Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2025-67523
9.8 (3.1)
WordPress Exhibz theme <= 3.0.9 - Local File Inclusion… trippleS
 Exhibz
 2025-12-09T14:13:59.287Z 2026-01-20T14:28:25.162Z
CVE-2025-67532
9.8 (3.1)
WordPress Hara theme <= 1.2.17 - Local File Inclusion … thembay
 Hara
 2025-12-09T14:14:03.164Z 2026-01-20T14:28:25.158Z
CVE-2025-67527
9.8 (3.1)
WordPress Digiqole theme < 2.2.7 - Local File Inclusio… trippleS
 Digiqole
 2025-12-09T14:14:00.496Z 2026-01-20T14:28:25.133Z
CVE-2025-67537
6.5 (3.1)
WordPress ThirstyAffiliates plugin <= 3.11.8 - Cross S… Blair Williams
 ThirstyAffiliates
 2025-12-09T14:14:04.310Z 2026-01-20T14:28:25.132Z
CVE-2025-67470
4.3 (3.1)
WordPress Portfolio and Projects plugin <= 1.5.5 - Sen… Essential Plugin
 Portfolio and Projects
 2025-12-09T14:13:56.054Z 2026-01-20T14:28:25.130Z
CVE-2025-67467
4.5 (3.1)
WordPress GiveWP plugin <= 4.13.1 - Cross Site Request… StellarWP
 GiveWP
 2025-12-09T15:03:54.450Z 2026-01-20T14:28:25.119Z
CVE-2025-67522
9.8 (3.1)
WordPress Jobmonster theme <= 4.8.2 - Local File Inclu… NooTheme
 Jobmonster
 2025-12-09T14:13:59.066Z 2026-01-20T14:28:25.110Z
CVE-2025-66533
7.8 (3.1)
WordPress GiveWP plugin <= 4.13.1 - Arbitrary Shortocd… StellarWP
 GiveWP
 2025-12-09T15:03:54.194Z 2026-01-20T14:28:25.106Z
CVE-2025-67531
9.8 (3.1)
WordPress Turitor theme < 1.5.3 - Local File Inclusion… trippleS
 Turitor
 2025-12-09T14:14:01.550Z 2026-01-20T14:28:25.095Z
CVE-2025-67474
4.3 (3.1)
WordPress ForumWP plugin <= 2.1.4 - Broken Access Cont… Ultimate Member
 ForumWP
 2025-12-09T14:13:57.009Z 2026-01-20T14:28:25.033Z
CVE-2025-67521
9.8 (3.1)
WordPress Select Core plugin < 2.6 - Local File Inclus… Select-Themes
 Select Core
 2025-12-09T14:13:58.865Z 2026-01-20T14:28:24.976Z
CVE-2025-67520
9.8 (3.1)
WordPress Media Library Tools plugin <= 1.6.15 - SQL I… Tiny Solutions
 Media Library Tools
 2025-12-09T14:13:58.651Z 2026-01-20T14:28:24.948Z
CVE-2025-67525
9.8 (3.1)
WordPress ekommart theme < 4.3.1 - Local File Inclusio… Opal_WP
 ekommart
 2025-12-09T14:13:59.771Z 2026-01-20T14:28:24.930Z
CVE-2025-67465
8.8 (3.1)
WordPress Simple Link Directory plugin <= 8.8.3 - Cros… QuantumCloud
 Simple Link Directory
 2025-12-09T14:13:55.262Z 2026-01-20T14:28:24.889Z
CVE-2025-66532
8.8 (3.1)
WordPress Powerlift theme < 3.2.1 - Broken Access Cont… Mikado-Themes
 Powerlift
 2025-12-09T14:13:54.794Z 2026-01-20T14:28:24.714Z
CVE-2025-66132
6.5 (3.1)
WordPress FAPI Member plugin <= 2.2.26 - Insecure Dire… FAPI Business s.r.o.
 FAPI Member
 2025-12-16T08:12:54.562Z 2026-01-20T14:28:24.662Z
CVE-2025-66531
8.8 (3.1)
WordPress Salon booking system plugin <= 10.30.3 - Cro… Dimitri Grassi
 Salon booking system
 2025-12-09T14:13:54.558Z 2026-01-20T14:28:24.641Z
CVE-2025-66129
5.3 (3.1)
WordPress Pochipp plugin <= 1.18.0 - Broken Access Con… wppochipp
 Pochipp
 2025-12-16T08:12:53.976Z 2026-01-20T14:28:24.628Z
CVE-2025-66528
8.1 (3.1)
WordPress Thank You Page Customizer for WooCommerce pl… VillaTheme
 Thank You Page Customizer for WooCommerce
 2025-12-09T14:13:53.449Z 2026-01-20T14:28:24.582Z
CVE-2025-66155
5.4 (3.1)
WordPress Questionar for Elementor plugin <= 1.1.7 - B… merkulove
 Questionar for Elementor
 2025-12-31T17:00:37.052Z 2026-01-20T14:28:24.566Z
CVE-2025-66157
5.4 (3.1)
WordPress Slider for Elementor plugin <= 1.0.10 - Brok… merkulove
 Slider for Elementor
 2025-12-31T16:58:24.314Z 2026-01-20T14:28:24.553Z
CVE-2025-66128
5.3 (3.1)
WordPress Sendinblue for WooCommerce plugin <= 4.0.49 … Brevo
 Sendinblue for WooCommerce
 2025-12-16T08:12:53.783Z 2026-01-20T14:28:24.551Z
CVE-2025-66151
5.4 (3.1)
WordPress Countdowner for Elementor plugin <= 1.0.4 - … merkulove
 Countdowner for Elementor
 2025-12-31T18:32:49.483Z 2026-01-20T14:28:24.546Z
CVE-2025-66150
5.4 (3.1)
WordPress Appender plugin <= 1.1.1 - Broken Access Con… merkulove
 Appender
 2025-12-31T18:35:57.735Z 2026-01-20T14:28:24.539Z
CVE-2025-66160
5.4 (3.1)
WordPress Select Graphist for Elementor Graphist for … merkulove
 Select Graphist for Elementor Graphist for Elementor
 2025-12-31T16:50:19.182Z 2026-01-20T14:28:24.538Z
CVE-2025-66530
8.8 (3.1)
WordPress Webba Booking plugin <= 6.2.1 - Broken Acces… Webba Appointment Booking
 Webba Booking
 2025-12-09T14:13:53.897Z 2026-01-20T14:28:24.537Z
CVE-2025-66165
5.4 (3.1)
WordPress Lottier for WPBakery plugin <= 1.1.7 - Broke… merkulove
 Lottier for WPBakery
 2025-12-16T08:12:56.408Z 2026-01-20T14:28:24.537Z
CVE-2025-66131
9.1 (3.1)
WordPress Yaad Sarig Payment Gateway For WC plugin <= … yaadsarig
 Yaad Sarig Payment Gateway For WC
 2025-12-16T08:12:54.364Z 2026-01-20T14:28:24.534Z
CVE-2025-66147
5.4 (3.1)
WordPress Coder for Elementor plugin <= 1.0.13 - Broke… merkulove
 Coder for Elementor
 2025-12-16T08:12:55.284Z 2026-01-20T14:28:24.524Z
CVE-2025-66146
5.4 (3.1)
WordPress Logger for Elementor plugin <= 1.0.9 - Broke… merkulove
 Logger for Elementor
 2025-12-31T19:50:21.260Z 2026-01-20T14:28:24.515Z
ID CVSS Description Vendor Product Published Updated
CVE-2025-68616
7.5 (3.1)
WeasyPrint Vulnerable to Server-Side Request Forgery (… Kozea
 WeasyPrint
 2026-01-19T15:20:23.702Z 2026-01-20T15:42:46.352Z
CVE-2025-64155
9.4 (3.1)
An improper neutralization of special elements us… Fortinet
 FortiSIEM
 2026-01-13T16:32:28.665Z 2026-01-20T15:53:24.312Z
CVE-2025-59355
N/A
Apache Linkis: Password Exposure Apache Software Foundation
 Apache Linkis
 2026-01-19T08:37:24.364Z 2026-01-20T15:07:22.356Z
CVE-2025-36419
5.3 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:53:37.574Z 2026-01-20T16:07:57.795Z
CVE-2025-36418
7.3 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:50:40.562Z 2026-01-20T16:09:43.989Z
CVE-2025-36411
3.5 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:43:07.492Z 2026-01-20T16:04:55.158Z
CVE-2025-36410
3.1 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:39:53.965Z 2026-01-20T16:41:07.252Z
CVE-2025-36409
5.4 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:37:56.120Z 2026-01-20T16:38:27.452Z
CVE-2025-36408
6.4 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:33:59.216Z 2026-01-20T16:35:00.739Z
CVE-2025-36397
5.4 (3.1)
Security vulnerabilities have been found in IBM Applic… IBM
 Application Gateway
 2026-01-20T15:23:30.652Z 2026-01-20T15:47:24.284Z
CVE-2025-36396
5.4 (3.1)
Security vulnerabilities have been found in IBM Applic… IBM
 Application Gateway
 2026-01-20T15:22:11.780Z 2026-01-20T15:48:51.751Z
CVE-2025-36115
6.3 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:18:17.680Z 2026-01-20T15:51:47.539Z
CVE-2025-36113
5.4 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:15:55.890Z 2026-01-20T15:34:16.414Z
CVE-2025-36066
6.1 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:14:03.557Z 2026-01-20T15:36:00.574Z
CVE-2025-36065
6.3 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:12:47.078Z 2026-01-20T15:38:07.346Z
CVE-2025-36063
6.3 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:10:57.747Z 2026-01-20T15:39:45.384Z
CVE-2025-36059
4.7 (3.1)
Multiple security vulnerabilities are addressed in IBM… IBM
 Business Automation Workflow containers
 2026-01-20T15:07:46.448Z 2026-01-20T15:54:41.357Z
CVE-2025-36058
5.5 (3.1)
Multiple security vulnerabilities are addressed in IBM… IBM
 Business Automation Workflow containers
 2026-01-20T15:09:07.082Z 2026-01-20T15:53:20.326Z
CVE-2025-33015
8.8 (3.1)
Multiple Vulnerabilities in IBM Concert Software IBM
 Concert
 2026-01-20T15:04:21.300Z 2026-01-21T04:55:23.857Z
CVE-2025-29847
N/A
Apache Linkis: Arbitrary File Read via Double URL Enco… Apache Software Foundation
 Apache Linkis
 2026-01-19T08:36:06.839Z 2026-01-20T15:12:04.287Z
CVE-2025-14883
N/A
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-68016. Reason: This candidate is a reservation duplicate of CVE-2025-68016. Notes: All CVE users should reference CVE-2025-68016 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. N/A N/A 2026-01-20T15:07:10.646Z
CVE-2025-0647
7.9 (3.1)
In certain Arm CPUs, a CPP RCTX instruction execu… Arm
 Neoverse-N2
 2026-01-14T10:58:44.342Z 2026-01-20T15:21:14.551Z
CVE-2011-10041
9.3 (4.0)
Uploadify <= 1.0 Unauthenticated Arbitrary File Upload Steven
 Uploadify
 2026-01-15T21:44:33.566Z 2026-01-20T15:56:51.308Z
CVE-2025-61674
6.1 (3.1)
October CMS Vulnerable to Stored XSS via Editor and Br… octobercms
 october
 2026-01-10T03:14:11.185Z 2026-01-12T17:33:33.662Z
CVE-2025-61676
6.1 (3.1)
October CMS Vulnerable to Stored XSS via Branding Styles octobercms
 october
 2026-01-10T03:14:00.708Z 2026-01-12T17:34:13.595Z
CVE-2022-50441
N/A
net/mlx5: Lag, fix failure to cancel delayed bond work Linux
 Linux
 2025-10-01T11:42:17.313Z 2025-10-01T11:42:17.313Z
CVE-2022-50442
N/A
fs/ntfs3: Validate buffer length while parsing index Linux
 Linux
 2025-10-01T11:42:18.012Z 2025-10-02T07:04:16.226Z
CVE-2026-21881
9.1 (3.1)
Kanboard is Vulnerable to Reverse Proxy Authentication… kanboard
 kanboard
 2026-01-08T01:08:01.853Z 2026-01-08T17:13:05.216Z
CVE-2023-53464
N/A
scsi: iscsi_tcp: Check that sock is valid before iscsi… Linux
 Linux
 2025-10-01T11:42:35.186Z 2025-10-01T11:42:35.186Z
CVE-2023-53465
N/A
soundwire: qcom: fix storing port config out-of-bounds Linux
 Linux
 2025-10-01T11:42:36.007Z 2025-10-01T11:42:36.007Z
ID Description Published Updated
fkie_cve-2025-68616 WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side reque… 2026-01-19T16:15:53.573 2026-01-20T16:16:06.643
fkie_cve-2025-64155 An improper neutralization of special elements used in an os command ('os command injection') vulne… 2026-01-13T17:15:58.440 2026-01-20T16:16:06.200
fkie_cve-2025-59355 A vulnerability. When org.apache.linkis.metadata.util.HiveUtils.decode() fails to perform Base64 d… 2026-01-19T09:16:02.107 2026-01-20T16:16:05.847
fkie_cve-2025-36419 IBM ApplinX 11.1 could disclose sensitive information about server architecture that could aid in f… 2026-01-20T16:16:04.960 2026-01-20T16:16:04.960
fkie_cve-2025-36418 IBM ApplinX 11.1 is vulnerable due to a privilege escalation vulnerability due to improper verifica… 2026-01-20T16:16:04.790 2026-01-20T16:16:04.790
fkie_cve-2025-36411 IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execu… 2026-01-20T16:16:04.637 2026-01-20T16:16:04.637
fkie_cve-2025-36410 IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions o… 2026-01-20T16:16:04.487 2026-01-20T16:16:04.487
fkie_cve-2025-36409 IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated … 2026-01-20T16:16:04.343 2026-01-20T16:16:04.343
fkie_cve-2025-36408 IBM ApplinX 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows an authent… 2026-01-20T16:16:04.183 2026-01-20T16:16:04.183
fkie_cve-2025-36397 IBM Application Gateway 23.10 through 25.09 is vulnerable to HTML injection. A remote attacker coul… 2026-01-20T16:16:04.030 2026-01-20T16:16:04.030
fkie_cve-2025-36396 IBM Application Gateway 23.10 through 25.09 is vulnerable to cross-site scripting. This vulnerabili… 2026-01-20T16:16:03.873 2026-01-20T16:16:03.873
fkie_cve-2025-36115 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0.00 through 5.2.0.12 does not… 2026-01-20T16:16:03.703 2026-01-20T16:16:03.703
fkie_cve-2025-36113 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 is… 2026-01-20T16:16:03.543 2026-01-20T16:16:03.543
fkie_cve-2025-36066 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 is… 2026-01-20T16:16:03.383 2026-01-20T16:16:03.383
fkie_cve-2025-36065 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 do… 2026-01-20T16:16:03.230 2026-01-20T16:16:03.230
fkie_cve-2025-36063 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 do… 2026-01-20T16:16:03.080 2026-01-20T16:16:03.080
fkie_cve-2025-36059 IBM Business Automation Workflow containers 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 2… 2026-01-20T16:16:02.920 2026-01-20T16:16:02.920
fkie_cve-2025-36058 IBM Business Automation Workflow containers 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 2… 2026-01-20T16:16:02.743 2026-01-20T16:16:02.743
fkie_cve-2025-33015 IBM Concert 1.0.0 through 2.1.0 is vulnerable to malicious file upload by not validating the conten… 2026-01-20T16:16:02.580 2026-01-20T16:16:02.580
fkie_cve-2025-29847 A vulnerability in Apache Linkis. Problem Description When using the JDBC engine and da When using… 2026-01-19T09:16:01.237 2026-01-20T16:16:02.410
fkie_cve-2025-14883 Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-68016. Reason:… 2026-01-20T16:16:01.980 2026-01-20T16:16:01.980
fkie_cve-2025-0647 In certain Arm CPUs, a CPP RCTX instruction executed on one Processing Element (PE) may inhibit TLB… 2026-01-14T11:15:50.027 2026-01-20T16:16:01.393
fkie_cve-2011-10041 Uploadify WordPress plugin versions up to and including 1.0 contain an arbitrary file upload vulner… 2026-01-15T22:16:08.927 2026-01-20T16:16:00.930
fkie_cve-2025-61674 October is a Content Management System (CMS) and web platform. Prior to versions 3.7.13 and 4.0.12,… 2026-01-10T04:16:00.680 2026-01-20T16:06:07.560
fkie_cve-2025-61676 October is a Content Management System (CMS) and web platform. Prior to versions 3.7.13 and 4.0.12,… 2026-01-10T04:16:00.850 2026-01-20T16:05:36.343
fkie_cve-2022-50441 In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Lag, fix failure to … 2025-10-01T12:15:36.300 2026-01-20T16:00:08.017
fkie_cve-2022-50442 In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate buffer leng… 2025-10-01T12:15:36.433 2026-01-20T15:58:51.973
fkie_cve-2026-21881 Kanboard is project management software focused on Kanban methodology. Versions 1.2.48 and below is… 2026-01-08T02:15:53.803 2026-01-20T15:57:22.667
fkie_cve-2023-53464 In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi_tcp: Check that so… 2025-10-01T12:15:48.267 2026-01-20T15:56:33.927
fkie_cve-2023-53465 In the Linux kernel, the following vulnerability has been resolved: soundwire: qcom: fix storing p… 2025-10-01T12:15:48.407 2026-01-20T15:54:17.843
ID Severity Description Published Updated
ghsa-56gc-5jpx-35jv
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-3xc3-wg4j-v425
7.2 (3.1)
Incorrect Privilege Assignment vulnerability in WPXPO PostX ultimate-post allows Privilege Escalati… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-3x9f-jx2x-rgjh
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-2ffc-fhcm-rq53
6.5 (3.1)
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Rom… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-26hr-x62r-xc25
6.5 (3.1)
Missing Authorization vulnerability in miniOrange miniOrange's Google Authenticator miniorange-2-fa… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-xm4g-rv38-63j8
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:20Z
ghsa-x45x-35m6-q633
8.6 (3.1)
Missing Authorization vulnerability in Tyler Moore Super Blank super-blank allows Exploiting Incorr… 2025-12-18T09:30:26Z 2026-01-20T15:32:20Z
ghsa-vqf5-665x-v348
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:20Z
ghsa-mx84-vj9p-47h4
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:20Z
ghsa-mmh9-ccpx-xx5x
9.8 (3.1)
Deserialization of Untrusted Data vulnerability in BoldThemes DentiCare denticare allows Object Inj… 2025-12-18T09:30:26Z 2026-01-20T15:32:20Z
ghsa-m9vg-3465-4f8h
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:20Z
ghsa-m4g6-pfwj-xjr9
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:20Z
ghsa-667v-f7wc-pcmj
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:20Z
ghsa-2jmv-v5xf-w928
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:20Z
ghsa-wqc3-5cp9-9p83
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-w4q8-9gr4-89rv
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:19Z
ghsa-rr4p-mrvx-m8qc
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-qmvx-qwj7-2jmf
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-q85x-h82x-c8cg
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-px4h-6x2v-vm6j
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-mfwj-8pw5-642f
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-9vgm-3f3w-c7rw
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-938w-hj6v-r8wq
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-8mrw-8xv9-5fhf
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-8jj5-5wqc-h9g2
9.8 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-7vhf-r2mp-6c2q
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-72h9-2q64-87rc
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:19Z
ghsa-x92w-9xj8-2283
5.4 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in SEMrush CY LTD Semrush Content Toolkit semrush-c… 2025-12-16T09:31:10Z 2026-01-20T15:32:18Z
ghsa-wrx6-q42m-ggpp
6.5 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-16T09:31:10Z 2026-01-20T15:32:18Z
ghsa-wrpg-rcg3-gqvp
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:24Z 2026-01-20T15:32:18Z
ID Severity Description Package Published Updated
pysec-2021-329
An issue was discovered in the routes middleware in OpenStack Neutron before 16.4.1, 17.x… neutron 2021-09-08T20:15:00Z 2021-09-23T00:11:02.378195Z
pysec-2021-328
mitmproxy is an interactive, SSL/TLS-capable intercepting proxy. In mitmproxy 7.0.2 and b… mitmproxy 2021-09-16T15:15:00Z 2021-09-23T00:11:00.900340Z
pysec-2021-327
Apprise is an open source library which allows you to send a notification to almost all o… apprise 2021-09-20T22:15:00Z 2021-09-23T00:10:35.209283Z
pysec-2021-326
The variable import endpoint was not protected by authentication in Airflow >=2.0.0, <2.1… apache-airflow 2021-09-09T15:15:00Z 2021-09-21T14:26:17.443988Z
pysec-2021-325
Flask-RESTX (pypi package flask-restx) is a community driven fork of Flask-RESTPlus. Flas… flask-restx 2021-09-20T18:15:00Z 2021-09-20T20:31:06.092661Z
pysec-2021-324
An issue was discovered in LIEF through 0.11.4. A heap-buffer-overflow exists in the func… lief 2021-09-20T16:15:00Z 2021-09-20T18:35:23.431537Z
pysec-2021-323
Products.isurlinportal is a replacement for isURLInPortal method in Plone. Versions of Pr… products-isurlinportal 2021-08-02T19:15:00Z 2021-09-20T14:26:43.785985Z
pysec-2021-322
Wasmtime is an open source runtime for WebAssembly & WASI. Wasmtime before version 0.30.0… wasmtime 2021-09-17T20:15:00Z 2021-09-17T22:30:49.947373Z
pysec-2021-321
Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.26.… wasmtime 2021-09-17T21:15:00Z 2021-09-17T22:30:49.898970Z
pysec-2021-320
Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.19.… wasmtime 2021-09-17T20:15:00Z 2021-09-17T22:30:49.852358Z
pysec-2021-319
An issue was discovered in views/list.py in GNU Mailman Postorius before 1.3.5. An attack… postorius 2021-09-10T19:15:00Z 2021-09-10T20:31:12.904905Z
pysec-2021-317
The package pillow from 0 and before 8.3.2 are vulnerable to Regular Expression Denial of… pillow 2021-09-03T16:15:00Z 2021-09-03T18:35:52.828411Z
pysec-2019-201
Roundup 1.6 allows XSS via the URI because frontends/roundup.cgi and roundup/cgi/wsgi_han… roundup 2019-04-06T20:29:00Z 2021-09-02T01:11:35.189013Z
pysec-2020-224
An information disclosure issue was found in Apache Superset 0.34.0, 0.34.1, 0.35.0, and … apache-superset 2020-01-28T01:15:00Z 2021-09-02T01:10:59.006282Z
pysec-2021-371
BinderHub is a kubernetes-based cloud service that allows users to share reproducible int… binderhub 2021-08-25T19:15:00Z 2021-09-01T12:23:00Z
pysec-2014-51
Zope before 2.13.19, as used in Plone before 4.2.3 and 4.3 before beta 1, does not reseed… plone 2014-11-03T22:55:00Z 2021-09-01T08:44:31.427296Z
pysec-2014-50
The error pages in Plone before 4.2.3 and 4.3 before beta 1 allow remote attackers to obt… plone 2014-11-03T22:55:00Z 2021-09-01T08:44:31.321280Z
pysec-2014-49
AccessControl/AuthEncoding.py in Zope before 2.13.19, as used in Plone before 4.2.3 and 4… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:31.212307Z
pysec-2014-48
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to … plone 2014-09-30T14:55:00Z 2021-09-01T08:44:31.097145Z
pysec-2014-47
atat.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to read priva… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:30.978910Z
pysec-2014-46
Cross-site scripting (XSS) vulnerability in widget_traversal.py in Plone before 4.2.3 and… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:30.873895Z
pysec-2014-45
ftp.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to read hidden… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:30.766279Z
pysec-2014-44
Cross-site scripting (XSS) vulnerability in safe_html.py in Plone before 4.2.3 and 4.3 be… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:30.658658Z
pysec-2014-43
at_download.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to rea… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:30.552304Z
pysec-2014-42
The batch id change script (renameObjectsByPaths.py) in Plone before 4.2.3 and 4.3 before… plone 2014-11-03T22:55:00Z 2021-09-01T08:44:30.447394Z
pysec-2014-41
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to … plone 2014-09-30T14:55:00Z 2021-09-01T08:44:30.342149Z
pysec-2014-40
queryCatalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to by… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:30.217052Z
pysec-2014-39
membership_tool.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:30.107520Z
pysec-2014-37
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to … plone 2014-09-30T14:55:00Z 2021-09-01T08:44:29.952455Z
pysec-2014-36
Cross-site scripting (XSS) vulnerability in python_scripts.py in Plone before 4.2.3 and 4… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:29.835907Z
ID Description Type
ID Description Updated
gsd-2024-3736 A vulnerability was found in cym1102 nginxWebUI up to 3.9.9. It has been declared as prob… 2024-04-13T05:02:35.634751Z
gsd-2024-3755 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.633219Z
gsd-2024-3739 A vulnerability classified as critical was found in cym1102 nginxWebUI up to 3.9.9. This … 2024-04-13T05:02:35.630864Z
gsd-2024-3694 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.609033Z
gsd-2024-3699 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.607453Z
gsd-2024-3742 Electrolink transmitters store credentials in clear-text. Use of these credentials could… 2024-04-13T05:02:35.605193Z
gsd-2024-3724 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.603066Z
gsd-2024-3695 A vulnerability has been found in SourceCodester Computer Laboratory Management System 1.… 2024-04-13T05:02:35.602372Z
gsd-2024-3752 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.596882Z
gsd-2024-3689 A vulnerability classified as problematic has been found in Zhejiang Land Zongheng Networ… 2024-04-13T05:02:35.586853Z
gsd-2024-26024 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.554681Z
gsd-2024-28042 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:33.649306Z
gsd-2024-32460 FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clie… 2024-04-13T05:02:29.149963Z
gsd-2024-32390 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.149768Z
gsd-2024-32254 Phpgurukul Tourism Management System v2.0 is vulnerable to Unrestricted Upload of File wi… 2024-04-13T05:02:29.149562Z
gsd-2024-32337 A cross-site scripting (XSS) vulnerability in the Settings section of WonderCMS v3.4.3 al… 2024-04-13T05:02:29.149300Z
gsd-2024-32413 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.148134Z
gsd-2024-32296 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.147932Z
gsd-2024-32386 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.147349Z
gsd-2024-32264 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.147153Z
gsd-2024-32409 An issue in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code via a crafted… 2024-04-13T05:02:29.146952Z
gsd-2024-32305 Tenda A18 v15.03.05.05 firmware has a stack overflow vulnerability located via the PPW pa… 2024-04-13T05:02:29.146740Z
gsd-2024-32339 Multiple cross-site scripting (XSS) vulnerabilities in the HOW TO page of WonderCMS v3.4.… 2024-04-13T05:02:29.145989Z
gsd-2024-32258 The network server of fceux 2.7.0 has a path traversal vulnerability, allowing attackers … 2024-04-13T05:02:29.145748Z
gsd-2024-32177 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.145555Z
gsd-2024-32405 Cross Site Scripting vulnerability in inducer relate before v.2024.1 allows a remote atta… 2024-04-13T05:02:29.145359Z
gsd-2024-32431 Deserialization of Untrusted Data vulnerability in WP All Import Import Users from CSV.Th… 2024-04-13T05:02:29.144043Z
gsd-2024-32365 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.143271Z
gsd-2024-32381 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.142821Z
gsd-2024-32180 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.142032Z
ID Description Published Updated
mal-2025-937 Malicious code in jamasp (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-936 Malicious code in intgraphx (PyPI) 2024-12-05T23:17:00Z 2025-12-11T09:27:53Z
mal-2025-934 Malicious code in huggingleg2 (PyPI) 2024-12-04T06:28:49Z 2025-12-11T09:27:53Z
mal-2025-933 Malicious code in httpfluent (PyPI) 2024-12-14T16:26:57Z 2025-12-11T09:27:53Z
mal-2025-931 Malicious code in graphicsx (PyPI) 2024-12-05T23:17:00Z 2025-12-11T09:27:53Z
mal-2025-930 Malicious code in goftvagoo (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-929 Malicious code in gmacpyutil (PyPI) 2024-09-06T11:29:16Z 2025-12-11T09:27:53Z
mal-2025-928 Malicious code in gandon-pidar1 (PyPI) 2024-08-05T22:25:51Z 2025-12-11T09:27:53Z
mal-2025-927 Malicious code in foop (PyPI) 2024-12-01T16:23:40Z 2025-12-11T09:27:53Z
mal-2025-925 Malicious code in fkask (PyPI) 2024-12-24T18:09:49Z 2025-12-11T09:27:53Z
mal-2025-922 Malicious code in falask (PyPI) 2024-12-24T18:09:49Z 2025-12-11T09:27:53Z
mal-2025-6580 Malicious code in rwimodeling (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-6578 Malicious code in robloxextra (PyPI) 2025-06-09T10:14:40Z 2025-12-11T09:27:53Z
mal-2025-6571 Malicious code in pypiion (PyPI) 2025-07-04T09:57:46Z 2025-12-11T09:27:53Z
mal-2025-6570 Malicious code in pyobfuscation (PyPI) 2025-06-03T19:02:52Z 2025-12-11T09:27:53Z
mal-2025-6569 Malicious code in puregram (PyPI) 2025-07-11T22:50:30Z 2025-12-11T09:27:53Z
mal-2025-6565 Malicious code in pipmodule83 (PyPI) 2025-07-05T11:05:55Z 2025-12-11T09:27:53Z
mal-2025-6564 Malicious code in pipmodule823 (PyPI) 2025-07-05T11:05:55Z 2025-12-11T09:27:53Z
mal-2025-6558 Malicious code in node-db-indicator (PyPI) 2025-07-11T10:01:11Z 2025-12-11T09:27:53Z
mal-2025-6552 Malicious code in my-fun-tools (PyPI) 2025-06-09T11:26:07Z 2025-12-11T09:27:53Z
mal-2025-6551 Malicious code in murkh1111 (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-6549 Malicious code in memtools (PyPI) 2025-07-16T19:47:30Z 2025-12-11T09:27:53Z
mal-2025-6548 Malicious code in memorylib (PyPI) 2025-07-16T19:47:52Z 2025-12-11T09:27:53Z
mal-2025-6547 Malicious code in memlib (PyPI) 2025-07-16T19:46:02Z 2025-12-11T09:27:53Z
mal-2025-6545 Malicious code in managment (PyPI) 2025-06-28T09:28:42Z 2025-12-11T09:27:53Z
mal-2025-6544 Malicious code in malipkghehe (PyPI) 2025-07-04T09:57:46Z 2025-12-11T09:27:53Z
mal-2025-6543 Malicious code in malimalooo (PyPI) 2025-07-04T11:41:06Z 2025-12-11T09:27:53Z
mal-2025-6542 Malicious code in malimaloo (PyPI) 2025-07-04T11:41:06Z 2025-12-11T09:27:53Z
mal-2025-6541 Malicious code in malimalo (PyPI) 2025-07-04T11:41:06Z 2025-12-11T09:27:53Z
mal-2025-6540 Malicious code in mainx (PyPI) 2025-06-24T15:56:56Z 2025-12-11T09:27:53Z
ID Description Published Updated
wid-sec-w-2023-0209 Red Hat Integration Camel Extensions for Quarkus: Mehrere Schwachstellen ermöglichen Denial of Service 2023-01-26T23:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2023-0086 Keycloak: Mehrere Schwachstellen 2023-01-12T23:00:00.000+00:00 2025-09-21T22:00:00.000+00:00
wid-sec-w-2025-2094 Ubuntu Linux: Schwachstelle ermöglicht Denial of Service oder Codeausführung 2025-09-18T22:00:00.000+00:00 2025-09-18T22:00:00.000+00:00
wid-sec-w-2025-2093 Microsoft Windows und Windows Server: Mehrere Schwachstellen ermöglichen Privilegieneskalation 2025-09-18T22:00:00.000+00:00 2025-09-18T22:00:00.000+00:00
wid-sec-w-2025-2091 Wind River VxWorks: Schwachstelle ermöglicht nicht näher spezifizierten Angriff 2025-09-18T22:00:00.000+00:00 2025-09-18T22:00:00.000+00:00
wid-sec-w-2025-2088 SOS GmbH JobScheduler: Mehrere Schwachstellen 2025-09-18T22:00:00.000+00:00 2025-09-18T22:00:00.000+00:00
wid-sec-w-2025-1029 Intel Graphics Driver: Mehrere Schwachstellen 2025-05-13T22:00:00.000+00:00 2025-09-18T22:00:00.000+00:00
wid-sec-w-2025-2084 Aruba ClearPass Policy Manager: Schwachstelle ermöglicht Cross Site Scripting 2025-09-17T22:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2025-2079 JetBrains TeamCity: Mehrere Schwachstellen 2025-09-16T22:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2025-2076 Liferay Portal: Mehrere Schwachstellen 2025-09-16T22:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2025-2068 Aruba EdgeConnect: Mehrere Schwachstellen 2025-09-16T22:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2025-1158 Google Chrome / Microsoft Edge: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2025-05-27T22:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2025-0675 Mozilla Firefox und Thunderbird: Mehrere Schwachstellen 2025-04-01T22:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2025-0262 Mozilla Firefox und Thunderbird: Mehrere Schwachstellen 2025-02-04T23:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2025-0026 Mozilla Firefox, Firefox ESR und Thunderbird: Mehrere Schwachstellen 2025-01-07T23:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2024-3549 Mozilla Firefox und Thunderbird: Mehrere Schwachstellen 2024-11-26T23:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2023-0847 Nextcloud: Mehrere Schwachstellen ermöglichen Manipulation von Dateien 2023-04-04T22:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2023-0345 Red Hat Update Infrastructure (RHUI): Mehrere Schwachstellen 2023-02-13T23:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2022-2183 Nextcloud: Mehrere Schwachstellen 2022-11-27T23:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2022-2008 GNU libc: mehrere Schwachstellen 2017-02-14T23:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2022-1206 GNU libc: Mehrere Schwachstellen 2022-01-24T23:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2022-0847 Red Hat Enterprise Linux (Django): Schwachstelle ermöglicht Manipulation von Dateien 2022-07-27T22:00:00.000+00:00 2025-09-17T22:00:00.000+00:00
wid-sec-w-2025-2072 IBM App Connect Enterprise: Schwachstelle ermöglicht Denial of Service 2025-09-16T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2025-2070 Mattermost: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2025-09-16T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2025-2069 Microsoft Edge (Android): Schwachstelle ermöglicht Darstellen falscher Informationen 2025-09-16T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2025-2067 JasPer: Schwachstelle ermöglicht Codeausführung 2025-09-16T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2025-2066 Autodesk AutoCAD: Mehrere Schwachstellen ermöglichen Codeausführung 2025-09-16T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2025-2065 IBM AIX: Schwachstelle ermöglicht ermöglicht Privilegieneskalation 2025-09-16T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2025-2062 TYPO3 Extension: Mehrere Schwachstellen 2025-09-15T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2025-2061 Apple iOS und iPadOS: Mehrere Schwachstellen 2025-09-15T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
rhsa-2025:10031 Red Hat Security Advisory: python3.12 security update 2025-07-01T13:23:58+00:00 2026-01-22T04:42:55+00:00
rhsa-2024:2570 Red Hat Security Advisory: gnutls security update 2024-04-30T13:43:46+00:00 2026-01-22T04:42:54+00:00
rhsa-2024:1879 Red Hat Security Advisory: gnutls security update 2024-04-18T02:25:53+00:00 2026-01-22T04:42:52+00:00
rhsa-2024:2889 Red Hat Security Advisory: gnutls security update 2024-05-16T18:20:27+00:00 2026-01-22T04:42:48+00:00
rhsa-2024:0944 Red Hat Security Advisory: OpenShift Container Platform 4.14.14 packages and security update 2024-02-28T00:38:33+00:00 2026-01-22T04:42:47+00:00
rhsa-2024:7599 Red Hat Security Advisory: OpenShift Container Platform 4.16.16 bug fix and security update 2024-10-09T05:32:16+00:00 2026-01-22T04:42:46+00:00
rhsa-2024:0746 Red Hat Security Advisory: new container image: rhceph-5.3 2024-02-08T16:49:55+00:00 2026-01-22T04:40:43+00:00
rhsa-2024:0293 Red Hat Security Advisory: OpenShift Container Platform 4.14.10 packages and security update 2024-01-23T20:42:27+00:00 2026-01-22T04:40:34+00:00
rhsa-2023:7202 Red Hat Security Advisory: container-tools:4.0 security and bug fix update 2023-11-14T17:01:00+00:00 2026-01-22T04:39:44+00:00
rhsa-2023:6420 Red Hat Security Advisory: grafana security and enhancement update 2023-11-07T08:59:06+00:00 2026-01-22T04:39:14+00:00
rhsa-2023:3205 Red Hat Security Advisory: OpenShift Virtualization 4.13.0 Images security, bug fix, and enhancement update 2023-05-18T02:55:08+00:00 2026-01-22T04:35:30+00:00
rhsa-2023:3204 Red Hat Security Advisory: OpenShift Virtualization 4.13.0 RPMs security and bug fix update 2023-05-18T00:39:12+00:00 2026-01-22T04:35:27+00:00
rhsa-2023:2802 Red Hat Security Advisory: container-tools:4.0 security and bug fix update 2023-05-16T08:59:44+00:00 2026-01-22T04:35:26+00:00
rhsa-2023:2866 Red Hat Security Advisory: git-lfs security and bug fix update 2023-05-16T08:31:11+00:00 2026-01-22T04:35:25+00:00
rhsa-2023:2728 Red Hat Security Advisory: Red Hat OpenShift Distributed Tracing 2.8.0 security update 2023-05-10T18:57:18+00:00 2026-01-22T04:35:24+00:00
rhsa-2023:2780 Red Hat Security Advisory: Image Builder security, bug fix, and enhancement update 2023-05-16T08:57:22+00:00 2026-01-22T04:35:19+00:00
rhsa-2023:2357 Red Hat Security Advisory: git-lfs security and bug fix update 2023-05-09T10:03:05+00:00 2026-01-22T04:35:19+00:00
rhsa-2023:2236 Red Hat Security Advisory: toolbox security and bug fix update 2023-05-09T10:03:47+00:00 2026-01-22T04:35:16+00:00
rhsa-2023:2222 Red Hat Security Advisory: conmon security and bug fix update 2023-05-09T10:10:29+00:00 2026-01-22T04:35:15+00:00
rhsa-2023:2204 Red Hat Security Advisory: Image Builder security, bug fix, and enhancement update 2023-05-09T10:11:21+00:00 2026-01-22T04:35:13+00:00
rhsa-2023:1817 Red Hat Security Advisory: Network observability 1.2.0 for Openshift 2023-04-18T01:01:18+00:00 2026-01-22T04:35:09+00:00
rhsa-2023:1816 Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.12.2 Bug Fix and security update 2023-04-17T22:34:01+00:00 2026-01-22T04:35:09+00:00
rhsa-2023:1448 Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.3.2 security update 2023-03-23T17:47:08+00:00 2026-01-22T04:35:07+00:00
rhsa-2023:1329 Red Hat Security Advisory: OpenShift Container Platform 4.13.0 bug fix and security update 2023-05-18T00:39:29+00:00 2026-01-22T04:35:06+00:00
rhsa-2023:1327 Red Hat Security Advisory: OpenShift Container Platform 4.13.0 security update 2023-05-17T01:38:56+00:00 2026-01-22T04:35:04+00:00
rhsa-2023:1310 Red Hat Security Advisory: Logging Subsystem for Red Hat OpenShift - 5.5.9 security update 2023-03-29T10:29:10+00:00 2026-01-22T04:35:00+00:00
rhsa-2023:1276 Red Hat Security Advisory: Red Hat OpenStack Platform (collectd-libpod-stats) security update 2023-03-15T19:58:16+00:00 2026-01-22T04:34:59+00:00
rhsa-2023:1268 Red Hat Security Advisory: OpenShift Container Platform 4.12.8 security update 2023-03-21T14:50:04+00:00 2026-01-22T04:34:59+00:00
rhsa-2023:1181 Red Hat Security Advisory: Release of OpenShift Serverless 1.27.1 2023-03-09T16:23:44+00:00 2026-01-22T04:34:57+00:00
rhsa-2023:1179 Red Hat Security Advisory: Release of OpenShift Serverless Client kn 1.27.1 2023-03-09T13:46:17+00:00 2026-01-22T04:34:55+00:00
ID Description Published Updated
icsa-23-145-01 Moxa MXsecurity Series 2023-05-31T20:26:29.755020Z 2023-05-31T20:26:29.755020Z
icsa-23-143-04 Horner Automation Cscape 2023-05-31T20:26:29.732849Z 2023-05-31T20:26:29.732849Z
icsa-23-150-01 Advantech WebAccess/SCADA 2023-05-25T06:00:00.000000Z 2023-05-25T06:00:00.000000Z
icsa-23-138-04 Johnson Controls OpenBlue Enterprise Manager Data Collector 2023-05-22T14:17:19.565087Z 2023-05-22T14:17:19.565087Z
icsa-23-138-01 Carlo Gavazzi Powersoft 2023-05-18T19:01:59.436599Z 2023-05-18T19:01:59.436599Z
icsa-23-136-02 Rockwell ArmorStart 2023-05-18T19:01:59.428226Z 2023-05-18T19:01:59.428226Z
icsa-23-138-03 Hitachi Energy’s MicroSCADA Pro/X SYS600 Products 2023-05-18T19:01:59.415885Z 2023-05-18T19:01:59.415885Z
icsa-23-136-03 Rockwell Automation FactoryTalk Vantagepoint 2023-05-16T19:48:44.881188Z 2023-05-16T19:48:44.881188Z
icsa-23-131-12 SDG PnPSCADA 2023-05-12T18:09:09.435069Z 2023-05-12T18:09:09.435069Z
icsa-23-131-13 PTC Vuforia Studio 2023-05-12T18:09:09.420860Z 2023-05-12T18:09:09.420860Z
icsa-23-131-10 Rockwell Automation Arena Simulation Software 2023-05-12T15:07:40.899704Z 2023-05-12T15:07:40.899704Z
icsa-23-131-15 Rockwell Automation ThinManager 2023-05-11T22:14:23.629560Z 2023-05-11T22:14:23.629560Z
icsa-23-131-14 Rockwell Automation PanelView 800 2023-05-11T22:14:23.620441Z 2023-05-11T22:14:23.620441Z
icsa-23-131-09 Rockwell Automation Kinetix 5500 2023-05-11T22:14:23.610081Z 2023-05-11T22:14:23.610081Z
icsa-23-131-08 Teltonika Remote Management System and RUT Model Routers 2023-05-11T06:00:00.000000Z 2023-05-11T06:00:00.000000Z
icsa-23-131-07 Sierra Wireless AirVantage 2023-05-10T21:14:08.895031Z 2023-05-10T21:14:08.895031Z
icsa-23-129-02 Hitachi Energy MSM 2023-05-10T21:13:09.601070Z 2023-05-10T21:13:09.601070Z
icsa-23-131-11 BirdDog Cameras & Encoders 2023-05-10T20:52:45.090469Z 2023-05-10T20:52:45.090469Z
icsa-23-131-03 Siemens Siveillance 2023-05-09T00:00:00.000000Z 2023-05-09T00:00:00.000000Z
icsa-18-317-02 Siemens S7-400 CPUs (Update B) 2018-11-13T00:00:00.000000Z 2023-05-09T00:00:00.000000Z
icsa-18-079-02 Siemens SIMATIC, SINUMERIK, and PROFINET IO (Update D) 2018-03-20T00:00:00.000000Z 2023-05-09T00:00:00.000000Z
icsa-22-263-03 Dataprobe iBoot-PDU 2022-09-20T06:00:00.000000Z 2023-05-04T23:12:37.028223Z
icsa-23-122-01 Mitsubishi Electric Factory Automation Products 2023-05-02T18:41:30.488188Z 2023-05-02T18:41:30.488188Z
icsma-23-117-01 Illumina Universal Copy Service 2023-04-28T18:53:19.854977Z 2023-04-28T18:53:19.854977Z
icsa-23-115-02 Scada-LTS Third Party Component 2023-04-28T18:53:19.821723Z 2023-04-28T18:53:19.821723Z
icsa-23-103-14 Datakit CrossCAD-WARE 2023-04-20T19:52:36.700072Z 2023-04-20T19:52:36.700072Z
icsa-23-110-01 INEA ME RTU 2023-04-20T15:30:49.225865Z 2023-04-20T15:30:49.225865Z
icsa-23-108-01 Omron CS/CJ Series 2023-04-20T15:30:49.210862Z 2023-04-20T15:30:49.210862Z
icsma-23-103-01 B. Braun Battery Pack SP with Wi-Fi 2023-04-18T19:27:35.022998Z 2023-04-18T19:27:35.022998Z
icsa-23-101-01 FANUC ROBOGUIDE-HandlingPRO 2023-04-18T19:27:35.008841Z 2023-04-18T19:27:35.008841Z
ID Description Published Updated
cisco-sa-20190501-aci-hw-clock-util Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Privilege Escalation Vulnerability 2019-05-01T16:00:00+00:00 2019-05-09T15:55:09+00:00
cisco-sa-20190501-nexus9k-sshkey Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Default SSH Key Vulnerability 2019-05-01T16:00:00+00:00 2019-05-09T12:49:51+00:00
cisco-sa-20190417-umbrella-xss Cisco Umbrella Cross-Site Scripting Vulnerability 2019-04-17T16:00:00+00:00 2019-05-08T15:46:02+00:00
cisco-sa-20190507-esc-authbypass Cisco Elastic Services Controller REST API Authentication Bypass Vulnerability 2019-05-07T16:00:00+00:00 2019-05-07T16:00:00+00:00
cisco-sa-20190501-esa-bypass Cisco Email Security Appliance Filter Bypass Vulnerability 2019-05-01T16:00:00+00:00 2019-05-03T20:26:28+00:00
cisco-sa-20190417-es-tvcs-dos Cisco Expressway Series and Cisco TelePresence Video Communication Server Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-05-03T19:50:01+00:00
cisco-sa-20190501-asa-frpwrtd-dos Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software TCP Timer Handling Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-03T19:45:16+00:00
cisco-sa-20190501-sd-cpu-dos Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software WebVPN Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-02T17:57:14+00:00
cisco-sa-20190501-firepower-dos Cisco Firepower Threat Defense Software TCP Ingress Handler Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-02T17:55:55+00:00
cisco-sa-20190501-frpwr-smb-snort Cisco Firepower Threat Defense Software SMB Protocol Preprocessor Detection Engine Denial of Service Vulnerabilities 2019-05-01T16:00:00+00:00 2019-05-02T17:54:49+00:00
cisco-sa-20190501-asa-ftds-ldapdos Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Lightweight Directory Access Protocol Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-02T17:53:03+00:00
cisco-sa-20190501-asa-ftd-entropy Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Low-Entropy Keys Vulnerability 2019-05-01T16:00:00+00:00 2019-05-02T17:49:48+00:00
cisco-sa-20190501-asa-ftdtcp-dos Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software TCP Proxy Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-02T17:48:07+00:00
cisco-sa-20190501-asa-ftd-dos Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software WebVPN Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-02T17:47:03+00:00
cisco-sa-20190501-asa-ftd-bypass Cisco Adaptive Security Appliance and Firepower Threat Defense Software Layer 2 Filtering Bypass Vulnerability 2019-05-01T16:00:00+00:00 2019-05-02T17:44:22+00:00
cisco-sa-20190501-asa-ftd-xss Cisco Adaptive Security Appliance and Firepower Threat Defense Software WebVPN Cross-Site Scripting Vulnerabilities 2019-05-01T16:00:00+00:00 2019-05-02T17:42:58+00:00
cisco-sa-20190501-frpwr-dos Cisco Firepower Threat Defense Software Packet Processing Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-02T17:41:24+00:00
cisco-sa-20190501-asaftd-saml-vpn Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software VPN SAML Authentication Bypass Vulnerability 2019-05-01T16:00:00+00:00 2019-05-02T17:39:02+00:00
cisco-sa-20190501-asa-ftd-ike-dos Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software MOBIKE Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-02T17:37:28+00:00
cisco-sa-20190501-asa-vpn-dos Cisco Adaptive Security Appliance Software VPN Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:12:08+00:00
cisco-sa-20190501-wsa-privesc Cisco Web Security Appliance Privilege Escalation Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-wsa-dos Cisco Web Security Appliance Malformed Request Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-udb-sm Cisco Umbrella Dashboard Session Management Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-scbv Cisco Small Business Switches Secure Shell Certificate Authentication Bypass Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-sbr-hijack Cisco Small Business RV320 and RV325 Routers Session Hijacking Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-pnr-xss Cisco Prime Network Registrar Cross-Site Scripting Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-phone-sip-xml-dos Cisco IP Phone 7800 Series and 8800 Series Session Initiation Protocol XML Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-pca-xss Cisco Prime Collaboration Assurance Cross-Site Scripting Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-hyperflex-csrf Cisco HyperFlex HX-Series Web-Based Management Interface Cross-Site Request Forgery Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-ftd-cmd-inject Cisco Firepower Threat Defense Software Command Injection Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
msrc_cve-2024-35995 ACPI: CPPC: Use access_width over bit_width for system memory accesses 2024-05-02T07:00:00.000Z 2025-09-27T01:02:20.000Z
msrc_cve-2024-35971 net: ks8851: Handle softirqs at the end of IRQ thread to fix hang 2024-05-02T07:00:00.000Z 2025-09-27T01:02:14.000Z
msrc_cve-2024-35965 Bluetooth: L2CAP: Fix not validating setsockopt user input 2024-05-02T07:00:00.000Z 2025-09-27T01:02:09.000Z
msrc_cve-2024-35951 drm/panfrost: Fix the error path in panfrost_mmu_map_fault_addr() 2024-05-02T07:00:00.000Z 2025-09-27T01:02:04.000Z
msrc_cve-2024-35939 dma-direct: Leak pages on dma_set_decrypted() failure 2024-05-02T07:00:00.000Z 2025-09-27T01:01:58.000Z
msrc_cve-2024-35924 usb: typec: ucsi: Limit read size on v1.2 2024-05-02T07:00:00.000Z 2025-09-27T01:01:50.000Z
msrc_cve-2024-35875 x86/coco: Require seeding RNG with RDRAND on CoCo systems 2024-05-02T07:00:00.000Z 2025-09-27T01:01:44.000Z
msrc_cve-2024-35839 netfilter: bridge: replace physindev with physinif in nf_bridge_info 2024-05-02T07:00:00.000Z 2025-09-27T01:01:39.000Z
msrc_cve-2023-52732 ceph: blocklist the kclient when receiving corrupted snap trace 2024-05-02T07:00:00.000Z 2025-09-27T01:01:34.000Z
msrc_cve-2023-52676 bpf: Guard stack limits against 32bit overflow 2024-05-02T07:00:00.000Z 2025-09-27T01:01:29.000Z
msrc_cve-2023-52671 drm/amd/display: Fix hang/underflow when transitioning to ODM4:1 2024-05-02T07:00:00.000Z 2025-09-27T01:01:23.000Z
msrc_cve-2023-52660 media: rkisp1: Fix IRQ handling due to shared interrupts 2024-05-02T07:00:00.000Z 2025-09-27T01:01:18.000Z
msrc_cve-2025-59251 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability 2025-09-09T07:00:00.000Z 2025-09-25T07:00:00.000Z
msrc_cve-2025-55232 Microsoft High Performance Compute (HPC) Pack Remote Code Execution Vulnerability 2025-09-09T07:00:00.000Z 2025-09-25T07:00:00.000Z
msrc_cve-2024-56566 mm/slub: Avoid list corruption when removing a slab from the full list 2024-12-02T00:00:00.000Z 2025-09-25T01:02:33.000Z
msrc_cve-2024-41935 f2fs: fix to shrink read extent node in batches 2025-01-02T00:00:00.000Z 2025-09-25T01:02:23.000Z
msrc_cve-2024-36000 mm/hugetlb: fix missing hugetlb_lock for resv uncharge 2024-05-02T07:00:00.000Z 2025-09-25T01:02:15.000Z
msrc_cve-2024-35956 btrfs: qgroup: fix qgroup prealloc rsv leak in subvolume operations 2024-05-02T07:00:00.000Z 2025-09-25T01:02:09.000Z
msrc_cve-2024-35932 drm/vc4: don't check if plane->state->fb == state->fb 2024-05-02T07:00:00.000Z 2025-09-25T01:01:55.000Z
msrc_cve-2023-52831 cpu/hotplug: Don't offline the last non-isolated CPU 2024-05-02T07:00:00.000Z 2025-09-25T01:01:50.000Z
msrc_cve-2023-52761 riscv: VMAP_STACK overflow detection thread-safe 2024-05-02T07:00:00.000Z 2025-09-25T01:01:45.000Z
msrc_cve-2022-49178 memstick/mspro_block: fix handling of read-only devices 2025-02-02T00:00:00.000Z 2025-09-25T01:01:40.000Z
msrc_cve-2022-49172 parisc: Fix non-access data TLB cache flush faults 2025-02-02T00:00:00.000Z 2025-09-25T01:01:35.000Z
msrc_cve-2022-49161 ASoC: mediatek: Fix error handling in mt8183_da7219_max98357_dev_probe 2025-02-02T00:00:00.000Z 2025-09-25T01:01:29.000Z
msrc_cve-2022-49138 Bluetooth: hci_event: Ignore multiple conn complete events 2025-02-02T00:00:00.000Z 2025-09-25T01:01:24.000Z
msrc_cve-2021-47658 drm/amd/pm: fix a potential gpu_metrics_table memory leak 2025-02-02T00:00:00.000Z 2025-09-25T01:01:19.000Z
msrc_cve-2025-55322 OmniParser Remote Code Execution Vulnerability 2025-09-09T07:00:00.000Z 2025-09-24T07:00:00.000Z
msrc_cve-2025-39880 libceph: fix invalid accesses to ceph_connection_v1_info 2025-09-02T00:00:00.000Z 2025-09-24T01:02:31.000Z
msrc_cve-2025-39876 net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable() 2025-09-02T00:00:00.000Z 2025-09-24T01:02:26.000Z
msrc_cve-2025-39869 dmaengine: ti: edma: Fix memory allocation size for queue_priority_map 2025-09-02T00:00:00.000Z 2025-09-24T01:02:15.000Z
ID Description Published Updated
ID Description Updated
var-202510-2281 D-Link DIR600LAx FW116WWb01 was discovered to contain a buffer overflow via the curTime p… 2025-11-19T23:28:49.012000Z
var-202511-0001 A weakness has been identified in Tenda AC23 16.03.07.52. This impacts the function formS… 2025-11-19T23:28:48.104000Z
var-202511-0547 A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_F… 2025-11-19T23:28:47.796000Z
var-202208-2048 TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a hardcoded password for… 2025-11-19T23:27:46.996000Z
var-202310-0077 D-Link DIR-X3260 Prog.cgi Heap-based Buffer Overflow Remote Code Execution Vulnerability.… 2025-11-19T23:27:45.258000Z
var-202403-0814 A vulnerability classified as problematic was found in Tenda AC15 15.03.05.18. Affected b… 2025-11-19T23:27:44.590000Z
var-202509-1065 An issue in TP-Link AX10 Ax1500 v.1.3.10 Build (20230130) allows a remote attacker to obt… 2025-11-19T23:27:41.424000Z
var-202509-4465 The AC20 is a wireless router. The AC20 router developed by Shenzhen Jixiang Tengda Tech… 2025-11-19T23:27:41.248000Z
var-202509-4507 The X18 is a wireless router manufactured by TOTOLINK, a Chinese company. The TOTOLINK X… 2025-11-19T23:27:41.230000Z
var-202510-0885 A vulnerability exists in the iHealth command that may allow an authenticated attacker wi… 2025-11-19T23:27:41.136000Z
var-202510-2082 Totolink LR350 v9.3.5u.6369_B20220309 was discovered to contain a stack overflow via the … 2025-11-19T23:27:41.009000Z
var-202510-2145 Tenda AC6 V2.0 15.03.06.50 was discovered to contain a stack overflow in the page paramet… 2025-11-19T23:27:40.984000Z
var-202510-2187 A vulnerability was detected in Tenda CH22 1.0.0.1. Affected by this vulnerability is the… 2025-11-19T23:27:40.966000Z
var-202510-2250 Multiple buffer overflows in the SetClientState function of Tenda AC6 v.15.03.06.50 allow… 2025-11-19T23:27:40.928000Z
var-202510-2334 A vulnerability was determined in Tenda CH22 1.0.0.1. This issue affects the function fro… 2025-11-19T23:27:40.831000Z
var-202510-2355 D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime … 2025-11-19T23:27:40.807000Z
var-202511-0056 A vulnerability was identified in Tenda AC21 16.03.08.16. This vulnerability affects the … 2025-11-19T23:27:40.167000Z
var-202511-0245 /etc/timezone can be Arbitrarily Written.This issue affects BLU-IC2: through 1.19.5; BLU-… 2025-11-19T23:27:40.067000Z
var-202508-0592 A vulnerability was determined in Tenda AC20 up to 16.03.08.12. Affected is an unknown fu… 2025-11-19T23:27:12.191000Z
var-202509-1655 A vulnerability was identified in D-Link DIR-645 105B01. This issue affects the function … 2025-11-19T23:27:11.906000Z
var-202509-4458 The EDR-810-VPN-2GSFP is an industrial multi-port security router. The EDR-810-VPN-2GSFP… 2025-11-19T23:27:11.731000Z
var-202509-4500 The A720R is a dual-band gigabit wireless router. The ZEON Electronics (Shenzhen) Co., L… 2025-11-19T23:27:11.711000Z
var-202510-0048 A security flaw has been discovered in Tenda AC18 15.03.05.19(6318). Affected by this iss… 2025-11-19T23:27:11.695000Z
var-202510-0111 A vulnerability was found in Tenda AC23 up to 16.03.07.52. Affected by this issue is the … 2025-11-19T23:27:11.671000Z
var-202510-1592 When Diffie-Hellman (DH) group Elliptic Curve Cryptography (ECC) Brainpool curves are con… 2025-11-19T23:27:11.545000Z
var-202510-2306 A vulnerability has been found in Tenda AC6 15.03.06.50. This issue affects some unknown … 2025-11-19T23:27:11.395000Z
var-202511-0003 Denial of Service Due to SlowLoris.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: t… 2025-11-19T23:27:10.516000Z
var-202304-0357 Tenda AC6 v15.03.05.09_multi was discovered to contain a stack overflow via the ssid para… 2025-11-19T23:25:05.288000Z
var-202308-3331 Tenda AC23 Vv16.03.07.45_cn is vulnerable to Buffer Overflow via sub_450A4C function. She… 2025-11-19T23:25:04.637000Z
var-202308-3583 In Tenda AC23 v16.03.07.45_cn, the formSetIPv6status and formGetWanParameter functions do… 2025-11-19T23:25:04.602000Z
ID Description Published Updated
jvndb-2014-000141 FAST/TOOLS vulnerable to improper restriction of XML external entity references 2014-11-28T14:54+09:00 2014-12-10T10:16+09:00
jvndb-2014-000137 Multiple improper data validation vulnerabilities in Syslink driver for Texas Instruments OMAP mobile processors 2014-12-02T13:56+09:00 2014-12-09T15:34+09:00
jvndb-2014-000138 OS command injection vulnerability in multiple FUJITSU Android devices 2014-12-02T14:21+09:00 2014-12-09T15:33+09:00
jvndb-2014-000135 SEIL Series routers vulnerable to denial-of-service (DoS) 2014-12-01T15:18+09:00 2014-12-09T15:32+09:00
jvndb-2014-000136 SEIL Series routers vulnerable to denial-of-service (DoS) 2014-12-01T15:24+09:00 2014-12-09T15:31+09:00
jvndb-2014-000146 i-HTTPD vulnerable to cross-site scripting 2014-12-09T14:45+09:00 2014-12-09T14:45+09:00
jvndb-2014-000140 LG Electronics mobile access routers lack access restrictions 2014-12-02T14:27+09:00 2014-12-08T16:07+09:00
jvndb-2014-000139 ARROWS Me F-11D vulnerability where arbitrary areas may be accessed 2014-12-02T14:26+09:00 2014-12-08T16:06+09:00
jvndb-2014-000148 Kaku-San-Sei Million Arthur for Android information management vulnerability 2014-12-04T12:28+09:00 2014-12-08T16:05+09:00
jvndb-2014-000147 KENT-WEB Clip Board vulnerable to cross-site scripting 2014-12-04T12:22+09:00 2014-12-08T16:03+09:00
jvndb-2014-000142 DBD::PgPP vulnerable to SQL injection 2014-12-03T15:09+09:00 2014-12-03T15:09+09:00
jvndb-2014-000131 Ichitaro series vulnerable to arbitrary code execution 2014-11-13T16:52+09:00 2014-11-27T17:58+09:00
jvndb-2014-000130 Multiple Cybozu products vulnerable to buffer overflow 2014-11-11T13:36+09:00 2014-11-25T17:52+09:00
jvndb-2014-000118 Direct Web Remoting (DWR) vulnerable to cross-site scripting 2014-11-14T14:37+09:00 2014-11-25T17:51+09:00
jvndb-2014-000117 Direct Web Remoting (DWR) vulnerable to XML external entity injection 2014-11-14T14:33+09:00 2014-11-25T17:50+09:00
jvndb-2014-000129 OpenAM vulnerable to denial-of-service (DoS) 2014-11-10T14:23+09:00 2014-11-20T10:09+09:00
jvndb-2014-000133 iLogScanner vulnerable to cross-site scripting 2014-11-14T14:38+09:00 2014-11-18T18:22+09:00
jvndb-2014-000122 Aflax vulnerable to cross-site scripting 2014-10-16T13:35+09:00 2014-10-24T18:32+09:00
jvndb-2014-000119 Huawei E5332 vulnerable to denial-of-service (DoS) 2014-10-10T14:02+09:00 2014-10-21T15:15+09:00
jvndb-2014-000120 Huawei E5332 vulnerable to denial-of-service (DoS) 2014-10-10T14:03+09:00 2014-10-21T15:11+09:00
jvndb-2014-000121 BirdBlog vulnerable to cross-site scripting 2014-10-16T13:26+09:00 2014-10-16T13:26+09:00
jvndb-2014-000108 jigbrowser+ for iOS same origin policy bypass 2014-09-25T14:52+09:00 2014-09-29T11:47+09:00
jvndb-2014-000105 Help Page in multiple Adobe products vulnerable to cross-site scripting 2014-09-12T14:00+09:00 2014-09-29T11:42+09:00
jvndb-2014-000112 N-Media file uploader vulnerability in handling uploaded files 2014-09-25T14:53+09:00 2014-09-29T11:39+09:00
jvndb-2014-000110 Dotclear vulnerable to cross-site scripting 2014-09-19T13:42+09:00 2014-09-25T17:52+09:00
jvndb-2014-000109 Bump for Android vulnerable in handling of implicit intents 2014-09-19T13:41+09:00 2014-09-25T17:44+09:00
jvndb-2014-004316 Safari issue in handling application cache 2014-09-25T14:54+09:00 2014-09-25T14:54+09:00
jvndb-2014-000116 Yahoo! Japan Box for Android issue where it fails to verify SSL server certificates 2014-09-25T14:54+09:00 2014-09-25T14:54+09:00
jvndb-2014-000114 FileMaker Pro fails to verify SSL server certificates 2014-09-18T20:36+09:00 2014-09-24T18:47+09:00
jvndb-2014-000111 Yuko Yuko App for Android fails to verify SSL server certificates 2014-09-22T13:50+09:00 2014-09-22T13:50+09:00
ID Description Updated
ID Description Published Updated
suse-su-2025:20450-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_2 2025-06-23T15:27:40Z 2025-06-23T15:27:40Z
suse-su-2025:20431-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_2 2025-06-23T15:27:40Z 2025-06-23T15:27:40Z
suse-su-2025:20430-1 Security update for python-tornado6 2025-06-23T13:44:42Z 2025-06-23T13:44:42Z
suse-su-2025:20444-1 Security update for gpg2 2025-06-23T13:33:24Z 2025-06-23T13:33:24Z
suse-su-2025:02066-1 Security update for distribution 2025-06-23T10:48:35Z 2025-06-23T10:48:35Z
suse-su-2025:02059-1 Security update for icu 2025-06-23T01:38:08Z 2025-06-23T01:38:08Z
suse-su-2025:02058-1 Security update for gstreamer-plugins-good 2025-06-21T09:04:59Z 2025-06-21T09:04:59Z
suse-su-2025:02057-1 Security update for python311 2025-06-21T09:04:25Z 2025-06-21T09:04:25Z
suse-su-2025:02056-1 Security update for apache-commons-beanutils 2025-06-20T16:17:22Z 2025-06-20T16:17:22Z
suse-su-2025:02055-1 Security update for gstreamer-plugins-good 2025-06-20T15:35:07Z 2025-06-20T15:35:07Z
suse-su-2025:20442-1 Security update for iputils 2025-06-20T14:28:28Z 2025-06-20T14:28:28Z
suse-su-2025:20429-1 Security update for afterburn 2025-06-20T14:11:51Z 2025-06-20T14:11:51Z
suse-su-2025:02053-1 Security update for gstreamer-plugins-good 2025-06-20T13:05:43Z 2025-06-20T13:05:43Z
suse-su-2025:02052-1 Security update for apache2-mod_security2 2025-06-20T13:04:57Z 2025-06-20T13:04:57Z
suse-su-2025:02051-1 Security update for perl 2025-06-20T12:42:29Z 2025-06-20T12:42:29Z
suse-su-2025:02050-1 Security update for python39 2025-06-20T12:41:57Z 2025-06-20T12:41:57Z
suse-su-2025:02049-1 Security update for python311 2025-06-20T12:41:35Z 2025-06-20T12:41:35Z
suse-su-2025:02048-1 Security update for python312 2025-06-20T12:40:39Z 2025-06-20T12:40:39Z
suse-su-2025:02047-1 Security update for python310 2025-06-20T12:40:08Z 2025-06-20T12:40:08Z
suse-su-2025:02046-1 Security update for ignition 2025-06-20T12:33:38Z 2025-06-20T12:33:38Z
suse-su-2025:02045-1 Security update for nodejs20 2025-06-20T11:04:00Z 2025-06-20T11:04:00Z
suse-su-2025:02044-1 Security update for libblockdev 2025-06-20T10:44:00Z 2025-06-20T10:44:00Z
suse-su-2025:02043-1 Security update for libblockdev 2025-06-20T10:41:38Z 2025-06-20T10:41:38Z
suse-su-2025:02042-1 Security update for openssl-3 2025-06-20T10:38:46Z 2025-06-20T10:38:46Z
suse-su-2025:02041-1 Security update for ignition 2025-06-20T10:04:07Z 2025-06-20T10:04:07Z
suse-su-2025:02040-1 Security update for ignition 2025-06-20T09:40:59Z 2025-06-20T09:40:59Z
suse-su-2025:02039-1 Security update for nodejs20 2025-06-20T09:40:53Z 2025-06-20T09:40:53Z
suse-su-2025:02038-1 Security update for python3 2025-06-20T09:40:38Z 2025-06-20T09:40:38Z
suse-su-2025:02037-1 Security update for ghc-pandoc 2025-06-20T09:40:16Z 2025-06-20T09:40:16Z
suse-su-2025:02035-1 Security update for ignition 2025-06-20T09:03:57Z 2025-06-20T09:03:57Z
ID Description Published Updated
opensuse-su-2024:14065-1 python310-django-allauth-0.63.3-1.1 on GA media 2024-06-24T00:00:00Z 2024-06-24T00:00:00Z
opensuse-su-2024:14064-1 python39-3.9.19-2.1 on GA media 2024-06-22T00:00:00Z 2024-06-22T00:00:00Z
opensuse-su-2024:14063-1 python38-3.8.19-3.1 on GA media 2024-06-22T00:00:00Z 2024-06-22T00:00:00Z
opensuse-su-2024:14062-1 python310-dnspython-2.6.1-1.1 on GA media 2024-06-21T00:00:00Z 2024-06-21T00:00:00Z
opensuse-su-2024:14061-1 perl-DBI-1.643-4.1 on GA media 2024-06-21T00:00:00Z 2024-06-21T00:00:00Z
opensuse-su-2024:14060-1 gnome-settings-daemon-46.0-5.1 on GA media 2024-06-21T00:00:00Z 2024-06-21T00:00:00Z
opensuse-su-2024:14059-1 singularity-ce-4.1.3-1.1 on GA media 2024-06-20T00:00:00Z 2024-06-20T00:00:00Z
opensuse-su-2024:14058-1 kubevirt-container-disk-1.2.2-2.1 on GA media 2024-06-20T00:00:00Z 2024-06-20T00:00:00Z
opensuse-su-2024:14057-1 sngrep-1.8.1-2.1 on GA media 2024-06-19T00:00:00Z 2024-06-19T00:00:00Z
opensuse-su-2024:0168-1 Security update for gdcm 2024-06-18T16:32:22Z 2024-06-18T16:32:22Z
opensuse-su-2024:0167-1 Security update for gdcm 2024-06-18T16:32:20Z 2024-06-18T16:32:20Z
opensuse-su-2024:14056-1 wget-1.24.5-2.1 on GA media 2024-06-18T00:00:00Z 2024-06-18T00:00:00Z
opensuse-su-2024:14055-1 python310-urllib3-2.1.0-3.1 on GA media 2024-06-18T00:00:00Z 2024-06-18T00:00:00Z
opensuse-su-2024:14054-1 oqs-provider-0.6.1-1.1 on GA media 2024-06-18T00:00:00Z 2024-06-18T00:00:00Z
opensuse-su-2024:14053-1 rclone-1.67.0-1.1 on GA media 2024-06-17T00:00:00Z 2024-06-17T00:00:00Z
opensuse-su-2024:14052-1 pgadmin4-8.8-1.1 on GA media 2024-06-17T00:00:00Z 2024-06-17T00:00:00Z
opensuse-su-2024:14051-1 keylime-config-7.11.0-1.1 on GA media 2024-06-17T00:00:00Z 2024-06-17T00:00:00Z
opensuse-su-2024:14050-1 forgejo-7.0.4-1.1 on GA media 2024-06-17T00:00:00Z 2024-06-17T00:00:00Z
opensuse-su-2024:14049-1 MozillaThunderbird-115.12.0-1.1 on GA media 2024-06-17T00:00:00Z 2024-06-17T00:00:00Z
opensuse-su-2024:14048-1 teleport-15.4.3-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14047-1 python310-eventlet-0.36.1-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14046-1 libntfs-3g-devel-2022.10.3-4.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14045-1 booth-1.2+git0.322fea0-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14044-1 MozillaFirefox-127.0-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14043-1 python310-scikit-learn-1.5.0-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14042-1 python310-Werkzeug-3.0.3-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14041-1 cups-2.4.8-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14040-1 php-composer2-2.7.7-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14039-1 liboqs-devel-0.10.1-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14038-1 frr-8.4-12.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
ID Description Published Updated
ID Description Published Updated
cnvd-2025-24789 Opencast信息泄露漏洞(CNVD-2025-24789) 2025-10-21 2025-10-24
cnvd-2025-24788 Flowise文件上传漏洞(CNVD-2025-24788) 2025-10-21 2025-10-24
cnvd-2025-24786 Mongoose缓冲区溢出漏洞 2025-10-21 2025-10-24
cnvd-2025-24785 Wireshark存在未明漏洞(CNVD-2025-24785) 2025-10-21 2025-10-24
cnvd-2025-24784 SAMSUNG Mobile devices存在未明漏洞(CNVD-2025-24784) 2025-10-21 2025-10-24
cnvd-2025-24783 SAMSUNG Mobile devices存在未明漏洞(CNVD-2025-24783) 2025-10-21 2025-10-24
cnvd-2025-24782 Oracle Solaris资源管理错误漏洞 2025-10-22 2025-10-24
cnvd-2025-24780 Beauty Parlour Management System search-invoices.php文件SQL注入漏洞 2025-10-13 2025-10-24
cnvd-2025-24779 Beauty Parlour Management System search-appointment.php文件SQL注入漏洞 2025-10-13 2025-10-24
cnvd-2025-24778 Beauty Parlour Management System sales-reports-detail.php文件SQL注入漏洞 2025-10-13 2025-10-24
cnvd-2025-24777 Beauty Parlour Management System new-appointment.php文件SQL注入漏洞 2025-10-13 2025-10-24
cnvd-2025-24776 Beauty Parlour Management System manage-services.php文件SQL注入漏洞 2025-10-13 2025-10-24
cnvd-2025-24775 Beauty Parlour Management System invoices.php文件SQL注入漏洞 2025-10-13 2025-10-24
cnvd-2025-24774 D-Link DIR-825 ping6_ipaddr参数缓冲区溢出漏洞 2025-09-09 2025-10-24
cnvd-2025-24773 D-Link DIR-825缓冲区溢出漏洞 2025-09-23 2025-10-24
cnvd-2025-24772 D-Link DIR-852 os命令注入漏洞 2025-09-04 2025-10-24
cnvd-2025-24771 D-Link DIR-852 cgibin文件命令注入漏洞 2025-09-23 2025-10-24
cnvd-2025-24770 D-Link DIR-852 hedwig.cgi文件命令注入漏洞 2025-09-23 2025-10-24
cnvd-2025-24769 D-Link DIR-645 service参数命令注入漏洞 2025-09-23 2025-10-24
cnvd-2025-24768 D-Link DI-7100G OS命令注入漏洞 2025-09-25 2025-10-24
cnvd-2025-24767 D-Link DI-7100G缓冲区溢出漏洞 2025-09-25 2025-10-24
cnvd-2025-24766 D-Link Nuclias Connec Login端点可观察的响应差异漏洞 2025-10-21 2025-10-24
cnvd-2025-24765 D-Link Nuclias Connect跨站脚本漏洞 2025-10-21 2025-10-24
cnvd-2025-24764 D-Link Nuclias Connect可被观察响应差异漏洞 2025-10-21 2025-10-24
cnvd-2025-24763 D-Link DIR-852 HNAP1文件命令注入漏洞 2025-10-21 2025-10-24
cnvd-2025-24762 D-Link DI-7100G C1命令注入漏洞 2025-10-21 2025-10-24
cnvd-2025-24761 D-Link DI-7100G C1 openid参数缓冲区溢出漏洞 2025-10-21 2025-10-24
cnvd-2025-24760 D-Link DI-7100G C1 popupId参数缓冲区溢出漏洞 2025-10-21 2025-10-24
cnvd-2025-24759 D-Link Nuclias Connect目录遍历漏洞 2025-10-21 2025-10-24
cnvd-2025-24758 Bank Locker Management System search参数跨站脚本漏洞 2025-10-23 2025-10-24
ID Description Published Updated
certfr-2024-avi-0299 Multiples vulnérabilités dans les produits Citrix 2024-04-11T00:00:00.000000 2024-04-11T00:00:00.000000
certfr-2024-avi-0298 Vulnérabilité dans Spring Framework 2024-04-11T00:00:00.000000 2024-04-11T00:00:00.000000
certfr-2024-avi-0297 Multiples vulnérabilités dans Juniper 2024-04-11T00:00:00.000000 2024-04-11T00:00:00.000000
certfr-2024-avi-0296 Multiples vulnérabilités dans GitLab 2024-04-11T00:00:00.000000 2024-04-11T00:00:00.000000
certfr-2024-avi-0295 Multiples vulnérabilités dans les produits Palo Alto Networks 2024-04-11T00:00:00.000000 2024-04-11T00:00:00.000000
certfr-2024-avi-0294 Multiples vulnérabilités dans Google Chrome 2024-04-11T00:00:00.000000 2024-04-11T00:00:00.000000
certfr-2024-avi-0293 Multiples vulnérabilités dans Mitel MiCollab 2024-04-11T00:00:00.000000 2024-04-11T00:00:00.000000
certfr-2024-avi-0292 Multiples vulnérabilités dans les produits Microsoft 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0291 Multiples vulnérabilités dans Microsoft Azure 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0290 Vulnérabilité dans Microsoft .Net 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0289 Multiples vulnérabilités dans Microsoft Windows 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0288 Vulnérabilité dans Microsoft Office 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0287 Multiples vulnérabilités dans les produits Fortinet 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0286 Multiples vulnérabilités dans les produits Xen 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0285 Vulnérabilité dans WordPress 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0284 Multiples vulnérabilités dans les produits Adobe 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0108 Multiples vulnérabilités dans les produits Fortinet 2024-02-09T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0282 Vulnérabilité dans les produits Schneider 2024-04-09T00:00:00.000000 2024-04-09T00:00:00.000000
certfr-2024-avi-0281 Multiples vulnérabilités dans les produits Siemens 2024-04-09T00:00:00.000000 2024-04-09T00:00:00.000000
certfr-2024-avi-0280 Vulnérabilité dans OpenSSL 2024-04-09T00:00:00.000000 2024-04-09T00:00:00.000000
certfr-2024-avi-0279 Multiples vulnérabilités dans les produits IBM 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0278 Vulnérabilité dans le noyau Linux de Debian 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0277 Multiples vulnérabilités dans le noyau Linux de RedHat 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0276 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0275 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0274 Multiples vulnérabilités dans Apache HTTP Server 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0273 Multiples vulnérabilités dans Microsoft Edge 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0272 Multiples vulnérabilités dans Google Android et Pixel 2024-04-04T00:00:00.000000 2024-04-04T00:00:00.000000
certfr-2024-avi-0271 Multiples vulnérabilités dans les produits Ivanti 2024-04-04T00:00:00.000000 2024-04-04T00:00:00.000000
certfr-2024-avi-0270 Vulnérabilité dans Cisco Nexus Dashboard Fabric Controller 2024-04-04T00:00:00.000000 2024-04-04T00:00:00.000000
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated