024-32542	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.586264Z
gsd-2024-32502	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.585782Z
gsd-2024-32521	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.585584Z
gsd-2024-32533	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.584486Z
gsd-2024-32575	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.582088Z
gsd-2024-32525	Missing Authorization vulnerability in Theme My Login.This issue affects Theme My Login: …	2024-04-16T05:01:54.581887Z
gsd-2024-32519	Missing Authorization vulnerability in GutenGeek GG Woo Feed for WooCommerce.This issue a…	2024-04-16T05:01:54.579723Z
gsd-2024-32592	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.579522Z
gsd-2024-32589	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.578090Z
gsd-2024-32507	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.577425Z
gsd-2024-32503	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.577229Z
gsd-2024-32495	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.577033Z
gsd-2024-32578	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.573173Z
gsd-2024-32559	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.570404Z

ID	Description	Published	Updated
mal-2024-11742	Malicious code in uus (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:54Z
mal-2024-11741	Malicious code in useregent-generator (PyPI)	2024-10-07T22:16:18Z	2025-12-11T09:27:54Z
mal-2024-11740	Malicious code in user-random-agent-user (PyPI)	2024-10-07T22:16:18Z	2025-12-11T09:27:54Z
mal-2024-11739	Malicious code in user-rand-agnt-user (PyPI)	2024-10-07T22:16:18Z	2025-12-11T09:27:54Z
mal-2024-11736	Malicious code in upllib (PyPI)	2024-10-03T16:34:31Z	2025-12-11T09:27:54Z
mal-2024-11734	Malicious code in ua-agent-generator (PyPI)	2024-10-07T22:16:18Z	2025-12-11T09:27:54Z
mal-2024-11732	Malicious code in torhc (PyPI)	2024-09-20T11:29:31Z	2025-12-11T09:27:54Z
mal-2024-11731	Malicious code in torchvisions (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:54Z
mal-2024-11730	Malicious code in torchs-visions (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:54Z
mal-2024-11729	Malicious code in tomli-dzw (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:54Z
mal-2024-11728	Malicious code in titan-osint (PyPI)	2024-10-02T07:55:07Z	2025-12-11T09:27:54Z
mal-2024-11727	Malicious code in tingetone (PyPI)	2024-11-13T06:46:16Z	2025-12-11T09:27:54Z
mal-2024-11726	Malicious code in textmesh (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:54Z
mal-2024-11722	Malicious code in test-test-asd-1 (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:54Z
mal-2024-11719	Malicious code in terraformness (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:54Z
mal-2024-11716	Malicious code in sunrequests (PyPI)	2024-09-26T08:43:05Z	2025-12-11T09:27:54Z
mal-2024-11715	Malicious code in sumo-py-cli (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:54Z
mal-2024-11714	Malicious code in stackstorm-runner-action-chain (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:54Z
mal-2024-11711	Malicious code in solaraund (PyPI)	2024-09-04T21:25:32Z	2025-12-11T09:27:54Z
mal-2024-11709	Malicious code in sol-regex-gener (PyPI)	2024-10-07T22:16:18Z	2025-12-11T09:27:54Z
mal-2024-11708	Malicious code in sklearns (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:54Z
mal-2024-11707	Malicious code in sjc (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:54Z
mal-2024-11705	Malicious code in setuptolos (PyPI)	2024-09-20T11:29:31Z	2025-12-11T09:27:54Z
mal-2024-11703	Malicious code in security-automation-job (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:54Z
mal-2024-11701	Malicious code in seabonr (PyPI)	2024-09-20T11:29:31Z	2025-12-11T09:27:54Z
mal-2024-10895	Malicious code in some-random-package-33 (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:54Z
mal-2024-10839	Malicious code in vtvqa (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:54Z
mal-2024-10838	Malicious code in service-affinity-scheduling (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:54Z
mal-2024-10831	Malicious code in x-portrait (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:54Z
mal-2024-10830	Malicious code in textharmony (PyPI)	2024-11-06T18:46:10Z	2025-12-11T09:27:54Z

ID	Description	Published	Updated
wid-sec-w-2023-0089	Python: Schwachstelle ermöglicht Denial of Service	2023-01-12T23:00:00.000+00:00	2025-10-01T22:00:00.000+00:00
wid-sec-w-2023-0066	sudo: Schwachstelle ermöglicht Privilegieneskalation	2021-01-26T23:00:00.000+00:00	2025-10-01T22:00:00.000+00:00
wid-sec-w-2022-0243	Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation	2021-06-27T22:00:00.000+00:00	2025-10-01T22:00:00.000+00:00
wid-sec-w-2022-0242	Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation	2021-05-26T22:00:00.000+00:00	2025-10-01T22:00:00.000+00:00
wid-sec-w-2022-0214	Linux Kernel: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2021-07-21T22:00:00.000+00:00	2025-10-01T22:00:00.000+00:00
wid-sec-w-2025-2169	Liferay Portal und DXP: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-2167	Joomla CMS: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-2162	Vasion Print: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-2157	Apple iOS, iPadOS and macOS (Font Parser): Schwachstelle ermöglicht Denial of Service	2025-09-29T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-2156	Vasion Print (Virtual Appliance Host und Application): Mehrere Schwachstellen	2025-09-29T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-2081	cPanel cPanel/WHM: Schwachstelle ermöglicht Denial of Service	2025-09-17T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-1609	Trellix Endpoint Security (HX) Agent: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten	2025-07-20T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-1473	Splunk Enterprise und Cloud-Plattform: Mehrere Schwachstellen	2025-07-07T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-1362	ClamAV: Mehrere Schwachstellen ermöglichen Denial of Service	2025-06-19T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-0469	libarchive: Schwachstelle ermöglicht Denial of Service und weitere nicht spezifizierte Angriffe	2025-03-02T23:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2024-3191	Oracle Fusion Middleware: Mehrere Schwachstellen	2024-10-15T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2024-3142	libarchive: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2024-10-09T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2024-1467	MIT Kerberos: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-06-26T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-2161	D-LINK Router: Mehrere Schwachstellen	2025-09-29T22:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-2158	Obsidian: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-09-29T22:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-2155	VMware Cloud Foundation, vSphere, vCenter Server und NSX: Mehrere Schwachstellen	2025-09-29T22:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-2154	IBM InfoSphere Information Server: Mehrere Schwachstellen	2025-09-29T22:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-2151	Liferay Portal und DXP: Mehrere Schwachstellen	2025-09-29T22:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-2149	IBM License Metric Tool: Mehrere Schwachstellen	2025-09-28T22:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-2073	ESRI ArcGIS: Mehrere Schwachstellen	2025-09-16T22:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-0908	Keycloack: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2025-04-29T22:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-0771	GraphicsMagick: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-04-08T22:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-0630	Keycloak: Schwachstelle ermöglicht Denial of Service	2025-03-24T23:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-0501	GraphicsMagick: Mehrere Schwachstellen ermöglichen Denial of Service und nicht spezifizierte Angriffe	2025-03-06T23:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-0221	IBM WebSphere Application Server Liberty: Schwachstelle ermöglicht Denial of Service	2025-01-29T23:00:00.000+00:00	2025-09-29T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2022:1699	Red Hat Security Advisory: OpenShift Container Platform 4.7.50 security update	2022-05-12T18:05:11+00:00	2026-01-22T10:10:07+00:00
rhsa-2022:1622	Red Hat Security Advisory: OpenShift Container Platform 4.6.57 security and extras update	2022-05-04T09:05:42+00:00	2026-01-22T10:10:06+00:00
rhsa-2022:1370	Red Hat Security Advisory: OpenShift Container Platform 4.8.37 security and extras update	2022-04-20T12:18:41+00:00	2026-01-22T10:10:03+00:00
rhsa-2022:1363	Red Hat Security Advisory: OpenShift Container Platform 4.9.29 bug fix and security update	2022-04-20T14:43:46+00:00	2026-01-22T10:10:01+00:00
rhsa-2022:1357	Red Hat Security Advisory: OpenShift Container Platform 4.10.10 security and extras update	2022-04-20T11:41:10+00:00	2026-01-22T10:09:59+00:00
rhsa-2026:0685	Red Hat Security Advisory: Red Hat Update Infrastructure 5 security update	2026-01-15T10:02:39+00:00	2026-01-22T10:06:33+00:00
rhsa-2026:0693	Red Hat Security Advisory: openssh security update	2026-01-15T11:56:04+00:00	2026-01-22T10:05:48+00:00
rhsa-2025:23481	Red Hat Security Advisory: openssh security update	2025-12-17T17:42:18+00:00	2026-01-22T10:05:30+00:00
rhsa-2025:23480	Red Hat Security Advisory: openssh security update	2025-12-17T16:48:13+00:00	2026-01-22T10:05:19+00:00
rhsa-2025:23479	Red Hat Security Advisory: openssh security update	2025-12-17T14:16:13+00:00	2026-01-22T10:05:19+00:00
rhsa-2022:8267	Red Hat Security Advisory: kernel security, bug fix, and enhancement update	2022-11-15T11:55:31+00:00	2026-01-22T10:04:15+00:00
rhsa-2022:7683	Red Hat Security Advisory: kernel security, bug fix, and enhancement update	2022-11-08T09:32:56+00:00	2026-01-22T10:04:09+00:00
rhsa-2025:4664	Red Hat Security Advisory: Red Hat Ceph Storage 7.1 security, bug fix, and enhancement updates	2025-05-07T12:48:57+00:00	2026-01-22T10:03:52+00:00
rhsa-2024:6297	Red Hat Security Advisory: kernel security update	2024-09-04T07:24:31+00:00	2026-01-22T09:00:54+00:00
rhsa-2026:0950	Red Hat Security Advisory: OpenShift Virtualization 4.19.17 Images	2026-01-22T02:56:54+00:00	2026-01-22T04:56:56+00:00
rhsa-2025:9526	Red Hat Security Advisory: pam security update	2025-06-24T12:35:18+00:00	2026-01-22T04:56:20+00:00
rhsa-2025:22019	Red Hat Security Advisory: pam security update	2025-11-25T06:23:39+00:00	2026-01-22T04:55:59+00:00
rhsa-2025:20181	Red Hat Security Advisory: pam security update	2025-11-11T08:27:02+00:00	2026-01-22T04:55:42+00:00
rhsa-2025:17181	Red Hat Security Advisory: Insights proxy Container Image	2025-10-01T16:41:41+00:00	2026-01-22T04:55:19+00:00
rhsa-2025:17164	Red Hat Security Advisory: cups security update	2025-10-01T17:36:39+00:00	2026-01-22T04:55:18+00:00
rhsa-2025:17144	Red Hat Security Advisory: cups security update	2025-10-01T10:43:39+00:00	2026-01-22T04:55:18+00:00
rhsa-2025:17141	Red Hat Security Advisory: cups security update	2025-10-01T08:21:43+00:00	2026-01-22T04:55:18+00:00
rhsa-2025:17054	Red Hat Security Advisory: cups security update	2025-09-30T12:23:26+00:00	2026-01-22T04:55:17+00:00
rhsa-2025:17049	Red Hat Security Advisory: cups security update	2025-09-30T09:57:46+00:00	2026-01-22T04:55:17+00:00
rhsa-2025:16592	Red Hat Security Advisory: cups security update	2025-09-24T16:34:55+00:00	2026-01-22T04:55:16+00:00
rhsa-2025:16591	Red Hat Security Advisory: cups security update	2025-09-24T15:50:17+00:00	2026-01-22T04:55:16+00:00
rhsa-2025:16590	Red Hat Security Advisory: cups security update	2025-09-24T15:40:20+00:00	2026-01-22T04:55:14+00:00
rhsa-2025:15709	Red Hat Security Advisory: Red Hat OpenShift sandboxed containers release	2025-09-11T15:29:48+00:00	2026-01-22T04:55:08+00:00
rhsa-2025:15702	Red Hat Security Advisory: cups security update	2025-09-11T16:10:25+00:00	2026-01-22T04:55:08+00:00
rhsa-2025:15701	Red Hat Security Advisory: cups security update	2025-09-11T16:07:45+00:00	2026-01-22T04:55:07+00:00

ID	Description	Published	Updated
icsa-23-243-03	PTC Kepware KepServerEX (Update A)	2023-08-31T06:00:00.000000Z	2023-10-12T06:00:00.000000Z
icsa-23-220-01	Schneider Electric IGSS	2023-08-08T06:00:00.000000Z	2023-10-12T06:00:00.000000Z
icsa-23-285-11	Siemens Mendix Forgot Password Module	2023-10-10T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-23-285-10	Siemens Tecnomatix Plant Simulation	2023-10-10T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-23-285-09	Siemens CPCI85 Firmware of SICAM A8000 Devices	2023-10-10T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-23-285-05	Siemens Simcenter Amesim	2023-10-10T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-23-285-04	Siemens Xpedition Layout Browser	2023-10-10T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-23-285-03	Siemens SICAM A8000 Devices	2023-10-10T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-23-285-02	Siemens SCALANCE W1750D	2023-10-10T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-23-285-01	Siemens SIMATIC CP products	2023-10-10T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-23-131-02	Siemens SCALANCE W1750D	2023-05-09T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-22-223-07	Siemens SCALANCE (Update A)	2022-08-09T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-22-132-08	Siemens Industrial Products with OPC UA	2022-05-10T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-22-069-03	Siemens SINEC NMS	2022-03-08T00:00:00.000000Z	2023-10-10T00:00:00.000000Z
icsa-23-278-02	Qognify NiceVision	2023-10-05T06:00:00.000000Z	2023-10-05T06:00:00.000000Z
icsa-23-278-01	Hitachi Energy AFS65x,AFF66x, AFS67x, and AFR67x Series Products	2023-10-05T06:00:00.000000Z	2023-10-05T06:00:00.000000Z
icsa-23-271-01	Rockwell Automation PanelView 800	2023-09-28T06:00:00.000000Z	2023-09-28T06:00:00.000000Z
icsa-23-271-02	DEXMA DexGate	2023-09-26T06:00:00.000000Z	2023-09-26T06:00:00.000000Z
icsa-23-269-05	Baker Hughes Bently Nevada 3500	2023-09-26T06:00:00.000000Z	2023-09-26T06:00:00.000000Z
icsa-23-269-04	Advantech EKI-1524-CE series	2023-09-26T06:00:00.000000Z	2023-09-26T06:00:00.000000Z
icsa-23-269-02	Hitachi Energy Asset Suite 9	2023-09-26T06:00:00.000000Z	2023-09-26T06:00:00.000000Z
icsa-23-269-01	Suprema BioStar 2	2023-09-26T06:00:00.000000Z	2023-09-26T06:00:00.000000Z
icsa-23-024-02	SOCOMEC MODULYS GP (UPDATE A)	2023-01-24T07:00:00.000000Z	2023-09-26T06:00:00.000000Z
icsa-23-264-06	Rockwell Automation FactoryTalk View Machine Edition	2023-09-21T06:00:00.000000Z	2023-09-21T06:00:00.000000Z
icsa-23-264-05	Rockwell Automation Connected Components Workbench	2023-09-21T06:00:00.000000Z	2023-09-21T06:00:00.000000Z
icsa-23-264-04	Rockwell Automation Select Logix Communication Modules	2023-09-21T06:00:00.000000Z	2023-09-21T06:00:00.000000Z
icsa-23-264-03	Delta Electronics DIAScreen	2023-09-21T06:00:00.000000Z	2023-09-21T06:00:00.000000Z
icsa-23-264-01	Real Time Automation 460 Series	2023-09-21T06:00:00.000000Z	2023-09-21T06:00:00.000000Z
icsa-23-262-05	Omron CJ/CS/CP Series	2023-09-19T06:00:00.000000Z	2023-09-19T06:00:00.000000Z
icsa-23-262-04	Omron Engineering Software	2023-09-19T06:00:00.000000Z	2023-09-19T06:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-20190807-nfv-pwrecov	Cisco Enterprise NFV Infrastructure Software Password Recovery Vulnerability	2019-08-07T16:00:00+00:00	2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfv-privescal	Cisco Enterprise NFV Infrastructure Software Privilege Escalation Vulnerability	2019-08-07T16:00:00+00:00	2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfv-fileread	Cisco Enterprise NFV Infrastructure Software Web Portal Arbitrary File Read Vulnerability	2019-08-07T16:00:00+00:00	2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfv-commandinj	Cisco Enterprise NFV Infrastructure Software Command Injection Vulnerability	2019-08-07T16:00:00+00:00	2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfv-cli-path	Cisco Enterprise NFV Infrastructure Software Path Traversal Vulnerability	2019-08-07T16:00:00+00:00	2019-08-07T16:00:00+00:00
cisco-sa-20190807-hypflex-csrf	Cisco HyperFlex Software Cross-Site Request Forgery Vulnerability	2019-08-07T16:00:00+00:00	2019-08-07T16:00:00+00:00
cisco-sa-20190807-fnd-dos	Cisco IoT Field Network Director TLS Renegotiation Denial of Service Vulnerability	2019-08-07T16:00:00+00:00	2019-08-07T16:00:00+00:00
cisco-sa-20190807-asa-privescala	Cisco Adaptive Security Appliance Software Web-Based Management Interface Privilege Escalation Vulnerability	2019-08-07T16:00:00+00:00	2019-08-07T16:00:00+00:00
cisco-sa-20190717-ise-xss	Cisco Identity Services Engine Cross-Site Scripting Vulnerability	2019-07-17T16:00:00+00:00	2019-08-06T17:39:12+00:00
cisco-sa-20180117-elm	Cisco Enterprise License Manager Information Disclosure Vulnerability	2018-01-17T16:00:00+00:00	2019-07-23T20:56:00+00:00
cisco-sa-20190515-nxos-cmdinj-1776	Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1776)	2019-05-15T16:00:00+00:00	2019-07-18T00:00:28+00:00
cisco-sa-20190515-nxos-cmdinj-1783	Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1783)	2019-05-15T16:00:00+00:00	2019-07-18T00:00:27+00:00
cisco-sa-20190515-nxos-cmd-inject-1784	Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1784)	2019-05-15T16:00:00+00:00	2019-07-18T00:00:26+00:00
cisco-sa-20190717-wsma-info	Cisco Industrial Network Director Web Services Management Agent Unauthorized Information Disclosure Vulnerability	2019-07-17T16:00:00+00:00	2019-07-17T16:00:00+00:00
cisco-sa-20190717-spa500-command	Cisco Small Business SPA500 Series IP Phones Local Command Execution Vulnerability	2019-07-17T16:00:00+00:00	2019-07-17T16:00:00+00:00
cisco-sa-20190717-sbss-redirect	Cisco Small Business Series Switches Open Redirect Vulnerability	2019-07-17T16:00:00+00:00	2019-07-17T16:00:00+00:00
cisco-sa-20190717-ise-sql-inject	Cisco Identity Services Engine Blind SQL Injection Vulnerability	2019-07-17T16:00:00+00:00	2019-07-17T16:00:00+00:00
cisco-sa-20190717-cvdsd-wmauth	Cisco Vision Dynamic Signage Director REST API Authentication Bypass Vulnerability	2019-07-17T16:00:00+00:00	2019-07-17T16:00:00+00:00
cisco-sa-20190717-cfnm-statcred	Cisco FindIT Network Management Software Static Credentials Vulnerability	2019-07-17T16:00:00+00:00	2019-07-17T16:00:00+00:00
cisco-sa-20190717-aironet-dos	Cisco IOS Access Points Software 802.11r Fast Transition Denial of Service Vulnerability	2019-07-17T16:00:00+00:00	2019-07-17T16:00:00+00:00
cisco-sa-20190612-iosxe-csrf	Cisco IOS XE Software Web UI Cross-Site Request Forgery Vulnerability	2019-06-12T16:00:00+00:00	2019-07-16T15:51:20+00:00
cisco-sa-20181107-sma-xss	Cisco Content Security Management Appliance Cross-Site Scripting Vulnerability	2018-11-07T16:00:00+00:00	2019-07-15T19:24:47+00:00
cisco-sa-20180926-ptp	Cisco IOS Software Precision Time Protocol Denial of Service Vulnerability	2018-09-26T16:00:00+00:00	2019-07-15T19:24:46+00:00
cisco-sa-20190710-asa-ftd-dos	Cisco ASA and FTD Software Cryptographic TLS and SSL Driver Denial of Service Vulnerability	2019-07-10T16:00:00+00:00	2019-07-11T21:11:00+00:00
cisco-sa-20190515-iosxr-evpn-dos	Cisco IOS XR Software BGP MPLS-Based EVPN Denial of Service Vulnerability	2019-05-15T16:00:00+00:00	2019-07-10T16:56:52+00:00
cisco-sa-20190703-cucm-dos	Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerability	2019-07-03T16:00:00+00:00	2019-07-08T22:30:23+00:00
cisco-sa-20190703-ip-phone-sip-dos	Cisco IP Phone 7800 and 8800 Series Session Initiation Protocol Denial of Service Vulnerability	2019-07-03T16:00:00+00:00	2019-07-08T16:16:46+00:00
cisco-sa-20190703-wsa-dos	Cisco Web Security Appliance HTTPS Certificate Denial of Service Vulnerability	2019-07-03T16:00:00+00:00	2019-07-03T16:00:00+00:00
cisco-sa-20190703-sbss-memcorrupt	Cisco Small Business Series Switches Memory Corruption Vulnerability	2019-07-03T16:00:00+00:00	2019-07-03T16:00:00+00:00
cisco-sa-20190703-sbss-dos	Cisco Small Business Series Switches HTTP Denial of Service Vulnerability	2019-07-03T16:00:00+00:00	2019-07-03T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-46148	In PyTorch through 2.6.0, when eager is used, nn.PairwiseDistance(p=2) produces incorrect results.	2025-09-02T00:00:00.000Z	2025-09-29T01:01:59.000Z
msrc_cve-2025-11021	Libsoup: out-of-bounds read in cookie date handling of libsoup http library	2025-09-02T00:00:00.000Z	2025-09-29T01:01:39.000Z
msrc_cve-2025-60018	Glib-networking: out of bound reads on glib-networking through tls/openssl/gtlscertificate-openssl.c via "g_tls_certificate_openssl_get_property()"	2025-09-02T00:00:00.000Z	2025-09-29T01:01:31.000Z
msrc_cve-2025-60019	Glib-networking: uninitialized memory dereferences on glib-networking through glib-networking/tls/openssl/gtlsbio.c via g_tls_bio_new_from_iostream() and g_tls_bio_new_from_datagram_based()	2025-09-02T00:00:00.000Z	2025-09-29T01:01:23.000Z
msrc_cve-2025-59362	Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c.	2025-09-02T00:00:00.000Z	2025-09-28T01:02:19.000Z
msrc_cve-2025-21656	hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur	2025-01-02T00:00:00.000Z	2025-09-28T01:02:13.000Z
msrc_cve-2024-57945	riscv: mm: Fix the out of bound issue of vmemmap address	2025-01-02T00:00:00.000Z	2025-09-28T01:02:08.000Z
msrc_cve-2024-57924	fs: relax assertions on failure to encode file handles	2025-01-02T00:00:00.000Z	2025-09-28T01:02:02.000Z
msrc_cve-2024-57893	ALSA: seq: oss: Fix races at processing SysEx messages	2025-01-02T00:00:00.000Z	2025-09-28T01:01:57.000Z
msrc_cve-2024-57876	drm/dp_mst: Fix resetting msg rx state after topology removal	2025-01-02T00:00:00.000Z	2025-09-28T01:01:52.000Z
msrc_cve-2024-41069	ASoC: topology: Fix references to freed memory	2024-07-01T07:00:00.000Z	2025-09-28T01:01:40.000Z
msrc_cve-2024-35826	block: Fix page refcounts for unaligned buffers in __bio_release_pages()	2024-05-02T07:00:00.000Z	2025-09-28T01:01:35.000Z
msrc_cve-2024-35803	x86/efistub: Call mixed mode boot services on the firmware's stack	2024-05-02T07:00:00.000Z	2025-09-28T01:01:29.000Z
msrc_cve-2023-52916	media: aspeed: Fix memory overwrite if timing is 1600x900	2024-09-01T07:00:00.000Z	2025-09-28T01:01:17.000Z
msrc_cve-2025-59825	astral-tokio-tar has a path traversal in tar extraction	2025-09-02T00:00:00.000Z	2025-09-27T01:03:20.000Z
msrc_cve-2025-22247	Insecure file handling vulnerability	2025-05-02T00:00:00.000Z	2025-09-27T01:03:15.000Z
msrc_cve-2025-9900	Libtiff: libtiff write-what-where	2025-09-02T00:00:00.000Z	2025-09-27T01:03:04.000Z
msrc_cve-2025-8869	Fallback tar extraction in pip doesn't check symbolic links point to extraction directory	2025-09-02T00:00:00.000Z	2025-09-27T01:02:56.000Z
msrc_cve-2024-57843	virtio-net: fix overflow inside virtnet_rq_alloc	2025-01-02T00:00:00.000Z	2025-09-27T01:02:44.000Z
msrc_cve-2024-41030	ksmbd: discard write access to the directory open	2024-07-01T07:00:00.000Z	2025-09-27T01:02:35.000Z
msrc_cve-2024-41013	xfs: don't walk off the end of a directory data block	2024-07-01T07:00:00.000Z	2025-09-27T01:02:30.000Z
msrc_cve-2024-40998	ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super()	2024-07-01T07:00:00.000Z	2025-09-27T01:02:25.000Z
msrc_cve-2024-35995	ACPI: CPPC: Use access_width over bit_width for system memory accesses	2024-05-02T07:00:00.000Z	2025-09-27T01:02:20.000Z
msrc_cve-2024-35971	net: ks8851: Handle softirqs at the end of IRQ thread to fix hang	2024-05-02T07:00:00.000Z	2025-09-27T01:02:14.000Z
msrc_cve-2024-35965	Bluetooth: L2CAP: Fix not validating setsockopt user input	2024-05-02T07:00:00.000Z	2025-09-27T01:02:09.000Z
msrc_cve-2024-35951	drm/panfrost: Fix the error path in panfrost_mmu_map_fault_addr()	2024-05-02T07:00:00.000Z	2025-09-27T01:02:04.000Z
msrc_cve-2024-35939	dma-direct: Leak pages on dma_set_decrypted() failure	2024-05-02T07:00:00.000Z	2025-09-27T01:01:58.000Z
msrc_cve-2024-35924	usb: typec: ucsi: Limit read size on v1.2	2024-05-02T07:00:00.000Z	2025-09-27T01:01:50.000Z
msrc_cve-2024-35875	x86/coco: Require seeding RNG with RDRAND on CoCo systems	2024-05-02T07:00:00.000Z	2025-09-27T01:01:44.000Z
msrc_cve-2024-35839	netfilter: bridge: replace physindev with physinif in nf_bridge_info	2024-05-02T07:00:00.000Z	2025-09-27T01:01:39.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-202509-3975	Improper Input Validation vulnerability in TOTOLINK X6000R allows Command Injection, File…	2025-11-22T23:05:27.736000Z
var-200609-1521	The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.…	2025-11-22T21:53:11.486000Z
var-200609-1261	OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers t…	2025-11-22T21:51:12.186000Z
var-201112-0167	Unspecified vulnerability in the U3D component in Adobe Reader and Acrobat 10.1.1 and ear…	2025-11-22T21:18:56.186000Z
var-200609-1214	The Installer application in Apple Mac OS X 10.4.8 and earlier, when used by a user with …	2025-11-22T21:10:38.731000Z
var-200609-1249	The Security Framework in Apple Mac OS X 10.3.9, and 10.4.x before 10.4.7, does not prope…	2025-11-22T20:39:41.593000Z
var-202511-1342	Dell Alienware Command Center 6.x (AWCC), versions prior to 6.10.15.0, contains an Insecu…	2025-11-22T19:37:46.249000Z
var-201707-1348	An OS command injection vulnerability exists in EnGenius EnShare Cloud Service version 1.…	2025-11-21T23:24:14.983000Z
var-201402-0700	An OS command injection vulnerability exists in various models of E-Series Linksys router…	2025-11-21T23:16:42.461000Z
var-202506-1087	An OS command injection vulnerability exists in the Edimax EW-7438RPn Mini firmware versi…	2025-11-21T23:11:10.174000Z
var-202506-1088	An OS command injection vulnerability exists in the Edimax EW-7438RPn firmware version 1.…	2025-11-21T23:11:10.158000Z
var-201401-0373	Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.9 and 11.x befo…	2025-11-21T23:09:19.974000Z
var-200609-1283	Buffer overflow in PPP on Apple Mac OS X 10.4.x up to 10.4.8 and 10.3.x up to 10.3.9, whe…	2025-11-21T22:14:34.555000Z
var-200609-1586	OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers t…	2025-11-21T21:40:08.176000Z
var-202203-1506	A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote …	2025-11-21T21:36:38.238000Z
var-200110-0206	The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.…	2025-11-21T21:20:19.940000Z
var-200609-1245	Stack-based buffer overflow in the Apple Type Services (ATS) server in Mac OS 10.4.8 and …	2025-11-21T20:39:59.456000Z
var-201507-0105	Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) imple…	2025-11-21T20:00:01.534000Z
var-202511-0322	A vulnerability was found in D-Link DIR-816L 2_06_b09_beta. This vulnerability affects th…	2025-11-20T23:34:31.931000Z
var-202508-3776	The NPort 5150 is a device server from Moxa. The MOXA NPort 5150 has an unauthorized acc…	2025-11-20T23:33:08.035000Z
var-202510-2696	A NULL pointer dereference in the SetWLanRadioSettings function of D-Link DIR-823G A1 v1.…	2025-11-20T23:33:07.566000Z
var-202511-1434	A stack buffer overflow vulnerability exists in the ToToLink LR1200GB (V9.1.0u.6619_B2023…	2025-11-20T23:33:06.802000Z
var-202309-1941	Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a sta…	2025-11-20T23:32:53.079000Z
var-202309-2025	Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a sta…	2025-11-20T23:32:53.055000Z
var-202309-2361	Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a sta…	2025-11-20T23:32:53.021000Z
var-202509-4540	The WAGO 750-890 is a Modbus TCP controller suitable for industrial automation systems an…	2025-11-20T23:32:45.127000Z
var-202510-4303	Chung-Chi Technology Co., Ltd., founded in 1986, offers a series of industry-leading DOCS…	2025-11-20T23:32:44.546000Z
var-202309-2269	Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain multi…	2025-11-20T23:32:29.216000Z
var-202309-2192	Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a sta…	2025-11-20T23:32:06.943000Z
var-202309-2360	Tenda AC10U v1.0 US_AC10UV1.0RTL_V15.03.06.49_multi_TDE01 was discovered to contain a sta…	2025-11-20T23:32:06.918000Z

ID	Description	Published	Updated
jvndb-2014-000107	SLFileManager for Android vulnerable to directory traversal	2014-09-25T14:52+09:00	2015-07-31T16:30+09:00
jvndb-2015-000109	yoyaku_v41 vulnerable to OS command injection	2015-07-29T14:58+09:00	2015-07-30T15:14+09:00
jvndb-2015-000108	yoyaku_v41 vulnerable to authentication bypass	2015-07-29T14:58+09:00	2015-07-30T15:14+09:00
jvndb-2015-000107	yoyaku_v41 vulnerable to arbitrary file creation	2015-07-29T14:58+09:00	2015-07-30T15:14+09:00
jvndb-2015-000106	Gazou BBS plus vulnerability in file upload processing	2015-07-28T13:47+09:00	2015-07-30T15:14+09:00
jvndb-2015-000103	Welcart vulnerable to cross-site scripting	2015-07-24T14:33+09:00	2015-07-28T17:51+09:00
jvndb-2015-000104	Research Artisan Lite vulnerable to cross-site scripting	2015-07-24T14:36+09:00	2015-07-28T17:29+09:00
jvndb-2015-000105	Research Artisan Lite does not properly perform authentication	2015-07-24T14:46+09:00	2015-07-28T17:22+09:00
jvndb-2015-000098	acmailer vulnerable to directory traversal	2015-07-15T15:53+09:00	2015-07-27T15:12+09:00
jvndb-2015-000099	Thetis vulnerable to SQL injection	2015-07-15T15:54+09:00	2015-07-27T15:07+09:00
jvndb-2014-007612	Welcart vulnerable to SQL injection	2015-07-24T14:52+09:00	2015-07-24T14:52+09:00
jvndb-2015-000088	Ruby on Rails library Paperclip vulnerable to cross-site scripting	2015-06-18T14:14+09:00	2015-07-14T18:15+09:00
jvndb-2015-000097	Simple Oekaki BBS vulnerability where arbitrary files may be deleted	2015-07-10T13:57+09:00	2015-07-14T18:11+09:00
jvndb-2015-000096	Simple Oekaki BBS vulnerable to cross-site scripting	2015-07-10T13:57+09:00	2015-07-14T18:09+09:00
jvndb-2015-000094	Cacti vulnerable to cross-site scripting	2015-07-09T14:41+09:00	2015-07-14T18:03+09:00
jvndb-2015-000090	namshi/jose fails to verify token signatures	2015-06-25T15:00+09:00	2015-07-14T17:18+09:00
jvndb-2015-000092	OpenEMR vulnerable to authentication bypass	2015-06-30T13:55+09:00	2015-07-14T17:16+09:00
jvndb-2014-002239	Cacti vulnerable to cross-site request forgery	2015-07-09T14:41+09:00	2015-07-09T14:41+09:00
jvndb-2009-003901	Cacti vulnerable to cross-site scripting	2015-07-09T14:41+09:00	2015-07-09T14:41+09:00
jvndb-2015-000093	Explorer+ File Manager vulnerable to directory traversal	2015-06-30T13:56+09:00	2015-07-02T15:04+09:00
jvndb-2015-000091	osCommerce Japanese version vulnerable to directory traversal	2015-06-25T15:53+09:00	2015-06-30T11:53+09:00
jvndb-2015-000089	Symfony vulnerable to code injection	2015-06-23T12:29+09:00	2015-06-25T17:34+09:00
jvndb-2015-000012	Multiple ASUS wireless LAN routers vulnerable to cross-site request forgery	2015-01-27T14:24+09:00	2015-06-17T16:42+09:00
jvndb-2015-000011	Multiple ASUS wireless LAN routers vulnerable to OS command injection	2015-01-27T14:23+09:00	2015-06-17T16:42+09:00
jvndb-2015-000082	MilkyStep vulnerable to cross-site scripting	2015-06-09T14:15+09:00	2015-06-16T16:52+09:00
jvndb-2015-000081	MilkyStep vulnerable to SQL injection	2015-06-09T14:15+09:00	2015-06-16T16:52+09:00
jvndb-2015-000080	MilkyStep vulnerable to OS command injection	2015-06-09T14:02+09:00	2015-06-16T16:52+09:00
jvndb-2015-000079	MilkyStep vulnerable to cross-site request forgery	2015-06-09T13:45+09:00	2015-06-16T16:52+09:00
jvndb-2015-000078	MilkyStep fails to restrict access permissions	2015-06-09T13:43+09:00	2015-06-16T16:52+09:00
jvndb-2015-000077	MilkyStep fails to restrict access permissions	2015-06-12T14:13+09:00	2015-06-16T16:52+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:02200-1	Security update for clamav	2025-07-02T13:03:38Z	2025-07-02T13:03:38Z
suse-su-2025:02198-1	Security update for runc	2025-07-02T09:22:54Z	2025-07-02T09:22:54Z
suse-su-2025:20463-1	Security update for python-cryptography	2025-07-02T08:19:47Z	2025-07-02T08:19:47Z
suse-su-2025:20462-1	Security update for python-setuptools	2025-07-02T08:15:01Z	2025-07-02T08:15:01Z
suse-su-2025:02192-1	Security update for xorg-x11-server	2025-07-01T15:07:21Z	2025-07-01T15:07:21Z
suse-su-2025:02191-1	Security update for xwayland	2025-07-01T15:06:49Z	2025-07-01T15:06:49Z
suse-su-2025:02190-1	Security update for redis	2025-07-01T15:06:36Z	2025-07-01T15:06:36Z
suse-su-2025:02189-1	Security update for ImageMagick	2025-07-01T11:48:41Z	2025-07-01T11:48:41Z
suse-su-2025:02188-1	Security update for ImageMagick	2025-07-01T11:48:28Z	2025-07-01T11:48:28Z
suse-su-2025:02187-1	Security update for xwayland	2025-07-01T11:48:12Z	2025-07-01T11:48:12Z
suse-su-2025:02186-1	Security update for screen	2025-07-01T11:48:02Z	2025-07-01T11:48:02Z
suse-su-2025:20456-1	Security update for perl	2025-07-01T11:42:56Z	2025-07-01T11:42:56Z
suse-su-2025:20459-1	Security update for containerd	2025-07-01T11:27:44Z	2025-07-01T11:27:44Z
suse-ru-2025:20460-1	Recommended update for gpg2	2025-07-01T11:27:44Z	2025-07-01T11:27:44Z
suse-su-2025:02184-1	Security update for jakarta-commons-fileupload	2025-07-01T08:14:12Z	2025-07-01T08:14:12Z
suse-su-2025:02179-1	Security update for sudo	2025-06-30T17:54:12Z	2025-06-30T17:54:12Z
suse-su-2025:02178-1	Security update for sudo	2025-06-30T17:53:50Z	2025-06-30T17:53:50Z
suse-su-2025:02177-1	Security update for sudo	2025-06-30T17:53:06Z	2025-06-30T17:53:06Z
suse-su-2025:02175-1	Security update for sudo	2025-06-30T14:32:28Z	2025-06-30T14:32:28Z
suse-su-2025:02174-1	Security update for sudo	2025-06-30T14:31:32Z	2025-06-30T14:31:32Z
suse-su-2025:02173-1	Security update for the Linux Kernel	2025-06-30T13:01:36Z	2025-06-30T13:01:36Z
suse-su-2025:20455-1	Security update for python-requests	2025-06-30T12:29:07Z	2025-06-30T12:29:07Z
suse-su-2025:20458-1	Security update for gpg2	2025-06-30T08:30:22Z	2025-06-30T08:30:22Z
suse-su-2025:20454-1	Security update for gpg2	2025-06-30T08:20:23Z	2025-06-30T08:20:23Z
suse-su-2025:02171-1	Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP5)	2025-06-30T08:04:10Z	2025-06-30T08:04:10Z
suse-su-2025:02170-1	Security update for yelp	2025-06-30T07:15:30Z	2025-06-30T07:15:30Z
suse-su-2025:02169-1	Security update for yelp	2025-06-30T07:15:20Z	2025-06-30T07:15:20Z
suse-su-2025:02168-1	Security update for yelp-xsl	2025-06-30T07:15:06Z	2025-06-30T07:15:06Z
suse-su-2025:02167-1	Security update for glib2	2025-06-30T07:14:42Z	2025-06-30T07:14:42Z
suse-su-2025:02166-1	Security update for himmelblau	2025-06-30T07:14:21Z	2025-06-30T07:14:21Z

ID	Description	Published	Updated
opensuse-su-2024:14179-1	ruby3.3-rubygem-web-console-4.2.1-1.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14178-1	ruby3.3-rubygem-tzinfo-1.2-1.2.11-1.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14177-1	ruby3.3-rubygem-sprockets-4.2.1-1.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14176-1	ruby3.3-rubygem-rubyzip-2.3.2-1.15 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14175-1	ruby3.3-rubygem-rails-html-sanitizer-1.6.0-1.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14174-1	ruby3.3-rubygem-nokogiri-1.15.5-1.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14173-1	ruby3.3-rubygem-multi_xml-0.6.0-1.27 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14172-1	ruby3.3-rubygem-minitar-0.9-1.17 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14171-1	ruby3.3-rubygem-loofah-2.22.0-1.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14170-1	ruby3.3-rubygem-kramdown-2.4.0-1.12 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14169-1	ruby3.3-rubygem-jquery-rails-4.6.0-1.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14168-1	ruby3.3-rubygem-globalid-1.2.1-1.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14167-1	python310-zipp-3.19.2-2.1 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14166-1	python310-websockets-12.0-2.6 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14165-1	python310-slixmpp-1.8.5-1.2 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14164-1	python310-ruamel.yaml-0.18.6-1.2 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14163-1	python310-rsa-4.9-3.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14162-1	python310-rpyc-6.0.0-1.2 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14161-1	python310-rope-1.12.0-1.3 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14160-1	python310-reportlab-4.0.7-1.3 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14159-1	python310-python3-saml-1.15.0-2.3 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14158-1	python310-python-gnupg-0.5.2-1.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14157-1	python310-python-engineio-4.3.4-3.3 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14156-1	python310-pysaml2-7.4.2-1.2 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14155-1	python310-pyramid-2.0.2-1.3 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14154-1	python310-pyOpenSSL-24.1.0-1.2 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14153-1	python310-py-1.11.0-6.5 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14152-1	python310-openapi-spec-validator-0.7.1-1.3 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14151-1	python310-oletools-0.60.1-1.2 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z
opensuse-su-2024:14150-1	python310-oic-1.5.0-1.8 on GA media	2024-07-12T00:00:00Z	2024-07-12T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
cnvd-2025-25750	D-Link DI-8400 yyxz.asp文件堆栈缓冲区溢出漏洞	2025-09-05	2025-10-30
cnvd-2025-25749	Simple Grading System login.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25748	Simple Grading System edit_student.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25747	Simple Grading System edit_account.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25746	Online Bidding System showprod.php文件SQL注入漏洞	2025-06-27	2025-10-30
cnvd-2025-25745	Online Bidding System login.php文件SQL注入漏洞	2025-06-27	2025-10-30
cnvd-2025-25744	Online Bidding System details.php文件SQL注入漏洞	2025-06-27	2025-10-30
cnvd-2025-25743	Online Bidding System bidnow.php文件SQL注入漏洞	2025-06-27	2025-10-30
cnvd-2025-25742	Online Bidding System bidlog.php文件SQL注入漏洞	2025-06-27	2025-10-30
cnvd-2025-25741	Online Bidding System administrator文件SQL注入漏洞	2025-06-27	2025-10-30
cnvd-2025-25735	Human Resource Integrated System action.php文件跨站脚本漏洞	2025-08-04	2025-10-30
cnvd-2025-25731	Simple Grading System delete_student.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25730	Simple Grading System delete_account.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25729	Simple Grading System add_student_grade.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25728	Online Event Judging System create_account.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25727	Human Resource Integrated System login_timeee.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25726	Human Resource Integrated System login_query12.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25725	Human Resource Integrated System login_attendance2.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25724	Human Resource Integrated System login.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25723	Human Resource Integrated System log_query.php文件SQL注入漏洞	2025-09-02	2025-10-30
cnvd-2025-25722	Online Event Judging System index.php文件SQL注入漏洞	2025-09-10	2025-10-30
cnvd-2025-25721	Online Event Judging System /review_search.php文件SQL注入漏洞	2025-09-10	2025-10-30
cnvd-2025-25720	Human Resource Integrated System Childs Name字段跨站脚本漏洞	2025-09-18	2025-10-30
cnvd-2025-25719	Online Bidding System weweee.php文件SQL注入漏洞	2025-09-24	2025-10-30
cnvd-2025-25718	Online Bidding System remove.php文件SQL注入漏洞	2025-09-25	2025-10-30
cnvd-2025-25717	Online Bidding System index.php文件SQL注入漏洞	2025-09-25	2025-10-30
cnvd-2025-25716	Online Bidding System bidupdate.php文件SQL注入漏洞	2025-09-25	2025-10-30
cnvd-2025-25740	Automated Voting System存在未明漏洞	2025-07-11	2025-10-29
cnvd-2025-25739	Job Diary view-details.php文件SQL注入漏洞	2025-07-18	2025-10-29
cnvd-2025-25738	Job Diary search.php文件SQL注入漏洞	2025-07-18	2025-10-29

ID	Description	Published	Updated
certfr-2024-avi-0415	Multiples vulnérabilités dans les produits Tenable	2024-05-17T00:00:00.000000	2024-05-17T00:00:00.000000
certfr-2024-avi-0414	Vulnérabilité dans les produits Palo Alto Networks	2024-05-17T00:00:00.000000	2024-05-17T00:00:00.000000
certfr-2024-avi-0413	Multiples vulnérabilités dans les produits MongoDB	2024-05-17T00:00:00.000000	2024-05-17T00:00:00.000000
certfr-2024-avi-0412	Multiples vulnérabilités dans les produits Mitel	2024-05-17T00:00:00.000000	2024-05-17T00:00:00.000000
certfr-2022-avi-285	[MàJ] Multiples vulnérabilités dans Joomla	2022-03-30T00:00:00.000000	2024-05-17T00:00:00.000000
certfr-2021-avi-485	Multiples vulnérabilités dans Citrix Hypervisor	2021-06-24T00:00:00.000000	2024-05-17T00:00:00.000000
certfr-2021-avi-484	Multiples vulnérabilités dans le noyau Linux de RedHat	2021-06-24T00:00:00.000000	2024-05-17T00:00:00.000000
certfr-2024-avi-0411	Multiples vulnérabilités dans Wireshark	2024-05-16T00:00:00.000000	2024-05-16T00:00:00.000000
certfr-2024-avi-0410	Multiples vulnérabilités dans Google Chrome	2024-05-16T00:00:00.000000	2024-05-16T00:00:00.000000
certfr-2024-avi-0409	Multiples vulnérabilités dans les produits Cisco	2024-05-16T00:00:00.000000	2024-05-16T00:00:00.000000
certfr-2024-avi-0408	Multiples vulnérabilités dans les produits HPE Aruba Networking	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0407	Vulnérabilité dans LibreOffice	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0406	Multiples vulnérabilités dans les produits Adobe	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0405	Multiples vulnérabilités dans les produits VMware	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0404	Multiples vulnérabilités dans les produits Fortinet	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0403	Multiples vulnérabilités dans les produits Microsoft	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0402	Vulnérabilité dans Microsoft Azure Migrate	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0401	Vulnérabilité dans Microsoft .Net	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0400	Multiples vulnérabilités dans Microsoft Windows	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0399	Vulnérabilité dans Microsoft Office	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0398	Vulnérabilité dans Microsoft Edge	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0397	Multiples vulnérabilités dans les produits Intel	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0396	Multiples vulnérabilités dans les produits Mozilla	2024-05-15T00:00:00.000000	2024-05-15T00:00:00.000000
certfr-2024-avi-0395	Multiples vulnérabilités dans les produits SAP	2024-05-14T00:00:00.000000	2024-05-14T00:00:00.000000
certfr-2024-avi-0394	Multiples vulnérabilités dans les produits Typo3	2024-05-14T00:00:00.000000	2024-05-14T00:00:00.000000
certfr-2024-avi-0393	Multiples vulnérabilités dans les produits Siemens	2024-05-14T00:00:00.000000	2024-05-14T00:00:00.000000
certfr-2024-avi-0392	Multiples vulnérabilités dans les produits Apple	2024-05-14T00:00:00.000000	2024-05-14T00:00:00.000000
certfr-2024-avi-0391	Vulnérabilité dans Google Chrome	2024-05-14T00:00:00.000000	2024-05-14T00:00:00.000000
certfr-2024-avi-0390	Vulnérabilité dans StrongSwan	2024-05-14T00:00:00.000000	2024-05-14T00:00:00.000000
certfr-2024-avi-0389	Multiples vulnérabilités dans les produits Belden	2024-05-14T00:00:00.000000	2024-05-14T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated