Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2025-67471
8.8 (3.1)
WordPress Quick Contact Form plugin <= 8.2.5 - Cross S… Saad Iqbal
 Quick Contact Form
 2025-12-09T14:13:56.242Z 2026-01-20T14:28:25.221Z
CVE-2025-67469
8.8 (3.1)
WordPress PDF Thumbnail Generator plugin <= 1.4 - Cros… kubiq
 PDF Thumbnail Generator
 2025-12-09T14:13:55.861Z 2026-01-20T14:28:25.210Z
CVE-2025-67466
8.1 (3.1)
WordPress Trinity Audio plugin <= 5.23.3 - Broken Acce… sergiotrinity
 Trinity Audio
 2025-12-09T14:13:55.460Z 2026-01-20T14:28:25.210Z
CVE-2025-67517
9.8 (3.1)
WordPress ArtPlacer Widget plugin <= 2.22.9.2 - SQL In… artplacer
 ArtPlacer Widget
 2025-12-09T14:13:57.629Z 2026-01-20T14:28:25.209Z
CVE-2025-67533
6.5 (3.1)
WordPress Themify Portfolio Post plugin <= 1.3.0 - Cro… themifyme
 Themify Portfolio Post
 2025-12-09T14:14:03.414Z 2026-01-20T14:28:25.206Z
CVE-2025-67535
6.5 (3.1)
WordPress WP Maps plugin <= 4.8.6 - PHP Object Injecti… WePlugins - WordPress Development Company
 WP Maps
 2025-12-09T14:14:03.841Z 2026-01-20T14:28:25.201Z
CVE-2025-67515
9.8 (3.1)
WordPress Wilmër theme < 3.5 - Local File Inclusion vu… Mikado-Themes
 Wilmër
 2025-12-09T14:13:57.222Z 2026-01-20T14:28:25.187Z
CVE-2025-67534
7.1 (3.1)
WordPress Rencontre plugin <= 3.13.7 - Cross Site Requ… Jacques Malgrange
 Rencontre
 2025-12-09T14:14:03.622Z 2026-01-20T14:28:25.186Z
CVE-2025-66534
8.8 (3.1)
WordPress The Aisle theme <= 2.9 - Broken Access Contr… Elated-Themes
 The Aisle
 2025-12-09T14:13:54.991Z 2026-01-20T14:28:25.176Z
CVE-2025-67519
9.8 (3.1)
WordPress Ninja Tables plugin <= 5.2.3 - SQL Injection… Shahjahan Jewel
 Ninja Tables
 2025-12-09T14:13:58.092Z 2026-01-20T14:28:25.166Z
CVE-2025-67536
6.5 (3.1)
WordPress LearnPress plugin <= 4.2.9.4 - Cross Site Sc… ThimPress
 LearnPress
 2025-12-09T14:14:04.062Z 2026-01-20T14:28:25.165Z
CVE-2025-67523
9.8 (3.1)
WordPress Exhibz theme <= 3.0.9 - Local File Inclusion… trippleS
 Exhibz
 2025-12-09T14:13:59.287Z 2026-01-20T14:28:25.162Z
CVE-2025-67532
9.8 (3.1)
WordPress Hara theme <= 1.2.17 - Local File Inclusion … thembay
 Hara
 2025-12-09T14:14:03.164Z 2026-01-20T14:28:25.158Z
CVE-2025-67527
9.8 (3.1)
WordPress Digiqole theme < 2.2.7 - Local File Inclusio… trippleS
 Digiqole
 2025-12-09T14:14:00.496Z 2026-01-20T14:28:25.133Z
CVE-2025-67537
6.5 (3.1)
WordPress ThirstyAffiliates plugin <= 3.11.8 - Cross S… Blair Williams
 ThirstyAffiliates
 2025-12-09T14:14:04.310Z 2026-01-20T14:28:25.132Z
CVE-2025-67470
4.3 (3.1)
WordPress Portfolio and Projects plugin <= 1.5.5 - Sen… Essential Plugin
 Portfolio and Projects
 2025-12-09T14:13:56.054Z 2026-01-20T14:28:25.130Z
CVE-2025-67467
4.5 (3.1)
WordPress GiveWP plugin <= 4.13.1 - Cross Site Request… StellarWP
 GiveWP
 2025-12-09T15:03:54.450Z 2026-01-20T14:28:25.119Z
CVE-2025-67522
9.8 (3.1)
WordPress Jobmonster theme <= 4.8.2 - Local File Inclu… NooTheme
 Jobmonster
 2025-12-09T14:13:59.066Z 2026-01-20T14:28:25.110Z
CVE-2025-66533
7.8 (3.1)
WordPress GiveWP plugin <= 4.13.1 - Arbitrary Shortocd… StellarWP
 GiveWP
 2025-12-09T15:03:54.194Z 2026-01-20T14:28:25.106Z
CVE-2025-67531
9.8 (3.1)
WordPress Turitor theme < 1.5.3 - Local File Inclusion… trippleS
 Turitor
 2025-12-09T14:14:01.550Z 2026-01-20T14:28:25.095Z
CVE-2025-67474
4.3 (3.1)
WordPress ForumWP plugin <= 2.1.4 - Broken Access Cont… Ultimate Member
 ForumWP
 2025-12-09T14:13:57.009Z 2026-01-20T14:28:25.033Z
CVE-2025-67521
9.8 (3.1)
WordPress Select Core plugin < 2.6 - Local File Inclus… Select-Themes
 Select Core
 2025-12-09T14:13:58.865Z 2026-01-20T14:28:24.976Z
CVE-2025-67520
9.8 (3.1)
WordPress Media Library Tools plugin <= 1.6.15 - SQL I… Tiny Solutions
 Media Library Tools
 2025-12-09T14:13:58.651Z 2026-01-20T14:28:24.948Z
CVE-2025-67525
9.8 (3.1)
WordPress ekommart theme < 4.3.1 - Local File Inclusio… Opal_WP
 ekommart
 2025-12-09T14:13:59.771Z 2026-01-20T14:28:24.930Z
CVE-2025-67465
8.8 (3.1)
WordPress Simple Link Directory plugin <= 8.8.3 - Cros… QuantumCloud
 Simple Link Directory
 2025-12-09T14:13:55.262Z 2026-01-20T14:28:24.889Z
CVE-2025-66532
8.8 (3.1)
WordPress Powerlift theme < 3.2.1 - Broken Access Cont… Mikado-Themes
 Powerlift
 2025-12-09T14:13:54.794Z 2026-01-20T14:28:24.714Z
CVE-2025-66132
6.5 (3.1)
WordPress FAPI Member plugin <= 2.2.26 - Insecure Dire… FAPI Business s.r.o.
 FAPI Member
 2025-12-16T08:12:54.562Z 2026-01-20T14:28:24.662Z
CVE-2025-66531
8.8 (3.1)
WordPress Salon booking system plugin <= 10.30.3 - Cro… Dimitri Grassi
 Salon booking system
 2025-12-09T14:13:54.558Z 2026-01-20T14:28:24.641Z
CVE-2025-66129
5.3 (3.1)
WordPress Pochipp plugin <= 1.18.0 - Broken Access Con… wppochipp
 Pochipp
 2025-12-16T08:12:53.976Z 2026-01-20T14:28:24.628Z
CVE-2025-66528
8.1 (3.1)
WordPress Thank You Page Customizer for WooCommerce pl… VillaTheme
 Thank You Page Customizer for WooCommerce
 2025-12-09T14:13:53.449Z 2026-01-20T14:28:24.582Z
ID CVSS Description Vendor Product Published Updated
CVE-2023-53481
N/A
ubi: ubi_wl_put_peb: Fix infinite loop when wear-level… Linux
 Linux
 2025-10-01T11:42:49.825Z 2025-10-01T11:42:49.825Z
CVE-2023-53482
N/A
iommu: Fix error unwind in iommu_group_alloc() Linux
 Linux
 2025-10-01T11:42:50.800Z 2025-10-01T11:42:50.800Z
CVE-2023-53484
N/A
lib: cpu_rmap: Avoid use after free on rmap->obj array… Linux
 Linux
 2025-10-01T11:42:52.590Z 2026-01-05T10:20:56.385Z
CVE-2023-53486
N/A
fs/ntfs3: Enhance the attribute size check Linux
 Linux
 2025-10-01T11:42:54.028Z 2025-10-02T07:04:29.089Z
CVE-2023-53487
N/A
powerpc/rtas_flash: allow user copy to flash block cac… Linux
 Linux
 2025-10-01T11:42:54.747Z 2025-10-01T11:42:54.747Z
CVE-2026-23732
5.5 (4.0)
FreeRDP has heap-buffer-overflow in Glyph_Alloc FreeRDP
 FreeRDP
 2026-01-19T17:12:57.772Z 2026-01-20T15:34:21.309Z
CVE-2026-0943
7.5 (3.1)
HarfBuzz::Shaper versions before 0.032 for Perl contai… JV
 HarfBuzz::Shaper
 2026-01-19T02:46:52.012Z 2026-01-20T15:25:23.530Z
CVE-2026-0904
5.4 (3.1)
Incorrect security UI in Digital Credentials in G… Google
 Chrome
 2026-01-20T04:14:16.238Z 2026-01-20T15:26:56.630Z
CVE-2026-0903
5.4 (3.1)
Inappropriate implementation in Downloads in Goog… Google
 Chrome
 2026-01-20T04:14:15.784Z 2026-01-20T15:28:59.338Z
CVE-2026-0902
8.8 (3.1)
Inappropriate implementation in V8 in Google Chro… Google
 Chrome
 2026-01-20T04:14:15.404Z 2026-01-20T15:29:39.657Z
CVE-2026-0610
9.8 (3.1)
SQL Injection vulnerability in remote-sessions in… Devolutions
 Server
 2026-01-19T14:31:13.173Z 2026-01-20T15:05:32.415Z
CVE-2025-68616
7.5 (3.1)
WeasyPrint Vulnerable to Server-Side Request Forgery (… Kozea
 WeasyPrint
 2026-01-19T15:20:23.702Z 2026-01-20T15:42:46.352Z
CVE-2025-64155
9.4 (3.1)
An improper neutralization of special elements us… Fortinet
 FortiSIEM
 2026-01-13T16:32:28.665Z 2026-01-20T15:53:24.312Z
CVE-2025-59355
N/A
Apache Linkis: Password Exposure Apache Software Foundation
 Apache Linkis
 2026-01-19T08:37:24.364Z 2026-01-20T15:07:22.356Z
CVE-2025-36419
5.3 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:53:37.574Z 2026-01-20T16:07:57.795Z
CVE-2025-36418
7.3 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:50:40.562Z 2026-01-20T16:09:43.989Z
CVE-2025-36411
3.5 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:43:07.492Z 2026-01-20T16:04:55.158Z
CVE-2025-36410
3.1 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:39:53.965Z 2026-01-20T16:41:07.252Z
CVE-2025-36409
5.4 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:37:56.120Z 2026-01-20T16:38:27.452Z
CVE-2025-36408
6.4 (3.1)
Multiple vulnerabilities found in IBM ApplinX. IBM
 ApplinX
 2026-01-20T15:33:59.216Z 2026-01-20T16:35:00.739Z
CVE-2025-36397
5.4 (3.1)
Security vulnerabilities have been found in IBM Applic… IBM
 Application Gateway
 2026-01-20T15:23:30.652Z 2026-01-20T15:47:24.284Z
CVE-2025-36396
5.4 (3.1)
Security vulnerabilities have been found in IBM Applic… IBM
 Application Gateway
 2026-01-20T15:22:11.780Z 2026-01-20T15:48:51.751Z
CVE-2025-36115
6.3 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:18:17.680Z 2026-01-20T15:51:47.539Z
CVE-2025-36113
5.4 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:15:55.890Z 2026-01-20T15:34:16.414Z
CVE-2025-36066
6.1 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:14:03.557Z 2026-01-20T15:36:00.574Z
CVE-2025-36065
6.3 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:12:47.078Z 2026-01-20T15:38:07.346Z
CVE-2025-36063
6.3 (3.1)
Multiple vulnerabilities were addressed in IBM Sterlin… IBM
 Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0
 2026-01-20T15:10:57.747Z 2026-01-20T15:39:45.384Z
CVE-2025-36059
4.7 (3.1)
Multiple security vulnerabilities are addressed in IBM… IBM
 Business Automation Workflow containers
 2026-01-20T15:07:46.448Z 2026-01-20T15:54:41.357Z
CVE-2025-36058
5.5 (3.1)
Multiple security vulnerabilities are addressed in IBM… IBM
 Business Automation Workflow containers
 2026-01-20T15:09:07.082Z 2026-01-20T15:53:20.326Z
CVE-2025-33015
8.8 (3.1)
Multiple Vulnerabilities in IBM Concert Software IBM
 Concert
 2026-01-20T15:04:21.300Z 2026-01-21T04:55:23.857Z
ID Description Published Updated
fkie_cve-2025-36410 IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions o… 2026-01-20T16:16:04.487 2026-01-20T16:16:04.487
fkie_cve-2025-36409 IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated … 2026-01-20T16:16:04.343 2026-01-20T16:16:04.343
fkie_cve-2025-36408 IBM ApplinX 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows an authent… 2026-01-20T16:16:04.183 2026-01-20T16:16:04.183
fkie_cve-2025-36397 IBM Application Gateway 23.10 through 25.09 is vulnerable to HTML injection. A remote attacker coul… 2026-01-20T16:16:04.030 2026-01-20T16:16:04.030
fkie_cve-2025-36396 IBM Application Gateway 23.10 through 25.09 is vulnerable to cross-site scripting. This vulnerabili… 2026-01-20T16:16:03.873 2026-01-20T16:16:03.873
fkie_cve-2025-36115 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0.00 through 5.2.0.12 does not… 2026-01-20T16:16:03.703 2026-01-20T16:16:03.703
fkie_cve-2025-36113 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 is… 2026-01-20T16:16:03.543 2026-01-20T16:16:03.543
fkie_cve-2025-36066 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 is… 2026-01-20T16:16:03.383 2026-01-20T16:16:03.383
fkie_cve-2025-36065 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 do… 2026-01-20T16:16:03.230 2026-01-20T16:16:03.230
fkie_cve-2025-36063 IBM Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 5.2.0.00 through 5.2.0.12 do… 2026-01-20T16:16:03.080 2026-01-20T16:16:03.080
fkie_cve-2025-36059 IBM Business Automation Workflow containers 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 2… 2026-01-20T16:16:02.920 2026-01-20T16:16:02.920
fkie_cve-2025-36058 IBM Business Automation Workflow containers 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 2… 2026-01-20T16:16:02.743 2026-01-20T16:16:02.743
fkie_cve-2025-33015 IBM Concert 1.0.0 through 2.1.0 is vulnerable to malicious file upload by not validating the conten… 2026-01-20T16:16:02.580 2026-01-20T16:16:02.580
fkie_cve-2025-29847 A vulnerability in Apache Linkis. Problem Description When using the JDBC engine and da When using… 2026-01-19T09:16:01.237 2026-01-20T16:16:02.410
fkie_cve-2025-14883 Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-68016. Reason:… 2026-01-20T16:16:01.980 2026-01-20T16:16:01.980
fkie_cve-2025-0647 In certain Arm CPUs, a CPP RCTX instruction executed on one Processing Element (PE) may inhibit TLB… 2026-01-14T11:15:50.027 2026-01-20T16:16:01.393
fkie_cve-2011-10041 Uploadify WordPress plugin versions up to and including 1.0 contain an arbitrary file upload vulner… 2026-01-15T22:16:08.927 2026-01-20T16:16:00.930
fkie_cve-2025-61674 October is a Content Management System (CMS) and web platform. Prior to versions 3.7.13 and 4.0.12,… 2026-01-10T04:16:00.680 2026-01-20T16:06:07.560
fkie_cve-2025-61676 October is a Content Management System (CMS) and web platform. Prior to versions 3.7.13 and 4.0.12,… 2026-01-10T04:16:00.850 2026-01-20T16:05:36.343
fkie_cve-2022-50441 In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Lag, fix failure to … 2025-10-01T12:15:36.300 2026-01-20T16:00:08.017
fkie_cve-2022-50442 In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate buffer leng… 2025-10-01T12:15:36.433 2026-01-20T15:58:51.973
fkie_cve-2026-21881 Kanboard is project management software focused on Kanban methodology. Versions 1.2.48 and below is… 2026-01-08T02:15:53.803 2026-01-20T15:57:22.667
fkie_cve-2023-53464 In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi_tcp: Check that so… 2025-10-01T12:15:48.267 2026-01-20T15:56:33.927
fkie_cve-2023-53465 In the Linux kernel, the following vulnerability has been resolved: soundwire: qcom: fix storing p… 2025-10-01T12:15:48.407 2026-01-20T15:54:17.843
fkie_cve-2023-53466 In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix memory… 2025-10-01T12:15:48.550 2026-01-20T15:53:42.200
fkie_cve-2023-53467 In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix potential lea… 2025-10-01T12:15:48.683 2026-01-20T15:53:10.817
fkie_cve-2023-53468 In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix memory leak in allo… 2025-10-01T12:15:48.830 2026-01-20T15:52:36.877
fkie_cve-2023-53470 In the Linux kernel, the following vulnerability has been resolved: ionic: catch failure from devl… 2025-10-01T12:15:49.130 2026-01-20T15:51:57.283
fkie_cve-2025-5499 A vulnerability classified as critical has been found in slackero phpwcms up to 1.9.45/1.10.8. Affe… 2025-06-03T14:15:51.513 2026-01-20T15:46:26.900
fkie_cve-2025-39923 In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bam_dma: Fix … 2025-10-01T08:15:35.610 2026-01-20T15:45:52.240
ID Severity Description Published Updated
ghsa-rhv4-h554-jv3f
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-rgcf-2w43-rcc2
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-rcq8-2vrm-5v77
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-r4pj-gvf7-f2q6
7.5 (3.1)
Missing Authorization vulnerability in javothemes Javo Core javo-core allows Exploiting Incorrectly… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-hj95-h3q8-9f44
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-g973-3hcj-2cj8
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-fxfc-66xm-cx3q
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-f87h-73m9-9mvr
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-8gvw-4qwp-qg2j
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-7m79-8c7r-jxp3
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-6jjm-pf9p-g7hp
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-4q66-mhj3-vmmr
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-45mf-5cgg-gvgg
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-3gwx-5m3q-74wv
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-2mrg-2qcj-p8qp
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-2cq9-p3hh-4x7f
8.6 (3.1)
Incorrect Privilege Assignment vulnerability in e-plugins Hotel Listing hotel-listing allows Privil… 2025-12-18T09:30:26Z 2026-01-20T15:32:22Z
ghsa-xm4c-mcfr-mg33
7.1 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-w393-v2hq-cqm8
5.3 (3.1)
Missing Authorization vulnerability in mkscripts Download After Email download-after-email allows E… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-j386-rxrm-789f
7.1 (3.1)
Missing Authorization vulnerability in WPXPO PostX ultimate-post allows Exploiting Incorrectly Conf… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-56gc-5jpx-35jv
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-3xc3-wg4j-v425
7.2 (3.1)
Incorrect Privilege Assignment vulnerability in WPXPO PostX ultimate-post allows Privilege Escalati… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-3x9f-jx2x-rgjh
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-2ffc-fhcm-rq53
6.5 (3.1)
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Rom… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-26hr-x62r-xc25
6.5 (3.1)
Missing Authorization vulnerability in miniOrange miniOrange's Google Authenticator miniorange-2-fa… 2025-12-18T09:30:26Z 2026-01-20T15:32:21Z
ghsa-xm4g-rv38-63j8
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:20Z
ghsa-x45x-35m6-q633
8.6 (3.1)
Missing Authorization vulnerability in Tyler Moore Super Blank super-blank allows Exploiting Incorr… 2025-12-18T09:30:26Z 2026-01-20T15:32:20Z
ghsa-vqf5-665x-v348
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:25Z 2026-01-20T15:32:20Z
ghsa-mx84-vj9p-47h4
8.2 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:20Z
ghsa-mmh9-ccpx-xx5x
9.8 (3.1)
Deserialization of Untrusted Data vulnerability in BoldThemes DentiCare denticare allows Object Inj… 2025-12-18T09:30:26Z 2026-01-20T15:32:20Z
ghsa-m9vg-3465-4f8h
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2025-12-18T09:30:26Z 2026-01-20T15:32:20Z
ID Severity Description Package Published Updated
pysec-2014-35
gtbn.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users wit… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:29.732595Z
pysec-2014-34
uid_catalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to obt… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:29.620104Z
pysec-2014-33
z3c.form, as used in Plone before 4.2.3 and 4.3 before beta 1, allows remote attackers to… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:29.513262Z
pysec-2014-32
Cross-site scripting (XSS) vulnerability in kssdevel.py in Plone before 4.2.3 and 4.3 bef… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:29.407022Z
pysec-2014-31
The App.Undo.UndoSupport.get_request_var_or_attr function in Zope before 2.12.21 and 3.13… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:29.299631Z
pysec-2014-30
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to … plone 2014-09-30T14:55:00Z 2021-09-01T08:44:29.194034Z
pysec-2014-29
The sandbox whitelisting function (allowmodule.py) in Plone before 4.2.3 and 4.3 before b… plone 2014-09-30T14:55:00Z 2021-09-01T08:44:29.087946Z
pysec-2014-27
registerConfiglet.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers … plone 2014-09-30T14:55:00Z 2021-09-01T08:44:28.919312Z
pysec-2018-67
In the marshmallow library before 2.15.1 and 3.x before 3.0.0b9 for Python, the schema "o… marshmallow 2018-09-18T17:29:00Z 2021-09-01T08:44:17.759030Z
pysec-2016-2
Cross-site scripting (XSS) vulnerability in the dismissChangeRelatedObjectPopup function … django 2016-08-05T15:59:00Z 2021-09-01T08:35:44.164135Z
pysec-2015-9
The utils.http.is_safe_url function in Django before 1.4.20, 1.5.x, 1.6.x before 1.6.11, … django 2015-03-25T14:59:00Z 2021-09-01T08:35:43.249549Z
pysec-2015-18
The utils.html.strip_tags function in Django 1.6.x before 1.6.11, 1.7.x before 1.7.7, and… django 2015-03-25T14:59:00Z 2021-09-01T08:35:41.398239Z
pysec-2015-11
The get_format function in utils/formats.py in Django before 1.7.x before 1.7.11, 1.8.x b… django 2015-12-07T20:59:00Z 2021-09-01T08:35:41.190803Z
pysec-2020-139
In Tensorflow before version 2.4.0, when the `boxes` argument of `tf.image.crop_and_resiz… tensorflow 2020-10-21T21:15:00Z 2021-09-01T08:19:35.637564Z
pysec-2020-138
In Tensorflow before version 2.4.0, an attacker can pass an invalid `axis` value to `tf.q… tensorflow 2020-10-21T21:15:00Z 2021-09-01T08:19:35.574576Z
pysec-2020-124
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not… tensorflow 2020-09-25T19:15:00Z 2021-09-01T08:19:33.344299Z
pysec-2020-123
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not… tensorflow 2020-09-25T19:15:00Z 2021-09-01T08:19:33.281926Z
pysec-2020-122
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` does not validate that … tensorflow 2020-09-25T19:15:00Z 2021-09-01T08:19:33.217572Z
pysec-2020-121
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not… tensorflow 2020-09-25T19:15:00Z 2021-09-01T08:19:33.154302Z
pysec-2020-120
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not… tensorflow 2020-09-25T19:15:00Z 2021-09-01T08:19:33.096342Z
pysec-2020-119
In Tensorflow version 2.3.0, the `SparseCountSparseOutput` and `RaggedCountSparseOutput` … tensorflow 2020-09-25T19:15:00Z 2021-09-01T08:19:33.034745Z
pysec-2020-116
In Tensorflow before versions 2.2.1 and 2.3.1, the implementation of `dlpack.to_dlpack` c… tensorflow 2020-09-25T19:15:00Z 2021-09-01T08:19:32.562362Z
pysec-2020-115
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes a list of strings to `dlp… tensorflow 2020-09-25T19:15:00Z 2021-09-01T08:19:32.462320Z
pysec-2020-114
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to `d… tensorflow 2020-09-25T19:15:00Z 2021-09-01T08:19:32.360913Z
pysec-2021-17
Multiple path traversal vulnerabilities exist in smbserver.py in Impacket through 0.9.22.… impacket 2021-05-05T11:15:00Z 2021-09-01T08:19:03.897095Z
pysec-2014-20
The django.util.http.is_safe_url function in Django 1.4 before 1.4.13, 1.5 before 1.5.8, … django 2014-05-16T15:55:00Z 2021-09-01T08:18:55.675902Z
pysec-2014-19
Django 1.4 before 1.4.13, 1.5 before 1.5.8, 1.6 before 1.6.5, and 1.7 before 1.7b4 does n… django 2014-05-16T15:55:00Z 2021-09-01T08:18:55.376993Z
pysec-2020-26
Synopsys hub-rest-api-python (aka blackduck on PyPI) version 0.0.25 - 0.0.52 does not val… blackduck 2020-11-06T14:15:00Z 2021-09-01T06:49:41.380049Z
pysec-2021-315
nbgitpuller is a Jupyter server extension to sync a git repository one-way to a local pat… nbgitpuller 2021-08-25T18:15:00Z 2021-08-30T18:40:30.558311Z
pysec-2017-98
Versions 1.17 and 1.18 of the Python urllib3 library suffer from a vulnerability that can… urllib3 2017-01-11T16:59:00Z 2021-08-27T03:42:51.689777Z
ID Description Type
ID Description Updated
gsd-2024-32253 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.141839Z
gsd-2024-32478 Git Credential Manager (GCM) is a secure Git credential helper. Prior to 2.5.0, the Debia… 2024-04-13T05:02:29.141641Z
gsd-2024-32376 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.141440Z
gsd-2024-32314 Tenda AC500 V2.0.1.9(1307) firmware contains a command injection vulnerablility in the fo… 2024-04-13T05:02:29.141246Z
gsd-2024-32219 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.140644Z
gsd-2024-32341 Multiple cross-site scripting (XSS) vulnerabilities in the Home page of WonderCMS v3.4.3 … 2024-04-13T05:02:29.140451Z
gsd-2024-32179 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.140256Z
gsd-2024-32364 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.140058Z
gsd-2024-32447 Cross-Site Request Forgery (CSRF) vulnerability in AWP Classifieds Team AWP Classifieds.T… 2024-04-13T05:02:29.139862Z
gsd-2024-32476 Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. There is a Deni… 2024-04-13T05:02:29.139616Z
gsd-2024-32374 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.139424Z
gsd-2024-32262 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.139229Z
gsd-2024-32444 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.138782Z
gsd-2024-32232 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.138573Z
gsd-2024-32168 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.138370Z
gsd-2024-32307 Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow vulnerability located via the PP… 2024-04-13T05:02:29.138172Z
gsd-2024-32466 Tolgee is an open-source localization platform. For the `/v2/projects/translations` and `… 2024-04-13T05:02:29.137980Z
gsd-2024-32458 FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients th… 2024-04-13T05:02:29.137782Z
gsd-2024-32326 TOTOLINK EX200 V4.0.3c.7646_B20201211 contains a Cross-site scripting (XSS) vulnerability… 2024-04-13T05:02:29.137586Z
gsd-2024-32266 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.137388Z
gsd-2024-32290 Tenda W30E v1.0 v1.0.1.25(633) firmware has a stack overflow vulnerability via the page p… 2024-04-13T05:02:29.137141Z
gsd-2024-32391 Cross Site Scripting vulnerability in MacCMS v.10 v.2024.1000.3000 allows a remote attack… 2024-04-13T05:02:29.136457Z
gsd-2024-32202 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.136264Z
gsd-2024-32245 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.136065Z
gsd-2024-32176 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.135621Z
gsd-2024-32470 Tolgee is an open-source localization platform. When API key created by admin user is use… 2024-04-13T05:02:29.134464Z
gsd-2024-32455 Missing Authorization vulnerability in Very Good Plugins Fatal Error Notify.This issue af… 2024-04-13T05:02:29.134269Z
gsd-2024-32435 Cross-Site Request Forgery (CSRF) vulnerability in Affieasy Team AffiEasy.This issue affe… 2024-04-13T05:02:29.134074Z
gsd-2024-32204 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.133835Z
gsd-2024-32234 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:29.133642Z
ID Description Published Updated
mal-2025-6538 Malicious code in logghelper (PyPI) 2025-07-16T19:30:11Z 2025-12-11T09:27:53Z
mal-2025-6536 Malicious code in libspatialindex (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-6531 Malicious code in justanything (PyPI) 2025-06-13T14:03:05Z 2025-12-11T09:27:53Z
mal-2025-6528 Malicious code in jd-mlops (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-6527 Malicious code in iscc-flag (PyPI) 2025-07-16T10:53:07Z 2025-12-11T09:27:53Z
mal-2025-6526 Malicious code in is-number-object (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-6525 Malicious code in interasdasdnal-data-parser (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-6524 Malicious code in initer (PyPI) 2025-05-09T20:14:13Z 2025-12-11T09:27:53Z
mal-2025-6522 Malicious code in httppack (PyPI) 2025-07-14T05:06:08Z 2025-12-11T09:27:53Z
mal-2025-6521 Malicious code in hellotesthim (PyPI) 2025-07-04T09:57:46Z 2025-12-11T09:27:53Z
mal-2025-6520 Malicious code in hashidf (PyPI) 2025-06-22T19:14:41Z 2025-12-11T09:27:53Z
mal-2025-6519 Malicious code in greensadway (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-6516 Malicious code in graphemer (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-6512 Malicious code in google-appengine-ext (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-6511 Malicious code in globrex (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-6510 Malicious code in glob-to-regexp (PyPI) 2024-09-06T11:29:16Z 2025-12-11T09:27:53Z
mal-2025-6508 Malicious code in gateway-framework (PyPI) 2025-07-14T13:50:06Z 2025-12-11T09:27:53Z
mal-2025-6248 Malicious code in foundry-jupyter-extension (PyPI) 2025-07-26T01:36:46Z 2025-12-11T09:27:53Z
mal-2025-6007 Malicious code in groq-mcp (PyPI) 2025-07-18T12:26:01Z 2025-12-11T09:27:53Z
mal-2025-5656 Malicious code in malinssx (PyPI) 2025-07-04T11:03:06Z 2025-12-11T09:27:53Z
mal-2025-5655 Malicious code in maliinn (PyPI) 2025-07-04T10:55:46Z 2025-12-11T09:27:53Z
mal-2025-5654 Malicious code in malicus (PyPI) 2025-07-04T11:00:53Z 2025-12-11T09:27:53Z
mal-2025-5653 Malicious code in hellodista (PyPI) 2025-07-04T07:51:07Z 2025-12-11T09:27:53Z
mal-2025-5132 Malicious code in saml-helper (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-5131 Malicious code in s3ffs (PyPI) 2024-08-05T22:25:51Z 2025-12-11T09:27:53Z
mal-2025-5127 Malicious code in requestpackat (PyPI) 2025-05-15T18:11:34Z 2025-12-11T09:27:53Z
mal-2025-5126 Malicious code in readmecolorama (PyPI) 2025-05-18T00:05:16Z 2025-12-11T09:27:53Z
mal-2025-5125 Malicious code in rapyd-logger (PyPI) 2024-07-26T16:53:30Z 2025-12-11T09:27:53Z
mal-2025-5124 Malicious code in pyfiglets (PyPI) 2025-05-15T21:07:23Z 2025-12-11T09:27:53Z
mal-2025-5123 Malicious code in pyfernet (PyPI) 2025-05-27T05:53:30Z 2025-12-11T09:27:53Z
ID Description Published Updated
wid-sec-w-2025-1783 Adobe Creative Cloud Applikationen: Mehrere Schwachstellen 2025-08-12T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2025-1072 Bootstrap: Schwachstelle ermöglicht Cross-Site Scripting 2025-05-15T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2024-1003 Red Hat Enterprise Linux: Mehrere Schwachstellen 2024-05-01T22:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2023-3018 Google Chrome / Microsoft Edge: Mehrere Schwachstellen 2023-11-28T23:00:00.000+00:00 2025-09-16T22:00:00.000+00:00
wid-sec-w-2025-2064 Liferay Portal und DXP: Mehrere Schwachstellen 2025-09-15T22:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2025-2059 Apple Xcode: Mehrere Schwachstellen 2025-09-15T22:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2025-2057 IBM App Connect Enterprise: Schwachstelle ermöglicht Darstellen falscher Informationen 2025-09-15T22:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2025-2055 Flowise: Schwachstelle ermöglicht Manipulation von Dateien 2025-09-15T22:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2025-2054 MongoDB: Schwachstelle ermöglicht Codeausführung 2025-09-15T22:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2025-2052 Liferay Portal: Schwachstelle ermöglicht Cross-Site Scripting 2025-09-14T22:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2025-2048 Flowise: Mehrere Schwachstellen 2025-09-14T22:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2025-2046 cPanel cPanel/WHM: Schwachstelle ermöglicht Manipulation von Dateien 2025-09-14T22:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2025-1876 Apple iOS, iPadOS und macOS: Schwachstelle ermöglicht Codeausführung 2025-08-20T22:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2024-3291 Apple macOS: Mehrere Schwachstellen 2024-10-28T23:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2023-1590 Ruby: Schwachstelle ermöglicht Denial of Service 2023-06-28T22:00:00.000+00:00 2025-09-15T22:00:00.000+00:00
wid-sec-w-2025-2050 Liferay Portal und DXP: Mehrere Schwachstellen 2025-09-14T22:00:00.000+00:00 2025-09-14T22:00:00.000+00:00
wid-sec-w-2025-2047 Palo Alto Networks User-ID Agent: Schwachstelle ermöglicht Erlangen von Benutzerrechten 2025-09-14T22:00:00.000+00:00 2025-09-14T22:00:00.000+00:00
wid-sec-w-2025-2044 Microsoft Visual Studio Code: Schwachstelle ermöglicht Codeausführung 2025-09-14T22:00:00.000+00:00 2025-09-14T22:00:00.000+00:00
wid-sec-w-2025-2042 Zabbix: Mehrere Schwachstellen 2025-09-11T22:00:00.000+00:00 2025-09-14T22:00:00.000+00:00
wid-sec-w-2025-2041 Liferay Portal: Mehrere Schwachstellen 2025-09-11T22:00:00.000+00:00 2025-09-14T22:00:00.000+00:00
wid-sec-w-2025-2031 Shibboleth Service Provider: Schwachstelle ermöglicht SQL Injection 2025-09-10T22:00:00.000+00:00 2025-09-14T22:00:00.000+00:00
wid-sec-w-2025-1943 Samsung Android: Mehrere Schwachstellen 2025-09-02T22:00:00.000+00:00 2025-09-14T22:00:00.000+00:00
wid-sec-w-2025-1861 Liferay DXP und Portal: Mehrere Schwachstellen 2025-08-18T22:00:00.000+00:00 2025-09-14T22:00:00.000+00:00
wid-sec-w-2024-0123 Oracle Fusion Middleware: Mehrere Schwachstellen 2024-01-16T23:00:00.000+00:00 2025-09-14T22:00:00.000+00:00
wid-sec-w-2025-2035 Palo Alto Networks Cortex XDR: Schwachstelle ermöglicht Offenlegung von Informationen 2025-09-10T22:00:00.000+00:00 2025-09-11T22:00:00.000+00:00
wid-sec-w-2025-2024 GitLab: Mehrere Schwachstellen 2025-09-09T22:00:00.000+00:00 2025-09-11T22:00:00.000+00:00
wid-sec-w-2025-2013 Lenovo XClarity Orchestrator: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-09-09T22:00:00.000+00:00 2025-09-11T22:00:00.000+00:00
wid-sec-w-2025-2004 Microsoft Azure und Microsoft Entra: Mehrere Schwachstellen 2025-09-09T22:00:00.000+00:00 2025-09-11T22:00:00.000+00:00
wid-sec-w-2025-1516 Golang Go: Schwachstelle ermöglicht Codeausführung 2025-07-08T22:00:00.000+00:00 2025-09-11T22:00:00.000+00:00
wid-sec-w-2025-1058 Google Chrome / Microsoft Edge: Mehrere Schwachstellen 2025-05-14T22:00:00.000+00:00 2025-09-11T22:00:00.000+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
rhsa-2023:1174 Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.1.2 security and bug fix update 2023-03-09T01:24:50+00:00 2026-01-22T04:34:55+00:00
rhsa-2023:1079 Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (osp-director-downloader-container, osp-director-agent-container and osp-director-operator-container) security update 2023-03-06T16:23:58+00:00 2026-01-22T04:34:54+00:00
rhsa-2023:1030 Red Hat Security Advisory: OpenShift Container Platform 4.11.30 security update 2023-03-07T09:43:19+00:00 2026-01-22T04:34:50+00:00
rhsa-2023:0932 Red Hat Security Advisory: Logging Subsystem 5.6.3 - Red Hat OpenShift 2023-03-08T14:06:03+00:00 2026-01-22T04:34:50+00:00
rhsa-2023:0918 Red Hat Security Advisory: Service Binding Operator security update 2023-02-27T00:55:36+00:00 2026-01-22T04:34:50+00:00
rhsa-2023:0931 Red Hat Security Advisory: Logging Subsystem 5.4.12 - Red Hat OpenShift 2023-03-08T17:10:49+00:00 2026-01-22T04:34:46+00:00
rhsa-2023:0930 Red Hat Security Advisory: Logging Subsystem 5.5.8 - Red Hat OpenShift 2023-03-08T15:35:11+00:00 2026-01-22T04:34:46+00:00
rhsa-2023:0769 Red Hat Security Advisory: OpenShift Container Platform 4.12.4 security update 2023-02-20T18:30:20+00:00 2026-01-22T04:34:45+00:00
rhsa-2023:0693 Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.7.7 security and bug fix update 2023-02-09T02:17:22+00:00 2026-01-22T04:34:44+00:00
rhsa-2023:0692 Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.0.7 security and bug fix update 2023-02-09T01:07:26+00:00 2026-01-22T04:34:40+00:00
rhsa-2023:0632 Red Hat Security Advisory: Red Hat OpenShift (Logging Subsystem) security update 2023-02-15T11:08:43+00:00 2026-01-22T04:34:40+00:00
rhsa-2023:0631 Red Hat Security Advisory: RHSA: Submariner 0.14 - bug fix and security updates 2023-02-07T17:23:40+00:00 2026-01-22T04:34:37+00:00
rhsa-2023:0584 Red Hat Security Advisory: Secondary Scheduler Operator for Red Hat OpenShift 1.1.1 security update 2023-05-18T14:27:34+00:00 2026-01-22T04:34:36+00:00
rhsa-2023:0446 Red Hat Security Advisory: go-toolset:rhel8 security and bug fix update 2023-01-25T09:20:12+00:00 2026-01-22T04:34:36+00:00
rhsa-2023:0328 Red Hat Security Advisory: go-toolset and golang security and bug fix update 2023-01-23T15:26:30+00:00 2026-01-22T04:34:35+00:00
rhsa-2021:4627 Red Hat Security Advisory: Openshift Logging 5.3.0 bug fix and security update 2021-11-15T12:56:17+00:00 2026-01-22T04:33:58+00:00
rhsa-2021:3759 Red Hat Security Advisory: OpenShift Container Platform 4.9.0 bug fix and security update 2021-10-18T17:26:13+00:00 2026-01-22T04:33:55+00:00
rhba-2024:3053 Red Hat Bug Fix Advisory: git-lfs bug fix and enhancement update 2024-05-22T09:39:04+00:00 2026-01-22T04:33:39+00:00
rhba-2024:2274 Red Hat Bug Fix Advisory: git-lfs bug fix and enhancement update 2024-04-30T10:05:18+00:00 2026-01-22T04:33:39+00:00
rhba-2024:1246 Red Hat Bug Fix Advisory: Multicluster Engine for Kubernetes 2.4.4 bug fixes 2024-03-11T18:16:03+00:00 2026-01-22T04:33:37+00:00
rhsa-2024:3801 Red Hat Security Advisory: OpenShift Container Platform 4.12.58 CNF vRAN extras security update 2024-06-11T14:52:57+00:00 2026-01-22T04:31:33+00:00
rhsa-2024:1265 Red Hat Security Advisory: OpenShift Container Platform 4.12.53 bug fix and security update 2024-03-20T01:29:29+00:00 2026-01-22T04:31:32+00:00
rhsa-2023:3615 Red Hat Security Advisory: OpenShift Container Platform 4.12.22 bug fix and security update 2023-06-24T01:26:01+00:00 2026-01-22T04:31:26+00:00
rhsa-2023:1646 Red Hat Security Advisory: OpenShift Container Platform 4.12.11 security update 2023-04-11T07:54:54+00:00 2026-01-22T04:31:20+00:00
rhsa-2023:0570 Red Hat Security Advisory: OpenShift Container Platform 4.12.2 security update 2023-02-07T21:22:35+00:00 2026-01-22T04:30:47+00:00
rhsa-2022:7398 Red Hat Security Advisory: OpenShift Container Platform 4.12.0 packages and security update 2023-01-17T19:29:22+00:00 2026-01-22T04:30:20+00:00
rhsa-2023:7216 Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.4.5 2023-11-15T00:27:20+00:00 2026-01-22T04:29:34+00:00
rhsa-2023:6380 Red Hat Security Advisory: runc security update 2023-11-07T08:47:52+00:00 2026-01-22T04:29:19+00:00
rhsa-2023:5390 Red Hat Security Advisory: OpenShift Container Platform 4.12.36 bug fix and security update 2023-10-04T01:26:09+00:00 2026-01-22T04:27:22+00:00
rhsa-2023:5155 Red Hat Security Advisory: [impact]: OpenShift Container Platform 4.13.13 bug fix and security update 2023-09-19T00:27:55+00:00 2026-01-22T04:27:14+00:00
ID Description Published Updated
icsa-23-103-15 Mitsubishi Electric GOC35 Series 2023-04-14T20:06:05.726567Z 2023-04-14T20:06:05.726567Z
icsa-23-103-07 Siemens CPCI85 Firmware of SICAM A8000 Devices 2023-04-11T00:00:00.000000Z 2023-04-11T00:00:00.000000Z
icsa-23-103-01 Siemens Adaptec Maxview Application 2023-04-11T00:00:00.000000Z 2023-04-11T00:00:00.000000Z
icsa-22-104-12 Siemens SIMATIC S7-400 2022-04-12T00:00:00.000000Z 2023-04-11T00:00:00.000000Z
icsa-21-315-03 Siemens SIMATIC WinCC (Update E) 2021-11-09T00:00:00.000000Z 2023-04-11T00:00:00.000000Z
icsa-20-042-06 Siemens SIMATIC PCS 7, SIMATIC WinCC, and SIMATIC NET PC (Update G) 2020-02-11T00:00:00.000000Z 2023-04-11T00:00:00.000000Z
icsa-23-096-06 mySCADA myPRO 2023-04-10T17:28:36.056143Z 2023-04-10T17:28:36.056143Z
icsa-23-096-03 JTEKT ELECTRONICS Kostac PLC Programming Software 2023-04-10T16:34:33.527289Z 2023-04-10T16:34:33.527289Z
icsa-23-096-02 JTEKT ELECTRONICS Screen Creator Advance 2 2023-04-10T16:26:09.913765Z 2023-04-10T16:26:09.913765Z
icsa-23-096-01 Industrial Control Links ScadaFlex II SCADA Controllers 2023-04-10T16:19:19.857614Z 2023-04-10T16:19:19.857614Z
icsa-23-096-04 Korenix Jetwave 2023-04-10T16:08:00.934924Z 2023-04-10T16:08:00.934924Z
icsa-23-096-05 Hitachi Energy MicroSCADA System Data Manager SDM600 2023-04-10T15:37:08.398013Z 2023-04-10T15:37:08.398013Z
icsa-23-094-01 Nexx Smart Home Device 2023-04-04T17:20:10.507650Z 2023-04-04T17:20:10.507650Z
icsa-23-082-04 Schneider Electric IGSS 2023-04-03T19:38:42.642957Z 2023-04-03T19:38:42.642957Z
icsa-23-082-03 SAUTER EY-modulo 5 Building Automation Stations 2023-04-03T19:38:42.612958Z 2023-04-03T19:38:42.612958Z
icsa-23-080-05 VISAM VBASE Automation Base 2023-04-03T19:38:42.524396Z 2023-04-03T19:38:42.524396Z
icsa-23-075-06 Honeywell OneWireless Wireless Device Manager 2023-04-03T18:20:44.880953Z 2023-04-03T18:20:44.880953Z
icsa-23-068-03 ABB Ability Symphony Plus 2023-04-03T13:25:41.249897Z 2023-04-03T13:25:41.249897Z
icsa-22-342-02 AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere 2022-12-08T00:00:00.000000Z 2023-04-03T10:15:45.322434Z
icsa-23-082-01 RoboDK 2023-03-31T19:07:05.310067Z 2023-03-31T19:07:05.310067Z
icsa-23-082-05 ABB Pulsar Plus Controller 2023-03-31T19:07:05.278945Z 2023-03-31T19:07:05.278945Z
icsa-23-080-06 Rockwell Automation ThinManager 2023-03-31T19:07:05.264096Z 2023-03-31T19:07:05.264096Z
icsa-23-082-02 CP Plus KVMS Pro 2023-03-31T19:07:05.255213Z 2023-03-31T19:07:05.255213Z
icsa-23-075-07 Rockwell Automation Modbus TCP AOI Server 2023-03-31T16:10:45.648316Z 2023-03-31T16:10:45.648316Z
icsa-23-073-01 Omron CJ1M PLC 2023-03-31T15:58:39.527124Z 2023-03-31T15:58:39.527124Z
icsa-23-073-03 GE iFIX 2023-03-29T18:59:20.240657Z 2023-03-29T18:59:20.240657Z
icsa-23-073-02 Autodesk FBX SDK 2023-03-29T18:59:20.225092Z 2023-03-29T18:59:20.225092Z
icsa-23-073-04 AVEVA Plant SCADA and AVEVA Telemetry Server 2023-03-29T18:39:49.233100Z 2023-03-29T18:39:49.233100Z
icsa-23-068-01 Akuvox E11 2023-03-29T18:39:49.192244Z 2023-03-29T18:39:49.192244Z
icsa-23-068-02 B&R Systems Diagnostics Manager 2023-03-29T17:05:20.993768Z 2023-03-29T17:05:20.993768Z
ID Description Published Updated
cisco-sa-20190501-frpwr-cmd-inj Cisco Firepower Threat Defense Software Command Injection Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-fabric-traversal Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Symbolic Link Path Traversal Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-expressway-traversal Cisco Expressway Series Directory Traversal Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-asa-ipsec-dos Cisco Adaptive Security Appliance Software IPsec Denial of Service Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-asa-csrf Cisco Adaptive Security Appliance Software Cross-Site Request Forgery Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-apic-xss Cisco Application Policy Infrastructure Controller Web-Based Management Interface Cross-Site Scripting Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-apic-info-disc Cisco Application Policy Infrastructure Controller Web-Based Management Interface Usage Information Disclosure Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-apic-encrypt Cisco Application Policy Infrastructure Controller Recoverable Encryption Key Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-aci-unmeasured-boot Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Unmeasured Boot Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-aci-filter-query Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Filter Query Information Disclosure Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20181219-asa-privesc Cisco Adaptive Security Appliance Software Privilege Escalation Vulnerability 2018-12-19T16:00:00+00:00 2019-05-01T15:30:16+00:00
cisco-sa-20190417-wlc-gui Cisco Wireless LAN Controller Software GUI Configuration Denial of Service Vulnerabilities 2019-04-17T16:00:00+00:00 2019-04-18T18:04:38+00:00
cisco-sa-20170317-cmp Cisco IOS and IOS XE Software Cluster Management Protocol Remote Code Execution Vulnerability 2017-03-17T16:00:00+00:00 2019-04-17T18:47:43+00:00
cisco-sa-20190417-wlc-ssh Cisco Wireless LAN Controller Secure Shell Unauthorized Access Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-wlc-iapp Cisco Wireless LAN Controller Software IAPP Message Handling Denial of Service Vulnerabilities 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-wlc-csrf Cisco Wireless LAN Controller Software Cross-Site Request Forgery Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-wlc-cert-dos Cisco Wireless LAN Controller Locally Significant Certificate Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-wlan-hijack Cisco Wireless LAN Controller Software Session Hijacking Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-ucs-cli-inj Cisco UCS B-Series Blade Servers Local Management CLI Arbitrary File Creation or CLI Parameter Injection Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-ucm-dos Cisco Unified Communications Manager Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-swim-proxy Cisco DNA Center Unintended Proxy Via SWIM Import Interface Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-res-xss Cisco Registered Envelope Service Stored Cross-Site Scripting Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-pnr-dos Cisco Prime Network Registrar Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-ise-xss Cisco Identity Services Engine Cross-Site Scripting Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-ise-ssl-dos Cisco Identity Services Engine SSL Renegotiation Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-iosxracl Cisco ASR 9000 Series Aggregation Services Routers ACL Bypass Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-ios-xr-dos Cisco IOS XR gRPC Software Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-ex-vcs-xsrf Cisco Expressway Series and Cisco TelePresence Video Communication Server Cross-Site Request Forgery Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-esa-filter-bypass Cisco Email Security Appliance Content Filter Bypass Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-cfmc-xss Cisco Firepower Management Center Persistent Cross-Site Scripting Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
msrc_cve-2025-39873 can: xilinx_can: xcan_write_frame(): fix use-after-free of transmitted SKB 2025-09-02T00:00:00.000Z 2025-09-24T01:02:10.000Z
msrc_cve-2025-39867 netfilter: nft_set_pipapo: fix null deref for empty set 2025-09-02T00:00:00.000Z 2025-09-24T01:02:05.000Z
msrc_cve-2025-39877 mm/damon/sysfs: fix use-after-free in state_show() 2025-09-02T00:00:00.000Z 2025-09-24T01:01:55.000Z
msrc_cve-2025-39881 kernfs: Fix UAF in polling when open file is released 2025-09-02T00:00:00.000Z 2025-09-24T01:01:49.000Z
msrc_cve-2025-10824 axboe fio init.c __parse_jobs_ini use after free 2025-09-02T00:00:00.000Z 2025-09-24T01:01:39.000Z
msrc_cve-2025-10823 axboe fio options.c str_buffer_pattern_cb null pointer dereference 2025-09-02T00:00:00.000Z 2025-09-24T01:01:30.000Z
msrc_cve-2022-49234 net: dsa: Avoid cross-chip syncing of VLAN filtering 2025-02-02T00:00:00.000Z 2025-09-24T01:01:24.000Z
msrc_cve-2025-58767 REXML has a DoS condition when parsing malformed XML file 2025-09-02T00:00:00.000Z 2025-09-21T01:04:06.000Z
msrc_cve-2025-58749 WAMR runtime hangs or crashes with large memory.fill addresses in LLVM-JIT mode 2025-09-02T00:00:00.000Z 2025-09-21T01:03:55.000Z
msrc_cve-2024-53190 wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of failures 2024-12-02T00:00:00.000Z 2025-09-21T01:03:44.000Z
msrc_cve-2025-39838 cifs: prevent NULL pointer dereference in UTF16 conversion 2025-09-02T00:00:00.000Z 2025-09-21T01:03:35.000Z
msrc_cve-2024-35799 drm/amd/display: Prevent crash when disable stream 2024-05-02T07:00:00.000Z 2025-09-21T01:03:16.000Z
msrc_cve-2025-39866 fs: writeback: fix use-after-free in __mark_inode_dirty() 2025-09-02T00:00:00.000Z 2025-09-21T01:03:07.000Z
msrc_cve-2025-39864 wifi: cfg80211: fix use-after-free in cmp_bss() 2025-09-02T00:00:00.000Z 2025-09-21T01:03:02.000Z
msrc_cve-2025-39861 Bluetooth: vhci: Prevent use-after-free by removing debugfs files early 2025-09-02T00:00:00.000Z 2025-09-21T01:02:57.000Z
msrc_cve-2025-39860 Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen() 2025-09-02T00:00:00.000Z 2025-09-21T01:02:36.000Z
msrc_cve-2025-39865 tee: fix NULL pointer dereference in tee_shm_put 2025-09-02T00:00:00.000Z 2025-09-21T01:02:21.000Z
msrc_cve-2023-52700 tipc: fix kernel warning when sending SYN message 2024-05-02T07:00:00.000Z 2025-09-21T01:02:15.000Z
msrc_cve-2023-52682 f2fs: fix to wait on block writeback for post_read case 2024-05-02T07:00:00.000Z 2025-09-21T01:02:10.000Z
msrc_cve-2025-39857 net/smc: fix one NULL pointer dereference in smc_ib_is_sg_need_sync() 2025-09-02T00:00:00.000Z 2025-09-21T01:01:49.000Z
msrc_cve-2025-39842 ocfs2: prevent release journal inode after journal shutdown 2025-09-02T00:00:00.000Z 2025-09-21T01:01:44.000Z
msrc_cve-2025-39849 wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result() 2025-09-02T00:00:00.000Z 2025-09-21T01:01:29.000Z
msrc_cve-2025-39843 mm: slub: avoid wake up kswapd in set_track_prepare 2025-09-02T00:00:00.000Z 2025-09-21T01:01:24.000Z
msrc_cve-2025-39832 net/mlx5: Fix lockdep assertion on sync reset unload event 2025-09-02T00:00:00.000Z 2025-09-20T01:08:42.000Z
msrc_cve-2022-48633 drm/gma500: Fix WARN_ON(lock->magic != lock) error 2024-04-02T07:00:00.000Z 2025-09-20T01:08:10.000Z
msrc_cve-2025-9906 Arbitrary Code execution in Keras Safe Mode 2025-09-02T00:00:00.000Z 2025-09-20T01:03:50.000Z
msrc_cve-2025-9905 Arbitary Code execution in Keras load_model() 2025-09-02T00:00:00.000Z 2025-09-20T01:03:44.000Z
msrc_cve-2024-36898 gpiolib: cdev: fix uninitialised kfifo 2024-05-02T07:00:00.000Z 2025-09-20T01:03:38.000Z
msrc_cve-2024-27408 dmaengine: dw-edma: eDMA: Add sync read before starting the DMA transfer in remote setup 2024-05-02T07:00:00.000Z 2025-09-20T01:03:33.000Z
msrc_cve-2024-27389 pstore: inode: Only d_invalidate() is needed 2024-05-02T07:00:00.000Z 2025-09-20T01:03:27.000Z
ID Description Published Updated
ID Description Updated
var-202309-2840 D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanL2TP function. D-L… 2025-11-19T23:25:04.440000Z
var-202312-0971 TOTOLink A7000R V9.1.0u.6115_B20201022has a stack overflow vulnerability via setIpPortFil… 2025-11-19T23:25:04.180000Z
var-202403-0865 A vulnerability has been found in Tenda AC15 15.03.05.18/15.03.20_multi and classified as… 2025-11-19T23:25:03.788000Z
var-202507-0652 A vulnerability of plugin openid-connect in Apache APISIX. This vulnerability will only… 2025-11-19T23:25:01.002000Z
var-202508-2044 A security flaw has been discovered in Tenda AC20 16.03.08.12. Affected by this vulnerabi… 2025-11-19T23:25:00.661000Z
var-202509-2702 TOTOLINK X6000R V9.4.0cu.1360_B20241207 was found to contain a command injection vulnerab… 2025-11-19T23:24:56.686000Z
var-202509-4466 The WAGO 750-881 is an Ethernet switch module primarily used in industrial automation con… 2025-11-19T23:24:56.585000Z
var-202509-4508 The Canon MF220 Series is a 4-in-1 multifunction laser printer. Canon (China) Co., Ltd.'… 2025-11-19T23:24:56.565000Z
var-202510-0056 A vulnerability was identified in Tenda AC15 15.03.05.18. This impacts an unknown functio… 2025-11-19T23:24:56.547000Z
var-202510-1054 Multiple Broken Authentication security issues exist in the affected product. The securit… 2025-11-19T23:24:56.474000Z
var-202510-2079 A vulnerability was detected in TOTOLINK A3300R 17.0.0cu.557_B20221024. Impacted is the f… 2025-11-19T23:24:56.421000Z
var-202510-2331 Totolink A7000R v9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the… 2025-11-19T23:24:56.331000Z
var-202510-3024 The DCME-720 is a next-generation high-performance internet egress gateway. The DCME-720… 2025-11-19T23:24:55.959000Z
var-202511-0176 A vulnerability has been found in Tenda AC8 16.03.34.06. This impacts an unknown function… 2025-11-19T23:24:55.652000Z
var-202511-1037 An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router … 2025-11-19T23:24:54.950000Z
var-202403-0901 A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.20_multi… 2025-11-19T23:24:26.098000Z
var-202507-0689 Incorrect Permission Assignment for Critical Resource vulnerability in Apache APISIX(java… 2025-11-19T23:24:23.477000Z
var-202508-3775 The IICAM500GK is a webcam product. The IIST IICAM500GK has a weak password vulnerabilit… 2025-11-19T23:24:23.103000Z
var-202509-3232 Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user… 2025-11-19T23:24:22.946000Z
var-202509-3860 A weakness has been identified in Tenda AC8 16.03.34.06. The affected element is the func… 2025-11-19T23:24:22.887000Z
var-202510-0170 A security vulnerability has been detected in Tenda AC18 15.03.05.19(6318). This vulnerab… 2025-11-19T23:24:22.816000Z
var-202510-2088 D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime … 2025-11-19T23:24:22.714000Z
var-202510-2151 A vulnerability was detected in Tenda O3 1.0.0.10(2478). This issue affects the function … 2025-11-19T23:24:22.687000Z
var-202510-2193 D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime … 2025-11-19T23:24:22.659000Z
var-202510-2277 A weakness has been identified in Tenda CH22 1.0.0.1. Affected is the function fromwebExc… 2025-11-19T23:24:22.606000Z
var-202510-2382 Totolink LR350 v9.3.5u.6369_B20220309 was discovered to contain a stack overflow via the … 2025-11-19T23:24:22.544000Z
var-202510-3243 The MFC-T930DW is a color inkjet multifunction printer. Brother (China) Commercial Co., … 2025-11-19T23:24:21.737000Z
var-202309-0136 A vulnerability was found in Tenda AC8 16.03.34.06_cn_TDC01. It has been declared as crit… 2025-11-19T23:23:01.007000Z
var-202507-0519 The terminal emulator of Apache Guacamole 1.5.5 and older does not properly validate cons… 2025-11-19T23:22:57.636000Z
var-202509-4460 The XLH-24A16 is a slim programmable controller. The XLH-24A16 from Wuxi Xinjie Electric… 2025-11-19T23:22:56.832000Z
ID Description Published Updated
jvndb-2014-000106 365 Links series vulnerable to cross-site scripting 2014-09-17T15:23+09:00 2014-09-19T13:33+09:00
jvndb-2013-000048 FileMaker Pro fails to verify SSL server certificates 2013-05-31T15:43+09:00 2014-09-18T21:08+09:00
jvndb-2014-000104 Movable Type vulnerable to cross-site scripting 2014-09-09T15:02+09:00 2014-09-11T16:56+09:00
jvndb-2014-000103 EmFTP may insecurely load executable files 2014-09-04T16:36+09:00 2014-09-09T15:15+09:00
jvndb-2014-000084 WisePoint vulnerable to session fixation 2014-09-04T16:46+09:00 2014-09-09T15:02+09:00
jvndb-2014-000102 Kindle App for Android fails to verify SSL server certificates 2014-08-29T13:38+09:00 2014-09-03T18:25+09:00
jvndb-2014-000101 MailPoet Newsletters vulnerable to cross-site request forgery 2014-08-26T13:33+09:00 2014-08-28T18:13+09:00
jvndb-2013-000087 Multiple broadband routers may behave as open resolvers 2013-09-19T13:29+09:00 2014-08-28T18:10+09:00
jvndb-2014-000100 Cakifo vulnerable to cross-site scripting 2014-08-18T13:32+09:00 2014-08-20T16:30+09:00
jvndb-2014-000099 Advance-Flow vulnerable to SQL injection 2014-08-19T12:35+09:00 2014-08-20T16:26+09:00
jvndb-2014-000093 Piwigo vulnerable to cross-site scripting 2014-08-08T13:52+09:00 2014-08-19T16:48+09:00
jvndb-2014-000096 Shutter vulnerable to cross-site scripting 2014-08-15T13:27+09:00 2014-08-19T16:27+09:00
jvndb-2014-000098 Ameba for Android contains an issue where it fails to verify SSL server certificates 2014-08-14T12:32+09:00 2014-08-18T12:22+09:00
jvndb-2014-000086 Outlook.com for Android contains an issue where it fails to verify SSL server certificates 2014-07-30T15:11+09:00 2014-08-18T10:09+09:00
jvndb-2014-000091 ServerView Operations Manager vulnerable to cross-site scripting 2014-08-01T15:42+09:00 2014-08-18T10:05+09:00
jvndb-2014-000097 Dominion KX2-101 vulnerable to denial-of-service (DoS) 2014-08-12T14:03+09:00 2014-08-18T09:44+09:00
jvndb-2014-000092 Piwigo vulnerable to cross-site scripting 2014-08-08T13:49+09:00 2014-08-15T13:35+09:00
jvndb-2014-000085 GOM Player vulnerable to denial-of-service (DoS) 2014-08-06T15:22+09:00 2014-08-13T18:29+09:00
jvndb-2014-000094 Piwigo vulnerable to SQL injection 2014-08-08T13:57+09:00 2014-08-08T13:57+09:00
jvndb-2014-000087 Multiple I-O DATA IP Cameras vulnerable to authentication bypass 2014-07-29T14:24+09:00 2014-08-01T18:30+09:00
jvndb-2014-000089 acmailer contains a cross-site request forgery vulnerability 2014-07-29T14:15+09:00 2014-08-01T18:29+09:00
jvndb-2014-000088 PerlMailer vulnerable to cross-site scripting 2014-07-29T14:20+09:00 2014-08-01T18:28+09:00
jvndb-2013-002240 Arbitrary program execution vulnerability in TrendLink ActiveX control 2014-07-25T14:44+09:00 2014-07-25T14:44+09:00
jvndb-2014-000082 FuelPHP vulnerable to remote code execution 2014-07-18T13:50+09:00 2014-07-23T11:03+09:00
jvndb-2014-000081 File Explorer vulnerable to directory traversal 2014-07-18T13:48+09:00 2014-07-23T11:02+09:00
jvndb-2014-000080 Meridian vulnerable to cross-site scripting 2014-07-18T13:47+09:00 2014-07-23T11:02+09:00
jvndb-2014-000079 Multifunctional MailForm Free vulnerable to cross-site scripting 2014-07-16T15:13+09:00 2014-07-23T11:02+09:00
jvndb-2014-000078 Cybozu Garoon vulnerable to cross-site scritping 2014-07-15T14:47+09:00 2014-07-23T11:01+09:00
jvndb-2014-000077 Cybozu Garoon vulnerable to access restriction bypass 2014-07-15T14:46+09:00 2014-07-23T11:01+09:00
jvndb-2014-000076 Cybozu Garoon vulnerable to cross-site scritping 2014-07-15T14:46+09:00 2014-07-23T11:01+09:00
ID Description Updated
ID Description Published Updated
suse-su-2025:02034-1 Security update for gstreamer 2025-06-20T08:04:51Z 2025-06-20T08:04:51Z
suse-su-2025:02033-1 Security update for webkit2gtk3 2025-06-20T08:04:15Z 2025-06-20T08:04:15Z
suse-su-2025:02032-1 Security update for pam_pkcs11 2025-06-20T07:56:53Z 2025-06-20T07:56:53Z
suse-su-2025:02031-1 Security update for pam_pkcs11 2025-06-20T07:56:26Z 2025-06-20T07:56:26Z
suse-su-2025:02030-1 Security update for xen 2025-06-20T07:04:04Z 2025-06-20T07:04:04Z
suse-su-2025:02029-1 Security update for apache2-mod_security2 2025-06-19T15:17:27Z 2025-06-19T15:17:27Z
suse-su-2025:02028-1 Security update for apache2-mod_security2 2025-06-19T15:16:46Z 2025-06-19T15:16:46Z
suse-su-2025:02027-1 Security update for perl 2025-06-19T15:15:57Z 2025-06-19T15:15:57Z
suse-su-2025:02026-1 Security update for pam_pkcs11 2025-06-19T13:30:55Z 2025-06-19T13:30:55Z
suse-su-2025:20427-1 Security update for pam 2025-06-19T08:49:31Z 2025-06-19T08:49:31Z
suse-su-2025:20441-1 Security update for pam 2025-06-19T08:44:07Z 2025-06-19T08:44:07Z
suse-su-2025:02020-1 Security update for gstreamer-plugins-base 2025-06-19T08:35:03Z 2025-06-19T08:35:03Z
suse-su-2025:02019-1 Security update for systemd 2025-06-19T07:58:03Z 2025-06-19T07:58:03Z
suse-su-2025:02017-1 Security update for s390-tools 2025-06-19T07:14:56Z 2025-06-19T07:14:56Z
suse-su-2025:02016-1 Security update for screen 2025-06-19T07:14:39Z 2025-06-19T07:14:39Z
suse-su-2025:02015-1 Security update for gdm 2025-06-19T07:14:10Z 2025-06-19T07:14:10Z
suse-su-2025:02014-1 Security update for ignition 2025-06-19T07:13:44Z 2025-06-19T07:13:44Z
suse-su-2025:02013-1 Security update for pam 2025-06-18T18:05:26Z 2025-06-18T18:05:26Z
suse-su-2025:02012-1 Security update for xorg-x11-server 2025-06-18T15:36:17Z 2025-06-18T15:36:17Z
suse-su-2025:02010-1 Security update for redis 2025-06-18T15:25:25Z 2025-06-18T15:25:25Z
suse-su-2025:02005-1 Security update for gdm 2025-06-18T11:22:41Z 2025-06-18T11:22:41Z
suse-su-2025:02004-1 Security update for gdm 2025-06-18T11:22:28Z 2025-06-18T11:22:28Z
suse-su-2025:02003-1 Security update for gdm 2025-06-18T11:21:50Z 2025-06-18T11:21:50Z
suse-su-2025:02002-1 Security update for gdm 2025-06-18T11:21:39Z 2025-06-18T11:21:39Z
suse-su-2025:02001-1 Security update for pam 2025-06-18T11:21:27Z 2025-06-18T11:21:27Z
suse-su-2025:02000-1 Security update for the Linux Kernel 2025-06-18T11:08:16Z 2025-06-18T11:08:16Z
suse-su-2025:20426-1 Security update for libblockdev 2025-06-18T08:56:50Z 2025-06-18T08:56:50Z
suse-su-2025:20440-1 Security update for libblockdev 2025-06-18T08:50:24Z 2025-06-18T08:50:24Z
suse-su-2025:01999-1 Security update for python-requests 2025-06-18T08:43:00Z 2025-06-18T08:43:00Z
suse-su-2025:01998-1 Security update for python-requests 2025-06-18T08:42:28Z 2025-06-18T08:42:28Z
ID Description Published Updated
opensuse-su-2024:14037-1 python310-w3lib-2.2.0-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14036-1 python310-social-auth-app-django-5.4.1-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14035-1 python310-Authlib-1.3.1-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14034-1 nano-8.0-2.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14033-1 php8-8.3.8-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14032-1 okteto-2.28.0-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14031-1 dnsmasq-2.90-2.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14030-1 trivy-0.52.0-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14029-1 python310-setuptools-70.0.0-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14028-1 python310-openpyxl-3.1.3-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14027-1 WPEWebDriver-2.44.2-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14026-1 nvidia-open-driver-G06-signed-default-devel-550.90.07-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14025-1 corepack21-21.7.3-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14024-1 kernel-firmware-nvidia-gspx-G06-550.90.07-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14023-1 go1.21-1.21.11-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14022-1 freerdp2-2.11.7-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14021-1 cJSON-devel-1.7.18-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14020-1 go1.22-1.22.4-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14019-1 skopeo-1.15.1-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14018-1 plasma6-session-6.0.5-2.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14017-1 liblzma5-32bit-5.6.2-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14016-1 libhtp-devel-0.5.48-2.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14015-1 gitleaks-8.18.3-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14014-1 caddy-2.8.4-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14013-1 chromedriver-125.0.6422.141-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14012-1 system-user-velociraptor-1.0.0-9.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14011-1 minidlna-1.3.3-2.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14010-1 ffmpeg-5-5.1.4-8.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14009-1 cargo-audit-advisory-db-20240528-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
opensuse-su-2024:14008-1 squid-6.9-1.1 on GA media 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z
ID Description Published Updated
ID Description Published Updated
cnvd-2025-24722 WordPress插件WP BookWidgets跨站脚本漏洞 2025-10-21 2025-10-24
cnvd-2025-24721 Samsung Notes信息泄露漏洞(CNVD-2025-24721) 2021-06-17 2025-10-24
cnvd-2025-24720 Samsung Notes libSPenBase缓冲区溢出漏洞(CNVD-2025-24720) 2021-10-13 2025-10-24
cnvd-2025-24719 SAMSUNG Notes越界读取漏洞(CNVD-2025-24719) 2025-03-13 2025-10-24
cnvd-2025-24718 SAMSUNG Notes越界读取漏洞(CNVD-2025-24718) 2025-03-13 2025-10-24
cnvd-2025-24717 SAMSUNG Notes越界读取漏洞(CNVD-2025-24717) 2025-03-13 2025-10-24
cnvd-2025-24716 SAMSUNG Notes越界读取漏洞(CNVD-2025-24716) 2025-03-13 2025-10-24
cnvd-2025-24715 SAMSUNG Notes越界读入漏洞(CNVD-2025-24715) 2025-03-13 2025-10-24
cnvd-2025-24714 SAMSUNG Notes越界读取漏洞(CNVD-2025-24714) 2025-03-13 2025-10-24
cnvd-2025-24713 SAMSUNG Notes越界读取漏洞(CNVD-2025-24713) 2025-03-13 2025-10-24
cnvd-2025-24712 SAMSUNG Notes越界读漏洞(CNVD-2025-24712) 2025-05-12 2025-10-24
cnvd-2025-24711 SAMSUNG Notes存在未明漏洞 2025-05-14 2025-10-24
cnvd-2025-24710 SAMSUNG Notes信息泄露漏洞(CNVD-2025-24710) 2025-09-05 2025-10-24
cnvd-2025-24709 SAMSUNG Notes信息泄露漏洞(CNVD-2025-24709) 2025-09-05 2025-10-24
cnvd-2025-24708 SAMSUNG Notes信息泄露漏洞 2025-10-21 2025-10-24
cnvd-2025-24707 SAMSUNG Notes越界写入漏洞 2025-10-21 2025-10-24
cnvd-2025-25473 IBM Aspera信息泄露漏洞(CNVD-2025-25473) 2025-10-21 2025-10-23
cnvd-2025-25472 IBM Aspera Faspex输入验证错误漏洞 2025-10-21 2025-10-23
cnvd-2025-25375 Apache Geode跨站请求伪造漏洞(CNVD-2025-25375) 2025-10-23 2025-10-23
cnvd-2025-24803 Microsoft Windows SMB Client授权问题漏洞 2025-10-17 2025-10-23
cnvd-2025-24793 Fortinet FortiDLP路径遍历漏洞 2025-10-21 2025-10-23
cnvd-2025-24787 Emlog跨站脚本漏洞(CNVD-2025-24787) 2025-10-21 2025-10-23
cnvd-2025-24757 Beauty Parlour Management System customer-list.php文件SQL注入漏洞 2025-10-13 2025-10-23
cnvd-2025-24756 OpenBao资源管理错误漏洞 2025-10-23 2025-10-23
cnvd-2025-24755 ChurchCRM路径遍历漏洞 2025-10-23 2025-10-23
cnvd-2025-24733 ChurchCRM反序列化漏洞 2025-10-23 2025-10-23
cnvd-2025-24732 ChanCMS /cms/model/hasUse文件SQL注入漏洞 2025-10-23 2025-10-23
cnvd-2025-24731 ChanCMS /cms/article/update文件SQL注入漏洞 2025-10-23 2025-10-23
cnvd-2025-24730 IBM Transformation Extender Advanced日志信息泄露漏洞 2025-10-21 2025-10-23
cnvd-2025-24729 Palo Alto Networks PAN-OS存在未明漏洞(CNVD-2025-24729) 2025-10-21 2025-10-23
ID Description Published Updated
certfr-2024-avi-0269 Multiples vulnérabilités dans Mozilla Firefox 2024-04-04T00:00:00.000000 2024-04-04T00:00:00.000000
certfr-2024-avi-0268 Multiples vulnérabilités dans VMware SD-WAN 2024-04-03T00:00:00.000000 2024-04-03T00:00:00.000000
certfr-2024-avi-0267 Vulnérabilité dans les produits Palo Alto Networks 2024-04-02T00:00:00.000000 2024-04-02T00:00:00.000000
certfr-2024-avi-0266 Multiples vulnérabilités dans Synology Surveillance Station 2024-04-02T00:00:00.000000 2024-04-02T00:00:00.000000
certfr-2024-avi-0265 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-03-29T00:00:00.000000 2024-03-29T00:00:00.000000
certfr-2024-avi-0264 Multiples vulnérabilités dans le noyau Linux de RedHat 2024-03-29T00:00:00.000000 2024-03-29T00:00:00.000000
certfr-2024-avi-0263 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-03-29T00:00:00.000000 2024-03-29T00:00:00.000000
certfr-2024-avi-0262 Multiples vulnérabilités dans les produits IBM 2024-03-29T00:00:00.000000 2024-03-29T00:00:00.000000
certfr-2024-avi-0257 Multiples vulnérabilités dans Elasticsearch 2024-03-28T00:00:00.000000 2024-03-29T00:00:00.000000
certfr-2024-avi-0261 Multiples vulnérabilités dans Microsoft Edge 2024-03-28T00:00:00.000000 2024-03-28T00:00:00.000000
certfr-2024-avi-0260 Multiples vulnérabilités dans les produits Cisco 2024-03-28T00:00:00.000000 2024-03-28T00:00:00.000000
certfr-2024-avi-0259 Multiples vulnérabilités dans GitLab 2024-03-28T00:00:00.000000 2024-03-28T00:00:00.000000
certfr-2024-avi-0258 Multiples vulnérabilités dans les produits Splunk 2024-03-28T00:00:00.000000 2024-03-28T00:00:00.000000
certfr-2024-avi-0256 Vulnérabilité dans Wireshark 2024-03-28T00:00:00.000000 2024-03-28T00:00:00.000000
certfr-2024-avi-0255 Vulnérabilité dans GLPI 2024-03-28T00:00:00.000000 2024-03-28T00:00:00.000000
certfr-2024-avi-0254 Multiples vulnérabilités dans Google Chrome 2024-03-27T00:00:00.000000 2024-03-27T00:00:00.000000
certfr-2024-avi-0253 Vulnérabilité dans Aruba ArubaOS-Switch 2024-03-27T00:00:00.000000 2024-03-27T00:00:00.000000
certfr-2024-avi-0252 Multiples vulnérabilités dans Nagios XI 2024-03-27T00:00:00.000000 2024-03-27T00:00:00.000000
certfr-2024-avi-0251 Multiples vulnérabilités dans Kaspersky Anti Targeted Attack 2024-03-26T00:00:00.000000 2024-03-26T00:00:00.000000
certfr-2024-avi-0250 Vulnérabilité dans les produits Apple 2024-03-26T00:00:00.000000 2024-03-26T00:00:00.000000
certfr-2024-avi-0249 Multiples vulnérabilités dans Tenable Security Center 2024-03-26T00:00:00.000000 2024-03-26T00:00:00.000000
certfr-2024-avi-0248 Vulnérabilité dans Microsoft .Net 2024-03-25T00:00:00.000000 2024-03-25T00:00:00.000000
certfr-2024-avi-0247 Multiples vulnérabilités dans Microsoft Edge 2024-03-25T00:00:00.000000 2024-03-25T00:00:00.000000
certfr-2024-avi-0246 Multiples vulnérabilités dans Mozilla Firefox 2024-03-25T00:00:00.000000 2024-03-25T00:00:00.000000
certfr-2024-avi-0245 Multiples vulnérabilités dans MISP 2024-03-25T00:00:00.000000 2024-03-25T00:00:00.000000
certfr-2024-avi-0244 Multiples vulnérabilités dans les produits Netapp 2024-03-25T00:00:00.000000 2024-03-25T00:00:00.000000
certfr-2024-avi-0243 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-03-22T00:00:00.000000 2024-03-22T00:00:00.000000
certfr-2024-avi-0242 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-03-22T00:00:00.000000 2024-03-22T00:00:00.000000
certfr-2024-avi-0241 Multiples vulnérabilités dans le noyau Linux de RedHat 2024-03-22T00:00:00.000000 2024-03-22T00:00:00.000000
certfr-2024-avi-0240 Multiples vulnérabilités dans les produits IBM 2024-03-22T00:00:00.000000 2024-03-22T00:00:00.000000
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated