Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2025-67523
9.8 (3.1)
WordPress Exhibz theme <= 3.0.9 - Local File Inclusion… trippleS
 Exhibz
 2025-12-09T14:13:59.287Z 2026-01-20T14:28:25.162Z
CVE-2025-67532
9.8 (3.1)
WordPress Hara theme <= 1.2.17 - Local File Inclusion … thembay
 Hara
 2025-12-09T14:14:03.164Z 2026-01-20T14:28:25.158Z
CVE-2025-67527
9.8 (3.1)
WordPress Digiqole theme < 2.2.7 - Local File Inclusio… trippleS
 Digiqole
 2025-12-09T14:14:00.496Z 2026-01-20T14:28:25.133Z
CVE-2025-67537
6.5 (3.1)
WordPress ThirstyAffiliates plugin <= 3.11.8 - Cross S… Blair Williams
 ThirstyAffiliates
 2025-12-09T14:14:04.310Z 2026-01-20T14:28:25.132Z
CVE-2025-67470
4.3 (3.1)
WordPress Portfolio and Projects plugin <= 1.5.5 - Sen… Essential Plugin
 Portfolio and Projects
 2025-12-09T14:13:56.054Z 2026-01-20T14:28:25.130Z
CVE-2025-67467
4.5 (3.1)
WordPress GiveWP plugin <= 4.13.1 - Cross Site Request… StellarWP
 GiveWP
 2025-12-09T15:03:54.450Z 2026-01-20T14:28:25.119Z
CVE-2025-67522
9.8 (3.1)
WordPress Jobmonster theme <= 4.8.2 - Local File Inclu… NooTheme
 Jobmonster
 2025-12-09T14:13:59.066Z 2026-01-20T14:28:25.110Z
CVE-2025-66533
7.8 (3.1)
WordPress GiveWP plugin <= 4.13.1 - Arbitrary Shortocd… StellarWP
 GiveWP
 2025-12-09T15:03:54.194Z 2026-01-20T14:28:25.106Z
CVE-2025-67531
9.8 (3.1)
WordPress Turitor theme < 1.5.3 - Local File Inclusion… trippleS
 Turitor
 2025-12-09T14:14:01.550Z 2026-01-20T14:28:25.095Z
CVE-2025-67474
4.3 (3.1)
WordPress ForumWP plugin <= 2.1.4 - Broken Access Cont… Ultimate Member
 ForumWP
 2025-12-09T14:13:57.009Z 2026-01-20T14:28:25.033Z
CVE-2025-67521
9.8 (3.1)
WordPress Select Core plugin < 2.6 - Local File Inclus… Select-Themes
 Select Core
 2025-12-09T14:13:58.865Z 2026-01-20T14:28:24.976Z
CVE-2025-67520
9.8 (3.1)
WordPress Media Library Tools plugin <= 1.6.15 - SQL I… Tiny Solutions
 Media Library Tools
 2025-12-09T14:13:58.651Z 2026-01-20T14:28:24.948Z
CVE-2025-67525
9.8 (3.1)
WordPress ekommart theme < 4.3.1 - Local File Inclusio… Opal_WP
 ekommart
 2025-12-09T14:13:59.771Z 2026-01-20T14:28:24.930Z
CVE-2025-67465
8.8 (3.1)
WordPress Simple Link Directory plugin <= 8.8.3 - Cros… QuantumCloud
 Simple Link Directory
 2025-12-09T14:13:55.262Z 2026-01-20T14:28:24.889Z
CVE-2025-66532
8.8 (3.1)
WordPress Powerlift theme < 3.2.1 - Broken Access Cont… Mikado-Themes
 Powerlift
 2025-12-09T14:13:54.794Z 2026-01-20T14:28:24.714Z
CVE-2025-66132
6.5 (3.1)
WordPress FAPI Member plugin <= 2.2.26 - Insecure Dire… FAPI Business s.r.o.
 FAPI Member
 2025-12-16T08:12:54.562Z 2026-01-20T14:28:24.662Z
CVE-2025-66531
8.8 (3.1)
WordPress Salon booking system plugin <= 10.30.3 - Cro… Dimitri Grassi
 Salon booking system
 2025-12-09T14:13:54.558Z 2026-01-20T14:28:24.641Z
CVE-2025-66129
5.3 (3.1)
WordPress Pochipp plugin <= 1.18.0 - Broken Access Con… wppochipp
 Pochipp
 2025-12-16T08:12:53.976Z 2026-01-20T14:28:24.628Z
CVE-2025-66528
8.1 (3.1)
WordPress Thank You Page Customizer for WooCommerce pl… VillaTheme
 Thank You Page Customizer for WooCommerce
 2025-12-09T14:13:53.449Z 2026-01-20T14:28:24.582Z
CVE-2025-66155
5.4 (3.1)
WordPress Questionar for Elementor plugin <= 1.1.7 - B… merkulove
 Questionar for Elementor
 2025-12-31T17:00:37.052Z 2026-01-20T14:28:24.566Z
CVE-2025-66157
5.4 (3.1)
WordPress Slider for Elementor plugin <= 1.0.10 - Brok… merkulove
 Slider for Elementor
 2025-12-31T16:58:24.314Z 2026-01-20T14:28:24.553Z
CVE-2025-66128
5.3 (3.1)
WordPress Sendinblue for WooCommerce plugin <= 4.0.49 … Brevo
 Sendinblue for WooCommerce
 2025-12-16T08:12:53.783Z 2026-01-20T14:28:24.551Z
CVE-2025-66151
5.4 (3.1)
WordPress Countdowner for Elementor plugin <= 1.0.4 - … merkulove
 Countdowner for Elementor
 2025-12-31T18:32:49.483Z 2026-01-20T14:28:24.546Z
CVE-2025-66150
5.4 (3.1)
WordPress Appender plugin <= 1.1.1 - Broken Access Con… merkulove
 Appender
 2025-12-31T18:35:57.735Z 2026-01-20T14:28:24.539Z
CVE-2025-66160
5.4 (3.1)
WordPress Select Graphist for Elementor Graphist for … merkulove
 Select Graphist for Elementor Graphist for Elementor
 2025-12-31T16:50:19.182Z 2026-01-20T14:28:24.538Z
CVE-2025-66530
8.8 (3.1)
WordPress Webba Booking plugin <= 6.2.1 - Broken Acces… Webba Appointment Booking
 Webba Booking
 2025-12-09T14:13:53.897Z 2026-01-20T14:28:24.537Z
CVE-2025-66165
5.4 (3.1)
WordPress Lottier for WPBakery plugin <= 1.1.7 - Broke… merkulove
 Lottier for WPBakery
 2025-12-16T08:12:56.408Z 2026-01-20T14:28:24.537Z
CVE-2025-66131
9.1 (3.1)
WordPress Yaad Sarig Payment Gateway For WC plugin <= … yaadsarig
 Yaad Sarig Payment Gateway For WC
 2025-12-16T08:12:54.364Z 2026-01-20T14:28:24.534Z
CVE-2025-66147
5.4 (3.1)
WordPress Coder for Elementor plugin <= 1.0.13 - Broke… merkulove
 Coder for Elementor
 2025-12-16T08:12:55.284Z 2026-01-20T14:28:24.524Z
CVE-2025-66146
5.4 (3.1)
WordPress Logger for Elementor plugin <= 1.0.9 - Broke… merkulove
 Logger for Elementor
 2025-12-31T19:50:21.260Z 2026-01-20T14:28:24.515Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-0610
9.8 (3.1)
SQL Injection vulnerability in remote-sessions in… Devolutions
 Server
 2026-01-19T14:31:13.173Z 2026-01-20T15:05:32.415Z
CVE-2025-68616
7.5 (3.1)
WeasyPrint Vulnerable to Server-Side Request Forgery (… Kozea
 WeasyPrint
 2026-01-19T15:20:23.702Z 2026-01-20T15:42:46.352Z
CVE-2025-64155
9.4 (3.1)
An improper neutralization of special elements us… Fortinet
 FortiSIEM
 2026-01-13T16:32:28.665Z 2026-01-20T15:53:24.312Z
CVE-2025-59355
N/A
Apache Linkis: Password Exposure Apache Software Foundation
 Apache Linkis
 2026-01-19T08:37:24.364Z 2026-01-20T15:07:22.356Z
CVE-2025-36419
5.3 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:53:37.574Z 2026-01-20T16:07:57.795Z
CVE-2025-36418
7.3 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:50:40.562Z 2026-01-20T16:09:43.989Z
CVE-2025-36411
3.5 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:43:07.492Z 2026-01-20T16:04:55.158Z
CVE-2025-36410
3.1 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:39:53.965Z 2026-01-20T16:41:07.252Z
CVE-2025-36409
5.4 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:37:56.120Z 2026-01-20T16:38:27.452Z
CVE-2025-36408
6.4 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:33:59.216Z 2026-01-20T16:35:00.739Z
CVE-2025-36397
5.4 (3.1)
Security vulnerabilities have been found in IBM Applic… IBM
 Application Gateway
 2026-01-20T15:23:30.652Z 2026-01-20T15:47:24.284Z
CVE-2025-36396
5.4 (3.1)
Security vulnerabilities have been found in IBM Applic… IBM
 Application Gateway
 2026-01-20T15:22:11.780Z 2026-01-20T15:48:51.751Z
CVE-2025-36115
6.3 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:18:17.680Z 2026-01-20T15:51:47.539Z
CVE-2025-36113
5.4 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:15:55.890Z 2026-01-20T15:34:16.414Z
CVE-2025-36066
6.1 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:14:03.557Z 2026-01-20T15:36:00.574Z
CVE-2025-36065
6.3 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:12:47.078Z 2026-01-20T15:38:07.346Z
CVE-2025-36063
6.3 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:10:57.747Z 2026-01-20T15:39:45.384Z
CVE-2025-36059
4.7 (3.1)
Multiple security vulnerabilities are addressed in IBM… IBM
 Business Automation Workflow containers
 2026-01-20T15:07:46.448Z 2026-01-20T15:54:41.357Z
CVE-2025-36058
5.5 (3.1)
Multiple security vulnerabilities are addressed in IBM… IBM
 Business Automation Workflow containers
 2026-01-20T15:09:07.082Z 2026-01-20T15:53:20.326Z
CVE-2025-33015
8.8 (3.1)
Multiple Vulnerabilities in IBM Concert Software IBM
 Concert
 2026-01-20T15:04:21.300Z 2026-01-21T04:55:23.857Z
CVE-2025-29847
N/A
Apache Linkis: Arbitrary File Read via Double URL Enco… Apache Software Foundation
 Apache Linkis
 2026-01-19T08:36:06.839Z 2026-01-20T15:12:04.287Z
CVE-2025-14883
N/A
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-68016. Reason: This candidate is a reservation duplicate of CVE-2025-68016. Notes: All CVE users should reference CVE-2025-68016 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. N/A N/A 2026-01-20T15:07:10.646Z
CVE-2025-0647
7.9 (3.1)
In certain Arm CPUs, a CPP RCTX instruction execu… Arm
 Neoverse-N2
 2026-01-14T10:58:44.342Z 2026-01-20T15:21:14.551Z
CVE-2011-10041
9.3 (4.0)
Uploadify <= 1.0 Unauthenticated Arbitrary File Upload Steven
 Uploadify
 2026-01-15T21:44:33.566Z 2026-01-20T15:56:51.308Z
CVE-2025-61674
6.1 (3.1)
October CMS Vulnerable to Stored XSS via Editor and Br… octobercms
 october
 2026-01-10T03:14:11.185Z 2026-01-12T17:33:33.662Z
CVE-2025-61676
6.1 (3.1)
October CMS Vulnerable to Stored XSS via Branding Styles octobercms
 october
 2026-01-10T03:14:00.708Z 2026-01-12T17:34:13.595Z
CVE-2022-50441
N/A
net/mlx5: Lag, fix failure to cancel delayed bond work Linux
 Linux
 2025-10-01T11:42:17.313Z 2025-10-01T11:42:17.313Z
CVE-2022-50442
N/A
fs/ntfs3: Validate buffer length while parsing index Linux
 Linux
 2025-10-01T11:42:18.012Z 2025-10-02T07:04:16.226Z
CVE-2026-21881
9.1 (3.1)
Kanboard is Vulnerable to Reverse Proxy Authentication… kanboard
 kanboard
 2026-01-08T01:08:01.853Z 2026-01-08T17:13:05.216Z
CVE-2023-53464
N/A
scsi: iscsi_tcp: Check that sock is valid before iscsi… Linux
 Linux
 2025-10-01T11:42:35.186Z 2025-10-01T11:42:35.186Z
ID Description Published Updated
fkie_cve-2025-36409 IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated … 2026-01-20T16:16:04.343 2026-01-20T16:16:04.343
fkie_cve-2025-36408 IBM ApplinX 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows an authent… 2026-01-20T16:16:04.183 2026-01-20T16:16:04.183
fkie_cve-2025-36397 IBM Application Gateway 23.10 through 25.09 is vulnerable to HTML injection. A remote attacker coul… 2026-01-20T16:16:04.030 2026-01-20T16:16:04.030
fkie_cve-2025-36396 IBM Application Gateway 23.10 through 25.09 is vulnerable to cross-site scripting. This vulnerabili… 2026-01-20T16:16:03.873 2026-01-20T16:16:03.873
fkie_cve-2025-36115 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0.00 through 5.2.0.12 does not… 2026-01-20T16:16:03.703 2026-01-20T16:16:03.703
fkie_cve-2025-36113 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 is… 2026-01-20T16:16:03.543 2026-01-20T16:16:03.543
fkie_cve-2025-36066 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 is… 2026-01-20T16:16:03.383 2026-01-20T16:16:03.383
fkie_cve-2025-36065 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 do… 2026-01-20T16:16:03.230 2026-01-20T16:16:03.230
fkie_cve-2025-36063 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 do… 2026-01-20T16:16:03.080 2026-01-20T16:16:03.080
fkie_cve-2025-36059 IBM Business Automation Workflow containers 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 2… 2026-01-20T16:16:02.920 2026-01-20T16:16:02.920
fkie_cve-2025-36058 IBM Business Automation Workflow containers 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 2… 2026-01-20T16:16:02.743 2026-01-20T16:16:02.743
fkie_cve-2025-33015 IBM Concert 1.0.0 through 2.1.0 is vulnerable to malicious file upload by not validating the conten… 2026-01-20T16:16:02.580 2026-01-20T16:16:02.580
fkie_cve-2025-29847 A vulnerability in Apache Linkis. Problem Description When using the JDBC engine and da When using… 2026-01-19T09:16:01.237 2026-01-20T16:16:02.410
fkie_cve-2025-14883 Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-68016. Reason:… 2026-01-20T16:16:01.980 2026-01-20T16:16:01.980
fkie_cve-2025-0647 In certain Arm CPUs, a CPP RCTX instruction executed on one Processing Element (PE) may inhibit TLB… 2026-01-14T11:15:50.027 2026-01-20T16:16:01.393
fkie_cve-2011-10041 Uploadify WordPress plugin versions up to and including 1.0 contain an arbitrary file upload vulner… 2026-01-15T22:16:08.927 2026-01-20T16:16:00.930
fkie_cve-2025-61674 October is a Content Management System (CMS) and web platform. Prior to versions 3.7.13 and 4.0.12,… 2026-01-10T04:16:00.680 2026-01-20T16:06:07.560
fkie_cve-2025-61676 October is a Content Management System (CMS) and web platform. Prior to versions 3.7.13 and 4.0.12,… 2026-01-10T04:16:00.850 2026-01-20T16:05:36.343
fkie_cve-2022-50441 In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Lag, fix failure to … 2025-10-01T12:15:36.300 2026-01-20T16:00:08.017
fkie_cve-2022-50442 In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate buffer leng… 2025-10-01T12:15:36.433 2026-01-20T15:58:51.973
fkie_cve-2026-21881 Kanboard is project management software focused on Kanban methodology. Versions 1.2.48 and below is… 2026-01-08T02:15:53.803 2026-01-20T15:57:22.667
fkie_cve-2023-53464 In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi_tcp: Check that so… 2025-10-01T12:15:48.267 2026-01-20T15:56:33.927
fkie_cve-2023-53465 In the Linux kernel, the following vulnerability has been resolved: soundwire: qcom: fix storing p… 2025-10-01T12:15:48.407 2026-01-20T15:54:17.843
fkie_cve-2023-53466 In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix memory… 2025-10-01T12:15:48.550 2026-01-20T15:53:42.200
fkie_cve-2023-53467 In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix potential lea… 2025-10-01T12:15:48.683 2026-01-20T15:53:10.817
fkie_cve-2023-53468 In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix memory leak in allo… 2025-10-01T12:15:48.830 2026-01-20T15:52:36.877
fkie_cve-2023-53470 In the Linux kernel, the following vulnerability has been resolved: ionic: catch failure from devl… 2025-10-01T12:15:49.130 2026-01-20T15:51:57.283
fkie_cve-2025-5499 A vulnerability classified as critical has been found in slackero phpwcms up to 1.9.45/1.10.8. Affe… 2025-06-03T14:15:51.513 2026-01-20T15:46:26.900
fkie_cve-2025-39923 In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bam_dma: Fix … 2025-10-01T08:15:35.610 2026-01-20T15:45:52.240
fkie_cve-2022-50427 In the Linux kernel, the following vulnerability has been resolved: ALSA: ac97: fix possible memor… 2025-10-01T12:15:34.263 2026-01-20T15:38:23.023
ID Severity Description Published Updated
ghsa-7cxp-qgqc-29gv
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:27Z 2026-01-20T15:32:23Z
ghsa-799q-38gr-qvmq
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:27Z 2026-01-20T15:32:23Z
ghsa-523j-cwgj-6f4r
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:27Z 2026-01-20T15:32:23Z
ghsa-3w26-g2pv-c7hf
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:27Z 2026-01-20T15:32:23Z
ghsa-rhv4-h554-jv3f
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-rgcf-2w43-rcc2
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-rcq8-2vrm-5v77
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-r4pj-gvf7-f2q6
7.5 (3.1)
Missing Authorization vulnerability in javothemes Javo Core javo-core allows Exploiting Incorrectly… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-hj95-h3q8-9f44
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-g973-3hcj-2cj8
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-fxfc-66xm-cx3q
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-f87h-73m9-9mvr
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-8gvw-4qwp-qg2j
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-7m79-8c7r-jxp3
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-6jjm-pf9p-g7hp
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-4q66-mhj3-vmmr
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-45mf-5cgg-gvgg
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-3gwx-5m3q-74wv
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-2mrg-2qcj-p8qp
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-2cq9-p3hh-4x7f
8.6 (3.1)
Incorrect Privilege Assignment vulnerability in e-plugins Hotel Listing hotel-listing allows Privil… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-xm4c-mcfr-mg33
7.1 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-w393-v2hq-cqm8
5.3 (3.1)
Missing Authorization vulnerability in mkscripts Download After Email download-after-email allows E… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-j386-rxrm-789f
7.1 (3.1)
Missing Authorization vulnerability in WPXPO PostX ultimate-post allows Exploiting Incorrectly Conf… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-56gc-5jpx-35jv
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-3xc3-wg4j-v425
7.2 (3.1)
Incorrect Privilege Assignment vulnerability in WPXPO PostX ultimate-post allows Privilege Escalati… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-3x9f-jx2x-rgjh
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-2ffc-fhcm-rq53
6.5 (3.1)
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Rom… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-26hr-x62r-xc25
6.5 (3.1)
Missing Authorization vulnerability in miniOrange miniOrange's Google Authenticator miniorange-2-fa… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-xm4g-rv38-63j8
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:20Z
ghsa-x45x-35m6-q633
8.6 (3.1)
Missing Authorization vulnerability in Tyler Moore Super Blank super-blank allows Exploiting Incorr… 2025-12-18T09:30:26Z 2026-01-20T15:32:20Z
ID Severity Description Package Published Updated
pysec-2021-363
Scrapy is a high-level web crawling and scraping framework for Python. If you use `HttpAu… scrapy 2021-10-06T18:15:00Z 2021-10-11T01:16:42.905582Z
pysec-2021-364
Scrapy-splash is a library which provides Scrapy and JavaScript integration. In affected … scrapy-splash 2021-10-05T21:15:00Z 2021-10-11T01:16:42.816754Z
pysec-2021-361
An issue was discovered in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x … neutron 2021-08-31T18:15:00Z 2021-10-11T01:16:41.242054Z
pysec-2021-360
OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address i… neutron 2021-08-23T05:15:00Z 2021-10-11T01:16:41.119513Z
pysec-2021-359
Flask-AppBuilder is an application development framework, built on top of Flask. In affec… flask-appbuilder 2021-09-08T18:15:00Z 2021-10-11T01:16:40.573932Z
pysec-2021-358
A flaw was found in Ansible, where a user's controller is vulnerable to template injectio… ansible 2021-09-22T12:15:00Z 2021-10-11T01:16:39.746753Z
pysec-2021-357
The Unicorn framework through 0.35.3 for Django allows XSS via component.name. django-unicorn 2021-10-07T06:15:00Z 2021-10-08T02:27:35.256995Z
pysec-2021-356
nltk is vulnerable to Inefficient Regular Expression Complexity nltk 2021-09-27T13:15:00Z 2021-10-01T22:29:03.465380Z
pysec-2021-355
“Shuup” application in versions 0.4.2 to 2.10.8 is affected by the “Formula Injection” vu… shuup 2021-09-29T14:15:00Z 2021-09-30T23:26:29.598032Z
pysec-2021-354
furlongm openvpn-monitor through 1.1.3 allows Authorization Bypass to disconnect arbitrar… openvpn-monitor 2021-09-27T06:15:00Z 2021-09-30T23:26:26.851532Z
pysec-2021-353
furlongm openvpn-monitor through 1.1.3 allows %0a command injection via the OpenVPN manag… openvpn-monitor 2021-09-27T06:15:00Z 2021-09-30T23:26:26.808242Z
pysec-2021-352
furlongm openvpn-monitor through 1.1.3 allows CSRF to disconnect an arbitrary client. openvpn-monitor 2021-09-27T06:15:00Z 2021-09-30T23:26:26.774511Z
pysec-2021-351
ESPHome is a system to control the ESP8266/ESP32. Anyone with web_server enabled and HTTP… esphome 2021-09-28T16:15:00Z 2021-09-30T23:26:26.067991Z
pysec-2021-350
In Shuup, versions 1.6.0 through 2.10.8 are vulnerable to reflected Cross-Site Scripting … shuup 2021-09-30T08:15:00Z 2021-09-30T10:32:36.636402Z
pysec-2017-35
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.1… salt 2017-08-23T14:29:00Z 2021-09-29T02:54:43.147751Z
pysec-2021-338
Leo Editor v6.2.1 was discovered to contain a regular expression denial of service (ReDoS… leo 2021-09-22T20:15:00Z 2021-09-26T23:50:00.616119Z
pysec-2018-103
ymlref allows code injection. ymlref 2018-12-17T19:29:00Z 2021-09-26T23:33:39.795406Z
pysec-2021-349
XXE vulnerability in 'XML2Dict' version 0.2.2 allows an attacker to cause a denial of service. xml2dict 2021-06-30T12:15:00Z 2021-09-26T23:33:39.694828Z
pysec-2021-348
Command Injection in Simiki v1.6.2.1 and prior allows remote attackers to execute arbitra… simiki 2021-08-27T19:15:00Z 2021-09-26T23:33:04.328365Z
pysec-2021-347
Cross Site Scripting (XSS) in Simiki v1.6.2.1 and prior allows remote attackers to execut… simiki 2021-08-27T19:15:00Z 2021-09-26T23:33:04.295133Z
pysec-2021-345
The rencode package through 1.0.6 for Python allows an infinite loop in typecode decoding… rencode 2021-09-10T02:15:00Z 2021-09-26T23:32:54.963571Z
pysec-2021-344
OneFuzz is an open source self-hosted Fuzzing-As-A-Service platform. Starting with OneFuz… onefuzz 2021-08-13T21:15:00Z 2021-09-26T23:32:40.198740Z
pysec-2021-342
A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows att… lxdui 2021-09-03T02:15:00Z 2021-09-26T23:32:34.569818Z
pysec-2021-337
This affects all versions of package Flask-User. When using the make_safe_url function, i… flask-user 2021-07-05T11:15:00Z 2021-09-26T23:32:30.327481Z
pysec-2021-336
Unrestricted Upload of File with Dangerous Type in Django-Widgy v0.8.4 allows remote atta… django-widgy 2021-08-16T18:15:00Z 2021-09-26T23:32:19.117278Z
pysec-2020-261
A weak robustness vulnerability exists in the AWS Encryption SDKs for Java, Python, C and… aws-encryption-sdk 2020-11-16T12:15:00Z 2021-09-26T23:32:16.436833Z
pysec-2021-335
The module `AccessControl` defines security policies for Python code used in restricted c… accesscontrol 2021-07-30T22:15:00Z 2021-09-26T23:32:08.989778Z
pysec-2021-334
parlai is a framework for training and evaluating AI models on a variety of openly availa… parlai 2021-09-10T23:15:00Z 2021-09-23T16:57:40.954858Z
pysec-2021-331
Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker… pillow 2021-07-13T17:15:00Z 2021-09-23T00:11:05.797411Z
pysec-2021-330
Due to use of unsafe YAML deserialization logic, an attacker with the ability to modify l… parlai 2021-09-10T22:15:00Z 2021-09-23T00:11:05.455785Z
ID Description Type
ID Description Updated
gsd-2024-3691 A vulnerability, which was classified as critical, has been found in PHPGurukul Small CRM… 2024-04-13T05:02:35.784787Z
gsd-2024-3693 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.782958Z
gsd-2024-3753 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.780508Z
gsd-2024-3716 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.779671Z
gsd-2024-3715 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.771633Z
gsd-2024-3730 The Simple Membership plugin for WordPress is vulnerable to Stored Cross-Site Scripting v… 2024-04-13T05:02:35.771433Z
gsd-2024-3710 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.768088Z
gsd-2024-3756 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.767875Z
gsd-2024-3704 SQL Injection Vulnerability has been found on OpenGnsys product affecting version 1.1.1d … 2024-04-13T05:02:35.767076Z
gsd-2024-3709 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.762343Z
gsd-2024-3748 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.758378Z
gsd-2024-3734 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.755944Z
gsd-2024-3702 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.737044Z
gsd-2024-3733 The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerc… 2024-04-13T05:02:35.736845Z
gsd-2024-3719 A vulnerability, which was classified as critical, was found in Campcodes House Rental Ma… 2024-04-13T05:02:35.720548Z
gsd-2024-3741 Electrolink transmitters are vulnerable to an authentication bypass vulnerability affect… 2024-04-13T05:02:35.720347Z
gsd-2024-3745 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.718576Z
gsd-2024-3700 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.712317Z
gsd-2024-3732 The GeoDirectory – WordPress Business Directory Plugin, or Classified Directory plugin fo… 2024-04-13T05:02:35.705171Z
gsd-2024-3728 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.685143Z
gsd-2024-3722 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.683967Z
gsd-2024-3708 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.677590Z
gsd-2024-3720 A vulnerability has been found in Tianwell Fire Intelligent Command Platform 1.1.1.1 and … 2024-04-13T05:02:35.675254Z
gsd-2024-3706 Information exposure vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). This… 2024-04-13T05:02:35.674722Z
gsd-2024-3735 A vulnerability was found in Smart Office up to 20240405. It has been classified as probl… 2024-04-13T05:02:35.674146Z
gsd-2024-3740 A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI u… 2024-04-13T05:02:35.671075Z
gsd-2024-3698 A vulnerability was found in Campcodes House Rental Management System 1.0. It has been de… 2024-04-13T05:02:35.665259Z
gsd-2024-3749 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.658377Z
gsd-2024-3754 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.656561Z
gsd-2024-3729 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.637594Z
ID Description Published Updated
mal-2024-10173 Malicious code in theerum (PyPI) 2024-06-28T20:16:20Z 2025-12-11T09:27:54Z
mal-2024-10172 Malicious code in text-adventure-game (PyPI) 2024-07-01T21:12:52Z 2025-12-11T09:27:54Z
mal-2024-10168 Malicious code in strongkong (PyPI) 2024-07-29T21:40:08Z 2025-12-11T09:27:54Z
mal-2024-10166 Malicious code in solgpt (PyPI) 2024-07-29T21:29:54Z 2025-12-11T09:27:54Z
mal-2024-10161 Malicious code in sol-structs (PyPI) 2024-07-03T17:04:18Z 2025-12-11T09:27:54Z
mal-2024-10160 Malicious code in sghsuzeghuisehguihdrhffdhfdh (PyPI) 2024-06-28T20:16:20Z 2025-12-11T09:27:54Z
mal-2025-976 Malicious code in rreqest (PyPI) 2024-12-24T18:09:49Z 2025-12-11T09:27:53Z
mal-2025-974 Malicious code in requetses (PyPI) 2024-12-31T18:44:48Z 2025-12-11T09:27:53Z
mal-2025-973 Malicious code in requeszs (PyPI) 2024-12-24T18:09:49Z 2025-12-11T09:27:53Z
mal-2025-972 Malicious code in requestss3 (PyPI) 2024-08-23T22:55:41Z 2025-12-11T09:27:53Z
mal-2025-971 Malicious code in requestss2 (PyPI) 2024-08-23T22:55:41Z 2025-12-11T09:27:53Z
mal-2025-970 Malicious code in requests1 (PyPI) 2024-08-23T22:55:41Z 2025-12-11T09:27:53Z
mal-2025-965 Malicious code in reqesst (PyPI) 2024-12-24T18:09:49Z 2025-12-11T09:27:53Z
mal-2025-964 Malicious code in qassabi (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-963 Malicious code in python-bitget-wrapper (PyPI) 2024-12-12T21:48:47Z 2025-12-11T09:27:53Z
mal-2025-962 Malicious code in python-bitget-request (PyPI) 2024-12-12T21:48:47Z 2025-12-11T09:27:53Z
mal-2025-961 Malicious code in python-bitget-connect (PyPI) 2024-12-12T21:48:47Z 2025-12-11T09:27:53Z
mal-2025-960 Malicious code in pytest-tt-ddriven (PyPI) 2024-11-29T13:03:21Z 2025-12-11T09:27:53Z
mal-2025-959 Malicious code in pytc123 (PyPI) 2024-08-23T22:55:41Z 2025-12-11T09:27:53Z
mal-2025-955 Malicious code in private-test-4 (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-954 Malicious code in private-test-2 (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-953 Malicious code in private-test-1 (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-951 Malicious code in presudo-generate (PyPI) 2024-12-16T10:40:50Z 2025-12-11T09:27:53Z
mal-2025-949 Malicious code in oscontrol (PyPI) 2024-12-26T12:24:34Z 2025-12-11T09:27:53Z
mal-2025-948 Malicious code in opshub (PyPI) 2024-12-26T12:24:34Z 2025-12-11T09:27:53Z
mal-2025-947 Malicious code in noway-back (PyPI) 2024-12-16T10:40:50Z 2025-12-11T09:27:53Z
mal-2025-945 Malicious code in mkdsli (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-944 Malicious code in masirkhan (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-940 Malicious code in lan-clean (PyPI) 2024-12-16T10:40:50Z 2025-12-11T09:27:53Z
mal-2025-938 Malicious code in just-test-framework (PyPI) 2025-01-10T01:24:54Z 2025-12-11T09:27:53Z
ID Description Published Updated
wid-sec-w-2025-2086 Jenkins: Mehrere Schwachstellen 2025-09-17T22:00:00.000+00:00 2025-09-23T22:00:00.000+00:00
wid-sec-w-2025-1989 SAP Patchday September 2025: Mehrere Schwachstellen 2025-09-08T22:00:00.000+00:00 2025-09-23T22:00:00.000+00:00
wid-sec-w-2025-1929 IBM App Connect Enterprise: Mehrere Schwachstellen 2025-08-28T22:00:00.000+00:00 2025-09-23T22:00:00.000+00:00
wid-sec-w-2025-1673 Red Hat Enterprise Linux (libtpms): Schwachstelle ermöglicht Denial of Service 2025-07-29T22:00:00.000+00:00 2025-09-23T22:00:00.000+00:00
wid-sec-w-2025-1669 Red Hat Enterprise Linux (libtpms): Schwachstelle ermöglicht Denial of Service 2025-07-29T22:00:00.000+00:00 2025-09-23T22:00:00.000+00:00
wid-sec-w-2023-3011 BusyBox: Mehrere Schwachstellen 2023-11-27T23:00:00.000+00:00 2025-09-23T22:00:00.000+00:00
wid-sec-w-2022-0665 AMD Prozessoren: Mehrere Schwachstellen 2022-07-12T22:00:00.000+00:00 2025-09-23T22:00:00.000+00:00
wid-sec-w-2022-0650 Intel Prozessoren: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen 2022-07-12T22:00:00.000+00:00 2025-09-23T22:00:00.000+00:00
wid-sec-w-2025-2108 Lexmark Laser Printers: Schwachstelle ermöglicht Offenlegung von Informationen 2025-09-22T22:00:00.000+00:00 2025-09-22T22:00:00.000+00:00
wid-sec-w-2025-2106 Liferay Portal und DXP: Mehrere Schwachstellen 2025-09-22T22:00:00.000+00:00 2025-09-22T22:00:00.000+00:00
wid-sec-w-2025-2105 Flowise: Mehrere Schwachstellen 2025-09-22T22:00:00.000+00:00 2025-09-22T22:00:00.000+00:00
wid-sec-w-2025-1932 Wireshark: Schwachstelle ermöglicht Denial of Service 2025-08-28T22:00:00.000+00:00 2025-09-22T22:00:00.000+00:00
wid-sec-w-2025-1892 Keycloak: Schwachstelle ermöglicht Offenlegung von Informationen 2025-08-21T22:00:00.000+00:00 2025-09-22T22:00:00.000+00:00
wid-sec-w-2025-1856 Mattermost Server: Mehrere Schwachstellen 2025-08-17T22:00:00.000+00:00 2025-09-22T22:00:00.000+00:00
wid-sec-w-2025-1798 Intel Graphics Driver: Mehrere Schwachstellen 2025-08-12T22:00:00.000+00:00 2025-09-22T22:00:00.000+00:00
wid-sec-w-2024-3543 Red Hat Enterprise Linux (PAM): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2024-11-25T23:00:00.000+00:00 2025-09-22T22:00:00.000+00:00
wid-sec-w-2024-3525 Keycloak: Mehrere Schwachstellen 2024-11-21T23:00:00.000+00:00 2025-09-22T22:00:00.000+00:00
wid-sec-w-2024-1047 VPN Clients / DHCP: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2024-05-06T22:00:00.000+00:00 2025-09-22T22:00:00.000+00:00
wid-sec-w-2025-2103 Vasion Print: Mehrere Schwachstellen 2025-09-21T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2025-2102 D-LINK Router: Schwachstelle ermöglicht Codeausführung 2025-09-21T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2025-2100 Red Hat Enterprise Linux (Lightspeed): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-09-21T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2025-2097 Grafana: Schwachstelle ermöglicht Denial of Service 2025-09-21T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2025-2096 NetApp ActiveIQ Unified Manager: Schwachstelle ermöglicht Offenlegung von Informationen 2025-09-21T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2025-2095 Liferay Portal: Mehrere Schwachstellen 2025-09-21T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2025-2037 NetApp StorageGRID: Mehrere Schwachstellen 2025-09-10T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2025-1761 Omnissa Workspace ONE UEM: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen 2025-08-11T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2025-1542 Sitecore Experience Manager: Mehrere Schwachstellen 2025-07-13T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2025-0429 ffmpeg: Schwachstelle ermöglicht Denial of Service, potentiell Codeausführung 2025-02-23T23:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2023-2588 libxml2: Schwachstelle ermöglicht Denial of Service 2023-10-08T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2023-0841 Samsung Android und Samsung Exynos: Mehrere Schwachstellen 2023-04-03T22:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
rhsa-2025:10358 Red Hat Security Advisory: pam security update 2025-07-07T02:29:00+00:00 2026-01-22T04:53:32+00:00
rhsa-2025:10357 Red Hat Security Advisory: pam security update 2025-07-07T02:29:41+00:00 2026-01-22T04:53:29+00:00
rhsa-2025:10354 Red Hat Security Advisory: pam security update 2025-07-07T02:35:15+00:00 2026-01-22T04:53:28+00:00
rhsa-2025:10027 Red Hat Security Advisory: pam security update 2025-07-01T14:00:54+00:00 2026-01-22T04:53:28+00:00
rhsa-2025:10180 Red Hat Security Advisory: pam security update 2025-07-02T05:27:20+00:00 2026-01-22T04:53:27+00:00
rhsa-2025:10024 Red Hat Security Advisory: pam security update 2025-07-01T13:25:43+00:00 2026-01-22T04:53:24+00:00
rhsa-2025:23530 Red Hat Security Advisory: python39:3.9 security update 2025-12-18T01:35:54+00:00 2026-01-22T04:44:50+00:00
rhsa-2025:23342 Red Hat Security Advisory: python3.9 security update 2025-12-18T13:21:05+00:00 2026-01-22T04:44:43+00:00
rhsa-2025:17644 Red Hat Security Advisory: vim security update 2025-10-09T07:19:29+00:00 2026-01-22T04:44:08+00:00
rhsa-2025:17742 Red Hat Security Advisory: vim security update 2025-10-13T02:18:48+00:00 2026-01-22T04:44:07+00:00
rhsa-2025:17913 Red Hat Security Advisory: vim security update 2025-10-14T05:32:21+00:00 2026-01-22T04:44:05+00:00
rhsa-2025:20945 Red Hat Security Advisory: vim security update 2025-11-11T14:14:42+00:00 2026-01-22T04:44:04+00:00
rhsa-2025:21015 Red Hat Security Advisory: vim security update 2025-11-11T19:22:33+00:00 2026-01-22T04:44:02+00:00
rhsa-2025:17715 Red Hat Security Advisory: vim security update 2025-10-09T19:23:45+00:00 2026-01-22T04:44:01+00:00
rhsa-2025:15358 Red Hat Security Advisory: updated RHEL-8 based Middleware Containers container images 2025-09-04T16:29:43+00:00 2026-01-22T04:43:55+00:00
rhsa-2025:11386 Red Hat Security Advisory: updated RHEL-8 based Middleware Containers container images 2025-07-17T15:25:25+00:00 2026-01-22T04:43:11+00:00
rhsa-2025:10602 Red Hat Security Advisory: python3 security update 2025-07-08T11:17:19+00:00 2026-01-22T04:43:10+00:00
rhsa-2025:10484 Red Hat Security Advisory: python3 security update 2025-07-07T16:21:57+00:00 2026-01-22T04:43:10+00:00
rhsa-2025:10399 Red Hat Security Advisory: python3.9 security update 2025-07-07T11:25:51+00:00 2026-01-22T04:43:09+00:00
rhsa-2025:10136 Red Hat Security Advisory: python3.9 security update 2025-07-01T21:13:33+00:00 2026-01-22T04:43:07+00:00
rhsa-2024:3889 Red Hat Security Advisory: OpenShift Container Platform 4.15.18 security update 2024-06-18T23:31:11+00:00 2026-01-22T04:43:06+00:00
rhsa-2024:2782 Red Hat Security Advisory: OpenShift Container Platform 4.12.57 security update 2024-05-16T18:09:19+00:00 2026-01-22T04:43:04+00:00
rhsa-2024:0691 Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.9.4 security update 2024-02-05T20:30:07+00:00 2026-01-22T04:43:03+00:00
rhsa-2025:10128 Red Hat Security Advisory: python3 security update 2025-07-01T20:06:34+00:00 2026-01-22T04:43:01+00:00
rhsa-2025:10148 Red Hat Security Advisory: python3.11 security update 2025-07-01T22:05:54+00:00 2026-01-22T04:42:59+00:00
rhsa-2025:10140 Red Hat Security Advisory: python3.12 security update 2025-07-01T21:50:44+00:00 2026-01-22T04:42:59+00:00
rhsa-2025:10028 Red Hat Security Advisory: python3.12 security update 2025-07-01T13:21:58+00:00 2026-01-22T04:42:59+00:00
rhsa-2025:9918 Red Hat Security Advisory: python3.11 security update 2025-06-30T13:43:06+00:00 2026-01-22T04:42:58+00:00
rhsa-2025:10189 Red Hat Security Advisory: python3.12 security update 2025-07-02T06:27:20+00:00 2026-01-22T04:42:57+00:00
rhsa-2025:10026 Red Hat Security Advisory: python3.11 security update 2025-07-01T13:22:58+00:00 2026-01-22T04:42:56+00:00
ID Description Published Updated
icsa-23-180-04 Mitsubishi Electric MELSEC-F Series 2023-06-29T06:00:00.000000Z 2023-07-11T06:00:00.000000Z
icsa-23-192-02 Sensormatic Electronics iSTAR 2023-07-11T00:00:00.000000Z 2023-07-11T00:00:00.000000Z
icsa-23-192-01 Rockwell Automation Enhanced HIM 2023-07-11T00:00:00.000000Z 2023-07-11T00:00:00.000000Z
icsa-23-187-02 ABUS TVIP 2023-07-06T06:00:00.000000Z 2023-07-06T06:00:00.000000Z
icsa-23-187-01 PiiGAB M-Bus 2023-07-06T06:00:00.000000Z 2023-07-06T06:00:00.000000Z
icsma-23-180-01 Medtronic Paceart Optima System 2023-06-29T06:00:00.000000Z 2023-06-29T06:00:00.000000Z
icsa-23-180-03 Ovarro TBox RTUs 2023-06-29T06:00:00.000000Z 2023-06-29T06:00:00.000000Z
icsa-23-180-02 Schneider Electric EcoStruxure Operator Terminal Expert 2023-06-29T06:00:00.000000Z 2023-06-29T06:00:00.000000Z
icsa-23-180-01 Delta Electronics InfraSuite Device Master 2023-06-29T06:00:00.000000Z 2023-06-29T06:00:00.000000Z
icsa-23-178-01 Hitachi Energy FOXMAN-UN and UNEM Products 2023-06-27T06:00:00.000000Z 2023-06-27T06:00:00.000000Z
icsa-23-173-03 SpiderControl SCADAWebServer 2023-06-23T06:00:00.000000Z 2023-06-23T06:00:00.000000Z
icsa-23-026-02 Econolite EOS (Update A) 2023-01-26T07:00:00.000000Z 2023-06-22T06:00:00.000000Z
icsa-23-173-02 Advantech R-SeeNet 2023-06-20T06:00:00.000000Z 2023-06-20T06:00:00.000000Z
icsa-23-171-02 Enphase Installer Toolkit Android App 2023-06-20T06:00:00.000000Z 2023-06-20T06:00:00.000000Z
icsa-23-061-01 Mitsubishi Electric MELSEC iQ-F Series 2023-03-02T07:00:00.000000Z 2023-06-20T06:00:00.000000Z
icsa-23-166-02 Advantech WebAccess/SCADA 2023-06-15T06:00:00.000000Z 2023-06-15T06:00:00.000000Z
icsa-23-166-01 SUBNET PowerSYSTEM Center 2023-06-15T06:00:00.000000Z 2023-06-15T06:00:00.000000Z
icsa-23-166-12 Siemens SINAMICS Medium Voltage Products 2023-06-13T00:00:00.000000Z 2023-06-14T00:00:00.000000Z
icsa-23-164-04 Rockwell Automation FactoryTalk Transaction Manager 2023-06-13T06:00:00.000000Z 2023-06-13T06:00:00.000000Z
icsa-23-164-03 Rockwell Automation FactoryTalk Edge Gateway 2023-06-13T06:00:00.000000Z 2023-06-13T06:00:00.000000Z
icsa-23-164-02 Rockwell Automation FactoryTalk Services Platform 2023-06-13T06:00:00.000000Z 2023-06-13T06:00:00.000000Z
icsa-23-164-01 Datalogics Library Third-Party 2023-06-13T06:00:00.000000Z 2023-06-13T06:00:00.000000Z
icsa-23-166-13 Siemens SICAM A8000 Devices 2023-06-13T00:00:00.000000Z 2023-06-13T00:00:00.000000Z
icsa-23-166-05 Siemens SIMATIC WinCC 2023-06-13T00:00:00.000000Z 2023-06-13T00:00:00.000000Z
icsa-23-159-02 Sensormatic Electronics Illustra Pro Gen 4 2023-06-08T06:00:00.000000Z 2023-06-08T06:00:00.000000Z
icsa-23-159-01 Atlas Copco Power Focus 6000 2023-06-08T06:00:00.000000Z 2023-06-08T06:00:00.000000Z
icsa-23-152-02 HID Global SAFE 2023-06-01T06:00:00.000000Z 2023-06-01T06:00:00.000000Z
icsa-23-152-01 Advantech WebAccess/SCADA 2023-06-01T06:00:00.000000Z 2023-06-01T06:00:00.000000Z
icsa-22-256-03 Delta Electronics DIAEnergie 2022-09-19T06:00:00.000000Z 2023-06-01T06:00:00.000000Z
icsa-23-143-01 Hitachi Energy’s AFS65x, AFS67x, AFR67x and AFF66x Products 2023-05-31T20:26:29.765074Z 2023-05-31T20:26:29.765074Z
ID Description Published Updated
cisco-sa-20190515-nxos-sisv Cisco Nexus 3000 Series and 9000 Series Switches in NX-OS Mode CLI Command Software Image Signature Verification Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-rpm-injec Cisco NX-OS Software Remote Package Manager Command Injection Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-psvb Cisco NX-OS Software Patch Signature Verification Bypass Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-overflow-inj Cisco NX-OS Software Buffer Overflow and Command Injection Vulnerabilities 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-nxapi-xss Cisco NX-OS Software NX-API Sandbox Cross-Site Scripting Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-fxos-info Cisco FXOS and NX-OS Software Sensitive File Read Information Disclosure Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-fxos-cmdinj-1779 Cisco FXOS and NX-OS Software Command Injection Vulnerability (CVE-2019-1779) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-file-write Cisco NX-OS Software Arbitrary File Overwrite Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1795 Cisco FXOS and NX-OS Software Command Injection Vulnerability (CVE-2019-1795) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1791 Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1791) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1790 Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1790) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1778 Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1778) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1774-1775 Cisco NX-OS Software Command Injection Vulnerabilities (CVE-2019-1774, CVE-2019-1775) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1770 Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1770) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-ise-certcreation Cisco Identity Services Engine Arbitrary Client Certificate Creation Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-iosxr-mpls-dos Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers MPLS OAM Denial of Service Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-fxos-nxos-cmdinj-1781-1782 Cisco FXOS and NX-OS Software Command Injection Vulnerabilities (CVE-2019-1781, CVE-2019-1782) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-ftdde-poly-bypass Cisco Firepower Threat Defense Software Detection Engine Policy Bypass Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-ftd-ssltls-bypass Cisco Firepower Threat Defense Software SSL/TLS Policy Bypass Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-cvsm Cisco Video Surveillance Manager Web-Based Management Interface Information Disclosure Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-anyconnectclient-oob-read Cisco AnyConnect Secure Mobility Client for Linux Out-of-Bounds Memory Read Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190501-nexus9k-rpe Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Root Privilege Escalation Vulnerability 2019-05-01T16:00:00+00:00 2019-05-15T13:28:14+00:00
cisco-sa-20190501-aci-insecure-fabric Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Insecure Fabric Authentication Vulnerability 2019-05-01T16:00:00+00:00 2019-05-13T19:30:32+00:00
cisco-sa-20190513-webui Cisco IOS XE Software Web UI Command Injection Vulnerability 2019-05-13T17:30:00+00:00 2019-05-13T17:30:00+00:00
cisco-sa-20190501-apic-priv-escalation Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability 2019-05-01T16:00:00+00:00 2019-05-09T16:00:10+00:00
cisco-sa-20190501-aci-hw-clock-util Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Privilege Escalation Vulnerability 2019-05-01T16:00:00+00:00 2019-05-09T15:55:09+00:00
cisco-sa-20190501-nexus9k-sshkey Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Default SSH Key Vulnerability 2019-05-01T16:00:00+00:00 2019-05-09T12:49:51+00:00
cisco-sa-20190417-umbrella-xss Cisco Umbrella Cross-Site Scripting Vulnerability 2019-04-17T16:00:00+00:00 2019-05-08T15:46:02+00:00
cisco-sa-20190507-esc-authbypass Cisco Elastic Services Controller REST API Authentication Bypass Vulnerability 2019-05-07T16:00:00+00:00 2019-05-07T16:00:00+00:00
cisco-sa-20190501-esa-bypass Cisco Email Security Appliance Filter Bypass Vulnerability 2019-05-01T16:00:00+00:00 2019-05-03T20:26:28+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
msrc_cve-1999-1090 The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows remote attackers to read and modify arbitrary files. 2002-03-02T00:00:00.000Z 2025-10-01T23:10:49.000Z
msrc_cve-1999-0965 Race condition in xterm allows local users to modify arbitrary files via the logging option. 2000-01-02T00:00:00.000Z 2025-10-01T23:10:48.000Z
msrc_cve-1999-0902 ypserv allows local administrators to modify password tables. 2000-01-02T00:00:00.000Z 2025-10-01T23:10:48.000Z
msrc_cve-1999-0901 ypserv allows a local user to modify the GECOS and login shells of other users. 2000-01-02T00:00:00.000Z 2025-10-01T23:10:48.000Z
msrc_cve-1999-0475 A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary files available to the user who is running procmail. 1999-09-02T00:00:00.000Z 2025-10-01T23:10:48.000Z
msrc_cve-1999-0163 In older versions of Sendmail, an attacker could use a pipe character to execute root commands. 2000-02-02T00:00:00.000Z 2025-10-01T23:10:47.000Z
msrc_cve-1999-0145 Sendmail WIZ command enabled, allowing root access. 2000-10-02T00:00:00.000Z 2025-10-01T23:10:10.000Z
msrc_cve-2025-55553 A syntax error in the component proxy_tensor.py of pytorch v2.7.0 allows attackers to cause a Denial of Service (DoS). 2025-09-02T00:00:00.000Z 2025-10-01T17:11:29.000Z
msrc_cve-2025-53132 Win32k Elevation of Privilege Vulnerability 2025-08-12T07:00:00.000Z 2025-09-30T07:00:00.000Z
msrc_cve-2025-46148 In PyTorch through 2.6.0, when eager is used, nn.PairwiseDistance(p=2) produces incorrect results. 2025-09-02T00:00:00.000Z 2025-09-29T01:01:59.000Z
msrc_cve-2025-11021 Libsoup: out-of-bounds read in cookie date handling of libsoup http library 2025-09-02T00:00:00.000Z 2025-09-29T01:01:39.000Z
msrc_cve-2025-60018 Glib-networking: out of bound reads on glib-networking through tls/openssl/gtlscertificate-openssl.c via "g_tls_certificate_openssl_get_property()" 2025-09-02T00:00:00.000Z 2025-09-29T01:01:31.000Z
msrc_cve-2025-60019 Glib-networking: uninitialized memory dereferences on glib-networking through glib-networking/tls/openssl/gtlsbio.c via g_tls_bio_new_from_iostream() and g_tls_bio_new_from_datagram_based() 2025-09-02T00:00:00.000Z 2025-09-29T01:01:23.000Z
msrc_cve-2025-59362 Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c. 2025-09-02T00:00:00.000Z 2025-09-28T01:02:19.000Z
msrc_cve-2025-21656 hwmon: (drivetemp) Fix driver producing garbage data when SCSI errors occur 2025-01-02T00:00:00.000Z 2025-09-28T01:02:13.000Z
msrc_cve-2024-57945 riscv: mm: Fix the out of bound issue of vmemmap address 2025-01-02T00:00:00.000Z 2025-09-28T01:02:08.000Z
msrc_cve-2024-57924 fs: relax assertions on failure to encode file handles 2025-01-02T00:00:00.000Z 2025-09-28T01:02:02.000Z
msrc_cve-2024-57893 ALSA: seq: oss: Fix races at processing SysEx messages 2025-01-02T00:00:00.000Z 2025-09-28T01:01:57.000Z
msrc_cve-2024-57876 drm/dp_mst: Fix resetting msg rx state after topology removal 2025-01-02T00:00:00.000Z 2025-09-28T01:01:52.000Z
msrc_cve-2024-41069 ASoC: topology: Fix references to freed memory 2024-07-01T07:00:00.000Z 2025-09-28T01:01:40.000Z
msrc_cve-2024-35826 block: Fix page refcounts for unaligned buffers in __bio_release_pages() 2024-05-02T07:00:00.000Z 2025-09-28T01:01:35.000Z
msrc_cve-2024-35803 x86/efistub: Call mixed mode boot services on the firmware's stack 2024-05-02T07:00:00.000Z 2025-09-28T01:01:29.000Z
msrc_cve-2023-52916 media: aspeed: Fix memory overwrite if timing is 1600x900 2024-09-01T07:00:00.000Z 2025-09-28T01:01:17.000Z
msrc_cve-2025-22247 Insecure file handling vulnerability 2025-05-02T00:00:00.000Z 2025-09-27T01:03:15.000Z
msrc_cve-2025-9900 Libtiff: libtiff write-what-where 2025-09-02T00:00:00.000Z 2025-09-27T01:03:04.000Z
msrc_cve-2025-8869 Fallback tar extraction in pip doesn't check symbolic links point to extraction directory 2025-09-02T00:00:00.000Z 2025-09-27T01:02:56.000Z
msrc_cve-2024-57843 virtio-net: fix overflow inside virtnet_rq_alloc 2025-01-02T00:00:00.000Z 2025-09-27T01:02:44.000Z
msrc_cve-2024-41030 ksmbd: discard write access to the directory open 2024-07-01T07:00:00.000Z 2025-09-27T01:02:35.000Z
msrc_cve-2024-41013 xfs: don't walk off the end of a directory data block 2024-07-01T07:00:00.000Z 2025-09-27T01:02:30.000Z
msrc_cve-2024-40998 ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() 2024-07-01T07:00:00.000Z 2025-09-27T01:02:25.000Z
ID Description Published Updated
ID Description Updated
var-202509-3762 A vulnerability was determined in Tenda CH22 1.0.0.1. This vulnerability affects the func… 2025-11-19T23:30:51.451000Z
var-202509-4455 The AC18 is a dual-band wireless router. The AC18 router developed by Shenzhen Jixiang T… 2025-11-19T23:30:51.412000Z
var-202510-0265 Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the wanSpeed param… 2025-11-19T23:30:51.330000Z
var-202510-1083 A vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (tmsh) comma… 2025-11-19T23:30:51.255000Z
var-202510-1230 A cross-site request forgery security issue exists in the product and version listed. The… 2025-11-19T23:30:51.233000Z
var-202510-1671 Out-of-bounds write under specific condition in the pre-processing of JPEG decoding in li… 2025-11-19T23:30:51.205000Z
var-202510-2091 There is a Denial of Service(DoS)vulnerability in the ZTE MC889A Pro product. Due to insu… 2025-11-19T23:30:51.162000Z
var-202510-2219 On BIG-IP systems, undisclosed traffic can cause data corruption and unauthorized data mo… 2025-11-19T23:30:51.079000Z
var-202510-2282 D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime … 2025-11-19T23:30:51.038000Z
var-202510-2324 A vulnerability has been found in Tenda CH22 1.0.0.1. This affects the function fromSafeM… 2025-11-19T23:30:51.010000Z
var-202510-2345 A security flaw has been discovered in Tenda CH22 1.0.0.1. This impacts the function from… 2025-11-19T23:30:50.994000Z
var-202511-0002 /etc/avahi/services/z9.service can be Arbitrarily Written.This issue affects BLU-IC2: thr… 2025-11-19T23:30:50.052000Z
var-202511-0275 Multiple Devices are Sharing the Same Secrets for SDKSocket (TCP/5000).This issue affects… 2025-11-19T23:30:49.906000Z
var-202312-1293 TOTOLink A7000R V9.1.0u.6115_B20201022 has a stack overflow vulnerability via setOpModeCf… 2025-11-19T23:30:26.178000Z
var-202510-2087 D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime … 2025-11-19T23:30:22.142000Z
var-202510-2337 When using a multi-bladed platform with more than one blade, undisclosed traffic can caus… 2025-11-19T23:30:21.990000Z
var-202510-2358 D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime … 2025-11-19T23:30:21.973000Z
var-202510-2360 D-Link DIR-823G A1 v1.0.2B05 was discovered to contain a buffer overflow in the FillMacCl… 2025-11-19T23:30:21.957000Z
var-202510-3116 Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.N… 2025-11-19T23:30:21.592000Z
var-201110-0491 AUTOMGEN versions up to and including 8.0.0.7 (also referenced as 8.022) contain a vulner… 2025-11-19T23:29:06.140000Z
var-202308-3286 The compare_parentcontrol_time function does not authenticate user input parameters, resu… 2025-11-19T23:28:53.404000Z
var-202508-0672 A vulnerability was identified in Tenda AC15 15.13.07.13. Affected by this vulnerability … 2025-11-19T23:28:49.745000Z
var-202509-1560 A security flaw has been discovered in D-Link DIR-825 up to 2.10. Affected by this vulner… 2025-11-19T23:28:49.514000Z
var-202509-3635 An issue was discovered in Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01 allowing attack… 2025-11-19T23:28:49.422000Z
var-202509-4454 The AC18 is a dual-band wireless router. The AC18 router developed by Shenzhen Jixiang T… 2025-11-19T23:28:49.382000Z
var-202510-0874 A denial-of-service security issue exists in the affected product and version. The securi… 2025-11-19T23:28:49.253000Z
var-202510-0895 D-Link DIR-816A2_FWv1.10CNB05 was discovered to contain a stack overflow via the statusch… 2025-11-19T23:28:49.237000Z
var-202510-2092 When a client SSL profile is configured on a virtual server, undisclosed requests can cau… 2025-11-19T23:28:49.131000Z
var-202510-2218 When IPsec is configured on the BIG-IP system, undisclosed traffic can cause the Traffic … 2025-11-19T23:28:49.059000Z
var-202510-2239 A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557_B20221024. The impacted el… 2025-11-19T23:28:49.042000Z
ID Description Published Updated
jvndb-2015-000033 Vulnerability in the jBCrypt key stretching process 2015-02-27T14:03+09:00 2015-03-03T15:58+09:00
jvndb-2015-000032 checkpw vulnerable to denial-of-service (DoS) 2015-02-27T12:30+09:00 2015-03-03T15:57+09:00
jvndb-2015-000026 SYNCK GRAPHICA Mailform Pro CGI vulnerable to remote code execution 2015-02-25T15:00+09:00 2015-03-02T14:23+09:00
jvndb-2015-000027 Zen Cart Japanese version vulnerable to cross-site scripting 2015-02-25T15:09+09:00 2015-03-02T14:19+09:00
jvndb-2015-001558 Cross-site Scripting Vulnerability in Hitachi IT Operations Analyzer 2015-02-27T15:57+09:00 2015-02-27T15:57+09:00
jvndb-2015-001557 Cross-site Scripting Vulnerability in JP1/IT Desktop Management - Manager and Hitachi IT Operations Director 2015-02-27T15:56+09:00 2015-02-27T15:56+09:00
jvndb-2015-001556 Multiple Cross-site Scripting Vulnerabilities in Hitachi Compute Systems Manager 2015-02-27T15:55+09:00 2015-02-27T15:55+09:00
jvndb-2015-000023 Speed Software Root Explorer and Explorer vulnerable to directory traversal 2015-02-24T14:35+09:00 2015-02-26T17:18+09:00
jvndb-2015-000020 AL-Mail32 vulnerable to directory traversal 2015-02-20T14:37+09:00 2015-02-24T16:38+09:00
jvndb-2015-000021 AL-Mail32 vulnerable to denial-of-service (DoS) 2015-02-20T14:54+09:00 2015-02-24T16:37+09:00
jvndb-2015-000022 AL-Mail32 vulnerable to buffer overflow 2015-02-20T14:55+09:00 2015-02-24T16:36+09:00
jvndb-2015-000010 Fumy News Clipper vulnerable to cross-site scripting 2015-01-30T13:52+09:00 2015-02-16T15:55+09:00
jvndb-2015-000007 Arbitrary files may be overwritten in multiple VMware products 2015-01-29T13:52+09:00 2015-02-16T15:34+09:00
jvndb-2015-000006 SYNCK GRAPHICA Download Log CGI vulnerable to directory traversal 2015-01-19T13:54+09:00 2015-02-13T15:09+09:00
jvndb-2015-000014 PerlTreeBBS vulnerable to cross-site scripting 2015-02-13T13:58+09:00 2015-02-13T13:58+09:00
jvndb-2015-000013 shiromuku(u1)GUESTBOOK vulnerable to cross-site scripting 2015-02-13T13:58+09:00 2015-02-13T13:58+09:00
jvndb-2015-000008 shiromuku(bu2)BBS vulnerable to arbitrary file creation 2015-01-23T14:22+09:00 2015-02-13T09:51+09:00
jvndb-2015-000001 Cybozu Remote Service Manager vulnerable to denial-of-service (DoS) 2015-01-30T14:19+09:00 2015-01-30T14:19+09:00
jvndb-2014-000132 Multiple Allied Telesis products vulnerable to buffer overflow 2014-12-18T14:47+09:00 2015-01-28T17:38+09:00
jvndb-2014-000056 TERASOLUNA Server Framework for Java(Web) vulnerable to ClassLoader manipulation 2014-06-17T15:01+09:00 2015-01-22T15:50+09:00
jvndb-2014-000095 Shutter vulnerable to SQL injection 2014-08-15T13:24+09:00 2015-01-15T17:47+09:00
jvndb-2014-000124 TSUTAYA App for Android vulnerable to arbitrary Java method execution 2014-12-18T13:41+09:00 2014-12-22T17:52+09:00
jvndb-2014-000152 WBS Gantt-Chart for JIRA vulnerable to cross-site scripting 2014-12-18T14:49+09:00 2014-12-22T17:33+09:00
jvndb-2014-000151 WBS Gantt-Chart for JIRA vulnerable to cross-site scripting 2014-12-18T14:48+09:00 2014-12-22T17:30+09:00
jvndb-2014-000143 "File Upload BBS" of i-HTTPD vulnerable to remote command execution 2014-12-09T14:40+09:00 2014-12-16T17:10+09:00
jvndb-2014-000144 i-HTTPD vulnerable to cross-site scripting 2014-12-09T14:41+09:00 2014-12-16T17:09+09:00
jvndb-2014-000134 BSD Operating Systems vulnerable to denial-of-service (DoS) 2014-11-21T14:10+09:00 2014-12-16T17:08+09:00
jvndb-2014-000150 LinPHA vulnerable to cross-site scripting 2014-12-12T13:48+09:00 2014-12-16T17:07+09:00
jvndb-2014-000145 "Omake BBS" of i-HTTPD vulnerable to cross-site scripting 2014-12-09T14:44+09:00 2014-12-15T19:16+09:00
jvndb-2014-000149 Chyrp vulnerable to cross-site scripting 2014-12-10T14:18+09:00 2014-12-15T18:06+09:00
ID Description Updated
ID Description Published Updated
suse-su-2025:20448-1 Security update for kernel-livepatch-MICRO-6-0_Update_2 2025-06-24T14:52:22Z 2025-06-24T14:52:22Z
suse-su-2025:20436-1 Security update for kernel-livepatch-MICRO-6-0_Update_2 2025-06-24T14:52:22Z 2025-06-24T14:52:22Z
suse-su-2025:20435-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_3 2025-06-24T14:48:52Z 2025-06-24T14:48:52Z
suse-su-2025:20451-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_4 2025-06-24T14:48:35Z 2025-06-24T14:48:35Z
suse-su-2025:20434-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_4 2025-06-24T14:48:35Z 2025-06-24T14:48:35Z
suse-su-2025:02096-1 Security update for the Linux Kernel (Live Patch 60 for SLE 12 SP5) 2025-06-24T14:33:45Z 2025-06-24T14:33:45Z
suse-su-2025:02095-1 Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5) 2025-06-24T14:33:39Z 2025-06-24T14:33:39Z
suse-ru-2025:02093-1 Recommended update for podman 2025-06-24T13:45:28Z 2025-06-24T13:45:28Z
suse-ru-2025:02092-1 Recommended update for podman 2025-06-24T13:44:40Z 2025-06-24T13:44:40Z
suse-ru-2025:02091-1 Recommended update for podman 2025-06-24T13:44:12Z 2025-06-24T13:44:12Z
suse-su-2025:02090-1 Security update for the Linux Kernel (Live Patch 65 for SLE 12 SP5) 2025-06-24T12:34:03Z 2025-06-24T12:34:03Z
suse-su-2025:02089-1 Security update for python311 2025-06-24T12:08:17Z 2025-06-24T12:08:17Z
suse-su-2025:02088-1 Security update for webkit2gtk3 2025-06-24T12:06:18Z 2025-06-24T12:06:18Z
suse-su-2025:0063-1 Security update for gstreamer-plugins-good 2025-06-24T12:03:30Z 2025-06-24T12:03:30Z
suse-su-2025:00063-1 Security update for gstreamer-plugins-good 2025-06-24T12:03:30Z 2025-06-24T12:03:30Z
suse-su-2025:02087-1 Security update for the Linux Kernel (Live Patch 64 for SLE 12 SP5) 2025-06-24T11:33:56Z 2025-06-24T11:33:56Z
suse-su-2025:02082-1 Security update for pam-config 2025-06-24T10:28:56Z 2025-06-24T10:28:56Z
suse-su-2025:02081-1 Security update for pam-config 2025-06-24T10:26:44Z 2025-06-24T10:26:44Z
suse-su-2025:02080-1 Security update for pam-config 2025-06-24T10:26:24Z 2025-06-24T10:26:24Z
suse-su-2025:02079-1 Security update for icu 2025-06-24T10:24:22Z 2025-06-24T10:24:22Z
suse-su-2025:02077-1 Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP6) 2025-06-24T09:33:58Z 2025-06-24T09:33:58Z
suse-su-2025:02076-1 Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP6) 2025-06-24T09:33:54Z 2025-06-24T09:33:54Z
suse-su-2025:02075-1 Security update for the Linux Kernel (Live Patch 59 for SLE 12 SP5) 2025-06-24T09:03:59Z 2025-06-24T09:03:59Z
suse-su-2025:20445-1 Security update for python-tornado6 2025-06-24T08:53:22Z 2025-06-24T08:53:22Z
suse-su-2025:02074-1 Security update for python313 2025-06-24T07:26:36Z 2025-06-24T07:26:36Z
suse-su-2025:02073-1 Security update for the Linux Kernel RT (Live Patch 7 for SLE 15 SP6) 2025-06-23T21:20:29Z 2025-06-23T21:20:29Z
suse-su-2025:02072-1 Security update for the Linux Kernel RT (Live Patch 6 for SLE 15 SP6) 2025-06-23T20:03:58Z 2025-06-23T20:03:58Z
suse-su-2025:02071-1 Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6) 2025-06-23T20:03:55Z 2025-06-23T20:03:55Z
suse-su-2025:02070-1 Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP6) 2025-06-23T20:03:51Z 2025-06-23T20:03:51Z
suse-su-2025:02069-1 Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6) 2025-06-23T16:04:03Z 2025-06-23T16:04:03Z
ID Description Published Updated
opensuse-su-2024:14095-1 MozillaThunderbird-115.12.2-1.1 on GA media 2024-07-04T00:00:00Z 2024-07-04T00:00:00Z
opensuse-su-2024:14094-1 python310-yt-dlp-2024.07.01-1.1 on GA media 2024-07-03T00:00:00Z 2024-07-03T00:00:00Z
opensuse-su-2024:14093-1 libpoppler-cpp1-24.07.0-1.1 on GA media 2024-07-03T00:00:00Z 2024-07-03T00:00:00Z
opensuse-su-2024:14092-1 golang-github-prometheus-prometheus-2.53.0-2.1 on GA media 2024-07-03T00:00:00Z 2024-07-03T00:00:00Z
opensuse-su-2024:14091-1 go1.21-1.21.12-1.1 on GA media 2024-07-03T00:00:00Z 2024-07-03T00:00:00Z
opensuse-su-2024:14090-1 ghostscript-10.03.1-1.1 on GA media 2024-07-03T00:00:00Z 2024-07-03T00:00:00Z
opensuse-su-2024:14089-1 python310-PyYAML-6.0.1-4.1 on GA media 2024-07-02T00:00:00Z 2024-07-02T00:00:00Z
opensuse-su-2024:14088-1 openssh-9.6p1-10.1 on GA media 2024-07-02T00:00:00Z 2024-07-02T00:00:00Z
opensuse-su-2024:14087-1 clamav-1.3.1-1.1 on GA media 2024-07-02T00:00:00Z 2024-07-02T00:00:00Z
opensuse-su-2024:14086-1 python310-Js2Py-0.74-3.1 on GA media 2024-07-01T00:00:00Z 2024-07-01T00:00:00Z
opensuse-su-2024:14085-1 fiona-fio-1.9.6-1.1 on GA media 2024-07-01T00:00:00Z 2024-07-01T00:00:00Z
opensuse-su-2024:14084-1 nodejs-electron-29.4.3-1.1 on GA media 2024-07-01T00:00:00Z 2024-07-01T00:00:00Z
opensuse-su-2024:14083-1 python310-3.10.14-3.1 on GA media 2024-06-29T00:00:00Z 2024-06-29T00:00:00Z
opensuse-su-2024:14082-1 python311-3.11.9-3.1 on GA media 2024-06-28T00:00:00Z 2024-06-28T00:00:00Z
opensuse-su-2024:14081-1 containerd-1.7.17-2.1 on GA media 2024-06-28T00:00:00Z 2024-06-28T00:00:00Z
opensuse-su-2024:14080-1 squid-6.10-1.1 on GA media 2024-06-27T00:00:00Z 2024-06-27T00:00:00Z
opensuse-su-2024:14079-1 python39-3.9.19-3.1 on GA media 2024-06-27T00:00:00Z 2024-06-27T00:00:00Z
opensuse-su-2024:14078-1 python38-3.8.19-4.1 on GA media 2024-06-27T00:00:00Z 2024-06-27T00:00:00Z
opensuse-su-2024:14077-1 helmfile-0.166.0-1.1 on GA media 2024-06-27T00:00:00Z 2024-06-27T00:00:00Z
opensuse-su-2024:14076-1 traefik2-2.11.5-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14075-1 ruby3.3-rubygem-sprockets-3.7-3.7.3-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14074-1 ruby3.3-rubygem-rails-7.0-7.0.8.4-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14073-1 ruby3.3-rubygem-http-cookie-1.0.6-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14072-1 ruby3.3-rubygem-fluentd-1.17.0-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14071-1 ruby3.3-rubygem-activesupport-7.0-7.0.8.4-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14070-1 ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14069-1 ruby3.3-rubygem-activerecord-7.0-7.0.8.4-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14068-1 ruby3.3-rubygem-actiontext-7.0-7.0.8.4-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14067-1 ruby3.3-rubygem-actionpack-7.0-7.0.8.4-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14066-1 python310-3.10.14-2.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
ID Description Published Updated
ID Description Published Updated
cnvd-2025-25470 Microsoft Azure Cache for Redis Enterprise权限提升漏洞 2025-10-21 2025-10-28
cnvd-2025-25469 Microsoft 365 Word Copilot欺骗漏洞 2025-10-21 2025-10-28
cnvd-2025-25468 Microsoft 365 Copilot Business Chat欺骗漏洞(CNVD-2025-25468) 2025-10-21 2025-10-28
cnvd-2025-25467 Microsoft 365 Copilot Business Chat欺骗漏洞 2025-10-21 2025-10-28
cnvd-2025-25464 IBM Aspera Faspex存在未明漏洞 2025-10-21 2025-10-28
cnvd-2025-25463 HCL MyXalytics存在未明漏洞 2025-10-21 2025-10-28
cnvd-2025-25481 Google Pixel权限提升漏洞(CNVD-2025-25481) 2025-09-08 2025-10-27
cnvd-2025-25480 Google Pixel权限提升漏洞(CNVD-2025-25480) 2025-09-08 2025-10-27
cnvd-2025-25462 HCL BigFix WebUI存在未明漏洞 2025-10-21 2025-10-27
cnvd-2025-25461 HCL AION信息泄露漏洞(CNVD-2025-25461) 2025-10-21 2025-10-27
cnvd-2025-25460 HCL AION信息泄露漏洞(CNVD-2025-25460) 2025-10-21 2025-10-27
cnvd-2025-25409 HCL AION存在未明漏洞(CNVD-2025-25409) 2025-10-21 2025-10-27
cnvd-2025-25388 HCL AION存在未明漏洞 2025-10-21 2025-10-27
cnvd-2025-25387 HCL AION信息泄露漏洞 2025-10-21 2025-10-27
cnvd-2025-25386 WordPress插件Addison反序列化漏洞 2025-10-24 2025-10-27
cnvd-2025-25385 WordPress插件Acknowledgify缺少授权漏洞 2025-10-24 2025-10-27
cnvd-2025-25384 WordPress插件Accordion缺少授权漏洞 2025-10-24 2025-10-27
cnvd-2025-25383 WordPress插件Academy LMS权限提升漏洞 2025-10-24 2025-10-27
cnvd-2015-06128 赛飞OA管理系统存在通用型任意文件下载漏洞 2015-09-10 2025-10-25
cnvd-2025-25376 Apache Spark加密问题漏洞(CNVD-2025-25376) 2025-10-21 2025-10-24
cnvd-2025-24802 OpenEXR存在未明漏洞(CNVD-2025-24802) 2024-04-10 2025-10-24
cnvd-2025-24799 OpenEXR缓冲区溢出漏洞(CNVD-2025-24799) 2025-08-11 2025-10-24
cnvd-2025-24798 OpenEXR缓冲区溢出漏洞(CNVD-2025-24798) 2025-08-11 2025-10-24
cnvd-2025-24797 OpenEXR代码问题漏洞(CNVD-2025-24797) 2025-08-11 2025-10-24
cnvd-2025-24796 OpenEXR存在未明漏洞(CNVD-2025-24796) 2025-08-11 2025-10-24
cnvd-2025-24795 Mattermost存在未明漏洞(CNVD-2025-24795) 2025-10-21 2025-10-24
cnvd-2025-24794 Fortinet FortiDLP日志信息泄露漏洞 2025-10-21 2025-10-24
cnvd-2025-24792 OpenEXR存在未明漏洞(CNVD-2025-24792) 2025-10-21 2025-10-24
cnvd-2025-24791 OpenEXR存在未明漏洞(CNVD-2025-24791) 2025-10-21 2025-10-24
cnvd-2025-24790 OpenEXR存在未明漏洞(CNVD-2025-24790) 2025-10-21 2025-10-24
ID Description Published Updated
certfr-2024-avi-0328 Vulnérabilité dans Citrix uberAgent 2024-04-19T00:00:00.000000 2024-04-19T00:00:00.000000
certfr-2024-avi-0327 Multiples vulnérabilités dans Microsoft Edge 2024-04-19T00:00:00.000000 2024-04-19T00:00:00.000000
certfr-2024-avi-0326 Multiples vulnérabilités dans Oracle MySQL 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0325 Multiples vulnérabilités dans Oracle PeopleSoft 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0324 Multiples vulnérabilités dans Oracle Systems 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0323 Multiples vulnérabilités dans Oracle Weblogic 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0322 Multiples vulnérabilités dans Oracle Database Server 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0321 Multiples vulnérabilités dans Oracle Java SE 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0320 Multiples vulnérabilités dans Oracle VirtualBox 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0319 Multiples vulnérabilités dans les produits Cisco 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0318 Multiples vulnérabilités dans les produits Mitel 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0317 Vulnérabilité dans Cisco ClamAV 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0316 Vulnérabilité dans les produits Xen 2024-04-18T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0312 Multiples vulnérabilités dans les produits Atlassian 2024-04-17T00:00:00.000000 2024-04-18T00:00:00.000000
certfr-2024-avi-0315 Vulnérabilité dans SolarWinds Serv-U 2024-04-17T00:00:00.000000 2024-04-17T00:00:00.000000
certfr-2024-avi-0314 Multiples vulnérabilités dans Ivanti Avalanche 2024-04-17T00:00:00.000000 2024-04-17T00:00:00.000000
certfr-2024-avi-0313 Multiples vulnérabilités dans Google Chrome 2024-04-17T00:00:00.000000 2024-04-17T00:00:00.000000
certfr-2024-avi-0311 Multiples vulnérabilités dans les produits Mozilla 2024-04-17T00:00:00.000000 2024-04-17T00:00:00.000000
certfr-2024-avi-0310 Vulnérabilité dans les produits Juniper 2024-04-16T00:00:00.000000 2024-04-16T00:00:00.000000
certfr-2024-avi-0309 Vulnérabilité dans Stormshield Network Security 2024-04-16T00:00:00.000000 2024-04-16T00:00:00.000000
certfr-2024-avi-0308 Vulnérabilité dans Stormshield Network Security 2024-04-15T00:00:00.000000 2024-04-15T00:00:00.000000
certfr-2024-avi-0307 Vulnérabilité dans Palo Alto Networks GlobalProtect 2024-04-15T00:00:00.000000 2024-04-15T00:00:00.000000
certfr-2024-avi-0306 Multiples vulnérabilités dans Microsoft Edge 2024-04-15T00:00:00.000000 2024-04-15T00:00:00.000000
certfr-2024-avi-0305 Multiples vulnérabilités dans les produits IBM 2024-04-12T00:00:00.000000 2024-04-12T00:00:00.000000
certfr-2024-avi-0304 Multiples vulnérabilités dans Debian LTS buster 2024-04-12T00:00:00.000000 2024-04-12T00:00:00.000000
certfr-2024-avi-0303 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-04-12T00:00:00.000000 2024-04-12T00:00:00.000000
certfr-2024-avi-0302 Multiples vulnérabilités dans le noyau Linux de RedHat 2024-04-12T00:00:00.000000 2024-04-12T00:00:00.000000
certfr-2024-avi-0301 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-04-12T00:00:00.000000 2024-04-12T00:00:00.000000
certfr-2024-avi-0300 Multiples vulnérabilités dans PHP 2024-04-12T00:00:00.000000 2024-04-12T00:00:00.000000
certfr-2024-avi-0283 Multiples vulnérabilités dans les produits SAP 2024-04-09T00:00:00.000000 2024-04-12T00:00:00.000000
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated