Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-j36f-98rr-mmcq | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-06T21:31:27Z |
| ghsa-hqvj-xwvm-6vr9 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-h6c4-8h46-gcfm | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-cwx8-hjhx-33h6 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-c6wq-6jc2-6vpr | Unrestricted Upload of File with Dangerous Type vulnerability in Plugify Helpdesk Support Ticket Sy… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-c636-m75r-rqxq | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-9r27-775m-fq63 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-9h9p-fpp6-8v2m | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-07T15:31:28Z |
| ghsa-939c-56c3-9v9c | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-06T21:31:27Z |
| ghsa-8qw9-m9qp-g8qm | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-07T00:30:29Z |
| ghsa-83hv-h643-r92h | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-7jq3-x2f7-gcvg | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-07T15:31:28Z |
| ghsa-7fpm-j8mp-fp7x | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-6799-fjfp-m83v | Unrestricted Upload of File with Dangerous Type vulnerability in Addify Custom User Registration Fi… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-648j-fchv-3hrv | Insertion of Sensitive Information Into Sent Data vulnerability in Vito Peleg Atarim atarim-visual-… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-6274-x8vj-52cw | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-07T00:30:29Z |
| ghsa-5r9x-826m-hjm7 | Missing Authorization vulnerability in Bux Bux Woocommerce bux-woocommerce allows Accessing Functio… | 2025-11-06T18:32:55Z | 2025-11-07T15:31:28Z |
| ghsa-5pqw-v7pg-6v9r | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-11-06T18:32:55Z | 2025-11-07T15:31:28Z |
| ghsa-5pmp-9cc5-cc5f | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-07T15:31:28Z |
| ghsa-575h-jw7h-9pjq | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ana… | 2025-11-06T18:32:55Z | 2025-11-06T18:32:55Z |
| ghsa-4px4-qq7x-7w9j | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:55Z | 2025-11-06T21:31:26Z |
| ghsa-445f-486h-qh76 | Unrestricted Upload of File with Dangerous Type vulnerability in Vito Peleg Atarim atarim-visual-co… | 2025-11-06T18:32:55Z | 2025-11-07T00:30:29Z |
| ghsa-wm3r-xgh7-77jf | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-10T21:30:34Z |
| ghsa-vwx7-c6q3-j293 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-vfv7-fp4j-fvpr | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-rrf9-p43r-8gmm | Missing Authorization vulnerability in kamleshyadav Miraculous miraculous allows Exploiting Incorre… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-qqwg-wprf-h8ff | Deserialization of Untrusted Data vulnerability in Cozmoslabs TranslatePress translatepress-multili… | 2025-11-06T18:32:54Z | 2025-11-07T18:30:27Z |
| ghsa-qqmx-f7c6-cqmp | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-qmvr-vqwv-566v | Missing Authorization vulnerability in Jthemes imEvent imevent allows Accessing Functionality Not P… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-qc98-fx88-c58q | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-07T21:31:20Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-6327 | N/A | WordPress King Addons for Elementor plugin <= 51.1.36 … |
KingAddons.com |
King Addons for Elementor |
2025-11-06T15:56:06.826Z | 2025-11-06T16:33:07.489Z |
| cve-2025-6325 | N/A | WordPress King Addons for Elementor plugin <= 51.1.36 … |
KingAddons.com |
King Addons for Elementor |
2025-11-06T15:56:05.901Z | 2025-11-06T16:35:08.832Z |
| cve-2025-62950 | N/A | WordPress Contest Gallery plugin <= 28.0.0 - Cross Sit… |
Wasiliy Strecker / ContestGallery developer |
Contest Gallery |
2025-11-06T15:56:04.961Z | 2025-11-06T16:39:23.097Z |
| cve-2025-62914 | N/A | WordPress Effect Maker plugin <= 1.2.1 - Broken Access… |
anibalwainstein |
Effect Maker |
2025-11-06T15:56:02.281Z | 2025-11-06T16:40:23.376Z |
| cve-2025-62076 | N/A | WordPress Simple Payment plugin <= 2.4.6 - Cross Site … |
Ido Kobelkowsky |
Simple Payment |
2025-11-06T15:55:59.012Z | 2025-11-06T16:52:48.760Z |
| cve-2025-62075 | N/A | WordPress Simple Payment plugin <= 2.4.6 - Local File … |
Ido Kobelkowsky |
Simple Payment |
2025-11-06T15:55:57.636Z | 2025-11-06T16:52:09.007Z |
| cve-2025-62074 | N/A | WordPress WPMobile.App plugin <= 11.71 - Cross Site Sc… |
Amauri |
WPMobile.App |
2025-11-06T15:55:56.024Z | 2025-11-06T16:50:29.744Z |
| cve-2025-62067 | N/A | WordPress Savory theme <= 2.5 - Local File Inclusion v… |
Elated-Themes |
Savory |
2025-11-06T15:55:55.213Z | 2025-11-06T16:49:34.814Z |
| cve-2025-62066 | N/A | WordPress Revolution theme < 2.5.8 - Local File Inclus… |
fuelthemes |
Revolution |
2025-11-06T15:55:54.429Z | 2025-11-06T16:47:22.028Z |
| cve-2025-62065 | N/A | WordPress RTMKit plugin <= 1.6.5 - Arbitrary File Uplo… |
Rometheme |
RTMKit |
2025-11-06T15:55:53.302Z | 2025-11-06T17:53:06.992Z |
| cve-2025-62064 | N/A | WordPress Search & Go theme <= 2.7 - Broken Authentica… |
Elated-Themes |
Search & Go |
2025-11-06T15:55:51.676Z | 2025-11-06T17:54:27.804Z |
| cve-2025-62059 | N/A | WordPress SureRank plugin <= 1.3.2 - Cross Site Script… |
Brainstorm Force |
SureRank |
2025-11-06T15:55:51.134Z | 2025-11-06T17:55:39.505Z |
| cve-2025-62057 | N/A | WordPress Houzez Theme - Functionality plugin < 4.2.0 … |
favethemes |
Houzez Theme - Functionality |
2025-11-06T15:55:50.427Z | 2025-11-06T17:56:38.157Z |
| cve-2025-62055 | N/A | WordPress Academist theme < 1.3 - Local File Inclusion… |
Elated-Themes |
Academist |
2025-11-06T15:55:49.844Z | 2025-11-06T17:57:57.885Z |
| cve-2025-62053 | N/A | WordPress Houzez theme < 4.2.0 - Local File Inclusion … |
favethemes |
Houzez |
2025-11-06T15:55:48.526Z | 2025-11-06T21:16:21.196Z |
| cve-2025-62051 | N/A | WordPress UDesign Core plugin <= 4.14.1 - Cross Site S… |
AndonDesign |
UDesign Core |
2025-11-06T15:55:47.211Z | 2025-11-06T21:12:52.533Z |
| cve-2025-62049 | N/A | WordPress Cost Calculator Builder plugin <= 3.5.32 - B… |
Stylemix |
Cost Calculator Builder |
2025-11-06T15:55:44.281Z | 2025-11-06T21:12:03.186Z |
| cve-2025-62047 | N/A | WordPress Case Addons plugin < 1.3.0 - Arbitrary File … |
Case-Themes |
Case Addons |
2025-11-06T15:55:43.609Z | 2025-11-06T21:11:15.581Z |
| cve-2025-62046 | N/A | WordPress TheGem Demo Import (for WPBakery) plugin <= … |
CodexThemes |
TheGem Demo Import (for WPBakery) |
2025-11-06T15:55:42.909Z | 2025-11-06T21:10:00.152Z |
| cve-2025-62045 | N/A | WordPress TheGem Theme Elements (for WPBakery) plugin … |
CodexThemes |
TheGem Theme Elements (for WPBakery) |
2025-11-06T15:55:41.551Z | 2025-11-06T21:08:50.158Z |
| cve-2025-62044 | N/A | WordPress TheGem Theme Elements (for WPBakery) plugin … |
CodexThemes |
TheGem Theme Elements (for WPBakery) |
2025-11-06T15:55:39.461Z | 2025-11-06T20:52:27.508Z |
| cve-2025-62041 | N/A | WordPress TheGem (Elementor) theme <= 5.10.5.1 - Cross… |
CodexThemes |
TheGem (Elementor) |
2025-11-06T15:55:38.770Z | 2025-11-06T20:50:57.073Z |
| cve-2025-62040 | N/A | WordPress YOP Poll plugin <= 6.5.37 - Cross Site Scrip… |
YOP |
YOP Poll |
2025-11-06T15:55:38.092Z | 2025-11-06T18:24:05.792Z |
| cve-2025-62039 | N/A | WordPress AI ChatBot with ChatGPT and Content Generato… |
Ays Pro |
AI ChatBot with ChatGPT and Content Generator by AYS |
2025-11-06T15:55:37.380Z | 2025-11-06T18:23:02.084Z |
| cve-2025-62038 | N/A | WordPress MeetingHub plugin <= 1.23.9 - Sensitive Data… |
Sovlix |
MeetingHub |
2025-11-06T15:55:36.094Z | 2025-11-06T18:22:02.186Z |
| cve-2025-62037 | N/A | WordPress Togo theme < 1.0.4 - Broken Access Control v… |
uxper |
Togo |
2025-11-06T15:55:34.720Z | 2025-11-06T18:20:50.029Z |
| cve-2025-62036 | N/A | WordPress Togo theme < 1.0.4 - Cross Site Scripting (X… |
uxper |
Togo |
2025-11-06T15:55:32.766Z | 2025-11-06T18:18:58.843Z |
| cve-2025-62035 | N/A | WordPress Togo theme < 1.0.4 - PHP Object Injection vu… |
uxper |
Togo |
2025-11-06T15:55:31.398Z | 2025-11-06T18:17:30.906Z |
| cve-2025-62034 | N/A | WordPress Togo theme < 1.0.4 - Privilege Escalation vu… |
uxper |
Togo |
2025-11-06T15:55:30.572Z | 2025-11-07T14:04:24.192Z |
| cve-2025-62033 | N/A | WordPress Togo theme < 1.0.4 - Broken Access Control v… |
uxper |
Togo |
2025-11-06T15:55:29.843Z | 2025-11-06T18:15:37.360Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-10885 | 7.8 (v3.1) | Privilege Escalation Vulnerability |
Autodesk |
Installer |
2025-11-06T17:01:19.327Z | 2025-11-08T04:55:19.036Z |
| cve-2025-6327 | N/A | WordPress King Addons for Elementor plugin <= 51.1.36 … |
KingAddons.com |
King Addons for Elementor |
2025-11-06T15:56:06.826Z | 2025-11-06T16:33:07.489Z |
| cve-2025-6325 | N/A | WordPress King Addons for Elementor plugin <= 51.1.36 … |
KingAddons.com |
King Addons for Elementor |
2025-11-06T15:56:05.901Z | 2025-11-06T16:35:08.832Z |
| cve-2025-64287 | N/A | WordPress Alloggio - Hotel Booking Theme theme <= 1.8 … |
Edge-Themes |
Alloggio - Hotel Booking |
2025-11-06T15:56:13.317Z | 2025-11-06T16:27:29.412Z |
| cve-2025-64232 | N/A | WordPress Import from YML plugin <= 3.1.17 - Cross Sit… |
icopydoc |
Import from YML |
2025-11-06T15:56:12.576Z | 2025-11-06T16:28:28.711Z |
| cve-2025-64224 | N/A | WordPress Grand Conference Theme Custom Post Type plug… |
ThemeGoods |
Grand Conference Theme Custom Post Type |
2025-11-06T15:56:10.204Z | 2025-11-06T16:29:41.925Z |
| cve-2025-64198 | N/A | WordPress Easy Social Share Buttons plugin < 10.7.1 - … |
appscreo |
Easy Social Share Buttons |
2025-11-06T15:56:09.273Z | 2025-11-06T16:30:52.338Z |
| cve-2025-64196 | N/A | WordPress Booster for WooCommerce plugin <= 7.2.5 - Cr… |
Pluggabl |
Booster for WooCommerce |
2025-11-06T15:56:07.302Z | 2025-11-06T16:32:04.450Z |
| cve-2025-63307 | N/A | alexusmai laravel-file-manager 3.3.1 is vulnerabl… |
n/a |
n/a |
2025-11-06T00:00:00.000Z | 2025-11-06T19:08:37.837Z |
| cve-2025-62950 | N/A | WordPress Contest Gallery plugin <= 28.0.0 - Cross Sit… |
Wasiliy Strecker / ContestGallery developer |
Contest Gallery |
2025-11-06T15:56:04.961Z | 2025-11-06T16:39:23.097Z |
| cve-2025-62914 | N/A | WordPress Effect Maker plugin <= 1.2.1 - Broken Access… |
anibalwainstein |
Effect Maker |
2025-11-06T15:56:02.281Z | 2025-11-06T16:40:23.376Z |
| cve-2025-62076 | N/A | WordPress Simple Payment plugin <= 2.4.6 - Cross Site … |
Ido Kobelkowsky |
Simple Payment |
2025-11-06T15:55:59.012Z | 2025-11-06T16:52:48.760Z |
| cve-2025-62075 | N/A | WordPress Simple Payment plugin <= 2.4.6 - Local File … |
Ido Kobelkowsky |
Simple Payment |
2025-11-06T15:55:57.636Z | 2025-11-06T16:52:09.007Z |
| cve-2025-62074 | N/A | WordPress WPMobile.App plugin <= 11.71 - Cross Site Sc… |
Amauri |
WPMobile.App |
2025-11-06T15:55:56.024Z | 2025-11-06T16:50:29.744Z |
| cve-2025-62067 | N/A | WordPress Savory theme <= 2.5 - Local File Inclusion v… |
Elated-Themes |
Savory |
2025-11-06T15:55:55.213Z | 2025-11-06T16:49:34.814Z |
| cve-2025-62066 | N/A | WordPress Revolution theme < 2.5.8 - Local File Inclus… |
fuelthemes |
Revolution |
2025-11-06T15:55:54.429Z | 2025-11-06T16:47:22.028Z |
| cve-2025-62065 | N/A | WordPress RTMKit plugin <= 1.6.5 - Arbitrary File Uplo… |
Rometheme |
RTMKit |
2025-11-06T15:55:53.302Z | 2025-11-06T17:53:06.992Z |
| cve-2025-62064 | N/A | WordPress Search & Go theme <= 2.7 - Broken Authentica… |
Elated-Themes |
Search & Go |
2025-11-06T15:55:51.676Z | 2025-11-06T17:54:27.804Z |
| cve-2025-62059 | N/A | WordPress SureRank plugin <= 1.3.2 - Cross Site Script… |
Brainstorm Force |
SureRank |
2025-11-06T15:55:51.134Z | 2025-11-06T17:55:39.505Z |
| cve-2025-62057 | N/A | WordPress Houzez Theme - Functionality plugin < 4.2.0 … |
favethemes |
Houzez Theme - Functionality |
2025-11-06T15:55:50.427Z | 2025-11-06T17:56:38.157Z |
| cve-2025-62055 | N/A | WordPress Academist theme < 1.3 - Local File Inclusion… |
Elated-Themes |
Academist |
2025-11-06T15:55:49.844Z | 2025-11-06T17:57:57.885Z |
| cve-2025-62053 | N/A | WordPress Houzez theme < 4.2.0 - Local File Inclusion … |
favethemes |
Houzez |
2025-11-06T15:55:48.526Z | 2025-11-06T21:16:21.196Z |
| cve-2025-62051 | N/A | WordPress UDesign Core plugin <= 4.14.1 - Cross Site S… |
AndonDesign |
UDesign Core |
2025-11-06T15:55:47.211Z | 2025-11-06T21:12:52.533Z |
| cve-2025-62049 | N/A | WordPress Cost Calculator Builder plugin <= 3.5.32 - B… |
Stylemix |
Cost Calculator Builder |
2025-11-06T15:55:44.281Z | 2025-11-06T21:12:03.186Z |
| cve-2025-62047 | N/A | WordPress Case Addons plugin < 1.3.0 - Arbitrary File … |
Case-Themes |
Case Addons |
2025-11-06T15:55:43.609Z | 2025-11-06T21:11:15.581Z |
| cve-2025-62046 | N/A | WordPress TheGem Demo Import (for WPBakery) plugin <= … |
CodexThemes |
TheGem Demo Import (for WPBakery) |
2025-11-06T15:55:42.909Z | 2025-11-06T21:10:00.152Z |
| cve-2025-62045 | N/A | WordPress TheGem Theme Elements (for WPBakery) plugin … |
CodexThemes |
TheGem Theme Elements (for WPBakery) |
2025-11-06T15:55:41.551Z | 2025-11-06T21:08:50.158Z |
| cve-2025-62044 | N/A | WordPress TheGem Theme Elements (for WPBakery) plugin … |
CodexThemes |
TheGem Theme Elements (for WPBakery) |
2025-11-06T15:55:39.461Z | 2025-11-06T20:52:27.508Z |
| cve-2025-62041 | N/A | WordPress TheGem (Elementor) theme <= 5.10.5.1 - Cross… |
CodexThemes |
TheGem (Elementor) |
2025-11-06T15:55:38.770Z | 2025-11-06T20:50:57.073Z |
| cve-2025-62040 | N/A | WordPress YOP Poll plugin <= 6.5.37 - Cross Site Scrip… |
YOP |
YOP Poll |
2025-11-06T15:55:38.092Z | 2025-11-06T18:24:05.792Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-61357 | Malicious code in statistical_toucan_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61356 | Malicious code in statistical_scorpion_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61355 | Malicious code in statistical_hare_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61354 | Malicious code in statistical_centipede_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61353 | Malicious code in static_kite_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61352 | Malicious code in static_jay_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61351 | Malicious code in standard_quelea_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61350 | Malicious code in standard_pig_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61349 | Malicious code in standard_lungfish_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61348 | Malicious code in stale_tyrannosaurus_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61347 | Malicious code in stable_viper_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61346 | Malicious code in stable_starfish_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61345 | Malicious code in squealing_dinosaur_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61344 | Malicious code in square_primate_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61343 | Malicious code in square_guppy_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61342 | Malicious code in spotty_ptarmigan_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61341 | Malicious code in spotless_platypus_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61340 | Malicious code in spotless_dove_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61339 | Malicious code in sporting_gull_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61338 | Malicious code in spontaneous_peacock_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61337 | Malicious code in spiritual_swordtail_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61336 | Malicious code in spiritual_piranha_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61335 | Malicious code in spiritual_opossum_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61334 | Malicious code in spicy_mollusk_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61333 | Malicious code in spicy_blackbird_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61332 | Malicious code in specified_penguin_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61331 | Malicious code in specified_newt_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61330 | Malicious code in specified_bonobo_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61329 | Malicious code in special_toad_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61328 | Malicious code in special_haddock_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:16729 | Red Hat Security Advisory: OpenShift Container Platform 4.18.25 packages and security update | 2025-10-01T16:38:14+00:00 | 2025-11-10T14:22:21+00:00 |
| rhsa-2025:16724 | Red Hat Security Advisory: OpenShift Container Platform 4.16.49 packages and security update | 2025-10-01T13:18:39+00:00 | 2025-11-10T14:22:20+00:00 |
| rhsa-2025:17144 | Red Hat Security Advisory: cups security update | 2025-10-01T10:43:39+00:00 | 2025-11-06T23:42:26+00:00 |
| rhsa-2025:17141 | Red Hat Security Advisory: cups security update | 2025-10-01T08:21:43+00:00 | 2025-11-06T23:42:25+00:00 |
| rhsa-2025:17129 | Red Hat Security Advisory: idm:DL1 security update | 2025-10-01T06:35:38+00:00 | 2025-11-07T18:35:52+00:00 |
| rhsa-2025:17128 | Red Hat Security Advisory: Submariner v0.20.2 security fixes and container updates | 2025-10-01T03:46:30+00:00 | 2025-11-07T00:16:21+00:00 |
| rhsa-2025:17124 | Red Hat Security Advisory: kernel security update | 2025-10-01T00:31:42+00:00 | 2025-11-08T07:17:20+00:00 |
| rhsa-2025:17122 | Red Hat Security Advisory: kernel security update | 2025-10-01T00:28:12+00:00 | 2025-11-08T07:17:20+00:00 |
| rhsa-2025:17123 | Red Hat Security Advisory: kernel-rt security update | 2025-10-01T00:24:54+00:00 | 2025-11-08T07:17:20+00:00 |
| rhsa-2025:17119 | Red Hat Security Advisory: perl-JSON-XS security update | 2025-09-30T21:36:52+00:00 | 2025-11-06T23:15:00+00:00 |
| rhsa-2025:17084 | Red Hat Security Advisory: ipa security update | 2025-09-30T17:33:12+00:00 | 2025-11-07T18:35:50+00:00 |
| rhsa-2025:17109 | Red Hat Security Advisory: kernel-rt security update | 2025-09-30T17:24:19+00:00 | 2025-11-10T17:57:03+00:00 |
| rhsa-2025:17088 | Red Hat Security Advisory: ipa security update | 2025-09-30T17:00:56+00:00 | 2025-11-07T18:35:52+00:00 |
| rhsa-2025:17085 | Red Hat Security Advisory: ipa security update | 2025-09-30T16:53:31+00:00 | 2025-11-07T18:35:50+00:00 |
| rhsa-2025:17087 | Red Hat Security Advisory: ipa security update | 2025-09-30T16:43:11+00:00 | 2025-11-07T18:35:52+00:00 |
| rhsa-2025:17086 | Red Hat Security Advisory: ipa security update | 2025-09-30T16:28:08+00:00 | 2025-11-07T18:35:51+00:00 |
| rhsa-2025:17054 | Red Hat Security Advisory: cups security update | 2025-09-30T12:23:26+00:00 | 2025-11-06T23:42:24+00:00 |
| rhsa-2025:17049 | Red Hat Security Advisory: cups security update | 2025-09-30T09:57:46+00:00 | 2025-11-06T23:42:24+00:00 |
| rhsa-2025:17043 | Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.7.0 release | 2025-09-30T08:54:44+00:00 | 2025-11-10T14:56:49+00:00 |
| rhsa-2025:17009 | Red Hat Security Advisory: kernel security update | 2025-09-30T00:37:36+00:00 | 2025-11-08T07:17:20+00:00 |
| rhsa-2025:16989 | Red Hat Security Advisory: Red Hat Offline Knowledge Portal update | 2025-09-29T17:36:18+00:00 | 2025-11-06T23:42:24+00:00 |
| rhsa-2025:16984 | Red Hat Security Advisory: RHOAI 2.19.3 - Red Hat OpenShift AI | 2025-09-29T17:16:20+00:00 | 2025-11-07T00:15:04+00:00 |
| rhsa-2025:16982 | Red Hat Security Advisory: RHOAI 2.22.2 - Red Hat OpenShift AI | 2025-09-29T17:16:15+00:00 | 2025-11-07T00:15:03+00:00 |
| rhsa-2025:16983 | Red Hat Security Advisory: RHOAI 2.21.1 - Red Hat OpenShift AI | 2025-09-29T17:16:12+00:00 | 2025-11-07T00:15:03+00:00 |
| rhsa-2025:16981 | Red Hat Security Advisory: RHOAI 2.16.3 - Red Hat OpenShift AI | 2025-09-29T17:16:06+00:00 | 2025-11-07T00:15:03+00:00 |
| rhsa-2025:16919 | Red Hat Security Advisory: kernel security update | 2025-09-29T12:19:03+00:00 | 2025-11-08T07:17:19+00:00 |
| rhsa-2025:16920 | Red Hat Security Advisory: kernel-rt security update | 2025-09-29T10:24:03+00:00 | 2025-11-08T07:17:19+00:00 |
| rhsa-2025:16918 | Red Hat Security Advisory: RHACS 4.7.7 bug fix and security update | 2025-09-29T08:02:30+00:00 | 2025-11-08T07:17:52+00:00 |
| rhsa-2025:16904 | Red Hat Security Advisory: kernel security update | 2025-09-29T08:02:17+00:00 | 2025-11-08T07:17:19+00:00 |
| rhsa-2025:16880 | Red Hat Security Advisory: kernel security update | 2025-09-29T05:35:08+00:00 | 2025-11-08T07:17:19+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-39703 | net, hsr: reject HSR frame if skb can't hold tag | 2025-09-02T00:00:00.000Z | 2025-09-07T01:01:27.000Z |
| msrc_cve-2025-39702 | ipv6: sr: Fix MAC comparison to be constant-time | 2025-09-02T00:00:00.000Z | 2025-09-07T01:03:29.000Z |
| msrc_cve-2025-39701 | ACPI: pfr_update: Fix the driver update version check | 2025-09-02T00:00:00.000Z | 2025-09-07T01:10:14.000Z |
| msrc_cve-2025-39697 | NFS: Fix a race when updating an existing write | 2025-09-02T00:00:00.000Z | 2025-09-07T01:01:52.000Z |
| msrc_cve-2025-39694 | s390/sclp: Fix SCCB present check | 2025-09-02T00:00:00.000Z | 2025-09-07T01:08:31.000Z |
| msrc_cve-2025-39693 | drm/amd/display: Avoid a NULL pointer dereference | 2025-09-02T00:00:00.000Z | 2025-09-07T01:08:47.000Z |
| msrc_cve-2025-39692 | smb: server: split ksmbd_rdma_stop_listening() out of ksmbd_rdma_destroy() | 2025-09-02T00:00:00.000Z | 2025-09-07T01:04:48.000Z |
| msrc_cve-2025-39691 | fs/buffer: fix use-after-free when call bh_read() helper | 2025-09-02T00:00:00.000Z | 2025-09-07T01:13:19.000Z |
| msrc_cve-2025-39689 | ftrace: Also allocate and copy hash for reading of filter files | 2025-09-02T00:00:00.000Z | 2025-09-07T01:05:43.000Z |
| msrc_cve-2025-39687 | iio: light: as73211: Ensure buffer holes are zeroed | 2025-09-02T00:00:00.000Z | 2025-09-07T01:08:07.000Z |
| msrc_cve-2025-39686 | comedi: Make insn_rw_emulate_bits() do insn->n samples | 2025-09-02T00:00:00.000Z | 2025-09-07T01:03:14.000Z |
| msrc_cve-2025-39685 | comedi: pcl726: Prevent invalid irq number | 2025-09-02T00:00:00.000Z | 2025-09-07T01:03:06.000Z |
| msrc_cve-2025-39684 | comedi: Fix use of uninitialized memory in do_insn_ioctl() and do_insnlist_ioctl() | 2025-09-02T00:00:00.000Z | 2025-09-07T01:04:24.000Z |
| msrc_cve-2025-39683 | tracing: Limit access to parser->buffer when trace_get_user failed | 2025-09-02T00:00:00.000Z | 2025-09-07T01:14:30.000Z |
| msrc_cve-2025-39682 | tls: fix handling of zero-length records on the rx_list | 2025-09-02T00:00:00.000Z | 2025-09-07T01:10:35.000Z |
| msrc_cve-2025-39681 | x86/cpu/hygon: Add missing resctrl_cpu_detect() in bsp_init helper | 2025-09-02T00:00:00.000Z | 2025-09-07T01:15:12.000Z |
| msrc_cve-2025-39679 | drm/nouveau/nvif: Fix potential memory leak in nvif_vmm_ctor(). | 2025-09-02T00:00:00.000Z | 2025-09-07T01:13:53.000Z |
| msrc_cve-2025-39677 | net/sched: Fix backlog accounting in qdisc_dequeue_internal | 2025-09-02T00:00:00.000Z | 2025-09-07T01:09:12.000Z |
| msrc_cve-2025-39676 | scsi: qla4xxx: Prevent a potential error pointer dereference | 2025-09-02T00:00:00.000Z | 2025-09-07T01:14:07.000Z |
| msrc_cve-2025-39675 | drm/amd/display: Add null pointer check in mod_hdcp_hdcp1_create_session() | 2025-09-02T00:00:00.000Z | 2025-09-07T01:12:13.000Z |
| msrc_cve-2025-39673 | ppp: fix race conditions in ppp_fill_forward_path | 2025-09-02T00:00:00.000Z | 2025-09-07T01:11:43.000Z |
| msrc_cve-2025-38736 | net: usb: asix_devices: Fix PHY address mask in MDIO bus initialization | 2025-09-02T00:00:00.000Z | 2025-09-07T01:14:50.000Z |
| msrc_cve-2025-38735 | gve: prevent ethtool ops after shutdown | 2025-09-02T00:00:00.000Z | 2025-09-07T01:04:11.000Z |
| msrc_cve-2025-38734 | net/smc: fix UAF on smcsk after smc_listen_out() | 2025-09-02T00:00:00.000Z | 2025-09-07T01:09:52.000Z |
| msrc_cve-2025-38732 | netfilter: nf_reject: don't leak dst refcount for loopback packets | 2025-09-02T00:00:00.000Z | 2025-09-07T01:13:06.000Z |
| msrc_cve-2025-38730 | io_uring/net: commit partial buffers on retry | 2025-09-02T00:00:00.000Z | 2025-09-06T01:05:44.000Z |
| msrc_cve-2025-38729 | ALSA: usb-audio: Validate UAC3 power domain descriptors, too | 2025-09-02T00:00:00.000Z | 2025-09-06T01:02:22.000Z |
| msrc_cve-2025-38728 | smb3: fix for slab out of bounds on mount to ksmbd | 2025-09-02T00:00:00.000Z | 2025-09-06T01:11:14.000Z |
| msrc_cve-2025-38725 | net: usb: asix_devices: add phy_mask for ax88772 mdio bus | 2025-09-02T00:00:00.000Z | 2025-09-06T01:13:01.000Z |
| msrc_cve-2025-38724 | nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:08:33.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2024-000014 | Oracle WebLogic Server vulnerable to HTTP header injection | 2024-01-24T13:53+09:00 | 2024-01-24T13:53+09:00 |
| jvndb-2024-000005 | "Mercari" App for Android fails to restrict custom URL schemes properly | 2024-01-24T13:46+09:00 | 2024-03-04T18:01+09:00 |
| jvndb-2024-000008 | Improper restriction of XML external entity references (XXE) in MLIT "Electronic Delivery Check System" and "Electronic delivery item Inspection Support System" | 2024-01-23T16:57+09:00 | 2024-03-13T17:40+09:00 |
| jvndb-2024-000013 | Android App "Spoon" uses a hard-coded API key for an external service | 2024-01-23T16:53+09:00 | 2024-03-14T17:44+09:00 |
| jvndb-2024-000010 | Improper restriction of XML external entity references (XXE) in "Electronic Delivery Check System (Ministry of Agriculture, Forestry and Fisheries The Agriculture and Rural Development Project Version)" | 2024-01-23T15:25+09:00 | 2024-03-14T17:33+09:00 |
| jvndb-2024-000009 | Improper restriction of XML external entity references (XXE) in Electronic Deliverables Creation Support Tool provided by Ministry of Defense | 2024-01-23T15:13+09:00 | 2024-03-13T17:46+09:00 |
| jvndb-2024-000012 | Access analysis CGI An-Analyzer vulnerable to open redirect | 2024-01-22T15:57+09:00 | 2024-03-13T17:34+09:00 |
| jvndb-2024-000011 | Multiple vulnerabilities in a-blog cms | 2024-01-22T15:08+09:00 | 2024-03-13T17:50+09:00 |
| jvndb-2024-000006 | FusionPBX vulnerable to cross-site scripting | 2024-01-19T12:30+09:00 | 2024-03-12T17:31+09:00 |
| jvndb-2024-000007 | Multiple Dahua Technology products vulnerable to authentication bypass | 2024-01-18T13:43+09:00 | 2024-07-11T16:10+09:00 |
| jvndb-2024-000004 | Drupal vulnerable to improper handling of structural elements | 2024-01-16T13:41+09:00 | 2024-03-12T17:33+09:00 |
| jvndb-2024-000003 | Pleasanter vulnerable to cross-site scripting | 2024-01-15T15:59+09:00 | 2024-01-15T15:59+09:00 |
| jvndb-2024-000002 | Thermal camera TMC series vulnerable to insufficient technical documentation | 2024-01-15T15:19+09:00 | 2024-03-11T18:17+09:00 |
| jvndb-2024-000001 | Improper input validation vulnerability in WordPress Plugin "WordPress Quiz Maker Plugin" | 2024-01-12T13:51+09:00 | 2024-03-14T12:28+09:00 |
| jvndb-2024-001002 | Multiple TP-Link products vulnerable to OS command injection | 2024-01-10T13:57+09:00 | 2024-03-14T13:52+09:00 |
| jvndb-2024-001001 | Multiple vulnerabilities in Panasonic Control FPWIN Pro7 | 2024-01-10T13:46+09:00 | 2024-01-10T13:46+09:00 |
| jvndb-2023-000126 | Multiple vulnerabilities in PowerCMS | 2023-12-26T16:46+09:00 | 2024-03-18T17:58+09:00 |
| jvndb-2023-000125 | Multiple vulnerabilities in BUFFALO VR-S1000 | 2023-12-26T15:51+09:00 | 2024-03-19T17:56+09:00 |
| jvndb-2023-014781 | Brother iPrint&Scan Desktop for Windows vulnerable to improper link resolution before file access | 2023-12-26T09:27+09:00 | 2024-03-18T18:05+09:00 |
| jvndb-2023-012042 | WordPress plugin "MW WP Form" vulnerable to arbitrary file upload | 2023-12-15T15:17+09:00 | 2024-03-26T17:39+09:00 |
| jvndb-2023-000123 | Multiple vulnerabilities in GROWI | 2023-12-13T15:30+09:00 | 2024-03-19T17:46+09:00 |
| jvndb-2023-011403 | ELECOM wireless LAN routers vulnerable to OS command injection | 2023-12-13T15:06+09:00 | 2024-04-18T17:22+09:00 |
| jvndb-2023-000122 | Multiple denial-of-service (DoS) vulnerabilities in JTEKT ELECTRONICS HMI GC-A2 series | 2023-12-11T14:12+09:00 | 2024-04-22T16:55+09:00 |
| jvndb-2023-009966 | FXC wireless LAN routers "AE1021PE" and "AE1021" vulnerable to OS command injection Critical | 2023-12-07T15:09+09:00 | 2023-12-25T16:54+09:00 |
| jvndb-2023-009619 | OS command injection vulnerability in DT900 | 2023-12-06T14:43+09:00 | 2023-12-06T14:43+09:00 |
| jvndb-2023-000121 | RakRak Document Plus vulnerable to path traversal | 2023-12-04T13:45+09:00 | 2024-01-24T12:06+09:00 |
| jvndb-2023-000119 | Ruckus Access Point contains a cross-site scripting vulnerability. | 2023-12-01T14:58+09:00 | 2024-04-23T17:51+09:00 |
| jvndb-2023-000117 | Multiple vulnerabilities in LuxCal Web Calendar | 2023-11-20T17:15+09:00 | 2023-11-20T17:15+09:00 |
| jvndb-2023-007152 | Multiple vulnerabilities in EXPRESSCLUSTER X | 2023-11-20T14:09+09:00 | 2024-05-01T18:10+09:00 |
| jvndb-2023-007150 | Multiple vulnerabilities in First Corporation's DVRs | 2023-11-17T17:31+09:00 | 2024-07-11T17:05+09:00 |
| ID | Description | Updated |
|---|