Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-15120 |
2.3 (4.0)
3.1 (3.1)
3.1 (3.0)
|
JeecgBoot getDeptRoleList improper authorization |
n/a |
JeecgBoot |
2025-12-28T04:02:06.291Z | 2025-12-29T16:40:55.481Z |
| CVE-2025-66864 |
N/A
|
An issue was discovered in function d_print_comp_… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-29T16:40:54.806Z |
| CVE-2025-15138 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
prasathmani TinyFileManager tinyfilemanager.php path t… |
prasathmani |
TinyFileManager |
2025-12-28T13:32:08.843Z | 2025-12-29T16:40:10.063Z |
| CVE-2025-15118 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
macrozheng mall Member Endpoint update improper author… |
macrozheng |
mall |
2025-12-28T03:02:05.540Z | 2025-12-29T16:40:10.112Z |
| CVE-2025-15117 |
2.3 (4.0)
3.1 (3.1)
3.1 (3.0)
|
Dromara Sa-Token SaJdkSerializer.java ObjectInputStrea… |
Dromara |
Sa-Token |
2025-12-28T02:32:05.652Z | 2025-12-29T16:39:15.402Z |
| CVE-2025-15116 |
6.3 (4.0)
3.7 (3.1)
3.7 (3.0)
|
OpenCart Single-Use Coupon race condition |
n/a |
OpenCart |
2025-12-28T02:02:06.876Z | 2025-12-29T16:38:27.409Z |
| CVE-2025-66866 |
N/A
|
An issue was discovered in function d_abi_tags in… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-29T16:37:39.973Z |
| CVE-2025-15141 |
2.3 (4.0)
3.1 (3.1)
3.1 (3.0)
|
Halo Configuration actuator information disclosure |
n/a |
Halo |
2025-12-28T15:02:05.484Z | 2025-12-29T16:30:18.082Z |
| CVE-2025-15142 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
9786 phpok3w show.php sql injection |
9786 |
phpok3w |
2025-12-28T15:32:12.734Z | 2025-12-29T16:26:52.591Z |
| CVE-2025-15143 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
EyouCMS Backend Template Management FilemanagerLogic.p… |
n/a |
EyouCMS |
2025-12-28T16:02:08.347Z | 2025-12-29T16:24:22.854Z |
| CVE-2025-69200 |
7.5 (3.1)
|
phpMyFAQ has unauthenticated config backup download vi… |
thorsten |
phpMyFAQ |
2025-12-29T15:24:51.844Z | 2025-12-29T16:14:32.476Z |
| CVE-2025-68951 |
5.4 (3.1)
|
phpMyFAQ has stored XSS in admin "List of users" via d… |
thorsten |
phpMyFAQ |
2025-12-29T15:18:58.000Z | 2025-12-29T16:13:54.598Z |
| CVE-2025-68929 |
9.1 (3.1)
|
Frappe may be vulnerable remote code execution due to … |
frappe |
frappe |
2025-12-29T15:10:59.510Z | 2025-12-29T16:13:17.680Z |
| CVE-2025-68928 |
5.4 (3.1)
|
Frappe CRM vulnerable to authenticated XSS via website field |
frappe |
crm |
2025-12-29T15:06:31.756Z | 2025-12-29T16:12:29.988Z |
| CVE-2025-15192 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
D-Link DWR-M920 formLtefotaUpgradeQuectel sub_415328 c… |
D-Link |
DWR-M920 |
2025-12-29T14:32:08.392Z | 2025-12-29T16:11:38.000Z |
| CVE-2025-15193 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
D-Link DWR-M920 formParentControl sub_423848 buffer overflow |
D-Link |
DWR-M920 |
2025-12-29T15:02:08.698Z | 2025-12-29T16:10:51.648Z |
| CVE-2025-15194 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
D-Link DIR-600 HTTP Header hedwig.cgi stack-based overflow |
D-Link |
DIR-600 |
2025-12-29T15:32:09.818Z | 2025-12-29T16:10:13.239Z |
| CVE-2025-15169 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
BiggiDroid Simple PHP CMS editsite.php sql injection |
BiggiDroid |
Simple PHP CMS |
2025-12-29T03:02:09.145Z | 2025-12-29T16:09:31.243Z |
| CVE-2025-15160 |
8.6 (4.0)
7.2 (3.1)
7.2 (3.0)
|
Tenda WH450 PPTPServer stack-based overflow |
Tenda |
WH450 |
2025-12-28T22:32:07.881Z | 2025-12-29T16:08:39.716Z |
| CVE-2025-15150 |
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
|
PX4 PX4-Autopilot mavlink_log_handler.cpp log_entry_fr… |
PX4 |
PX4-Autopilot |
2025-12-28T19:02:07.960Z | 2025-12-29T16:08:11.074Z |
| CVE-2025-15156 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
omec-project UPF PFCP Session Establishment Request me… |
omec-project |
UPF |
2025-12-28T22:02:06.001Z | 2025-12-29T16:08:01.587Z |
| CVE-2025-15140 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
saiftheboss7 onlinemcqexam quesadd.php sql injection |
saiftheboss7 |
onlinemcqexam |
2025-12-28T14:32:06.750Z | 2025-12-29T16:07:22.328Z |
| CVE-2025-15139 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
TRENDnet TEW-822DRE formWsc sub_43ACF4 command injection |
TRENDnet |
TEW-822DRE |
2025-12-28T14:02:07.407Z | 2025-12-29T16:06:45.224Z |
| CVE-2025-15128 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
ZKTeco BioTime Endpoint safe_setting credentials storage |
ZKTeco |
BioTime |
2025-12-28T08:32:10.069Z | 2025-12-29T16:06:03.528Z |
| CVE-2025-15123 |
2.3 (4.0)
3.1 (3.1)
3.1 (3.0)
|
JeecgBoot datarule improper authorization |
n/a |
JeecgBoot |
2025-12-28T06:02:05.781Z | 2025-12-29T16:05:08.309Z |
| CVE-2025-15124 |
2.3 (4.0)
3.1 (3.1)
3.1 (3.0)
|
JeecgBoot list getParameterMap improper authorization |
n/a |
JeecgBoot |
2025-12-28T06:32:06.920Z | 2025-12-29T16:04:32.586Z |
| CVE-2025-15125 |
2.3 (4.0)
3.1 (3.1)
3.1 (3.0)
|
JeecgBoot queryDepartPermission improper authorization |
n/a |
JeecgBoot |
2025-12-28T07:02:06.680Z | 2025-12-29T16:03:49.238Z |
| CVE-2025-15126 |
2.3 (4.0)
3.1 (3.1)
3.1 (3.0)
|
JeecgBoot getPositionUserList improper authorization |
n/a |
JeecgBoot |
2025-12-28T07:32:06.264Z | 2025-12-29T16:03:06.162Z |
| CVE-2025-15127 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
FantasticLBP Hotels_Server Room.php sql injection |
FantasticLBP |
Hotels_Server |
2025-12-28T08:02:06.225Z | 2025-12-29T16:02:17.068Z |
| CVE-2025-14177 |
6.3 (4.0)
|
Information Leak of Memory in getimagesize |
PHP Group |
PHP |
2025-12-27T19:33:23.973Z | 2025-12-29T16:01:36.231Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-14706 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
Shiguangwu sgwbox N3 NETREBOOT http_eshell_server comm… |
Shiguangwu |
sgwbox N3 |
2025-12-15T05:32:05.553Z | 2025-12-15T18:00:55.566Z |
| CVE-2025-56130 |
8.8 (3.1)
|
OS Command Injection vulnerability in Ruijie RG-S… |
n/a |
n/a |
2025-12-11T00:00:00.000Z | 2025-12-12T17:35:45.781Z |
| CVE-2024-22770 |
7.4 (3.1)
|
Hitron Systems DVR HVR-16781 Improper Input Validation… |
Hitron Systems |
DVR HVR-16781 |
2024-01-23T04:42:39.638Z | 2025-05-22T14:58:05.088Z |
| CVE-2024-22768 |
7.4 (3.1)
|
Hitron Systems DVR HVR-4781 Improper Input Validation … |
Hitron Systems |
DVR HVR-4781 |
2024-01-23T04:31:40.489Z | 2025-05-30T14:19:56.241Z |
| CVE-2024-22772 |
7.4 (3.1)
|
Hitron Systems DVR LGUVR-8H Improper Input Validation … |
Hitron Systems |
DVR LGUVR-8H |
2024-01-23T04:52:06.708Z | 2024-10-22T03:55:44.110Z |
| CVE-2024-22769 |
7.4 (3.1)
|
Hitron Systems DVR HVR-8781 Improper Input Validation … |
Hitron Systems |
DVR HVR-8781 |
2024-01-23T04:37:06.276Z | 2025-05-30T14:19:50.183Z |
| CVE-2024-22771 |
7.4 (3.1)
|
Hitron Systems DVR LGUVR-4H Improper Input Validation … |
Hitron Systems |
DVR LGUVR-4H |
2024-01-23T04:49:10.800Z | 2024-10-22T03:55:42.957Z |
| CVE-2024-23842 |
7.4 (3.1)
|
Hitron Systems DVR LGUVR-16H Improper Input Validation… |
Hitron Systems DVR |
DVR LGUVR-16H |
2024-01-23T04:56:41.242Z | 2025-09-15T13:58:10.062Z |
| CVE-2025-55311 |
6.5 (3.1)
|
An issue was discovered in Foxit PDF and Editor f… |
n/a |
n/a |
2025-12-11T00:00:00.000Z | 2025-12-11T16:25:41.126Z |
| CVE-2024-33453 |
8.1 (3.1)
|
Buffer Overflow vulnerability in esp-idf v.5.1 al… |
n/a |
n/a |
2024-10-17T00:00:00 | 2024-10-18T19:10:25.659Z |
| CVE-2024-33454 |
6.5 (3.1)
|
Buffer Overflow vulnerability in esp-idf v.5.1 al… |
n/a |
n/a |
2024-05-09T15:57:23.806Z | 2025-02-13T15:52:38.610Z |
| CVE-2024-48809 |
7.5 (3.1)
|
An issue in Open Networking Foundations sdran-in-… |
n/a |
n/a |
2024-11-04T00:00:00 | 2024-11-05T21:18:03.960Z |
| CVE-2025-13499 |
7.8 (3.1)
|
Access of Uninitialized Pointer in Wireshark |
Wireshark Foundation |
Wireshark |
2025-11-21T06:03:52.020Z | 2025-12-11T15:34:55.962Z |
| CVE-2025-13946 |
5.5 (3.1)
|
Loop with Unreachable Exit Condition ('Infinite Loop')… |
Wireshark Foundation |
Wireshark |
2025-12-03T08:04:54.335Z | 2025-12-03T14:28:19.274Z |
| CVE-2024-48246 |
5.4 (3.1)
|
Vehicle Management System 1.0 contains a Stored C… |
n/a |
n/a |
2025-03-05T00:00:00.000Z | 2025-03-06T14:23:01.488Z |
| CVE-2025-14284 |
6.1 (3.1)
|
Versions of the package @tiptap/extension-link be… |
n/a |
@tiptap/extension-link |
2025-12-09T05:00:03.409Z | 2025-12-09T14:59:53.928Z |
| CVE-2024-9582 |
6.4 (3.1)
|
Accordion Slider <= 1.9.11 - Authenticted (Contributor… |
bqworks |
Accordion Slider |
2024-10-16T06:43:37.406Z | 2024-10-16T14:09:41.287Z |
| CVE-2024-56055 |
8.5 (3.1)
|
WordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary Directo… |
VibeThemes |
WPLMS |
2024-12-18T18:42:49.539Z | 2024-12-18T19:02:18.760Z |
| CVE-2025-63035 |
6.5 (3.1)
|
WordPress WPLMS plugin <= 1.9.9.5.4 - Cross Site Scrip… |
VibeThemes |
WPLMS |
2025-12-09T14:52:29.953Z | 2025-12-10T17:14:40.434Z |
| CVE-2025-64052 |
5.1 (3.1)
|
An issue was discovered in Fanvil x210 V2 2.12.20… |
n/a |
n/a |
2025-12-05T00:00:00.000Z | 2025-12-05T21:49:55.897Z |
| CVE-2024-30146 |
4.1 (3.1)
|
HCL Domino Leap is affected by improper access control |
HCL Software |
HCL Domino Leap |
2025-04-30T21:16:31.949Z | 2025-05-01T15:34:11.144Z |
| CVE-2025-11200 |
8.1 (3.0)
|
MLflow Weak Password Requirements Authentication Bypas… |
MLflow |
MLflow |
2025-10-29T19:42:03.734Z | 2025-10-31T03:55:31.971Z |
| CVE-2025-25298 |
6.3 (4.0)
|
Missing Maximum Password Length Validation in Strapi P… |
strapi |
strapi |
2025-10-16T16:21:45.585Z | 2025-10-16T18:12:49.837Z |
| CVE-2024-56143 |
8.2 (3.1)
|
Strapi Allows Unauthorized Access to Private Fields vi… |
strapi |
strapi |
2025-10-16T16:07:30.996Z | 2025-10-16T17:54:24.103Z |
| CVE-2024-33065 |
8.4 (3.1)
|
Improper Input Validation in Camera |
Qualcomm, Inc. |
Snapdragon |
2024-10-07T12:58:52.280Z | 2024-10-07T13:15:33.662Z |
| CVE-2024-4068 |
7.5 (3.1)
|
Memory Exhaustion in braces |
micromatch |
braces |
2024-05-13T10:06:38.152Z | 2024-11-06T13:10:11.179Z |
| CVE-2024-53406 |
8.8 (3.1)
|
Espressif Esp idf v5.3.0 is vulnerable to Insecur… |
n/a |
n/a |
2025-03-13T00:00:00.000Z | 2025-03-19T18:42:46.005Z |
| CVE-2023-40238 |
N/A
|
A LogoFAIL issue was discovered in BmpDecoderDxe … |
n/a |
n/a |
2023-12-07T00:00:00 | 2024-08-02T18:24:55.918Z |
| CVE-2025-14652 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
itsourcecode Online Cake Ordering System admindetail.p… |
itsourcecode |
Online Cake Ordering System |
2025-12-14T09:02:06.291Z | 2025-12-15T21:18:14.730Z |
| CVE-2025-14832 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
itsourcecode Online Cake Ordering System updateproduct… |
itsourcecode |
Online Cake Ordering System |
2025-12-17T22:02:06.941Z | 2025-12-18T15:07:31.226Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2024-22771 | Improper Input Validation in Hitron Systems DVR LGUVR-4H 1.02~4.02 allows an attacker to cause netw… | 2024-01-23T05:15:09.563 | 2025-12-31T01:45:08.333 |
| fkie_cve-2024-23842 | Improper Input Validation in Hitron Systems DVR LGUVR-16H 1.02~4.02 allows an attacker to cause net… | 2024-01-23T05:15:10.007 | 2025-12-31T01:42:05.670 |
| fkie_cve-2025-55311 | An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2… | 2025-12-11T16:16:25.507 | 2025-12-31T01:41:27.983 |
| fkie_cve-2024-33453 | Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to obtain sensitive informa… | 2024-10-17T22:15:03.040 | 2025-12-31T01:16:35.170 |
| fkie_cve-2024-33454 | Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to execute arbitrary code v… | 2024-05-14T15:37:41.710 | 2025-12-31T01:16:27.710 |
| fkie_cve-2024-48809 | An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a remote… | 2024-11-04T17:15:07.880 | 2025-12-31T01:16:13.153 |
| fkie_cve-2025-13499 | Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service | 2025-11-21T06:15:48.203 | 2025-12-31T01:14:40.110 |
| fkie_cve-2025-13946 | MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service | 2025-12-03T08:15:48.180 | 2025-12-31T01:14:22.890 |
| fkie_cve-2024-48246 | Vehicle Management System 1.0 contains a Stored Cross-Site Scripting (XSS) vulnerability in the "Na… | 2025-03-05T19:15:37.453 | 2025-12-31T01:13:36.757 |
| fkie_cve-2025-14284 | Versions of the package @tiptap/extension-link before 2.10.4 are vulnerable to Cross-site Scripting… | 2025-12-09T16:17:37.657 | 2025-12-31T01:12:50.423 |
| fkie_cve-2024-9582 | The Accordion Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘htm… | 2024-10-16T07:15:17.033 | 2025-12-31T01:12:06.993 |
| fkie_cve-2024-56055 | Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue affe… | 2024-12-18T19:15:13.263 | 2025-12-31T01:11:25.533 |
| fkie_cve-2025-63035 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:09.053 | 2025-12-31T01:10:52.543 |
| fkie_cve-2025-64052 | An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local n… | 2025-12-05T16:15:50.047 | 2025-12-31T01:10:32.347 |
| fkie_cve-2024-30146 | Improper access control of endpoint in HCL Domino Leap allows certain admin users to import applica… | 2025-04-30T22:15:16.720 | 2025-12-31T01:06:39.007 |
| fkie_cve-2025-11200 | MLflow Weak Password Requirements Authentication Bypass Vulnerability. This vulnerability allows re… | 2025-10-29T20:15:35.543 | 2025-12-31T01:06:20.083 |
| fkie_cve-2025-25298 | Strapi is an open source headless CMS. The @strapi/core package before version 5.10.3 does not enfo… | 2025-10-16T17:15:33.353 | 2025-12-31T01:06:00.520 |
| fkie_cve-2024-56143 | Strapi is an open-source headless content management system. In versions from 5.0.0 to before 5.5.2… | 2025-10-16T16:15:36.183 | 2025-12-31T01:05:40.340 |
| fkie_cve-2024-33065 | Memory corruption while taking snapshot when an offset variable is set by camera driver. | 2024-10-07T13:15:12.710 | 2025-12-31T01:04:45.317 |
| fkie_cve-2024-4068 | The NPM package `braces`, versions prior to 3.0.3, fails to limit the number of characters it can h… | 2024-05-14T15:42:48.660 | 2025-12-31T01:04:21.577 |
| fkie_cve-2024-53406 | Espressif Esp idf v5.3.0 is vulnerable to Insecure Permissions resulting in Authentication bypass. … | 2025-03-13T17:15:33.410 | 2025-12-31T01:04:08.637 |
| fkie_cve-2023-40238 | A LogoFAIL issue was discovered in BmpDecoderDxe in Insyde InsydeH2O with kernel 5.2 before 05.28.4… | 2023-12-07T04:15:06.790 | 2025-12-31T01:03:36.493 |
| fkie_cve-2025-14652 | A vulnerability was found in itsourcecode Online Cake Ordering System 1.0. This issue affects some … | 2025-12-14T09:15:40.540 | 2025-12-31T01:01:18.297 |
| fkie_cve-2025-14832 | A vulnerability was identified in itsourcecode Online Cake Ordering System 1.0. The affected elemen… | 2025-12-17T22:15:58.643 | 2025-12-31T01:00:57.970 |
| fkie_cve-2025-14650 | A flaw has been found in itsourcecode Online Cake Ordering System 1.0. This affects an unknown part… | 2025-12-14T08:15:39.820 | 2025-12-31T01:00:43.140 |
| fkie_cve-2025-4533 | A vulnerability classified as problematic was found in JeecgBoot up to 3.8.0. This vulnerability af… | 2025-05-11T07:15:15.430 | 2025-12-31T01:00:06.310 |
| fkie_cve-2025-10981 | A vulnerability was detected in JeecgBoot up to 3.8.2. This impacts an unknown function of the file… | 2025-09-26T00:15:37.643 | 2025-12-31T00:59:45.517 |
| fkie_cve-2025-10980 | A security vulnerability has been detected in JeecgBoot up to 3.8.2. This affects an unknown functi… | 2025-09-26T00:15:36.627 | 2025-12-31T00:59:32.337 |
| fkie_cve-2024-39580 | Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains an Improper Access Control vulnerabil… | 2024-09-10T09:15:02.740 | 2025-12-31T00:58:07.767 |
| fkie_cve-2024-39581 | Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a File or Directories Accessible to E… | 2024-09-10T09:15:02.993 | 2025-12-31T00:57:02.217 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-4jf5-rmwc-7vww |
6.5 (3.1)
|
The web management interface in ETL Systems Ltd DEXTRA Series ' Digital L-Band Distribution System … | 2025-12-26T18:30:26Z | 2025-12-26T18:30:27Z |
| ghsa-x2hf-qg23-rjpx |
6.5 (3.1)
|
An issue in Yealink T21P_E2 Phone 52.84.0.15 allows a remote normal privileged attacker to execute … | 2025-12-26T18:30:26Z | 2025-12-26T18:30:26Z |
| ghsa-v82x-ghcg-c238 |
6.1 (3.1)
|
A cross-site scripting (XSS) vulnerability was identified in FluentCMS 1.2.3. After logging in as a… | 2025-12-26T15:30:17Z | 2025-12-26T18:30:26Z |
| ghsa-fmqj-pm68-cqq4 |
6.5 (3.1)
|
SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-det… | 2025-12-26T15:30:17Z | 2025-12-26T18:30:26Z |
| ghsa-chq3-v87j-fwq5 |
5.1 (3.1)
|
An issue was discovered in the Delight Custom Firmware (CFW) for Nokia Symbian Belle devices on Nok… | 2025-12-26T15:30:17Z | 2025-12-26T18:30:26Z |
| ghsa-8qx7-g43x-4mhm |
6.2 (3.1)
|
An issue in Terra Informatica Software, Inc Sciter v.4.4.7.0 allows a local attacker to obtain sens… | 2025-12-26T18:30:26Z | 2025-12-26T18:30:26Z |
| ghsa-pffp-qx9q-h7v4 |
5.3 (3.1)
6.9 (4.0)
|
Screen SFT DAB 600/C firmware versions up to and including 1.9.3 contain an improper access control… | 2025-11-15T00:30:26Z | 2025-12-26T18:30:24Z |
| ghsa-h78q-4j5r-86xx |
8.8 (3.1)
8.7 (4.0)
|
Cacti versions prior to 0.8.6-d contain a remote command execution vulnerability in the graph_view.… | 2025-12-26T18:30:24Z | 2025-12-26T18:30:24Z |
| ghsa-xh99-hw7h-wf63 |
7.5 (3.1)
|
Unchecked validity of Facing values in PlayerActionPacket | 2022-01-13T22:25:44Z | 2025-12-26T17:30:07Z |
| ghsa-wjfq-88q2-r34j |
7.5 (3.1)
|
Unhandled exception when decoding form response JSON | 2022-01-21T23:02:14Z | 2025-12-26T17:29:53Z |
| ghsa-46c5-pfj8-fv65 |
7.5 (3.1)
|
Improperly checked metadata on tools/armour itemstacks received from the client | 2022-03-18T22:36:03Z | 2025-12-26T17:29:39Z |
| ghsa-g5rr-p69h-7v3g |
7.5 (3.1)
|
Insufficient type validation in pocketmine/pocketmine-mp | 2022-04-22T20:57:12Z | 2025-12-26T17:29:16Z |
| ghsa-gj94-v4p9-w672 |
5.3 (3.1)
|
Denial-of-service vulnerability processing large chat messages containing many newlines | 2022-05-25T22:34:01Z | 2025-12-26T17:29:04Z |
| ghsa-fqx3-r75h-vc89 |
7.5 (3.1)
|
Improperly checked IDs on itemstacks received from the client leading to server crash in PocketMine-MP | 2022-06-07T21:07:31Z | 2025-12-26T17:28:57Z |
| ghsa-wqqv-jcfr-9f5g |
7.5 (3.1)
|
PocketMine-MP has improperly handled dye colour IDs in banner NBT, leading to server crash | 2023-01-09T20:07:27Z | 2025-12-26T17:28:42Z |
| ghsa-7wrv-6h42-w54f |
7.5 (3.1)
|
PocketMine-MP vulnerable to server crash using badly formatted sign NBT in BlockActorDataPacket | 2023-07-14T21:50:42Z | 2025-12-26T17:28:18Z |
| ghsa-9rmp-2568-59rv |
7.5 (3.1)
8.7 (4.0)
|
rPGP Panics on Malformed Untrusted Input | 2024-12-05T17:30:52Z | 2025-12-26T16:30:25Z |
| ghsa-pcqx-8qww-7f4v |
9.1 (3.1)
|
OpenShift GitOps authenticated attackers can obtain cluster root access through forged ArgoCD custo… | 2025-12-15T18:30:39Z | 2025-12-26T16:30:12Z |
| ghsa-rh9m-3jjg-79rv |
5.4 (3.1)
|
IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 is vulnerable to HTML injection. A remote attacker could… | 2025-12-26T15:30:17Z | 2025-12-26T15:30:17Z |
| ghsa-mrrq-9gcx-wv49 |
5.9 (3.1)
|
IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information from … | 2025-12-26T15:30:17Z | 2025-12-26T15:30:17Z |
| ghsa-hjxw-q6qf-prmj |
7.7 (3.1)
|
IBM Concert 1.0.0 through 2.1.0 could allow a local user to escalate their privileges due to a race… | 2025-12-26T15:30:17Z | 2025-12-26T15:30:17Z |
| ghsa-gp88-9wrc-jxf5 |
9.8 (3.1)
|
IBM API Connect 10.0.8.0 through 10.0.8.5, and 10.0.11.0 could allow a remote attacker to bypass au… | 2025-12-26T15:30:17Z | 2025-12-26T15:30:17Z |
| ghsa-cqcr-6gvh-8xmg |
3.8 (3.1)
|
IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 may allow inconsistent permissions between the user inte… | 2025-12-26T15:30:17Z | 2025-12-26T15:30:17Z |
| ghsa-cjc8-9v4p-h4r5 |
4.3 (3.1)
|
IBM Db2 Intelligence Center 1.1.0, 1.1.1, 1.1.2 could allow an authenticated user to perform unauth… | 2025-12-26T15:30:17Z | 2025-12-26T15:30:17Z |
| ghsa-737v-mrx7-86p3 |
7.8 (3.1)
|
IBM Concert 1.0.0 through 2.1.0 is vulnerable to a stack-based buffer overflow, caused by improper … | 2025-12-26T15:30:17Z | 2025-12-26T15:30:17Z |
| ghsa-4gh5-5w79-82mv |
6.7 (3.1)
|
IBM DS8A00( R10.1) 10.10.106.0 and IBM DS8A00 ( R10.0) 10.1.3.010.2.45.0 and IBM DS8900F ( R9.4) 89… | 2025-12-26T15:30:17Z | 2025-12-26T15:30:17Z |
| ghsa-28p8-98p7-q6xq |
3.1 (3.1)
|
IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 could allow authenticated users to enumerate sensitive i… | 2025-12-26T15:30:17Z | 2025-12-26T15:30:17Z |
| ghsa-x3r8-2hmh-89f5 |
4.3 (3.1)
|
Mattermost has an Invite Token Replay Vulnerability via Channel Membership Manipulation | 2025-12-17T21:30:48Z | 2025-12-26T15:17:57Z |
| ghsa-wjc4-73q6-gv3m |
9.8 (3.1)
|
plotly.js prototype pollution vulnerability | 2024-01-03T06:30:27Z | 2025-12-26T15:16:48Z |
| ghsa-vpq5-q5gw-c89v |
7.8 (3.1)
|
Due to insecure library loading in the Eaton UPS Companion software executable, an attacker with ac… | 2025-12-26T09:30:17Z | 2025-12-26T09:30:17Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2021-875 |
|
The module `AccessControl` defines security policies for Python code used in restricted c… | zope | 2021-07-30T22:15:00Z | 2023-05-04T04:29:31.501472Z |
| pysec-2022-43016 |
|
A vulnerability, which was classified as problematic, has been found in UBI Reader up to … | ubi-reader | 2022-12-17T02:15:00Z | 2023-05-04T04:29:30.474506Z |
| pysec-2022-43013 |
|
Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an … | slixmpp | 2022-12-25T05:15:00Z | 2023-05-04T04:29:29.928881Z |
| pysec-2022-43012 |
|
Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers to cau… | setuptools | 2022-12-23T00:15:00Z | 2023-05-04T04:29:29.797493Z |
| pysec-2022-43011 |
|
Sentry is an error tracking and performance monitoring platform. In versions of the sentr… | sentry | 2022-12-10T01:15:00Z | 2023-05-04T04:29:29.699170Z |
| pysec-2022-43002 |
|
Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2. | rdiffweb | 2022-12-12T18:15:00Z | 2023-05-04T04:29:29.006053Z |
| pysec-2022-43001 |
|
Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior … | rdiffweb | 2022-11-16T13:15:00Z | 2023-05-04T04:29:28.960174Z |
| pysec-2022-43000 |
|
Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0. | rdiffweb | 2022-11-14T21:15:00Z | 2023-05-04T04:29:28.911542Z |
| pysec-2022-42999 |
|
** DISPUTED ** In the python-libnmap package through 0.7.2 for Python, remote command exe… | python-libnmap | 2022-05-04T22:15:00Z | 2023-05-04T04:29:28.652969Z |
| pysec-2022-42998 |
|
A directory traversal vulnerability in the SevenZipFile.extractall() function of the pyth… | py7zr | 2022-12-06T20:15:00Z | 2023-05-04T04:29:28.497759Z |
| pysec-2022-42997 |
|
Passeo is an open source python password generator. Versions prior to 1.0.5 rely on the p… | passeo | 2022-12-06T18:15:00Z | 2023-05-04T04:29:27.942516Z |
| pysec-2022-42996 |
|
MPXJ is an open source library to read and write project plans from a variety of file for… | mpxj | 2022-11-25T19:15:00Z | 2023-05-04T04:29:27.436392Z |
| pysec-2022-42995 |
|
A vulnerability was found in keylime. This security issue happens in some circumstances, … | keylime | 2022-11-22T19:15:00Z | 2023-05-04T04:29:25.773897Z |
| pysec-2022-42994 |
|
GuardDog is a CLI tool to identify malicious PyPI packages. Versions prior to 0.1.5 are v… | guarddog | 2022-12-17T00:15:00Z | 2023-05-04T04:29:25.595529Z |
| pysec-2022-42993 |
|
GuardDog is a CLI tool to identify malicious PyPI packages. Versions prior to v0.1.8 are … | guarddog | 2022-12-16T23:15:00Z | 2023-05-04T04:29:25.550921Z |
| pysec-2022-42990 |
|
A vulnerability was found in collective.task up to 3.0.9. It has been classified as probl… | collective-task | 2022-12-15T21:15:00Z | 2023-05-04T04:29:24.403566Z |
| pysec-2022-42988 |
|
A vulnerability classified as problematic was found in collective.contact.widget up to 1.… | collective-contact-widget | 2022-12-21T22:15:00Z | 2023-05-04T04:29:24.049172Z |
| pysec-2022-42987 |
|
CKAN through 2.9.6 account takeovers by unauthenticated users when an existing user id is… | ckan | 2022-11-22T01:15:00Z | 2023-05-04T04:29:23.890366Z |
| pysec-2022-42985 |
|
Arches is a web platform for creating, managing, & visualizing geospatial data. Versions … | arches | 2022-11-11T04:15:00Z | 2023-05-04T04:29:23.524968Z |
| pysec-2022-42984 |
|
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's … | apache-airflow | 2022-11-15T09:15:00Z | 2023-05-04T04:29:22.748527Z |
| pysec-2022-42983 |
|
In Apache Airflow, prior to version 2.4.1, deactivating a user wouldn't prevent an alread… | apache-airflow | 2022-10-07T07:15:00Z | 2023-05-04T04:29:22.696589Z |
| pysec-2022-42982 |
|
A vulnerability in Example Dags of Apache Airflow allows an attacker with UI access who c… | apache-airflow | 2022-11-14T10:15:00Z | 2023-05-04T04:29:22.645854Z |
| pysec-2022-42981 |
|
A vulnerability in UI of Apache Airflow allows an attacker to view unmasked secrets in re… | apache-airflow | 2022-11-14T10:15:00Z | 2023-05-04T04:29:22.592547Z |
| pysec-2022-43017 |
|
An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows … | wheel | 2022-12-23T00:15:00Z | 2023-05-04T03:49:49.039483Z |
| pysec-2023-58 |
|
Werkzeug is a comprehensive WSGI web application library. Prior to version 2.2.3, Werkzeu… | werkzeug | 2023-02-14T20:15:00Z | 2023-05-04T03:49:48.987713Z |
| pysec-2023-57 |
|
Werkzeug is a comprehensive WSGI web application library. Browsers may allow "nameless" c… | werkzeug | 2023-02-14T20:15:00Z | 2023-05-04T03:49:48.931463Z |
| pysec-2023-56 |
|
Wagtail is an open source content management system built on Django. Prior to versions 4.… | wagtail | 2023-04-03T17:15:00Z | 2023-05-04T03:49:48.874145Z |
| pysec-2023-55 |
|
Wagtail is an open source content management system built on Django. Starting in version … | wagtail | 2023-04-03T17:15:00Z | 2023-05-04T03:49:48.764275Z |
| pysec-2023-54 |
|
vantage6 is a privacy preserving federated learning infrastructure for secure insight exc… | vantage6 | 2023-03-04T00:15:00Z | 2023-05-04T03:49:48.653810Z |
| pysec-2023-53 |
|
vantage6 is a privacy preserving federated learning infrastructure for secure insight exc… | vantage6 | 2023-03-01T21:15:00Z | 2023-05-04T03:49:48.592158Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-33133 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.727626Z |
| gsd-2024-33132 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.616439Z |
| gsd-2024-33131 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.613712Z |
| gsd-2024-33130 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.698885Z |
| gsd-2024-33129 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.616240Z |
| gsd-2024-33128 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.754393Z |
| gsd-2024-33127 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.725067Z |
| gsd-2024-33126 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.719194Z |
| gsd-2024-33125 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.749323Z |
| gsd-2024-33124 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.739634Z |
| gsd-2024-33123 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.736950Z |
| gsd-2024-33122 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.708386Z |
| gsd-2024-33121 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.714356Z |
| gsd-2024-33120 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.620196Z |
| gsd-2024-33119 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.733754Z |
| gsd-2024-33118 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.754600Z |
| gsd-2024-33117 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.660987Z |
| gsd-2024-33116 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.611077Z |
| gsd-2024-33115 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.618152Z |
| gsd-2024-33114 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.666856Z |
| gsd-2024-33113 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.743114Z |
| gsd-2024-33112 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.711610Z |
| gsd-2024-33111 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.693473Z |
| gsd-2024-33110 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.697620Z |
| gsd-2024-33109 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.667980Z |
| gsd-2024-33108 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.678810Z |
| gsd-2024-33107 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.609863Z |
| gsd-2024-33106 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.695334Z |
| gsd-2024-33105 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.716445Z |
| gsd-2024-33104 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.712218Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-0000-reversing-labs-3d82836f30846a4b | 2025-12-23T08:41:00Z | 2025-12-23T08:41:00Z | |
| mal-0000-reversing-labs-c8b9b3b0fc24900d | 2025-12-23T08:40:59Z | 2025-12-23T08:40:59Z | |
| mal-0000-reversing-labs-68fc0adc8f08412b | 2025-12-23T08:40:59Z | 2025-12-23T08:40:59Z | |
| mal-2025-192910 | Malicious code in macklemore (RubyGems) | 2025-12-23T08:40:58Z | 2025-12-23T08:40:58Z |
| mal-0000-reversing-labs-ad866f010964bcba | 2025-12-23T08:40:58Z | 2025-12-23T08:40:58Z | |
| mal-2025-192909 | Malicious code in html_scrubber (RubyGems) | 2025-12-23T08:40:57Z | 2025-12-23T08:40:57Z |
| mal-0000-reversing-labs-0d3dbba9053b8321 | 2025-12-23T08:40:57Z | 2025-12-23T08:40:57Z | |
| mal-2025-192908 | Malicious code in hola_rreichel3github (RubyGems) | 2025-12-23T08:40:56Z | 2025-12-23T08:40:56Z |
| mal-0000-reversing-labs-95c631ed2a21d097 | 2025-12-23T08:40:56Z | 2025-12-23T08:40:56Z | |
| mal-2025-192907 | Malicious code in hockeystick (RubyGems) | 2025-12-23T08:40:55Z | 2025-12-23T08:40:55Z |
| mal-2025-192906 | Malicious code in haybales (RubyGems) | 2025-12-23T08:40:55Z | 2025-12-23T08:40:55Z |
| mal-0000-reversing-labs-bd536daa96e6efee | 2025-12-23T08:40:55Z | 2025-12-23T08:40:55Z | |
| mal-0000-reversing-labs-9579f1469db6cdb4 | 2025-12-23T08:40:55Z | 2025-12-23T08:40:55Z | |
| mal-2025-192905 | Malicious code in critter (RubyGems) | 2025-12-23T08:40:54Z | 2025-12-23T08:40:54Z |
| mal-0000-reversing-labs-2cb52d270b635577 | 2025-12-23T08:40:54Z | 2025-12-23T08:40:54Z | |
| mal-2025-192904 | Malicious code in cocoapod (RubyGems) | 2025-12-23T08:40:53Z | 2025-12-23T08:40:53Z |
| mal-0000-reversing-labs-6e39c1f1d818680b | 2025-12-23T08:40:53Z | 2025-12-23T08:40:53Z | |
| mal-2025-192903 | Malicious code in chalk-thrift (RubyGems) | 2025-12-23T08:40:52Z | 2025-12-23T08:40:52Z |
| mal-0000-reversing-labs-760415061aa3d189 | 2025-12-23T08:40:52Z | 2025-12-23T08:40:52Z | |
| mal-2025-192902 | Malicious code in chalk-service (RubyGems) | 2025-12-23T08:40:51Z | 2025-12-23T08:40:51Z |
| mal-0000-reversing-labs-28d7985dc818c11d | 2025-12-23T08:40:51Z | 2025-12-23T08:40:51Z | |
| mal-2025-192901 | Malicious code in chalk-sentry (RubyGems) | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z |
| mal-2025-192900 | Malicious code in chalk-interface (RubyGems) | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z |
| mal-2025-192899 | Malicious code in chalk-hostname (RubyGems) | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z |
| mal-0000-reversing-labs-dc1e691b373fdd5f | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z | |
| mal-0000-reversing-labs-c051874c322af525 | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z | |
| mal-0000-reversing-labs-65f44def7487b6dd | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z | |
| mal-2025-192898 | Malicious code in chalk-henson (RubyGems) | 2025-12-23T08:40:49Z | 2025-12-23T08:40:49Z |
| mal-2025-192897 | Malicious code in chalk-consul (RubyGems) | 2025-12-23T08:40:49Z | 2025-12-23T08:40:49Z |
| mal-0000-reversing-labs-b3620d1b7479ed2a | 2025-12-23T08:40:49Z | 2025-12-23T08:40:49Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-1097 | Mozilla Firefox / Thunderbird: Mehrere Schwachstellen | 2025-05-18T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-1000 | VMware Tools: Schwachstelle ermöglicht Manipulation von Dateien | 2025-05-11T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-0986 | PostgreSQL: Schwachstelle ermöglicht Denial of Service | 2025-05-08T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-0791 | Perl: Schwachstelle ermöglicht Denial of Service und potentiell Codeausführung | 2025-04-13T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-0789 | QT: Schwachstelle ermöglicht Denial of Service | 2025-04-10T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-0786 | IBM Installation Manager: Mehrere Schwachstellen | 2025-04-10T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-0645 | Exim: Schwachstelle ermöglicht Privilegieneskalation | 2025-03-26T23:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-0435 | X.Org X11: Mehrere Schwachstellen ermöglichen nicht näher spezifizierte Auswirkungen, möglicherweise Codeausführung | 2025-02-25T23:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-0353 | GNU Emacs: Schwachstelle ermöglicht Codeausführung | 2025-02-11T23:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-0156 | Node.js: Mehrere Schwachstellen | 2025-01-21T23:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-0106 | git: Schwachstelle ermöglicht Darstellen falscher Informationen | 2025-01-15T23:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-0028 | LibreOffice: Mehrere Schwachstellen | 2025-01-07T23:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2024-3558 | GNU Emacs und Red Hat Enterprise Linux: Schwachstelle ermöglicht Codeausführung | 2024-11-27T23:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2024-3272 | GStreamer: Schwachstelle ermöglicht Denial of Service | 2024-10-24T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2024-2047 | Python: Schwachstelle ermöglicht Denial of Service | 2024-09-03T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1914 | Python: Schwachstelle ermöglicht Denial of Service | 2024-08-22T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1889 | Python: Schwachstelle ermöglicht Denial of Service | 2024-08-20T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1526 | QT: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-07-04T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1015 | QT: Schwachstelle ermöglicht Manipulation von Dateien | 2024-05-02T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2024-0404 | QT: Schwachstelle ermöglicht Denial of Service | 2024-02-15T23:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2023-1750 | QT: Schwachstelle ermöglicht Denial of Service | 2023-07-13T22:00:00.000+00:00 | 2025-06-12T22:00:00.000+00:00 |
| wid-sec-w-2025-1315 | GitLab: Mehrere Schwachstellen | 2025-06-11T22:00:00.000+00:00 | 2025-06-11T22:00:00.000+00:00 |
| wid-sec-w-2025-1314 | Apple Produkte: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-06-11T22:00:00.000+00:00 | 2025-06-11T22:00:00.000+00:00 |
| wid-sec-w-2025-1313 | PaloAlto Networks PAN-OS: Mehrere Schwachstellen | 2025-06-11T22:00:00.000+00:00 | 2025-06-11T22:00:00.000+00:00 |
| wid-sec-w-2025-1311 | QT: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-06-11T22:00:00.000+00:00 | 2025-06-11T22:00:00.000+00:00 |
| wid-sec-w-2025-1310 | PaloAlto Networks GlobalProtect: Mehrere Schwachstellen | 2025-06-11T22:00:00.000+00:00 | 2025-06-11T22:00:00.000+00:00 |
| wid-sec-w-2025-1309 | IBM Tivoli Netcool/OMNIbus: Schwachstelle ermöglicht Denial of Service | 2025-06-11T22:00:00.000+00:00 | 2025-06-11T22:00:00.000+00:00 |
| wid-sec-w-2025-1307 | Mitel OpenScape Accounting Management: Schwachstelle ermöglicht Codeausführung | 2025-06-11T22:00:00.000+00:00 | 2025-06-11T22:00:00.000+00:00 |
| wid-sec-w-2025-1306 | PaloAlto Networks Cortex XSOAR: Schwachstelle ermöglicht Privilegieneskalation | 2025-06-11T22:00:00.000+00:00 | 2025-06-11T22:00:00.000+00:00 |
| wid-sec-w-2025-1305 | Microsoft 365 Copilot: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-06-11T22:00:00.000+00:00 | 2025-06-11T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:6811 | Red Hat Security Advisory: OpenShift Container Platform 4.13.51 bug fix and security update | 2024-09-25T01:05:03+00:00 | 2025-12-26T21:05:44+00:00 |
| rhsa-2024:6406 | Red Hat Security Advisory: OpenShift Container Platform 4.14.36 security update | 2024-09-11T18:33:56+00:00 | 2025-12-26T21:05:41+00:00 |
| rhsa-2024:6236 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.10.5 security and bug fix update | 2024-09-03T18:23:36+00:00 | 2025-12-26T21:05:39+00:00 |
| rhsa-2024:5433 | Red Hat Security Advisory: OpenShift Container Platform 4.14.35 security update | 2024-08-22T11:41:29+00:00 | 2025-12-26T21:05:39+00:00 |
| rhsa-2024:4959 | Red Hat Security Advisory: OpenShift Container Platform 4.14.34 security update | 2024-08-07T10:18:53+00:00 | 2025-12-26T21:05:39+00:00 |
| rhsa-2024:4468 | Red Hat Security Advisory: OpenShift Container Platform 4.16.3 security update | 2024-07-16T12:14:15+00:00 | 2025-12-26T21:05:36+00:00 |
| rhsa-2024:3479 | Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 director Operator container images security update | 2024-05-29T21:39:50+00:00 | 2025-12-26T21:05:34+00:00 |
| rhsa-2024:1328 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.3 security and bug fix container updates | 2024-03-14T14:47:02+00:00 | 2025-12-26T21:05:25+00:00 |
| rhsa-2024:0641 | Red Hat Security Advisory: OpenShift Container Platform 4.14.11 security and extras update | 2024-02-07T16:41:29+00:00 | 2025-12-26T21:05:09+00:00 |
| rhsa-2024:0204 | Red Hat Security Advisory: OpenShift Container Platform 4.14.9 bug fix and security update | 2024-01-17T10:43:45+00:00 | 2025-12-26T21:05:02+00:00 |
| rhsa-2023:7681 | Red Hat Security Advisory: OpenShift Container Platform 4.14.6 security and extras update | 2023-12-12T09:36:20+00:00 | 2025-12-26T21:04:50+00:00 |
| rhsa-2023:7663 | Red Hat Security Advisory: Red Hat OpenShift distributed tracing 3.0.0 operator/operand containers | 2023-12-06T05:00:32+00:00 | 2025-12-26T21:04:48+00:00 |
| rhsa-2023:7197 | Red Hat Security Advisory: OpenShift Container Platform 4.15.0 security and extras update | 2024-02-27T19:47:37+00:00 | 2025-12-26T21:04:25+00:00 |
| rhsa-2023:5407 | Red Hat Security Advisory: openshift-gitops-kam security update | 2023-09-29T14:15:37+00:00 | 2025-12-26T21:03:04+00:00 |
| rhsa-2022:2183 | Red Hat Security Advisory: Release of containers for OSP 16.2.z director operator tech preview | 2022-05-11T11:33:14+00:00 | 2025-12-26T21:02:36+00:00 |
| rhsa-2021:4627 | Red Hat Security Advisory: Openshift Logging 5.3.0 bug fix and security update | 2021-11-15T12:56:17+00:00 | 2025-12-26T21:02:15+00:00 |
| rhsa-2021:3759 | Red Hat Security Advisory: OpenShift Container Platform 4.9.0 bug fix and security update | 2021-10-18T17:26:13+00:00 | 2025-12-26T21:02:10+00:00 |
| rhsa-2021:2438 | Red Hat Security Advisory: OpenShift Container Platform 4.8.2 bug fix and security update | 2021-07-27T22:30:07+00:00 | 2025-12-26T21:02:10+00:00 |
| rhba-2023:7648 | Red Hat Bug Fix Advisory: MTV 2.5.3 Images | 2023-12-05T06:56:16+00:00 | 2025-12-26T21:02:01+00:00 |
| rhsa-2023:4730 | Red Hat Security Advisory: OpenShift Container Platform 4.13.10 security update | 2023-08-30T17:55:36+00:00 | 2025-12-26T20:47:40+00:00 |
| rhsa-2023:3645 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.2.7 security update | 2023-06-15T20:55:50+00:00 | 2025-12-26T20:47:40+00:00 |
| rhsa-2023:3363 | Red Hat Security Advisory: OpenShift Container Platform 4.10.61 bug fix and security update | 2023-06-07T09:12:12+00:00 | 2025-12-26T20:47:40+00:00 |
| rhsa-2023:3309 | Red Hat Security Advisory: OpenShift Container Platform 4.11.42 bug fix and security update | 2023-05-31T12:01:26+00:00 | 2025-12-26T20:47:38+00:00 |
| rhsa-2023:3304 | Red Hat Security Advisory: OpenShift Container Platform 4.13.1 bug fix and security update | 2023-05-30T20:13:51+00:00 | 2025-12-26T20:47:38+00:00 |
| rhsa-2023:3287 | Red Hat Security Advisory: OpenShift Container Platform 4.12.19 bug fix and security update | 2023-05-31T08:24:34+00:00 | 2025-12-26T20:47:38+00:00 |
| rhsa-2023:1656 | Red Hat Security Advisory: OpenShift Container Platform 4.10.56 security update | 2023-04-12T11:42:14+00:00 | 2025-12-26T20:47:37+00:00 |
| rhsa-2023:1409 | Red Hat Security Advisory: OpenShift Container Platform 4.12.9 security update | 2023-03-27T11:59:48+00:00 | 2025-12-26T20:47:35+00:00 |
| rhsa-2023:1525 | Red Hat Security Advisory: OpenShift Container Platform 4.9.59 security update | 2023-04-05T23:06:58+00:00 | 2025-12-26T20:47:33+00:00 |
| rhsa-2023:1504 | Red Hat Security Advisory: OpenShift Container Platform 4.11.34 bug fix and security update | 2023-04-04T11:27:11+00:00 | 2025-12-26T20:47:33+00:00 |
| rhsa-2023:1392 | Red Hat Security Advisory: OpenShift Container Platform 4.10.55 security update | 2023-03-29T02:46:01+00:00 | 2025-12-26T20:47:31+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-16-070-02a | Honeywell Uniformance PHD Denial Of Service (Update A) | 2016-12-12T07:00:00.000000Z | 2025-06-05T21:38:22.775325Z |
| icsa-16-070-01 | Schneider Electric Telvent RTU Improper Ethernet Frame Padding Vulnerability | 2016-12-12T07:00:00.000000Z | 2025-06-05T21:38:16.518332Z |
| icsa-16-063-01 | Moxa ioLogik E2200 Series Weak Authentication Practices | 2016-12-05T07:00:00.000000Z | 2025-06-05T21:38:04.104993Z |
| icsa-16-061-03 | Eaton Lighting Systems EG2 Web Control Authentication Bypass Vulnerabilities | 2016-12-03T07:00:00.000000Z | 2025-06-05T21:37:51.714610Z |
| icsa-16-061-02 | Rockwell Automation Allen-Bradley CompactLogix Reflective Cross-Site Scripting Vulnerability (Update A) | 2016-12-03T07:00:00.000000Z | 2025-06-05T21:37:45.425599Z |
| icsa-16-061-01 | Schneider Electric Building Operation Automation Server Vulnerability | 2016-12-03T07:00:00.000000Z | 2025-06-05T21:37:39.217752Z |
| icsa-16-056-01 | Rockwell Automation Integrated Architecture Builder Access Violation Memory Error | 2016-11-28T07:00:00.000000Z | 2025-06-05T21:37:32.767943Z |
| icsa-16-049-02a | AMX Multiple Products Credential Management Vulnerabilities (Update A) | 2016-11-21T07:00:00.000000Z | 2025-06-05T21:37:20.275376Z |
| icsa-16-049-01 | B+B SmartWorx VESP211 Authentication Bypass Vulnerability | 2016-11-21T07:00:00.000000Z | 2025-06-05T21:37:14.043505Z |
| icsa-16-042-01a | Moxa EDR-G903 Secure Router Vulnerabilities (Update A) | 2016-11-14T07:00:00.000000Z | 2025-06-05T21:36:42.937829Z |
| icsa-16-040-02 | Siemens SIMATIC S7-1500 CPU Vulnerabilities | 2016-11-12T07:00:00.000000Z | 2025-06-05T21:36:30.466787Z |
| icsa-16-040-01 | Tollgrade SmartGrid Sensor Management System Software Vulnerabilities | 2016-11-12T07:00:00.000000Z | 2025-06-05T21:36:05.594352Z |
| icsa-16-033-02 | GE SNMP/Web Interface Vulnerabilities | 2016-11-05T06:00:00.000000Z | 2025-06-05T21:35:53.140871Z |
| icsa-16-033-01 | Sauter moduWeb Vision Vulnerabilities | 2016-11-05T06:00:00.000000Z | 2025-06-05T21:35:34.424132Z |
| icsa-16-028-01a | Westermo Industrial Switch Hard-coded Certificate Vulnerability (Update A) | 2016-10-31T06:00:00.000000Z | 2025-06-05T21:35:27.841677Z |
| icsa-25-155-01 | CyberData 011209 SIP Emergency Intercom | 2025-06-05T06:00:00.000000Z | 2025-06-05T06:00:00.000000Z |
| icsa-21-049-02 | Mitsubishi Electric FA Engineering Software Products (Update H) | 2021-02-18T07:00:00.000000Z | 2025-06-05T06:00:00.000000Z |
| icsa-25-153-03 | Mitsubishi Electric MELSEC iQ-F Series | 2025-06-03T06:00:00.000000Z | 2025-06-03T06:00:00.000000Z |
| icsa-25-153-01 | Schneider Electric Wiser Home Automation | 2025-06-03T06:00:00.000000Z | 2025-06-03T06:00:00.000000Z |
| icsma-25-148-01 | Santesoft Sante DICOM Viewer Pro | 2025-05-29T06:00:00.000000Z | 2025-05-29T06:00:00.000000Z |
| va-25-147-01 | Craft CMS stores user-provided content session files | 2025-05-28T20:57:43Z | 2025-05-28T20:57:43Z |
| va-25-148-01 | ZKTeco BioTime multiple vulnerabilities | 2025-05-28T15:28:55Z | 2025-05-28T15:28:55Z |
| icsa-25-160-02 | Hitachi Energy Relion 670 650 SAM600-IO Series | 2023-06-27T12:30:00.000000Z | 2025-05-27T12:30:00.000000Z |
| icsa-25-155-02 | Hitachi Energy Relion 670 650 series and SAM600-IO Product | 2021-12-16T13:30:00.000000Z | 2025-05-27T12:30:00.000000Z |
| icsa-25-133-02 | Hitachi Energy Relion 670/650/SAM600-IO Series (Update A) | 2023-11-28T13:30:00.000000Z | 2025-05-27T12:30:00.000000Z |
| icsa-23-089-01 | Hitachi Energy IEC 61850 MMS-Server | 2023-02-14T13:30:00.000000Z | 2025-05-27T12:30:00.000000Z |
| icsa-23-068-05 | Hitachi Energy Relion 670, 650 and SAM600-IO Series | 2023-02-28T13:30:00.000000Z | 2025-05-27T12:30:00.000000Z |
| icsa-21-336-05 | Hitachi Energy Relion 670/650/SAM600-IO | 2021-11-04T13:30:00.000000Z | 2025-05-27T12:30:00.000000Z |
| icsa-25-146-01 | Johnson Controls iSTAR Configuration Utility (ICU) tool | 2025-05-27T06:00:00.000000Z | 2025-05-27T06:00:00.000000Z |
| icsa-25-142-02 | Rockwell Automation FactoryTalk Historian ThingWorx | 2025-05-22T06:00:00.000000Z | 2025-05-22T06:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-cuic-infodisc-ssrf-84zbmwvk | Cisco Unified Intelligence Center Vulnerabilities | 2023-03-01T16:00:00+00:00 | 2023-03-01T16:00:00+00:00 |
| cisco-sa-cuic-infodisc-ssrf-84ZBmwVk | Cisco Unified Intelligence Center Vulnerabilities | 2023-03-01T16:00:00+00:00 | 2023-03-01T16:00:00+00:00 |
| cisco-sa-webex-app-qrto6yc2 | Cisco Webex Meetings App Character Interface Manipulation Vulnerability | 2022-09-07T16:00:00+00:00 | 2023-02-24T15:40:30+00:00 |
| cisco-sa-webex-app-qrtO6YC2 | Cisco Webex Meetings App Character Interface Manipulation Vulnerability | 2022-09-07T16:00:00+00:00 | 2023-02-24T15:40:30+00:00 |
| cisco-sa-nxos-x509v3-unsupportedconfig-scrtabuk | Cisco NX-OS Software SSH X.509v3 Certificate Authentication with Unsupported Remote Authorization Method Privilege Escalation Issues | 2023-02-22T16:00:00+00:00 | 2023-02-22T16:00:00+00:00 |
| cisco-sa-nxos-x509v3-unsupportedconfig-ScRtAbUk | Cisco NX-OS Software SSH X.509v3 Certificate Authentication with Unsupported Remote Authorization Method Privilege Escalation Issues | 2023-02-22T16:00:00+00:00 | 2023-02-22T16:00:00+00:00 |
| cisco-sa-nxos-cli-cmdinject-euqvk9u | Cisco NX-OS Software CLI Command Injection Vulnerability | 2023-02-22T16:00:00+00:00 | 2023-02-22T16:00:00+00:00 |
| cisco-sa-nxos-cli-cmdinject-euQVK9u | Cisco NX-OS Software CLI Command Injection Vulnerability | 2023-02-22T16:00:00+00:00 | 2023-02-22T16:00:00+00:00 |
| cisco-sa-nxfp-cmdinj-xxbzjtr | Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability | 2023-02-22T16:00:00+00:00 | 2023-02-22T16:00:00+00:00 |
| cisco-sa-nxfp-cmdinj-XXBZjtR | Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability | 2023-02-22T16:00:00+00:00 | 2023-02-22T16:00:00+00:00 |
| cisco-sa-elyfex-dos-gfvcbyx | Cisco Nexus 9300-FX3 Series Fabric Extender for UCS Fabric Interconnects Authentication Bypass Vulnerability | 2023-02-22T16:00:00+00:00 | 2023-02-22T16:00:00+00:00 |
| cisco-sa-elyfex-dos-gfvcByx | Cisco Nexus 9300-FX3 Series Fabric Extender for UCS Fabric Interconnects Authentication Bypass Vulnerability | 2023-02-22T16:00:00+00:00 | 2023-02-22T16:00:00+00:00 |
| cisco-sa-aci-lldp-dos-yscnzopx | Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability | 2023-02-22T16:00:00+00:00 | 2023-02-22T16:00:00+00:00 |
| cisco-sa-aci-lldp-dos-ySCNZOpX | Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability | 2023-02-22T16:00:00+00:00 | 2023-02-22T16:00:00+00:00 |
| cisco-sa-clamav-q8dthcy | ClamAV HFS+ Partition Scanning Buffer Overflow Vulnerability Affecting Cisco Products: February 2023 | 2023-02-15T16:00:00+00:00 | 2023-02-22T14:09:19+00:00 |
| cisco-sa-clamav-q8DThCy | ClamAV HFS+ Partition Scanning Buffer Overflow Vulnerability Affecting Cisco Products: February 2023 | 2023-02-15T16:00:00+00:00 | 2023-02-22T14:09:19+00:00 |
| cisco-sa-esa-sma-privesc-9dvkfpj8 | Cisco Email Security Appliance and Cisco Secure Email and Web Manager Vulnerabilities | 2023-02-15T16:00:00+00:00 | 2023-02-16T17:32:38+00:00 |
| cisco-sa-esa-sma-privesc-9DVkFpJ8 | Cisco Email Security Appliance and Cisco Secure Email and Web Manager Vulnerabilities | 2023-02-15T16:00:00+00:00 | 2023-02-16T17:32:38+00:00 |
| cisco-sa-clamav-xxe-tcszduhn | ClamAV DMG File Parsing XML Entity Expansion Vulnerability Affecting Cisco Products: February 2023 | 2023-02-15T16:00:00+00:00 | 2023-02-15T20:15:58+00:00 |
| cisco-sa-clamav-xxe-TcSZduhN | ClamAV DMG File Parsing XML Entity Expansion Vulnerability Affecting Cisco Products: February 2023 | 2023-02-15T16:00:00+00:00 | 2023-02-15T20:15:58+00:00 |
| cisco-sa-nexus-dashboard-xss-xc5bcgsq | Cisco Nexus Dashboard Cross-Site Scripting Vulnerability | 2023-02-15T16:00:00+00:00 | 2023-02-15T16:00:00+00:00 |
| cisco-sa-nexus-dashboard-xss-xc5BcgsQ | Cisco Nexus Dashboard Cross-Site Scripting Vulnerability | 2023-02-15T16:00:00+00:00 | 2023-02-15T16:00:00+00:00 |
| cisco-sa-ndb-dnsdos-bysczosu | Cisco Nexus Dashboard Denial of Service Vulnerability | 2023-02-15T16:00:00+00:00 | 2023-02-15T16:00:00+00:00 |
| cisco-sa-ndb-dnsdos-bYscZOsu | Cisco Nexus Dashboard Denial of Service Vulnerability | 2023-02-15T16:00:00+00:00 | 2023-02-15T16:00:00+00:00 |
| cisco-sa-ise-xss-ubfhg75c | Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability | 2023-02-15T16:00:00+00:00 | 2023-02-15T16:00:00+00:00 |
| cisco-sa-ise-xss-ubfHG75C | Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability | 2023-02-15T16:00:00+00:00 | 2023-02-15T16:00:00+00:00 |
| cisco-sa-esa-url-bypass-wbmqqnjh | Cisco Email Security Appliance URL Filtering Bypass Vulnerability | 2023-01-18T16:00:00+00:00 | 2023-02-13T15:30:30+00:00 |
| cisco-sa-esa-url-bypass-WbMQqNJh | Cisco Email Security Appliance URL Filtering Bypass Vulnerability | 2023-01-18T16:00:00+00:00 | 2023-02-13T15:30:30+00:00 |
| cisco-sa-java-spring-rce-zx9guc67 | Vulnerability in Spring Framework Affecting Cisco Products: March 2022 | 2022-04-01T23:45:00+00:00 | 2023-02-09T15:14:14+00:00 |
| cisco-sa-java-spring-rce-Zx9GUc67 | Vulnerability in Spring Framework Affecting Cisco Products: March 2022 | 2022-04-01T23:45:00+00:00 | 2023-02-09T15:14:14+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-49955 | powerpc/rtas: Fix RTAS MSR[HV] handling for Cell | 2025-06-02T00:00:00.000Z | 2025-11-25T01:35:40.000Z |
| msrc_cve-2022-50002 | net/mlx5: LAG, fix logic over MLX5_LAG_FLAG_NDEVS_READY | 2025-06-02T00:00:00.000Z | 2025-11-25T01:35:35.000Z |
| msrc_cve-2024-49761 | REXML ReDoS vulnerability | 2024-10-01T07:00:00.000Z | 2025-11-25T01:35:17.000Z |
| msrc_cve-2018-14040 | In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attributeIn Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute | 2018-07-02T00:00:00.000Z | 2025-11-25T01:01:37.000Z |
| msrc_cve-2025-38127 | ice: fix Tx scheduler error handling in XDP callback | 2025-07-02T00:00:00.000Z | 2025-11-22T01:01:52.000Z |
| msrc_cve-2025-38117 | Bluetooth: MGMT: Protect mgmt_pending list with its own lock | 2025-07-02T00:00:00.000Z | 2025-11-22T01:01:42.000Z |
| msrc_cve-2025-38105 | ALSA: usb-audio: Kill timer properly at removal | 2025-07-02T00:00:00.000Z | 2025-11-22T01:01:36.000Z |
| msrc_cve-2025-59286 | Copilot Spoofing Vulnerability | 2025-10-14T07:00:00.000Z | 2025-11-21T08:00:00.000Z |
| msrc_cve-2025-59272 | Copilot Spoofing Vulnerability | 2025-10-14T07:00:00.000Z | 2025-11-21T08:00:00.000Z |
| msrc_cve-2025-59252 | M365 Copilot Spoofing Vulnerability | 2025-10-14T07:00:00.000Z | 2025-11-21T08:00:00.000Z |
| msrc_cve-2025-54114 | Windows Connected Devices Platform Service Elevation of Privilege Vulnerability | 2025-09-09T07:00:00.000Z | 2025-11-21T08:00:00.000Z |
| msrc_cve-2025-49752 | Azure Bastion Elevation of Privilege Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-21T08:00:00.000Z |
| msrc_cve-2025-54770 | Grub2: use-after-free in net_set_vlan | 2025-11-02T00:00:00.000Z | 2025-11-21T01:03:27.000Z |
| msrc_cve-2025-54771 | Grub2: use-after-free in grub_file_close() | 2025-11-02T00:00:00.000Z | 2025-11-21T01:03:19.000Z |
| msrc_cve-2025-38449 | drm/gem: Acquire references on GEM handles for framebuffers | 2025-07-02T00:00:00.000Z | 2025-11-21T01:02:39.000Z |
| msrc_cve-2025-38436 | drm/scheduler: signal scheduled fence when kill job | 2025-07-02T00:00:00.000Z | 2025-11-21T01:02:29.000Z |
| msrc_cve-2025-38408 | genirq/irq_sim: Initialize work context pointers properly | 2025-07-02T00:00:00.000Z | 2025-11-21T01:02:19.000Z |
| msrc_cve-2025-38250 | Bluetooth: hci_core: Fix use-after-free in vhci_flush() | 2025-07-02T00:00:00.000Z | 2025-11-21T01:02:14.000Z |
| msrc_cve-2025-38192 | net: clear the dst when changing skb protocol | 2025-07-02T00:00:00.000Z | 2025-11-21T01:02:04.000Z |
| msrc_cve-2022-50233 | Bluetooth: eir: Fix using strlen with hdev->{dev_name,short_name} | 2025-08-02T00:00:00.000Z | 2025-11-21T01:01:41.000Z |
| msrc_cve-2022-50230 | arm64: set UXN on swapper page tables | 2025-06-02T00:00:00.000Z | 2025-11-21T01:01:34.000Z |
| msrc_cve-2022-50224 | KVM: x86/mmu: Treat NX as a valid SPTE bit for NPT | 2025-06-02T00:00:00.000Z | 2025-11-21T01:01:30.000Z |
| msrc_cve-2025-64657 | Azure Application Gateway Elevation of Privilege Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-64656 | Application Gateway Elevation of Privilege Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-64655 | Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-62459 | Microsoft Defender Portal Spoofing Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-62207 | Azure Monitor Elevation of Privilege Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-59245 | Microsoft SharePoint Online Elevation of Privilege Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-54099 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | 2025-09-09T07:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-38544 | rxrpc: Fix bug due to prealloc collision | 2025-08-02T00:00:00.000Z | 2025-11-20T01:02:43.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202006-1824 | FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between seriali… | 2024-07-23T20:14:56.331000Z |
| var-201909-1526 | There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the … | 2024-07-23T20:14:55.872000Z |
| var-201110-0451 | The ospf6_lsa_is_changed function in ospf6_lsa.c in the OSPFv3 implementation in ospf6d i… | 2024-07-23T20:14:55.799000Z |
| var-200803-0027 | KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message type… | 2024-07-23T20:14:54.642000Z |
| var-200611-0471 | Integer overflow in the fatfile_getarch2 in Apple Mac OS X allows local users to cause a … | 2024-07-23T20:14:50.515000Z |
| var-201110-0393 | Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK… | 2024-07-23T20:14:49.325000Z |
| var-200807-0061 | Safari on Apple iPhone before 2.0 and iPod touch before 2.0 misinterprets a menu button p… | 2024-07-23T20:14:49.143000Z |
| var-202010-1265 | A command injection issue existed in Web Inspector. This issue was addressed with improve… | 2024-07-23T20:14:13.271000Z |
| var-201912-0605 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T20:13:35.955000Z |
| var-201912-0125 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T20:13:35.008000Z |
| var-201205-0305 | sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI… | 2024-07-23T20:13:35.528000Z |
| var-202002-1478 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T20:13:29.090000Z |
| var-200608-0038 | Unspecified vulnerability in AFP Server in Apple Mac OS X 10.3.9 allows remote attackers … | 2024-07-23T20:13:26.513000Z |
| var-201108-0185 | Integer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and… | 2024-07-23T20:13:20.068000Z |
| var-200909-0399 | The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass inte… | 2024-07-23T20:13:19.191000Z |
| var-200608-0031 | Stack-based buffer overflow in bootpd in the DHCP component for Apple Mac OS X 10.3.9 and… | 2024-07-23T20:13:19.005000Z |
| var-201304-0378 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … | 2024-07-23T20:13:17.085000Z |
| var-201202-0072 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … | 2024-07-23T20:13:17.350000Z |
| var-200408-0145 | TCP, when using a large Window Size, makes it easier for remote attackers to guess sequen… | 2024-07-23T20:13:17.983000Z |
| var-202108-2072 | A race condition was addressed with improved locking. This issue is fixed in Security Upd… | 2024-07-23T20:13:16.701000Z |
| var-200808-0154 | Directory traversal vulnerability in Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.… | 2024-07-23T20:13:16.218000Z |
| var-201801-1711 | Systems with microprocessors utilizing speculative execution and indirect branch predicti… | 2024-07-23T20:13:15.740000Z |
| var-201106-0192 | The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.… | 2024-07-23T20:13:11.130000Z |
| var-202010-0251 | In Network Security Services (NSS) before 3.46, several cryptographic primitives had miss… | 2024-07-23T20:13:10.179000Z |
| var-201706-0334 | glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to ma… | 2024-07-23T20:13:10.518000Z |
| var-201904-0747 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T20:13:09.792000Z |
| var-201912-0602 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T20:13:04.684000Z |
| var-201109-0200 | Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers… | 2024-07-23T20:13:03.972000Z |
| var-200609-1413 | The Online Certificate Status Protocol (OCSP) service in the Security Framework in Apple … | 2024-07-23T20:13:03.726000Z |
| var-202101-1926 | Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer o… | 2024-07-23T20:13:02.874000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2020-000060 | "Shadankun Server Security Type" vulnerable to denial-of-service (DoS) | 2020-08-31T14:41+09:00 | 2020-08-31T14:41+09:00 |
| jvndb-2020-000056 | Multiple NETGEAR switching hubs vulnerable to cross-site request forgery | 2020-08-28T15:33+09:00 | 2020-08-28T15:33+09:00 |
| jvndb-2020-000058 | Multiple vulnerabilities in XOOPS module "XooNIps" | 2020-08-27T15:37+09:00 | 2020-08-27T15:37+09:00 |
| jvndb-2020-000057 | NITORI App fails to restrict access permissions | 2020-08-26T15:34+09:00 | 2020-08-26T15:34+09:00 |
| jvndb-2020-000054 | Multiple cross-site scripting vulnerabilities in Exment | 2020-08-21T14:34+09:00 | 2020-08-21T14:34+09:00 |
| jvndb-2020-000053 | Multiple vulnerabilities in CyberMail | 2020-08-11T14:20+09:00 | 2020-08-11T14:20+09:00 |
| jvndb-2020-007128 | DoS Vulnerability in HiRDB | 2020-08-03T16:37+09:00 | 2020-08-03T16:37+09:00 |
| jvndb-2020-007127 | Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center | 2020-08-03T16:36+09:00 | 2020-08-03T16:36+09:00 |
| jvndb-2020-000052 | SKYSEA Client View vulnerable to privilege escalation | 2020-08-03T14:59+09:00 | 2020-08-03T14:59+09:00 |
| jvndb-2020-000051 | Multiple vulnerabilities in multiple PHP Factory products | 2020-07-31T16:29+09:00 | 2020-07-31T16:29+09:00 |
| jvndb-2020-000050 | FANUC i Series CNC vulnerable to denial-of-service (DoS) | 2020-07-31T14:29+09:00 | 2020-07-31T14:29+09:00 |
| jvndb-2020-000047 | JavaFX WebEngine does not properly restrict Java method execution | 2020-07-28T15:47+09:00 | 2020-07-28T15:47+09:00 |
| jvndb-2020-000048 | Multiple vulnerabilities in KonaWiki2 and KonaWiki3 | 2020-07-28T15:38+09:00 | 2020-07-28T15:38+09:00 |
| jvndb-2020-000046 | WordPress Plugin "Social Sharing Plugin" vulnerable to cross-site request forgery | 2020-07-22T14:24+09:00 | 2020-07-22T14:24+09:00 |
| jvndb-2020-006617 | Cross-site Scripting Vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer | 2020-07-14T10:40+09:00 | 2020-07-14T10:40+09:00 |
| jvndb-2020-006586 | Server Side Request Forgery Vulnerability in Hitachi Ops Center Analyzer viewpoint | 2020-07-13T14:25+09:00 | 2020-07-13T14:25+09:00 |
| jvndb-2020-006469 | Multiple vulnerabilities in TCP/IP function on Mitsubishi Electric GOT2000 series | 2020-07-09T15:46+09:00 | 2020-07-09T15:46+09:00 |
| jvndb-2020-000045 | SHIRASAGI vulnerable to open redirect | 2020-07-09T15:08+09:00 | 2020-07-09T15:08+09:00 |
| jvndb-2020-000043 | Android App "Mercari" (Japan version) vulnerable to arbitrary method execution of the Java object | 2020-07-08T16:04+09:00 | 2020-07-08T16:04+09:00 |
| jvndb-2020-000042 | Multiple vulnerabilities in Cybozu Garoon | 2020-06-29T16:17+09:00 | 2020-06-29T16:17+09:00 |
| jvndb-2020-006031 | DoS Vulnerability in Hitachi Device Manager | 2020-06-29T12:25+09:00 | 2020-06-29T12:25+09:00 |
| jvndb-2019-000056 | Panasonic Video Insight VMS vulnerable to SQL injection | 2019-09-02T13:57+09:00 | 2020-06-26T12:27+09:00 |
| jvndb-2020-000032 | Panasonic Video Insight VMS vulnerable to arbitrary code execution | 2020-05-19T16:04+09:00 | 2020-06-26T12:19+09:00 |
| jvndb-2020-000040 | Chrome Extension for e-Tax Reception System vulnerable to arbitrary command execution | 2020-06-24T14:25+09:00 | 2020-06-24T14:25+09:00 |
| jvndb-2020-005854 | Mitsubishi Electric MELSEC iQ-R, iQ-F, Q, L, and FX series vulnerable to cleartext transmission of sensitive information | 2020-06-24T10:32+09:00 | 2020-06-24T10:32+09:00 |
| jvndb-2020-005743 | Vulnerability in Cosminexus HTTP Server | 2020-06-22T15:40+09:00 | 2020-06-22T15:40+09:00 |
| jvndb-2020-000039 | EC-CUBE vulnerable to directory traversal | 2020-06-18T13:48+09:00 | 2020-06-18T13:48+09:00 |
| jvndb-2020-005443 | Path Traversal Vulnerability in Hitachi Automation Director and Hitachi Ops Center Automator | 2020-06-15T16:29+09:00 | 2020-06-15T16:29+09:00 |
| jvndb-2020-000038 | Multiple vulnerabilities in Zenphoto | 2020-06-11T17:17+09:00 | 2020-06-11T17:17+09:00 |
| jvndb-2020-000037 | Multiple SONY Wireless Headphones allow improper Bluetooth pairing | 2020-06-09T15:49+09:00 | 2020-06-09T15:49+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:03266-1 | Security update for avahi | 2025-09-18T10:35:27Z | 2025-09-18T10:35:27Z |
| suse-su-2025:03262-1 | Security update for java-1_8_0-ibm | 2025-09-18T06:42:05Z | 2025-09-18T06:42:05Z |
| suse-su-2025:03261-1 | Security update for cups | 2025-09-18T04:35:34Z | 2025-09-18T04:35:34Z |
| suse-su-2025:03260-1 | Security update for net-tools | 2025-09-18T00:09:50Z | 2025-09-18T00:09:50Z |
| suse-su-2025:03257-1 | Security update for raptor | 2025-09-17T19:01:57Z | 2025-09-17T19:01:57Z |
| suse-su-2025:20783-1 | Security update for sevctl | 2025-09-17T11:34:38Z | 2025-09-17T11:34:38Z |
| suse-su-2025:20750-1 | Security update for pam | 2025-09-17T11:31:17Z | 2025-09-17T11:31:17Z |
| suse-su-2025:03247-1 | Security update for nvidia-open-driver-G06-signed | 2025-09-17T11:11:37Z | 2025-09-17T11:11:37Z |
| suse-su-2025:03246-1 | Security update for nvidia-open-driver-G06-signed | 2025-09-17T11:11:22Z | 2025-09-17T11:11:22Z |
| suse-su-2025:03245-1 | Security update for net-tools | 2025-09-17T10:55:16Z | 2025-09-17T10:55:16Z |
| suse-su-2025:03244-1 | Security update for raptor | 2025-09-17T10:52:12Z | 2025-09-17T10:52:12Z |
| suse-su-2025:03240-1 | Security update for vim | 2025-09-16T19:57:09Z | 2025-09-16T19:57:09Z |
| suse-su-2025:03239-1 | Security update for expat | 2025-09-16T17:04:04Z | 2025-09-16T17:04:04Z |
| suse-su-2025:03237-1 | Security update for libavif | 2025-09-16T10:05:02Z | 2025-09-16T10:05:02Z |
| suse-su-2025:03236-1 | Security update for java-1_8_0-ibm | 2025-09-16T09:11:36Z | 2025-09-16T09:11:36Z |
| suse-su-2025:20717-1 | Security update for rust-keylime | 2025-09-16T07:50:08Z | 2025-09-16T07:50:08Z |
| suse-su-2025:20749-1 | Security update for python311 | 2025-09-16T06:57:40Z | 2025-09-16T06:57:40Z |
| suse-su-2025:20748-1 | Security update for gdk-pixbuf | 2025-09-16T06:29:08Z | 2025-09-16T06:29:08Z |
| suse-su-2025:20747-1 | Security update for net-tools | 2025-09-16T06:28:45Z | 2025-09-16T06:28:45Z |
| suse-su-2025:03235-1 | Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP6) | 2025-09-15T14:06:01Z | 2025-09-15T14:06:01Z |
| suse-su-2025:03234-1 | Security update for rabbitmq-server313 | 2025-09-15T13:23:34Z | 2025-09-15T13:23:34Z |
| suse-su-2025:03233-1 | Security update for pcp | 2025-09-15T13:16:54Z | 2025-09-15T13:16:54Z |
| suse-su-2025:03227-1 | Security update for krb5 | 2025-09-15T12:33:26Z | 2025-09-15T12:33:26Z |
| suse-su-2025:03226-1 | Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP6) | 2025-09-15T12:06:04Z | 2025-09-15T12:06:04Z |
| suse-su-2025:03225-1 | Security update for cups-filters | 2025-09-15T11:38:52Z | 2025-09-15T11:38:52Z |
| suse-su-2025:03224-1 | Security update for java-1_8_0-openjdk | 2025-09-15T11:37:25Z | 2025-09-15T11:37:25Z |
| suse-su-2025:03223-1 | Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP6) | 2025-09-15T11:36:37Z | 2025-09-15T11:36:37Z |
| suse-su-2025:03221-1 | Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP7) | 2025-09-15T09:36:00Z | 2025-09-15T09:36:00Z |
| suse-su-2025:03222-1 | Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP7) | 2025-09-15T09:35:45Z | 2025-09-15T09:35:45Z |
| suse-su-2025:03219-1 | Security update for jasper | 2025-09-15T09:19:16Z | 2025-09-15T09:19:16Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2025:14936-1 | ffmpeg-4-4.4.5-9.1 on GA media | 2025-03-28T00:00:00Z | 2025-03-28T00:00:00Z |
| opensuse-su-2025:14935-1 | exim-4.98.2-1.1 on GA media | 2025-03-28T00:00:00Z | 2025-03-28T00:00:00Z |
| opensuse-su-2025:14934-1 | 389-ds-3.1.2~git55.7fbd4526-1.1 on GA media | 2025-03-28T00:00:00Z | 2025-03-28T00:00:00Z |
| opensuse-su-2025:14933-1 | corosync-3.1.9-2.1 on GA media | 2025-03-27T00:00:00Z | 2025-03-27T00:00:00Z |
| opensuse-su-2025:14932-1 | qubesome-0.0.10-1.1 on GA media | 2025-03-26T00:00:00Z | 2025-03-26T00:00:00Z |
| opensuse-su-2025:14931-1 | icingacli-2.12.4-1.1 on GA media | 2025-03-26T00:00:00Z | 2025-03-26T00:00:00Z |
| opensuse-su-2025:14930-1 | git-bug-0.8.0+git.1742269202.0ab94c9-1.1 on GA media | 2025-03-26T00:00:00Z | 2025-03-26T00:00:00Z |
| opensuse-su-2025:14929-1 | apache-commons-vfs2-2.10.0-1.1 on GA media | 2025-03-26T00:00:00Z | 2025-03-26T00:00:00Z |
| opensuse-su-2025:14928-1 | libmbedcrypto7-2.28.10-1.1 on GA media | 2025-03-25T00:00:00Z | 2025-03-25T00:00:00Z |
| opensuse-su-2025:14927-1 | kubernetes1.32-apiserver-1.32.3-1.1 on GA media | 2025-03-25T00:00:00Z | 2025-03-25T00:00:00Z |
| opensuse-su-2025:14926-1 | kubernetes1.31-apiserver-1.31.7-1.1 on GA media | 2025-03-25T00:00:00Z | 2025-03-25T00:00:00Z |
| opensuse-su-2025:14925-1 | kubernetes1.30-apiserver-1.30.11-1.1 on GA media | 2025-03-25T00:00:00Z | 2025-03-25T00:00:00Z |
| opensuse-su-2025:14924-1 | kubernetes1.29-apiserver-1.29.15-1.1 on GA media | 2025-03-25T00:00:00Z | 2025-03-25T00:00:00Z |
| opensuse-su-2025:14923-1 | docker-stable-24.0.9_ce-8.1 on GA media | 2025-03-25T00:00:00Z | 2025-03-25T00:00:00Z |
| opensuse-su-2025:14922-1 | chromedriver-134.0.6998.117-1.1 on GA media | 2025-03-25T00:00:00Z | 2025-03-25T00:00:00Z |
| opensuse-su-2025:14921-1 | argocd-cli-2.14.8-1.1 on GA media | 2025-03-25T00:00:00Z | 2025-03-25T00:00:00Z |
| opensuse-su-2025:0103-1 | Security update for cadvisor | 2025-03-24T17:01:45Z | 2025-03-24T17:01:45Z |
| opensuse-su-2025:14920-1 | gitleaks-8.24.2-1.1 on GA media | 2025-03-24T00:00:00Z | 2025-03-24T00:00:00Z |
| opensuse-su-2025:14919-1 | forgejo-10.0.3-1.1 on GA media | 2025-03-24T00:00:00Z | 2025-03-24T00:00:00Z |
| opensuse-su-2025:0101-1 | Security update for radare2 | 2025-03-23T15:01:53Z | 2025-03-23T15:01:53Z |
| opensuse-su-2025:0098-1 | Security update for chromium | 2025-03-22T10:55:25Z | 2025-03-22T10:55:25Z |
| opensuse-su-2025:14918-1 | warewulf4-4.6.0-2.1 on GA media | 2025-03-21T00:00:00Z | 2025-03-21T00:00:00Z |
| opensuse-su-2025:14917-1 | nodejs-electron-33.4.6-1.1 on GA media | 2025-03-21T00:00:00Z | 2025-03-21T00:00:00Z |
| opensuse-su-2025:0094-1 | Security update for gitea-tea | 2025-03-20T13:01:19Z | 2025-03-20T13:01:19Z |
| opensuse-su-2025:14916-1 | xorg-x11-server-21.1.15-3.1 on GA media | 2025-03-20T00:00:00Z | 2025-03-20T00:00:00Z |
| opensuse-su-2025:14915-1 | tomcat10-10.1.39-1.1 on GA media | 2025-03-20T00:00:00Z | 2025-03-20T00:00:00Z |
| opensuse-su-2025:14914-1 | python311-joblib-1.4.2-2.1 on GA media | 2025-03-20T00:00:00Z | 2025-03-20T00:00:00Z |
| opensuse-su-2025:14913-1 | python311-Django-5.1.7-1.1 on GA media | 2025-03-20T00:00:00Z | 2025-03-20T00:00:00Z |
| opensuse-su-2025:14912-1 | mercurial-6.9.4-1.1 on GA media | 2025-03-20T00:00:00Z | 2025-03-20T00:00:00Z |
| opensuse-su-2025:14911-1 | tomcat-9.0.102-1.1 on GA media | 2025-03-19T00:00:00Z | 2025-03-19T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-29072 | Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4存在未明漏洞(CNVD-2025-29072) | 2025-11-05 | 2025-11-20 |
| cnvd-2025-29071 | Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4存在未明漏洞(CNVD-2025-29071) | 2025-11-05 | 2025-11-20 |
| cnvd-2025-28950 | Simple Cafe Ordering System portal.php文件SQL注入漏洞 | 2025-08-20 | 2025-11-20 |
| cnvd-2025-28949 | Simple Cafe Ordering System login.php文件SQL注入漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28948 | Simple Cafe Ordering System add_to_cart文件跨站脚本漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28947 | Simple Cafe Ordering System addmem.php文件SQL注入漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28946 | Student Information System searchquery.php文件SQL注入漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28944 | Student Information System /index.php文件SQL注入漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28943 | Student Information System register.php文件SQL注入漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28942 | Student Information System /editprofile.php文件SQL注入漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28941 | Student Information System register.php跨站脚本漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28940 | Student Information System editprofile.php文件跨站脚本漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28838 | WordPress Payments Braintree For WooCommerce plugin授权绕过漏洞 | 2025-11-14 | 2025-11-20 |
| cnvd-2025-28837 | WordPress Easy Email Subscription plugin跨站脚本漏洞 | 2025-11-14 | 2025-11-20 |
| cnvd-2025-28836 | WordPress Asgaros Forum plugin跨站请求伪造漏洞 | 2025-11-14 | 2025-11-20 |
| cnvd-2025-28835 | WordPress Theater for WordPress plugin缺少授权漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28834 | WordPress Survey Maker plugin缺少能力检查漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28833 | WordPress Survey Maker plugin缺少授权漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28832 | WordPress Survey Maker plugin未授权访问漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28831 | WordPress SureForms plugin信息泄露漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28830 | WordPress Save as PDF Button plugin跨站脚本漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28829 | WordPress quicq plugin缺少能力检查漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28828 | WordPress Qi Blocks plugin跨站脚本漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28827 | WordPress Popup addon for Ninja Forms plugin跨站脚本漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28826 | WordPress Frontend File Manager Plugin缺少授权漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28825 | WordPress Data Tables Generator by Supsystic plugin任意文件删除漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28824 | WordPress Contact Form Email plugin缺少授权漏洞 | 2025-11-18 | 2025-11-20 |
| cnvd-2025-28721 | Mozilla Firefox缓冲区溢出漏洞(CNVD-2025-28721) | 2025-11-14 | 2025-11-20 |
| cnvd-2025-28720 | Mozilla Firefox代码执行漏洞(CNVD-2025-28720) | 2025-11-14 | 2025-11-20 |
| cnvd-2025-28719 | Mozilla Firefox和Firefox ESR安全绕过漏洞(CNVD-2025-28719) | 2025-11-14 | 2025-11-20 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2025-AVI-0642 | Multiples vulnérabilités dans Apple Safari | 2025-07-31T00:00:00.000000 | 2025-07-31T00:00:00.000000 |
| CERTFR-2025-AVI-0641 | Multiples vulnérabilités dans les produits Splunk | 2025-07-31T00:00:00.000000 | 2025-07-31T00:00:00.000000 |
| CERTFR-2025-AVI-0640 | Multiples vulnérabilités dans les produits Apple | 2025-07-30T00:00:00.000000 | 2025-07-31T00:00:00.000000 |
| certfr-2025-avi-0639 | Multiples vulnérabilités dans Google Chrome | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| certfr-2025-avi-0638 | Vulnérabilité dans les produits Sonicwall | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| certfr-2025-avi-0637 | Vulnérabilité dans SolarWinds Web Help Desk | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| certfr-2025-avi-0636 | Multiples vulnérabilités dans les produits Elastic | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| certfr-2025-avi-0635 | Vulnérabilité dans VMware vCenter | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| certfr-2025-avi-0634 | Vulnérabilité dans Python | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| certfr-2025-avi-0633 | Vulnérabilité dans Tenable Patch Management | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| certfr-2025-avi-0632 | Multiples vulnérabilités dans GLPI | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| CERTFR-2025-AVI-0639 | Multiples vulnérabilités dans Google Chrome | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| CERTFR-2025-AVI-0638 | Vulnérabilité dans les produits Sonicwall | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| CERTFR-2025-AVI-0637 | Vulnérabilité dans SolarWinds Web Help Desk | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| CERTFR-2025-AVI-0636 | Multiples vulnérabilités dans les produits Elastic | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| CERTFR-2025-AVI-0635 | Vulnérabilité dans VMware vCenter | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| CERTFR-2025-AVI-0634 | Vulnérabilité dans Python | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| CERTFR-2025-AVI-0633 | Vulnérabilité dans Tenable Patch Management | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| CERTFR-2025-AVI-0632 | Multiples vulnérabilités dans GLPI | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| certfr-2025-avi-0631 | Vulnérabilité dans SolarWinds SWOSH | 2025-07-29T00:00:00.000000 | 2025-07-29T00:00:00.000000 |
| certfr-2025-avi-0630 | Vulnérabilité dans Palo Alto Networks GlobalProtect App | 2025-07-29T00:00:00.000000 | 2025-07-29T00:00:00.000000 |
| CERTFR-2025-AVI-0631 | Vulnérabilité dans SolarWinds SWOSH | 2025-07-29T00:00:00.000000 | 2025-07-29T00:00:00.000000 |
| CERTFR-2025-AVI-0630 | Vulnérabilité dans Palo Alto Networks GlobalProtect App | 2025-07-29T00:00:00.000000 | 2025-07-29T00:00:00.000000 |
| certfr-2025-avi-0629 | Multiples vulnérabilités dans Microsoft Edge | 2025-07-28T00:00:00.000000 | 2025-07-28T00:00:00.000000 |
| certfr-2025-avi-0628 | Multiples vulnérabilités dans Synology BeeDrive | 2025-07-28T00:00:00.000000 | 2025-07-28T00:00:00.000000 |
| CERTFR-2025-AVI-0629 | Multiples vulnérabilités dans Microsoft Edge | 2025-07-28T00:00:00.000000 | 2025-07-28T00:00:00.000000 |
| CERTFR-2025-AVI-0628 | Multiples vulnérabilités dans Synology BeeDrive | 2025-07-28T00:00:00.000000 | 2025-07-28T00:00:00.000000 |
| certfr-2025-avi-0627 | Multiples vulnérabilités dans les produits IBM | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0626 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0625 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |