Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-64288	4.3 (3.1)	WordPress Premmerce plugin <= 1.3.19 - Cross Site Requ…	Premmerce	Premmerce	2025-10-29T08:38:14.400Z	2026-01-20T14:28:22.041Z
CVE-2025-64287	8.1 (3.1)	WordPress Alloggio - Hotel Booking Theme theme <= 1.8 …	Edge-Themes	Alloggio - Hotel Booking	2025-11-06T15:56:13.317Z	2026-01-20T14:28:22.019Z
CVE-2025-64267	4.3 (3.1)	WordPress WooCommerce Ultimate Points And Rewards plug…	WPSwings	WooCommerce Ultimate Points And Rewards	2025-11-13T09:24:29.783Z	2026-01-20T14:28:21.878Z
CVE-2025-64285	5.4 (3.1)	WordPress Premmerce Wholesale Pricing for WooCommerce …	Premmerce	Premmerce Wholesale Pricing for WooCommerce	2025-10-29T08:38:13.449Z	2026-01-20T14:28:21.833Z
CVE-2025-64257	4.3 (3.1)	WordPress My Tickets plugin <= 2.1.0 - Broken Access C…	Joe Dolson	My Tickets	2025-12-09T14:13:52.568Z	2026-01-20T14:28:21.812Z
CVE-2025-64283	6.5 (3.1)	WordPress RTMKit plugin <= 1.6.7 - Insecure Direct Obj…	Rometheme	RTMKit	2025-10-29T08:38:12.413Z	2026-01-20T14:28:21.799Z
CVE-2025-64286	4.3 (3.1)	WordPress WP Rentals theme <= 3.13.1 - Cross Site Requ…	WpEstate	WP Rentals	2025-10-29T08:38:13.920Z	2026-01-20T14:28:21.779Z
CVE-2025-64284	7.5 (3.1)	WordPress Majestic Support plugin <= 1.1.1 - Local Fil…	Majestic Support	Majestic Support	2025-10-29T08:38:12.876Z	2026-01-20T14:28:21.739Z
CVE-2025-64261	6.5 (3.1)	WordPress Appointment Booking Calendar plugin <= 1.3.9…	codepeople	Appointment Booking Calendar	2025-11-13T09:24:27.476Z	2026-01-20T14:28:21.721Z
CVE-2025-64282	4.3 (3.1)	WordPress Radius Blocks plugin <= 2.2.1 - Insecure Dir…	RadiusTheme	Radius Blocks	2025-12-18T16:18:54.393Z	2026-01-20T14:28:21.561Z
CVE-2025-64271	6.5 (3.1)	WordPress WP Plugin Manager plugin <= 1.4.7 - Cross Si…	HasThemes	WP Plugin Manager	2025-11-13T09:24:30.639Z	2026-01-20T14:28:21.446Z
CVE-2025-64275	6.5 (3.1)	WordPress Booking Manager plugin <= 2.1.17 - Cross Sit…	wpdevelop	Booking Manager	2025-11-13T09:24:31.484Z	2026-01-20T14:28:21.330Z
CVE-2025-64249	4.8 (3.1)	WordPress Protect WP Admin plugin <= 4.1 - Broken Acce…	WP-EXPERTS.IN	Protect WP Admin	2025-12-16T08:12:49.485Z	2026-01-20T14:28:21.330Z
CVE-2025-64248	4.3 (3.1)	WordPress Request a Quote plugin <= 2.5.3 - Broken Acc…	emarket-design	Request a Quote	2025-12-16T08:12:49.290Z	2026-01-20T14:28:21.329Z
CVE-2025-64268	7.5 (3.1)	WordPress Timetics plugin <= 1.0.44 - Broken Access Co…	Arraytics	Timetics	2025-12-18T07:22:14.683Z	2026-01-20T14:28:21.327Z
CVE-2025-64247	6.5 (3.1)	WordPress Read More & Accordion plugin <= 3.5.4.1 - Br…	edmon.parker	Read More & Accordion	2025-12-16T08:12:49.100Z	2026-01-20T14:28:21.315Z
CVE-2025-64263	5.4 (3.1)	WordPress WP Content Pilot plugin <= 2.1.7 - Broken Ac…	PluginEver	WP Content Pilot	2025-11-13T09:24:28.383Z	2026-01-20T14:28:21.298Z
CVE-2025-64272	6.5 (3.1)	WordPress Email marketing for WordPress by GetResponse…	GetResponse	Email marketing for WordPress by GetResponse Official	2025-12-18T07:22:15.080Z	2026-01-20T14:28:21.293Z
CVE-2025-64265	4.3 (3.1)	WordPress Frontend File Manager plugin <= 23.2 - Broke…	N-Media	Frontend File Manager	2025-11-13T09:24:29.310Z	2026-01-20T14:28:21.291Z
CVE-2025-64256	8.8 (3.1)	WordPress Simple Folio plugin <= 1.1.0 - Cross Site Re…	PressTigers	Simple Folio	2025-12-09T14:13:52.351Z	2026-01-20T14:28:21.259Z
CVE-2025-64262	6.5 (3.1)	WordPress Auto Prune Posts plugin <= 3.0.0 - Cross Sit…	ramon fincken	Auto Prune Posts	2025-11-13T09:24:27.918Z	2026-01-20T14:28:21.234Z
CVE-2025-64260	7.1 (3.1)	WordPress ANAC XML Bandi di Gara plugin <= 7.7 - Cross…	Marco Milesi	ANAC XML Bandi di Gara	2025-12-18T07:22:14.310Z	2026-01-20T14:28:21.234Z
CVE-2025-64266	8.8 (3.1)	WordPress Booking and Rental Manager plugin <= 2.5.4 -…	magepeopleteam	Booking and Rental Manager	2025-12-18T07:22:14.481Z	2026-01-20T14:28:21.161Z
CVE-2025-64276	6.5 (3.1)	WordPress Survey Maker plugin <= 5.1.9.4 - Broken Acce…	Ays Pro	Survey Maker	2025-11-13T09:24:31.911Z	2026-01-20T14:28:21.160Z
CVE-2025-64259	6.5 (3.1)	WordPress Theater for WordPress plugin <= 0.18.8 - Bro…	Jeroen Schmit	Theater for WordPress	2025-11-13T09:24:26.955Z	2026-01-20T14:28:21.159Z
CVE-2025-64273	7.5 (3.1)	WordPress Email marketing for WordPress by GetResponse…	GetResponse	Email marketing for WordPress by GetResponse Official	2025-12-18T07:22:15.266Z	2026-01-20T14:28:21.096Z
CVE-2025-64270	6.5 (3.1)	WordPress Masteriyo - LMS plugin <= 2.0.3 - Sensitive …	masteriyo	Masteriyo - LMS	2025-12-18T07:22:14.865Z	2026-01-20T14:28:21.085Z
CVE-2025-64269	4.3 (3.1)	WordPress WooCommerce PDF Invoice Builder plugin <= 1.…	EDGARROJAS	WooCommerce PDF Invoice Builder	2025-11-13T09:24:30.214Z	2026-01-20T14:28:21.085Z
CVE-2025-64274	4.3 (3.1)	WordPress WPKoi Templates for Elementor plugin <= 3.4.…	wpkoithemes	WPKoi Templates for Elementor	2025-11-13T09:24:31.061Z	2026-01-20T14:28:21.083Z
CVE-2025-64264	5.9 (3.1)	WordPress Popup addon for Ninja Forms plugin <= 3.5.1 …	Aman	Popup addon for Ninja Forms	2025-11-13T09:24:28.871Z	2026-01-20T14:28:21.081Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2024-37000	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T03:01:53.604Z	2026-01-22T14:16:27.899Z
CVE-2024-23157	7.8 (3.1)	Multiple ZDI Vulnerabilities in Autodesk AutoCAD and c…	Autodesk	AutoCAD	2024-06-25T03:30:58.799Z	2026-01-22T14:17:40.954Z
CVE-2024-23156	7.8 (3.1)	Multiple ZDI Vulnerabilities in Autodesk AutoCAD and c…	Autodesk	AutoCAD	2024-06-25T03:30:03.304Z	2026-01-22T14:19:00.403Z
CVE-2024-23148	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T02:42:11.300Z	2026-01-22T14:19:32.824Z
CVE-2024-23147	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T02:32:13.779Z	2026-01-22T14:20:18.924Z
CVE-2024-12178	7.8 (3.1)	DWFX File Parsing Vulnerabilities in Autodesk Naviswor…	Autodesk	Navisworks Freedom	2024-12-17T15:16:31.988Z	2026-01-22T14:21:21.091Z
CVE-2025-64691	8.8 (3.1) 9.3 (4.0)	AVEVA Process Optimization Code Injection	AVEVA	Process Optimization	2026-01-16T00:06:56.554Z	2026-01-16T15:12:10.618Z
CVE-2025-64729	8.1 (3.1) 8.6 (4.0)	AVEVA Process Optimization Missing Authorization	AVEVA	Process Optimization	2026-01-16T00:12:45.798Z	2026-01-16T14:53:45.166Z
CVE-2025-65117	7.4 (3.1) 8.5 (4.0)	AVEVA Process Optimization Use of Potentially Dangerou…	AVEVA	Process Optimization	2026-01-16T00:14:27.567Z	2026-01-16T14:53:13.050Z
CVE-2025-65118	8.8 (3.1) 9.3 (4.0)	AVEVA Process Optimization Uncontrolled Search Path Element	AVEVA	Process Optimization	2026-01-16T00:11:12.560Z	2026-01-16T15:39:37.345Z
CVE-2025-64769	7.1 (3.1) 7.6 (4.0)	AVEVA Process Optimization Cleartext Transmission of S…	AVEVA	Process Optimization	2026-01-16T00:16:48.949Z	2026-01-16T14:52:30.496Z
CVE-2026-22691	2.7 (4.0)	pypdf has possible long runtimes for malformed startxref	py-pdf	pypdf	2026-01-10T04:46:12.423Z	2026-01-12T16:48:53.503Z
CVE-2021-41739	N/A	A OS Command Injection vulnerability was discover…	n/a	n/a	2022-05-05T10:41:00	2024-08-04T03:15:29.248Z
CVE-2026-22700	7.5 (3.1)	RustCrypto Has Insufficient Length Validation in decry…	RustCrypto	elliptic-curves	2026-01-10T05:17:25.583Z	2026-01-12T14:46:46.227Z
CVE-2026-22699	7.5 (3.1)	RustCrypto SM2-PKE has Unchecked AffinePoint Decoding …	RustCrypto	elliptic-curves	2026-01-10T05:17:22.818Z	2026-01-12T14:59:18.634Z
CVE-2026-22688	10 (3.1)	WeKnora has Command Injection in MCP stdio test	Tencent	WeKnora	2026-01-10T03:41:59.952Z	2026-01-12T17:20:43.431Z
CVE-2026-22687	8.1 (3.1)	WeKnora vulnerable to SQL Injection	Tencent	WeKnora	2026-01-10T03:41:43.862Z	2026-01-12T17:21:25.675Z
CVE-2026-20045	8.2 (3.1)	Cisco Unified Communications Products Remote Code Exec…	Cisco	Cisco Unified Communications Manager	2026-01-21T16:26:20.312Z	2026-01-22T04:55:43.320Z
CVE-2026-22246	6.5 (3.1)	Local Mastodon users can enumerate and access severed …	mastodon	mastodon	2026-01-08T15:27:21.490Z	2026-01-08T15:54:24.770Z
CVE-2019-25277	5.1 (4.0) 6.1 (3.1)	FaceSentry Access Control System 6.4.8 Reflected Cross…	iWT Ltd.	FaceSentry Access Control System	2026-01-07T23:11:06.730Z	2026-01-08T18:16:47.762Z
CVE-2025-68151	6.6 (4.0)	CoreDNS gRPC/HTTPS/HTTP3 servers lack resource limits,…	coredns	coredns	2026-01-08T15:33:12.711Z	2026-01-08T15:50:35.397Z
CVE-2026-22589	7.5 (3.1)	Spree API has Unauthenticated IDOR - Guest Address	spree	spree	2026-01-10T03:17:58.494Z	2026-01-12T17:32:46.777Z
CVE-2025-31963	2.9 (3.1)	HCL BigFix IVR is impacted by improper authentication …	HCLSoftware	BigFix IVR	2026-01-07T07:05:40.098Z	2026-01-07T16:13:25.789Z
CVE-2024-4392	6.4 (3.1)	Jetpack – WP Security, Backup, Speed, & Growth <= 13.3…	automattic	Jetpack – WP Security, Backup, Speed, & Growth	2024-05-14T08:32:31.906Z	2024-08-01T20:40:47.361Z
CVE-2023-47774	5.4 (3.1)	WordPress Jetpack plugin < 12.7 - Auth. Iframe Injecti…	Automattic	Jetpack	2024-04-24T15:58:40.432Z	2024-08-02T21:16:43.660Z
CVE-2025-39482	4.3 (3.1)	WordPress Eventer - WordPress Event & Booking Manager …	imithemes	Eventer	2025-05-16T15:45:26.697Z	2026-01-22T12:07:27.271Z
CVE-2025-39481	9.3 (3.1)	WordPress Eventer - WordPress Event & Booking Manager …	imithemes	Eventer	2025-05-16T15:45:27.223Z	2026-01-22T12:05:03.823Z
CVE-2025-39483	6.5 (3.1)	WordPress Eventer plugin < 3.9.9.1 - Shortcode Injecti…	imithemes	Eventer	2025-08-14T10:34:26.628Z	2026-01-22T09:41:27.096Z
CVE-2024-53252	N/A	REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	N/A	N/A		2026-01-22T09:40:06.360Z
CVE-2024-53251	N/A	REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	N/A	N/A		2026-01-22T09:40:04.870Z

ID	Description	Published	Updated
fkie_cve-2024-23156	A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk a…	2024-06-25T04:15:13.450	2026-01-22T15:16:46.190
fkie_cve-2024-23148	A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can…	2024-06-25T03:15:10.283	2026-01-22T15:16:46.010
fkie_cve-2024-23147	A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll thr…	2024-06-25T03:15:10.190	2026-01-22T15:16:45.787
fkie_cve-2024-12178	A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory Corrup…	2024-12-17T16:15:23.687	2026-01-22T15:16:45.100
fkie_cve-2025-64691	The vulnerability, if exploited, could allow an authenticated miscreant (OS standard user) to tamp…	2026-01-16T02:16:45.293	2026-01-22T15:15:51.823
fkie_cve-2025-64729	The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tamp…	2026-01-16T02:16:45.467	2026-01-22T15:15:10.460
fkie_cve-2025-65117	The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Desi…	2026-01-16T02:16:45.833	2026-01-22T15:14:11.433
fkie_cve-2025-65118	The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tric…	2026-01-16T02:16:46.003	2026-01-22T15:13:00.017
fkie_cve-2025-64769	The Process Optimization application suite leverages connection channels/protocols that by-default…	2026-01-16T02:16:45.647	2026-01-22T15:11:11.250
fkie_cve-2026-22691	pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible…	2026-01-10T05:16:08.680	2026-01-22T15:01:05.967
fkie_cve-2021-41739	A OS Command Injection vulnerability was discovered in Artica Proxy 4.30.000000. Attackers can exec…	2022-05-05T11:15:07.893	2026-01-22T14:59:28.110
fkie_cve-2026-22700	RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including…	2026-01-10T06:15:52.517	2026-01-22T14:53:48.393
fkie_cve-2026-22699	RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including…	2026-01-10T06:15:52.377	2026-01-22T14:53:30.840
fkie_cve-2026-22688	WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval…	2026-01-10T04:16:01.837	2026-01-22T14:39:17.193
fkie_cve-2026-22687	WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval…	2026-01-10T04:16:01.670	2026-01-22T14:36:21.080
fkie_cve-2026-20045	A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications …	2026-01-21T17:16:08.077	2026-01-22T14:28:35.883
fkie_cve-2026-22246	Mastodon is a free, open-source social network server based on ActivityPub. Mastodon 4.3 added noti…	2026-01-08T16:16:02.957	2026-01-22T13:52:28.883
fkie_cve-2019-25277	FaceSentry Access Control System 6.4.8 contains a cross-site scripting vulnerability in the 'msg' p…	2026-01-08T00:15:57.760	2026-01-22T13:47:52.110
fkie_cve-2025-68151	CoreDNS is a DNS server that chains plugins. Prior to version 1.14.0, multiple CoreDNS server imple…	2026-01-08T16:15:59.847	2026-01-22T13:47:50.683
fkie_cve-2026-22589	Spree is an open source e-commerce solution built with Ruby on Rails. Prior to versions 4.10.2, 5.0…	2026-01-10T04:16:01.343	2026-01-22T13:45:29.320
fkie_cve-2025-31963	Improper authentication and missing CSRF protection in the local setup interface component in HCL B…	2026-01-07T12:17:01.863	2026-01-22T13:45:28.607
fkie_cve-2024-4392	The Jetpack – WP Security, Backup, Speed, & Growth plugin for WordPress is vulnerable to Stored Cro…	2024-05-14T16:17:34.233	2026-01-22T13:36:25.030
fkie_cve-2023-47774	Improper Restriction of Rendered UI Layers or Frames vulnerability in Automattic Jetpack allows Cli…	2024-04-24T16:15:08.107	2026-01-22T13:35:07.650
fkie_cve-2025-39482	Missing Authorization vulnerability in imithemes Eventer allows Exploiting Incorrectly Configured A…	2025-05-16T16:15:40.417	2026-01-22T13:16:04.510
fkie_cve-2025-39481	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-05-16T16:15:40.290	2026-01-22T13:16:04.373
fkie_cve-2025-39483	Improper Control of Generation of Code ('Code Injection') vulnerability in imithemes Eventer allows…	2025-08-14T11:15:33.933	2026-01-22T10:16:07.180
fkie_cve-2024-53252	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.407	2026-01-22T10:16:06.407
fkie_cve-2024-53251	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.347	2026-01-22T10:16:06.347
fkie_cve-2024-53250	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.290	2026-01-22T10:16:06.290
fkie_cve-2024-53249	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used.	2026-01-22T10:16:06.223	2026-01-22T10:16:06.223

ID	Severity	Description	Published	Updated
ghsa-j934-wxvm-8fw9	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-hrc4-whhq-v375	6.5 (3.1)	Missing Authorization vulnerability in Wealcoder Animation Addons for Elementor animation-addons-fo…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-hgf5-67r8-3fcm	5.9 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-h6rm-qgch-65pr	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-gwq3-r365-h2g8	5.3 (3.1)	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in alekv P…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-fqq6-293f-f549	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-f36m-hf38-h6rh	5.3 (3.1)	Missing Authorization vulnerability in WebCodingPlace Image Caption Hover Pro image-caption-hover-p…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-cqxc-j3v9-5m9g	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-9r4p-xvf3-9x4q	6.5 (3.1)	Missing Authorization vulnerability in WP Delicious WP Delicious delicious-recipes allows Exploitin…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-9gx8-7m79-g5p3	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-98c9-f4v9-v6qr	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-93x9-7c94-7879	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-93x7-mfr3-2vx3	5.4 (3.1)	Missing Authorization vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-8q5w-6x37-j5hg	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-865r-5g86-hfxf	5.3 (3.1)	Missing Authorization vulnerability in Saad Iqbal Post SMTP post-smtp allows Exploiting Incorrectly…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-7f3f-ppww-82r3	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-74xg-56wg-gvpj	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-6pvg-49r3-g3c7	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-6j84-m7wp-j9jm	7.1 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in Jacques Malgrange Rencontre rencontre allows Sto…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-59m8-jmcc-pxx7	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-57rv-vq9v-c6qg	5.9 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-5263-ggmq-48gj	5.4 (3.1)	Missing Authorization vulnerability in Oleksandr Lysyi Debug Log Viewer debug-log-viewer allows Exp…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-3662-gvg6-j9xx	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2wqc-47g4-pm22	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2w86-r6rm-76wr	5.3 (3.1)	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in uixthem…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-2q9h-6v2j-hfpp	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2jf2-fhpf-vfw3	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2hgv-qvvq-63hq	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-29qw-9m44-pf9w	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-37mj-762c-hqp3	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:10Z

ID	Description	Package	Published	Updated
pysec-2013-15	The salt master in Salt (aka SaltStack) 0.11.0 through 0.17.0 does not properly drop grou…	salt	2013-11-05T18:55:00Z	2021-07-05T00:01:26.106423Z
pysec-2013-14	Salt (aka SaltStack) before 0.15.0 through 0.17.0 allows remote authenticated minions to …	salt	2013-11-05T18:55:00Z	2021-07-05T00:01:26.068729Z
pysec-2013-13	Salt (aka SaltStack) before 0.17.1 allows remote attackers to execute arbitrary YAML code…	salt	2013-11-05T18:55:00Z	2021-07-05T00:01:26.005200Z
pysec-2013-12	Salt (aka SaltStack) 0.15.0 through 0.17.0 allows remote authenticated users who are usin…	salt	2013-11-05T18:55:00Z	2021-07-05T00:01:25.968572Z
pysec-2016-10	The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attacker…	rsa	2016-01-13T15:59:00Z	2021-07-05T00:01:25.929299Z
pysec-2014-17	The parser cache functionality in parsergenerator.py in RPLY (aka python-rply) before 0.7…	rply	2014-01-28T00:55:00Z	2021-07-05T00:01:25.895879Z
pysec-2020-212	Multiple cross-site scripting (XSS) vulnerabilities in Roundup before 1.4.20 allow remote…	roundup	2020-01-30T21:15:00Z	2021-07-05T00:01:25.863651Z
pysec-2014-16	Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.20 allows…	roundup	2014-04-11T15:55:00Z	2021-07-05T00:01:25.823373Z
pysec-2014-15	Cross-site scripting (XSS) vulnerability in the history display in Roundup before 1.4.20 …	roundup	2014-04-11T15:55:00Z	2021-07-05T00:01:25.790750Z
pysec-2015-17	The resolve_redirects function in sessions.py in requests 2.1.0 through 2.5.3 allows remo…	requests	2015-03-18T16:59:00Z	2021-07-05T00:01:25.716066Z
pysec-2014-14	Requests (aka python-requests) before 2.3.0 allows remote servers to obtain sensitive inf…	requests	2014-10-15T14:55:00Z	2021-07-05T00:01:25.679942Z
pysec-2014-13	Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc passw…	requests	2014-10-15T14:55:00Z	2021-07-05T00:01:25.632991Z
pysec-2018-49	In PyYAML before 5.1, the yaml.load() API could execute arbitrary code if used with untru…	pyyaml	2018-06-27T12:29:00Z	2021-07-05T00:01:25.530537Z
pysec-2011-7	Multiple SQL injection vulnerabilities in the get_userinfo method in the MySQLAuthHandler…	pywebdav	2011-03-14T19:55:00Z	2021-07-05T00:01:25.487912Z
pysec-2014-12	The OpenStack Python client library for Swift (python-swiftclient) 1.0 through 1.9.0 does…	python-swiftclient	2014-02-18T19:55:00Z	2021-07-05T00:01:25.452828Z
pysec-2017-28	python-jose before 1.3.2 allows attackers to have unspecified impact by leveraging failur…	python-jose	2017-01-23T21:59:00Z	2021-07-05T00:01:25.423622Z
pysec-2013-11	The Python client library for Glance (python-glanceclient) before 0.10.0 does not properl…	python-glanceclient	2013-08-28T21:55:00Z	2021-07-05T00:01:25.393576Z
pysec-2017-27	python-fedora 0.8.0 and lower is vulnerable to an open redirect resulting in loss of CSRF…	python-fedora	2017-09-14T13:29:00Z	2021-07-05T00:01:25.360500Z
pysec-2019-155	python-dbusmock before version 0.15.1 AddTemplate() D-Bus method call or DBusTestCase.spa…	python-dbusmock	2019-04-22T16:29:00Z	2021-07-05T00:01:25.330872Z
pysec-2013-10	pyshop before 0.7.1 uses HTTP to retrieve packages from the PyPI repository, and does not…	pyshop	2013-08-06T02:52:00Z	2021-07-05T00:01:25.257414Z
pysec-2018-48	pysaml2 version 4.4.0 and older accept any password when run with python optimizations en…	pysaml2	2018-01-02T23:29:00Z	2021-07-05T00:01:25.224283Z
pysec-2017-26	Python package pysaml2 version 4.4.0 and earlier reuses the initialization vector across …	pysaml2	2017-11-17T04:29:00Z	2021-07-05T00:01:25.184392Z
pysec-2017-25	XML External Entity (XXE) vulnerability in PySAML2 4.4.0 and earlier allows remote attack…	pysaml2	2017-03-24T14:59:00Z	2021-07-05T00:01:25.139700Z
pysec-2019-154	The CreateID function in packet.py in pyrad before 2.1 uses sequential packet IDs, which …	pyrad	2019-12-09T21:15:00Z	2021-07-05T00:01:25.106986Z
pysec-2020-211	packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators …	pyrad	2020-01-28T16:15:00Z	2021-07-05T00:01:25.072912Z
pysec-2017-24	In PyJWT 1.5.0 and below the `invalid_strings` check in `HMACAlgorithm.prepare_key` does …	pyjwt	2017-08-24T16:29:00Z	2021-07-05T00:01:24.915848Z
pysec-2010-11	Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows r…	pyftpdlib	2010-10-19T20:00:00Z	2021-07-05T00:01:24.878652Z
pysec-2010-10	Memory leak in the on_dtp_close function in ftpserver.py in pyftpdlib before 0.5.2 allows…	pyftpdlib	2010-10-19T20:00:00Z	2021-07-05T00:01:24.847543Z
pysec-2010-9	ftpserver.py in pyftpdlib before 0.5.2 does not require the l permission for the MLST com…	pyftpdlib	2010-10-19T20:00:00Z	2021-07-05T00:01:24.817551Z
pysec-2010-8	Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows r…	pyftpdlib	2010-10-19T20:00:00Z	2021-07-05T00:01:24.787287Z

ID	Description	Type

ID	Description	Updated
gsd-2024-3564	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.254387Z
gsd-2024-3275	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.254081Z
gsd-2024-3301	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.253061Z
gsd-2024-3283	A vulnerability in mintplex-labs/anything-llm allows users with manager roles to escalate…	2024-04-11T05:03:27.250915Z
gsd-2024-3281	A vulnerability was discovered in the firmware builds after 8.0.2.3267 and prior to 8.1.3…	2024-04-11T05:03:27.249211Z
gsd-2024-3545	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.248803Z
gsd-2024-3541	A vulnerability classified as problematic has been found in Campcodes Church Management S…	2024-04-11T05:03:27.248066Z
gsd-2024-3420	A vulnerability was found in SourceCodester Online Courseware 1.0 and classified as criti…	2024-04-11T05:03:27.247125Z
gsd-2024-3322	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.246760Z
gsd-2024-3357	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.246024Z
gsd-2024-3544	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.245241Z
gsd-2024-3549	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.243212Z
gsd-2024-3386	An incorrect string comparison vulnerability in Palo Alto Networks PAN-OS software preven…	2024-04-11T05:03:27.242248Z
gsd-2024-3480	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.241931Z
gsd-2024-3575	Cross-site Scripting (XSS) - Stored in mindsdb/mindsdb	2024-04-11T05:03:27.241722Z
gsd-2024-3438	A vulnerability was found in SourceCodester Prison Management System 1.0 and classified a…	2024-04-11T05:03:27.241051Z
gsd-2024-3517	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.240663Z
gsd-2024-3518	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.239432Z
gsd-2024-3467	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.239156Z
gsd-2024-3469	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.237925Z
gsd-2024-3356	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.237199Z
gsd-2024-3318	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.236261Z
gsd-2024-3418	A vulnerability, which was classified as critical, was found in SourceCodester Online Cou…	2024-04-11T05:03:27.234193Z
gsd-2024-3431	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.233402Z
gsd-2024-3560	The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Stored Cross-…	2024-04-11T05:03:27.232296Z
gsd-2024-3476	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.232056Z
gsd-2024-3271	A command injection vulnerability exists in the run-llama/llama_index repository, specifi…	2024-04-11T05:03:27.231801Z
gsd-2024-3465	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.229133Z
gsd-2024-3612	A vulnerability was found in SourceCodester Warehouse Management System 1.0. It has been …	2024-04-11T05:03:27.228081Z
gsd-2024-3280	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.226442Z

ID	Description	Published	Updated
mal-2025-914	Malicious code in dependency133434fr43437 (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-913	Malicious code in datagov-harvester (PyPI)	2024-12-01T16:23:40Z	2025-12-11T09:27:52Z
mal-2025-912	Malicious code in crowdstrike-foundry (PyPI)	2024-12-01T16:23:40Z	2025-12-11T09:27:52Z
mal-2025-911	Malicious code in confirmedbywaseem (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-910	Malicious code in code-tracker (PyPI)	2024-12-16T10:40:50Z	2025-12-11T09:27:52Z
mal-2025-909	Malicious code in code-suggester (PyPI)	2024-12-16T10:40:50Z	2025-12-11T09:27:52Z
mal-2025-908	Malicious code in code-beautifyer (PyPI)	2024-12-16T10:40:50Z	2025-12-11T09:27:52Z
mal-2025-907	Malicious code in clean-packager (PyPI)	2024-12-16T10:40:50Z	2025-12-11T09:27:52Z
mal-2025-905	Malicious code in byted-df (PyPI)	2024-11-29T13:03:21Z	2025-12-11T09:27:52Z
mal-2025-902	Malicious code in bancor-simulation (PyPI)	2024-12-01T16:23:40Z	2025-12-11T09:27:52Z
mal-2025-901	Malicious code in auth0-open-source-template (PyPI)	2024-12-01T16:23:40Z	2025-12-11T09:27:52Z
mal-2025-900	Malicious code in apache-airflow-providers-edge (PyPI)	2024-12-01T16:23:40Z	2025-12-11T09:27:52Z
mal-2025-6496	Malicious code in doverius (PyPI)	2025-06-13T14:03:05Z	2025-12-11T09:27:52Z
mal-2025-6492	Malicious code in dbnodeindicator (PyPI)	2025-07-14T07:20:29Z	2025-12-11T09:27:52Z
mal-2025-6491	Malicious code in dbindicator (PyPI)	2025-07-11T10:03:16Z	2025-12-11T09:27:52Z
mal-2025-6490	Malicious code in csvvv (PyPI)	2025-06-17T15:02:53Z	2025-12-11T09:27:52Z
mal-2025-6489	Malicious code in cryptoo (PyPI)	2025-07-09T14:20:53Z	2025-12-11T09:27:52Z
mal-2025-6488	Malicious code in cryptob (PyPI)	2025-07-09T14:22:18Z	2025-12-11T09:27:52Z
mal-2025-6487	Malicious code in crto0 (PyPI)	2025-07-15T11:04:47Z	2025-12-11T09:27:52Z
mal-2025-6483	Malicious code in cpan (PyPI)	2025-06-28T09:28:42Z	2025-12-11T09:27:52Z
mal-2025-6482	Malicious code in confighum (PyPI)	2025-07-04T09:57:46Z	2025-12-11T09:27:52Z
mal-2025-6480	Malicious code in cloudx-base (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-6479	Malicious code in cloudx-auth (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-6478	Malicious code in cloudscrapersafe (PyPI)	2025-07-06T15:18:55Z	2025-12-11T09:27:52Z
mal-2025-6477	Malicious code in chatgpt4 (PyPI)	2025-06-23T15:55:07Z	2025-12-11T09:27:52Z
mal-2025-6471	Malicious code in bulktweetplus (PyPI)	2025-06-18T05:42:14Z	2025-12-11T09:27:52Z
mal-2025-6470	Malicious code in bulktweetbyref (PyPI)	2025-06-18T05:42:14Z	2025-12-11T09:27:52Z
mal-2025-6469	Malicious code in browser-history-analysis (PyPI)	2025-06-15T20:28:41Z	2025-12-11T09:27:52Z
mal-2025-6460	Malicious code in babel-preset-current-node-syntax (PyPI)	2024-09-06T11:29:16Z	2025-12-11T09:27:52Z
mal-2025-6459	Malicious code in atlasctf-21-prod-29 (PyPI)	2025-06-07T14:05:45Z	2025-12-11T09:27:52Z

ID	Description	Published	Updated
wid-sec-w-2025-1551	Oracle Commerce: Schwachstelle gefährdet Vertraulichkeit, Integrität und Verfügbarkeit	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1550	Red Hat Enterprise Linux (LZ4): Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-07-14T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1490	Fortinet FortiOS: Schwachstelle ermöglicht Codeausführung	2025-07-08T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1365	IBM QRadar SIEM: Mehrere Schwachstellen	2025-06-19T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1167	IBM DB2: Mehrere Schwachstellen	2025-05-29T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-0938	IBM DB2: Mehrere Schwachstellen ermöglichen Denial of Service	2025-05-05T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-0912	IBM DB2: Schwachstelle ermöglicht Denial of Service	2025-05-01T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-0106	git: Schwachstelle ermöglicht Darstellen falscher Informationen	2025-01-15T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2024-3507	Atlassian Jira Software: Mehrere Schwachstellen	2024-11-19T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2024-3089	Red Hat Enterprise Linux (Cryostat): Mehrere Schwachstellen ermöglichen Cross-Site Scripting	2024-10-06T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2023-0138	Oracle Communications Applications: Mehrere Schwachstellen	2023-01-17T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2022-0099	Node.js: Mehrere Schwachstellen	2022-01-10T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1547	Apache Jackrabbit Oak: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-14T22:00:00.000+00:00	2025-07-14T22:00:00.000+00:00
wid-sec-w-2025-1545	OTRS: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-13T22:00:00.000+00:00	2025-07-14T22:00:00.000+00:00
wid-sec-w-2025-1208	Roundcube: Schwachstelle ermöglicht Codeausführung	2025-06-01T22:00:00.000+00:00	2025-07-14T22:00:00.000+00:00
wid-sec-w-2025-0650	Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht Cross-Site Scripting	2025-03-27T23:00:00.000+00:00	2025-07-14T22:00:00.000+00:00
wid-sec-w-2024-1754	Roundcube: Mehrere Schwachstellen	2024-08-04T22:00:00.000+00:00	2025-07-14T22:00:00.000+00:00
wid-sec-w-2025-1544	PyTorch (ExecuTorch): Schwachstelle ermöglicht Denial of Service und Codeausführung	2025-07-13T22:00:00.000+00:00	2025-07-13T22:00:00.000+00:00
wid-sec-w-2025-1541	SAP Software: Schwachstelle ermöglicht Codeausführung	2025-07-13T22:00:00.000+00:00	2025-07-13T22:00:00.000+00:00
wid-sec-w-2025-1538	Ivanti Avalanche (Wavelink Manager): Schwachstelle ermöglicht Codeausführung oder Denial-of-Service	2025-07-13T22:00:00.000+00:00	2025-07-13T22:00:00.000+00:00
wid-sec-w-2025-1536	IBM Storage Scale: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-13T22:00:00.000+00:00	2025-07-13T22:00:00.000+00:00
wid-sec-w-2025-1535	Ivanti Desktop and Server Management: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-07-13T22:00:00.000+00:00	2025-07-13T22:00:00.000+00:00
wid-sec-w-2025-1534	Ivanti Sentry: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-07-13T22:00:00.000+00:00	2025-07-13T22:00:00.000+00:00
wid-sec-w-2025-1493	Microsoft SQL Server: Mehrere Schwachstellen	2025-07-08T22:00:00.000+00:00	2025-07-13T22:00:00.000+00:00
wid-sec-w-2025-1492	Microsoft Azure Service Fabric und Monitor Agent: Mehrere Schwachstellen	2025-07-08T22:00:00.000+00:00	2025-07-13T22:00:00.000+00:00
wid-sec-w-2025-1416	Microsoft Edge: Mehrere Schwachstellen	2025-06-26T22:00:00.000+00:00	2025-07-13T22:00:00.000+00:00
wid-sec-w-2025-1533	Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen	2017-03-14T23:00:00.000+00:00	2025-07-10T22:00:00.000+00:00
wid-sec-w-2025-1532	ESET Sicherheitsprodukte: Schwachstelle ermöglicht Manipulation von Dateien	2025-07-10T22:00:00.000+00:00	2025-07-10T22:00:00.000+00:00
wid-sec-w-2025-1530	Trend Micro Worry-Free Business Security: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-07-10T22:00:00.000+00:00	2025-07-10T22:00:00.000+00:00
wid-sec-w-2025-1527	Broadcom Brocade SANnav: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-10T22:00:00.000+00:00	2025-07-10T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2025:21383	Red Hat Security Advisory: go-toolset:rhel8 security update	2025-11-13T18:53:38+00:00	2026-01-21T23:01:17+00:00
rhsa-2025:21337	Red Hat Security Advisory: golang security update	2025-11-13T15:20:08+00:00	2026-01-21T23:01:14+00:00
rhsa-2025:21336	Red Hat Security Advisory: golang security update	2025-11-13T15:16:28+00:00	2026-01-21T23:01:13+00:00
rhsa-2025:21148	Red Hat Security Advisory: Red Hat build of Cryostat 4.1.0: new RHEL 9 container image security update	2025-11-25T02:09:04+00:00	2026-01-21T23:01:11+00:00
rhsa-2025:21132	Red Hat Security Advisory: Release of containers for RHOSO 18.0.14	2025-11-12T14:09:23+00:00	2026-01-21T23:01:09+00:00
rhsa-2025:21036	Red Hat Security Advisory: pcs security update	2025-11-11T19:52:06+00:00	2026-01-21T23:01:08+00:00
rhsa-2025:20983	Red Hat Security Advisory: podman security update	2025-11-11T19:19:32+00:00	2026-01-21T23:01:07+00:00
rhsa-2025:20962	Red Hat Security Advisory: pcs security update	2025-11-11T15:05:08+00:00	2026-01-21T23:01:03+00:00
rhsa-2025:20909	Red Hat Security Advisory: podman security update	2025-11-11T13:58:42+00:00	2026-01-21T23:01:02+00:00
rhsa-2025:19948	Red Hat Security Advisory: pcs security update	2025-11-10T01:37:06+00:00	2026-01-21T23:01:00+00:00
rhsa-2025:19810	Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.3 release and security update	2025-11-06T16:24:24+00:00	2026-01-21T23:00:57+00:00
rhsa-2025:19809	Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.3 release and security update	2025-11-06T16:32:43+00:00	2026-01-21T23:00:56+00:00
rhsa-2025:19734	Red Hat Security Advisory: pcs security update	2025-11-04T20:02:07+00:00	2026-01-21T23:00:53+00:00
rhsa-2025:19719	Red Hat Security Advisory: pcs security update	2025-11-04T17:06:17+00:00	2026-01-21T23:00:52+00:00
rhsa-2025:19800	Red Hat Security Advisory: pcs security update	2025-11-05T13:11:24+00:00	2026-01-21T23:00:51+00:00
rhsa-2025:19736	Red Hat Security Advisory: pcs security update	2025-11-04T23:37:53+00:00	2026-01-21T23:00:50+00:00
rhsa-2025:19733	Red Hat Security Advisory: pcs security update	2025-11-04T19:51:12+00:00	2026-01-21T23:00:49+00:00
rhsa-2025:19731	Red Hat Security Advisory: podman security update	2025-11-04T19:52:32+00:00	2026-01-21T23:00:49+00:00
rhsa-2025:19647	Red Hat Security Advisory: pcs security update	2025-11-04T11:19:06+00:00	2026-01-21T23:00:47+00:00
rhsa-2025:19513	Red Hat Security Advisory: pcs security update	2025-11-03T20:18:29+00:00	2026-01-21T23:00:42+00:00
rhsa-2025:19512	Red Hat Security Advisory: pcs security update	2025-11-03T20:27:49+00:00	2026-01-21T23:00:40+00:00
rhsa-2025:19397	Red Hat Security Advisory: golang security update	2025-11-03T01:42:52+00:00	2026-01-21T23:00:30+00:00
rhsa-2025:19381	Red Hat Security Advisory: Assisted Installer RHEL 8 components for Multicluster Engine for Kubernetes 2.9.1	2025-10-30T18:49:30+00:00	2026-01-21T23:00:29+00:00
rhsa-2025:19380	Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.9.1	2025-10-30T18:39:47+00:00	2026-01-21T23:00:28+00:00
rhsa-2025:19296	Red Hat Security Advisory: OpenShift Container Platform 4.20.2 bug fix and security update	2025-11-04T10:56:24+00:00	2026-01-21T23:00:27+00:00
rhsa-2025:19201	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Product Security and Bug Fix Update	2025-10-28T19:18:04+00:00	2026-01-21T23:00:22+00:00
rhsa-2025:19077	Red Hat Security Advisory: Streams for Apache Kafka 2.9.3 release and security update	2025-10-23T17:50:39+00:00	2026-01-21T23:00:22+00:00
rhsa-2025:19002	Red Hat Security Advisory: OpenShift Container Platform 4.20.1 bug fix and security update	2025-10-30T05:37:07+00:00	2026-01-21T23:00:19+00:00
rhsa-2025:18989	Red Hat Security Advisory: RHOAI 2.25.0 - Red Hat OpenShift AI	2025-10-22T16:01:19+00:00	2026-01-21T23:00:19+00:00
rhsa-2025:18979	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update	2025-10-22T13:21:59+00:00	2026-01-21T23:00:18+00:00

ID	Description	Published	Updated
icsa-21-103-03	JTEKT TOYOPUC products	2021-04-13T00:00:00.000000Z	2021-04-13T00:00:00.000000Z
icsa-21-103-02	Advantech WebAccessSCADA	2021-04-13T00:00:00.000000Z	2021-04-13T00:00:00.000000Z
icsa-21-103-01	Schneider Electric SoMachine Basic	2021-04-13T00:00:00.000000Z	2021-04-13T00:00:00.000000Z
icsa-19-344-02	Siemens and PKE SiNVR, SiVMS Video Server (Update A)	2019-12-10T00:00:00.000000Z	2021-04-13T00:00:00.000000Z
icsma-19-080-01	Medtronic Conexus Radio Frequency Telemetry Protocol (Update C)	2019-03-21T00:00:00.000000Z	2021-04-08T00:00:00.000000Z
icsa-21-098-01	FATEK Automation WinProladder	2021-04-08T00:00:00.000000Z	2021-04-08T00:00:00.000000Z
icsa-21-091-01	Rockwell Automation FactoryTalk AssetCentre	2021-04-01T00:00:00.000000Z	2021-04-01T00:00:00.000000Z
icsma-21-084-01	Philips Gemini PET/CT Family	2021-03-25T00:00:00.000000Z	2021-03-25T00:00:00.000000Z
icsa-21-082-03	GE Reason DR60	2021-03-23T00:00:00.000000Z	2021-03-23T00:00:00.000000Z
icsa-21-082-02	GE MU320E	2021-03-23T00:00:00.000000Z	2021-03-23T00:00:00.000000Z
icsa-21-082-01	Weintek EasyWeb cMT	2021-03-23T00:00:00.000000Z	2021-03-23T00:00:00.000000Z
icsa-21-061-02	Rockwell Automation CompactLogix 5370 and ControlLogix 5570 Controllers (Update A)	2021-03-02T00:00:00.000000Z	2021-03-23T00:00:00.000000Z
icsa-21-033-01	Rockwell Automation MicroLogix 1400 (Update A)	2021-02-02T00:00:00.000000Z	2021-03-23T00:00:00.000000Z
icsa-21-077-03	Hitachi ABB Power Grids eSOMS Telerik	2021-03-18T00:00:00.000000Z	2021-03-18T00:00:00.000000Z
icsa-21-077-02	Hitachi ABB Power Grids eSOMS	2021-03-18T00:00:00.000000Z	2021-03-18T00:00:00.000000Z
icsa-21-077-01	Johnson Controls Exacq Technologies exacqVision	2021-03-18T00:00:00.000000Z	2021-03-18T00:00:00.000000Z
icsa-21-056-03	Rockwell Automation Logix Controllers (Update A)	2021-02-25T00:00:00.000000Z	2021-03-18T00:00:00.000000Z
icsma-17-017-02	BD Alaris 8015 PC Unit (Update B)	2017-01-17T00:00:00.000000Z	2021-03-16T00:00:00.000000Z
icsa-21-075-03	Hitachi ABB Power Grids AFS Series	2021-03-16T00:00:00.000000Z	2021-03-16T00:00:00.000000Z
icsa-21-075-02	GE UR family	2021-03-16T00:00:00.000000Z	2021-03-16T00:00:00.000000Z
icsa-21-075-01	Advantech WebAccess/SCADA	2021-03-16T00:00:00.000000Z	2021-03-16T00:00:00.000000Z
icsa-21-070-01	Schneider Electric IGSS SCADA Software	2021-03-11T00:00:00.000000Z	2021-03-11T00:00:00.000000Z
icsa-21-068-10	Siemens SCALANCE and SIMATIC libcurl (Update B)	2019-04-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-21-068-08	Siemens Energy PLUSCONTROL 1st Gen	2021-03-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-21-068-07	Siemens TCP Stack of SIMATIC MV400	2021-03-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-21-068-04	Siemens SINEMA Remote Connect Server	2021-03-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-21-068-01	Siemens SIMATIC S7-PLCSIM	2021-03-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-21-035-01	Luxion KeyShot (Update A)	2021-02-04T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-19-162-02	Siemens SIMATIC Ident MV440 Family (Update A)	2019-06-11T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-19-099-04	Siemens SINEMA Remote Connect (Update A)	2019-04-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-38663	nilfs2: reject invalid file types when reading inodes	2025-08-02T00:00:00.000Z	2025-09-03T22:51:05.000Z
msrc_cve-2025-22106	vmxnet3: unregister xdp rxq info in the reset path	2025-04-02T00:00:00.000Z	2025-09-03T22:50:44.000Z
msrc_cve-2025-38463	tcp: Correct signedness in skb remaining space calculation	2025-07-02T00:00:00.000Z	2025-09-03T22:50:41.000Z
msrc_cve-2025-23090	Rejected reason: This CVE record has been withdrawn due to a duplicate entry CVE-2025-23083.	2025-01-02T00:00:00.000Z	2025-09-03T22:50:35.000Z
msrc_cve-2024-45777	Grub2: grub-core/gettext: integer overflow leads to heap oob write.	2025-02-02T00:00:00.000Z	2025-09-03T22:49:56.000Z
msrc_cve-2024-2605	An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.	2024-03-02T08:00:00.000Z	2025-09-03T22:49:35.000Z
msrc_cve-2025-37759	ublk: fix handling recovery & reissue in ublk_abort_queue()	2025-05-02T00:00:00.000Z	2025-09-03T22:48:52.000Z
msrc_cve-2017-11697	The __hash_open function in hash.c:229 in Mozilla Network Security Services (NSS) allows context-dependent attackers to cause a denial of service (floating point exception and crash) via a crafted cert8.db file.	2017-12-02T00:00:00.000Z	2025-09-03T22:48:37.000Z
msrc_cve-2025-38648	spi: stm32: Check for cfg availability in stm32_spi_probe	2025-08-02T00:00:00.000Z	2025-09-03T22:48:28.000Z
msrc_cve-2025-22062	sctp: add mutual exclusion in proc_sctp_do_udp_port()	2025-04-02T00:00:00.000Z	2025-09-03T22:47:49.000Z
msrc_cve-2024-0753	In specific HSTS configurations an attacker could have bypassed HSTS on a subdomain. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.	2024-01-01T08:00:00.000Z	2025-09-03T22:47:46.000Z
msrc_cve-2025-38650	hfsplus: remove mutex_lock check in hfsplus_free_extents	2025-08-02T00:00:00.000Z	2025-09-03T22:46:10.000Z
msrc_cve-2024-6612	CSP violations generated links in the console tab of the developer tools, pointing to the violating resource. This caused a DNS prefetch which leaked that a CSP violation happened. This vulnerability affects Firefox < 128 and Thunderbird < 128.	2024-07-01T07:00:00.000Z	2025-09-03T22:46:00.000Z
msrc_cve-2024-49937	wifi: cfg80211: Set correct chandef when starting CAC	2024-10-01T07:00:00.000Z	2025-09-03T22:45:31.000Z
msrc_cve-2024-26785	iommufd: Fix protection fault in iommufd_test_syz_conv_iova	2024-04-02T07:00:00.000Z	2025-09-03T22:45:23.000Z
msrc_cve-2025-38382	btrfs: fix iteration of extrefs during log replay	2025-07-02T00:00:00.000Z	2025-09-03T22:45:15.000Z
msrc_cve-2024-58097	wifi: ath11k: fix RCU stall while reaping monitor destination ring	2025-04-02T00:00:00.000Z	2025-09-03T22:44:27.000Z
msrc_cve-2017-15042	An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires that, during SMTP, the PLAIN auth scheme must only be used on network connections secured with TLS. The original implementation of smtp.PlainAuth in Go 1.0 enforced this requirement, and it was documented to do so. In 2013, upstream issue #5184, this was changed so that the server may decide whether PLAIN is acceptable. The result is that if you set up a man-in-the-middle SMTP server that doesn't advertise STARTTLS and does advertise that PLAIN auth is OK, the smtp.PlainAuth implementation sends the username and password.	2017-10-02T00:00:00.000Z	2025-09-03T22:44:27.000Z
msrc_cve-2016-1494	The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.	2016-01-02T00:00:00.000Z	2025-09-03T22:43:53.000Z
msrc_cve-2025-8747	Keras safe_mode bypass allows arbitrary code execution when loading a malicious model.	2025-08-02T00:00:00.000Z	2025-09-03T22:43:52.000Z
msrc_cve-2023-52751	smb: client: fix use-after-free in smb2_query_info_compound()	2024-05-02T07:00:00.000Z	2025-09-03T22:43:50.000Z
msrc_cve-2024-4778	Memory safety bugs present in Firefox 125. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 126.	2024-05-02T07:00:00.000Z	2025-09-03T22:43:26.000Z
msrc_cve-2024-26789	crypto: arm64/neonbs - fix out-of-bounds access on short input	2024-04-02T07:00:00.000Z	2025-09-03T22:42:54.000Z
msrc_cve-2024-26948	drm/amd/display: Add a dc_state NULL check in dc_state_release	2024-05-02T07:00:00.000Z	2025-09-03T22:42:47.000Z
msrc_cve-2024-52980	Elasticsearch Uncontrolled Resource Consumption vulnerability	2025-04-02T00:00:00.000Z	2025-09-03T22:42:44.000Z
msrc_cve-2025-48924	Apache Commons Lang, Apache Commons Lang: ClassUtils.getClass(...) can throw a StackOverflowError on very long inputs	2025-07-02T00:00:00.000Z	2025-09-03T22:42:41.000Z
msrc_cve-2019-14203	An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_mount_reply.	2019-07-02T00:00:00.000Z	2025-09-03T22:42:12.000Z
msrc_cve-2024-53426	A heap-buffer-overflow vulnerability has been identified in ntopng 6.2 in the Flow::dissectMDNS function.	2024-11-02T00:00:00.000Z	2025-09-03T22:41:34.000Z
msrc_cve-2024-9675	Buildah: buildah allows arbitrary directory mount	2024-10-01T07:00:00.000Z	2025-09-03T22:41:10.000Z
msrc_cve-2020-14376	A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A lack of bounds checking when copying iv_data from the VM guest memory into host memory can lead to a large buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.	2020-09-02T00:00:00.000Z	2025-09-03T22:40:46.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-202206-0004	In affected versions of Confluence Server and Data Center, an OGNL injection vulnerabilit…	2025-11-18T14:47:07.462000Z
var-202407-2513	An issue was discovered on Brother MFC-J491DW C1806180757 devices. The printer's web-inte…	2025-11-18T14:43:48.485000Z
var-202112-2083	PJSIP is a free and open source multimedia communication library written in C language im…	2025-11-18T14:43:44.980000Z
var-201912-0473	A memory corruption issue was addressed with improved input validation. This issue is fix…	2025-11-18T14:41:52.005000Z
var-201103-0073	Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac O…	2025-11-18T14:40:02.035000Z
var-202109-0375	Improper neutralization of special elements in the SMA100 management interface allows a r…	2025-11-18T14:38:48.144000Z
var-202104-0756	SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-aut…	2025-11-18T14:38:39.400000Z
var-202407-2627	An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. There is no CSRF prote…	2025-11-18T14:38:22.963000Z
var-202106-0639	Windows Print Spooler Remote Code Execution Vulnerability. The Microsoft Windows Print Sp…	2025-11-18T14:33:52.465000Z
var-202212-1301	A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.50), S…	2025-11-18T14:30:15.477000Z
var-202105-0365	Possible use after free due to improper handling of memory mapping of multiple processes …	2025-11-18T14:29:23.627000Z
var-201803-0159	A vulnerability in the Border Gateway Protocol (BGP) over an Ethernet Virtual Private Net…	2025-11-18T14:29:21.090000Z
var-202010-1252	An issue existed in the handling of environment variables. This issue was addressed with …	2025-11-18T14:25:25.963000Z
var-202210-1624	An out-of-bounds write issue was addressed with improved bounds checking. This issue is f…	2025-11-18T14:24:53.365000Z
var-202408-0012	A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versio…	2025-11-18T14:24:32.912000Z
var-202104-0751	A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big …	2025-11-18T14:23:16.124000Z
var-202205-1814	Azure RTOS USBX is a USB host, device, and on-the-go (OTG) embedded stack. In versions pr…	2025-11-18T14:22:17.199000Z
var-201009-0242	Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.x before 9.4, a…	2025-11-18T14:19:23.585000Z
var-202104-0647	A race condition was addressed with improved locking. This issue is fixed in macOS Big Su…	2025-11-18T14:18:25.759000Z
var-202006-1615	A memory consumption issue was addressed with improved memory handling. This issue is fix…	2025-11-18T14:18:23.975000Z
var-202306-0922	A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05),…	2025-11-18T14:17:26.699000Z
var-202407-2626	An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. With the SNM…	2025-11-18T14:17:17.848000Z
var-201608-0188	WebKit in Apple iOS before 9.3.5 allows remote attackers to execute arbitrary code or cau…	2025-11-18T14:17:15.058000Z
var-201703-0892	A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco I…	2025-11-18T14:16:31.760000Z
var-202407-2554	An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. By default, …	2025-11-18T14:14:50.142000Z
var-201903-0447	A logic issue existed in the handling of Group FaceTime calls. The issue was addressed wi…	2025-11-18T14:14:08.560000Z
var-202110-1690	It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficien…	2025-11-18T14:10:59.462000Z
var-202407-2682	An issue was discovered on One2Track 2019-12-08 devices. Any SIM card used with the devic…	2025-11-18T14:08:05.647000Z
var-201904-1459	A memory corruption issue was addressed with improved memory handling. This issue affecte…	2025-11-18T14:07:06.013000Z
var-202010-1228	A memory corruption issue was addressed by removing the vulnerable code. This issue is fi…	2025-11-18T14:03:30.869000Z

ID	Description	Published	Updated
jvndb-2009-000048	shiromuku(fs6)DIARY cross-site scripting vulnerability	2009-07-15T18:15+09:00	2009-07-15T18:15+09:00
jvndb-2008-000069	Apache Tomcat allows access from a non-permitted IP address	2008-10-10T15:44+09:00	2009-07-08T11:38+09:00
jvndb-2009-001545	Cosminexus Processing Kit for XML and Hitachi Developer's Kit for Java Possible Unauthorized Access through Zip File Scanning Utility	2009-07-07T11:12+09:00	2009-07-07T11:12+09:00
jvndb-2009-001544	Cosminexus Processing Kit for XML and Hitachi Developer's Kit for Java Possible Unauthorized Access through Vulnerability in Encoding Process	2009-07-07T11:12+09:00	2009-07-07T11:12+09:00
jvndb-2009-000046	PHP-I-BOARD from Let's PHP! vulnerable to directory traversal	2009-07-01T17:54+09:00	2009-07-01T17:54+09:00
jvndb-2009-000045	PHP-I-BOARD from Let's PHP! vulnerable to cross-site scripting	2009-07-01T17:54+09:00	2009-07-01T17:54+09:00
jvndb-2009-000044	Tree BBS from Let's PHP! vulnerable to cross-site scripting	2009-07-01T17:53+09:00	2009-07-01T17:53+09:00
jvndb-2009-000043	Movable Type access restriction bypass vulnerability	2009-07-01T17:53+09:00	2009-07-01T17:53+09:00
jvndb-2009-000042	Movable Type cross-site scripting vulnerability	2009-07-01T17:53+09:00	2009-07-01T17:53+09:00
jvndb-2008-000075	EC-CUBE vulnerable to SQL injection	2008-11-06T16:04+09:00	2009-06-25T15:44+09:00
jvndb-2009-000041	Cross-site scripting vulnerability in PukiWikiMod from XOOPS Maniac	2009-06-19T16:35+09:00	2009-06-19T16:35+09:00
jvndb-2009-000040	iPhone OS denial of service (DoS) vulnerability	2009-06-18T17:54+09:00	2009-06-18T17:54+09:00
jvndb-2009-000039	Buffer overflow vulnerability in Microsoft Works converters	2009-06-18T17:54+09:00	2009-06-18T17:54+09:00
jvndb-2009-000038	Cross-site scripting vulnerability in activeCollab	2009-06-18T17:54+09:00	2009-06-18T17:54+09:00
jvndb-2009-000035	Predictable session ID vulnerability in Serene Bach	2009-06-18T17:53+09:00	2009-06-18T17:53+09:00
jvndb-2009-000034	IMG-BBS from MT312 vulnerable to cross-site scripting	2009-05-29T16:19+09:00	2009-05-29T16:19+09:00
jvndb-2009-000033	REP-BBS from MT312 vulnerable to cross-site scripting	2009-05-29T16:19+09:00	2009-05-29T16:19+09:00
jvndb-2009-000032	Directory traversal vulnerability in multiple Cisco Systems products	2009-05-29T16:19+09:00	2009-05-29T16:19+09:00
jvndb-2009-000031	Cross-site scripting vulnerability in leger (free edition)	2009-05-27T18:28+09:00	2009-05-27T18:28+09:00
jvndb-2009-000030	a-News from Appleple vulnerable to cross-site scripting	2009-05-22T14:31+09:00	2009-05-22T14:31+09:00
jvndb-2009-000029	HP System Management Homepage vulnerable to cross-site scripting	2009-05-20T16:01+09:00	2009-05-20T16:01+09:00
jvndb-2009-000028	Trees from CGI RESCUE vulnerable to cross-site scripting	2009-05-19T13:41+09:00	2009-05-19T13:41+09:00
jvndb-2009-000027	Sun GlassFish Enterprise Server and Sun Java System Application Server vulnerable to cross-site scripting	2009-05-13T15:37+09:00	2009-05-13T15:37+09:00
jvndb-2009-000026	SQL injection vulnerability in SKIP from SKIP User Group	2009-05-12T17:50+09:00	2009-05-12T17:50+09:00
jvndb-2009-000025	Cross-site scripting vulnerability in SKIP from SKIP User Group	2009-05-12T17:50+09:00	2009-05-12T17:50+09:00
jvndb-2008-000078	CGI RESCUE MiniBBS2000 directory traversal vulnerability	2008-11-26T17:50+09:00	2009-04-30T15:35+09:00
jvndb-2009-000024	Web Mailer from CGI RESCUE vulnerable to HTTP header injection	2009-04-28T16:36+09:00	2009-04-28T16:36+09:00
jvndb-2009-000023	FORM2MAIL from CGI RESCUE allows unauthorized email transmission	2009-04-28T16:35+09:00	2009-04-28T16:35+09:00
jvndb-2009-000022	Cross-site scripting vulnerability in MiniBBS from CGI RESCUE	2009-04-28T16:35+09:00	2009-04-28T16:35+09:00
jvndb-2009-000021	MiniBBS22 from CGI RESCUE allows unauthorized email transmission	2009-04-28T16:35+09:00	2009-04-28T16:35+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:1138-1	Security update for MozillaFirefox	2025-04-03T15:13:23Z	2025-04-03T15:13:23Z
suse-su-2025:1137-1	Security update for xz	2025-04-03T15:11:04Z	2025-04-03T15:11:04Z
suse-su-2025:1135-1	Security update for apparmor	2025-04-03T14:18:29Z	2025-04-03T14:18:29Z
suse-su-2025:1134-1	Security update for apparmor	2025-04-03T14:17:45Z	2025-04-03T14:17:45Z
suse-su-2025:1131-1	Security update for openvpn	2025-04-03T13:10:01Z	2025-04-03T13:10:01Z
suse-su-2025:1129-1	Security update for GraphicsMagick	2025-04-03T11:54:17Z	2025-04-03T11:54:17Z
suse-su-2025:1128-1	Security update for ffmpeg-4	2025-04-03T11:54:05Z	2025-04-03T11:54:05Z
suse-su-2025:1127-1	Security update for ghostscript	2025-04-03T11:52:58Z	2025-04-03T11:52:58Z
suse-su-2025:1126-1	Security update for tomcat	2025-04-03T11:51:06Z	2025-04-03T11:51:06Z
suse-su-2025:1125-1	Security update for libxslt	2025-04-03T11:49:40Z	2025-04-03T11:49:40Z
suse-su-2025:1123-1	Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP3)	2025-04-03T11:15:36Z	2025-04-03T11:15:36Z
suse-su-2025:1121-1	Security update for the Linux Kernel (Live Patch 49 for SLE 15 SP3)	2025-04-02T16:33:30Z	2025-04-02T16:33:30Z
suse-su-2025:1118-1	Security update for ghostscript	2025-04-02T14:49:08Z	2025-04-02T14:49:08Z
suse-su-2025:1114-1	Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP3)	2025-04-02T14:03:49Z	2025-04-02T14:03:49Z
suse-su-2025:1120-1	Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP5)	2025-04-02T13:04:02Z	2025-04-02T13:04:02Z
suse-su-2025:1119-1	Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP3)	2025-04-02T13:03:56Z	2025-04-02T13:03:56Z
suse-su-2025:1104-1	Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP5)	2025-04-02T10:33:56Z	2025-04-02T10:33:56Z
suse-su-2025:1103-1	Security update for MozillaFirefox	2025-04-02T09:47:51Z	2025-04-02T09:47:51Z
suse-su-2025:1102-1	Security update for docker, docker-stable	2025-04-02T09:39:33Z	2025-04-02T09:39:33Z
suse-su-2025:1101-1	Security update for apparmor	2025-04-02T09:38:48Z	2025-04-02T09:38:48Z
suse-su-2025:1099-1	Security update for govulncheck-vulndb	2025-04-02T08:14:06Z	2025-04-02T08:14:06Z
suse-su-2025:1094-1	Security update for warewulf4	2025-04-02T03:37:36Z	2025-04-02T03:37:36Z
suse-su-2025:1092-1	Security update for the Linux Kernel (Live Patch 60 for SLE 12 SP5)	2025-04-01T16:34:07Z	2025-04-01T16:34:07Z
suse-su-2025:1088-1	Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5)	2025-04-01T16:33:47Z	2025-04-01T16:33:47Z
suse-su-2025:1053-2	Security update for openvpn	2025-04-01T12:04:36Z	2025-04-01T12:04:36Z
suse-su-2025:1084-1	Security update for corosync	2025-04-01T10:19:03Z	2025-04-01T10:19:03Z
suse-su-2025:20171-1	Security update for libtasn1	2025-04-01T10:11:15Z	2025-04-01T10:11:15Z
suse-su-2025:20259-1	Security update for docker	2025-03-31T16:54:17Z	2025-03-31T16:54:17Z
suse-su-2025:1076-1	Security update for the Linux Kernel (Live Patch 7 for SLE 15 SP6)	2025-03-31T16:05:04Z	2025-03-31T16:05:04Z
suse-su-2025:1072-1	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP6)	2025-03-31T16:04:28Z	2025-03-31T16:04:28Z

ID	Description	Published	Updated
opensuse-su-2024:13423-1	ungoogled-chromium-119.0.6045.123-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13422-1	libnbd-1.18.1-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13421-1	java-1_8_0-openjdk-1.8.0.392-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13420-1	connman-1.42-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13419-1	chromedriver-119.0.6045.123-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13418-1	traceroute-2.1.3-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13417-1	python310-asyncssh-2.14.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13416-1	postfix-3.8.3-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13415-1	optipng-0.7.8-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13414-1	libecpg6-16.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13413-1	postgresql15-15.5-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13412-1	libmozjs-115-0-115.4.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13411-1	binutils-2.41-1.2 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13410-1	postgresql14-14.10-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13409-1	postgresql13-13.13-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13408-1	postgresql11-11.22-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13407-1	go1.21-1.21.4-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13406-1	go1.20-1.20.11-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13405-1	kernel-devel-6.6.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13404-1	mupdf-1.23.4-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13403-1	exiv2-0.28.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13402-1	cosign-2.2.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13401-1	roundcubemail-1.6.5-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13400-1	phpPgAdmin-7.14.6-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13399-1	libpainter0-0.9.23.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13398-1	squid-6.4-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13397-1	ruby3.2-rubygem-activesupport-7.0-7.0.8-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13396-1	gstreamer-plugins-bad-1.22.6-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13395-1	element-desktop-1.11.47-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13394-1	clamav-0.103.11-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
cnvd-2025-23359	e-Diary Management System dashboard.php文件SQL注入漏洞	2025-04-09	2025-10-11
cnvd-2025-23358	e-Diary Management System add-notes.php文件SQL注入漏洞	2025-04-09	2025-10-11
cnvd-2025-23357	Bank Locker Management System会话劫持漏洞	2025-07-30	2025-10-11
cnvd-2025-23356	Pytorch-Lightning代码问题漏洞	2025-03-27	2025-10-11
cnvd-2025-23355	PyTorch拒绝服务漏洞（CNVD-2025-23355）	2025-04-03	2025-10-11
cnvd-2025-23354	PyTorch torch.jit.jit_module_from_flatbuffer函数存在未明漏洞	2025-04-08	2025-10-11
cnvd-2025-23353	PyTorch拒绝服务漏洞（CNVD-2025-23353）	2025-04-25	2025-10-11
cnvd-2025-23352	PyTorch远程命令执行漏洞	2025-04-30	2025-10-11
cnvd-2025-23351	e-Diary Management System edit-category.php文件SQL注入漏洞	2025-04-09	2025-10-11
cnvd-2025-23350	e-Diary Management System /my-profile.php文件SQL注入漏洞	2025-05-20	2025-10-11
cnvd-2025-23349	e-Diary Management System /manage-notes.php文件SQL注入漏洞	2025-05-20	2025-10-11
cnvd-2025-23348	Car Washing Management System SQL注入漏洞	2025-07-21	2025-10-11
cnvd-2025-23347	e-Diary Management System会话劫持漏洞	2025-07-30	2025-10-11
cnvd-2025-23346	Doctor Appointment Management System会话劫持漏洞	2025-07-30	2025-10-11
cnvd-2025-23345	Car Washing Management System会话劫持漏洞	2025-08-01	2025-10-11
cnvd-2025-23344	Car Rental Project无限制上传漏洞	2025-05-22	2025-10-11
cnvd-2025-23343	Car Rental Project会话劫持漏洞	2025-07-30	2025-10-11
cnvd-2025-23342	Car Rental Project carrental/search.php文件跨站脚本漏洞	2025-09-25	2025-10-11
cnvd-2025-23341	Employee Record Management System forgetpassword.php文件SQL注入漏洞	2021-12-02	2025-10-11
cnvd-2025-23340	Employee Record Management System index.php文件SQL注入漏洞	2021-12-15	2025-10-11
cnvd-2025-23339	Employee Record Management System目录遍历漏洞	2021-12-15	2025-10-11
cnvd-2025-23338	Employee Record Management System editmyeducation.php文件SQL注入漏洞	2025-05-13	2025-10-11
cnvd-2025-23337	Employee Record Management System changepassword.php文件SQL注入漏洞	2025-05-14	2025-10-11
cnvd-2025-23336	Employee Record Management System registererms.php文件SQL注入漏洞	2025-05-22	2025-10-11
cnvd-2025-23335	Employee Record Management System /myprofile.php文件SQL注入漏洞	2025-05-30	2025-10-11
cnvd-2025-23334	Employee Record Management System /loginerms.php文件SQL注入漏洞	2025-05-30	2025-10-11
cnvd-2025-23333	Employee Record Management System /admin/editempexp.php文件SQL注入漏洞	2025-05-30	2025-10-11
cnvd-2025-23332	Employee Record Management System /resetpassword.php文件SQL注入漏洞	2025-06-10	2025-10-11
cnvd-2025-23331	Employee Record Management System /myexp.php文件SQL注入漏洞	2025-06-10	2025-10-11
cnvd-2025-23330	Employee Record Management System /editmyexp.php文件SQL注入漏洞	2025-06-10	2025-10-11

ID	Description	Published	Updated
certfr-2023-avi-0713	Vulnérabilité dans Xen	2023-09-06T00:00:00.000000	2023-09-06T00:00:00.000000
certfr-2023-avi-0712	Multiples vulnérabilités dans Google Chrome	2023-09-06T00:00:00.000000	2023-09-06T00:00:00.000000
certfr-2023-avi-0711	Multiples vulnérabilités dans Android	2023-09-06T00:00:00.000000	2023-09-06T00:00:00.000000
certfr-2023-avi-0710	Multiples vulnérabilités dans SolarWinds Serv-U	2023-09-05T00:00:00.000000	2023-09-05T00:00:00.000000
certfr-2023-avi-0709	Vulnérabilité dans Microsoft Edge	2023-09-01T00:00:00.000000	2023-09-01T00:00:00.000000
certfr-2023-avi-0708	Multiples vulnérabilités dans Moxa MXSecurity	2023-09-01T00:00:00.000000	2023-09-01T00:00:00.000000
certfr-2023-avi-0707	Multiples vulnérabilités dans GitLab	2023-09-01T00:00:00.000000	2023-09-01T00:00:00.000000
certfr-2023-avi-0706	Multiples vulnérabilités dans le noyau Linux de RedHat	2023-09-01T00:00:00.000000	2023-09-01T00:00:00.000000
certfr-2023-avi-0705	Multiples vulnérabilités dans les produits IBM	2023-09-01T00:00:00.000000	2023-09-01T00:00:00.000000
certfr-2023-avi-0704	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2023-09-01T00:00:00.000000	2023-09-01T00:00:00.000000
certfr-2023-avi-0703	Multiples vulnérabilités dans Thunderbird	2023-09-01T00:00:00.000000	2023-09-01T00:00:00.000000
certfr-2023-avi-0702	Vulnérabilité dans VMware Tools	2023-08-31T00:00:00.000000	2023-08-31T00:00:00.000000
certfr-2023-avi-0701	Multiples vulnérabilités dans Splunk	2023-08-31T00:00:00.000000	2023-08-31T00:00:00.000000
certfr-2023-avi-0700	Multiples vulnérabilités dans Aruba ArubaOS-Switch	2023-08-30T00:00:00.000000	2023-08-30T00:00:00.000000
certfr-2023-avi-0699	Multiples vulnérabilités dans Trend Micro Mobile Security	2023-08-30T00:00:00.000000	2023-08-30T00:00:00.000000
certfr-2023-avi-0698	Multiples vulnérabilités Tenable Nessus	2023-08-30T00:00:00.000000	2023-08-30T00:00:00.000000
certfr-2023-avi-0697	Multiples vulnérabilités dans VMware Aria Operations for Networks	2023-08-30T00:00:00.000000	2023-08-30T00:00:00.000000
certfr-2023-avi-0696	Vulnérabilité dans Juniper Junos-OS	2023-08-30T00:00:00.000000	2023-08-30T00:00:00.000000
certfr-2023-avi-0694	Vulnérabilité dans les produits ClamAV	2023-08-29T00:00:00.000000	2023-08-29T00:00:00.000000
certfr-2023-avi-0693	Vulnérabilité dans Synology SSL VPN Client	2023-08-29T00:00:00.000000	2023-08-29T00:00:00.000000
certfr-2023-avi-0692	Vulnérabilité dans MISP	2023-08-29T00:00:00.000000	2023-08-29T00:00:00.000000
certfr-2023-avi-0691	Vulnérabilité dans Apache Tomcat	2023-08-28T00:00:00.000000	2023-08-28T00:00:00.000000
certfr-2023-avi-0690	Multiples vulnérabilités dans Microsoft Edge	2023-08-28T00:00:00.000000	2023-08-28T00:00:00.000000
certfr-2023-avi-0689	Multiples vulnérabilités dans le noyau Linux de SUSE	2023-08-25T00:00:00.000000	2023-08-25T00:00:00.000000
certfr-2023-avi-0688	Multiples vulnérabilités dans le noyau Linux de RedHat	2023-08-25T00:00:00.000000	2023-08-25T00:00:00.000000
certfr-2023-avi-0687	Multiples vulnérabilités dans le noyau Linux de Debian	2023-08-25T00:00:00.000000	2023-08-25T00:00:00.000000
certfr-2023-avi-0686	Multiples vulnérabilités dans les produits IBM	2023-08-25T00:00:00.000000	2023-08-25T00:00:00.000000
certfr-2023-avi-0685	Multiples vulnérabilités dans Qnap QTS et QuTS hero	2023-08-25T00:00:00.000000	2023-08-25T00:00:00.000000
certfr-2023-avi-0684	Vulnérabilité dans SolarWinds Serv-U	2023-08-25T00:00:00.000000	2023-08-25T00:00:00.000000
certfr-2023-avi-0683	Vulnérabilité dans les produits WithSecure	2023-08-24T00:00:00.000000	2023-08-24T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated