Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-60244 |
7.1 (3.1)
|
WordPress TableOn plugin <= 1.0.4.2 - Content Injectio… |
RealMag777 |
TableOn |
2025-11-06T15:55:18.193Z | 2026-01-20T14:28:12.860Z |
| CVE-2025-60243 |
9.8 (3.1)
|
WordPress Selling Commander for WooCommerce plugin <= … |
Holest Engineering |
Selling Commander for WooCommerce |
2025-11-06T15:55:15.782Z | 2026-01-20T14:28:12.895Z |
| CVE-2025-60242 |
7.5 (3.1)
|
WordPress Download Counter plugin <= 1.4 - Arbitrary F… |
Anatoly |
Download Counter |
2025-11-06T15:55:14.917Z | 2026-01-20T14:28:12.776Z |
| CVE-2025-60241 |
7.5 (3.1)
|
WordPress Premmerce plugin <= 1.3.19 - Local File Incl… |
Premmerce |
Premmerce |
2025-11-06T15:55:13.362Z | 2026-01-20T14:28:12.936Z |
| CVE-2025-60240 |
7.5 (3.1)
|
WordPress AnyComment plugin <= 0.3.6 - Local File Incl… |
Alexander |
AnyComment |
2025-11-06T15:55:10.324Z | 2026-01-20T14:28:12.866Z |
| CVE-2025-60239 |
8.5 (3.1)
|
WordPress CoSchool LMS plugin <= 1.4.3 - SQL Injection… |
Codexpert, Inc |
CoSchool LMS |
2025-11-06T15:55:09.493Z | 2026-01-20T14:28:12.963Z |
| CVE-2025-60238 |
9.8 (3.1)
|
WordPress UNIVERSAM plugin <= 8.72.34 - PHP Object Inj… |
universam |
UNIVERSAM |
2025-10-22T14:32:47.058Z | 2026-01-20T14:28:12.553Z |
| CVE-2025-60235 |
10 (3.1)
|
WordPress Helpdesk Support Ticket System for WooCommer… |
Plugify |
Helpdesk Support Ticket System for WooCommerce |
2025-11-06T15:55:07.928Z | 2026-01-20T14:28:12.539Z |
| CVE-2025-60234 |
8.8 (3.1)
|
WordPress Single Property theme <= 2.8 - PHP Object In… |
designthemes |
Single Property |
2025-10-22T14:32:46.860Z | 2026-01-20T14:28:12.552Z |
| CVE-2025-60232 |
9.8 (3.1)
|
WordPress KBx Pro Ultimate plugin <= 8.0.5 - PHP Objec… |
quantumcloud |
KBx Pro Ultimate |
2025-10-22T14:32:46.670Z | 2026-01-20T14:28:12.559Z |
| CVE-2025-60228 |
8.8 (3.1)
|
WordPress Knowledge Base theme <= 2.9 - PHP Object Inj… |
designthemes |
Knowledge Base |
2025-10-22T14:32:46.487Z | 2026-01-20T14:28:12.451Z |
| CVE-2025-60227 |
8.6 (3.1)
|
WordPress WP Pipes plugin <= 1.4.3 - Arbitrary File De… |
ThimPress |
WP Pipes |
2025-10-22T14:32:46.277Z | 2026-01-20T14:28:12.468Z |
| CVE-2025-60226 |
9.8 (3.1)
|
WordPress White Rabbit theme <= 1.5.2 - PHP Object Inj… |
axiomthemes |
White Rabbit |
2025-10-22T14:32:46.090Z | 2026-01-20T14:28:12.467Z |
| CVE-2025-60225 |
9.8 (3.1)
|
WordPress BugsPatrol theme <= 1.5.0 - PHP Object Injec… |
AncoraThemes |
BugsPatrol |
2025-10-22T14:32:45.876Z | 2026-01-20T14:28:12.508Z |
| CVE-2025-60224 |
9.8 (3.1)
|
WordPress Subscribe to Download plugin <= 2.0.9 - PHP … |
wpshuffle |
Subscribe to Download |
2025-10-22T14:32:45.675Z | 2026-01-20T14:28:12.485Z |
| CVE-2025-60222 |
8.8 (3.1)
|
WordPress SUMO Memberships for WooCommerce plugin <= 7… |
FantasticPlugins |
SUMO Memberships for WooCommerce |
2025-10-22T14:32:45.465Z | 2026-01-20T14:28:12.484Z |
| CVE-2025-60221 |
9.8 (3.1)
|
WordPress Captivate Sync Plugin <= 3.0.3 - PHP Object … |
captivateaudio |
Captivate Sync |
2025-10-22T14:32:45.187Z | 2026-01-20T14:28:12.492Z |
| CVE-2025-60220 |
9.8 (3.1)
|
WordPress CouponXxL theme <= 3.0.0 - Privilege Escalat… |
pebas |
CouponXxL |
2025-10-22T14:32:44.897Z | 2026-01-20T14:28:12.413Z |
| CVE-2025-60217 |
7.7 (3.1)
|
WordPress PT Luxa Addons Plugin <= 1.2.2 - Arbitrary F… |
ypromo |
PT Luxa Addons |
2025-10-22T14:32:44.691Z | 2026-01-20T14:28:12.511Z |
| CVE-2025-60216 |
9.8 (3.1)
|
WordPress Addison theme <= 1.4.2 - PHP Object Injectio… |
BoldThemes |
Addison |
2025-10-22T14:32:44.405Z | 2026-01-20T14:28:12.460Z |
| CVE-2025-60215 |
8.8 (3.1)
|
WordPress Kriya theme <= 3.4 - PHP Object Injection Vu… |
designthemes |
Kriya |
2025-10-22T14:32:44.186Z | 2026-01-20T14:28:12.435Z |
| CVE-2025-60214 |
9.8 (3.1)
|
WordPress Goldenblatt theme <= 1.2.1 - PHP Object Inje… |
BoldThemes |
Goldenblatt |
2025-10-22T14:32:44.013Z | 2026-01-20T14:28:12.452Z |
| CVE-2025-60213 |
9.8 (3.1)
|
WordPress Scape theme <= 1.5.13 - PHP Object Injection… |
Whitebox-Studio |
Scape |
2025-10-22T14:32:43.800Z | 2026-01-20T14:28:12.440Z |
| CVE-2025-60212 |
8.8 (3.1)
|
WordPress VEDA Theme <= 4.2 - PHP Object Injection Vul… |
designthemes |
VEDA |
2025-10-22T14:32:43.582Z | 2026-01-20T14:28:12.478Z |
| CVE-2025-60211 |
8.8 (3.1)
|
WordPress WooCommerce Registration Fields Plugin - Cus… |
extendons |
WooCommerce Registration Fields Plugin - Custom Signup Fields |
2025-10-22T14:32:43.390Z | 2026-01-20T14:28:12.510Z |
| CVE-2025-60210 |
9.8 (3.1)
|
WordPress Everest Forms - Frontend Listing plugin <= 1… |
wpeverest |
Everest Forms - Frontend Listing |
2025-10-22T14:32:43.171Z | 2026-01-20T14:28:12.476Z |
| CVE-2025-60209 |
9.8 (3.1)
|
WordPress Connector for Gravity Forms and Google Sheet… |
CRM Perks |
Connector for Gravity Forms and Google Sheets |
2025-10-22T14:32:42.951Z | 2026-01-20T14:28:12.514Z |
| CVE-2025-60208 |
8.8 (3.1)
|
WordPress Advanced Custom Fields : CPT Options Pages p… |
Tusko Trush |
Advanced Custom Fields : CPT Options Pages |
2025-10-22T14:32:42.742Z | 2026-01-20T14:28:12.505Z |
| CVE-2025-60207 |
10 (3.1)
|
WordPress Custom User Registration Fields for WooComme… |
Addify |
Custom User Registration Fields for WooCommerce |
2025-11-06T15:55:06.274Z | 2026-01-20T14:28:12.440Z |
| CVE-2025-60206 |
10 (3.1)
|
WordPress Alone theme <= 7.8.3 - Remote Code Execution… |
Bearsthemes |
Alone |
2025-10-22T14:32:42.404Z | 2026-01-20T14:28:12.509Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-64248 |
4.3 (3.1)
|
WordPress Request a Quote plugin <= 2.5.3 - Broken Acc… |
emarket-design |
Request a Quote |
2025-12-16T08:12:49.290Z | 2026-01-20T14:28:21.329Z |
| CVE-2025-64247 |
6.5 (3.1)
|
WordPress Read More & Accordion plugin <= 3.5.4.1 - Br… |
edmon.parker |
Read More & Accordion |
2025-12-16T08:12:49.100Z | 2026-01-20T14:28:21.315Z |
| CVE-2025-64246 |
4.3 (3.1)
|
WordPress Accessibility by AudioEye plugin <= 1.0.49 -… |
netopsae |
Accessibility by AudioEye |
2025-12-16T08:12:48.902Z | 2026-01-20T14:28:20.873Z |
| CVE-2025-64245 |
4.3 (3.1)
|
WordPress Import external attachments plugin <= 1.5.12… |
ryanpcmcquen |
Import external attachments |
2025-12-16T08:12:48.719Z | 2026-01-20T14:28:20.395Z |
| CVE-2025-64244 |
4.3 (3.1)
|
WordPress Restrict Elementor Widgets, Columns and Sect… |
Codexpert, Inc |
Restrict Elementor Widgets, Columns and Sections |
2025-12-16T08:12:48.528Z | 2026-01-20T14:28:20.451Z |
| CVE-2025-64243 |
4.3 (3.1)
|
WordPress Directory Pro plugin <= 2.5.6 - Broken Acces… |
e-plugins |
Directory Pro |
2025-12-16T08:12:48.343Z | 2026-01-20T14:28:20.367Z |
| CVE-2025-64242 |
4.3 (3.1)
|
WordPress Easy Property Listings plugin <= 3.5.15 - Br… |
Merv Barrett |
Easy Property Listings |
2025-12-16T08:12:48.141Z | 2026-01-20T14:28:20.007Z |
| CVE-2025-64241 |
4.3 (3.1)
|
WordPress WP Coupons and Deals plugin <= 3.2.4 - Broke… |
Imtiaz Rayhan |
WP Coupons and Deals |
2025-12-16T08:12:47.928Z | 2026-01-20T14:28:19.953Z |
| CVE-2025-64240 |
4.3 (3.1)
|
WordPress Freshchat plugin <= 2.3.4 - Cross Site Reque… |
freshchat |
Freshchat |
2025-12-16T08:12:47.734Z | 2026-01-20T14:28:20.030Z |
| CVE-2025-64239 |
4.3 (3.1)
|
WordPress RTL Tester plugin <= 1.2 - Cross Site Reques… |
Yoav Farhi |
RTL Tester |
2025-12-16T08:12:47.533Z | 2026-01-20T14:28:19.955Z |
| CVE-2025-64238 |
4.3 (3.1)
|
WordPress WPS Bidouille plugin <= 1.33.1 - Broken Acce… |
NicolasKulka |
WPS Bidouille |
2025-12-16T08:12:47.350Z | 2026-01-20T14:28:20.852Z |
| CVE-2025-64237 |
4.3 (3.1)
|
WordPress Quick Interest Slider plugin <= 3.1.5 - Cros… |
Graham |
Quick Interest Slider |
2025-12-16T08:12:47.167Z | 2026-01-20T14:28:19.971Z |
| CVE-2025-64236 |
9.8 (3.1)
|
WordPress Tuturn plugin < 3.6 - Broken Authentication … |
AmentoTech |
Tuturn |
2025-12-18T16:21:48.796Z | 2026-01-20T14:28:19.967Z |
| CVE-2025-64235 |
6.5 (3.1)
|
WordPress Tuturn plugin < 3.6 - Arbitrary File Downloa… |
AmentoTech |
Tuturn |
2025-12-18T16:43:47.100Z | 2026-01-20T14:28:20.022Z |
| CVE-2025-64234 |
4.3 (3.1)
|
WordPress Evergreen Content Poster plugin <= 1.4.5 - B… |
Evergreen Content Poster |
Evergreen Content Poster |
2025-10-29T08:38:11.964Z | 2026-01-20T14:28:19.953Z |
| CVE-2025-64233 |
9.8 (3.1)
|
WordPress Codiqa theme < 1.2.8 - PHP Object Injection … |
BoldThemes |
Codiqa |
2025-12-18T07:22:13.958Z | 2026-01-20T21:45:05.735Z |
| CVE-2025-64232 |
7.1 (3.1)
|
WordPress Import from YML plugin <= 3.1.17 - Cross Sit… |
icopydoc |
Import from YML |
2025-11-06T15:56:12.576Z | 2026-01-20T14:28:19.990Z |
| CVE-2025-64231 |
9.8 (3.1)
|
WordPress WordPress Contact Form 7 PDF, Google Sheet &… |
RedefiningTheWeb |
WordPress Contact Form 7 PDF, Google Sheet & Database |
2025-12-18T07:22:13.778Z | 2026-01-20T21:45:30.264Z |
| CVE-2025-64230 |
7.5 (3.1)
|
WordPress Filr plugin <= 1.2.10 - Arbitrary File Delet… |
WP Chill |
Filr |
2025-12-18T07:22:13.596Z | 2026-01-20T21:45:50.350Z |
| CVE-2025-64229 |
4.3 (3.1)
|
WordPress Client Invoicing by Sprout Invoices plugin <… |
BoldGrid |
Client Invoicing by Sprout Invoices |
2025-10-29T08:38:11.498Z | 2026-01-20T14:28:19.998Z |
| CVE-2025-64228 |
4.3 (3.1)
|
WordPress SUMO Affiliates Pro plugin <= 11.0.0 - Sensi… |
FantasticPlugins |
SUMO Affiliates Pro |
2025-10-29T08:38:11.052Z | 2026-01-20T14:28:19.952Z |
| CVE-2025-64227 |
9.8 (3.1)
|
WordPress Client Invoicing by Sprout Invoices plugin <… |
BoldGrid |
Client Invoicing by Sprout Invoices |
2025-12-18T07:22:13.423Z | 2026-01-20T21:46:30.834Z |
| CVE-2025-64226 |
4.3 (3.1)
|
WordPress Stockie Extra plugin <= 1.2.11 - Cross Site … |
colabrio |
Stockie Extra |
2025-10-29T08:38:10.612Z | 2026-01-20T14:28:20.084Z |
| CVE-2025-64225 |
6.1 (3.1)
|
WordPress Stockie Extra plugin <= 1.2.11 - Content Inj… |
colabrio |
Stockie Extra |
2025-12-18T07:22:13.245Z | 2026-01-20T21:46:48.570Z |
| CVE-2025-64224 |
7.1 (3.1)
|
WordPress Grand Conference Theme Custom Post Type plug… |
ThemeGoods |
Grand Conference Theme Custom Post Type |
2025-11-06T15:56:10.204Z | 2026-01-20T14:28:20.416Z |
| CVE-2025-64223 |
8.1 (3.1)
|
WordPress PenNews theme < 6.7.3 - Local File Inclusion… |
PenciDesign |
PenNews |
2025-12-18T07:22:13.068Z | 2026-01-20T14:28:20.155Z |
| CVE-2025-64222 |
7.5 (3.1)
|
WordPress WooCommerce Recover Abandoned Cart plugin <=… |
FantasticPlugins |
WooCommerce Recover Abandoned Cart |
2025-12-18T07:22:12.885Z | 2026-01-20T14:28:20.993Z |
| CVE-2025-64221 |
7.1 (3.1)
|
WordPress Reservation Plugin plugin <= 1.6 - Cross Sit… |
designthemes |
Reservation Plugin |
2025-12-18T07:22:12.714Z | 2026-01-20T14:28:20.081Z |
| CVE-2025-64220 |
6.5 (3.1)
|
WordPress Rey Core plugin <= 3.1.8 - Cross Site Script… |
ReyCommerce |
Rey Core |
2025-10-29T08:38:10.174Z | 2026-01-20T14:28:19.951Z |
| CVE-2025-64219 |
4.3 (3.1)
|
WordPress Business Directory plugin <= 6.4.18 - Broken… |
Strategy11 Team |
Business Directory |
2025-10-29T08:38:09.728Z | 2026-01-20T14:28:19.940Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-64244 | Missing Authorization vulnerability in Codexpert, Inc Restrict Elementor Widgets, Columns and Secti… | 2025-12-16T09:15:54.037 | 2026-01-20T15:18:48.300 |
| fkie_cve-2025-64243 | Missing Authorization vulnerability in e-plugins Directory Pro directory-pro allows Exploiting Inco… | 2025-12-16T09:15:53.907 | 2026-01-20T15:18:48.170 |
| fkie_cve-2025-64242 | Missing Authorization vulnerability in Merv Barrett Easy Property Listings easy-property-listings a… | 2025-12-16T09:15:53.773 | 2026-01-20T15:18:48.037 |
| fkie_cve-2025-64241 | Missing Authorization vulnerability in Imtiaz Rayhan WP Coupons and Deals wp-coupons-and-deals allo… | 2025-12-16T09:15:53.640 | 2026-01-20T15:18:47.907 |
| fkie_cve-2025-64240 | Cross-Site Request Forgery (CSRF) vulnerability in freshchat Freshchat freshchat allows Cross Site … | 2025-12-16T09:15:53.517 | 2026-01-20T15:18:47.777 |
| fkie_cve-2025-64239 | Cross-Site Request Forgery (CSRF) vulnerability in Yoav Farhi RTL Tester rtl-tester allows Cross Si… | 2025-12-16T09:15:53.377 | 2026-01-20T15:18:47.640 |
| fkie_cve-2025-64238 | Missing Authorization vulnerability in NicolasKulka WPS Bidouille wps-bidouille allows Exploiting I… | 2025-12-16T09:15:53.247 | 2026-01-20T15:18:47.507 |
| fkie_cve-2025-64237 | Cross-Site Request Forgery (CSRF) vulnerability in Graham Quick Interest Slider quick-interest-slid… | 2025-12-16T09:15:53.110 | 2026-01-20T15:18:47.353 |
| fkie_cve-2025-64236 | Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Tuturn allows … | 2025-12-18T17:15:55.477 | 2026-01-20T15:18:47.247 |
| fkie_cve-2025-64235 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ame… | 2025-12-18T17:15:55.327 | 2026-01-20T15:18:47.137 |
| fkie_cve-2025-64234 | Missing Authorization vulnerability in Evergreen Content Poster Evergreen Content Poster evergreen-… | 2025-10-29T09:15:44.763 | 2026-01-20T15:18:46.987 |
| fkie_cve-2025-64233 | Deserialization of Untrusted Data vulnerability in BoldThemes Codiqa codiqa allows Object Injection… | 2025-12-18T08:16:12.800 | 2026-01-20T15:18:46.853 |
| fkie_cve-2025-64232 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:14.333 | 2026-01-20T15:18:46.720 |
| fkie_cve-2025-64231 | Unrestricted Upload of File with Dangerous Type vulnerability in RedefiningTheWeb WordPress Contact… | 2025-12-18T08:16:12.670 | 2026-01-20T15:18:46.590 |
| fkie_cve-2025-64230 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in WP … | 2025-12-18T08:16:12.543 | 2026-01-20T15:18:46.450 |
| fkie_cve-2025-64229 | Missing Authorization vulnerability in BoldGrid Client Invoicing by Sprout Invoices sprout-invoices… | 2025-10-29T09:15:44.250 | 2026-01-20T15:18:46.290 |
| fkie_cve-2025-64228 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Fantast… | 2025-10-29T09:15:44.077 | 2026-01-20T15:18:46.160 |
| fkie_cve-2025-64227 | Deserialization of Untrusted Data vulnerability in BoldGrid Client Invoicing by Sprout Invoices spr… | 2025-12-18T08:16:12.417 | 2026-01-20T15:18:46.017 |
| fkie_cve-2025-64226 | Cross-Site Request Forgery (CSRF) vulnerability in colabrio Stockie Extra stockie-extra allows Cros… | 2025-10-29T09:15:43.567 | 2026-01-20T15:18:45.877 |
| fkie_cve-2025-64225 | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in cola… | 2025-12-18T08:16:12.287 | 2026-01-20T15:18:45.747 |
| fkie_cve-2025-64224 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:14.173 | 2026-01-20T15:18:45.613 |
| fkie_cve-2025-64223 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:16:12.160 | 2026-01-20T15:18:45.480 |
| fkie_cve-2025-64222 | Missing Authorization vulnerability in FantasticPlugins WooCommerce Recover Abandoned Cart rac allo… | 2025-12-18T08:16:12.033 | 2026-01-20T15:18:45.330 |
| fkie_cve-2025-64221 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-18T08:16:11.903 | 2026-01-20T15:18:45.197 |
| fkie_cve-2025-64220 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-29T09:15:43.393 | 2026-01-20T15:18:45.063 |
| fkie_cve-2025-64219 | Missing Authorization vulnerability in Strategy11 Team Business Directory business-directory-plugin… | 2025-10-29T09:15:42.867 | 2026-01-20T15:18:44.927 |
| fkie_cve-2025-64218 | Insertion of Sensitive Information Into Sent Data vulnerability in WP Chill Passster content-protec… | 2025-12-18T08:16:11.780 | 2026-01-20T15:18:44.793 |
| fkie_cve-2025-64216 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-10-29T09:15:42.687 | 2026-01-20T15:18:44.520 |
| fkie_cve-2025-64214 | Missing Authorization vulnerability in StylemixThemes MasterStudy LMS Pro masterstudy-lms-learning-… | 2025-12-18T08:16:11.527 | 2026-01-20T15:18:44.390 |
| fkie_cve-2025-64213 | Insertion of Sensitive Information Into Sent Data vulnerability in StylemixThemes MasterStudy LMS P… | 2025-12-18T08:16:11.397 | 2026-01-20T15:18:44.257 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-prw8-6vx3-vrxm |
9.1 (3.1)
|
Improper Control of Generation of Code ('Code Injection') vulnerability in videowhisper Paid Videoc… | 2025-10-27T03:30:39Z | 2026-01-20T15:31:37Z |
| ghsa-p9x7-3xvx-2h65 |
4.3 (3.1)
|
Missing Authorization vulnerability in WPWebinarSystem WebinarPress wp-webinarsystem allows Exploit… | 2025-10-27T03:30:39Z | 2026-01-20T15:31:37Z |
| ghsa-p98w-mx82-xhg4 |
5.3 (3.1)
|
Missing Authorization vulnerability in Spencer Haws Link Whisper Free link-whisper allows Exploitin… | 2025-10-27T03:30:39Z | 2026-01-20T15:31:37Z |
| ghsa-j46c-hfxp-3h44 |
7.2 (3.1)
|
Missing Authorization vulnerability in wpseek Admin Management Xtended admin-management-xtended al… | 2025-10-27T03:30:39Z | 2026-01-20T15:31:37Z |
| ghsa-h9rr-38f2-f57m |
8.8 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Andrea Landonio CloudSearch cloud-search allows … | 2025-10-27T03:30:39Z | 2026-01-20T15:31:37Z |
| ghsa-fgh4-qp5f-8j48 |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2026-01-20T15:31:37Z |
| ghsa-cmpw-ffqj-x98j |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2026-01-20T15:31:37Z |
| ghsa-9j3c-v37q-wc5j |
5.4 (3.1)
|
Missing Authorization vulnerability in Apiki GoCache gocache-cdn allows Exploiting Incorrectly Conf… | 2025-10-27T03:30:39Z | 2026-01-20T15:31:37Z |
| ghsa-44r5-gm3r-62wj |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2026-01-20T15:31:37Z |
| ghsa-23qm-g3r4-35xx |
8.1 (3.1)
|
Missing Authorization vulnerability in RealMag777 MDTF wp-meta-data-filter-and-taxonomy-filter allo… | 2025-10-27T03:30:39Z | 2026-01-20T15:31:37Z |
| ghsa-xwpp-p833-67wp |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-xppm-25h7-qf3q |
8.8 (3.1)
|
Missing Authorization vulnerability in Codeinwp Revive Old Posts tweet-old-post allows Exploiting I… | 2025-10-27T03:30:39Z | 2026-01-20T15:31:36Z |
| ghsa-x5x6-gpfm-cpm4 |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-wgh5-f6hf-q96m |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-wfc4-j699-888x |
8.8 (3.1)
|
Missing Authorization vulnerability in PickPlugins Post Grid and Gutenberg Blocks post-grid allows … | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-vh3j-4vp2-x7m2 |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-v92x-wwhx-42c7 |
8.8 (3.1)
|
Missing Authorization vulnerability in PickPlugins Testimonial Slider testimonial allows Exploiting… | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-v739-2jgg-rcmx |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-rqm5-mx2c-5fhp |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2026-01-20T15:31:36Z |
| ghsa-qvx9-63c8-g2m4 |
9.8 (3.1)
|
Missing Authorization vulnerability in epiphanyit321 Referral Link Tracker referral-link-tracker al… | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-qgvx-wfx5-x9qg |
8.8 (3.1)
|
Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly C… | 2025-10-27T03:30:39Z | 2026-01-20T15:31:36Z |
| ghsa-q5j8-ch67-ww7c |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-prvq-r6h5-gxw2 |
8.8 (3.1)
|
Missing Authorization vulnerability in everestthemes Everest Backup everest-backup allows Exploitin… | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-pqg3-4wch-ppw5 |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-p9r4-469w-3cpx |
8.1 (3.1)
|
Missing Authorization vulnerability in Joby Joseph SEO Meta Description Updater seo-meta-descriptio… | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-p2v3-q8r8-fhjv |
8.1 (3.1)
|
Missing Authorization vulnerability in clicksend SMS Contact Form 7 Notifications by ClickSend clic… | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-m2hj-mr34-9mpp |
8.1 (3.1)
|
Missing Authorization vulnerability in Shambhu Patnaik Export Categories export-categories allows A… | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-m24f-6c22-rr63 |
6.1 (3.1)
|
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Jthe… | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-fv67-9vrp-68qg |
9.8 (3.1)
|
Missing Authorization vulnerability in Mark O'Donnell MSTW CSV EXPORTER mstw-csv-exporter allows Ex… | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ghsa-fg6c-rjg4-4j6p |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2026-01-20T15:31:36Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2009-1 |
|
Cross-site scripting (XSS) vulnerability in the waterfall web status view (status/web/wat… | buildbot | 2009-08-25T17:30:00Z | 2021-07-15T02:22:07.208084Z |
| pysec-2008-2 |
|
The administration application in Django 0.91, 0.95, and 0.96 stores unauthenticated HTTP… | django | 2008-09-04T17:41:00Z | 2021-07-15T02:22:07.826825Z |
| pysec-2008-1 |
|
Cross-site scripting (XSS) vulnerability in the login form in the administration applicat… | django | 2008-05-23T15:32:00Z | 2021-07-15T02:22:07.778598Z |
| pysec-2007-1 |
|
The internationalization (i18n) framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as … | django | 2007-10-30T19:46:00Z | 2021-07-15T02:22:07.728618Z |
| pysec-2021-112 |
|
An integer overflow exists in pywin32 prior to version b301 when adding an access control… | pywin32 | 2021-07-06T12:15:00Z | 2021-07-08T03:14:30.948663Z |
| pysec-2021-111 |
|
`projen` is a project generation tool that synthesizes project configuration files such a… | projen | 2021-04-06T19:15:00Z | 2021-07-08T03:14:29.411085Z |
| pysec-2021-110 |
|
In Plone 5.0 through 5.2.4, Editors are vulnerable to XSS in the folder contents view, if… | plone | 2021-06-30T01:15:00Z | 2021-07-08T03:14:29.124687Z |
| pysec-2021-109 |
|
Django 3.1.x before 3.1.13 and 3.2.x before 3.2.5 allows QuerySet.order_by SQL injection … | django | 2021-07-02T10:15:00Z | 2021-07-08T03:14:19.151485Z |
| pysec-2020-214 |
|
Twisted before 16.3.1 does not attempt to address RFC 3875 section 4.1.18 namespace confl… | twisted | 2020-03-11T20:15:00Z | 2021-07-05T00:01:28.092827Z |
| pysec-2017-43 |
|
Cross-site scripting (XSS) vulnerability in the render_full function in debug/tbtools.py … | werkzeug | 2017-10-23T16:29:00Z | 2021-07-05T00:01:28.359311Z |
| pysec-2017-42 |
|
The password reset form in Weblate before 2.10.1 provides different error messages depend… | weblate | 2017-03-15T15:59:00Z | 2021-07-05T00:01:28.288013Z |
| pysec-2020-213 |
|
Tornado before 3.2.2 sends arbitrary responses that contain a fixed CSRF token and may be… | tornado | 2020-01-24T18:15:00Z | 2021-07-05T00:01:27.333585Z |
| pysec-2019-156 |
|
The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories. | scipy | 2019-11-04T20:15:00Z | 2021-07-05T00:01:27.093286Z |
| pysec-2017-41 |
|
The XML-RPC server in supervisor before 3.0.1, 3.1.x before 3.1.4, 3.2.x before 3.2.4, an… | supervisor | 2017-08-23T14:29:00Z | 2021-07-05T00:01:27.197995Z |
| pysec-2017-40 |
|
Sanic before 0.5.1 allows reading arbitrary files with directory traversal, as demonstrat… | sanic | 2017-11-10T09:29:00Z | 2021-07-05T00:01:27.045850Z |
| pysec-2016-11 |
|
model/modelstorage.py in trytond 3.2.x before 3.2.10, 3.4.x before 3.4.8, 3.6.x before 3.… | trytond | 2016-04-13T15:59:00Z | 2021-07-05T00:01:27.588881Z |
| pysec-2012-6 |
|
model/modelstorage.py in the Tryton application framework (trytond) before 2.4.0 for Pyth… | trytond | 2012-07-12T20:55:00Z | 2021-07-05T00:01:27.407587Z |
| pysec-2012-5 |
|
CRLF injection vulnerability in the tornado.web.RequestHandler.set_header function in Tor… | tornado | 2012-05-23T20:55:00Z | 2021-07-05T00:01:27.298545Z |
| pysec-2018-50 |
|
In SaltStack Salt before 2016.3.6, compromised salt-minions can impersonate the salt-master. | salt | 2018-04-23T22:29:00Z | 2021-07-05T00:01:26.870701Z |
| pysec-2017-39 |
|
Salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x befo… | salt | 2017-09-26T14:29:00Z | 2021-07-05T00:01:26.833704Z |
| pysec-2017-38 |
|
When using the local_batch client from salt-api in SaltStack Salt before 2015.8.13, 2016.… | salt | 2017-09-26T14:29:00Z | 2021-07-05T00:01:26.736529Z |
| pysec-2017-37 |
|
SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 … | salt | 2017-10-24T17:29:00Z | 2021-07-05T00:01:26.641829Z |
| pysec-2017-36 |
|
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3… | salt | 2017-10-24T17:29:00Z | 2021-07-05T00:01:26.552235Z |
| pysec-2017-34 |
|
Salt before 2015.8.11 allows deleted minions to read or write to minions with the same id… | salt | 2017-02-07T17:59:00Z | 2021-07-05T00:01:26.392976Z |
| pysec-2017-33 |
|
Salt before 2015.5.10 and 2015.8.x before 2015.8.8, when PAM external authentication is e… | salt | 2017-01-31T19:59:00Z | 2021-07-05T00:01:26.354816Z |
| pysec-2017-32 |
|
The state.sls function in Salt before 2015.8.3 uses weak permissions on the cache data, w… | salt | 2017-01-30T22:59:00Z | 2021-07-05T00:01:26.287704Z |
| pysec-2017-31 |
|
Salt before 2014.7.6 does not verify certificates when connecting via the aliyun, proxmox… | salt | 2017-08-25T18:29:00Z | 2021-07-05T00:01:26.252043Z |
| pysec-2017-30 |
|
modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp. | salt | 2017-04-13T14:59:00Z | 2021-07-05T00:01:26.213768Z |
| pysec-2017-29 |
|
modules/serverdensity_device.py in SaltStack before 2014.7.4 does not properly handle fil… | salt | 2017-04-13T14:59:00Z | 2021-07-05T00:01:26.175371Z |
| pysec-2014-18 |
|
Multiple unspecified vulnerabilities in Salt (aka SaltStack) before 2014.1.10 allow local… | salt | 2014-08-22T17:55:00Z | 2021-07-05T00:01:26.140564Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-3498 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.399440Z |
| gsd-2024-3497 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.034610Z |
| gsd-2024-3496 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.380375Z |
| gsd-2024-3495 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.297826Z |
| gsd-2024-3494 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.046614Z |
| gsd-2024-3493 | A specific malformed fragmented packet type (fragmented packets may be generated automat… | 2024-04-11T05:03:27.299090Z |
| gsd-2024-3492 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.322144Z |
| gsd-2024-3491 | The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cr… | 2024-04-11T05:03:27.414151Z |
| gsd-2024-3490 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.188864Z |
| gsd-2024-3489 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.072664Z |
| gsd-2024-3488 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.153214Z |
| gsd-2024-3487 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.178428Z |
| gsd-2024-3486 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.203222Z |
| gsd-2024-3485 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.338142Z |
| gsd-2024-3484 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.325802Z |
| gsd-2024-3483 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.338353Z |
| gsd-2024-3482 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.107708Z |
| gsd-2024-3481 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.393633Z |
| gsd-2024-3480 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.241931Z |
| gsd-2024-3479 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.205824Z |
| gsd-2024-3478 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.071659Z |
| gsd-2024-3477 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.211266Z |
| gsd-2024-3476 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.232056Z |
| gsd-2024-3475 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.191635Z |
| gsd-2024-3474 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.103698Z |
| gsd-2024-3473 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.291821Z |
| gsd-2024-3472 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.043104Z |
| gsd-2024-3471 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.402076Z |
| gsd-2024-3470 | An Improper Privilege Management vulnerability was identified in GitHub Enterprise Server… | 2024-04-11T05:03:27.172214Z |
| gsd-2024-3469 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.237925Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2025-191991 | Malicious code in elf-stats-aurora-workbench-5l3 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T16:45:01Z |
| MAL-2025-191990 | Malicious code in elf-stats-aurora-workbench-513 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T16:45:01Z |
| MAL-2025-191989 | Malicious code in elf-stats-aurora-garland-513 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T16:45:01Z |
| mal-2025-192557 | Malicious code in cos-js-sdk-v6 (npm) | 2025-12-12T06:34:05Z | 2025-12-23T16:45:00Z |
| mal-2025-192398 | Malicious code in database-mongoose-kit (npm) | 2025-12-10T01:47:17Z | 2025-12-23T16:45:00Z |
| mal-2025-192320 | Malicious code in dotnetenv (npm) | 2025-12-05T05:37:50Z | 2025-12-23T16:45:00Z |
| mal-2025-192290 | Malicious code in dotenv-intend (npm) | 2025-12-03T21:24:32Z | 2025-12-23T16:45:00Z |
| mal-2025-191394 | Malicious code in drop-events-on-property-plugin (npm) | 2025-11-25T00:16:49Z | 2025-12-23T16:45:00Z |
| mal-2025-191393 | Malicious code in dialogflow-es (npm) | 2025-11-25T00:16:49Z | 2025-12-23T16:45:00Z |
| mal-2025-190954 | Malicious code in dashboard-empty-state (npm) | 2025-11-24T21:43:32Z | 2025-12-23T16:45:00Z |
| MAL-2025-192557 | Malicious code in cos-js-sdk-v6 (npm) | 2025-12-12T06:34:05Z | 2025-12-23T16:45:00Z |
| MAL-2025-192398 | Malicious code in database-mongoose-kit (npm) | 2025-12-10T01:47:17Z | 2025-12-23T16:45:00Z |
| MAL-2025-192320 | Malicious code in dotnetenv (npm) | 2025-12-05T05:37:50Z | 2025-12-23T16:45:00Z |
| MAL-2025-192290 | Malicious code in dotenv-intend (npm) | 2025-12-03T21:24:32Z | 2025-12-23T16:45:00Z |
| MAL-2025-191394 | Malicious code in drop-events-on-property-plugin (npm) | 2025-11-25T00:16:49Z | 2025-12-23T16:45:00Z |
| MAL-2025-191393 | Malicious code in dialogflow-es (npm) | 2025-11-25T00:16:49Z | 2025-12-23T16:45:00Z |
| MAL-2025-190954 | Malicious code in dashboard-empty-state (npm) | 2025-11-24T21:43:32Z | 2025-12-23T16:45:00Z |
| mal-2025-49400 | Malicious code in capes-ui (npm) | 2025-11-09T00:17:09Z | 2025-12-23T16:10:05Z |
| mal-2025-192574 | Malicious code in bignumex (npm) | 2025-12-15T07:43:03Z | 2025-12-23T16:10:05Z |
| mal-2025-192555 | Malicious code in cms_comp (npm) | 2025-12-12T06:34:06Z | 2025-12-23T16:10:05Z |
| mal-2025-192554 | Malicious code in camscanner-seo (npm) | 2025-12-12T06:34:06Z | 2025-12-23T16:10:05Z |
| mal-2025-192319 | Malicious code in chai-promised-chain (npm) | 2025-12-05T05:40:01Z | 2025-12-23T16:10:05Z |
| mal-2025-192318 | Malicious code in chai-as-deployed (npm) | 2025-12-05T05:43:31Z | 2025-12-23T16:10:05Z |
| mal-2025-192289 | Malicious code in chai-test-await (npm) | 2025-12-03T21:24:32Z | 2025-12-23T16:10:05Z |
| mal-2025-191546 | Malicious code in chai-status (npm) | 2025-12-02T05:48:01Z | 2025-12-23T16:10:05Z |
| mal-2025-191541 | Malicious code in bignumx (npm) | 2025-12-02T04:29:23Z | 2025-12-23T16:10:05Z |
| mal-2025-191472 | Malicious code in chai-auth (npm) | 2025-11-26T04:51:45Z | 2025-12-23T16:10:05Z |
| mal-2025-190951 | Malicious code in composite-reducer (npm) | 2025-11-24T21:41:37Z | 2025-12-23T16:10:05Z |
| mal-2025-190627 | Malicious code in chai-async-chain (npm) | 2025-11-24T05:16:12Z | 2025-12-23T16:10:05Z |
| mal-2025-190495 | Malicious code in chain-test-async (npm) | 2025-11-14T03:35:19Z | 2025-12-23T16:10:05Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-3488 | Red Hat OpenShift Container Platform: Mehrere Schwachstellen | 2024-11-18T23:00:00.000+00:00 | 2025-02-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0854 | VMware Tanzu Spring Framework: Schwachstelle ermöglicht Manipulation von Daten | 2024-04-10T22:00:00.000+00:00 | 2025-02-09T23:00:00.000+00:00 |
| wid-sec-w-2025-0293 | Kaspersky Anti-Virus: Schwachstelle ermöglicht Denial of Service | 2025-02-06T23:00:00.000+00:00 | 2025-02-06T23:00:00.000+00:00 |
| wid-sec-w-2025-0290 | HP LaserJet: Schwachstelle ermöglicht Denial of Service | 2025-02-06T23:00:00.000+00:00 | 2025-02-06T23:00:00.000+00:00 |
| wid-sec-w-2025-0289 | Microsoft Dynamics 365: Schwachstelle ermöglicht Privilegieneskalation | 2025-02-06T23:00:00.000+00:00 | 2025-02-06T23:00:00.000+00:00 |
| wid-sec-w-2025-0288 | Sophos XG Firewall: Schwachstelle ermöglicht Codeausführung | 2020-06-29T22:00:00.000+00:00 | 2025-02-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3453 | GitLab: Mehrere Schwachstellen | 2024-11-12T23:00:00.000+00:00 | 2025-02-06T23:00:00.000+00:00 |
| wid-sec-w-2024-0389 | Microsoft Office: Mehrere Schwachstellen | 2024-02-13T23:00:00.000+00:00 | 2025-02-06T23:00:00.000+00:00 |
| wid-sec-w-2022-0333 | Prozessoren: Schwachstelle ermöglicht Offenlegung von Informationen und Umgehung von Kryptografie | 2022-06-14T22:00:00.000+00:00 | 2025-02-06T23:00:00.000+00:00 |
| wid-sec-w-2025-0286 | Cisco IOS, IOS XE and IOS XR: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-02-05T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0282 | Kemp LoadMaster: Mehrere Schwachstellen | 2025-02-05T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0280 | Cisco Expressway: Schwachstelle ermöglicht Cross-Site Scripting | 2025-02-05T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0279 | Cisco Identity Services Engine (ISE): Mehrere Schwachstellen | 2025-02-05T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0277 | IBM Security Verify Access: Schwachstelle ermöglicht Privilegieneskalation | 2025-02-05T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0276 | Cisco AsyncOS, Secure Email Gateway und Secure Web Appliance: Mehrere Schwachstellen | 2025-02-05T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0275 | Asterisk: Schwachstelle ermöglicht Codeausführung | 2025-02-05T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0273 | IBM App Connect Enterprise: Schwachstelle ermöglicht Manipulation von Dateien | 2025-02-05T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0272 | Dell Avamar: Schwachstelle ermöglicht Erlangen von Benutzerrechten | 2025-02-05T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2024-3584 | Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-12-03T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2024-2091 | Siemens SIMATIC WinCC: Mehrere Schwachstellen ermöglichen Denial of Service | 2024-09-09T22:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2024-1307 | Red Hat OpenShift Service Mesh Containers: Mehrere Schwachstellen | 2024-06-06T22:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2024-1228 | Red Hat OpenStack: Mehrere Schwachstellen | 2024-05-22T22:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2024-0581 | Apple iOS und Apple iPadOS: Mehrere Schwachstellen | 2024-03-07T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2024-0577 | Apple Safari: Mehrere Schwachstellen | 2024-03-07T23:00:00.000+00:00 | 2025-02-05T23:00:00.000+00:00 |
| wid-sec-w-2025-0271 | libyaml: Schwachstelle ermöglicht Denial of Service | 2015-01-28T23:00:00.000+00:00 | 2025-02-04T23:00:00.000+00:00 |
| wid-sec-w-2025-0269 | Linux Kernel: Mehrere Schwachstellen | 2017-08-10T22:00:00.000+00:00 | 2025-02-04T23:00:00.000+00:00 |
| wid-sec-w-2025-0268 | Perl: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten | 2017-11-19T23:00:00.000+00:00 | 2025-02-04T23:00:00.000+00:00 |
| wid-sec-w-2025-0267 | GnuPGP: Schwachstelle ermöglicht Offenlegung von Informationen | 2018-06-13T22:00:00.000+00:00 | 2025-02-04T23:00:00.000+00:00 |
| wid-sec-w-2025-0266 | cURL: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten | 2018-07-29T22:00:00.000+00:00 | 2025-02-04T23:00:00.000+00:00 |
| wid-sec-w-2025-0264 | HCL BigFix Server Automation: Schwachstelle ermöglicht Denial of Service | 2025-02-04T23:00:00.000+00:00 | 2025-02-04T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:2088 | Red Hat Security Advisory: Red Hat build of Cryostat security update | 2024-04-29T02:26:47+00:00 | 2026-01-21T23:21:27+00:00 |
| rhsa-2024:1897 | Red Hat Security Advisory: OpenShift Container Platform 4.14.22 packages and security update | 2024-04-26T20:17:38+00:00 | 2026-01-21T23:21:19+00:00 |
| rhsa-2024:1872 | Red Hat Security Advisory: mod_http2 security update | 2024-04-18T01:43:19+00:00 | 2026-01-21T23:21:18+00:00 |
| rhsa-2024:1786 | Red Hat Security Advisory: httpd:2.4/mod_http2 security update | 2024-04-11T16:31:01+00:00 | 2026-01-21T23:21:17+00:00 |
| rhsa-2024:1763 | Red Hat Security Advisory: OpenShift Container Platform 4.13.40 packages and security update | 2024-04-18T18:27:36+00:00 | 2026-01-21T23:21:15+00:00 |
| rhsa-2024:1677 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.16 Security update | 2024-04-04T15:22:45+00:00 | 2026-01-21T23:21:14+00:00 |
| rhsa-2024:1676 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.16 Security update | 2024-04-04T15:23:45+00:00 | 2026-01-21T23:21:10+00:00 |
| rhsa-2024:1675 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.16 Security update | 2024-04-04T15:23:50+00:00 | 2026-01-21T23:21:09+00:00 |
| rhsa-2024:1674 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.16 Security update | 2024-04-04T15:23:51+00:00 | 2026-01-21T23:21:09+00:00 |
| rhsa-2024:1646 | Red Hat Security Advisory: grafana security and bug fix update | 2024-04-02T20:56:46+00:00 | 2026-01-21T23:21:07+00:00 |
| rhsa-2024:1644 | Red Hat Security Advisory: grafana-pcp security and bug fix update | 2024-04-02T20:57:06+00:00 | 2026-01-21T23:21:06+00:00 |
| rhsa-2024:1566 | Red Hat Security Advisory: Red Hat build of MicroShift 4.14.19 security update | 2024-04-03T16:25:07+00:00 | 2026-01-21T23:21:04+00:00 |
| rhsa-2024:1561 | Red Hat Security Advisory: Red Hat build of MicroShift 4.15.6 security update | 2024-04-02T21:57:24+00:00 | 2026-01-21T23:21:01+00:00 |
| rhsa-2024:1472 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2024-03-21T15:47:42+00:00 | 2026-01-21T23:20:57+00:00 |
| rhsa-2024:1502 | Red Hat Security Advisory: grafana-pcp security update | 2024-03-25T20:26:18+00:00 | 2026-01-21T23:20:56+00:00 |
| rhsa-2024:1501 | Red Hat Security Advisory: grafana security update | 2024-03-25T20:29:49+00:00 | 2026-01-21T23:20:56+00:00 |
| rhsa-2024:1468 | Red Hat Security Advisory: go-toolset-1.19-golang security update | 2024-03-21T12:17:52+00:00 | 2026-01-21T23:20:52+00:00 |
| rhsa-2024:1462 | Red Hat Security Advisory: golang security update | 2024-03-21T08:17:16+00:00 | 2026-01-21T23:20:51+00:00 |
| rhsa-2024:1210 | Red Hat Security Advisory: OpenShift Container Platform 4.15.2 bug fix and security update | 2024-03-13T15:31:52+00:00 | 2026-01-21T23:20:45+00:00 |
| rhsa-2024:1197 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4 security update | 2024-03-06T17:52:22+00:00 | 2026-01-21T23:20:43+00:00 |
| rhsa-2024:1196 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4 security update | 2024-03-06T17:58:21+00:00 | 2026-01-21T23:20:43+00:00 |
| rhsa-2024:1194 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.1 security update | 2024-03-06T15:38:13+00:00 | 2026-01-21T23:20:43+00:00 |
| rhsa-2024:1193 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.1 security update | 2024-03-06T15:32:21+00:00 | 2026-01-21T23:20:42+00:00 |
| rhsa-2024:1192 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.1 security update | 2024-03-06T15:32:30+00:00 | 2026-01-21T23:20:42+00:00 |
| rhsa-2024:1130 | Red Hat Security Advisory: openssh security update | 2024-03-05T18:18:29+00:00 | 2026-01-21T23:20:40+00:00 |
| rhsa-2024:1150 | Red Hat Security Advisory: buildah security update | 2024-03-05T18:16:47+00:00 | 2026-01-21T23:20:38+00:00 |
| rhsa-2024:11381 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.11.4 security enhancements and bug fixes | 2024-12-18T16:28:31+00:00 | 2026-01-21T23:20:37+00:00 |
| rhsa-2024:11292 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.4 security and bug fix update | 2024-12-17T18:29:55+00:00 | 2026-01-21T23:20:33+00:00 |
| rhsa-2024:11256 | Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1 | 2024-12-17T11:08:00+00:00 | 2026-01-21T23:20:33+00:00 |
| rhsa-2024:11255 | Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1 | 2024-12-17T10:22:51+00:00 | 2026-01-21T23:20:33+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-21-147-05 | Mitsubishi Electric MELSEC iQ-R Series | 2021-05-27T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-147-04 | Siemens JT2Go and Teamcenter Visualization | 2021-05-27T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-147-03 | MesaLabs AmegaView | 2021-05-27T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-147-02 | Johnson Controls Sensormatic Electronics VideoEdge | 2021-05-27T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-147-01 | GENIVI Alliance DLT | 2021-05-27T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-012-03 | Siemens JT2Go and Teamcenter Visualization (Update B) | 2021-01-12T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-20-212-03 | Mitsubishi Electric Factory Automation Products Path Traversal (Update C) | 2020-07-30T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-145-02 | Rockwell Automation Micro800 and MicroLogix 1400 | 2021-05-25T00:00:00.000000Z | 2021-05-25T00:00:00.000000Z |
| icsa-21-145-01 | Datakit Libraries bundled in Luxion KeyShot | 2021-05-25T00:00:00.000000Z | 2021-05-25T00:00:00.000000Z |
| icsa-21-138-01 | ICSA-21-138-01_Emerson Rosemount X-STREAM | 2021-05-18T00:00:00.000000Z | 2021-05-18T00:00:00.000000Z |
| icsa-21-021-04 | Mitsubishi Electric MELFA (Update A) | 2021-01-21T00:00:00.000000Z | 2021-05-18T00:00:00.000000Z |
| icsa-21-133-04 | OPC UA Products Built with the .NET Framework 4.5, 4.0, and 3.5 | 2021-05-13T00:00:00.000000Z | 2021-05-13T00:00:00.000000Z |
| icsa-21-133-03 | OPC Foundation UA Products Built with .NET Framework | 2021-05-13T00:00:00.000000Z | 2021-05-13T00:00:00.000000Z |
| icsa-21-133-02 | Johnson Controls Sensormatic Tyco AI | 2021-05-13T00:00:00.000000Z | 2021-05-13T00:00:00.000000Z |
| icsa-21-133-01 | Rockwell Automation Connected Components Workbench | 2021-05-13T00:00:00.000000Z | 2021-05-13T00:00:00.000000Z |
| icsa-21-131-01 | Omron CX-One | 2021-05-11T00:00:00.000000Z | 2021-05-11T00:00:00.000000Z |
| icsa-21-040-08 | Siemens SIMARIS Configuration (Update A) | 2021-02-09T00:00:00.000000Z | 2021-05-11T00:00:00.000000Z |
| icsa-21-124-02 | Delta Electronics CNCSoft ScreenEditor | 2021-05-04T00:00:00.000000Z | 2021-05-04T00:00:00.000000Z |
| icsa-21-124-01 | Advantech WISE-PaaS RMM | 2021-05-04T00:00:00.000000Z | 2021-05-04T00:00:00.000000Z |
| icsa-21-119-03 | Johnson Controls Exacq Technologies exacqVision | 2021-04-29T00:00:00.000000Z | 2021-04-29T00:00:00.000000Z |
| icsa-21-119-02 | Cassia Networks Access Controller | 2021-04-29T00:00:00.000000Z | 2021-04-29T00:00:00.000000Z |
| icsa-21-119-01 | Texas Instruments SimpleLink | 2021-04-29T00:00:00.000000Z | 2021-04-29T00:00:00.000000Z |
| icsa-21-112-01 | Horner Automation Cscape | 2021-04-22T00:00:00.000000Z | 2021-04-22T00:00:00.000000Z |
| icsa-21-110-06 | Eaton Intelligent Power Manager | 2021-04-20T00:00:00.000000Z | 2021-04-20T00:00:00.000000Z |
| icsa-21-110-05 | Delta Electronics CNCSoft-B | 2021-04-20T00:00:00.000000Z | 2021-04-20T00:00:00.000000Z |
| icsa-21-110-04 | Delta Electronics CNCSoft ScreenEditor | 2021-04-20T00:00:00.000000Z | 2021-04-20T00:00:00.000000Z |
| icsa-21-110-03 | Delta Industrial Automation COMMGR | 2021-04-20T00:00:00.000000Z | 2021-04-20T00:00:00.000000Z |
| icsa-21-110-02 | ICSA-21-110-02_Rockwell Automation Stratix Switches | 2021-04-20T00:00:00.000000Z | 2021-04-20T00:00:00.000000Z |
| icsa-21-110-01 | Hitachi ABB Power Grids Ellipse APM | 2021-04-20T00:00:00.000000Z | 2021-04-20T00:00:00.000000Z |
| icsa-21-096-01 | Hitachi Energy Relion 670, 650 and SAM600-IO | 2021-04-06T00:00:00.000000Z | 2021-04-20T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-cucm-cuc-imp-xss-xtpzfm5e | Cisco Unified Communications Products Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cucm-cuc-imp-xss-XtpzfM5e | Cisco Unified Communications Products Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr5k-ipv6-dos-ce3zhf8m | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr5k-ipv6-dos-ce3zhF8m | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr-dos-zjljfgbf | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr-dos-zJLJFgBf | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-profile-7u3perkf | Cisco AnyConnect Secure Mobility Client for Windows Profile Modification Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-profile-7u3PERKF | Cisco AnyConnect Secure Mobility Client for Windows Profile Modification Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-dos-fexq4tav | Cisco AnyConnect Secure Mobility Client for Windows Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-dos-feXq4tAV | Cisco AnyConnect Secure Mobility Client for Windows Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-rv-routers-rj5jrff8 | Cisco Small Business RV Series Routers Command Injection Vulnerabilities | 2020-06-17T16:00:00+00:00 | 2020-08-03T16:18:58+00:00 |
| cisco-sa-rv-routers-Rj5JRfF8 | Cisco Small Business RV Series Routers Command Injection Vulnerabilities | 2020-06-17T16:00:00+00:00 | 2020-08-03T16:18:58+00:00 |
| cisco-sa-racerts-wvuypxew | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Trustpoint Configuration Defaults | 2020-07-31T16:00:00+00:00 | 2020-07-31T22:35:48+00:00 |
| cisco-sa-racerts-WvuYpxew | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Trustpoint Configuration Defaults | 2020-07-31T16:00:00+00:00 | 2020-07-31T22:35:48+00:00 |
| cisco-sa-sdbufof-h5f5vsel | Cisco SD-WAN Solution Software Buffer Overflow Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-30T17:13:13+00:00 |
| cisco-sa-sdbufof-h5f5VSeL | Cisco SD-WAN Solution Software Buffer Overflow Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-30T17:13:13+00:00 |
| cisco-sa-20190206-tms-soap | Cisco TelePresence Management Suite Web Services | 2019-02-06T16:00:00+00:00 | 2020-07-29T16:24:11+00:00 |
| cisco-sa-uabvman-sygzt8bv | Cisco SD-WAN vManage Software Authorization Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-uabvman-SYGzt8Bv | Cisco SD-WAN vManage Software Authorization Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-devmgr-cmd-inj-umc8rhnh | Cisco Data Center Network Manager Command Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-devmgr-cmd-inj-Umc8RHNh | Cisco Data Center Network Manager Command Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-xss-3jkdlslv | Cisco Data Center Network Manager Cross-Site Scripting Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-xss-3jkDLsLV | Cisco Data Center Network Manager Cross-Site Scripting Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-sql-inject-8hk6pwmf | Cisco Data Center Network Manager SQL Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-sql-inject-8hk6PwmF | Cisco Data Center Network Manager SQL Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-rest-inj-bct8pwaj | Cisco Data Center Network Manager Command Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-rest-inj-BCt8pwAJ | Cisco Data Center Network Manager Command Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-path-trav-2xzonjdr | Cisco Data Center Network Manager Path Traversal Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-path-trav-2xZOnJdR | Cisco Data Center Network Manager Path Traversal Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-info-disclosure-tfx3kerc | Cisco Data Center Network Manager Information Disclosure Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-11831 | Npm-serialize-javascript: cross-site scripting (xss) in serialize-javascript | 2025-02-02T00:00:00.000Z | 2025-09-03T23:04:58.000Z |
| msrc_cve-2024-49994 | block: fix integer overflow in BLKSECDISCARD | 2024-10-01T07:00:00.000Z | 2025-09-03T23:03:34.000Z |
| msrc_cve-2024-39463 | 9p: add missing locking around taking dentry fid list | 2024-06-02T07:00:00.000Z | 2025-09-03T23:03:27.000Z |
| msrc_cve-2024-33394 | An issue in kubevirt kubevirt v1.2.0 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component. | 2024-05-02T07:00:00.000Z | 2025-09-03T23:00:32.000Z |
| msrc_cve-2023-24538 | Backticks not treated as string delimiters in html/template | 2023-04-01T00:00:00.000Z | 2025-09-03T23:00:31.000Z |
| msrc_cve-2019-11324 | The urllib3 library before 1.24.2 for Python mishandles certain cases where the desired set of CA certificates is different from the OS store of CA certificates, which results in SSL connections succeeding in situations where a verification failure is the correct outcome. This is related to use of the ssl_context, ca_certs, or ca_certs_dir argument. | 2019-04-02T00:00:00.000Z | 2025-09-03T23:00:29.000Z |
| msrc_cve-2025-8842 | NASM Netwide Assember preproc.c do_directive use after free | 2025-08-02T00:00:00.000Z | 2025-09-03T23:00:16.000Z |
| msrc_cve-2025-38664 | ice: Fix a null pointer dereference in ice_copy_and_init_pkg() | 2025-08-02T00:00:00.000Z | 2025-09-03T23:00:09.000Z |
| msrc_cve-2024-30251 | Denial of service when trying to parse malformed POST requests in aiohttp | 2024-05-02T07:00:00.000Z | 2025-09-03T23:00:09.000Z |
| msrc_cve-2024-11218 | Podman: buildah: container breakout by using --jobs=2 and a race condition when building a malicious containerfile | 2025-01-02T00:00:00.000Z | 2025-09-03T22:59:20.000Z |
| msrc_cve-2025-6032 | Podman: podman missing tls verification | 2025-06-02T00:00:00.000Z | 2025-09-03T22:57:29.000Z |
| msrc_cve-2025-38625 | vfio/pds: Fix missing detach_ioas op | 2025-08-02T00:00:00.000Z | 2025-09-03T22:57:09.000Z |
| msrc_cve-2025-38379 | smb: client: fix warning when reconnecting channel | 2025-07-02T00:00:00.000Z | 2025-09-03T22:56:14.000Z |
| msrc_cve-2024-49897 | drm/amd/display: Check phantom_stream before it is used | 2024-10-01T07:00:00.000Z | 2025-09-03T22:55:58.000Z |
| msrc_cve-2022-49125 | drm/sprd: fix potential NULL dereference | 2025-02-02T00:00:00.000Z | 2025-09-03T22:55:52.000Z |
| msrc_cve-2022-4087 | iPXE TLS tls.c tls_new_ciphertext information exposure | 2022-11-02T00:00:00.000Z | 2025-09-03T22:55:05.000Z |
| msrc_cve-2022-48893 | drm/i915/gt: Cleanup partial engine discovery failures | 2024-08-02T00:00:00.000Z | 2025-09-03T22:55:01.000Z |
| msrc_cve-2025-52555 | CephFS Permission Escalation Vulnerability in Ceph Fuse mounted FS | 2025-06-02T00:00:00.000Z | 2025-09-03T22:54:54.000Z |
| msrc_cve-2023-6856 | The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue could allow an attacker to perform remote code execution and sandbox escape. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. | 2023-12-01T08:00:00.000Z | 2025-09-03T22:54:52.000Z |
| msrc_cve-2024-37676 | An issue in htop-dev htop v.2.20 allows a local attacker to cause an out-of-bounds access in the Header_populateFromSettings function. | 2024-06-02T07:00:00.000Z | 2025-09-03T22:54:51.000Z |
| msrc_cve-2025-38623 | PCI: pnv_php: Fix surprise plug detection and recovery | 2025-08-02T00:00:00.000Z | 2025-09-03T22:54:25.000Z |
| msrc_cve-2024-6603 | In an out-of-memory scenario an allocation could fail but free would have been called on the pointer afterwards leading to memory corruption. This vulnerability affects Firefox < 128, Firefox ESR < 115.13, Thunderbird < 115.13, and Thunderbird < 128. | 2024-07-01T07:00:00.000Z | 2025-09-03T22:54:02.000Z |
| msrc_cve-2025-1118 | Grub2: commands/dump: the dump command is not in lockdown when secure boot is enabled | 2025-02-02T00:00:00.000Z | 2025-09-03T22:53:33.000Z |
| msrc_cve-2022-49108 | clk: mediatek: Fix memory leaks on probe | 2025-02-02T00:00:00.000Z | 2025-09-03T22:53:13.000Z |
| msrc_cve-2025-37855 | drm/amd/display: Guard Possible Null Pointer Dereference | 2025-05-02T00:00:00.000Z | 2025-09-03T22:53:06.000Z |
| msrc_cve-2023-52572 | cifs: Fix UAF in cifs_demultiplex_thread() | 2024-03-02T08:00:00.000Z | 2025-09-03T22:52:49.000Z |
| msrc_cve-2022-41716 | Unsanitized NUL in environment variables on Windows in syscall and os/exec | 2022-11-02T00:00:00.000Z | 2025-09-03T22:52:17.000Z |
| msrc_cve-2025-8732 | libxml2 xmlcatalog xmlParseSGMLCatalog recursion | 2025-08-02T00:00:00.000Z | 2025-09-03T22:52:04.000Z |
| msrc_cve-2023-49556 | Buffer Overflow vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expr_delete_term function in the libyasm/expr.c component. | 2024-01-01T08:00:00.000Z | 2025-09-03T22:51:24.000Z |
| msrc_cve-2025-38663 | nilfs2: reject invalid file types when reading inodes | 2025-08-02T00:00:00.000Z | 2025-09-03T22:51:05.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202312-2736 | Beijing Xingwang Ruijie Network Technology Co., Ltd. is a professional network manufactur… | 2024-03-07T22:55:59.879000Z |
| var-202402-2401 | Agile Controller is an automation controller suitable for various industrial application … | 2024-03-07T22:55:40.023000Z |
| var-202401-2673 | Beijing Xingwang Ruijie Network Technology Co., Ltd. EG2000GE is a router product. Th… | 2024-03-07T22:55:40.164000Z |
| var-202401-2652 | SuperMap iServer is a cloud GIS application server based on a high-performance cross-plat… | 2024-03-07T22:55:40.174000Z |
| var-202204-1039 | A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS XE Software c… | 2024-03-07T22:53:03.340000Z |
| var-202401-2669 | TP-Link Tapo APK up to v2.12.703 uses hardcoded credentials for access to the login panel. | 2024-03-07T22:53:00.412000Z |
| var-202401-2417 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the fu… | 2024-03-07T22:53:00.546000Z |
| var-202401-2391 | IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 thro… | 2024-03-07T22:52:24.051000Z |
| var-202401-2674 | Beijing Xingwang Ruijie Network Technology Co., Ltd. EG2000GE is a router product. Th… | 2024-03-07T22:51:00.556000Z |
| var-202401-2519 | IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 thro… | 2024-03-07T22:48:01.098000Z |
| var-202401-2418 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in… | 2024-03-07T22:43:46.826000Z |
| var-202401-2495 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the… | 2024-03-07T22:40:55.390000Z |
| var-202403-0394 | EG3210 is a multi-service security gateway. There is a command execution vulnerabilit… | 2024-03-07T22:40:54.045000Z |
| var-202401-2636 | An improper limitation of a pathname to a restricted directory ('path traversal') vulnera… | 2024-03-07T22:31:26.032000Z |
| var-200609-0995 | OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key… | 2024-03-07T21:38:05.856000Z |
| var-202402-2601 | Beijing Xingwang Ruijie Network Technology Co., Ltd. EG3210 is a router product. Ther… | 2024-03-07T19:11:58.512000Z |
| var-202402-1750 | Dell OS10 Networking Switches running 10.5.2.x and above contain a vulnerability with ze… | 2024-03-06T22:47:01.648000Z |
| var-202402-1804 | In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between… | 2024-03-05T22:45:37.541000Z |
| var-201903-0559 | A vulnerability in the Cisco Network Plug-and-Play (PnP) agent of Cisco IOS Software and … | 2024-03-05T22:43:45.716000Z |
| var-201903-0600 | A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS … | 2024-03-05T22:43:18.156000Z |
| var-201903-0599 | A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS … | 2024-03-05T22:43:18.191000Z |
| var-201903-0565 | A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software cou… | 2024-03-05T22:39:11.295000Z |
| var-202402-1924 | Dell OS10 Networking Switches running 10.5.2.x and above contain an OS command injection… | 2024-03-05T22:39:02.953000Z |
| var-201903-0563 | A vulnerability in the ISDN functions of Cisco IOS Software and Cisco IOS XE Software cou… | 2024-03-05T22:37:28.681000Z |
| var-202402-1915 | In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between… | 2024-03-05T22:37:15.368000Z |
| var-202204-0268 | Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cis… | 2024-03-05T22:26:38.616000Z |
| var-202310-0300 | Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_dat… | 2024-03-04T22:57:37.269000Z |
| var-202104-1667 | Multilaser Router AC1200 V02.03.01.45_pt contains a cross-site request forgery (CSRF) vul… | 2024-03-03T22:14:02.715000Z |
| var-200801-0247 | GE Fanuc Proficy Real-Time Information Portal 2.6 and earlier uses HTTP Basic Authenticat… | 2024-03-02T23:20:39.974000Z |
| var-200803-0332 | ZyXEL ZyWALL 1050 has a hard-coded password for the Quagga and Zebra processes that is no… | 2024-03-01T22:58:19.942000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2009-000070 | SEIL/X Series and SEIL/B1 denial of service vulnerability | 2009-11-02T16:42+09:00 | 2009-11-02T16:42+09:00 |
| jvndb-2009-000069 | SEIL/X Series and SEIL/B1 buffer overflow vulnerability | 2009-11-02T16:42+09:00 | 2009-11-02T16:42+09:00 |
| jvndb-2008-000018 | Namazu cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2009-10-27T13:43+09:00 |
| jvndb-2009-000066 | Canon IT Solutions Inc. ACCESSGUARDIAN vulnerable to cross-site scripting | 2009-10-20T15:56+09:00 | 2009-10-20T15:56+09:00 |
| jvndb-2009-000067 | Multiple Cybozu products vulnerable to cross-site scripting | 2009-10-15T15:21+09:00 | 2009-10-15T15:21+09:00 |
| jvndb-2009-000065 | SugarCRM vulnerable to cross-site scripting | 2009-10-02T16:02+09:00 | 2009-10-02T16:02+09:00 |
| jvndb-2009-000064 | Directory traversal vulnerability in multiple phpspot products | 2009-09-18T18:11+09:00 | 2009-09-18T18:11+09:00 |
| jvndb-2009-000063 | Cross-site scripting vulnerability in multiple phpspot products | 2009-09-18T18:11+09:00 | 2009-09-18T18:11+09:00 |
| jvndb-2009-000062 | XF-Section vulnerable to cross-site scripting | 2009-09-17T15:52+09:00 | 2009-09-17T15:52+09:00 |
| jvndb-2009-000061 | Third-party cookie issue in Opera | 2009-09-17T15:52+09:00 | 2009-09-17T15:52+09:00 |
| jvndb-2009-001968 | GIF File Processing Denial of Service Vulnerability in Multiple JP1 Products | 2009-09-14T10:31+09:00 | 2009-09-14T10:31+09:00 |
| jvndb-2009-001967 | Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP | 2009-09-14T10:31+09:00 | 2009-09-14T10:31+09:00 |
| jvndb-2009-000060 | Webservice-DIC yoyaku_v41 vulnerable to command injection | 2009-09-11T16:36+09:00 | 2009-09-11T16:36+09:00 |
| jvndb-2009-000059 | Buffer overflow vulnerability in Microsoft Windows | 2009-09-09T17:30+09:00 | 2009-09-09T17:30+09:00 |
| jvndb-2009-001931 | Issue of Access Control Failure in Hitachi Device Manager Server | 2009-08-31T15:52+09:00 | 2009-08-31T15:52+09:00 |
| jvndb-2009-001930 | Issue of Access Control Failure in Groupmax Scheduler Server | 2009-08-31T15:52+09:00 | 2009-08-31T15:52+09:00 |
| jvndb-2009-000058 | bingo!CMS core and bingo!CMS vulnerable to cross-site request forgery | 2009-08-27T15:29+09:00 | 2009-08-27T15:29+09:00 |
| jvndb-2009-000055 | Site Calendar 'mycaljp' vulnerable to cross-site scripting | 2009-08-26T15:25+09:00 | 2009-08-26T15:25+09:00 |
| jvndb-2009-001893 | Hitachi Business Logic Cross-Site Scripting Vulnerability | 2009-08-25T10:50+09:00 | 2009-08-25T10:50+09:00 |
| jvndb-2009-000056 | SugarCRM vulnerable to SQL injection | 2009-08-24T16:25+09:00 | 2009-08-24T16:25+09:00 |
| jvndb-2009-000054 | ColdFusion vulnerable to cross-site scripting | 2009-08-19T16:33+09:00 | 2009-08-19T16:33+09:00 |
| jvndb-2007-000295 | APOP password recovery vulnerability | 2008-05-21T00:00+09:00 | 2009-08-06T11:39+09:00 |
| jvndb-2009-000053 | Cross-site request forgery vulnerability in FreeNAS | 2009-08-05T15:59+09:00 | 2009-08-05T15:59+09:00 |
| jvndb-2009-000052 | Cross-site scripting vulnerability in FreeNAS | 2009-08-05T15:58+09:00 | 2009-08-05T15:58+09:00 |
| jvndb-2009-000051 | Webservice-DIC yoyaku_v41 vulnerable to command injection | 2009-07-31T15:34+09:00 | 2009-07-31T15:34+09:00 |
| jvndb-2009-000050 | MySQL Connector/J vulnerable to SQL injection | 2009-07-29T15:30+09:00 | 2009-07-29T15:30+09:00 |
| jvndb-2009-000020 | Movable Type cross-site scripting vulnerability | 2009-04-28T16:18+09:00 | 2009-07-29T12:22+09:00 |
| jvndb-2009-000002 | Movable Type Enterprise cross-site scripting vulnerability | 2009-01-13T18:50+09:00 | 2009-07-29T12:22+09:00 |
| jvndb-2009-000049 | Cross-site scripting vulnerability in RevoCounter CGI (Animation Counter) | 2009-07-24T17:19+09:00 | 2009-07-24T17:19+09:00 |
| jvndb-2009-000048 | shiromuku(fs6)DIARY cross-site scripting vulnerability | 2009-07-15T18:15+09:00 | 2009-07-15T18:15+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:1036-1 | Security update for podman | 2025-03-27T09:43:42Z | 2025-03-27T09:43:42Z |
| suse-su-2025:1032-1 | Security update for microcode_ctl | 2025-03-26T14:22:25Z | 2025-03-26T14:22:25Z |
| suse-su-2025:1029-1 | Security update for ed25519-java | 2025-03-26T13:11:18Z | 2025-03-26T13:11:18Z |
| suse-su-2025:1028-1 | Security update for proftpd | 2025-03-26T12:50:07Z | 2025-03-26T12:50:07Z |
| suse-su-2025:1027-1 | Security update for the Linux Kernel | 2025-03-26T12:12:05Z | 2025-03-26T12:12:05Z |
| suse-su-2025:1026-1 | Security update for php7 | 2025-03-26T11:30:47Z | 2025-03-26T11:30:47Z |
| suse-su-2025:1025-1 | Security update for php7 | 2025-03-26T11:30:00Z | 2025-03-26T11:30:00Z |
| suse-su-2025:1024-1 | Security update for tomcat10 | 2025-03-26T11:29:12Z | 2025-03-26T11:29:12Z |
| suse-su-2025:1023-1 | Security update for webkit2gtk3 | 2025-03-26T11:28:46Z | 2025-03-26T11:28:46Z |
| suse-su-2025:1022-1 | Security update for apache-commons-vfs2 | 2025-03-26T11:28:34Z | 2025-03-26T11:28:34Z |
| suse-su-2025:1019-1 | Security update for azure-cli-core | 2025-03-26T10:27:40Z | 2025-03-26T10:27:40Z |
| suse-su-2025:1018-1 | Security update for buildah | 2025-03-26T09:03:07Z | 2025-03-26T09:03:07Z |
| suse-su-2025:1017-1 | Security update for buildah | 2025-03-26T09:02:54Z | 2025-03-26T09:02:54Z |
| suse-su-2025:1014-1 | Security update for buildah | 2025-03-25T13:05:55Z | 2025-03-25T13:05:55Z |
| suse-su-2025:1013-1 | Security update for govulncheck-vulndb | 2025-03-25T12:47:48Z | 2025-03-25T12:47:48Z |
| suse-su-2025:1012-1 | Security update for php8 | 2025-03-25T12:47:30Z | 2025-03-25T12:47:30Z |
| suse-su-2025:1011-1 | Security update for grafana | 2025-03-25T11:44:29Z | 2025-03-25T11:44:29Z |
| suse-su-2025:1010-1 | Security update for grafana | 2025-03-25T11:44:15Z | 2025-03-25T11:44:15Z |
| suse-su-2025:1009-1 | Security update for grafana | 2025-03-25T11:44:03Z | 2025-03-25T11:44:03Z |
| suse-su-2025:1008-1 | Security update for python-gunicorn | 2025-03-25T11:09:00Z | 2025-03-25T11:09:00Z |
| suse-su-2025:20161-1 | Security update for libX11 | 2025-03-25T09:05:37Z | 2025-03-25T09:05:37Z |
| suse-su-2025:20160-1 | Security update for openssh | 2025-03-25T09:02:20Z | 2025-03-25T09:02:20Z |
| suse-su-2025:1007-1 | Security update for helm | 2025-03-25T08:44:44Z | 2025-03-25T08:44:44Z |
| suse-su-2025:1006-1 | Security update for google-osconfig-agent | 2025-03-25T08:44:10Z | 2025-03-25T08:44:10Z |
| suse-su-2025:1005-1 | Security update for google-guest-agent | 2025-03-25T08:43:34Z | 2025-03-25T08:43:34Z |
| suse-su-2025:1004-1 | Security update for python-Jinja2 | 2025-03-25T08:42:43Z | 2025-03-25T08:42:43Z |
| suse-su-2025:1003-1 | Security update for libxslt | 2025-03-25T08:42:08Z | 2025-03-25T08:42:08Z |
| suse-su-2025:1002-1 | Security update for python-gunicorn | 2025-03-25T08:41:39Z | 2025-03-25T08:41:39Z |
| suse-su-2025:0998-1 | Security update for freetype2 | 2025-03-25T02:07:21Z | 2025-03-25T02:07:21Z |
| suse-su-2025:0994-1 | Security update for php8 | 2025-03-24T15:11:07Z | 2025-03-24T15:11:07Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:13396-1 | gstreamer-plugins-bad-1.22.6-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13395-1 | element-desktop-1.11.47-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13394-1 | clamav-0.103.11-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13393-1 | avahi-0.8-27.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13392-1 | matrix-synapse-1.95.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13391-1 | grpc-devel-1.59.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13390-1 | lighttpd-1.4.73-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13389-1 | jasper-4.0.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13388-1 | glibc-2.38-6.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13387-1 | frr-8.4-7.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13386-1 | freeradius-server-3.2.3-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13385-1 | MozillaFirefox-119.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13384-1 | velero-1.12.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13383-1 | ungoogled-chromium-118.0.5993.117-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13382-1 | tomcat-9.0.82-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13381-1 | libtiff-devel-32bit-4.6.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13380-1 | libQt6Concurrent6-6.6.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13379-1 | pgadmin4-7.8-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13378-1 | libQt5Svg5-32bit-5.15.11+kde6-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13377-1 | libQt5Bootstrap-devel-static-32bit-5.15.11+kde138-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13376-1 | cmctl-1.13.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13375-1 | python310-Werkzeug-3.0.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13374-1 | libvmtools-devel-12.3.0-5.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13373-1 | avahi-0.8-26.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13372-1 | libopenssl-3-devel-3.1.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13371-1 | etcd-for-k8s1.27-3.5.9-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13370-1 | etcd-for-k8s1.26-3.5.9-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13369-1 | etcd-for-k8s1.25-3.5.9-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13368-1 | chromedriver-118.0.5993.117-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13367-1 | libvlc5-3.0.19-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-23470 | D-Link DIR-823X命令注入漏洞(CNVD-2025-23470) | 2025-09-23 | 2025-10-13 |
| cnvd-2025-23469 | D-Link DIR-823X命令注入漏洞(CNVD-2025-23469) | 2025-09-25 | 2025-10-13 |
| cnvd-2025-23468 | D-Link DIR-513缓冲区溢出漏洞(CNVD-2025-23468) | 2025-09-25 | 2025-10-13 |
| cnvd-2025-23467 | D-Link DIR-823X命令注入漏洞(CNVD-2025-23467) | 2025-09-29 | 2025-10-13 |
| cnvd-2025-23466 | D-Link DIR-823X命令执行漏洞 | 2025-09-29 | 2025-10-13 |
| cnvd-2025-23465 | WordPress插件CP Multi View Event Calendar授权缺失漏洞 | 2025-09-25 | 2025-10-13 |
| cnvd-2025-23464 | WordPress插件aThemes Addons for Elementor跨站脚本漏洞 | 2025-09-29 | 2025-10-13 |
| cnvd-2025-23463 | WordPress插件AR For WordPress跨站请求伪造漏洞 | 2025-09-29 | 2025-10-13 |
| cnvd-2025-23462 | WordPress插件AllInOne - Banner Rotator SQL注入漏洞 | 2025-09-29 | 2025-10-13 |
| cnvd-2025-23461 | WordPress插件Acclectic Media Organizer授权缺失漏洞 | 2025-09-29 | 2025-10-13 |
| cnvd-2025-23379 | Bank Locker Management System edit-subadmin.php?said=3文件SQL注入漏洞 | 2025-03-26 | 2025-10-11 |
| cnvd-2025-23378 | Bank Locker Management System search-locker-details.php文件SQL注入漏洞 | 2025-03-27 | 2025-10-11 |
| cnvd-2025-23377 | Bank Locker Management System search-report-details.php文件SQL注入漏洞 | 2025-03-28 | 2025-10-11 |
| cnvd-2025-23376 | Bank Locker Management System profile.php文件SQL注入漏洞 | 2025-03-28 | 2025-10-11 |
| cnvd-2025-23375 | Bank Locker Management System edit-locker.php?ltid=6文件SQL注入漏洞 | 2025-03-28 | 2025-10-11 |
| cnvd-2025-23374 | Bank Locker Management System changeimage1.php文件SQL注入漏洞 | 2025-03-28 | 2025-10-11 |
| cnvd-2025-23373 | WordPress插件Advanced Views存在未明漏洞 | 2025-09-25 | 2025-10-11 |
| cnvd-2025-23372 | D-Link DIR-823X命令注入漏洞(CNVD-2025-23372) | 2025-09-29 | 2025-10-11 |
| cnvd-2025-23371 | D-Link DIR-823X命令注入漏洞(CNVD-2025-23371) | 2025-09-29 | 2025-10-11 |
| cnvd-2025-23370 | D-Link DIR-823X命令注入漏洞(CNVD-2025-23370) | 2025-09-29 | 2025-10-11 |
| cnvd-2025-23369 | D-Link DIR-823X命令注入漏洞(CNVD-2025-23369) | 2025-09-29 | 2025-10-11 |
| cnvd-2025-23368 | D-Link DIR-823X命令注入漏洞(CNVD-2025-23368) | 2025-09-29 | 2025-10-11 |
| cnvd-2025-23367 | D-Link DIR-823X命令注入漏洞(CNVD-2025-23367) | 2025-09-29 | 2025-10-11 |
| cnvd-2025-23366 | Doctor Appointment Management System appointment-bwdates-reports-details.php文件SQL注入漏洞 | 2025-03-27 | 2025-10-11 |
| cnvd-2025-23365 | Bank Locker Management System changeidproof.php文件SQL注入漏洞 | 2025-03-28 | 2025-10-11 |
| cnvd-2025-23364 | e-Diary Management System view-note.php文件SQL注入漏洞 | 2025-04-09 | 2025-10-11 |
| cnvd-2025-23363 | e-Diary Management System search-result.php文件SQL注入漏洞 | 2025-04-09 | 2025-10-11 |
| cnvd-2025-23362 | e-Diary Management System registration.php文件SQL注入漏洞 | 2025-04-09 | 2025-10-11 |
| cnvd-2025-23361 | e-Diary Management System password-recovery.php文件SQL注入漏洞 | 2025-04-09 | 2025-10-11 |
| cnvd-2025-23360 | e-Diary Management System login.php文件SQL注入漏洞 | 2025-04-09 | 2025-10-11 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0964 | Multiples vulnérabilités dans les produits Citrix | 2024-11-12T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0982 | Vulnérabilité dans CPython | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0981 | Multiples vulnérabilités dans GitLab | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0980 | Multiples vulnérabilités dans les produits Intel | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0979 | Multiples vulnérabilités dans les produits Fortinet | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0978 | Multiples vulnérabilités dans les produits Microsoft | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0977 | Multiples vulnérabilités dans Microsoft Azure | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0976 | Multiples vulnérabilités dans Microsoft .Net | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0975 | Multiples vulnérabilités dans Microsoft Windows | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0974 | Multiples vulnérabilités dans Microsoft Office | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0973 | Vulnérabilité dans les produits Citrix | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0972 | Vulnérabilité dans les produits Adobe | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0971 | Multiples vulnérabilités dans Grafana | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0970 | Multiples vulnérabilités dans Google Chrome | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0968 | Multiples vulnérabilités dans les produits Siemens | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0967 | Multiples vulnérabilités dans les produits Ivanti | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0966 | Multiples vulnérabilités dans Nagios XI | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0965 | Multiples vulnérabilités dans les produits PrimX | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0964 | Multiples vulnérabilités dans les produits Citrix | 2024-11-12T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0963 | Multiples vulnérabilités dans Xen | 2024-11-12T00:00:00.000000 | 2024-11-12T00:00:00.000000 |
| certfr-2024-avi-0962 | Multiples vulnérabilités dans les produits SAP | 2024-11-12T00:00:00.000000 | 2024-11-12T00:00:00.000000 |
| certfr-2024-avi-0961 | Multiples vulnérabilités dans les produits Schneider Electric | 2024-11-12T00:00:00.000000 | 2024-11-12T00:00:00.000000 |
| certfr-2024-avi-0960 | Multiples vulnérabilités dans les produits Synology | 2024-11-12T00:00:00.000000 | 2024-11-12T00:00:00.000000 |
| certfr-2024-avi-0959 | Multiples vulnérabilités dans les produits NetApp | 2024-11-12T00:00:00.000000 | 2024-11-12T00:00:00.000000 |
| CERTFR-2024-AVI-0963 | Multiples vulnérabilités dans Xen | 2024-11-12T00:00:00.000000 | 2024-11-12T00:00:00.000000 |
| CERTFR-2024-AVI-0962 | Multiples vulnérabilités dans les produits SAP | 2024-11-12T00:00:00.000000 | 2024-11-12T00:00:00.000000 |
| CERTFR-2024-AVI-0961 | Multiples vulnérabilités dans les produits Schneider Electric | 2024-11-12T00:00:00.000000 | 2024-11-12T00:00:00.000000 |
| CERTFR-2024-AVI-0960 | Multiples vulnérabilités dans les produits Synology | 2024-11-12T00:00:00.000000 | 2024-11-12T00:00:00.000000 |
| CERTFR-2024-AVI-0959 | Multiples vulnérabilités dans les produits NetApp | 2024-11-12T00:00:00.000000 | 2024-11-12T00:00:00.000000 |
| certfr-2024-avi-0958 | Multiples vulnérabilités dans les produits IBM | 2024-11-08T00:00:00.000000 | 2024-11-08T00:00:00.000000 |