Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-64353	8.8 (3.1)	WordPress Polylang plugin <= 3.7.3 - Deserialization o…	Chouby	Polylang	2025-10-31T11:42:25.417Z	2026-01-20T14:28:22.353Z
CVE-2025-64354	6.5 (3.1)	WordPress Gutenberg plugin <= 21.8.2 - Cross Site Scri…	Matias Ventura	Gutenberg	2025-10-31T11:42:26.178Z	2026-01-20T14:28:22.341Z
CVE-2025-64295	6.5 (3.1)	WordPress All In One SEO Pack plugin <= 4.8.6.1 - Sens…	Syed Balkhi	All In One SEO Pack	2025-12-18T07:22:15.447Z	2026-01-20T14:28:22.289Z
CVE-2025-64355	6.5 (3.1)	WordPress JetElements For Elementor plugin <= 2.7.12 -…	Crocoblock	JetElements For Elementor	2025-12-18T16:16:33.764Z	2026-01-20T14:28:22.280Z
CVE-2025-64289	5.9 (3.1)	WordPress Premmerce Product Search for WooCommerce plu…	Premmerce	Premmerce Product Search for WooCommerce	2025-10-29T08:38:14.838Z	2026-01-20T14:28:22.275Z
CVE-2025-64296	5.3 (3.1)	WordPress Facebook for WooCommerce plugin <= 3.5.7 - B…	Facebook	Facebook for WooCommerce	2025-10-29T04:08:45.858Z	2026-01-20T14:28:22.271Z
CVE-2025-64290	4.3 (3.1)	WordPress Premmerce Product Search for WooCommerce plu…	Premmerce	Premmerce Product Search for WooCommerce	2025-10-29T08:38:15.299Z	2026-01-20T14:28:22.268Z
CVE-2025-64350	3.8 (3.1)	WordPress Rank Math SEO plugin <= 1.0.252.1 - Broken A…	Rank Math SEO	Rank Math SEO	2025-10-31T11:42:17.908Z	2026-01-20T14:28:22.231Z
CVE-2025-64294	5.3 (3.1)	WordPress WP Snow Effect plugin <= 1.1.15 - Broken Acc…	d3wp	WP Snow Effect	2025-11-03T13:09:39.398Z	2026-01-20T14:28:22.200Z
CVE-2025-64356	4.3 (3.1)	WordPress Insert PHP Code Snippet plugin <= 1.4.3 - Br…	f1logic	Insert PHP Code Snippet	2025-10-31T11:42:26.908Z	2026-01-20T14:28:22.178Z
CVE-2025-64292	5.4 (3.1)	WordPress Analytics Germanized for Google Analytics pl…	PascalBajorat	Analytics Germanized for Google Analytics	2025-11-13T09:24:32.781Z	2026-01-20T14:28:22.131Z
CVE-2025-64291	5.9 (3.1)	WordPress Premmerce User Roles plugin <= 1.0.13 - Cros…	Premmerce	Premmerce User Roles	2025-10-29T08:38:15.757Z	2026-01-20T14:28:22.052Z
CVE-2025-64288	4.3 (3.1)	WordPress Premmerce plugin <= 1.3.19 - Cross Site Requ…	Premmerce	Premmerce	2025-10-29T08:38:14.400Z	2026-01-20T14:28:22.041Z
CVE-2025-64287	8.1 (3.1)	WordPress Alloggio - Hotel Booking Theme theme <= 1.8 …	Edge-Themes	Alloggio - Hotel Booking	2025-11-06T15:56:13.317Z	2026-01-20T14:28:22.019Z
CVE-2025-64267	4.3 (3.1)	WordPress WooCommerce Ultimate Points And Rewards plug…	WPSwings	WooCommerce Ultimate Points And Rewards	2025-11-13T09:24:29.783Z	2026-01-20T14:28:21.878Z
CVE-2025-64285	5.4 (3.1)	WordPress Premmerce Wholesale Pricing for WooCommerce …	Premmerce	Premmerce Wholesale Pricing for WooCommerce	2025-10-29T08:38:13.449Z	2026-01-20T14:28:21.833Z
CVE-2025-64257	4.3 (3.1)	WordPress My Tickets plugin <= 2.1.0 - Broken Access C…	Joe Dolson	My Tickets	2025-12-09T14:13:52.568Z	2026-01-20T14:28:21.812Z
CVE-2025-64283	6.5 (3.1)	WordPress RTMKit plugin <= 1.6.7 - Insecure Direct Obj…	Rometheme	RTMKit	2025-10-29T08:38:12.413Z	2026-01-20T14:28:21.799Z
CVE-2025-64286	4.3 (3.1)	WordPress WP Rentals theme <= 3.13.1 - Cross Site Requ…	WpEstate	WP Rentals	2025-10-29T08:38:13.920Z	2026-01-20T14:28:21.779Z
CVE-2025-64284	7.5 (3.1)	WordPress Majestic Support plugin <= 1.1.1 - Local Fil…	Majestic Support	Majestic Support	2025-10-29T08:38:12.876Z	2026-01-20T14:28:21.739Z
CVE-2025-64261	6.5 (3.1)	WordPress Appointment Booking Calendar plugin <= 1.3.9…	codepeople	Appointment Booking Calendar	2025-11-13T09:24:27.476Z	2026-01-20T14:28:21.721Z
CVE-2025-64282	4.3 (3.1)	WordPress Radius Blocks plugin <= 2.2.1 - Insecure Dir…	RadiusTheme	Radius Blocks	2025-12-18T16:18:54.393Z	2026-01-20T14:28:21.561Z
CVE-2025-64271	6.5 (3.1)	WordPress WP Plugin Manager plugin <= 1.4.7 - Cross Si…	HasThemes	WP Plugin Manager	2025-11-13T09:24:30.639Z	2026-01-20T14:28:21.446Z
CVE-2025-64275	6.5 (3.1)	WordPress Booking Manager plugin <= 2.1.17 - Cross Sit…	wpdevelop	Booking Manager	2025-11-13T09:24:31.484Z	2026-01-20T14:28:21.330Z
CVE-2025-64249	4.8 (3.1)	WordPress Protect WP Admin plugin <= 4.1 - Broken Acce…	WP-EXPERTS.IN	Protect WP Admin	2025-12-16T08:12:49.485Z	2026-01-20T14:28:21.330Z
CVE-2025-64248	4.3 (3.1)	WordPress Request a Quote plugin <= 2.5.3 - Broken Acc…	emarket-design	Request a Quote	2025-12-16T08:12:49.290Z	2026-01-20T14:28:21.329Z
CVE-2025-64268	7.5 (3.1)	WordPress Timetics plugin <= 1.0.44 - Broken Access Co…	Arraytics	Timetics	2025-12-18T07:22:14.683Z	2026-01-20T14:28:21.327Z
CVE-2025-64247	6.5 (3.1)	WordPress Read More & Accordion plugin <= 3.5.4.1 - Br…	edmon.parker	Read More & Accordion	2025-12-16T08:12:49.100Z	2026-01-20T14:28:21.315Z
CVE-2025-64263	5.4 (3.1)	WordPress WP Content Pilot plugin <= 2.1.7 - Broken Ac…	PluginEver	WP Content Pilot	2025-11-13T09:24:28.383Z	2026-01-20T14:28:21.298Z
CVE-2025-64272	6.5 (3.1)	WordPress Email marketing for WordPress by GetResponse…	GetResponse	Email marketing for WordPress by GetResponse Official	2025-12-18T07:22:15.080Z	2026-01-20T14:28:21.293Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-15493	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	RainyGao DocSys ReposAuthMapper.xml sql injection	RainyGao	DocSys	2026-01-09T16:32:06.558Z	2026-01-09T18:37:10.665Z
CVE-2025-65368	6.1 (3.1)	SparkyFitness v0.15.8.2 is vulnerable to Cross Si…	n/a	n/a	2026-01-15T00:00:00.000Z	2026-01-15T21:03:15.128Z
CVE-2025-15492	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	RainyGao DocSys GroupMemberMapper.xml sql injection	RainyGao	DocSys	2026-01-09T16:02:07.110Z	2026-01-09T18:38:08.299Z
CVE-2026-22779	6.3 (4.0)	BlackSheep ClientSession is vulnerable to CRLF injection	Neoteroi	BlackSheep	2026-01-14T16:49:34.202Z	2026-01-14T21:01:52.743Z
CVE-2025-15494	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	RainyGao DocSys UserMapper.xml sql injection	RainyGao	DocSys	2026-01-09T16:32:08.806Z	2026-01-09T18:37:05.234Z
CVE-2026-22690	2.7 (4.0)	pypdf has possible long runtimes for missing /Root obj…	py-pdf	pypdf	2026-01-10T04:41:20.773Z	2026-01-12T17:07:00.323Z
CVE-2025-61548	9.8 (3.1)	SQL Injection is present on the hfInventoryDistFo…	n/a	n/a	2026-01-08T00:00:00.000Z	2026-01-08T19:44:35.115Z
CVE-2025-61547	6.8 (3.1)	Cross-Site Request Forgery (CSRF) is present on a…	n/a	n/a	2026-01-08T00:00:00.000Z	2026-01-08T18:52:54.861Z
CVE-2025-61937	10 (3.1) 10 (4.0)	AVEVA Process Optimization Code Injection	AVEVA	Process Optimization	2026-01-16T00:04:37.128Z	2026-01-16T15:10:11.404Z
CVE-2025-61943	8.4 (3.1) 9.3 (4.0)	AVEVA Process Optimization SQL Injection	AVEVA	Process Optimization	2026-01-16T00:09:18.629Z	2026-01-16T15:06:06.845Z
CVE-2025-9458	7.8 (3.1)	PRT File Parsing Memory Corruption Vulnerability	Autodesk	Shared Components	2025-11-07T18:01:48.595Z	2026-01-22T14:09:37.576Z
CVE-2025-9457	7.8 (3.1)	PRT File Parsing Memory Corruption Vulnerability	Autodesk	Shared Components	2025-12-15T23:37:20.671Z	2026-01-22T14:12:08.281Z
CVE-2025-9456	7.8 (3.1)	SLDPRT File Parsing Memory Corruption Vulnerability	Autodesk	Shared Components	2025-12-15T23:36:32.898Z	2026-01-22T14:13:25.959Z
CVE-2025-9452	7.8 (3.1)	SLDPRT File Parsing Memory Corruption Vulnerability	Autodesk	Shared Components	2025-12-15T23:32:39.490Z	2026-01-22T14:14:34.086Z
CVE-2025-63896	7.6 (3.1)	An issue in the Bluetooth Human Interface Device …	n/a	n/a	2025-12-04T00:00:00.000Z	2026-01-22T14:12:53.703Z
CVE-2025-11178	7.3 (3.0)	Local privilege escalation due to DLL hijacking v…	Acronis	Acronis True Image	2025-09-30T14:52:20.711Z	2026-01-22T15:01:39.787Z
CVE-2024-37006	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T03:15:46.957Z	2026-01-22T14:15:29.821Z
CVE-2024-37000	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T03:01:53.604Z	2026-01-22T14:16:27.899Z
CVE-2024-23157	7.8 (3.1)	Multiple ZDI Vulnerabilities in Autodesk AutoCAD and c…	Autodesk	AutoCAD	2024-06-25T03:30:58.799Z	2026-01-22T14:17:40.954Z
CVE-2024-23156	7.8 (3.1)	Multiple ZDI Vulnerabilities in Autodesk AutoCAD and c…	Autodesk	AutoCAD	2024-06-25T03:30:03.304Z	2026-01-22T14:19:00.403Z
CVE-2024-23148	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T02:42:11.300Z	2026-01-22T14:19:32.824Z
CVE-2024-23147	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T02:32:13.779Z	2026-01-22T14:20:18.924Z
CVE-2024-12178	7.8 (3.1)	DWFX File Parsing Vulnerabilities in Autodesk Naviswor…	Autodesk	Navisworks Freedom	2024-12-17T15:16:31.988Z	2026-01-22T14:21:21.091Z
CVE-2025-64691	8.8 (3.1) 9.3 (4.0)	AVEVA Process Optimization Code Injection	AVEVA	Process Optimization	2026-01-16T00:06:56.554Z	2026-01-16T15:12:10.618Z
CVE-2025-64729	8.1 (3.1) 8.6 (4.0)	AVEVA Process Optimization Missing Authorization	AVEVA	Process Optimization	2026-01-16T00:12:45.798Z	2026-01-16T14:53:45.166Z
CVE-2025-65117	7.4 (3.1) 8.5 (4.0)	AVEVA Process Optimization Use of Potentially Dangerou…	AVEVA	Process Optimization	2026-01-16T00:14:27.567Z	2026-01-16T14:53:13.050Z
CVE-2025-65118	8.8 (3.1) 9.3 (4.0)	AVEVA Process Optimization Uncontrolled Search Path Element	AVEVA	Process Optimization	2026-01-16T00:11:12.560Z	2026-01-16T15:39:37.345Z
CVE-2025-64769	7.1 (3.1) 7.6 (4.0)	AVEVA Process Optimization Cleartext Transmission of S…	AVEVA	Process Optimization	2026-01-16T00:16:48.949Z	2026-01-16T14:52:30.496Z
CVE-2026-22691	2.7 (4.0)	pypdf has possible long runtimes for malformed startxref	py-pdf	pypdf	2026-01-10T04:46:12.423Z	2026-01-12T16:48:53.503Z
CVE-2021-41739	N/A	A OS Command Injection vulnerability was discover…	n/a	n/a	2022-05-05T10:41:00	2024-08-04T03:15:29.248Z

ID	Description	Published	Updated
fkie_cve-2025-64729	The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tamp…	2026-01-16T02:16:45.467	2026-01-22T15:15:10.460
fkie_cve-2025-65117	The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Desi…	2026-01-16T02:16:45.833	2026-01-22T15:14:11.433
fkie_cve-2025-65118	The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tric…	2026-01-16T02:16:46.003	2026-01-22T15:13:00.017
fkie_cve-2025-64769	The Process Optimization application suite leverages connection channels/protocols that by-default…	2026-01-16T02:16:45.647	2026-01-22T15:11:11.250
fkie_cve-2026-22691	pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible…	2026-01-10T05:16:08.680	2026-01-22T15:01:05.967
fkie_cve-2021-41739	A OS Command Injection vulnerability was discovered in Artica Proxy 4.30.000000. Attackers can exec…	2022-05-05T11:15:07.893	2026-01-22T14:59:28.110
fkie_cve-2026-22700	RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including…	2026-01-10T06:15:52.517	2026-01-22T14:53:48.393
fkie_cve-2026-22699	RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including…	2026-01-10T06:15:52.377	2026-01-22T14:53:30.840
fkie_cve-2026-22688	WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval…	2026-01-10T04:16:01.837	2026-01-22T14:39:17.193
fkie_cve-2026-22687	WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval…	2026-01-10T04:16:01.670	2026-01-22T14:36:21.080
fkie_cve-2026-20045	A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications …	2026-01-21T17:16:08.077	2026-01-22T14:28:35.883
fkie_cve-2026-22246	Mastodon is a free, open-source social network server based on ActivityPub. Mastodon 4.3 added noti…	2026-01-08T16:16:02.957	2026-01-22T13:52:28.883
fkie_cve-2019-25277	FaceSentry Access Control System 6.4.8 contains a cross-site scripting vulnerability in the 'msg' p…	2026-01-08T00:15:57.760	2026-01-22T13:47:52.110
fkie_cve-2025-68151	CoreDNS is a DNS server that chains plugins. Prior to version 1.14.0, multiple CoreDNS server imple…	2026-01-08T16:15:59.847	2026-01-22T13:47:50.683
fkie_cve-2026-22589	Spree is an open source e-commerce solution built with Ruby on Rails. Prior to versions 4.10.2, 5.0…	2026-01-10T04:16:01.343	2026-01-22T13:45:29.320
fkie_cve-2025-31963	Improper authentication and missing CSRF protection in the local setup interface component in HCL B…	2026-01-07T12:17:01.863	2026-01-22T13:45:28.607
fkie_cve-2024-4392	The Jetpack – WP Security, Backup, Speed, & Growth plugin for WordPress is vulnerable to Stored Cro…	2024-05-14T16:17:34.233	2026-01-22T13:36:25.030
fkie_cve-2023-47774	Improper Restriction of Rendered UI Layers or Frames vulnerability in Automattic Jetpack allows Cli…	2024-04-24T16:15:08.107	2026-01-22T13:35:07.650
fkie_cve-2025-39482	Missing Authorization vulnerability in imithemes Eventer allows Exploiting Incorrectly Configured A…	2025-05-16T16:15:40.417	2026-01-22T13:16:04.510
fkie_cve-2025-39481	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-05-16T16:15:40.290	2026-01-22T13:16:04.373
fkie_cve-2025-39483	Improper Control of Generation of Code ('Code Injection') vulnerability in imithemes Eventer allows…	2025-08-14T11:15:33.933	2026-01-22T10:16:07.180
fkie_cve-2024-53252	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.407	2026-01-22T10:16:06.407
fkie_cve-2024-53251	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.347	2026-01-22T10:16:06.347
fkie_cve-2024-53250	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.290	2026-01-22T10:16:06.290
fkie_cve-2024-53249	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.223	2026-01-22T10:16:06.223
fkie_cve-2024-53248	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.160	2026-01-22T10:16:06.160
fkie_cve-2024-45743	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.097	2026-01-22T10:16:06.097
fkie_cve-2024-45742	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.033	2026-01-22T10:16:06.033
fkie_cve-2024-45730	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:05.973	2026-01-22T10:16:05.973
fkie_cve-2024-45729	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:05.907	2026-01-22T10:16:05.907

ID	Severity	Description	Published	Updated
ghsa-chj6-62r4-7j53	5.3 (3.1)	Missing Authorization vulnerability in ThimPress Sailing sailing allows Exploiting Incorrectly Conf…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-c3p5-fcjv-492q	4.3 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in Strategy11 Team Business Directory business-dire…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-9gj6-rwqc-4wvp	4.3 (3.1)	Authorization Bypass Through User-Controlled Key vulnerability in ThimPress Thim Elementor Kit thim…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-98fv-j8hf-wx9g	5.3 (3.1)	Missing Authorization vulnerability in wbcomdesigns Wbcom Designs lock-my-bp allows Exploiting Inco…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-96gg-frg8-8w89	4.3 (3.1)	Missing Authorization vulnerability in Shahjahan Jewel Fluent Booking fluent-booking allows Exploit…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-89qm-72jr-4h8f	5.3 (3.1)	Missing Authorization vulnerability in GSheetConnector by WesternDeal WPForms Google Sheet Connecto…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-85xv-hm5x-j45g	5.3 (3.1)	Missing Authorization vulnerability in vanquish User Extra Fields wp-user-extra-fields allows Explo…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-85p4-5wq2-7vqh	5.3 (3.1)	Missing Authorization vulnerability in scriptsbundle AdForest adforest allows Exploiting Incorrectl…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-6h34-3hxh-5x3j	4.3 (3.1)	Missing Authorization vulnerability in Joe Dolson My Calendar my-calendar allows Exploiting Incorre…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-69r3-vvfx-9ff9	4.3 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in PSM Plugins SupportCandy supportcandy allows Cro…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-64jp-2fgh-jcqm	4.3 (3.1)	Missing Authorization vulnerability in sonalsinha21 SKT Page Builder skt-builder allows Exploiting …	2025-12-16T09:31:07Z	2026-01-20T15:32:12Z
ghsa-5cjc-j8vj-q9qv	4.3 (3.1)	Missing Authorization vulnerability in CreativeMindsSolutions CM On Demand Search And Replace cm-on…	2025-12-16T09:31:07Z	2026-01-20T15:32:12Z
ghsa-52v3-p44c-8m9p	5.3 (3.1)	Missing Authorization vulnerability in Constant Contact Constant Contact + WooCommerce constant-con…	2025-12-09T18:30:43Z	2026-01-20T15:32:12Z
ghsa-wpw8-h26f-j4pp	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-wmh4-8rcg-2qqf	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-wj54-qjrq-9gwv	6.5 (3.1)	Missing Authorization vulnerability in Webilia Inc. Listdom listdom allows Exploiting Incorrectly C…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-wh25-mmxh-64f6	5.3 (3.1)	Missing Authorization vulnerability in xtemos Basel basel allows Exploiting Incorrectly Configured …	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-wfxf-j4rg-w6j6	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-w8rw-wf3g-63cx	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-vrh5-pxv9-qjvv	5.1 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-v2h6-hwp6-67qv	5.3 (3.1)	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in sizam R…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-pvpc-5j5f-m2fm	5.3 (3.1)	Missing Authorization vulnerability in WofficeIO Woffice Core woffice-core allows Exploiting Incorr…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-p8jj-567m-jw77	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-mqq8-cpfh-hpm3	6.5 (3.1)	Deserialization of Untrusted Data vulnerability in WePlugins - WordPress Development Company WP Map…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-m4cg-3fm9-j6x9	7.1 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-jxgx-9wwv-2g4h	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-j934-wxvm-8fw9	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-hrc4-whhq-v375	6.5 (3.1)	Missing Authorization vulnerability in Wealcoder Animation Addons for Elementor animation-addons-fo…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-hgf5-67r8-3fcm	5.9 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-h6rm-qgch-65pr	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z

ID	Description	Package	Published	Updated
pysec-2018-52	A flaw was found in python-cryptography versions between >=1.9.0 and <2.3. The finalize_w…	cryptography	2018-07-30T16:29:00Z	2021-07-15T02:22:07.445715Z
pysec-2009-2	Multiple cross-site scripting (XSS) vulnerabilities in Buildbot 0.7.6 through 0.7.11p2 al…	buildbot	2009-08-26T14:24:00Z	2021-07-15T02:22:07.247020Z
pysec-2009-1	Cross-site scripting (XSS) vulnerability in the waterfall web status view (status/web/wat…	buildbot	2009-08-25T17:30:00Z	2021-07-15T02:22:07.208084Z
pysec-2018-51	An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that have URI values wer…	bleach	2018-03-07T23:29:00Z	2021-07-15T02:22:07.141398Z
pysec-2021-112	An integer overflow exists in pywin32 prior to version b301 when adding an access control…	pywin32	2021-07-06T12:15:00Z	2021-07-08T03:14:30.948663Z
pysec-2021-111	`projen` is a project generation tool that synthesizes project configuration files such a…	projen	2021-04-06T19:15:00Z	2021-07-08T03:14:29.411085Z
pysec-2021-110	In Plone 5.0 through 5.2.4, Editors are vulnerable to XSS in the folder contents view, if…	plone	2021-06-30T01:15:00Z	2021-07-08T03:14:29.124687Z
pysec-2021-109	Django 3.1.x before 3.1.13 and 3.2.x before 3.2.5 allows QuerySet.order_by SQL injection …	django	2021-07-02T10:15:00Z	2021-07-08T03:14:19.151485Z
pysec-2017-43	Cross-site scripting (XSS) vulnerability in the render_full function in debug/tbtools.py …	werkzeug	2017-10-23T16:29:00Z	2021-07-05T00:01:28.359311Z
pysec-2017-42	The password reset form in Weblate before 2.10.1 provides different error messages depend…	weblate	2017-03-15T15:59:00Z	2021-07-05T00:01:28.288013Z
pysec-2020-214	Twisted before 16.3.1 does not attempt to address RFC 3875 section 4.1.18 namespace confl…	twisted	2020-03-11T20:15:00Z	2021-07-05T00:01:28.092827Z
pysec-2016-11	model/modelstorage.py in trytond 3.2.x before 3.2.10, 3.4.x before 3.4.8, 3.6.x before 3.…	trytond	2016-04-13T15:59:00Z	2021-07-05T00:01:27.588881Z
pysec-2012-6	model/modelstorage.py in the Tryton application framework (trytond) before 2.4.0 for Pyth…	trytond	2012-07-12T20:55:00Z	2021-07-05T00:01:27.407587Z
pysec-2020-213	Tornado before 3.2.2 sends arbitrary responses that contain a fixed CSRF token and may be…	tornado	2020-01-24T18:15:00Z	2021-07-05T00:01:27.333585Z
pysec-2012-5	CRLF injection vulnerability in the tornado.web.RequestHandler.set_header function in Tor…	tornado	2012-05-23T20:55:00Z	2021-07-05T00:01:27.298545Z
pysec-2017-41	The XML-RPC server in supervisor before 3.0.1, 3.1.x before 3.1.4, 3.2.x before 3.2.4, an…	supervisor	2017-08-23T14:29:00Z	2021-07-05T00:01:27.197995Z
pysec-2019-156	The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories.	scipy	2019-11-04T20:15:00Z	2021-07-05T00:01:27.093286Z
pysec-2017-40	Sanic before 0.5.1 allows reading arbitrary files with directory traversal, as demonstrat…	sanic	2017-11-10T09:29:00Z	2021-07-05T00:01:27.045850Z
pysec-2018-50	In SaltStack Salt before 2016.3.6, compromised salt-minions can impersonate the salt-master.	salt	2018-04-23T22:29:00Z	2021-07-05T00:01:26.870701Z
pysec-2017-39	Salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x befo…	salt	2017-09-26T14:29:00Z	2021-07-05T00:01:26.833704Z
pysec-2017-38	When using the local_batch client from salt-api in SaltStack Salt before 2015.8.13, 2016.…	salt	2017-09-26T14:29:00Z	2021-07-05T00:01:26.736529Z
pysec-2017-37	SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 …	salt	2017-10-24T17:29:00Z	2021-07-05T00:01:26.641829Z
pysec-2017-36	Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3…	salt	2017-10-24T17:29:00Z	2021-07-05T00:01:26.552235Z
pysec-2017-34	Salt before 2015.8.11 allows deleted minions to read or write to minions with the same id…	salt	2017-02-07T17:59:00Z	2021-07-05T00:01:26.392976Z
pysec-2017-33	Salt before 2015.5.10 and 2015.8.x before 2015.8.8, when PAM external authentication is e…	salt	2017-01-31T19:59:00Z	2021-07-05T00:01:26.354816Z
pysec-2017-32	The state.sls function in Salt before 2015.8.3 uses weak permissions on the cache data, w…	salt	2017-01-30T22:59:00Z	2021-07-05T00:01:26.287704Z
pysec-2017-31	Salt before 2014.7.6 does not verify certificates when connecting via the aliyun, proxmox…	salt	2017-08-25T18:29:00Z	2021-07-05T00:01:26.252043Z
pysec-2017-30	modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.	salt	2017-04-13T14:59:00Z	2021-07-05T00:01:26.213768Z
pysec-2017-29	modules/serverdensity_device.py in SaltStack before 2014.7.4 does not properly handle fil…	salt	2017-04-13T14:59:00Z	2021-07-05T00:01:26.175371Z
pysec-2014-18	Multiple unspecified vulnerabilities in Salt (aka SaltStack) before 2014.1.10 allow local…	salt	2014-08-22T17:55:00Z	2021-07-05T00:01:26.140564Z

ID	Description	Type

ID	Description	Updated
gsd-2024-3473	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.291821Z
gsd-2024-3385	A packet processing mechanism in Palo Alto Networks PAN-OS software enables a remote atta…	2024-04-11T05:03:27.290920Z
gsd-2024-3609	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.290549Z
gsd-2024-3375	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.290322Z
gsd-2024-3334	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.288283Z
gsd-2024-3305	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.286112Z
gsd-2024-3307	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.284596Z
gsd-2024-3424	A vulnerability classified as critical has been found in SourceCodester Online Courseware…	2024-04-11T05:03:27.283686Z
gsd-2024-3638	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.283226Z
gsd-2024-3505	JFrog Artifactory Self-Hosted versions below 7.77.3, are vulnerable to sensitive informat…	2024-04-11T05:03:27.282899Z
gsd-2024-3526	A vulnerability has been found in Campcodes Online Event Management System 1.0 and classi…	2024-04-11T05:03:27.280106Z
gsd-2024-3639	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.275654Z
gsd-2024-3569	A Denial of Service (DoS) vulnerability exists in the mintplex-labs/anything-llm reposito…	2024-04-11T05:03:27.274375Z
gsd-2024-3348	A vulnerability classified as critical has been found in SourceCodester Aplaya Beach Reso…	2024-04-11T05:03:27.271700Z
gsd-2024-3627	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.271015Z
gsd-2024-3353	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.269917Z
gsd-2024-3389	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.267136Z
gsd-2024-3294	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.266847Z
gsd-2024-3573	mlflow/mlflow is vulnerable to Local File Inclusion (LFI) due to improper parsing of URIs…	2024-04-11T05:03:27.266130Z
gsd-2024-3382	A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to se…	2024-04-11T05:03:27.263916Z
gsd-2024-3339	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.263258Z
gsd-2024-3362	A vulnerability was found in SourceCodester Online Library System 1.0 and classified as c…	2024-04-11T05:03:27.262432Z
gsd-2024-3600	The Poll Maker – Best WordPress Poll Plugin plugin for WordPress is vulnerable to Stored …	2024-04-11T05:03:27.261590Z
gsd-2024-3601	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.261358Z
gsd-2024-3536	A vulnerability has been found in Campcodes Church Management System 1.0 and classified a…	2024-04-11T05:03:27.260640Z
gsd-2024-3577	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.258329Z
gsd-2024-3406	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.258113Z
gsd-2024-3383	A vulnerability in how Palo Alto Networks PAN-OS software processes data received from Cl…	2024-04-11T05:03:27.257299Z
gsd-2024-3598	The ElementsKit Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via…	2024-04-11T05:03:27.255377Z
gsd-2024-3535	A vulnerability, which was classified as critical, was found in Campcodes Church Manageme…	2024-04-11T05:03:27.254687Z

ID	Description	Published	Updated
mal-2024-10020	Malicious code in ethrum (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10019	Malicious code in ethreum (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10018	Malicious code in ethreium (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10017	Malicious code in ethreeum (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10016	Malicious code in ethherum (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10015	Malicious code in ethherium (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10014	Malicious code in etheurm (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10013	Malicious code in etheum (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10012	Malicious code in etheruum (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10011	Malicious code in etherun (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10010	Malicious code in etherumm (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10009	Malicious code in etherum (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10008	Malicious code in etheruim (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10007	Malicious code in etheruemm (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10006	Malicious code in etheruem (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10005	Malicious code in etherriuumm (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10004	Malicious code in etherriuum (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10003	Malicious code in etherrium (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10002	Malicious code in etherreumm (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10001	Malicious code in etherreum (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2024-10000	Malicious code in etherreeum (PyPI)	2024-06-28T20:16:20Z	2025-12-11T09:27:53Z
mal-2023-8769	Malicious code in richcolor (PyPI)	2023-12-25T21:20:47Z	2025-12-11T09:27:53Z
mal-2023-8768	Malicious code in newpackagetest2028 (PyPI)	2023-12-25T20:50:36Z	2025-12-11T09:27:53Z
mal-2023-8767	Malicious code in newpackagetest2027 (PyPI)	2023-12-25T20:50:40Z	2025-12-11T09:27:53Z
mal-2023-8766	Malicious code in newpackagetest2026 (PyPI)	2023-12-25T20:46:03Z	2025-12-11T09:27:53Z
mal-2023-8764	Malicious code in excaliburx (PyPI)	2023-12-25T21:15:41Z	2025-12-11T09:27:53Z
mal-2025-920	Malicious code in discordbotstatus (PyPI)	2024-12-17T19:04:01Z	2025-12-11T09:27:52Z
mal-2025-919	Malicious code in discordbotpresence (PyPI)	2024-12-17T19:04:01Z	2025-12-11T09:27:52Z
mal-2025-918	Malicious code in dexat2 (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-915	Malicious code in dependency908 (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z

ID	Description	Published	Updated
wid-sec-w-2025-0700	Red Hat OpenShift: Schwachstelle ermöglicht Offenlegung von Informationen	2025-04-02T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2025-0681	Red Hat Satellite: Mehrere Schwachstellen	2025-04-01T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2024-1292	Ruby on Rails: Mehrere Schwachstellen	2024-06-04T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2024-0911	Red Hat Enterprise Linux (pcs): Mehrere Schwachstellen ermöglichen Denial of Service	2024-04-16T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2024-0462	Ruby on Rails: Mehrere Schwachstellen	2024-02-21T23:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2023-2516	Golang Go: Mehre Schwachstellen	2023-09-28T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2023-0632	Ruby on Rails: Mehrere Schwachstellen	2023-03-13T23:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2023-0559	Ruby on Rails: Schwachstelle ermöglicht Denial of Service	2023-03-02T23:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2025-1577	Microsoft GitHub Enterprise: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1574	Apache CXF: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1573	IBM QRadar SIEM: Schwachstelle ermöglicht Cross-Site Scripting	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1572	Oracle Fusion Middleware: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1571	Oracle Hyperion: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1570	Oracle Insurance Applications: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1568	Oracle JD Edwards: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1566	Oracle PeopleSoft: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1565	Oracle Retail Applications: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1564	Oracle Siebel CRM: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1563	Oracle Supply Chain: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1562	Oracle Utilities Applications: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1561	Oracle Virtualization: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1560	Oracle Communications Applications: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1559	Oracle Communications: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1558	Oracle Construction and Engineering: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1557	Oracle E-Business Suite: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1556	Oracle Enterprise Manager: Schwachstelle gefährdet Vertraulichkeit, Integrität und Verfügbarkeit	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1555	Oracle Financial Services Applications: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1554	Oracle Database Server: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1553	Oracle NoSQL Database: Schwachstelle gefährdet Verfügbarkeit	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1552	Oracle REST Data Services: Schwachstelle gefährdet Vertraulichkeit und Integrität	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2025:23225	Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.25.0 Release.	2025-12-15T21:46:21+00:00	2026-01-21T23:02:36+00:00
rhsa-2025:23143	Red Hat Security Advisory: Red Hat Build of Apache Camel 4.14.2 for Spring Boot release.	2025-12-11T20:15:32+00:00	2026-01-21T23:02:33+00:00
rhsa-2025:23127	Red Hat Security Advisory: curl security update	2025-12-11T13:44:21+00:00	2026-01-21T23:02:33+00:00
rhsa-2025:23126	Red Hat Security Advisory: curl security update	2025-12-11T13:25:51+00:00	2026-01-21T23:02:28+00:00
rhsa-2025:23125	Red Hat Security Advisory: curl security update	2025-12-11T13:00:36+00:00	2026-01-21T23:02:27+00:00
rhsa-2025:23053	Red Hat Security Advisory: tomcat9 security update	2025-12-10T14:39:58+00:00	2026-01-21T23:02:20+00:00
rhsa-2025:23052	Red Hat Security Advisory: tomcat9 security update	2025-12-10T14:44:53+00:00	2026-01-21T23:02:20+00:00
rhsa-2025:23051	Red Hat Security Advisory: tomcat security update	2025-12-10T14:38:53+00:00	2026-01-21T23:02:18+00:00
rhsa-2025:23050	Red Hat Security Advisory: tomcat security update	2025-12-10T14:45:33+00:00	2026-01-21T23:02:17+00:00
rhsa-2025:23049	Red Hat Security Advisory: tomcat security update	2025-12-10T15:15:23+00:00	2026-01-21T23:02:14+00:00
rhsa-2025:23048	Red Hat Security Advisory: tomcat security update	2025-12-10T17:45:03+00:00	2026-01-21T23:02:14+00:00
rhsa-2025:23047	Red Hat Security Advisory: tomcat security update	2025-12-10T15:12:13+00:00	2026-01-21T23:02:13+00:00
rhsa-2025:23046	Red Hat Security Advisory: tomcat security update	2025-12-10T14:55:18+00:00	2026-01-21T23:02:12+00:00
rhsa-2025:23045	Red Hat Security Advisory: tomcat security update	2025-12-10T14:52:08+00:00	2026-01-21T23:02:11+00:00
rhsa-2025:23044	Red Hat Security Advisory: tomcat security update	2025-12-10T17:07:38+00:00	2026-01-21T23:02:09+00:00
rhsa-2025:23043	Red Hat Security Advisory: curl security update	2025-12-10T16:27:23+00:00	2026-01-21T23:02:09+00:00
rhsa-2025:22925	Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.6 release and security update	2025-12-09T15:25:26+00:00	2026-01-21T23:01:59+00:00
rhsa-2025:22924	Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.6 release and security update	2025-12-09T15:22:27+00:00	2026-01-21T23:01:57+00:00
rhsa-2025:22861	Red Hat Security Advisory: Red Hat Developer Hub 1.8.1 release.	2025-12-08T15:17:40+00:00	2026-01-21T23:01:57+00:00
rhsa-2025:22784	Red Hat Security Advisory: Submariner v0.22 security fixes and container updates	2025-12-04T22:51:38+00:00	2026-01-21T23:01:53+00:00
rhsa-2025:22765	Red Hat Security Advisory: HawtIO 4.3.0 for Red Hat build of Apache Camel 4 Release and security update.	2025-12-04T15:07:27+00:00	2026-01-21T23:01:53+00:00
rhsa-2025:22179	Red Hat Security Advisory: RHSA 4.8.6 security and bug fix update	2025-11-26T13:57:08+00:00	2026-01-21T23:01:43+00:00
rhsa-2025:21892	Red Hat Security Advisory: Submariner v0.21 security fixes and container updates	2025-11-20T21:12:16+00:00	2026-01-21T23:01:36+00:00
rhsa-2025:21775	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Container Release Update	2025-11-19T20:53:45+00:00	2026-01-21T23:01:27+00:00
rhsa-2025:21768	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Product Security and Bug Fix Update	2025-11-19T15:51:59+00:00	2026-01-21T23:01:26+00:00
rhsa-2025:21706	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update	2025-11-18T17:47:02+00:00	2026-01-21T23:01:25+00:00
rhsa-2025:21696	Red Hat Security Advisory: pcs security update	2025-11-18T14:42:26+00:00	2026-01-21T23:01:23+00:00
rhsa-2025:21385	Red Hat Security Advisory: go-toolset:rhel8 security update	2025-11-13T18:57:18+00:00	2026-01-21T23:01:20+00:00
rhsa-2025:21382	Red Hat Security Advisory: go-toolset:rhel8 security update	2025-11-13T19:01:04+00:00	2026-01-21T23:01:19+00:00
rhsa-2025:21384	Red Hat Security Advisory: go-toolset:rhel8 security update	2025-11-13T19:03:20+00:00	2026-01-21T23:01:18+00:00

ID	Description	Published	Updated
icsa-21-147-01	GENIVI Alliance DLT	2021-05-27T00:00:00.000000Z	2021-05-27T00:00:00.000000Z
icsa-21-012-03	Siemens JT2Go and Teamcenter Visualization (Update B)	2021-01-12T00:00:00.000000Z	2021-05-27T00:00:00.000000Z
icsa-20-212-03	Mitsubishi Electric Factory Automation Products Path Traversal (Update C)	2020-07-30T00:00:00.000000Z	2021-05-27T00:00:00.000000Z
icsa-21-145-02	Rockwell Automation Micro800 and MicroLogix 1400	2021-05-25T00:00:00.000000Z	2021-05-25T00:00:00.000000Z
icsa-21-145-01	Datakit Libraries bundled in Luxion KeyShot	2021-05-25T00:00:00.000000Z	2021-05-25T00:00:00.000000Z
icsa-21-138-01	ICSA-21-138-01_Emerson Rosemount X-STREAM	2021-05-18T00:00:00.000000Z	2021-05-18T00:00:00.000000Z
icsa-21-021-04	Mitsubishi Electric MELFA (Update A)	2021-01-21T00:00:00.000000Z	2021-05-18T00:00:00.000000Z
icsa-21-133-04	OPC UA Products Built with the .NET Framework 4.5, 4.0, and 3.5	2021-05-13T00:00:00.000000Z	2021-05-13T00:00:00.000000Z
icsa-21-133-03	OPC Foundation UA Products Built with .NET Framework	2021-05-13T00:00:00.000000Z	2021-05-13T00:00:00.000000Z
icsa-21-133-02	Johnson Controls Sensormatic Tyco AI	2021-05-13T00:00:00.000000Z	2021-05-13T00:00:00.000000Z
icsa-21-133-01	Rockwell Automation Connected Components Workbench	2021-05-13T00:00:00.000000Z	2021-05-13T00:00:00.000000Z
icsa-21-131-01	Omron CX-One	2021-05-11T00:00:00.000000Z	2021-05-11T00:00:00.000000Z
icsa-21-040-08	Siemens SIMARIS Configuration (Update A)	2021-02-09T00:00:00.000000Z	2021-05-11T00:00:00.000000Z
icsa-21-124-02	Delta Electronics CNCSoft ScreenEditor	2021-05-04T00:00:00.000000Z	2021-05-04T00:00:00.000000Z
icsa-21-124-01	Advantech WISE-PaaS RMM	2021-05-04T00:00:00.000000Z	2021-05-04T00:00:00.000000Z
icsa-21-119-03	Johnson Controls Exacq Technologies exacqVision	2021-04-29T00:00:00.000000Z	2021-04-29T00:00:00.000000Z
icsa-21-119-02	Cassia Networks Access Controller	2021-04-29T00:00:00.000000Z	2021-04-29T00:00:00.000000Z
icsa-21-119-01	Texas Instruments SimpleLink	2021-04-29T00:00:00.000000Z	2021-04-29T00:00:00.000000Z
icsa-21-112-01	Horner Automation Cscape	2021-04-22T00:00:00.000000Z	2021-04-22T00:00:00.000000Z
icsa-21-110-06	Eaton Intelligent Power Manager	2021-04-20T00:00:00.000000Z	2021-04-20T00:00:00.000000Z
icsa-21-110-05	Delta Electronics CNCSoft-B	2021-04-20T00:00:00.000000Z	2021-04-20T00:00:00.000000Z
icsa-21-110-04	Delta Electronics CNCSoft ScreenEditor	2021-04-20T00:00:00.000000Z	2021-04-20T00:00:00.000000Z
icsa-21-110-03	Delta Industrial Automation COMMGR	2021-04-20T00:00:00.000000Z	2021-04-20T00:00:00.000000Z
icsa-21-110-02	ICSA-21-110-02_Rockwell Automation Stratix Switches	2021-04-20T00:00:00.000000Z	2021-04-20T00:00:00.000000Z
icsa-21-110-01	Hitachi ABB Power Grids Ellipse APM	2021-04-20T00:00:00.000000Z	2021-04-20T00:00:00.000000Z
icsa-21-096-01	Hitachi Energy Relion 670, 650 and SAM600-IO	2021-04-06T00:00:00.000000Z	2021-04-20T00:00:00.000000Z
icsa-20-161-02	Mitsubishi Electric MELSEC iQ-R Series (Update C)	2020-06-09T00:00:00.000000Z	2021-04-20T00:00:00.000000Z
icsa-21-105-02	EIPStackGroup OpENer Ethernet/IP	2021-04-15T00:00:00.000000Z	2021-04-15T00:00:00.000000Z
icsa-21-105-01	Schneider Electric C-Bus Toolkit	2021-04-15T00:00:00.000000Z	2021-04-15T00:00:00.000000Z
icsa-21-103-10	Siemens and PKE Control Center Server	2021-04-13T00:00:00.000000Z	2021-04-13T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-20170322-l2tp	Cisco IOS and IOS XE Software Layer 2 Tunneling Protocol Denial of Service Vulnerability	2017-03-22T16:00:00+00:00	2017-03-22T16:00:00+00:00
cisco-sa-20170322-dhcpc	Cisco IOS and IOS XE Software DHCP Client Denial of Service Vulnerability	2017-03-22T16:00:00+00:00	2017-03-22T16:00:00+00:00
cisco-sa-20170320-aniipv6	Cisco IOS and IOS XE Software IPv6 Denial of Service Vulnerability	2017-03-20T16:00:00+00:00	2017-03-20T16:00:00+00:00
cisco-sa-20170320-ani	Cisco IOS and IOS XE Software Autonomic Networking Infrastructure Registrar Denial of Service Vulnerability	2017-03-20T16:00:00+00:00	2017-03-20T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2023-49558	An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expand_mmac_params function in the modules/preprocs/nasm/nasm-pp.c component.	2024-01-01T08:00:00.000Z	2025-09-03T23:05:13.000Z
msrc_cve-2024-11831	Npm-serialize-javascript: cross-site scripting (xss) in serialize-javascript	2025-02-02T00:00:00.000Z	2025-09-03T23:04:58.000Z
msrc_cve-2024-49994	block: fix integer overflow in BLKSECDISCARD	2024-10-01T07:00:00.000Z	2025-09-03T23:03:34.000Z
msrc_cve-2024-39463	9p: add missing locking around taking dentry fid list	2024-06-02T07:00:00.000Z	2025-09-03T23:03:27.000Z
msrc_cve-2024-33394	An issue in kubevirt kubevirt v1.2.0 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component.	2024-05-02T07:00:00.000Z	2025-09-03T23:00:32.000Z
msrc_cve-2023-24538	Backticks not treated as string delimiters in html/template	2023-04-01T00:00:00.000Z	2025-09-03T23:00:31.000Z
msrc_cve-2019-11324	The urllib3 library before 1.24.2 for Python mishandles certain cases where the desired set of CA certificates is different from the OS store of CA certificates, which results in SSL connections succeeding in situations where a verification failure is the correct outcome. This is related to use of the ssl_context, ca_certs, or ca_certs_dir argument.	2019-04-02T00:00:00.000Z	2025-09-03T23:00:29.000Z
msrc_cve-2025-8842	NASM Netwide Assember preproc.c do_directive use after free	2025-08-02T00:00:00.000Z	2025-09-03T23:00:16.000Z
msrc_cve-2025-38664	ice: Fix a null pointer dereference in ice_copy_and_init_pkg()	2025-08-02T00:00:00.000Z	2025-09-03T23:00:09.000Z
msrc_cve-2024-30251	Denial of service when trying to parse malformed POST requests in aiohttp	2024-05-02T07:00:00.000Z	2025-09-03T23:00:09.000Z
msrc_cve-2024-11218	Podman: buildah: container breakout by using --jobs=2 and a race condition when building a malicious containerfile	2025-01-02T00:00:00.000Z	2025-09-03T22:59:20.000Z
msrc_cve-2025-6032	Podman: podman missing tls verification	2025-06-02T00:00:00.000Z	2025-09-03T22:57:29.000Z
msrc_cve-2025-38625	vfio/pds: Fix missing detach_ioas op	2025-08-02T00:00:00.000Z	2025-09-03T22:57:09.000Z
msrc_cve-2025-38379	smb: client: fix warning when reconnecting channel	2025-07-02T00:00:00.000Z	2025-09-03T22:56:14.000Z
msrc_cve-2024-49897	drm/amd/display: Check phantom_stream before it is used	2024-10-01T07:00:00.000Z	2025-09-03T22:55:58.000Z
msrc_cve-2022-49125	drm/sprd: fix potential NULL dereference	2025-02-02T00:00:00.000Z	2025-09-03T22:55:52.000Z
msrc_cve-2022-4087	iPXE TLS tls.c tls_new_ciphertext information exposure	2022-11-02T00:00:00.000Z	2025-09-03T22:55:05.000Z
msrc_cve-2022-48893	drm/i915/gt: Cleanup partial engine discovery failures	2024-08-02T00:00:00.000Z	2025-09-03T22:55:01.000Z
msrc_cve-2025-52555	CephFS Permission Escalation Vulnerability in Ceph Fuse mounted FS	2025-06-02T00:00:00.000Z	2025-09-03T22:54:54.000Z
msrc_cve-2023-6856	The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue could allow an attacker to perform remote code execution and sandbox escape. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121.	2023-12-01T08:00:00.000Z	2025-09-03T22:54:52.000Z
msrc_cve-2024-37676	An issue in htop-dev htop v.2.20 allows a local attacker to cause an out-of-bounds access in the Header_populateFromSettings function.	2024-06-02T07:00:00.000Z	2025-09-03T22:54:51.000Z
msrc_cve-2025-38623	PCI: pnv_php: Fix surprise plug detection and recovery	2025-08-02T00:00:00.000Z	2025-09-03T22:54:25.000Z
msrc_cve-2024-6603	In an out-of-memory scenario an allocation could fail but free would have been called on the pointer afterwards leading to memory corruption. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.	2024-07-01T07:00:00.000Z	2025-09-03T22:54:02.000Z
msrc_cve-2025-1118	Grub2: commands/dump: the dump command is not in lockdown when secure boot is enabled	2025-02-02T00:00:00.000Z	2025-09-03T22:53:33.000Z
msrc_cve-2022-49108	clk: mediatek: Fix memory leaks on probe	2025-02-02T00:00:00.000Z	2025-09-03T22:53:13.000Z
msrc_cve-2025-37855	drm/amd/display: Guard Possible Null Pointer Dereference	2025-05-02T00:00:00.000Z	2025-09-03T22:53:06.000Z
msrc_cve-2023-52572	cifs: Fix UAF in cifs_demultiplex_thread()	2024-03-02T08:00:00.000Z	2025-09-03T22:52:49.000Z
msrc_cve-2022-41716	Unsanitized NUL in environment variables on Windows in syscall and os/exec	2022-11-02T00:00:00.000Z	2025-09-03T22:52:17.000Z
msrc_cve-2025-8732	libxml2 xmlcatalog xmlParseSGMLCatalog recursion	2025-08-02T00:00:00.000Z	2025-09-03T22:52:04.000Z
msrc_cve-2023-49556	Buffer Overflow vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expr_delete_term function in the libyasm/expr.c component.	2024-01-01T08:00:00.000Z	2025-09-03T22:51:24.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-202307-0132	Multiple buffer overflow vulnerabilities exist in the vtysh_ubus binary of Milesight UR32…	2025-11-18T15:06:02.790000Z
var-202310-0300	Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_dat…	2025-11-18T15:05:30.053000Z
var-202402-1428	A command execution vulnerability exists in the guest resource functionality of Tp-Link E…	2025-11-18T15:05:24.662000Z
var-202403-0783	It is possible to perform a path traversal attack and write outside of the intended dire…	2025-11-18T15:05:24.367000Z
var-202403-0786	Path traversal attack is possible and write outside of the intended directory and may ac…	2025-11-18T15:05:24.351000Z
var-202403-0782	SQL injection vulnerability exists in GetDIAE_slogListParameters. Delta Electronics DIAE…	2025-11-18T15:05:24.331000Z
var-202403-0790	SQL injection vulnerability exists in GetDIAE_unListParameters. Delta Electronics DIAEne…	2025-11-18T15:05:24.313000Z
var-202403-0788	Improper neutralization of input within the affected product could lead to cross-site sc…	2025-11-18T15:05:24.295000Z
var-202403-0789	SQL injection vulnerability exists in GetDIAE_astListParameters. Delta Electronics DIAEn…	2025-11-18T15:05:24.277000Z
var-202404-0371	A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling …	2025-11-18T15:05:23.181000Z
var-202405-1812	A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling …	2025-11-18T15:05:23.125000Z
var-202405-0175	A vulnerability has been identified in OPUPI0 AMQP/MQTT (All versions < V5.30). The affec…	2025-11-18T15:05:22.999000Z
var-202501-1366	Multiple command execution vulnerabilities exist in the nas.cgi add_dir() functionality o…	2025-11-18T15:05:17.984000Z
var-202501-1365	Multiple command execution vulnerabilities exist in the nas.cgi add_dir() functionality o…	2025-11-18T15:05:17.963000Z
var-202504-0987	Unauthenticated attackers can add devices of other users to their scenes (or arbitrary sc…	2025-11-18T15:05:16.408000Z
var-202504-0973	An unauthenticated attacker can obtain a user's plant list by knowing the username. Growa…	2025-11-18T15:05:16.323000Z
var-202504-0990	Unauthenticated attackers can obtain restricted information about a user's smart device c…	2025-11-18T15:05:16.112000Z
var-202504-0969	An unauthenticated attacker can obtain EV charger energy consumption information of other…	2025-11-18T15:05:15.995000Z
var-202505-2569	Insufficient resource pool in the core management mechanism for some Intel(R) Processors …	2025-11-18T15:05:15.312000Z
var-202505-3115	The Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated …	2025-11-18T15:05:15.251000Z
var-202505-3493	The Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated …	2025-11-18T15:05:15.208000Z
var-202109-1255	Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-su…	2025-11-18T15:00:34.131000Z
var-201703-1246	Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet In…	2025-11-18T14:58:08.550000Z
var-201104-0076	Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.1…	2025-11-18T14:58:06.265000Z
var-202001-1034	Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Cac…	2025-11-18T14:57:24.871000Z
var-201202-0174	Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.15 and 11.…	2025-11-18T14:55:06.713000Z
var-202407-2660	An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Clients can a…	2025-11-18T14:53:55.375000Z
var-202108-2057	A memory corruption issue was addressed with improved memory handling. This issue is fixe…	2025-11-18T14:48:44.749000Z
var-201302-0263	Unspecified vulnerability in the ExternalInterface ActionScript functionality in Adobe Fl…	2025-11-18T14:48:42.777000Z
var-202111-1603	BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exist…	2025-11-18T14:48:38.946000Z

ID	Description	Published	Updated
jvndb-2009-000071	Roundcube Webmail vulnerable to cross-site request forgery	2009-11-04T15:27+09:00	2009-11-04T15:27+09:00
jvndb-2009-000070	SEIL/X Series and SEIL/B1 denial of service vulnerability	2009-11-02T16:42+09:00	2009-11-02T16:42+09:00
jvndb-2009-000069	SEIL/X Series and SEIL/B1 buffer overflow vulnerability	2009-11-02T16:42+09:00	2009-11-02T16:42+09:00
jvndb-2008-000018	Namazu cross-site scripting vulnerability	2008-05-21T00:00+09:00	2009-10-27T13:43+09:00
jvndb-2009-000066	Canon IT Solutions Inc. ACCESSGUARDIAN vulnerable to cross-site scripting	2009-10-20T15:56+09:00	2009-10-20T15:56+09:00
jvndb-2009-000067	Multiple Cybozu products vulnerable to cross-site scripting	2009-10-15T15:21+09:00	2009-10-15T15:21+09:00
jvndb-2009-000065	SugarCRM vulnerable to cross-site scripting	2009-10-02T16:02+09:00	2009-10-02T16:02+09:00
jvndb-2009-000064	Directory traversal vulnerability in multiple phpspot products	2009-09-18T18:11+09:00	2009-09-18T18:11+09:00
jvndb-2009-000063	Cross-site scripting vulnerability in multiple phpspot products	2009-09-18T18:11+09:00	2009-09-18T18:11+09:00
jvndb-2009-000062	XF-Section vulnerable to cross-site scripting	2009-09-17T15:52+09:00	2009-09-17T15:52+09:00
jvndb-2009-000061	Third-party cookie issue in Opera	2009-09-17T15:52+09:00	2009-09-17T15:52+09:00
jvndb-2009-001968	GIF File Processing Denial of Service Vulnerability in Multiple JP1 Products	2009-09-14T10:31+09:00	2009-09-14T10:31+09:00
jvndb-2009-001967	Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP	2009-09-14T10:31+09:00	2009-09-14T10:31+09:00
jvndb-2009-000060	Webservice-DIC yoyaku_v41 vulnerable to command injection	2009-09-11T16:36+09:00	2009-09-11T16:36+09:00
jvndb-2009-000059	Buffer overflow vulnerability in Microsoft Windows	2009-09-09T17:30+09:00	2009-09-09T17:30+09:00
jvndb-2009-001931	Issue of Access Control Failure in Hitachi Device Manager Server	2009-08-31T15:52+09:00	2009-08-31T15:52+09:00
jvndb-2009-001930	Issue of Access Control Failure in Groupmax Scheduler Server	2009-08-31T15:52+09:00	2009-08-31T15:52+09:00
jvndb-2009-000058	bingo!CMS core and bingo!CMS vulnerable to cross-site request forgery	2009-08-27T15:29+09:00	2009-08-27T15:29+09:00
jvndb-2009-000055	Site Calendar 'mycaljp' vulnerable to cross-site scripting	2009-08-26T15:25+09:00	2009-08-26T15:25+09:00
jvndb-2009-001893	Hitachi Business Logic Cross-Site Scripting Vulnerability	2009-08-25T10:50+09:00	2009-08-25T10:50+09:00
jvndb-2009-000056	SugarCRM vulnerable to SQL injection	2009-08-24T16:25+09:00	2009-08-24T16:25+09:00
jvndb-2009-000054	ColdFusion vulnerable to cross-site scripting	2009-08-19T16:33+09:00	2009-08-19T16:33+09:00
jvndb-2007-000295	APOP password recovery vulnerability	2008-05-21T00:00+09:00	2009-08-06T11:39+09:00
jvndb-2009-000053	Cross-site request forgery vulnerability in FreeNAS	2009-08-05T15:59+09:00	2009-08-05T15:59+09:00
jvndb-2009-000052	Cross-site scripting vulnerability in FreeNAS	2009-08-05T15:58+09:00	2009-08-05T15:58+09:00
jvndb-2009-000051	Webservice-DIC yoyaku_v41 vulnerable to command injection	2009-07-31T15:34+09:00	2009-07-31T15:34+09:00
jvndb-2009-000050	MySQL Connector/J vulnerable to SQL injection	2009-07-29T15:30+09:00	2009-07-29T15:30+09:00
jvndb-2009-000020	Movable Type cross-site scripting vulnerability	2009-04-28T16:18+09:00	2009-07-29T12:22+09:00
jvndb-2009-000002	Movable Type Enterprise cross-site scripting vulnerability	2009-01-13T18:50+09:00	2009-07-29T12:22+09:00
jvndb-2009-000049	Cross-site scripting vulnerability in RevoCounter CGI (Animation Counter)	2009-07-24T17:19+09:00	2009-07-24T17:19+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:1214-1	Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP6)	2025-04-11T20:03:45Z	2025-04-11T20:03:45Z
suse-su-2025:20184-1	Security update for elemental-operator	2025-04-11T10:57:37Z	2025-04-11T10:57:37Z
suse-su-2025:1201-1	Security update for expat	2025-04-11T10:16:13Z	2025-04-11T10:16:13Z
suse-su-2025:1199-1	Security update for fontforge	2025-04-11T08:41:11Z	2025-04-11T08:41:11Z
suse-su-2025:1195-1	Security update for the Linux Kernel	2025-04-10T13:48:06Z	2025-04-10T13:48:06Z
suse-su-2025:1194-1	Security update for the Linux Kernel	2025-04-10T13:46:40Z	2025-04-10T13:46:40Z
suse-su-2025:1193-1	Security update for apparmor	2025-04-10T08:01:52Z	2025-04-10T08:01:52Z
suse-su-2025:1186-1	Security update for expat	2025-04-09T14:28:12Z	2025-04-09T14:28:12Z
suse-su-2025:1183-1	Security update for the Linux Kernel	2025-04-09T13:57:53Z	2025-04-09T13:57:53Z
suse-su-2025:1182-1	Security update for azure-cli-core	2025-04-09T10:12:44Z	2025-04-09T10:12:44Z
suse-su-2025:1180-1	Security update for the Linux Kernel	2025-04-09T07:02:27Z	2025-04-09T07:02:27Z
suse-su-2025:1178-1	Security update for the Linux Kernel	2025-04-08T16:32:07Z	2025-04-08T16:32:07Z
suse-su-2025:1177-1	Security update for the Linux Kernel	2025-04-08T15:36:33Z	2025-04-08T15:36:33Z
suse-su-2025:1176-1	Security update for the Linux Kernel	2025-04-08T15:35:00Z	2025-04-08T15:35:00Z
suse-su-2025:20180-1	Security update for procps	2025-04-08T08:00:26Z	2025-04-08T08:00:26Z
suse-su-2025:1164-1	Security update for giflib	2025-04-08T07:02:58Z	2025-04-08T07:02:58Z
suse-su-2025:1163-1	Security update for giflib	2025-04-08T07:02:13Z	2025-04-08T07:02:13Z
suse-su-2025:1162-1	Security update for xen	2025-04-07T16:08:48Z	2025-04-07T16:08:48Z
suse-su-2025:1158-1	Security update for pam	2025-04-07T13:25:23Z	2025-04-07T13:25:23Z
suse-su-2025:20179-1	Security update for skopeo	2025-04-07T09:36:08Z	2025-04-07T09:36:08Z
suse-su-2025:1157-1	Security update for MozillaThunderbird	2025-04-07T08:27:10Z	2025-04-07T08:27:10Z
suse-su-2025:1155-1	Security update for govulncheck-vulndb	2025-04-07T08:16:06Z	2025-04-07T08:16:06Z
suse-su-2025:1153-1	Security update for go1.24	2025-04-07T08:15:51Z	2025-04-07T08:15:51Z
suse-ru-2025:1150-1	Recommended update for apache-commons-io	2025-04-07T07:47:08Z	2025-04-07T07:47:08Z
suse-su-2025:1149-1	Security update for webkit2gtk3	2025-04-07T07:12:39Z	2025-04-07T07:12:39Z
suse-su-2025:1143-1	Security update for google-guest-agent	2025-04-04T13:31:31Z	2025-04-04T13:31:31Z
suse-su-2025:1142-1	Security update for google-guest-agent	2025-04-04T13:30:47Z	2025-04-04T13:30:47Z
suse-su-2025:20177-1	Security update for libxml2	2025-04-04T13:07:10Z	2025-04-04T13:07:10Z
suse-su-2025:1141-1	Security update for go1.23	2025-04-04T11:41:42Z	2025-04-04T11:41:42Z
suse-su-2025:1139-1	Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3)	2025-04-03T16:33:52Z	2025-04-03T16:33:52Z

ID	Description	Published	Updated
opensuse-su-2024:13453-1	python310-mistune2-2.0.5-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13452-1	python310-azure-storage-queue-12.8.0-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13451-1	ovmf-202308-3.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13450-1	doxygen2man-2.0.8+20230721.002171b-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13449-1	libgit2-1_7-1.7.1-3.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13448-1	libX11-6-1.8.7-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13447-1	ungoogled-chromium-119.0.6045.159-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13446-1	libipa_hbac-devel-2.9.3-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13445-1	jbig2dec-0.20-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13444-1	gnutls-3.8.2-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13443-1	kubevirt-container-disk-1.1.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13442-1	xen-4.18.0_02-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13441-1	tomcat10-10.1.14-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13440-1	ruby3.2-rubygem-nokogiri-1.15.4-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13439-1	python310-Pillow-10.0.1-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13438-1	libopenssl-3-devel-3.1.4-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13437-1	libopenssl-1_1-devel-1.1.1w-4.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13436-1	gdb-13.2-3.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13435-1	python310-yt-dlp-2023.11.16-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13434-1	ucode-intel-20231114-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13433-1	ruby3.2-rubygem-rails-7.0-7.0.8-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13432-1	ruby3.2-rubygem-activerecord-7.0-7.0.8-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13431-1	python310-pyarrow-14.0.1-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13430-1	python-Twisted-doc-22.10.0-9.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13429-1	openvpn-2.6.7-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13428-1	libopenssl-1_0_0-devel-1.0.2u-23.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13427-1	memcached-1.6.22-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13426-1	libxml2-2-2.11.5-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13425-1	libtommath-devel-1.2.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13424-1	chromedriver-119.0.6045.159-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
cnvd-2025-23470	D-Link DIR-823X命令注入漏洞（CNVD-2025-23470）	2025-09-23	2025-10-13
cnvd-2025-23469	D-Link DIR-823X命令注入漏洞（CNVD-2025-23469）	2025-09-25	2025-10-13
cnvd-2025-23468	D-Link DIR-513缓冲区溢出漏洞（CNVD-2025-23468）	2025-09-25	2025-10-13
cnvd-2025-23467	D-Link DIR-823X命令注入漏洞（CNVD-2025-23467）	2025-09-29	2025-10-13
cnvd-2025-23466	D-Link DIR-823X命令执行漏洞	2025-09-29	2025-10-13
cnvd-2025-23465	WordPress插件CP Multi View Event Calendar授权缺失漏洞	2025-09-25	2025-10-13
cnvd-2025-23464	WordPress插件aThemes Addons for Elementor跨站脚本漏洞	2025-09-29	2025-10-13
cnvd-2025-23463	WordPress插件AR For WordPress跨站请求伪造漏洞	2025-09-29	2025-10-13
cnvd-2025-23462	WordPress插件AllInOne - Banner Rotator SQL注入漏洞	2025-09-29	2025-10-13
cnvd-2025-23461	WordPress插件Acclectic Media Organizer授权缺失漏洞	2025-09-29	2025-10-13
cnvd-2025-23379	Bank Locker Management System edit-subadmin.php?said=3文件SQL注入漏洞	2025-03-26	2025-10-11
cnvd-2025-23378	Bank Locker Management System search-locker-details.php文件SQL注入漏洞	2025-03-27	2025-10-11
cnvd-2025-23377	Bank Locker Management System search-report-details.php文件SQL注入漏洞	2025-03-28	2025-10-11
cnvd-2025-23376	Bank Locker Management System profile.php文件SQL注入漏洞	2025-03-28	2025-10-11
cnvd-2025-23375	Bank Locker Management System edit-locker.php?ltid=6文件SQL注入漏洞	2025-03-28	2025-10-11
cnvd-2025-23374	Bank Locker Management System changeimage1.php文件SQL注入漏洞	2025-03-28	2025-10-11
cnvd-2025-23373	WordPress插件Advanced Views存在未明漏洞	2025-09-25	2025-10-11
cnvd-2025-23372	D-Link DIR-823X命令注入漏洞（CNVD-2025-23372）	2025-09-29	2025-10-11
cnvd-2025-23371	D-Link DIR-823X命令注入漏洞（CNVD-2025-23371）	2025-09-29	2025-10-11
cnvd-2025-23370	D-Link DIR-823X命令注入漏洞（CNVD-2025-23370）	2025-09-29	2025-10-11
cnvd-2025-23369	D-Link DIR-823X命令注入漏洞（CNVD-2025-23369）	2025-09-29	2025-10-11
cnvd-2025-23368	D-Link DIR-823X命令注入漏洞（CNVD-2025-23368）	2025-09-29	2025-10-11
cnvd-2025-23367	D-Link DIR-823X命令注入漏洞（CNVD-2025-23367）	2025-09-29	2025-10-11
cnvd-2025-23366	Doctor Appointment Management System appointment-bwdates-reports-details.php文件SQL注入漏洞	2025-03-27	2025-10-11
cnvd-2025-23365	Bank Locker Management System changeidproof.php文件SQL注入漏洞	2025-03-28	2025-10-11
cnvd-2025-23364	e-Diary Management System view-note.php文件SQL注入漏洞	2025-04-09	2025-10-11
cnvd-2025-23363	e-Diary Management System search-result.php文件SQL注入漏洞	2025-04-09	2025-10-11
cnvd-2025-23362	e-Diary Management System registration.php文件SQL注入漏洞	2025-04-09	2025-10-11
cnvd-2025-23361	e-Diary Management System password-recovery.php文件SQL注入漏洞	2025-04-09	2025-10-11
cnvd-2025-23360	e-Diary Management System login.php文件SQL注入漏洞	2025-04-09	2025-10-11

ID	Description	Published	Updated
certfr-2023-avi-0734	Vulnérabilité dans les produits Mozilla	2023-09-13T00:00:00.000000	2023-09-14T00:00:00.000000
certfr-2023-avi-0743	Multiples vulnérabilités dans les produits Microsoft	2023-09-13T00:00:00.000000	2023-09-13T00:00:00.000000
certfr-2023-avi-0742	Multiples vulnérabilités dans Microsoft Azure	2023-09-13T00:00:00.000000	2023-09-13T00:00:00.000000
certfr-2023-avi-0741	Multiples vulnérabilités dans Microsoft .Net	2023-09-13T00:00:00.000000	2023-09-13T00:00:00.000000
certfr-2023-avi-0740	Multiples vulnérabilités dans Microsoft Windows	2023-09-13T00:00:00.000000	2023-09-13T00:00:00.000000
certfr-2023-avi-0739	Multiples vulnérabilités dans Microsoft Office	2023-09-13T00:00:00.000000	2023-09-13T00:00:00.000000
certfr-2023-avi-0738	Vulnérabilité dans Microsoft Edge	2023-09-13T00:00:00.000000	2023-09-13T00:00:00.000000
certfr-2023-avi-0737	Multiples vulnérabilités dans les produits SAP	2023-09-13T00:00:00.000000	2023-09-13T00:00:00.000000
certfr-2023-avi-0736	Vulnérabilité dans les produits Adobe	2023-09-13T00:00:00.000000	2023-09-13T00:00:00.000000
certfr-2023-avi-0735	Multiples vulnérabilités dans Google Chrome	2023-09-13T00:00:00.000000	2023-09-13T00:00:00.000000
certfr-2023-avi-0733	Multiples vulnérabilités dans les produits Siemens	2023-09-12T00:00:00.000000	2023-09-12T00:00:00.000000
certfr-2023-avi-0732	Vulnérabilité dans les produits Schneider	2023-09-12T00:00:00.000000	2023-09-12T00:00:00.000000
certfr-2023-avi-0731	Multiples vulnérabilités dans Foxit PDF Reader et Editor	2023-09-12T00:00:00.000000	2023-09-12T00:00:00.000000
certfr-2023-avi-0730	Vulnérabilité dans Google Chrome	2023-09-12T00:00:00.000000	2023-09-12T00:00:00.000000
certfr-2023-avi-0729	Vulnérabilité dans les produits Apple	2023-09-12T00:00:00.000000	2023-09-12T00:00:00.000000
certfr-2023-avi-0728	Multiples vulnérabilités dans IBM Cognos	2023-09-12T00:00:00.000000	2023-09-12T00:00:00.000000
certfr-2023-avi-0727	Multiples vulnérabilités dans les produits NetApp	2023-09-11T00:00:00.000000	2023-09-11T00:00:00.000000
certfr-2023-avi-0726	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2023-09-08T00:00:00.000000	2023-09-08T00:00:00.000000
certfr-2023-avi-0725	Multiples vulnérabilités dans le noyau Linux de RedHat	2023-09-08T00:00:00.000000	2023-09-08T00:00:00.000000
certfr-2023-avi-0724	Vulnérabilité dans IBM AIX	2023-09-08T00:00:00.000000	2023-09-08T00:00:00.000000
certfr-2023-avi-0723	Multiples vulnérabilités dans Microsoft Edge	2023-09-08T00:00:00.000000	2023-09-08T00:00:00.000000
certfr-2023-avi-0722	Vulnérabilité dans Veeam Backup	2023-09-08T00:00:00.000000	2023-09-08T00:00:00.000000
certfr-2023-avi-0721	Multiples vulnérabilités dans les produits Qnap	2023-09-08T00:00:00.000000	2023-09-08T00:00:00.000000
certfr-2023-avi-0720	Multiples vulnérabilités dans les produits Apple	2023-09-08T00:00:00.000000	2023-09-08T00:00:00.000000
certfr-2023-avi-0719	Multiples vulnérabilités dans les produits IBM	2023-09-07T00:00:00.000000	2023-09-07T00:00:00.000000
certfr-2023-avi-0718	Multiples vulnérabilités dans Aruba ArubaOS	2023-09-07T00:00:00.000000	2023-09-07T00:00:00.000000
certfr-2023-avi-0717	Vulnérabilité dans Elasticsearch	2023-09-07T00:00:00.000000	2023-09-07T00:00:00.000000
certfr-2023-avi-0716	Vulnérabilité dans Wallix Bastion	2023-09-07T00:00:00.000000	2023-09-07T00:00:00.000000
certfr-2023-avi-0715	Multiples vulnérabilités dans les produits Cisco	2023-09-07T00:00:00.000000	2023-09-07T00:00:00.000000
certfr-2023-avi-0714	Multiples vulnérabilités dans Nagios XI	2023-09-06T00:00:00.000000	2023-09-06T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated