Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-64367	6.5 (3.1)	WordPress Groundhogg plugin <= 4.2.6 - Cross Site Scri…	Adrian Tobey	Groundhogg	2025-10-31T11:42:40.076Z	2026-01-20T14:28:22.541Z
CVE-2025-64370	5.3 (3.1)	WordPress YOP Poll plugin <= 6.5.38 - Broken Access Co…	YOP	YOP Poll	2025-11-13T09:24:33.651Z	2026-01-20T14:28:22.538Z
CVE-2025-64368	5.4 (3.1)	WordPress Bard theme <= 1.6 - Cross Site Request Forge…	Mikado-Themes	Bard	2025-10-31T11:42:40.843Z	2026-01-20T14:28:22.538Z
CVE-2025-64361	6.5 (3.1)	WordPress Consulting Elementor Widgets plugin <= 1.4.2…	StylemixThemes	Consulting Elementor Widgets	2025-10-31T11:42:33.072Z	2026-01-20T14:28:22.533Z
CVE-2025-64359	7.5 (3.1)	WordPress Consulting theme < 6.7.5 - Local File Inclus…	StylemixThemes	Consulting	2025-10-31T11:42:31.602Z	2026-01-20T14:28:22.532Z
CVE-2025-64352	2.7 (3.1)	WordPress Essential Addons for Elementor plugin <= 6.2…	WPDeveloper	Essential Addons for Elementor	2025-10-31T11:42:23.045Z	2026-01-20T14:28:22.531Z
CVE-2025-64369	6.5 (3.1)	WordPress Contact Form Email plugin <= 1.3.58 - Broken…	codepeople	Contact Form Email	2025-11-13T09:24:33.215Z	2026-01-20T14:28:22.528Z
CVE-2025-64371	8.5 (3.1)	WordPress Traveler theme < 3.2.6 - SQL Injection vulne…	shinetheme	Traveler	2025-12-18T07:22:15.635Z	2026-01-20T14:28:22.518Z
CVE-2025-64357	4.3 (3.1)	WordPress Advanced Database Cleaner plugin <= 3.1.6 - …	Younes JFR.	Advanced Database Cleaner	2025-10-31T11:42:27.627Z	2026-01-20T14:28:22.509Z
CVE-2025-64364	7.5 (3.1)	WordPress Masterstudy theme < 4.8.126 - Local File Inc…	StylemixThemes	Masterstudy	2025-10-31T11:42:37.865Z	2026-01-20T14:28:22.508Z
CVE-2025-64358	4.3 (3.1)	WordPress Smart Coupons for WooCommerce plugin <= 2.2.…	WebToffee	Smart Coupons for WooCommerce	2025-10-31T11:42:28.439Z	2026-01-20T14:28:22.505Z
CVE-2025-64362	6.5 (3.1)	WordPress K Elements plugin < 5.5.0 - Cross Site Scrip…	SeventhQueen	K Elements	2025-10-31T11:42:36.419Z	2026-01-20T14:28:22.503Z
CVE-2025-64372	7.1 (3.1)	WordPress Traveler theme < 3.2.6 - Cross Site Scriptin…	shinetheme	Traveler	2025-12-18T07:22:15.823Z	2026-01-20T14:28:22.489Z
CVE-2025-64351	4.3 (3.1)	WordPress Rank Math SEO plugin <= 1.0.252.1 - Sensitiv…	Rank Math SEO	Rank Math SEO	2025-10-31T11:42:22.226Z	2026-01-20T14:28:22.441Z
CVE-2025-64293	7.6 (3.1)	WordPress 0 Day Analytics plugin <= 4.0.0 - SQL Inject…	Golemiq	0 Day Analytics	2025-11-12T15:52:49.026Z	2026-01-20T14:28:22.418Z
CVE-2025-64353	8.8 (3.1)	WordPress Polylang plugin <= 3.7.3 - Deserialization o…	Chouby	Polylang	2025-10-31T11:42:25.417Z	2026-01-20T14:28:22.353Z
CVE-2025-64354	6.5 (3.1)	WordPress Gutenberg plugin <= 21.8.2 - Cross Site Scri…	Matias Ventura	Gutenberg	2025-10-31T11:42:26.178Z	2026-01-20T14:28:22.341Z
CVE-2025-64295	6.5 (3.1)	WordPress All In One SEO Pack plugin <= 4.8.6.1 - Sens…	Syed Balkhi	All In One SEO Pack	2025-12-18T07:22:15.447Z	2026-01-20T14:28:22.289Z
CVE-2025-64355	6.5 (3.1)	WordPress JetElements For Elementor plugin <= 2.7.12 -…	Crocoblock	JetElements For Elementor	2025-12-18T16:16:33.764Z	2026-01-20T14:28:22.280Z
CVE-2025-64289	5.9 (3.1)	WordPress Premmerce Product Search for WooCommerce plu…	Premmerce	Premmerce Product Search for WooCommerce	2025-10-29T08:38:14.838Z	2026-01-20T14:28:22.275Z
CVE-2025-64296	5.3 (3.1)	WordPress Facebook for WooCommerce plugin <= 3.5.7 - B…	Facebook	Facebook for WooCommerce	2025-10-29T04:08:45.858Z	2026-01-20T14:28:22.271Z
CVE-2025-64290	4.3 (3.1)	WordPress Premmerce Product Search for WooCommerce plu…	Premmerce	Premmerce Product Search for WooCommerce	2025-10-29T08:38:15.299Z	2026-01-20T14:28:22.268Z
CVE-2025-64350	3.8 (3.1)	WordPress Rank Math SEO plugin <= 1.0.252.1 - Broken A…	Rank Math SEO	Rank Math SEO	2025-10-31T11:42:17.908Z	2026-01-20T14:28:22.231Z
CVE-2025-64294	5.3 (3.1)	WordPress WP Snow Effect plugin <= 1.1.15 - Broken Acc…	d3wp	WP Snow Effect	2025-11-03T13:09:39.398Z	2026-01-20T14:28:22.200Z
CVE-2025-64356	4.3 (3.1)	WordPress Insert PHP Code Snippet plugin <= 1.4.3 - Br…	f1logic	Insert PHP Code Snippet	2025-10-31T11:42:26.908Z	2026-01-20T14:28:22.178Z
CVE-2025-64292	5.4 (3.1)	WordPress Analytics Germanized for Google Analytics pl…	PascalBajorat	Analytics Germanized for Google Analytics	2025-11-13T09:24:32.781Z	2026-01-20T14:28:22.131Z
CVE-2025-64291	5.9 (3.1)	WordPress Premmerce User Roles plugin <= 1.0.13 - Cros…	Premmerce	Premmerce User Roles	2025-10-29T08:38:15.757Z	2026-01-20T14:28:22.052Z
CVE-2025-64288	4.3 (3.1)	WordPress Premmerce plugin <= 1.3.19 - Cross Site Requ…	Premmerce	Premmerce	2025-10-29T08:38:14.400Z	2026-01-20T14:28:22.041Z
CVE-2025-64287	8.1 (3.1)	WordPress Alloggio - Hotel Booking Theme theme <= 1.8 …	Edge-Themes	Alloggio - Hotel Booking	2025-11-06T15:56:13.317Z	2026-01-20T14:28:22.019Z
CVE-2025-64267	4.3 (3.1)	WordPress WooCommerce Ultimate Points And Rewards plug…	WPSwings	WooCommerce Ultimate Points And Rewards	2025-11-13T09:24:29.783Z	2026-01-20T14:28:21.878Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-68656	6.8 (3.1)	Espressif ESP-IDF USB Host HID (Human Interface Device…	espressif	esp-usb	2026-01-12T17:23:19.393Z	2026-01-12T18:39:37.514Z
CVE-2025-68657	6.4 (3.1)	espressif/usb_host_hid Double-Free Race Condition in U…	espressif	esp-usb	2026-01-12T17:26:51.106Z	2026-01-12T18:40:25.838Z
CVE-2026-22249	7.1 (3.1)	Docmost affected by an Arbitrary File Write via Zip Im…	docmost	docmost	2026-01-15T18:43:56.263Z	2026-01-15T19:08:26.158Z
CVE-2026-0728	5.1 (4.0) 4.7 (3.1) 4.7 (3.0)	code-projects Intern Membership Management System dele…	code-projects	Intern Membership Management System	2026-01-08T20:32:08.473Z	2026-01-08T20:46:53.809Z
CVE-2025-15493	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	RainyGao DocSys ReposAuthMapper.xml sql injection	RainyGao	DocSys	2026-01-09T16:32:06.558Z	2026-01-09T18:37:10.665Z
CVE-2025-65368	6.1 (3.1)	SparkyFitness v0.15.8.2 is vulnerable to Cross Si…	n/a	n/a	2026-01-15T00:00:00.000Z	2026-01-15T21:03:15.128Z
CVE-2025-15492	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	RainyGao DocSys GroupMemberMapper.xml sql injection	RainyGao	DocSys	2026-01-09T16:02:07.110Z	2026-01-09T18:38:08.299Z
CVE-2026-22779	6.3 (4.0)	BlackSheep ClientSession is vulnerable to CRLF injection	Neoteroi	BlackSheep	2026-01-14T16:49:34.202Z	2026-01-14T21:01:52.743Z
CVE-2025-15494	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	RainyGao DocSys UserMapper.xml sql injection	RainyGao	DocSys	2026-01-09T16:32:08.806Z	2026-01-09T18:37:05.234Z
CVE-2026-22690	2.7 (4.0)	pypdf has possible long runtimes for missing /Root obj…	py-pdf	pypdf	2026-01-10T04:41:20.773Z	2026-01-12T17:07:00.323Z
CVE-2025-61548	9.8 (3.1)	SQL Injection is present on the hfInventoryDistFo…	n/a	n/a	2026-01-08T00:00:00.000Z	2026-01-08T19:44:35.115Z
CVE-2025-61547	6.8 (3.1)	Cross-Site Request Forgery (CSRF) is present on a…	n/a	n/a	2026-01-08T00:00:00.000Z	2026-01-08T18:52:54.861Z
CVE-2025-61937	10 (3.1) 10 (4.0)	AVEVA Process Optimization Code Injection	AVEVA	Process Optimization	2026-01-16T00:04:37.128Z	2026-01-16T15:10:11.404Z
CVE-2025-61943	8.4 (3.1) 9.3 (4.0)	AVEVA Process Optimization SQL Injection	AVEVA	Process Optimization	2026-01-16T00:09:18.629Z	2026-01-16T15:06:06.845Z
CVE-2025-9458	7.8 (3.1)	PRT File Parsing Memory Corruption Vulnerability	Autodesk	Shared Components	2025-11-07T18:01:48.595Z	2026-01-22T14:09:37.576Z
CVE-2025-9457	7.8 (3.1)	PRT File Parsing Memory Corruption Vulnerability	Autodesk	Shared Components	2025-12-15T23:37:20.671Z	2026-01-22T14:12:08.281Z
CVE-2025-9456	7.8 (3.1)	SLDPRT File Parsing Memory Corruption Vulnerability	Autodesk	Shared Components	2025-12-15T23:36:32.898Z	2026-01-22T14:13:25.959Z
CVE-2025-9452	7.8 (3.1)	SLDPRT File Parsing Memory Corruption Vulnerability	Autodesk	Shared Components	2025-12-15T23:32:39.490Z	2026-01-22T14:14:34.086Z
CVE-2025-63896	7.6 (3.1)	An issue in the Bluetooth Human Interface Device …	n/a	n/a	2025-12-04T00:00:00.000Z	2026-01-22T14:12:53.703Z
CVE-2025-11178	7.3 (3.0)	Local privilege escalation due to DLL hijacking v…	Acronis	Acronis True Image	2025-09-30T14:52:20.711Z	2026-01-22T15:01:39.787Z
CVE-2024-37006	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T03:15:46.957Z	2026-01-22T14:15:29.821Z
CVE-2024-37000	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T03:01:53.604Z	2026-01-22T14:16:27.899Z
CVE-2024-23157	7.8 (3.1)	Multiple ZDI Vulnerabilities in Autodesk AutoCAD and c…	Autodesk	AutoCAD	2024-06-25T03:30:58.799Z	2026-01-22T14:17:40.954Z
CVE-2024-23156	7.8 (3.1)	Multiple ZDI Vulnerabilities in Autodesk AutoCAD and c…	Autodesk	AutoCAD	2024-06-25T03:30:03.304Z	2026-01-22T14:19:00.403Z
CVE-2024-23148	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T02:42:11.300Z	2026-01-22T14:19:32.824Z
CVE-2024-23147	7.8 (3.1)	Multiple Vulnerabilities in the Autodesk AutoCAD Deskt…	Autodesk	AutoCAD	2024-06-25T02:32:13.779Z	2026-01-22T14:20:18.924Z
CVE-2024-12178	7.8 (3.1)	DWFX File Parsing Vulnerabilities in Autodesk Naviswor…	Autodesk	Navisworks Freedom	2024-12-17T15:16:31.988Z	2026-01-22T14:21:21.091Z
CVE-2025-64691	8.8 (3.1) 9.3 (4.0)	AVEVA Process Optimization Code Injection	AVEVA	Process Optimization	2026-01-16T00:06:56.554Z	2026-01-16T15:12:10.618Z
CVE-2025-64729	8.1 (3.1) 8.6 (4.0)	AVEVA Process Optimization Missing Authorization	AVEVA	Process Optimization	2026-01-16T00:12:45.798Z	2026-01-16T14:53:45.166Z
CVE-2025-65117	7.4 (3.1) 8.5 (4.0)	AVEVA Process Optimization Use of Potentially Dangerou…	AVEVA	Process Optimization	2026-01-16T00:14:27.567Z	2026-01-16T14:53:13.050Z

ID	Description	Published	Updated
fkie_cve-2025-65368	SparkyFitness v0.15.8.2 is vulnerable to Cross Site Scripting (XSS) via user input and LLM output.	2026-01-15T21:16:04.290	2026-01-22T15:42:00.053
fkie_cve-2025-15492	A vulnerability was detected in RainyGao DocSys up to 2.02.36. The affected element is an unknown f…	2026-01-09T16:16:06.213	2026-01-22T15:41:28.443
fkie_cve-2026-22779	BlackSheep is an asynchronous web framework to build event based web applications with Python. Prio…	2026-01-14T17:16:09.150	2026-01-22T15:39:31.557
fkie_cve-2025-15494	A vulnerability has been found in RainyGao DocSys up to 2.02.37. This affects an unknown function o…	2026-01-09T17:15:52.180	2026-01-22T15:37:38.203
fkie_cve-2026-22690	pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible…	2026-01-10T05:16:01.847	2026-01-22T15:35:23.627
fkie_cve-2025-61548	SQL Injection is present on the hfInventoryDistFormID parameter in the /PSP/appNET/Store/CartV12.as…	2026-01-08T17:15:48.727	2026-01-22T15:29:41.280
fkie_cve-2025-61547	Cross-Site Request Forgery (CSRF) is present on all functions in edu Business Solutions Print Shop …	2026-01-08T17:15:48.620	2026-01-22T15:28:55.323
fkie_cve-2025-61937	The vulnerability, if exploited, could allow an unauthenticated miscreant to achieve remote code e…	2026-01-16T02:16:42.833	2026-01-22T15:20:43.010
fkie_cve-2025-61943	The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Stan…	2026-01-16T02:16:45.093	2026-01-22T15:19:41.990
fkie_cve-2025-9458	A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory C…	2025-11-07T18:15:37.647	2026-01-22T15:16:49.870
fkie_cve-2025-9457	A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory c…	2025-12-16T00:16:03.617	2026-01-22T15:16:49.720
fkie_cve-2025-9456	A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force a Memor…	2025-12-16T00:16:03.463	2026-01-22T15:16:49.570
fkie_cve-2025-9452	A maliciously crafted SLDPRT file, when parsed through certain Autodesk products, can force a Memor…	2025-12-16T00:16:02.880	2026-01-22T15:16:49.380
fkie_cve-2025-63896	An issue in the Bluetooth Human Interface Device (HID) of JXL 9 Inch Car Android Double Din Player …	2025-12-04T21:16:08.830	2026-01-22T15:16:48.053
fkie_cve-2025-11178	Local privilege escalation due to DLL hijacking vulnerability. The following products are affected:…	2025-09-30T15:15:47.863	2026-01-22T15:16:46.993
fkie_cve-2024-37006	A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can…	2024-06-25T04:15:16.053	2026-01-22T15:16:46.750
fkie_cve-2024-37000	A maliciously crafted X_B file, when parsed in pskernel.DLL through Autodesk applications, can lead…	2024-06-25T03:15:10.463	2026-01-22T15:16:46.560
fkie_cve-2024-23157	A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applicat…	2024-06-25T04:15:13.723	2026-01-22T15:16:46.383
fkie_cve-2024-23156	A maliciously crafted 3DM file, when parsed in opennurbs.dll and ASMkern229A.dll through Autodesk a…	2024-06-25T04:15:13.450	2026-01-22T15:16:46.190
fkie_cve-2024-23148	A maliciously crafted CATPRODUCT file, when parsed in CC5Dll.dll through Autodesk applications, can…	2024-06-25T03:15:10.283	2026-01-22T15:16:46.010
fkie_cve-2024-23147	A maliciously crafted CATPART, X_B and STEP, when parsed in ASMKERN228A.dll and ASMKERN229A.dll thr…	2024-06-25T03:15:10.190	2026-01-22T15:16:45.787
fkie_cve-2024-12178	A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory Corrup…	2024-12-17T16:15:23.687	2026-01-22T15:16:45.100
fkie_cve-2025-64691	The vulnerability, if exploited, could allow an authenticated miscreant (OS standard user) to tamp…	2026-01-16T02:16:45.293	2026-01-22T15:15:51.823
fkie_cve-2025-64729	The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tamp…	2026-01-16T02:16:45.467	2026-01-22T15:15:10.460
fkie_cve-2025-65117	The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Desi…	2026-01-16T02:16:45.833	2026-01-22T15:14:11.433
fkie_cve-2025-65118	The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tric…	2026-01-16T02:16:46.003	2026-01-22T15:13:00.017
fkie_cve-2025-64769	The Process Optimization application suite leverages connection channels/protocols that by-default…	2026-01-16T02:16:45.647	2026-01-22T15:11:11.250
fkie_cve-2026-22691	pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible…	2026-01-10T05:16:08.680	2026-01-22T15:01:05.967
fkie_cve-2021-41739	A OS Command Injection vulnerability was discovered in Artica Proxy 4.30.000000. Attackers can exec…	2022-05-05T11:15:07.893	2026-01-22T14:59:28.110
fkie_cve-2026-22700	RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including…	2026-01-10T06:15:52.517	2026-01-22T14:53:48.393

ID	Severity	Description	Published	Updated
ghsa-6pvg-49r3-g3c7	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-6j84-m7wp-j9jm	7.1 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in Jacques Malgrange Rencontre rencontre allows Sto…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-59m8-jmcc-pxx7	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-57rv-vq9v-c6qg	5.9 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-5263-ggmq-48gj	5.4 (3.1)	Missing Authorization vulnerability in Oleksandr Lysyi Debug Log Viewer debug-log-viewer allows Exp…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-3662-gvg6-j9xx	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2wqc-47g4-pm22	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2w86-r6rm-76wr	5.3 (3.1)	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in uixthem…	2025-12-09T18:30:43Z	2026-01-20T15:32:11Z
ghsa-2q9h-6v2j-hfpp	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2jf2-fhpf-vfw3	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-2hgv-qvvq-63hq	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-29qw-9m44-pf9w	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:11Z
ghsa-37mj-762c-hqp3	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:10Z
ghsa-wgpc-jm6c-j4j7	9.8 (3.1)	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-vfrr-rhvp-vvw9	8.8 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in QuantumCloud Simple Link Directory simple-link-d…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-vfj6-fgcq-5c93	4.3 (3.1)	Missing Authorization vulnerability in Ultimate Member ForumWP forumwp allows Exploiting Incorrectl…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-v3j5-8g9v-3768	9.8 (3.1)	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-09T18:30:42Z	2026-01-20T15:32:05Z
ghsa-qp8q-xvwm-2x2q	8.8 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in vcita Online Booking & Scheduling Calendar for W…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-pp33-jqv4-5hjf	9.8 (3.1)	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-mw6g-37x4-p223	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:05Z
