Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-64225 |
6.1 (3.1)
|
WordPress Stockie Extra plugin <= 1.2.11 - Content Inj… |
colabrio |
Stockie Extra |
2025-12-18T07:22:13.245Z | 2026-01-20T21:46:48.570Z |
| CVE-2025-64227 |
9.8 (3.1)
|
WordPress Client Invoicing by Sprout Invoices plugin <… |
BoldGrid |
Client Invoicing by Sprout Invoices |
2025-12-18T07:22:13.423Z | 2026-01-20T21:46:30.834Z |
| CVE-2025-64230 |
7.5 (3.1)
|
WordPress Filr plugin <= 1.2.10 - Arbitrary File Delet… |
WP Chill |
Filr |
2025-12-18T07:22:13.596Z | 2026-01-20T21:45:50.350Z |
| CVE-2025-64231 |
9.8 (3.1)
|
WordPress WordPress Contact Form 7 PDF, Google Sheet &… |
RedefiningTheWeb |
WordPress Contact Form 7 PDF, Google Sheet & Database |
2025-12-18T07:22:13.778Z | 2026-01-20T21:45:30.264Z |
| CVE-2025-64233 |
9.8 (3.1)
|
WordPress Codiqa theme < 1.2.8 - PHP Object Injection … |
BoldThemes |
Codiqa |
2025-12-18T07:22:13.958Z | 2026-01-20T21:45:05.735Z |
| CVE-2026-23874 |
5.5 (3.1)
|
ImageMagick's MSL: Stack overflow via infinite recursi… |
ImageMagick |
ImageMagick |
2026-01-20T00:52:52.916Z | 2026-01-20T21:43:48.227Z |
| CVE-2026-23839 |
9.3 (3.1)
|
Movary vulnerable to Cross-site Scripting with `?categ… |
leepeuker |
movary |
2026-01-19T18:27:25.541Z | 2026-01-20T21:42:05.092Z |
| CVE-2026-23838 |
8.7 (4.0)
|
Tandoor Recipes module allows SQLite database to be ex… |
NixOS |
nixpkgs |
2026-01-19T18:14:55.567Z | 2026-01-20T21:41:34.412Z |
| CVE-2026-23878 |
6.5 (3.1)
|
HotCRP vulnerable to exposure of submitted documents |
kohler |
hotcrp |
2026-01-19T18:08:41.100Z | 2026-01-20T21:40:57.565Z |
| CVE-2026-0905 |
9.8 (3.1)
|
Insufficient policy enforcement in Network in Goo… |
Google |
Chrome |
2026-01-20T04:14:16.589Z | 2026-01-20T21:40:43.367Z |
| CVE-2026-23836 |
10 (3.1)
|
HotCRP vulnerable to remote code execution through formulas |
kohler |
hotcrp |
2026-01-19T18:06:04.928Z | 2026-01-20T21:40:24.493Z |
| CVE-2026-1170 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
birkir prime GraphQL API graphql information disclosure |
birkir |
prime |
2026-01-19T18:02:06.344Z | 2026-01-20T21:39:55.634Z |
| CVE-2026-23833 |
1.7 (4.0)
|
ESPHome vulnerable to denial-of-service via out-of-bou… |
esphome |
esphome |
2026-01-19T17:58:50.499Z | 2026-01-20T21:39:18.848Z |
| CVE-2026-23533 |
7.7 (4.0)
|
FreeRDP has heap-buffer-overflow in clear_decompress_r… |
FreeRDP |
FreeRDP |
2026-01-19T17:07:18.283Z | 2026-01-20T21:38:24.937Z |
| CVE-2026-23532 |
7.7 (4.0)
|
FreeRDP has heap-buffer-overflow in gdi_SurfaceToSurface |
FreeRDP |
FreeRDP |
2026-01-19T17:03:51.328Z | 2026-01-20T21:37:53.418Z |
| CVE-2026-23531 |
7.7 (4.0)
|
FreeRDP has heap-buffer-overflow in clear_decompress |
FreeRDP |
FreeRDP |
2026-01-19T17:01:01.380Z | 2026-01-20T21:37:13.986Z |
| CVE-2026-23530 |
7.7 (4.0)
|
FreeRDP has heap-buffer-overflow in planar_decompress_… |
FreeRDP |
FreeRDP |
2026-01-19T16:58:46.712Z | 2026-01-20T21:36:30.982Z |
| CVE-2026-1050 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
risesoft-y9 Digital-Infrastructure REST Authenticate E… |
risesoft-y9 |
Digital-Infrastructure |
2026-01-17T18:02:05.805Z | 2026-01-20T21:36:27.356Z |
| CVE-2026-23522 |
3.7 (3.1)
|
Lobe Chat has IDOR in Knowledge Base File Removal that… |
lobehub |
lobe-chat |
2026-01-19T16:53:32.371Z | 2026-01-20T21:35:39.441Z |
| CVE-2026-22850 |
8.4 (3.1)
|
Koko Analytics vulnerable to arbitrary SQL execution t… |
ibericode |
koko-analytics |
2026-01-19T16:51:00.394Z | 2026-01-20T21:35:14.638Z |
| CVE-2026-22037 |
8.4 (3.1)
|
@fastify/express vulnerable to Improper Handling of UR… |
fastify |
fastify-express |
2026-01-19T16:48:10.994Z | 2026-01-20T21:34:44.100Z |
| CVE-2026-1049 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
LigeroSmart index.pl cross site scripting |
n/a |
LigeroSmart |
2026-01-17T17:32:05.916Z | 2026-01-20T21:34:34.756Z |
| CVE-2026-1162 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
UTT HiPER 810 setSysAdm strcpy buffer overflow |
UTT |
HiPER 810 |
2026-01-19T16:32:06.149Z | 2026-01-20T21:34:08.910Z |
| CVE-2026-1161 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
pbrong hrms recruitment.go UpdateRecruitmentById cross… |
pbrong |
hrms |
2026-01-19T16:02:07.455Z | 2026-01-20T21:33:40.542Z |
| CVE-2026-1160 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
PHPGurukul Directory Management System Search index.ph… |
PHPGurukul |
Directory Management System |
2026-01-19T15:32:07.423Z | 2026-01-20T21:33:05.924Z |
| CVE-2026-1157 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Totolink LR350 cstecgi.cgi setWiFiEasyCfg buffer overflow |
Totolink |
LR350 |
2026-01-19T14:02:10.111Z | 2026-01-20T21:32:30.296Z |
| CVE-2026-1048 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
LigeroSmart index.pl cross site scripting |
n/a |
LigeroSmart |
2026-01-17T17:02:06.534Z | 2026-01-20T21:32:11.380Z |
| CVE-2026-1156 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Totolink LR350 cstecgi.cgi setWiFiBasicCfg buffer overflow |
Totolink |
LR350 |
2026-01-19T13:32:11.182Z | 2026-01-20T21:31:50.922Z |
| CVE-2026-1155 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Totolink LR350 cstecgi.cgi setWiFiEasyGuestCfg buffer … |
Totolink |
LR350 |
2026-01-19T13:02:15.880Z | 2026-01-20T21:31:19.479Z |
| CVE-2026-1154 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
SourceCodester E-Learning System Lesson index.php cros… |
SourceCodester |
E-Learning System |
2026-01-19T12:32:06.674Z | 2026-01-20T21:30:44.603Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-30647 |
6.5 (3.1)
7.1 (4.0)
|
Junos OS: MX Series: Subscriber login/logout activity … |
Juniper Networks |
Junos OS |
2025-04-09T19:53:59.529Z | 2025-04-09T20:07:25.649Z |
| CVE-2025-30648 |
7.4 (3.1)
7.1 (4.0)
|
Junos OS and Junos OS Evolved: Receipt of a specifical… |
Juniper Networks |
Junos OS |
2025-04-09T19:54:41.339Z | 2025-04-09T20:06:17.698Z |
| CVE-2025-49193 |
4.2 (3.1)
|
Missing HTTP Security Headers |
SICK AG |
Field Analytics |
2025-06-12T14:15:07.492Z | 2025-10-06T07:23:25.144Z |
| CVE-2025-30649 |
7.5 (3.1)
8.7 (4.0)
|
Junos OS: MX240, MX480, MX960 with SPC3: An attacker s… |
Juniper Networks |
Junos OS |
2025-04-09T19:55:37.363Z | 2025-04-09T20:03:04.073Z |
| CVE-2025-49194 |
7.5 (3.1)
|
Unencrypted communication |
SICK AG |
SICK Media Server |
2025-06-12T14:17:36.499Z | 2025-06-13T06:14:44.270Z |
| CVE-2025-49195 |
5.3 (3.1)
|
No protection against brute-force attacks |
SICK AG |
SICK Media Server |
2025-06-12T14:19:21.686Z | 2025-06-13T06:16:40.051Z |
| CVE-2025-30661 |
7.3 (3.1)
8.5 (4.0)
|
Junos OS: Low-privileged user can cause script to run … |
Juniper Networks |
Junos OS |
2025-07-11T14:38:52.289Z | 2025-07-12T03:55:12.892Z |
| CVE-2025-49196 |
6.5 (3.1)
|
Deprecated TLS version supported |
SICK AG |
SICK Field Analytics |
2025-06-12T14:20:53.321Z | 2025-06-17T19:03:56.791Z |
| CVE-2025-49197 |
6.5 (3.1)
|
Deprecated TLS version supported |
SICK AG |
SICK Media Server |
2025-06-12T14:23:04.373Z | 2025-06-17T19:03:20.901Z |
| CVE-2025-49198 |
3.1 (3.1)
|
Poor quality of randomness in authorization tokens |
SICK AG |
SICK Media Server |
2025-06-12T14:24:55.991Z | 2025-06-17T19:02:49.762Z |
| CVE-2025-49199 |
8.8 (3.1)
|
Backup files can be modified and uploaded |
SICK AG |
SICK Field Analytics |
2025-06-12T14:26:32.507Z | 2025-06-17T19:02:18.155Z |
| CVE-2025-49200 |
6.5 (3.1)
|
Unencrypted backup contains sensitive information |
SICK AG |
SICK Field Analytics |
2025-06-12T14:27:57.643Z | 2025-06-17T18:59:46.867Z |
| CVE-2026-24551 |
5.4 (3.1)
|
WordPress Monetag Official Plugin plugin <= 1.1.3 - Br… |
monetagwp |
Monetag Official Plugin |
2026-01-23T14:28:53.243Z | 2026-01-26T18:09:59.697Z |
| CVE-2026-24548 |
5.3 (3.1)
|
WordPress Radio Player plugin <= 2.0.91 - Server Side … |
Prince |
Radio Player |
2026-01-23T14:28:52.689Z | 2026-01-26T18:56:23.845Z |
| CVE-2026-24380 |
8.8 (3.1)
|
WordPress EventPrime plugin <= 4.2.8.0 - Broken Access… |
Metagauss |
EventPrime |
2026-01-22T16:52:46.530Z | 2026-01-26T18:53:58.695Z |
| CVE-2026-24379 |
9.1 (3.1)
|
WordPress WP Job Portal plugin <= 2.4.3 - Insecure Dir… |
wpjobportal |
WP Job Portal |
2026-01-22T16:52:46.322Z | 2026-01-26T18:54:05.541Z |
| CVE-2026-24377 |
7.5 (3.1)
|
WordPress Nexter Blocks plugin <= 4.6.3 - Sensitive Da… |
POSIMYTH |
Nexter Blocks |
2026-01-22T16:52:46.045Z | 2026-01-26T18:54:10.921Z |
| CVE-2026-24371 |
9.8 (3.1)
|
WordPress BA Book Everything plugin <= 1.8.16 - Broken… |
bookingalgorithms |
BA Book Everything |
2026-01-22T16:52:45.641Z | 2026-01-26T18:54:16.806Z |
| CVE-2026-24368 |
8.8 (3.1)
|
WordPress The Grid plugin < 2.8.0 - Broken Access Cont… |
Theme-one |
The Grid |
2026-01-22T16:52:45.439Z | 2026-01-26T18:54:22.753Z |
| CVE-2026-24358 |
8.8 (3.1)
|
WordPress Quiz And Survey Master plugin <= 10.3.3 - Br… |
ExpressTech Systems |
Quiz And Survey Master |
2026-01-22T16:52:44.066Z | 2026-01-26T18:54:28.907Z |
| CVE-2026-24357 |
8.1 (3.1)
|
WordPress WP Recipe Maker plugin <= 10.2.4 - Broken Ac… |
Brecht |
WP Recipe Maker |
2026-01-22T16:52:43.886Z | 2026-01-26T18:54:34.893Z |
| CVE-2026-24356 |
8.8 (3.1)
|
WordPress GetGenie plugin <= 4.3.0 - Broken Access Con… |
Roxnor |
GetGenie |
2026-01-22T16:52:43.691Z | 2026-01-26T18:54:41.064Z |
| CVE-2026-24353 |
8.1 (3.1)
|
WordPress User Registration plugin <= 4.4.9 - Arbitrar… |
wpeverest |
User Registration |
2026-01-22T16:52:43.122Z | 2026-01-26T18:54:47.326Z |
| CVE-2026-23978 |
9.8 (3.1)
|
WordPress Gyan Elements plugin <= 2.2.1 - Local File I… |
Softwebmedia |
Gyan Elements |
2026-01-22T16:52:42.908Z | 2026-01-26T18:54:53.364Z |
| CVE-2026-23975 |
9.8 (3.1)
|
WordPress Golo theme < 1.7.5 - Local File Inclusion vu… |
uxper |
Golo |
2026-01-22T16:52:42.488Z | 2026-01-26T18:54:59.131Z |
| CVE-2026-23974 |
8.8 (3.1)
|
WordPress Golo theme < 1.7.5 - Broken Access Control v… |
uxper |
Golo |
2026-01-22T16:52:42.305Z | 2026-01-26T18:55:06.184Z |
| CVE-2026-22586 |
9.8 (3.1)
|
Hard-coded Cryptographic Key vulnerability in Sal… |
Salesforce |
Marketing Cloud Engagement |
2026-01-24T00:17:08.285Z | 2026-01-27T04:55:35.035Z |
| CVE-2026-22585 |
9.8 (3.1)
|
Use of a Broken or Risky Cryptographic Algorithm … |
Salesforce |
Marketing Cloud Engagement |
2026-01-24T00:15:02.891Z | 2026-01-27T04:55:33.951Z |
| CVE-2026-22582 |
9.8 (3.1)
|
Improper Neutralization of Argument Delimiters in… |
Salesforce |
Marketing Cloud Engagement |
2026-01-24T00:19:26.449Z | 2026-01-27T04:55:31.777Z |
| CVE-2026-22482 |
9.1 (3.1)
|
WordPress IMGspider plugin <= 2.3.12 - Server Side Req… |
wbolt.com |
IMGspider |
2026-01-22T16:52:41.909Z | 2026-01-26T18:55:11.632Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-30661 | An Incorrect Permission Assignment for Critical Resource vulnerability in line card script processi… | 2025-07-11T15:15:24.073 | 2026-01-26T19:28:14.150 |
| fkie_cve-2025-49196 | A service supports the use of a deprecated and unsafe TLS version. This could be exploited to expos… | 2025-06-12T15:15:39.857 | 2026-01-26T19:28:00.473 |
| fkie_cve-2025-49197 | The application uses a weak password hash function, allowing an attacker to crack the weak password… | 2025-06-12T15:15:39.987 | 2026-01-26T19:27:39.247 |
| fkie_cve-2025-49198 | The Media Server’s authorization tokens have a poor quality of randomness. An attacker may be able … | 2025-06-12T15:15:40.113 | 2026-01-26T19:27:02.220 |
| fkie_cve-2025-49199 | The backup ZIPs are not signed by the application, leading to the possibility that an attacker can … | 2025-06-12T15:15:40.270 | 2026-01-26T19:26:39.377 |
| fkie_cve-2025-49200 | The created backup files are unencrypted, making the application vulnerable for gathering sensitive… | 2025-06-12T15:15:40.410 | 2026-01-26T19:18:46.283 |
| fkie_cve-2026-24551 | Missing Authorization vulnerability in monetagwp Monetag Official Plugin monetag-official allows Ex… | 2026-01-23T15:16:11.717 | 2026-01-26T19:16:36.777 |
| fkie_cve-2026-24548 | Server-Side Request Forgery (SSRF) vulnerability in Prince Radio Player radio-player allows Server … | 2026-01-23T15:16:10.940 | 2026-01-26T19:16:36.613 |
| fkie_cve-2026-24380 | Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management al… | 2026-01-22T17:16:40.910 | 2026-01-26T19:16:36.267 |
| fkie_cve-2026-24379 | Authorization Bypass Through User-Controlled Key vulnerability in wpjobportal WP Job Portal wp-job-… | 2026-01-22T17:16:40.790 | 2026-01-26T19:16:36.100 |
| fkie_cve-2026-24377 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in POSIMYT… | 2026-01-22T17:16:40.663 | 2026-01-26T19:16:35.417 |
| fkie_cve-2026-24371 | Missing Authorization vulnerability in bookingalgorithms BA Book Everything ba-book-everything allo… | 2026-01-22T17:16:40.423 | 2026-01-26T19:16:35.227 |
| fkie_cve-2026-24368 | Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Co… | 2026-01-22T17:16:40.303 | 2026-01-26T19:16:35.047 |
| fkie_cve-2026-24358 | Missing Authorization vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next … | 2026-01-22T17:16:39.570 | 2026-01-26T19:16:34.857 |
| fkie_cve-2026-24357 | Missing Authorization vulnerability in Brecht WP Recipe Maker wp-recipe-maker allows Exploiting Inc… | 2026-01-22T17:16:39.427 | 2026-01-26T19:16:32.723 |
| fkie_cve-2026-24356 | Missing Authorization vulnerability in Roxnor GetGenie getgenie allows Exploiting Incorrectly Confi… | 2026-01-22T17:16:39.300 | 2026-01-26T19:16:32.500 |
| fkie_cve-2026-24353 | Missing Authorization vulnerability in wpeverest User Registration user-registration allows Exploit… | 2026-01-22T17:16:38.910 | 2026-01-26T19:16:27.580 |
| fkie_cve-2026-23978 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-22T17:16:38.450 | 2026-01-26T19:16:24.563 |
| fkie_cve-2026-23975 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-22T17:16:38.210 | 2026-01-26T19:16:24.330 |
| fkie_cve-2026-23974 | Missing Authorization vulnerability in uxper Golo golo allows Exploiting Incorrectly Configured Acc… | 2026-01-22T17:16:38.090 | 2026-01-26T19:16:24.123 |
| fkie_cve-2026-22586 | Hard-coded Cryptographic Key vulnerability in Salesforce Marketing Cloud Engagement (CloudPages, Fo… | 2026-01-24T01:15:50.283 | 2026-01-26T19:16:23.930 |
| fkie_cve-2026-22585 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Salesforce Marketing Cloud Engage… | 2026-01-24T01:15:50.167 | 2026-01-26T19:16:23.123 |
| fkie_cve-2026-22582 | Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in… | 2026-01-24T01:15:49.920 | 2026-01-26T19:16:22.320 |
| fkie_cve-2026-22482 | Server-Side Request Forgery (SSRF) vulnerability in wbolt.com IMGspider imgspider allows Server Sid… | 2026-01-22T17:16:36.140 | 2026-01-26T19:16:22.103 |
| fkie_cve-2026-22472 | Missing Authorization vulnerability in hassantafreshi Easy Form Builder easy-form-builder allows Ex… | 2026-01-22T17:16:35.880 | 2026-01-26T19:16:20.967 |
| fkie_cve-2025-6089 | A vulnerability has been found in Astun Technology iShare Maps 5.4.0 and classified as problematic.… | 2025-06-15T13:15:33.353 | 2026-01-26T19:16:16.510 |
| fkie_cve-2025-27005 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-22T17:15:53.997 | 2026-01-26T19:16:08.920 |
| fkie_cve-2025-56110 | OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitra… | 2025-12-11T19:15:56.683 | 2026-01-26T19:13:04.100 |
| fkie_cve-2025-39201 | A vulnerability exists in MicroSCADA X SYS600 product. If exploited this could allow a local unauth… | 2025-06-24T12:15:21.050 | 2026-01-26T18:56:36.303 |
| fkie_cve-2025-39202 | A vulnerability exists in in the Monitor Pro interface of the MicroSCADA X SYS600 product. An authe… | 2025-06-24T12:15:21.200 | 2026-01-26T18:52:01.397 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-qqhf-pm3j-96g7 |
8.1 (3.1)
|
MindsDB has improper sanitation of filepath that leads to information disclosure and DOS | 2026-01-12T16:10:55Z | 2026-01-20T18:22:20Z |
| ghsa-9g95-48c6-r778 |
7.5 (3.1)
|
Livewire Filemanager does not restrict uploaded file types | 2026-01-16T15:31:24Z | 2026-01-20T18:17:02Z |
| ghsa-5f29-2333-h9c7 |
9.1 (3.1)
8.5 (4.0)
|
OpenMetadata's Server-Side Template Injection (SSTI) in FreeMarker email templates leads to RCE | 2026-01-07T19:33:03Z | 2026-01-20T18:02:42Z |
| ghsa-39h3-g67r-7g3c |
6.5 (3.1)
|
ImageMagick releases an invalid pointer in BilateralBlur when memory allocation fails | 2026-01-20T17:25:31Z | 2026-01-20T17:25:31Z |
| ghsa-2657-3c98-63jq |
7.7 (4.0)
|
esm.sh has a path traversal in extractPackageTarball enables file writes from malicious packages | 2026-01-20T17:21:49Z | 2026-01-20T17:21:49Z |
| ghsa-j7xp-4mg9-x28r |
3.7 (3.1)
|
Lobe Chat has IDOR in Knowledge Base File Removal that Allows Cross User File Deletion | 2026-01-20T17:14:39Z | 2026-01-20T17:14:39Z |
| ghsa-jg2j-2w24-54cg |
6.8 (3.1)
|
Kimai has an Authenticated Server-Side Template Injection (SSTI) | 2026-01-20T17:07:13Z | 2026-01-20T17:07:13Z |
| ghsa-g6q3-96cp-5r5m |
8.4 (3.1)
|
@fastify/express vulnerable to Improper Handling of URL Encoding (Hex Encoding) | 2026-01-20T16:35:21Z | 2026-01-20T16:35:21Z |
| ghsa-cxrg-g7r8-w69p |
8.4 (3.1)
|
Fastify Middie Middleware Path Bypass | 2026-01-20T16:34:50Z | 2026-01-20T16:34:50Z |
| ghsa-983w-rhvv-gwmv |
7.5 (3.1)
|
WeasyPrint has a Server-Side Request Forgery (SSRF) Protection Bypass via HTTP Redirect | 2026-01-20T16:29:53Z | 2026-01-20T16:29:54Z |
| ghsa-wh27-24q4-8pfv |
8.1 (3.1)
|
The Nexter Extension – Site Enhancements Toolkit plugin for WordPress is vulnerable to PHP Object I… | 2026-01-20T15:33:15Z | 2026-01-20T15:33:15Z |
| ghsa-wpc5-5qhg-m23f |
6.1 (3.1)
|
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-vx96-3pgw-95vh |
6.1 (3.1)
|
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-v2qp-jj65-9fp8 |
6.4 (3.1)
|
The FlatPM – Ad Manager, AdSense and Custom Code plugin for WordPress is vulnerable to Stored Cross… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-p2x3-fg55-f87f |
6.1 (3.1)
|
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-jwp3-3332-hf38 |
6.1 (3.1)
|
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-j3hf-p7r2-5856 |
6.1 (3.1)
|
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-g4wv-7jq7-564j |
5.4 (3.1)
|
The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to unauthor… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-9jp9-v3hm-345r |
6.4 (3.1)
|
The Head Meta Data plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'head-… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-7v3h-xqqp-8hfq |
6.1 (3.1)
|
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-79fq-f269-gxf9 |
6.1 (3.1)
|
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-756m-pc89-732m |
4.3 (3.1)
|
The NotificationX plugin for WordPress is vulnerable to unauthorized modification of data due to a … | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-4hh5-gxrj-rjh8 |
6.1 (3.1)
|
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-3f2v-mfqw-2824 |
6.1 (3.1)
|
Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality… | 2026-01-20T15:33:14Z | 2026-01-20T15:33:14Z |
| ghsa-xp9w-679v-r5vm |
5.9 (3.1)
|
IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information from … | 2026-01-20T15:33:13Z | 2026-01-20T15:33:13Z |
| ghsa-w6pj-gq3f-8h94 |
8.8 (4.0)
|
A security issue was discovered within the legacy Ansible playbook component of Verve Asset Manager… | 2026-01-20T15:33:13Z | 2026-01-20T15:33:13Z |
| ghsa-vwv8-6f5h-57m5 |
8.4 (3.1)
|
IBM Sterling Connect:Direct for UNIX Container 6.3.0.0 through 6.3.0.6 Interim Fix 016, and 6.4.0.0… | 2026-01-20T15:33:13Z | 2026-01-20T15:33:13Z |
| ghsa-v547-mp27-jv96 |
8.6 (4.0)
|
A security issue was discovered within the legacy ADI server component of Verve Asset Manager, caus… | 2026-01-20T15:33:13Z | 2026-01-20T15:33:13Z |
| ghsa-r7hm-jxg6-vr8h |
8.8 (3.1)
|
The Creator LMS – The LMS for Creators, Coaches, and Trainers plugin for WordPress is vulnerable to… | 2026-01-20T15:33:13Z | 2026-01-20T15:33:13Z |
| ghsa-9c9w-6vq7-46v6 |
8.4 (3.1)
|
IBM Licensing Operator incorrectly assigns privileges to security critical files which could allow … | 2026-01-20T15:33:13Z | 2026-01-20T15:33:13Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-3190 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.936919Z |
| gsd-2024-3189 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.960559Z |
| gsd-2024-3188 | The WP Shortcodes Plugin — Shortcodes Ultimate WordPress plugin before 7.1.0 does not val… | 2024-04-03T05:02:29.936707Z |
| gsd-2024-3187 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.914852Z |
| gsd-2024-3186 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.874007Z |
| gsd-2024-3185 | A key used in logging.json does not follow the least privilege principle by default and … | 2024-04-03T05:02:29.938351Z |
| gsd-2024-3184 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.908225Z |
| gsd-2024-3183 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.904531Z |
| gsd-2024-3182 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.872521Z |
| gsd-2024-3181 | Concrete CMS version 9 prior to 9.2.8 and previous versions prior to 8.5.16 are vulnerabl… | 2024-04-03T05:02:29.875232Z |
| gsd-2024-3180 | Concrete CMS version 9 below 9.2.8 and previous versions below 8.5.16 is vulnerable to St… | 2024-04-03T05:02:29.884294Z |
| gsd-2024-3179 | Concrete CMS version 9 before 9.2.8 and previous versions before 8.5.16 are vulnerable to… | 2024-04-03T05:02:29.899122Z |
| gsd-2024-3178 | Concrete CMS versions 9 below 9.2.8 and versions below 8.5.16 are vulnerable to Cross-sit… | 2024-04-03T05:02:29.872743Z |
| gsd-2024-3177 | A security issue was discovered in Kubernetes where users may be able to launch container… | 2024-04-03T05:02:29.897756Z |
| gsd-2024-3176 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.884535Z |
| gsd-2024-3175 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.940499Z |
| gsd-2024-3174 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.940289Z |
| gsd-2024-3173 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.924649Z |
| gsd-2024-3172 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.927908Z |
| gsd-2024-3171 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.950584Z |
| gsd-2024-3170 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.883709Z |
| gsd-2024-3169 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.913323Z |
| gsd-2024-3168 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.910625Z |
| gsd-2024-3167 | The Ocean Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the… | 2024-04-03T05:02:29.963946Z |
| gsd-2024-3166 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.899525Z |
| gsd-2024-3165 | System->Maintenance-> Log Files in dotCMS dashboard is providing the username/password fo… | 2024-04-03T05:02:29.901427Z |
| gsd-2024-3164 | In dotCMS dashboard, the Tools and Log Files tabs under System → Maintenance Portlet, whi… | 2024-04-03T05:02:29.886602Z |
| gsd-2024-3163 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.873812Z |
| gsd-2024-3162 | The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting v… | 2024-04-03T05:02:29.930125Z |
| gsd-2024-3161 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.900307Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192587 | Malicious code in elf-stats-aurora-cocoa-911 (npm) | 2025-12-16T06:42:31Z | 2025-12-22T21:38:10Z |
| mal-2025-192586 | Malicious code in dubbo-js-private-workspace (npm) | 2025-12-16T07:05:12Z | 2025-12-22T21:38:10Z |
| mal-2025-192558 | Malicious code in eslint-config-zoo (npm) | 2025-12-12T06:34:06Z | 2025-12-22T21:38:10Z |
| mal-2025-192556 | Malicious code in cms_comp_static (npm) | 2025-12-12T06:34:06Z | 2025-12-22T21:38:10Z |
| mal-2025-192548 | Malicious code in efruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:10Z |
| mal-2025-192547 | Malicious code in dfruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:10Z |
| mal-2025-192546 | Malicious code in cfruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:10Z |
| MAL-2025-192691 | Malicious code in cloudy-uvi-sense-v11 (npm) | 2025-12-22T20:57:23Z | 2025-12-22T21:38:10Z |
| MAL-2025-192680 | Malicious code in escaux-scrumboard-api (npm) | 2025-12-20T08:20:34Z | 2025-12-22T21:38:10Z |
| MAL-2025-192668 | Malicious code in ddos-gacor-v2 (npm) | 2025-12-19T16:20:59Z | 2025-12-22T21:38:10Z |
| MAL-2025-192667 | Malicious code in ctfvampir (npm) | 2025-12-19T16:13:23Z | 2025-12-22T21:38:10Z |
| MAL-2025-192666 | Malicious code in ctfvamp (npm) | 2025-12-19T16:13:23Z | 2025-12-22T21:38:10Z |
| MAL-2025-192627 | Malicious code in elf-stats-sugarplum-fir-770 (npm) | 2025-12-19T08:31:19Z | 2025-12-22T21:38:10Z |
| MAL-2025-192626 | Malicious code in elf-stats-cocoa-workshop-459 (npm) | 2025-12-19T08:44:11Z | 2025-12-22T21:38:10Z |
| MAL-2025-192625 | Malicious code in cursorparserfruit (npm) | 2025-12-19T08:36:38Z | 2025-12-22T21:38:10Z |
| MAL-2025-192624 | Malicious code in chai-nerd (npm) | 2025-12-19T08:29:02Z | 2025-12-22T21:38:10Z |
| MAL-2025-192623 | Malicious code in chai-async (npm) | 2025-12-19T08:29:02Z | 2025-12-22T21:38:10Z |
| MAL-2025-192622 | Malicious code in chai-as-awaited (npm) | 2025-12-19T08:44:45Z | 2025-12-22T21:38:10Z |
| MAL-2025-192612 | Malicious code in ctfxmlflgcheck (npm) | 2025-12-19T08:23:47Z | 2025-12-22T21:38:10Z |
| MAL-2025-192611 | Malicious code in ctfparsertna (npm) | 2025-12-19T08:23:47Z | 2025-12-22T21:38:10Z |
| MAL-2025-192610 | Malicious code in ctfepakageflgs (npm) | 2025-12-19T08:23:46Z | 2025-12-22T21:38:10Z |
| MAL-2025-192590 | Malicious code in example-vue2-micro (npm) | 2025-12-16T07:05:12Z | 2025-12-22T21:38:10Z |
| MAL-2025-192589 | Malicious code in elf-stats-nutmeg-sleigh-350 (npm) | 2025-12-16T06:26:09Z | 2025-12-22T21:38:10Z |
| MAL-2025-192588 | Malicious code in elf-stats-fuzzy-wreath-278 (npm) | 2025-12-16T06:42:31Z | 2025-12-22T21:38:10Z |
| MAL-2025-192587 | Malicious code in elf-stats-aurora-cocoa-911 (npm) | 2025-12-16T06:42:31Z | 2025-12-22T21:38:10Z |
| MAL-2025-192586 | Malicious code in dubbo-js-private-workspace (npm) | 2025-12-16T07:05:12Z | 2025-12-22T21:38:10Z |
| MAL-2025-192558 | Malicious code in eslint-config-zoo (npm) | 2025-12-12T06:34:06Z | 2025-12-22T21:38:10Z |
| MAL-2025-192556 | Malicious code in cms_comp_static (npm) | 2025-12-12T06:34:06Z | 2025-12-22T21:38:10Z |
| MAL-2025-192548 | Malicious code in efruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:10Z |
| MAL-2025-192547 | Malicious code in dfruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:10Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-3264 | GitLab: Mehrere Schwachstellen ermöglichen Denial of Service und Cross-Site Scripting | 2024-10-23T22:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-3263 | Shibboleth Identity Provider: Schwachstelle ermöglicht Manipulation von Dateien | 2024-10-23T22:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-3262 | Cisco Firepower und ASA: Mehrere Schwachstellen | 2024-10-23T22:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-3261 | Cisco ASA (Adaptive Security Appliance): Mehrere Schwachstellen | 2024-10-23T22:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-3260 | Fortinet FortiManager: Schwachstelle ermöglicht Codeausführung | 2024-10-22T22:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-3119 | Google Chrome und Microsoft Edge: Mehrere Schwachstellen | 2024-10-08T22:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-2163 | Google Chrome: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2024-09-17T22:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-1099 | python-crypto: Mehrere Schwachstellen | 2018-12-10T23:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-0741 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2024-03-27T23:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-0437 | QEMU: Schwachstelle ermöglicht Codeausführung | 2024-02-20T23:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-0086 | Linux Kernel: Mehrere Schwachstellen | 2024-01-15T23:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-0072 | Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-01-11T23:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-0071 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2024-01-11T23:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-0070 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2024-01-11T23:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2023-3169 | libTIFF: Schwachstelle ermöglicht Denial of Service | 2023-12-18T23:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2023-2835 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-11-06T23:00:00.000+00:00 | 2024-10-23T22:00:00.000+00:00 |
| wid-sec-w-2024-3258 | Netgate pfSense: Schwachstelle ermöglicht Cross-Site Scripting | 2024-10-22T22:00:00.000+00:00 | 2024-10-22T22:00:00.000+00:00 |
| wid-sec-w-2024-3256 | Trend Micro AntiVirus: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2024-10-22T22:00:00.000+00:00 | 2024-10-22T22:00:00.000+00:00 |
| wid-sec-w-2024-3252 | Liferay DXP und Portal: Mehrere Schwachstellen | 2024-10-22T22:00:00.000+00:00 | 2024-10-22T22:00:00.000+00:00 |
| wid-sec-w-2024-3095 | Samsung Android: Mehrere Schwachstellen | 2024-10-07T22:00:00.000+00:00 | 2024-10-22T22:00:00.000+00:00 |
| wid-sec-w-2024-3091 | Samsung Exynos: Schwachstelle ermöglicht Privilegieneskalation | 2024-10-06T22:00:00.000+00:00 | 2024-10-22T22:00:00.000+00:00 |
| wid-sec-w-2024-2220 | Foxit PDF Editor und Reader: Mehrere Schwachstellen | 2024-09-25T22:00:00.000+00:00 | 2024-10-22T22:00:00.000+00:00 |
| wid-sec-w-2024-2050 | HAProxy Enterprise und ALOHA: Schwachstelle ermöglicht Denial of Service | 2024-09-03T22:00:00.000+00:00 | 2024-10-22T22:00:00.000+00:00 |
| wid-sec-w-2024-1759 | Foxit PDF Editor: Mehrere Schwachstellen | 2024-08-05T22:00:00.000+00:00 | 2024-10-22T22:00:00.000+00:00 |
| wid-sec-w-2024-1584 | Microsoft Office: Mehrere Schwachstellen | 2024-07-09T22:00:00.000+00:00 | 2024-10-22T22:00:00.000+00:00 |
| wid-sec-w-2024-0418 | Apache Camel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-02-18T23:00:00.000+00:00 | 2024-10-22T22:00:00.000+00:00 |
| wid-sec-w-2024-3248 | Irfan Skiljan IrfanView: Schwachstelle ermöglicht Denial of Service | 2024-10-21T22:00:00.000+00:00 | 2024-10-21T22:00:00.000+00:00 |
| wid-sec-w-2024-3247 | Zyxel Firewall: Schwachstelle ermöglicht Privilegieneskalation | 2024-10-21T22:00:00.000+00:00 | 2024-10-21T22:00:00.000+00:00 |
| wid-sec-w-2024-3246 | MongoDB: Schwachstelle ermöglicht Denial of Service | 2024-10-21T22:00:00.000+00:00 | 2024-10-21T22:00:00.000+00:00 |
| wid-sec-w-2024-3174 | Mozilla Firefox: Schwachstelle ermöglicht Denial of Service | 2024-10-14T22:00:00.000+00:00 | 2024-10-21T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2012:1046 | Red Hat Security Advisory: php security update | 2012-06-27T15:44:00+00:00 | 2026-01-28T22:54:03+00:00 |
| rhsa-2012:1045 | Red Hat Security Advisory: php security update | 2012-06-27T15:43:00+00:00 | 2026-01-28T22:54:02+00:00 |
| rhsa-2012:1028 | Red Hat Security Advisory: JBoss Enterprise BRMS Platform 5.3.0 update | 2012-06-22T01:12:00+00:00 | 2026-01-28T22:54:02+00:00 |
| rhsa-2012:0717 | Red Hat Security Advisory: bind97 security update | 2012-06-07T16:38:00+00:00 | 2026-01-28T22:54:02+00:00 |
| rhsa-2012:0716 | Red Hat Security Advisory: bind security update | 2012-06-07T16:42:00+00:00 | 2026-01-28T22:54:01+00:00 |
| rhsa-2012:0699 | Red Hat Security Advisory: openssl security and bug fix update | 2012-05-29T16:55:00+00:00 | 2026-01-28T22:54:00+00:00 |
| rhsa-2012:0426 | Red Hat Security Advisory: openssl security and bug fix update | 2012-03-27T22:52:00+00:00 | 2026-01-28T22:54:00+00:00 |
| rhsa-2011:1423 | Red Hat Security Advisory: php53 and php security update | 2011-11-02T22:15:00+00:00 | 2026-01-28T22:54:00+00:00 |
| rhsa-2011:1378 | Red Hat Security Advisory: postgresql84 security update | 2011-10-17T21:49:00+00:00 | 2026-01-28T22:53:59+00:00 |
| rhsa-2011:1377 | Red Hat Security Advisory: postgresql security update | 2011-10-17T21:42:00+00:00 | 2026-01-28T22:53:57+00:00 |
| rhsa-2011:1264 | Red Hat Security Advisory: gstreamer-plugins security update | 2011-09-06T21:11:00+00:00 | 2026-01-28T22:53:57+00:00 |
| rhsa-2011:1160 | Red Hat Security Advisory: dhcp security update | 2011-08-15T17:36:00+00:00 | 2026-01-28T22:53:57+00:00 |
| rhsa-2013:1615 | Red Hat Security Advisory: php security, bug fix, and enhancement update | 2013-11-20T16:38:00+00:00 | 2026-01-28T22:51:49+00:00 |
| rhsa-2014:0311 | Red Hat Security Advisory: php security update | 2014-03-18T19:43:38+00:00 | 2026-01-28T22:51:45+00:00 |
| rhsa-2014:0222 | Red Hat Security Advisory: libtiff security update | 2014-02-27T18:33:36+00:00 | 2026-01-28T22:51:45+00:00 |
| rhsa-2014:0151 | Red Hat Security Advisory: wget security and bug fix update | 2014-02-10T17:29:11+00:00 | 2026-01-28T22:51:45+00:00 |
| rhsa-2013:1307 | Red Hat Security Advisory: php53 security, bug fix and enhancement update | 2013-09-30T20:30:00+00:00 | 2026-01-28T22:51:45+00:00 |
| rhsa-2013:0217 | Red Hat Security Advisory: mingw32-libxml2 security update | 2013-01-31T19:14:00+00:00 | 2026-01-28T22:51:44+00:00 |
| rhsa-2012:1201 | Red Hat Security Advisory: tetex security update | 2012-08-23T14:53:00+00:00 | 2026-01-28T22:51:44+00:00 |
| rhsa-2012:0151 | Red Hat Security Advisory: conga security, bug fix, and enhancement update | 2012-02-21T02:22:00+00:00 | 2026-01-28T22:51:43+00:00 |
| rhsa-2012:0127 | Red Hat Security Advisory: mysql security update | 2012-02-13T20:29:00+00:00 | 2026-01-28T22:51:43+00:00 |
| rhsa-2012:0126 | Red Hat Security Advisory: glibc security update | 2012-02-13T20:30:00+00:00 | 2026-01-28T22:51:43+00:00 |
| rhsa-2012:0125 | Red Hat Security Advisory: glibc security and bug fix update | 2012-02-13T20:30:00+00:00 | 2026-01-28T22:51:43+00:00 |
| rhsa-2012:0103 | Red Hat Security Advisory: squirrelmail security update | 2012-02-08T19:45:00+00:00 | 2026-01-28T22:51:43+00:00 |
| rhsa-2012:0096 | Red Hat Security Advisory: ghostscript security update | 2012-02-02T22:27:00+00:00 | 2026-01-28T22:51:43+00:00 |
| rhsa-2012:0095 | Red Hat Security Advisory: ghostscript security update | 2012-02-02T22:33:00+00:00 | 2026-01-28T22:51:42+00:00 |
| rhsa-2012:0058 | Red Hat Security Advisory: glibc security and bug fix update | 2012-01-24T21:05:00+00:00 | 2026-01-28T22:51:42+00:00 |
| rhsa-2012:0017 | Red Hat Security Advisory: libxml2 security update | 2012-01-11T17:43:00+00:00 | 2026-01-28T22:51:42+00:00 |
| rhsa-2011:1749 | Red Hat Security Advisory: libxml2 security and bug fix update | 2011-12-05T19:54:00+00:00 | 2026-01-28T22:51:41+00:00 |
| rhsa-2011:1741 | Red Hat Security Advisory: php-pear security and bug fix update | 2011-12-05T19:54:00+00:00 | 2026-01-28T22:51:41+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-20180502-cms-cx | Cisco Meeting Server Remote Code Execution Vulnerability | 2018-05-02T16:00:00+00:00 | 2018-05-02T16:00:00+00:00 |
| cisco-sa-20180502-ap-ptp | Cisco Aironet 1810, 1830, and 1850 Series Access Points Point-to-Point Tunneling Protocol Denial of Service Vulnerability | 2018-05-02T16:00:00+00:00 | 2018-05-02T16:00:00+00:00 |
| cisco-sa-20180502-ap-acl | Cisco Aironet Access Points Central Web Authentication FlexConnect Client ACL Bypass Vulnerability | 2018-05-02T16:00:00+00:00 | 2018-05-02T16:00:00+00:00 |
| cisco-sa-20180502-aironet-ssh | Cisco Aironet 1800, 2800, and 3800 Series Access Points Secure Shell Privilege Escalation Vulnerability | 2018-05-02T16:00:00+00:00 | 2018-05-02T16:00:00+00:00 |
| cisco-sa-20180502-aironet-auth | Cisco Wireless LAN Controller and Aironet Access Points IOS WebAuth Client Authentication Bypass Vulnerability | 2018-05-02T16:00:00+00:00 | 2018-05-02T16:00:00+00:00 |
| cisco-sa-20180502-acs1 | Cisco Secure Access Control System Remote Code Execution Vulnerability | 2018-05-02T16:00:00+00:00 | 2018-05-02T16:00:00+00:00 |
| cisco-sa-20180418-wbs | Cisco WebEx Clients Remote Code Execution Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-05-02T14:08:00+00:00 |
| cisco-sa-20180328-qos | Cisco IOS and IOS XE Software Quality of Service Remote Code Execution Vulnerability | 2018-03-28T16:00:00+00:00 | 2018-04-27T21:15:00+00:00 |
| cisco-sa-20180418-asa1 | Cisco Adaptive Security Appliance Virtual Private Network SSL Client Certificate Bypass Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-27T15:46:00+00:00 |
| cisco-sa-20180418-ise | Cisco Identity Services Engine Shell Access Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-26T16:26:00+00:00 |
| cisco-sa-20180418-wlc | Cisco Wireless LAN Controller Default Simple Network Management Protocol Community Strings | 2018-04-18T16:00:00+00:00 | 2018-04-23T21:00:00+00:00 |
| cisco-sa-20180418-asa2 | Cisco Adaptive Security Appliance Flow Creation Denial of Service Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-23T16:41:00+00:00 |
| cisco-sa-20180418-asawvpn | Cisco Adaptive Security Appliance WebVPN Cross-Site Scripting Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-20T12:43:00+00:00 |
| cisco-sa-20180418-webcon | Cisco WebEx Connect IM Cross-Site Scripting Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-uscd | Cisco UCS Director Virtual Machine Information Disclosure Vulnerability for End User Portal | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-ucm1 | Cisco Unified Communications Manager LDAP Information Disclosure Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-ucm | Cisco Unified Communications Manager HTTP Interface Information Disclosure Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-starosasr | Cisco StarOS IPsec Manager Denial of Service Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-staros | Cisco StarOS Interface Forwarding Denial of Service Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-pdng | Cisco Packet Data Network Gateway Peer-to-Peer Message Processing Denial of Service Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-mate1 | Cisco MATE Live Directory Information Disclosure Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-mate | Cisco MATE Collector Cross-Site Request Forgery Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-iosxr | Cisco IOS XR Software UDP Broadcast Forwarding Denial of Service Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-iess | Cisco Industrial Ethernet Switches Device Manager Cross-Site Request Forgery Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-fss2 | Cisco Firepower System Software Intelligent Application Bypass Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-fss1 | Cisco Firepower System Software Server Message Block File Policy Bypass Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-fss | Cisco Firepower System Software Server Message Block File Policy Bypass Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-fp2100 | Cisco Firepower 2100 Series Security Appliances IP Fragmentation Denial of Service Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-firepower | Cisco Firepower Threat Defense SSL Engine High CPU Denial of Service Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| cisco-sa-20180418-dna1 | Cisco DNA Center Cross Origin Resource Sharing Vulnerability | 2018-04-18T16:00:00+00:00 | 2018-04-18T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-20981 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20977 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20973 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20971 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20969 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20967 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20965 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20963 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-20961 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2024-01-01T08:00:00.000Z | 2025-06-23T00:00:00.000Z |
| msrc_cve-2024-12087 | Rsync: path traversal vulnerability in rsync | 2025-01-02T00:00:00.000Z | 2025-06-22T00:00:00.000Z |
| msrc_cve-2024-12086 | Rsync: rsync server leaks arbitrary client files | 2025-01-02T00:00:00.000Z | 2025-06-22T00:00:00.000Z |
| msrc_cve-2025-2784 | Libsoup: heap buffer over-read in `skip_insignificant_space` when sniffing content | 2025-04-02T00:00:00.000Z | 2025-06-20T00:00:00.000Z |
| msrc_cve-2025-33053 | Internet Shortcut Files Remote Code Execution Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-19T07:00:00.000Z |
| msrc_cve-2024-56786 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 2025-01-02T00:00:00.000Z | 2025-06-19T00:00:00.000Z |
| msrc_cve-2024-50032 | rcu/nocb: Fix rcuog wake-up from offline softirq | 2024-10-01T07:00:00.000Z | 2025-06-18T00:00:00.000Z |
| msrc_cve-2024-12088 | Rsync: --safe-links option bypass leads to path traversal | 2025-01-02T00:00:00.000Z | 2025-06-18T00:00:00.000Z |
| msrc_cve-2025-32711 | M365 Copilot Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-17T07:00:00.000Z |
| msrc_cve-2025-21264 | Visual Studio Code Security Feature Bypass Vulnerability | 2025-05-13T07:00:00.000Z | 2025-06-17T07:00:00.000Z |
| msrc_cve-2024-49060 | Azure Stack HCI Elevation of Privilege Vulnerability | 2024-11-12T08:00:00.000Z | 2025-06-15T07:00:00.000Z |
| msrc_cve-2024-38179 | Azure Stack Hyperconverged Infrastructure (HCI) Elevation of Privilege Vulnerability | 2024-10-08T07:00:00.000Z | 2025-06-15T07:00:00.000Z |
| msrc_cve-2025-47273 | setuptools has a path traversal vulnerability in PackageIndex.download that leads to Arbitrary File Write | 2025-05-02T00:00:00.000Z | 2025-06-13T00:00:00.000Z |
| msrc_cve-2016-2781 | chroot in GNU coreutils when used with --userspec allows local users to escape to the parent session via a crafted TIOCSTI ioctl call which pushes characters to the terminal's input buffer. | 2017-02-02T00:00:00.000Z | 2025-06-13T00:00:00.000Z |
| msrc_cve-2011-3045 | Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026. | 2012-03-02T00:00:00.000Z | 2025-06-13T00:00:00.000Z |
| msrc_cve-2025-47977 | Nuance Digital Engagement Platform Spoofing Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-12T07:00:00.000Z |
| msrc_cve-2025-47172 | Microsoft SharePoint Server Remote Code Execution Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-11T07:00:00.000Z |
| msrc_cve-2025-33073 | Windows SMB Client Elevation of Privilege Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-11T07:00:00.000Z |
| msrc_cve-2025-47969 | Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-47968 | Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-47962 | Windows SDK Elevation of Privilege Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-47959 | Visual Studio Remote Code Execution Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:12404-1 | chromedriver-106.0.5249.119-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12403-1 | xmlgraphics-commons-2.6-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12402-1 | xmlgraphics-batik-1.15-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12401-1 | python310-joblib-1.2.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12400-1 | podman-4.2.1-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12399-1 | exiv2-0.27.5-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12398-1 | MozillaFirefox-105.0.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12397-1 | ruby3.1-rubygem-rack-2.2-2.2.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12396-1 | python310-Django-4.1.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12395-1 | libQt5Pdf5-5.15.11-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12394-1 | bluez-5.65-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12393-1 | qemu-7.1.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12392-1 | go1.19-1.19.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12391-1 | go1.18-1.18.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12390-1 | dhcp-4.4.2.P1-11.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12389-1 | apptainer-1.1.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12388-1 | jettison-1.5.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12387-1 | postgresql14-14.5-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12386-1 | rxvt-unicode-9.30-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12385-1 | python310-pyspnego-0.5.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12384-1 | php8-8.1.11-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12383-1 | orthanc-1.11.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12382-1 | lighttpd-1.4.67-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12381-1 | exiv2-0.27.5-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12380-1 | chromedriver-106.0.5249.91-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12379-1 | MozillaThunderbird-102.3.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12378-1 | gvim-9.0.0626-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12377-1 | php7-7.4.32-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12376-1 | corepack18-18.10.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12375-1 | element-web-1.11.8-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-gitlab-2023-0155 | 2024-03-06T11:12:33.597Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0050 | 2024-03-06T11:12:43.479Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-0042 | 2024-03-06T11:12:46.968Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4462 | 2024-03-06T11:12:50.204Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4376 | 2024-03-06T11:12:53.601Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4365 | 2024-03-06T11:12:56.982Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4342 | 2024-03-06T11:13:03.284Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4335 | 2024-03-06T11:13:06.585Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4331 | 2024-03-06T11:13:09.480Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4289 | 2024-03-06T11:13:12.391Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4255 | 2024-03-06T11:13:15.182Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4205 | 2024-03-06T11:13:17.905Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4201 | 2024-03-06T11:13:20.679Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4167 | 2024-03-06T11:13:23.090Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4143 | 2024-03-06T11:13:25.288Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4138 | 2024-03-06T11:13:27.484Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4131 | 2024-03-06T11:13:29.674Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4092 | 2024-03-06T11:13:31.889Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4054 | 2024-03-06T11:13:34.087Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4037 | 2024-03-06T11:13:36.297Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-4007 | 2024-03-06T11:13:38.574Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3902 | 2024-03-06T11:13:40.864Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3870 | 2024-03-06T11:13:43.019Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3820 | 2024-03-06T11:13:45.273Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3819 | 2024-03-06T11:13:47.479Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3818 | 2024-03-06T11:13:49.712Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3793 | 2024-03-06T11:13:51.913Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3759 | 2024-03-06T11:13:54.187Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3758 | 2024-03-06T11:13:55.877Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3740 | 2024-03-06T11:13:57.405Z | 2025-04-03T14:40:37.652Z |
| ID | Description | Updated |
|---|---|---|
| var-202307-0575 | A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < … | 2024-01-21T22:09:50.846000Z |
| var-202307-0585 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T22:02:17.088000Z |
| var-202307-0587 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T21:53:36.075000Z |
| var-202307-0590 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T21:45:18.357000Z |
| var-202307-0591 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T21:43:43.822000Z |
| var-202307-0583 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T21:42:35.826000Z |
| var-202307-0573 | A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < … | 2024-01-21T21:18:17.177000Z |
| var-202007-1448 | Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20. lodash Is… | 2024-01-21T21:15:51.312000Z |
| var-202307-0589 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T21:07:28.425000Z |
| var-202307-0640 | A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected de… | 2024-01-21T20:57:46.907000Z |
| var-202307-0641 | A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected de… | 2024-01-21T20:36:17.090000Z |
| var-202307-0576 | A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < … | 2024-01-21T20:33:54.011000Z |
| var-202307-0572 | A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < … | 2024-01-21T20:33:53.383000Z |
| var-202307-0595 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T20:28:54.129000Z |
| var-202307-0584 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T20:20:09.378000Z |
| var-202307-0593 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T20:18:29.767000Z |
| var-202307-0594 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T20:13:45.942000Z |
| var-202203-0665 | BIND 9.16.11 -> 9.16.26, 9.17.0 -> 9.18.0 and versions 9.16.11-S1 -> 9.16.26-S1 of the BI… | 2024-01-21T20:07:11.050000Z |
| var-202307-0622 | A vulnerability has been identified in SiPass integrated (All versions < V2.90.3.8). Affe… | 2024-01-21T20:05:54.180000Z |
| var-202307-0874 | In multiple functions of io_uring.c, there is a possible kernel memory corruption due to… | 2024-01-21T20:04:32.692000Z |
| var-202307-0586 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T20:00:09.760000Z |
| var-202307-0592 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T19:57:45.379000Z |
| var-202307-0657 | A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3.4), SIMATIC M… | 2024-01-21T19:51:48.568000Z |
| var-202307-0588 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUG… | 2024-01-21T19:47:26.736000Z |
| var-202307-0655 | A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3.4), SIMATIC M… | 2024-01-21T19:23:05.386000Z |
| var-202307-0577 | A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < … | 2024-01-21T19:17:23.892000Z |
| var-202308-3781 | Tenda AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03.06.44, F1203 V2.0.1.6, AC5 V1.0 V15.03.06.28… | 2024-01-20T23:21:05.858000Z |
| var-202308-2390 | In SAP NetWeaver Process Integration - versions SAP_XIESR 7.50, SAP_XITOOL 7.50, SAP_XIAF… | 2024-01-20T23:20:45.277000Z |
| var-202308-4027 | Tenda AC1206 V15.03.06.23, AC8 V4 V16.03.34.06, AC5 V1.0 V15.03.06.28, AC10 v4.0 V16.03.1… | 2024-01-20T23:18:08.182000Z |
| var-202308-3714 | Tenda AC10 V1.0 V15.03.06.23, AC1206 V15.03.06.23, AC6 V2.0 V15.03.06.23, AC7 V1.0 V15.03… | 2024-01-20T23:18:08.206000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2024:4036-1 | Security update for httpcomponents-client, httpcomponents-core | 2024-11-18T15:24:08Z | 2024-11-18T15:24:08Z |
| suse-su-2024:4035-1 | Security update for expat | 2024-11-18T15:23:11Z | 2024-11-18T15:23:11Z |
| suse-su-2024:4029-1 | Security update for SUSE Manager Salt Bundle | 2024-11-18T13:29:50Z | 2024-11-18T13:29:50Z |
| suse-su-2024:4021-1 | Security update for SUSE Manager Salt Bundle | 2024-11-18T13:25:44Z | 2024-11-18T13:25:44Z |
| suse-su-2024:4020-1 | Security update for SUSE Manager Salt Bundle | 2024-11-18T13:25:06Z | 2024-11-18T13:25:06Z |
| suse-su-2024:4019-1 | Security update for SUSE Manager Client Tools | 2024-11-18T13:24:46Z | 2024-11-18T13:24:46Z |
| suse-su-2024:4011-1 | Security update for SUSE Manager Client Tools | 2024-11-18T13:23:16Z | 2024-11-18T13:23:16Z |
| suse-su-2024:4010-1 | Security update for SUSE Manager Client Tools | 2024-11-18T13:22:17Z | 2024-11-18T13:22:17Z |
| suse-su-2024:4009-1 | Security update for SUSE Manager Server 5.0 | 2024-11-18T13:21:54Z | 2024-11-18T13:21:54Z |
| suse-ru-2024:4008-1 | Security update for SUSE Manager Server 5.0 | 2024-11-18T13:20:34Z | 2024-11-18T13:20:34Z |
| suse-su-2024:4007-1 | Security update for SUSE Manager Server 4.3 | 2024-11-18T13:20:15Z | 2024-11-18T13:20:15Z |
| suse-su-2024:4006-1 | Security update for SUSE Manager Server 4.3 | 2024-11-18T13:19:53Z | 2024-11-18T13:19:53Z |
| suse-su-2024:3999-1 | Security update for apache2 | 2024-11-15T13:34:54Z | 2024-11-15T13:34:54Z |
| suse-su-2024:3998-1 | Security update for glib2 | 2024-11-15T09:12:02Z | 2024-11-15T09:12:02Z |
| suse-su-2024:3997-1 | Security update for python3-wxPython | 2024-11-15T08:36:30Z | 2024-11-15T08:36:30Z |
| suse-su-2024:3995-1 | Security update for ucode-intel | 2024-11-15T08:27:00Z | 2024-11-15T08:27:00Z |
| suse-su-2024:3988-1 | Security update for buildah | 2024-11-14T10:13:27Z | 2024-11-14T10:13:27Z |
| suse-su-2024:3987-1 | Security update for java-1_8_0-openjdk | 2024-11-13T14:56:28Z | 2024-11-13T14:56:28Z |
| suse-su-2024:3986-1 | Security update for the Linux Kernel | 2024-11-13T10:13:55Z | 2024-11-13T10:13:55Z |
| suse-su-2024:3985-1 | Security update for the Linux Kernel | 2024-11-13T10:13:36Z | 2024-11-13T10:13:36Z |
| suse-su-2024:3984-1 | Security update for the Linux Kernel | 2024-11-13T10:13:12Z | 2024-11-13T10:13:12Z |
| suse-su-2024:3983-1 | Security update for the Linux Kernel | 2024-11-13T10:12:30Z | 2024-11-13T10:12:30Z |
| suse-su-2024:3980-1 | Security update for xen | 2024-11-12T16:14:09Z | 2024-11-12T16:14:09Z |
| suse-su-2024:3979-1 | Security update for xen | 2024-11-12T16:13:52Z | 2024-11-12T16:13:52Z |
| suse-su-2024:3977-1 | Security update for xen | 2024-11-12T12:19:02Z | 2024-11-12T12:19:02Z |
| suse-su-2024:3976-1 | Security update for pcp | 2024-11-12T07:12:36Z | 2024-11-12T07:12:36Z |
| suse-ru-2024:3971-1 | Recommended update for mojo-parent | 2024-11-11T09:29:10Z | 2024-11-11T09:29:10Z |
| suse-su-2024:3968-1 | Security update for expat | 2024-11-11T08:57:56Z | 2024-11-11T08:57:56Z |
| suse-su-2024:3966-1 | Security update for expat | 2024-11-11T08:34:17Z | 2024-11-11T08:34:17Z |
| suse-su-2024:3964-1 | Security update for python-wxPython | 2024-11-09T16:39:53Z | 2024-11-09T16:39:53Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-22467 | Art Gallery Management System add-art-product.php文件SQL注入漏洞 | 2025-03-27 | 2025-09-25 |
| cnvd-2025-22466 | Art Gallery Management System manage-art-medium.php文件SQL注入漏洞 | 2025-05-07 | 2025-09-25 |
| cnvd-2025-22465 | Art Gallery Management System aboutus.php文件SQL注入漏洞 | 2025-05-07 | 2025-09-25 |
| cnvd-2025-22464 | Art Gallery Management System SQL注入漏洞 | 2025-05-13 | 2025-09-25 |
| cnvd-2025-22463 | Art Gallery Management System /admin/add-art-type.php文件SQL注入漏洞 | 2025-05-14 | 2025-09-25 |
| cnvd-2025-22462 | Art Gallery Management System /admin/add-art-medium.php文件SQL注入漏洞 | 2025-05-14 | 2025-09-25 |
| cnvd-2025-22461 | Art Gallery Management System forgot-password.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22460 | Art Gallery Management System edit-art-medium-detail.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22459 | Art Gallery Management System changepropic.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22458 | Art Gallery Management System changeimage4.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-25 |
| cnvd-2025-22457 | Art Gallery Management System edit-art-medium-detail.php文件跨站脚本漏洞 | 2025-07-25 | 2025-09-25 |
| cnvd-2025-22625 | Huawei HarmonyOS和EMUI验证绕过漏洞 | 2024-04-11 | 2025-09-24 |
| cnvd-2025-22624 | D-Link DAP-1325命令注入远程代码执行漏洞 | 2024-08-13 | 2025-09-24 |
| cnvd-2025-22599 | Apple macOS Tahoe内存损坏漏洞 | 2025-09-18 | 2025-09-24 |
| cnvd-2025-22598 | Apple macOS Tahoe权限问题漏洞(CNVD-2025-22598) | 2025-09-18 | 2025-09-24 |
| cnvd-2025-22597 | Apple macOS Tahoe数据泄露漏洞 | 2025-09-18 | 2025-09-24 |
| cnvd-2025-22596 | Apple macOS Tahoe边界检查不足漏洞 | 2025-09-18 | 2025-09-24 |
| cnvd-2025-22595 | Apple macOS Tahoe权限问题漏洞 | 2025-09-18 | 2025-09-24 |
| cnvd-2025-22594 | Apple macOS Tahoe类型混淆漏洞 | 2025-09-18 | 2025-09-24 |
| cnvd-2025-22593 | Apple macOS Tahoe沙盒限制不足漏洞(CNVD-2025-22593) | 2025-09-18 | 2025-09-24 |
| cnvd-2025-22592 | Apple macOS Tahoe沙盒限制不足漏洞 | 2025-09-18 | 2025-09-24 |
| cnvd-2025-22591 | Apple macOS Tahoe状态管理不当漏洞 | 2025-09-18 | 2025-09-24 |
| cnvd-2025-22590 | Apple macOS Sonoma逻辑问题漏洞 | 2025-09-18 | 2025-09-24 |
| cnvd-2025-22447 | Pre-School Enrollment System /admin/visitor-details.php文件SQL注入漏洞 | 2025-05-14 | 2025-09-24 |
| cnvd-2025-22446 | Pre-School Enrollment System /admin/edit-teacher.php文件SQL注入漏洞 | 2025-05-14 | 2025-09-24 |
| cnvd-2025-22445 | Pre-School Enrollment System /admin/edit-subadmin.php文件SQL注入漏洞 | 2025-05-14 | 2025-09-24 |
| cnvd-2025-22444 | Pre-School Enrollment System visit.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-24 |
| cnvd-2025-22443 | Pre-School Enrollment System enrollment.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-24 |
| cnvd-2025-22442 | Pre-School Enrollment System check_availability.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-24 |
| cnvd-2025-22441 | Pre-School Enrollment System add-teacher.php文件SQL注入漏洞 | 2025-06-27 | 2025-09-24 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2024-AVI-0367 | Vulnérabilité dans SolarWinds Serv-U | 2024-05-06T00:00:00.000000 | 2024-05-06T00:00:00.000000 |
| certfr-2024-avi-0366 | Multiples vulnérabilités dans les produits IBM | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| certfr-2024-avi-0365 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| certfr-2024-avi-0364 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| certfr-2024-avi-0363 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| certfr-2024-avi-0362 | Multiples vulnérabilités dans le greffon Media Streaming de Qnap | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| certfr-2024-avi-0361 | Multiples vulnérabilités dans PostgreSQL pgAdmin | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| CERTFR-2024-AVI-0366 | Multiples vulnérabilités dans les produits IBM | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| CERTFR-2024-AVI-0365 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| CERTFR-2024-AVI-0364 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| CERTFR-2024-AVI-0363 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| CERTFR-2024-AVI-0362 | Multiples vulnérabilités dans le greffon Media Streaming de Qnap | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| CERTFR-2024-AVI-0361 | Multiples vulnérabilités dans PostgreSQL pgAdmin | 2024-05-03T00:00:00.000000 | 2024-05-03T00:00:00.000000 |
| certfr-2024-avi-0360 | Multiples vulnérabilités dans SonicWall GMS | 2024-05-02T00:00:00.000000 | 2024-05-02T00:00:00.000000 |
| certfr-2024-avi-0359 | Multiples vulnérabilités dans les produits HPE Aruba Networking | 2024-05-02T00:00:00.000000 | 2024-05-02T00:00:00.000000 |
| certfr-2024-avi-0358 | Multiples vulnérabilités dans Google Chrome | 2024-05-02T00:00:00.000000 | 2024-05-02T00:00:00.000000 |
| certfr-2024-avi-0357 | Multiples vulnérabilités dans Cisco IP Phone | 2024-05-02T00:00:00.000000 | 2024-05-02T00:00:00.000000 |
| CERTFR-2024-AVI-0360 | Multiples vulnérabilités dans SonicWall GMS | 2024-05-02T00:00:00.000000 | 2024-05-02T00:00:00.000000 |
| CERTFR-2024-AVI-0359 | Multiples vulnérabilités dans les produits HPE Aruba Networking | 2024-05-02T00:00:00.000000 | 2024-05-02T00:00:00.000000 |
| CERTFR-2024-AVI-0358 | Multiples vulnérabilités dans Google Chrome | 2024-05-02T00:00:00.000000 | 2024-05-02T00:00:00.000000 |
| CERTFR-2024-AVI-0357 | Multiples vulnérabilités dans Cisco IP Phone | 2024-05-02T00:00:00.000000 | 2024-05-02T00:00:00.000000 |
| certfr-2024-avi-0356 | Multiples vulnérabilités dans Tenable Nessus Network Monitor | 2024-04-30T00:00:00.000000 | 2024-04-30T00:00:00.000000 |
| CERTFR-2024-AVI-0356 | Multiples vulnérabilités dans Tenable Nessus Network Monitor | 2024-04-30T00:00:00.000000 | 2024-04-30T00:00:00.000000 |
| certfr-2024-avi-0355 | Multiples vulnérabilités dans Microsoft Edge | 2024-04-29T00:00:00.000000 | 2024-04-29T00:00:00.000000 |
| certfr-2024-avi-0354 | Multiples vulnérabilités dans les produits Qnap | 2024-04-29T00:00:00.000000 | 2024-04-29T00:00:00.000000 |
| CERTFR-2024-AVI-0355 | Multiples vulnérabilités dans Microsoft Edge | 2024-04-29T00:00:00.000000 | 2024-04-29T00:00:00.000000 |
| CERTFR-2024-AVI-0354 | Multiples vulnérabilités dans les produits Qnap | 2024-04-29T00:00:00.000000 | 2024-04-29T00:00:00.000000 |
| certfr-2024-avi-0353 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2024-04-26T00:00:00.000000 | 2024-04-26T00:00:00.000000 |
| certfr-2024-avi-0352 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-04-26T00:00:00.000000 | 2024-04-26T00:00:00.000000 |
| certfr-2024-avi-0351 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-04-26T00:00:00.000000 | 2024-04-26T00:00:00.000000 |