ghsa-mm3g-cv2q-cppg	7.8 (3.1)	Improper Control of Generation of Code ('Code Injection') vulnerability in StellarWP GiveWP give al…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-mg95-m74x-55j8	4.3 (3.1)	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Essenti…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-hgg9-7rw7-5rhw	4.3 (3.1)	Missing Authorization vulnerability in CRM Perks Integration for Salesforce and Contact Form 7, WPF…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-gjv2-jq53-mqgq	8.8 (3.1)	Missing Authorization vulnerability in Elated-Themes The Aisle theaisle allows Exploiting Incorrect…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-cch9-4xf8-89w7	8.8 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in Saad Iqbal Quick Contact Form quick-contact-form…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-c6c4-c7qj-6662	8.8 (3.1)	Missing Authorization vulnerability in Mikado-Themes Powerlift powerlift allows Exploiting Incorrec…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-7r59-p3hg-gf5g	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-09T18:30:42Z	2026-01-20T15:32:05Z
ghsa-76jc-c8j2-q66h	8.8 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in codeworkweb CWW Companion cww-companion allows C…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-758v-pprx-jj23	8.1 (3.1)	Missing Authorization vulnerability in sergiotrinity Trinity Audio trinity-audio allows Exploiting …	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z
ghsa-55cq-cx6m-hv36	8.8 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in kubiq PDF Thumbnail Generator pdf-thumbnail-gene…	2025-12-09T18:30:41Z	2026-01-20T15:32:05Z

ID	Description	Package	Published	Updated
pysec-2014-1	The django.core.urlresolvers.reverse function in Django before 1.4.11, 1.5.x before 1.5.6…	django	2014-04-23T15:55:00Z	2021-07-05T00:01:18.476528Z
pysec-2012-4	The get_image_dimensions function in the image-handling functionality in Django before 1.…	django	2012-07-31T17:55:00Z	2021-07-05T00:01:18.369979Z
pysec-2012-3	The django.forms.ImageField class in the form system in Django before 1.3.2 and 1.4.x bef…	django	2012-07-31T17:55:00Z	2021-07-05T00:01:18.288820Z
pysec-2012-2	The (1) django.http.HttpResponseRedirect and (2) django.http.HttpResponsePermanentRedirec…	django	2012-07-31T17:55:00Z	2021-07-05T00:01:18.211806Z
pysec-2011-5	The CSRF protection mechanism in Django through 1.2.7 and 1.3.x through 1.3.1 does not pr…	django	2011-10-19T10:55:00Z	2021-07-05T00:01:18.129041Z
pysec-2011-4	Django before 1.2.7 and 1.3.x before 1.3.1 uses a request's HTTP Host header to construct…	django	2011-10-19T10:55:00Z	2021-07-05T00:01:18.041571Z
pysec-2011-3	The verify_exists functionality in the URLField implementation in Django before 1.2.7 and…	django	2011-10-19T10:55:00Z	2021-07-05T00:01:17.957407Z
pysec-2011-2	The verify_exists functionality in the URLField implementation in Django before 1.2.7 and…	django	2011-10-19T10:55:00Z	2021-07-05T00:01:17.875375Z
pysec-2011-1	django.contrib.sessions in Django before 1.2.7 and 1.3.x before 1.3.1, when session data …	django	2011-10-19T10:55:00Z	2021-07-05T00:01:17.786807Z
pysec-2015-12	django-markupfield before 1.3.2 uses the default docutils RESTRUCTUREDTEXT_FILTER_SETTING…	django-markupfield	2015-04-24T14:59:00Z	2021-07-05T00:01:17.695542Z
pysec-2017-11	Cross-site request forgery (CSRF) vulnerability in django CMS before 3.0.14, 3.1.x before…	django-cms	2017-08-18T18:29:00Z	2021-07-05T00:01:17.665929Z
pysec-2018-46	Anymail django-anymail version version 0.2 through 1.3 contains a CWE-532, CWE-209 vulner…	django-anymail	2018-03-13T15:29:00Z	2021-07-05T00:01:17.580240Z
pysec-2017-8	HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less…	cryptography	2017-03-27T17:59:00Z	2021-07-05T00:01:17.464237Z
pysec-2006-1	Directory traversal vulnerability in the staticfilter component in CherryPy before 2.1.1 …	cherrypy	2006-02-22T02:02:00Z	2021-07-05T00:01:17.388273Z
pysec-2017-7	An issue was discovered in cloudflare-scrape 1.6.6 through 1.7.1. A malicious website own…	cfscrape	2017-03-23T04:59:00Z	2021-07-05T00:01:17.351047Z
pysec-2015-3	The admin command in ceph-deploy before 1.5.25 uses world-readable permissions for /etc/c…	ceph-deploy	2015-06-08T14:59:00Z	2021-07-05T00:01:17.307671Z
pysec-2015-2	ceph-deploy before 1.5.23 uses weak permissions (644) for ceph/ceph.client.admin.keyring,…	ceph-deploy	2015-06-16T16:59:00Z	2021-07-05T00:01:17.275200Z
pysec-2019-150	Bodhi 2.9.0 and lower is vulnerable to cross-site scripting resulting in code injection c…	bodhi	2019-01-10T21:29:00Z	2021-07-05T00:01:17.244288Z
pysec-2012-1	Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode…	beaker	2012-09-15T17:55:00Z	2021-07-05T00:01:17.212849Z
pysec-2017-6	attic before 0.15 does not confirm unencrypted backups with the user, which allows remote…	attic	2017-08-18T16:29:00Z	2021-07-05T00:01:17.176184Z
pysec-2019-149	In Apache Airflow 1.8.2 and earlier, an experimental Airflow feature displayed authentica…	apache-airflow	2019-01-23T17:29:00Z	2021-07-05T00:01:17.060541Z
pysec-2019-148	In Apache Airflow 1.8.2 and earlier, a CSRF vulnerability allowed for a remote command in…	apache-airflow	2019-01-23T17:29:00Z	2021-07-05T00:01:17.030004Z
pysec-2019-147	In Apache Airflow 1.8.2 and earlier, an authenticated user can execute code remotely on t…	apache-airflow	2019-01-23T17:29:00Z	2021-07-05T00:01:17.000324Z
pysec-2018-45	It was noticed an XSS in certain 404 pages that could be exploited to perform an XSS atta…	apache-airflow	2018-08-06T13:29:00Z	2021-07-05T00:01:16.968952Z
pysec-2017-5	An exploitable vulnerability exists in the yaml loading functionality of ansible-vault be…	ansible-vault	2017-09-14T19:29:00Z	2021-07-05T00:01:14.915465Z
pysec-2021-108	An issue was discovered in urllib3 before 1.26.5. When provided with a URL containing man…	urllib3	2021-06-29T11:15:00Z	2021-07-02T18:56:20.858344Z
pysec-2021-107	A flaw was found in several ansible modules, where parameters containing credentials, suc…	ansible	2021-04-01T18:15:00Z	2021-07-02T02:41:35.257212Z
pysec-2021-106	A flaw was found in ansible module where credentials are disclosed in the console log by …	ansible	2021-05-26T12:15:00Z	2021-07-02T02:41:35.206595Z
pysec-2020-210	A security flaw was found in Ansible Engine, all Ansible 2.7.x versions prior to 2.7.17, …	ansible	2020-03-16T15:15:00Z	2021-07-02T02:41:35.152435Z
pysec-2020-209	A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible…	ansible	2020-09-23T13:15:00Z	2021-07-02T02:41:35.012028Z

ID	Description	Type

ID	Description	Updated
gsd-2024-3643	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.151136Z
gsd-2024-3432	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.149591Z
gsd-2024-3557	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.148204Z
gsd-2024-3604	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.147881Z
gsd-2024-3553	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.146724Z
gsd-2024-3399	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.146463Z
gsd-2024-3328	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.146224Z
gsd-2024-3404	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.145852Z
gsd-2024-3317	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.145606Z
gsd-2024-3329	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.144654Z
gsd-2024-3316	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.141466Z
gsd-2024-3408	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.140045Z
gsd-2024-3311	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.139394Z
gsd-2024-3286	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.135179Z
gsd-2024-3391	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.134890Z
gsd-2024-3388	A vulnerability in the GlobalProtect Gateway in Palo Alto Networks PAN-OS software enable…	2024-04-11T05:03:27.133926Z
gsd-2024-3524	A vulnerability, which was classified as problematic, has been found in Campcodes Online …	2024-04-11T05:03:27.133139Z
gsd-2024-3323	Cross Site Scripting in UI Request/Response Validation in TIBCO JasperReports Server …	2024-04-11T05:03:27.132126Z
gsd-2024-3368	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.131853Z
gsd-2024-3616	A vulnerability classified as problematic was found in SourceCodester Warehouse Managemen…	2024-04-11T05:03:27.130953Z
gsd-2024-3623	A flaw was found when using mirror-registry to install Quay. It uses a default database s…	2024-04-11T05:03:27.130640Z
gsd-2024-3597	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.129331Z
gsd-2024-3592	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.128507Z
gsd-2024-3506	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.128291Z
gsd-2024-3563	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.127666Z
gsd-2024-3624	A flaw was found in how Quay's database is stored in plain-text in mirror-registry on the…	2024-04-11T05:03:27.127424Z
gsd-2024-3274	UNSUPPPORTED WHEN ASSIGNED UNSUPPORTED WHEN ASSIGNED A vulnerability has been…	2024-04-11T05:03:27.126644Z
gsd-2024-3588	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.125613Z
gsd-2024-3378	A vulnerability has been found in iboss Secure Web Gateway up to 10.1 and classified as p…	2024-04-11T05:03:27.124885Z
gsd-2024-3590	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.123892Z

ID	Description	Published	Updated
mal-2025-6431	Malicious code in alpha-booster (PyPI)	2025-05-29T22:39:05Z	2025-12-11T09:27:52Z
mal-2025-6430	Malicious code in alksdjpureranser (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-6428	Malicious code in 0x000testqwe (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-6213	Malicious code in donotinstallthisistest6 (PyPI)	2025-07-21T20:01:00Z	2025-12-11T09:27:52Z
mal-2025-5112	Malicious code in discorddox (PyPI)	2025-05-12T20:59:25Z	2025-12-11T09:27:52Z
mal-2025-5111	Malicious code in dexscreener-data (PyPI)	2025-05-16T10:41:32Z	2025-12-11T09:27:52Z
mal-2025-5110	Malicious code in dexscreener-charts (PyPI)	2025-05-16T10:41:32Z	2025-12-11T09:27:52Z
mal-2025-5108	Malicious code in crypt0graphyy (PyPI)	2024-08-05T22:25:51Z	2025-12-11T09:27:52Z
mal-2025-5106	Malicious code in coloramashowtemp (PyPI)	2025-05-18T00:05:16Z	2025-12-11T09:27:52Z
mal-2025-5105	Malicious code in coloramapkgsw (PyPI)	2025-05-18T00:05:16Z	2025-12-11T09:27:52Z
mal-2025-5104	Malicious code in coloramapkgsdow (PyPI)	2025-05-18T00:05:16Z	2025-12-11T09:27:52Z
mal-2025-5103	Malicious code in coloramapkgs (PyPI)	2025-05-18T00:05:16Z	2025-12-11T09:27:52Z
mal-2025-5101	Malicious code in c8tks94kspjyhtb (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-5100	Malicious code in c8tks94kspjghtb (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-5097	Malicious code in atlasctf-21-prod-22 (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-4699	Malicious code in cugraph-service-client (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-4698	Malicious code in cugraph-dgl (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-4526	Malicious code in caixaequ2ahzoop (PyPI)	2025-05-27T14:52:36Z	2025-12-11T09:27:52Z
mal-2025-4214	Malicious code in deepseek-fake (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-4210	Malicious code in chosenrce18 (PyPI)	2024-07-26T16:53:30Z	2025-12-11T09:27:52Z
mal-2025-4208	Malicious code in bytedmemfdd345 (PyPI)	2025-04-24T21:02:16Z	2025-12-11T09:27:52Z
mal-2025-4206	Malicious code in ark-vmp-reverse (PyPI)	2025-04-24T21:02:16Z	2025-12-11T09:27:52Z
mal-2025-4205	Malicious code in alchemyrpcs (PyPI)	2025-04-27T08:06:41Z	2025-12-11T09:27:52Z
mal-2025-4204	Malicious code in aiolitesql (PyPI)	2025-04-22T10:29:14Z	2025-12-11T09:27:52Z
mal-2025-4203	Malicious code in aioasyncsqlite (PyPI)	2025-04-22T10:29:14Z	2025-12-11T09:27:52Z
mal-2025-41668	Malicious code in dziplib (PyPI)	2025-08-03T17:54:22Z	2025-12-11T09:27:52Z
mal-2025-41667	Malicious code in dsodelib (PyPI)	2025-08-03T18:01:42Z	2025-12-11T09:27:52Z
mal-2025-41664	Malicious code in donotinstallthisistest5 (PyPI)	2025-07-21T20:23:24Z	2025-12-11T09:27:52Z
mal-2025-41662	Malicious code in discordsync (PyPI)	2025-08-04T21:04:23Z	2025-12-11T09:27:52Z
mal-2025-41625	Malicious code in blabutt (PyPI)	2025-07-18T17:57:40Z	2025-12-11T09:27:52Z

ID	Description	Published	Updated
wid-sec-w-2023-2972	strongSwan: Schwachstelle ermöglicht Codeausführung und DoS	2023-11-20T23:00:00.000+00:00	2025-07-08T22:00:00.000+00:00
wid-sec-w-2023-2090	ClamAV & Cisco Secure Endpoint: Mehrere Schwachstellen	2023-08-16T22:00:00.000+00:00	2025-07-08T22:00:00.000+00:00
wid-sec-w-2023-0774	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2023-03-27T22:00:00.000+00:00	2025-07-08T22:00:00.000+00:00
wid-sec-w-2025-1482	MongoDB: Mehrere Schwachstellen	2025-07-07T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2025-1479	SAP Patchday Juli 2025: Mehrere Schwachstellen	2025-07-07T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2025-1478	Siemens SIPROTEC: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-07T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2025-1477	Siemens TIA Portal: Schwachstelle ermöglicht Denial of Service	2025-07-07T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2025-1475	Dell Client-Plattform (Qualcomm Wi-Fi- und Bluetooth-Driver): Mehrere Schwachstellen ermöglichen Denial of Service	2025-07-07T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2025-1474	IBM SAN Volume Controller: Schwachstelle ermöglicht Privilegieneskalation	2025-07-07T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2025-1471	IBM Integration Bus: Schwachstelle ermöglicht Privilegieneskalation	2025-07-07T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2025-1469	Dell BIOS: Schwachstelle ermöglicht Codeausführung	2025-07-07T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2025-1381	ZURÜCKGEZOGEN: IGEL OS: Schwachstelle ermöglicht Privilegieneskalation	2025-06-23T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2025-0539	Microsoft Developer Tools: Mehrere Schwachstellen	2025-03-11T23:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2024-1663	Apache HTTP Server: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen	2024-07-17T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2024-1520	Apache HTTP Server: Schwachstelle ermöglicht Offenlegung von Informationen	2024-07-03T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2024-0255	cURL: Schwachstelle ermöglicht Offenlegung von Informationen	2024-01-30T23:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2022-0044	Apache HttpComponents: Schwachstelle ermöglicht Täuschung des Nutzers	2020-10-07T22:00:00.000+00:00	2025-07-07T22:00:00.000+00:00
wid-sec-w-2025-1464	Samsung Exynos: Mehrere Schwachstellen ermöglichen Denial of Service	2025-07-06T22:00:00.000+00:00	2025-07-06T22:00:00.000+00:00
wid-sec-w-2025-1462	Checkmk: Schwachstelle ermöglicht Manipulation von Dateien	2025-07-06T22:00:00.000+00:00	2025-07-06T22:00:00.000+00:00
wid-sec-w-2025-0426	libxml2: Mehrere Schwachstellen ermöglichen Denial of Service	2017-05-18T22:00:00.000+00:00	2025-07-06T22:00:00.000+00:00
wid-sec-w-2025-0301	WebKit (GTK und WPE): Mehrere Schwachstellen	2025-02-09T23:00:00.000+00:00	2025-07-06T22:00:00.000+00:00
wid-sec-w-2024-3739	WebKitGTK: Mehrere Schwachstellen ermöglichen Denial of Service	2024-12-22T23:00:00.000+00:00	2025-07-06T22:00:00.000+00:00
wid-sec-w-2024-3557	WebKitGTK: Mehrere Schwachstellen ermöglichen Cross-Site Scripting und und Code-Ausführung	2024-11-27T23:00:00.000+00:00	2025-07-06T22:00:00.000+00:00
wid-sec-w-2024-3286	Red Hat Enterprise Linux: Mehrere Schwachstellen	2024-10-27T23:00:00.000+00:00	2025-07-06T22:00:00.000+00:00
wid-sec-w-2024-1494	Splunk Enterprise: Mehrere Schwachstellen	2024-07-01T22:00:00.000+00:00	2025-07-06T22:00:00.000+00:00
wid-sec-w-2024-0924	Mitel SIP Phone: Mehrere Schwachstellen	2024-04-17T22:00:00.000+00:00	2025-07-06T22:00:00.000+00:00
wid-sec-w-2023-1042	Ruby: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2023-04-19T22:00:00.000+00:00	2025-07-06T22:00:00.000+00:00
wid-sec-w-2025-1459	Dell Data Protection Advisor: Mehrere Schwachstellen	2025-07-03T22:00:00.000+00:00	2025-07-03T22:00:00.000+00:00
wid-sec-w-2025-1458	LANCOM LW-500 Access Point: Schwachstelle ermöglicht Denial of Service	2025-07-03T22:00:00.000+00:00	2025-07-03T22:00:00.000+00:00
wid-sec-w-2025-1457	Docker Desktop: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-03T22:00:00.000+00:00	2025-07-03T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2025:12282	Red Hat Security Advisory: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update	2025-07-30T09:45:07+00:00	2026-01-21T22:58:25+00:00
rhsa-2025:12281	Red Hat Security Advisory: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update	2025-07-30T09:53:38+00:00	2026-01-21T22:58:24+00:00
rhsa-2025:12280	Red Hat Security Advisory: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update	2025-07-30T09:55:57+00:00	2026-01-21T22:58:21+00:00
rhsa-2025:11800	Red Hat Security Advisory: git security update	2025-07-28T01:24:00+00:00	2026-01-21T22:58:20+00:00
rhsa-2025:11801	Red Hat Security Advisory: git security update	2025-07-28T01:45:10+00:00	2026-01-21T22:58:18+00:00
rhsa-2025:11796	Red Hat Security Advisory: git security update	2025-07-28T01:20:45+00:00	2026-01-21T22:58:15+00:00
rhsa-2025:11795	Red Hat Security Advisory: git security update	2025-07-28T01:17:10+00:00	2026-01-21T22:58:14+00:00
rhsa-2025:11794	Red Hat Security Advisory: git security update	2025-07-28T01:28:55+00:00	2026-01-21T22:58:14+00:00
rhsa-2025:11793	Red Hat Security Advisory: git security update	2025-07-24T23:10:17+00:00	2026-01-21T22:58:11+00:00
rhsa-2025:11742	Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.1 release and security update	2025-07-30T15:55:40+00:00	2026-01-21T22:58:10+00:00
rhsa-2025:11741	Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.1 release and security update	2025-07-30T15:51:38+00:00	2026-01-21T22:58:10+00:00
rhsa-2025:11696	Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.5 release and security update	2025-07-28T13:56:27+00:00	2026-01-21T22:58:09+00:00
rhsa-2025:11695	Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.5 release and security update	2025-07-28T13:54:01+00:00	2026-01-21T22:58:04+00:00
rhsa-2025:11688	Red Hat Security Advisory: git security update	2025-07-24T08:08:30+00:00	2026-01-21T22:58:04+00:00
rhsa-2025:11686	Red Hat Security Advisory: git security update	2025-07-24T07:49:46+00:00	2026-01-21T22:58:04+00:00
rhsa-2025:11534	Red Hat Security Advisory: git security update	2025-07-23T14:25:28+00:00	2026-01-21T22:57:58+00:00
rhsa-2025:11533	Red Hat Security Advisory: git security update	2025-07-22T12:03:30+00:00	2026-01-21T22:57:53+00:00
rhsa-2025:11474	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.23 security update	2025-07-21T16:58:36+00:00	2026-01-21T22:57:53+00:00
rhsa-2025:11473	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4 security update	2025-07-21T17:07:33+00:00	2026-01-21T22:57:52+00:00
rhsa-2025:11462	Red Hat Security Advisory: git security update	2025-07-21T14:51:13+00:00	2026-01-21T22:57:48+00:00
rhsa-2025:10738	Red Hat Security Advisory: Kiali 2.4.7 for Red Hat OpenShift Service Mesh 3.0	2025-07-09T15:20:25+00:00	2026-01-21T22:57:26+00:00
rhsa-2025:10677	Red Hat Security Advisory: golang security update	2025-07-09T00:55:31+00:00	2026-01-21T22:57:25+00:00
rhsa-2025:10676	Red Hat Security Advisory: golang security update	2025-07-09T00:58:06+00:00	2026-01-21T22:57:25+00:00
rhsa-2025:10672	Red Hat Security Advisory: go-toolset:rhel8 security update	2025-07-09T00:58:21+00:00	2026-01-21T22:57:23+00:00
rhsa-2025:10120	Red Hat Security Advisory: Red Hat Product OCP Tools 4.14 OpenShift Jenkins security update	2025-07-01T16:53:09+00:00	2026-01-21T22:57:21+00:00
rhsa-2025:10119	Red Hat Security Advisory: Red Hat Product OCP Tools 4.13 OpenShift Jenkins security update	2025-07-01T16:31:24+00:00	2026-01-21T22:57:20+00:00
rhsa-2025:10118	Red Hat Security Advisory: Red Hat Product OCP Tools 4.12 OpenShift Jenkins security update	2025-07-01T16:36:58+00:00	2026-01-21T22:57:16+00:00
rhsa-2025:10092	Red Hat Security Advisory: Red Hat Product OCP Tools 4.18 OpenShift Jenkins security update	2025-07-01T13:48:03+00:00	2026-01-21T22:57:16+00:00
rhsa-2025:10104	Red Hat Security Advisory: Red Hat Product OCP Tools 4.15 OpenShift Jenkins security update	2025-07-01T14:56:03+00:00	2026-01-21T22:57:15+00:00
rhsa-2025:10098	Red Hat Security Advisory: Red Hat Product OCP Tools 4.16 OpenShift Jenkins security update	2025-07-01T14:34:48+00:00	2026-01-21T22:57:15+00:00

ID	Description	Published	Updated
icsa-20-343-09	Siemens SIMATIC Controller Web Servers	2020-12-08T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-20-343-07	Siemens SICAM A8000 RTUs	2020-12-08T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-20-343-06	Siemens XHQ Operations Intelligence	2020-12-08T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-20-343-04	Schneider Electric Modicon M221 Programmable Logic Controller	2020-12-08T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-20-343-03	Schneider Electric Easergy T300	2020-12-08T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-20-343-01	Multiple Embedded TCP/IP Stacks	2020-12-08T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-20-252-02	Siemens SIMATIC S7-300 and S7-400 CPUs (Update C)	2020-09-08T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-20-224-05	Siemens SIMATIC, SIMOTICS (Update A)	2020-08-11T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-20-161-03	Siemens LOGO! (Update A)	2020-06-09T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-19-134-04	Siemens LOGO! 8 BM (Update A)	2019-05-14T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-19-134-03	Siemens LOGO! Soft Comfort (Update A)	2019-05-14T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-18-165-01	Siemens SCALANCE X Switches, RUGGEDCOM WiMAX, RFID 181-EIP, and SIMATIC RF182C (Update D)	2018-06-12T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-17-243-02	Siemens LOGO! (Update A)	2017-08-30T00:00:00.000000Z	2020-12-08T00:00:00.000000Z
icsa-20-338-01	National Instruments CompactRIO	2020-12-03T00:00:00.000000Z	2020-12-03T00:00:00.000000Z
icsa-20-238-03	WECON LeviStudioU (Update C)	2020-08-25T00:00:00.000000Z	2020-12-03T00:00:00.000000Z
icsa-20-336-01	Schneider Electric EcoStruxure Operator Terminal Expert runtime (Vijeo XD)	2020-12-01T00:00:00.000000Z	2020-12-01T00:00:00.000000Z
icsa-20-329-02	Fuji Electric V-Server Lite	2020-11-24T00:00:00.000000Z	2020-11-24T00:00:00.000000Z
icsa-20-329-01	Rockwell Automation FactoryTalk Linx	2020-11-24T00:00:00.000000Z	2020-11-24T00:00:00.000000Z
icsa-20-324-04	Schneider Electric Interactive Graphical SCADA System (IGSS)	2020-11-17T00:00:00.000000Z	2020-11-17T00:00:00.000000Z
icsa-20-324-03	Real Time Automation EtherNet/IP	2020-11-17T00:00:00.000000Z	2020-11-17T00:00:00.000000Z
icsa-20-324-01	Johnson Controls Sensormatic Electronics American Dynamics victor Web Client	2020-11-17T00:00:00.000000Z	2020-11-17T00:00:00.000000Z
icsma-20-317-01	BD Alaris 8015 PC Unit and BD Alaris Systems Manager	2020-11-12T00:00:00.000000Z	2020-11-12T00:00:00.000000Z
icsa-20-317-01	Mitsubishi Electric MELSEC iQ-R Series	2020-11-12T00:00:00.000000Z	2020-11-12T00:00:00.000000Z
icsa-20-315-05	Siemens SCALANCE W 1750D	2020-11-10T00:00:00.000000Z	2020-11-10T00:00:00.000000Z
icsa-20-315-03	Schneider Electric PLC Simulator for EcoStruxure Control Expert	2020-11-10T00:00:00.000000Z	2020-11-10T00:00:00.000000Z
icsa-20-315-02	OSIsoft PI Vision	2020-11-10T00:00:00.000000Z	2020-11-10T00:00:00.000000Z
icsa-20-315-01	ICSA-20-315-01_OSIsoft PI Interface for OPC XML-DA	2020-11-10T00:00:00.000000Z	2020-11-10T00:00:00.000000Z
icsa-20-310-02	Mitsubishi Electric GT14 Model of GOT1000 Series	2020-11-05T00:00:00.000000Z	2020-11-05T00:00:00.000000Z
icsa-20-310-01	WECON PLC Editor	2020-11-05T00:00:00.000000Z	2020-11-05T00:00:00.000000Z
icsa-20-308-02	NEXCOM NIO50	2020-11-03T00:00:00.000000Z	2020-11-03T00:00:00.000000Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2024-42135	vhost_task: Handle SIGKILL by flushing work and exiting	2024-07-01T07:00:00.000Z	2025-09-03T22:23:09.000Z
msrc_cve-2025-8734	GNU Bison scan-code.c code_free double free	2025-08-02T00:00:00.000Z	2025-09-03T22:23:02.000Z
msrc_cve-2025-3010	Khronos Group glslang Intermediate.cpp isConversionAllowed null pointer dereference	2025-03-02T00:00:00.000Z	2025-09-03T22:23:00.000Z
msrc_cve-2024-40969	f2fs: don't set RO when shutting down f2fs	2024-07-01T07:00:00.000Z	2025-09-03T22:22:53.000Z
msrc_cve-2024-35867	smb: client: fix potential UAF in cifs_stats_proc_show()	2024-05-02T07:00:00.000Z	2025-09-03T22:22:53.000Z
msrc_cve-2018-1999024	MathJax version prior to version 2.7.4 contains a Cross Site Scripting (XSS) vulnerability	2018-07-02T00:00:00.000Z	2025-09-03T22:22:20.000Z
msrc_cve-2020-15254	Undefined Behavior in bounded Crossbeam channel	2020-10-02T00:00:00.000Z	2025-09-03T22:22:18.000Z
msrc_cve-2024-40979	wifi: ath12k: fix kernel crash during resume	2024-07-01T07:00:00.000Z	2025-09-03T22:21:56.000Z
msrc_cve-2024-49891	scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths	2024-10-01T07:00:00.000Z	2025-09-03T22:21:45.000Z
msrc_cve-2024-57075	A prototype pollution in the lib.Logger function of eazy-logger v4.0.1 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.	2025-02-02T00:00:00.000Z	2025-09-03T22:21:42.000Z
msrc_cve-2025-38618	vsock: Do not allow binding to VMADDR_PORT_ANY	2025-08-02T00:00:00.000Z	2025-09-03T22:21:41.000Z
msrc_cve-2022-33967	squashfs filesystem implementation of U-Boot versions from v2020.10-rc2 to v2022.07-rc5 contains a heap-based buffer overflow vulnerability due to a defect in the metadata reading process. Loading a specially crafted squashfs image may lead to a denial-of-service (DoS) condition or arbitrary code execution.	2022-07-02T00:00:00.000Z	2025-09-03T22:21:10.000Z
msrc_cve-2025-8733	GNU Bison obprintf.c __obstack_vprintf_internal assertion	2025-08-02T00:00:00.000Z	2025-09-03T22:20:27.000Z
msrc_cve-2024-40973	media: mtk-vcodec: potential null pointer deference in SCP	2024-07-01T07:00:00.000Z	2025-09-03T22:20:26.000Z
msrc_cve-2024-35868	smb: client: fix potential UAF in cifs_stats_proc_write()	2024-05-02T07:00:00.000Z	2025-09-03T22:20:06.000Z
msrc_cve-2024-26853	igc: avoid returning frame twice in XDP_REDIRECT	2024-04-02T07:00:00.000Z	2025-09-03T22:19:52.000Z
msrc_cve-2025-38671	i2c: qup: jump out of the loop in case of timeout	2025-08-02T00:00:00.000Z	2025-09-03T22:19:35.000Z
msrc_cve-2024-43846	lib: objagg: Fix general protection fault	2024-08-02T00:00:00.000Z	2025-09-03T22:18:52.000Z
msrc_cve-2023-52979	squashfs: harden sanity check in squashfs_read_xattr_id_table	2025-03-02T00:00:00.000Z	2025-09-03T22:18:39.000Z
msrc_cve-2025-47907	Incorrect results returned from Rows.Scan in database/sql	2025-08-02T00:00:00.000Z	2025-09-03T22:18:29.000Z
msrc_cve-2024-6604	Memory safety bugs present in Firefox 127, Firefox ESR 115.12, and Thunderbird 115.12. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128.	2024-07-01T07:00:00.000Z	2025-09-03T22:18:21.000Z
msrc_cve-2024-35929	rcu/nocb: Fix WARN_ON_ONCE() in the rcu_nocb_bypass_lock()	2024-05-02T07:00:00.000Z	2025-09-03T22:17:39.000Z
msrc_cve-2025-27810	Mbed TLS before 2.28.10 and 3.x before 3.6.3, in some cases of failed memory allocation or hardware errors, uses uninitialized stack memory to compose the TLS Finished message, potentially leading to authentication bypasses such as replays.	2025-03-02T00:00:00.000Z	2025-09-03T22:17:37.000Z
msrc_cve-2023-52589	media: rkisp1: Fix IRQ disable race issue	2024-03-02T08:00:00.000Z	2025-09-03T22:17:34.000Z
msrc_cve-2022-49123	ath11k: Fix frames flush failure caused by deadlock	2025-02-02T00:00:00.000Z	2025-09-03T22:16:58.000Z
msrc_cve-2025-38665	can: netlink: can_changelink(): fix NULL pointer deref of struct can_priv::do_set_mode	2025-08-02T00:00:00.000Z	2025-09-03T22:16:52.000Z
msrc_cve-2019-6290	An infinite recursion issue was discovered in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '{' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file.	2019-01-02T00:00:00.000Z	2025-09-03T22:16:25.000Z
msrc_cve-2024-26841	LoongArch: Update cpu_sibling_map when disabling nonboot CPUs	2024-04-02T07:00:00.000Z	2025-09-03T22:16:15.000Z
msrc_cve-2023-52590	ocfs2: Avoid touching renamed directory if parent does not change	2024-03-02T08:00:00.000Z	2025-09-03T22:15:16.000Z
msrc_cve-2023-52812	drm/amd: check num of link levels when update pcie param	2024-05-02T07:00:00.000Z	2025-09-03T22:14:59.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-202011-0143	Authentication bypass by capture-replay in RPMB protocol message authentication subsystem…	2025-11-18T12:23:02.238000Z
var-202202-0070	Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. vim/vim Exists in a…	2025-11-18T12:21:17.962000Z
var-202407-2661	An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. The password for the r…	2025-11-18T12:20:47.248000Z
var-202012-0781	A memory corruption issue was addressed with improved input validation. This issue is fix…	2025-11-18T12:20:42.112000Z
var-202407-2555	An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. When a backup file is …	2025-11-18T12:20:33.843000Z
var-200609-1034	The Security Framework in Apple Mac OS X 10.3.x up to 10.3.9 does not properly prioritize…	2025-11-18T12:19:53.418000Z
var-202104-0755	A vulnerability in the SonicWall Email Security version 10.0.9.x allows an attacker to cr…	2025-11-18T12:15:32.489000Z
var-202105-0145	Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device …	2025-11-18T12:13:36.659000Z
var-202110-0332	A memory corruption issue was addressed with improved memory handling. This issue is fixe…	2025-11-18T12:13:35.680000Z
var-202407-2600	An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. POST request…	2025-11-18T12:12:13.225000Z
var-202109-1316	A buffer overflow issue was addressed with improved memory handling. This issue is fixed …	2025-11-18T12:07:33.426000Z
var-202407-2539	An issue was discovered in Lush 2 through 2020-02-25. Due to the lack of Bluetooth traffi…	2025-11-18T12:06:50.112000Z
var-201302-0148	The Firefox sandbox in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171…	2025-11-18T12:02:15.791000Z
var-202205-0540	Use after free in append_command in GitHub repository vim/vim prior to 8.2.4895. This vul…	2025-11-18T11:59:58.025000Z
var-201912-0613	A use after free issue was addressed with improved memory management. This issue is fixed…	2025-11-18T11:59:07.950000Z
var-201304-0124	Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the Linux kernel bef…	2025-11-18T11:57:25.540000Z
var-201912-0474	A memory corruption issue was addressed with improved input validation. This issue is fix…	2025-11-18T11:53:24.888000Z
var-201507-0106	Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implemen…	2025-11-18T11:53:22.803000Z
var-202109-1053	SAP NetWeaver (Visual Composer 7.0 RT) versions - 7.30, 7.31, 7.40, 7.50, without restric…	2025-11-18T11:53:07.357000Z
var-201303-0226	Microsoft Silverlight 5, and 5 Developer Runtime, before 5.1.20125.0 does not properly va…	2025-11-18T11:52:20.882000Z
var-202407-2625	An issue was discovered on One2Track 2019-12-08 devices. Confidential information is need…	2025-11-18T11:52:00.270000Z
var-202012-0746	A memory initialization issue was addressed. This issue is fixed in macOS Big Sur 11.0.1,…	2025-11-18T11:51:45.673000Z
var-202112-1995	vim is vulnerable to Use After Free. vim Exists in a vulnerability related to the use of …	2025-11-18T11:47:27.083000Z
var-202108-1856	A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0…	2025-11-18T11:44:26.786000Z
var-201912-0546	A use after free issue was addressed with improved memory management. This issue is fixed…	2025-11-18T11:41:36.646000Z
var-202304-0737	A vulnerability has been identified in SIPROTEC 5 6MD85 (CP300) (All versions >= V7.80 < …	2025-11-18T11:41:32.092000Z
var-201609-0325	The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS…	2025-11-18T11:36:57.335000Z
var-202508-3383	Asterisk is an open source private branch exchange and telephony toolkit. Prior to versio…	2025-11-18T11:35:39.801000Z
var-202510-0224	A vulnerability was found in Tenda AC7 15.03.06.44. The affected element is an unknown fu…	2025-10-20T04:10:28.749000Z
var-202510-0237	A vulnerability has been found in Tenda AC7 15.03.06.44. Impacted is an unknown function …	2025-10-20T04:09:05.091000Z

ID	Description	Published	Updated
jvndb-2008-000056	Movable Type vulnerable to cross-site scripting	2008-09-10T11:28+09:00	2008-09-10T11:28+09:00
jvndb-2008-001614	JP1/NETM/DM SubManager and JP1/NETM/DM Client Process Termination Vulnerability	2008-09-09T16:21+09:00	2008-09-09T16:21+09:00
jvndb-2008-001613	Fujitsu Interstage Application Server Access Control Update Problem	2008-09-09T16:21+09:00	2008-09-09T16:21+09:00
jvndb-2008-000052	Webservice-DIC shop_v50 and shop_v52 vulnerable to cross-site scripting	2008-09-08T17:01+09:00	2008-09-08T17:01+09:00
jvndb-2008-001585	Hitachi JP1/File Transmission Server/FTP Unauthorized File Permission Change Vulnerability	2008-09-05T12:24+09:00	2008-09-05T12:24+09:00
jvndb-2008-001584	Hitachi JP1/File Transmission Server/FTP Transmission Failure Problem	2008-09-05T12:23+09:00	2008-09-05T12:23+09:00
jvndb-2008-001575	Fujitsu Interstage Application Server Single Sign-On Buffer Overflow Vulnerability	2008-09-03T12:33+09:00	2008-09-03T12:33+09:00
jvndb-2008-000055	Blogn vulnerable to cross-site scripting	2008-09-02T17:22+09:00	2008-09-02T17:22+09:00
jvndb-2008-000054	Blogn vulnerable to cross-site request forgery	2008-09-02T17:22+09:00	2008-09-02T17:22+09:00
jvndb-2008-000053	mysql-lists from AquaGardenSoft Co.,Ltd. vulnerable to cross-site scripting	2008-09-02T17:05+09:00	2008-09-02T17:05+09:00
jvndb-2008-000049	Vulnerability in La!cooda WIZ and LacoodaST allowing an arbitrary PHP script execution	2008-09-02T17:03+09:00	2008-09-02T17:03+09:00
jvndb-2008-000048	La!cooda WIZ and LacoodaST vulnerable to cross-site scripting	2008-09-02T17:02+09:00	2008-09-02T17:02+09:00
jvndb-2008-000047	LacoodaST from SpaceTag, Inc. session fixation vulnerability	2008-09-02T17:01+09:00	2008-09-02T17:01+09:00
jvndb-2008-000046	La!cooda WIZ and LacoodaST vulnerable to cross-site request forgery	2008-09-02T16:58+09:00	2008-09-02T16:58+09:00
jvndb-2008-000050	Virus Security and Virus Security ZERO denial of service (DoS) vulnerability	2008-08-14T18:15+09:00	2008-08-14T18:15+09:00
jvndb-2008-000037	Multiple Panasonic Communications Co., Ltd. network cameras vulnerable to cross-site scripting	2008-08-04T14:34+09:00	2008-08-04T14:34+09:00
jvndb-2008-001514	Cross-Site Scripting Vulnerability in Hitachi Collaboration - Online Community Management	2008-07-30T13:46+09:00	2008-07-30T13:46+09:00
jvndb-2008-000045	Geeklog Forum Plugin vulnerable to cross-site scripting	2008-07-29T14:57+09:00	2008-07-29T14:57+09:00
jvndb-2008-000044	K's CGI Access Log Kaiseki (Jcode.pm) vulnerable to cross-site scripting	2008-07-29T14:56+09:00	2008-07-29T14:56+09:00
jvndb-2008-000043	K's CGI Access Log Kaiseki (jcode.pl) vulnerable to cross-site scripting	2008-07-29T14:56+09:00	2008-07-29T14:56+09:00
jvndb-2008-000021	Mozilla Firefox cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-07-29T14:54+09:00
jvndb-2008-000042	Multiple Century Systems routers vulnerable to cross-site request forgery	2008-07-24T14:23+09:00	2008-07-24T14:23+09:00
jvndb-2008-000041	WebProxy from LunarNight Laboratory vulnerable to cross-site scripting	2008-07-24T14:23+09:00	2008-07-24T14:23+09:00
jvndb-2008-000040	Directory traversal vulnerability in WebLogic Server and WebLogic Express plug-ins	2008-07-24T14:22+09:00	2008-07-24T14:22+09:00
jvndb-2008-000039	Safari installed in iPod touch and iPhone vulnerable in handling server certificates	2008-07-16T12:27+09:00	2008-07-16T12:27+09:00
jvndb-2007-000457	Apache Tomcat cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-07-11T13:48+09:00
jvndb-2007-000456	Apache Tomcat sample web application cross-site scripting vulnerability	2008-05-21T00:00+09:00	2008-07-11T13:48+09:00
jvndb-2007-000297	Apache Tomcat Accept-Language Header Cross-Site Scripting Vulnerability	2008-05-21T00:00+09:00	2008-07-11T13:47+09:00
jvndb-2008-000038	Redmine vulnerable to cross-site scripting	2008-07-08T12:15+09:00	2008-07-08T12:15+09:00
jvndb-2008-000036	FreeStyleWiki cross-site scripting vulnerability	2008-07-08T12:14+09:00	2008-07-08T12:14+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:0993-1	Security update for webkit2gtk3	2025-03-24T14:33:32Z	2025-03-24T14:33:32Z
suse-su-2025:0992-1	Security update for docker	2025-03-24T14:31:39Z	2025-03-24T14:31:39Z
suse-su-2025:0991-1	Security update for rsync	2025-03-24T13:56:41Z	2025-03-24T13:56:41Z
suse-su-2025:20158-1	Security update for ucode-intel	2025-03-24T12:15:39Z	2025-03-24T12:15:39Z
suse-su-2025:20157-1	Security update for gnutls	2025-03-24T09:52:04Z	2025-03-24T09:52:04Z
suse-su-2025:20156-1	Security update for python-Jinja2	2025-03-24T09:41:28Z	2025-03-24T09:41:28Z
suse-su-2025:0989-1	Security update for u-boot	2025-03-24T09:32:42Z	2025-03-24T09:32:42Z
suse-su-2025:0988-1	Security update for zvbi	2025-03-24T09:32:22Z	2025-03-24T09:32:22Z
suse-su-2025:0986-1	Security update for libarchive	2025-03-21T17:49:33Z	2025-03-21T17:49:33Z
suse-su-2025:0985-1	Security update for libarchive	2025-03-21T17:45:17Z	2025-03-21T17:45:17Z
suse-su-2025:0984-1	Security update for xorg-x11-server	2025-03-21T17:44:38Z	2025-03-21T17:44:38Z
suse-su-2025:0983-1	Security update for the Linux Kernel	2025-03-21T17:44:17Z	2025-03-21T17:44:17Z
suse-su-2025:0982-1	Security update for python311	2025-03-21T14:17:05Z	2025-03-21T14:17:05Z
suse-su-2025:0981-1	Security update for python311	2025-03-21T14:16:48Z	2025-03-21T14:16:48Z
suse-su-2025:0980-1	Security update for apptainer	2025-03-21T14:15:19Z	2025-03-21T14:15:19Z
suse-su-2025:0979-1	Security update for zvbi	2025-03-21T12:54:02Z	2025-03-21T12:54:02Z
suse-su-2025:0977-1	Security update for wpa_supplicant	2025-03-21T08:25:51Z	2025-03-21T08:25:51Z
suse-su-2025:0976-1	Security update for libxml2	2025-03-21T08:25:09Z	2025-03-21T08:25:09Z
suse-su-2025:0975-1	Security update for webkit2gtk3	2025-03-21T08:24:35Z	2025-03-21T08:24:35Z
suse-su-2025:0974-1	Security update for webkit2gtk3	2025-03-21T08:23:09Z	2025-03-21T08:23:09Z
suse-su-2025:20241-1	Security update for gstreamer-plugins-base	2025-03-20T10:57:31Z	2025-03-20T10:57:31Z
suse-su-2025:20155-1	Security update for protobuf	2025-03-20T10:44:54Z	2025-03-20T10:44:54Z
suse-su-2025:0962-1	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP6)	2025-03-19T19:04:26Z	2025-03-19T19:04:26Z
suse-su-2025:0961-1	Security update for the Linux Kernel (Live Patch 49 for SLE 15 SP3)	2025-03-19T19:04:10Z	2025-03-19T19:04:10Z
suse-su-2025:0960-1	Security update for freetype2	2025-03-19T18:34:08Z	2025-03-19T18:34:08Z
suse-su-2025:0959-1	Security update for python-Django	2025-03-19T16:56:42Z	2025-03-19T16:56:42Z
suse-su-2025:0958-1	Security update for ffmpeg-4	2025-03-19T16:55:56Z	2025-03-19T16:55:56Z
suse-su-2025:0956-1	Security update for python-Jinja2	2025-03-19T16:12:31Z	2025-03-19T16:12:31Z
suse-su-2025:0955-1	Security update for the Linux Kernel	2025-03-19T16:11:24Z	2025-03-19T16:11:24Z
suse-su-2025:0954-1	Security update for tomcat	2025-03-19T13:50:54Z	2025-03-19T13:50:54Z

ID	Description	Published	Updated
opensuse-su-2024:13333-1	exim-4.96.2-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13332-1	ctdb-4.19.1+git.312.c912b3d2ef6-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13331-1	tomcat-9.0.82-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13330-1	libnss_slurm2-23.02.6-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13329-1	jetty-annotations-9.4.53-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13328-1	grub2-2.12~rc1-5.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13327-1	go1.21-1.21.3-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13326-1	go1.20-1.20.10-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13325-1	curl-8.4.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13324-1	tuxguitar-1.6.0-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13323-1	rxvt-unicode-9.31-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13322-1	libopenconnect5-9.12-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13321-1	libeverest-3.5.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13320-1	matrix-synapse-1.94.0-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13319-1	libcue-devel-2.3.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13318-1	erofs-utils-1.7-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13317-1	chromedriver-118.0.5993.70-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13316-1	borgbackup-1.2.6-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13315-1	shadowsocks-rust-1.16.2-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13314-1	opensc-0.23.0-3.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13313-1	gpp-2.28-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13312-1	eclipse-jgit-5.11.0-9.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13311-1	ansible-core-2.15.5-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13310-1	libwireshark16-4.0.10-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13309-1	plexus-archiver-4.8.0-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13308-1	libQt5Bootstrap-devel-static-32bit-5.15.11+kde134-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13307-1	go1.21-1.21.2-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13306-1	go1.20-1.20.9-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13305-1	kernel-devel-6.5.6-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13304-1	cargo-audit-advisory-db-20231007-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
cnvd-2025-23238	Student Result Management System /srms/change-password.php组件会话劫持漏洞	2025-08-01	2025-10-10
cnvd-2025-23237	Student Result Management System /elms/emp-changepassword.php组件会话劫持漏洞	2025-08-01	2025-10-10
cnvd-2025-23236	User Management System emailid参数SQL注入漏洞	2025-08-26	2025-10-10
cnvd-2025-23235	User Management System admin/change-emailid.php文件SQL注入漏洞	2025-09-04	2025-10-10
cnvd-2025-23234	Online Library Management System adminlogin.php组件权限提升漏洞	2025-09-18	2025-10-10
cnvd-2025-23233	Student Result Management System Using PHP跨站请求伪造漏洞	2025-09-18	2025-10-10
cnvd-2025-23232	Online Library Management System权限提升漏洞	2025-09-18	2025-10-10
cnvd-2025-23231	User Management System login.php文件SQL注入漏洞	2025-09-19	2025-10-10
cnvd-2025-23230	Online Discussion Forum search_result.php文件SQL注入漏洞	2025-09-19	2025-10-10
cnvd-2025-23229	Online Discussion Forum edit_member.php文件SQL注入漏洞	2025-09-19	2025-10-10
cnvd-2025-23228	Online Course Registration my-profile.php文件SQL注入漏洞	2025-09-23	2025-10-10
cnvd-2025-23227	Park Ticketing Management System /index.php文件SQL注入漏洞	2024-12-20	2025-10-09
cnvd-2025-23226	Park Ticketing Management System foreigner-search.php文件HTML注入漏洞	2025-05-13	2025-10-09
cnvd-2025-23225	Park Ticketing Management System edit-ticket.php文件SQL注入漏洞	2025-05-13	2025-10-09
cnvd-2025-23224	Park Ticketing Management System normal-bwdates-reports-details.php文件HTML注入漏洞	2025-05-13	2025-10-09
cnvd-2025-23223	Park Ticketing Management System normal-bwdates-reports-details.php文件SQL注入漏洞	2025-05-13	2025-10-09
cnvd-2025-23222	Park Ticketing Management System add-foreigners-ticket.php文件SQL注入漏洞	2025-05-13	2025-10-09
cnvd-2025-23221	Park Ticketing Management System foreigner-bwdates-reports-details.php文件SQL注入漏洞	2025-05-13	2025-10-09
cnvd-2025-23220	Park Ticketing Management System HTML注入漏洞	2025-05-13	2025-10-09
cnvd-2025-23219	Park Ticketing Management System foreigner-bwdates-reports-details.php文件跨站脚本漏洞	2025-05-13	2025-10-09
cnvd-2025-23218	Park Ticketing Management System /profile.php文件SQL注入漏洞	2025-05-13	2025-10-09
cnvd-2025-23217	Park Ticketing Management System /view-normal-ticket.php文件SQL注入漏洞	2025-05-22	2025-10-09
cnvd-2025-23216	Park Ticketing Management System /view-foreigner-ticket.php文件SQL注入漏洞	2025-05-22	2025-10-09
cnvd-2025-23159	Park Ticketing Management System /normal-search.php文件SQL注入漏洞	2025-05-22	2025-10-09
cnvd-2025-23158	Park Ticketing Management System /forgot-password.php文件SQL注入漏洞	2025-05-22	2025-10-09
cnvd-2025-23157	Park Ticketing Management System /foreigner-search.php文件SQL注入漏洞	2025-05-22	2025-10-09
cnvd-2025-23156	Park Ticketing Management System /add-normal-ticket.php文件SQL注入漏洞	2025-05-22	2025-10-09
cnvd-2025-23155	Park Ticketing Management System normal-bwdates-reports-details.php文件SQL注入漏洞	2025-09-25	2025-10-09
cnvd-2025-23154	Small CRM Request a Quote字段跨站脚本漏洞	2023-10-24	2025-10-09
cnvd-2025-23153	Small CRM Users login面板SQL注入漏洞	2024-01-05	2025-10-09

ID	Description	Published	Updated
certfr-2023-avi-0623	Multiples vulnérabilités dans le noyau Linux de RedHat	2023-08-04T00:00:00.000000	2023-08-04T00:00:00.000000
certfr-2023-avi-0622	Multiples vulnérabilités dans le noyau Linux de DebianLTS	2023-08-04T00:00:00.000000	2023-08-04T00:00:00.000000
certfr-2023-avi-0621	Multiples vulnérabilités dans PHP	2023-08-04T00:00:00.000000	2023-08-04T00:00:00.000000
certfr-2023-avi-0620	Vulnérabilité dans les produits WithSecure	2023-08-04T00:00:00.000000	2023-08-04T00:00:00.000000
certfr-2023-avi-0619	Multiples vulnérabilités dans VMware Horizon Server	2023-08-04T00:00:00.000000	2023-08-04T00:00:00.000000
certfr-2023-avi-0618	Multiples vulnérabilités dans Axis License Plate Verifier	2023-08-04T00:00:00.000000	2023-08-04T00:00:00.000000
certfr-2023-avi-0617	Vulnérabilité dans Check Point Enterprise Endpoint Security	2023-08-03T00:00:00.000000	2023-08-03T00:00:00.000000
certfr-2023-avi-0616	Multiples vulnérabilités dans F5 Big-IP	2023-08-03T00:00:00.000000	2023-08-03T00:00:00.000000
certfr-2023-avi-0614	Multiples vulnérabilités dans Mitel MiVoice	2023-08-03T00:00:00.000000	2023-08-03T00:00:00.000000
certfr-2023-avi-0613	Multiples vulnérabilités dans Mozilla Thunderbird	2023-08-03T00:00:00.000000	2023-08-03T00:00:00.000000
certfr-2023-avi-0612	Multiples vulnérabilités dans Tenable Nessus	2023-08-03T00:00:00.000000	2023-08-03T00:00:00.000000
certfr-2023-avi-0611	Multiples vulnérabilités dans Mozilla Firefox	2023-08-02T00:00:00.000000	2023-08-02T00:00:00.000000
certfr-2023-avi-0610	Multiples vulnérabilités dans GitLab	2023-08-02T00:00:00.000000	2023-08-02T00:00:00.000000
certfr-2023-avi-0609	Vulnérabilité dans les commutateurs Aruba	2023-08-02T00:00:00.000000	2023-08-02T00:00:00.000000
certfr-2023-avi-0608	Vulnérabilité dans Xen	2023-08-02T00:00:00.000000	2023-08-02T00:00:00.000000
certfr-2023-avi-0607	Vulnérabilité dans Palo Alto Networks GlobalProtect App	2023-08-01T00:00:00.000000	2023-08-01T00:00:00.000000
certfr-2023-avi-0606	Vulnérabilité dans Splunk SOAR	2023-08-01T00:00:00.000000	2023-08-01T00:00:00.000000
certfr-2023-avi-0605	Vulnérabilité dans OpenSSL	2023-08-01T00:00:00.000000	2023-08-01T00:00:00.000000
certfr-2023-avi-0604	Vulnérabilité dans Ivanti Endpoint Manager Mobile	2023-07-31T00:00:00.000000	2023-07-31T00:00:00.000000
certfr-2023-avi-0603	Multiples vulnérabilités dans Samba	2023-07-31T00:00:00.000000	2023-07-31T00:00:00.000000
certfr-2023-avi-0602	Multiples vulnérabilités dans les produits Qnap	2023-07-28T00:00:00.000000	2023-07-28T00:00:00.000000
certfr-2023-avi-0601	Multiples vulnérabilités dans le noyau Linux de Debian	2023-07-28T00:00:00.000000	2023-07-28T00:00:00.000000
certfr-2023-avi-0600	Multiples vulnérabilités dans le noyau Linux de SUSE	2023-07-28T00:00:00.000000	2023-07-28T00:00:00.000000
certfr-2023-avi-0599	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2023-07-28T00:00:00.000000	2023-07-28T00:00:00.000000
certfr-2023-avi-0597	Multiples vulnérabilités dans IBM Cognos Analytics	2023-07-28T00:00:00.000000	2023-07-28T00:00:00.000000
certfr-2023-avi-0596	Multiples vulnérabilités dans les produits SolarWinds	2023-07-27T00:00:00.000000	2023-07-27T00:00:00.000000
certfr-2023-avi-0595	Vulnérabilité dans Thunderbird	2023-07-27T00:00:00.000000	2023-07-27T00:00:00.000000
certfr-2023-avi-0594	Multiples vulnérabilités dans Trend Micro Apex Central	2023-07-27T00:00:00.000000	2023-07-27T00:00:00.000000
certfr-2023-avi-0593	Multiples vulnérabilités dans SonicWall GMS et Analytics	2023-07-26T00:00:00.000000	2023-07-26T00:00:00.000000
certfr-2023-avi-0592	Multiples vulnérabilités dans Zimbra	2023-07-26T00:00:00.000000	2023-07-26T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated