Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-j9c7-gf84-2wqg | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-10T21:30:34Z |
| ghsa-hwg2-j439-r9qp | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-hrj4-vcrc-2hch | Missing Authorization vulnerability in bPlugins Info Cards info-cards allows Accessing Functionalit… | 2025-11-06T18:32:54Z | 2025-11-07T21:31:20Z |
| ghsa-hqcq-5vqf-g22m | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-hc8c-89gg-5q5v | Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Keap/Infusionsoft gf-… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-gcvc-4v23-j4jw | Unrestricted Upload of File with Dangerous Type vulnerability in Helmut Wandl Advanced Settings adv… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-fpvx-h7cq-jphj | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-07T15:31:28Z |
| ghsa-cxw3-8hp5-fg86 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-10T21:30:34Z |
| ghsa-9547-g2hc-c92h | Deserialization of Untrusted Data vulnerability in NooTheme Yogi - Health Beauty & Yoga noo-yogi al… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-8rx4-fj24-3rqc | Deserialization of Untrusted Data vulnerability in Cristián Lávaque s2Member s2member allows Object… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-76pq-58pj-cgrv | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-63c7-4m6v-4j8p | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-62m2-79cv-f29w | Authorization Bypass Through User-Controlled Key vulnerability in kamleshyadav Miraculous Core Plug… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-5qc6-qfj6-rfxv | Missing Authorization vulnerability in ganddser Jock On Air Now (JOAN) joan allows Exploiting Incor… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-5376-r6x9-788p | Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows Object… | 2025-11-06T18:32:54Z | 2025-11-07T18:30:28Z |
| ghsa-4qr8-phcj-24h8 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:54Z | 2025-11-06T21:31:26Z |
| ghsa-4gh8-cr63-898j | Path Traversal: '.../...//' vulnerability in Dmitry V. (CEO of "UKR Solution") Barcode Scanner with… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-43f2-jmwh-r66h | Authentication Bypass by Spoofing vulnerability in Saad Iqbal All In One Login change-wp-admin-logi… | 2025-11-06T18:32:54Z | 2025-11-10T21:30:34Z |
| ghsa-2x7r-f4jf-gfj5 | Missing Authorization vulnerability in WP Messiah Ai Image Alt Text Generator for WP ai-image-alt-t… | 2025-11-06T18:32:54Z | 2025-11-06T18:32:54Z |
| ghsa-2jj7-5phw-h5ch | Deserialization of Untrusted Data vulnerability in NooTheme WeMusic noo-wemusic allows Object Injec… | 2025-11-06T18:32:54Z | 2025-11-10T21:30:34Z |
| ghsa-xg8f-g55r-6q3h | Deserialization of Untrusted Data vulnerability in VictorThemes Seil seil allows Object Injection.T… | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-whm5-j2cq-jjh4 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-vqw7-x8r5-hmjx | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-vpqx-2jhq-wrpw | Unrestricted Upload of File with Dangerous Type vulnerability in borisolhor Drop Uploader for CF7 -… | 2025-11-06T18:32:53Z | 2025-11-07T15:31:28Z |
| ghsa-fc2m-qm5j-pmj5 | Missing Authorization vulnerability in sertifier Sertifier Certificate & Badge Maker sertifier-cert… | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-f5mm-444h-94q4 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-c9jj-ghwx-hh7x | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-97fx-g7m5-mqpj | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-8q3g-wc86-q94h | Cross-Site Request Forgery (CSRF) vulnerability in Shahjahan Jewel WP GDPR Cookie Consent wp-gdpr-c… | 2025-11-06T18:32:53Z | 2025-11-10T21:30:34Z |
| ghsa-66fq-7q7x-4qmp | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-62033 | N/A | WordPress Togo theme < 1.0.4 - Broken Access Control v… |
uxper |
Togo |
2025-11-06T15:55:29.843Z | 2025-11-06T18:15:37.360Z |
| cve-2025-62032 | N/A | WordPress tagDiv Cloud Library plugin < 3.9.2 - Cross … |
tagDiv |
tagDiv Cloud Library |
2025-11-06T15:55:29.230Z | 2025-11-06T18:13:57.864Z |
| cve-2025-62031 | N/A | WordPress tagDiv Composer plugin <= 5.4.1 - Cross Site… |
tagDiv |
tagDiv Composer |
2025-11-06T15:55:28.516Z | 2025-11-06T18:11:04.272Z |
| cve-2025-62030 | N/A | WordPress tagDiv Composer plugin <= 5.4.1 - Cross Site… |
tagDiv |
tagDiv Composer |
2025-11-06T15:55:27.866Z | 2025-11-06T18:09:44.391Z |
| cve-2025-62028 | N/A | WordPress Salient theme < 17.4.0 - Broken Access Contr… |
ThemeNectar |
Salient |
2025-11-06T15:55:27.077Z | 2025-11-06T18:08:30.204Z |
| cve-2025-62018 | N/A | WordPress Kallyas theme <= 4.22.0 - Broken Access Cont… |
hogash |
Kallyas |
2025-11-06T15:55:26.361Z | 2025-11-06T18:00:28.192Z |
| cve-2025-62017 | N/A | WordPress Kallyas theme <= 4.22.0 - Broken Access Cont… |
hogash |
Kallyas |
2025-11-06T15:55:25.294Z | 2025-11-06T17:59:33.877Z |
| cve-2025-62016 | N/A | WordPress Kallyas theme <= 4.22.0 - Arbitrary File Upl… |
hogash |
Kallyas |
2025-11-06T15:55:24.586Z | 2025-11-07T14:05:19.194Z |
| cve-2025-62014 | N/A | WordPress ITok theme <= 1.1.42 - Local File Inclusion … |
ApusTheme |
ITok |
2025-11-06T15:55:23.874Z | 2025-11-07T14:06:52.557Z |
| cve-2025-62012 | N/A | WordPress TheGem (Elementor) theme <= 5.10.5 - Cross S… |
CodexThemes |
TheGem (Elementor) |
2025-11-06T15:55:23.261Z | 2025-11-07T14:25:21.864Z |
| cve-2025-62011 | N/A | WordPress TheGem theme <= 5.10.5 - Cross Site Scriptin… |
CodexThemes |
TheGem |
2025-11-06T15:55:22.593Z | 2025-11-07T14:25:28.464Z |
| cve-2025-62010 | N/A | WordPress Famita theme <= 1.54 - Local File Inclusion … |
ApusTheme |
Famita |
2025-11-06T15:55:21.866Z | 2025-11-07T14:25:34.207Z |
| cve-2025-60248 | N/A | WordPress WPC Product Options for WooCommerce plugin <… |
WPClever |
WPC Product Options for WooCommerce |
2025-11-06T15:55:21.142Z | 2025-11-07T14:25:39.722Z |
| cve-2025-60247 | N/A | WordPress Bux Woocommerce plugin <= 1.2.3 - Broken Acc… |
Bux |
Bux Woocommerce |
2025-11-06T15:55:20.539Z | 2025-11-07T14:25:45.410Z |
| cve-2025-60245 | N/A | WordPress WP User Manager plugin <= 2.9.12 - PHP Objec… |
WP User Manager |
WP User Manager |
2025-11-06T15:55:19.859Z | 2025-11-06T15:55:19.859Z |
| cve-2025-60244 | N/A | WordPress TableOn plugin <= 1.0.4.2 - Content Injectio… |
RealMag777 |
TableOn |
2025-11-06T15:55:18.193Z | 2025-11-06T15:55:18.193Z |
| cve-2025-60243 | N/A | WordPress Selling Commander for WooCommerce plugin <= … |
Holest Engineering |
Selling Commander for WooCommerce |
2025-11-06T15:55:15.782Z | 2025-11-06T15:55:15.782Z |
| cve-2025-60242 | N/A | WordPress Download Counter plugin <= 1.4 - Arbitrary F… |
Anatoly |
Download Counter |
2025-11-06T15:55:14.917Z | 2025-11-06T15:55:14.917Z |
| cve-2025-60241 | N/A | WordPress Premmerce plugin <= 1.3.19 - Local File Incl… |
Premmerce |
Premmerce |
2025-11-06T15:55:13.362Z | 2025-11-07T14:25:51.174Z |
| cve-2025-60240 | N/A | WordPress AnyComment plugin <= 0.3.6 - Local File Incl… |
Alexander |
AnyComment |
2025-11-06T15:55:10.324Z | 2025-11-07T14:25:56.516Z |
| cve-2025-60239 | N/A | WordPress CoSchool LMS plugin <= 1.4.3 - SQL Injection… |
Codexpert, Inc |
CoSchool LMS |
2025-11-06T15:55:09.493Z | 2025-11-07T14:26:02.764Z |
| cve-2025-60235 | N/A | WordPress Helpdesk Support Ticket System for WooCommer… |
Plugify |
Helpdesk Support Ticket System for WooCommerce |
2025-11-06T15:55:07.928Z | 2025-11-06T15:55:07.928Z |
| cve-2025-60207 | N/A | WordPress Custom User Registration Fields for WooComme… |
Addify |
Custom User Registration Fields for WooCommerce |
2025-11-06T15:55:06.274Z | 2025-11-06T15:55:06.274Z |
| cve-2025-60204 | N/A | WordPress WooCommerce Store Toolkit plugin <= 2.4.3 - … |
Josh Kohlbach |
WooCommerce Store Toolkit |
2025-11-06T15:55:05.172Z | 2025-11-06T17:35:11.397Z |
| cve-2025-60203 | N/A | WordPress Store Exporter plugin <= 2.7.6 - Local File … |
Josh Kohlbach |
Store Exporter |
2025-11-06T15:55:04.065Z | 2025-11-06T17:37:00.570Z |
| cve-2025-60202 | N/A | WordPress Favorites plugin <= 2.3.6 - Local File Inclu… |
Kyle Phillips |
Favorites |
2025-11-06T15:55:03.303Z | 2025-11-06T17:38:34.953Z |
| cve-2025-60201 | N/A | WordPress WP Customer Area plugin <= 8.2.7 - Local Fil… |
aguilatechnologies |
WP Customer Area |
2025-11-06T15:55:00.953Z | 2025-11-06T17:40:48.385Z |
| cve-2025-60200 | N/A | WordPress LearnPress Export Import plugin <= 4.0.9 - L… |
ThimPress |
LearnPress Export Import |
2025-11-06T15:54:59.689Z | 2025-11-06T17:42:08.469Z |
| cve-2025-60199 | N/A | WordPress InHype - Blog & Magazine WordPress Theme the… |
dedalx |
InHype - Blog & Magazine WordPress Theme |
2025-11-06T15:54:56.700Z | 2025-11-06T17:44:09.601Z |
| cve-2025-60198 | N/A | WordPress Saxon - Viral Content Blog & Magazine Market… |
dedalx |
Saxon - Viral Content Blog & Magazine Marketing WordPress Theme |
2025-11-06T15:54:55.955Z | 2025-11-06T17:45:02.935Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-62053 | N/A | WordPress Houzez theme < 4.2.0 - Local File Inclusion … |
favethemes |
Houzez |
2025-11-06T15:55:48.526Z | 2025-11-06T21:16:21.196Z |
| cve-2025-62051 | N/A | WordPress UDesign Core plugin <= 4.14.1 - Cross Site S… |
AndonDesign |
UDesign Core |
2025-11-06T15:55:47.211Z | 2025-11-06T21:12:52.533Z |
| cve-2025-62049 | N/A | WordPress Cost Calculator Builder plugin <= 3.5.32 - B… |
Stylemix |
Cost Calculator Builder |
2025-11-06T15:55:44.281Z | 2025-11-06T21:12:03.186Z |
| cve-2025-62047 | N/A | WordPress Case Addons plugin < 1.3.0 - Arbitrary File … |
Case-Themes |
Case Addons |
2025-11-06T15:55:43.609Z | 2025-11-06T21:11:15.581Z |
| cve-2025-62046 | N/A | WordPress TheGem Demo Import (for WPBakery) plugin <= … |
CodexThemes |
TheGem Demo Import (for WPBakery) |
2025-11-06T15:55:42.909Z | 2025-11-06T21:10:00.152Z |
| cve-2025-62045 | N/A | WordPress TheGem Theme Elements (for WPBakery) plugin … |
CodexThemes |
TheGem Theme Elements (for WPBakery) |
2025-11-06T15:55:41.551Z | 2025-11-06T21:08:50.158Z |
| cve-2025-62044 | N/A | WordPress TheGem Theme Elements (for WPBakery) plugin … |
CodexThemes |
TheGem Theme Elements (for WPBakery) |
2025-11-06T15:55:39.461Z | 2025-11-06T20:52:27.508Z |
| cve-2025-62041 | N/A | WordPress TheGem (Elementor) theme <= 5.10.5.1 - Cross… |
CodexThemes |
TheGem (Elementor) |
2025-11-06T15:55:38.770Z | 2025-11-06T20:50:57.073Z |
| cve-2025-62040 | N/A | WordPress YOP Poll plugin <= 6.5.37 - Cross Site Scrip… |
YOP |
YOP Poll |
2025-11-06T15:55:38.092Z | 2025-11-06T18:24:05.792Z |
| cve-2025-62039 | N/A | WordPress AI ChatBot with ChatGPT and Content Generato… |
Ays Pro |
AI ChatBot with ChatGPT and Content Generator by AYS |
2025-11-06T15:55:37.380Z | 2025-11-06T18:23:02.084Z |
| cve-2025-62038 | N/A | WordPress MeetingHub plugin <= 1.23.9 - Sensitive Data… |
Sovlix |
MeetingHub |
2025-11-06T15:55:36.094Z | 2025-11-06T18:22:02.186Z |
| cve-2025-62037 | N/A | WordPress Togo theme < 1.0.4 - Broken Access Control v… |
uxper |
Togo |
2025-11-06T15:55:34.720Z | 2025-11-06T18:20:50.029Z |
| cve-2025-62036 | N/A | WordPress Togo theme < 1.0.4 - Cross Site Scripting (X… |
uxper |
Togo |
2025-11-06T15:55:32.766Z | 2025-11-06T18:18:58.843Z |
| cve-2025-62035 | N/A | WordPress Togo theme < 1.0.4 - PHP Object Injection vu… |
uxper |
Togo |
2025-11-06T15:55:31.398Z | 2025-11-06T18:17:30.906Z |
| cve-2025-62034 | N/A | WordPress Togo theme < 1.0.4 - Privilege Escalation vu… |
uxper |
Togo |
2025-11-06T15:55:30.572Z | 2025-11-07T14:04:24.192Z |
| cve-2025-62033 | N/A | WordPress Togo theme < 1.0.4 - Broken Access Control v… |
uxper |
Togo |
2025-11-06T15:55:29.843Z | 2025-11-06T18:15:37.360Z |
| cve-2025-62032 | N/A | WordPress tagDiv Cloud Library plugin < 3.9.2 - Cross … |
tagDiv |
tagDiv Cloud Library |
2025-11-06T15:55:29.230Z | 2025-11-06T18:13:57.864Z |
| cve-2025-62031 | N/A | WordPress tagDiv Composer plugin <= 5.4.1 - Cross Site… |
tagDiv |
tagDiv Composer |
2025-11-06T15:55:28.516Z | 2025-11-06T18:11:04.272Z |
| cve-2025-62030 | N/A | WordPress tagDiv Composer plugin <= 5.4.1 - Cross Site… |
tagDiv |
tagDiv Composer |
2025-11-06T15:55:27.866Z | 2025-11-06T18:09:44.391Z |
| cve-2025-62028 | N/A | WordPress Salient theme < 17.4.0 - Broken Access Contr… |
ThemeNectar |
Salient |
2025-11-06T15:55:27.077Z | 2025-11-06T18:08:30.204Z |
| cve-2025-62018 | N/A | WordPress Kallyas theme <= 4.22.0 - Broken Access Cont… |
hogash |
Kallyas |
2025-11-06T15:55:26.361Z | 2025-11-06T18:00:28.192Z |
| cve-2025-62017 | N/A | WordPress Kallyas theme <= 4.22.0 - Broken Access Cont… |
hogash |
Kallyas |
2025-11-06T15:55:25.294Z | 2025-11-06T17:59:33.877Z |
| cve-2025-62016 | N/A | WordPress Kallyas theme <= 4.22.0 - Arbitrary File Upl… |
hogash |
Kallyas |
2025-11-06T15:55:24.586Z | 2025-11-07T14:05:19.194Z |
| cve-2025-62014 | N/A | WordPress ITok theme <= 1.1.42 - Local File Inclusion … |
ApusTheme |
ITok |
2025-11-06T15:55:23.874Z | 2025-11-07T14:06:52.557Z |
| cve-2025-62012 | N/A | WordPress TheGem (Elementor) theme <= 5.10.5 - Cross S… |
CodexThemes |
TheGem (Elementor) |
2025-11-06T15:55:23.261Z | 2025-11-07T14:25:21.864Z |
| cve-2025-62011 | N/A | WordPress TheGem theme <= 5.10.5 - Cross Site Scriptin… |
CodexThemes |
TheGem |
2025-11-06T15:55:22.593Z | 2025-11-07T14:25:28.464Z |
| cve-2025-62010 | N/A | WordPress Famita theme <= 1.54 - Local File Inclusion … |
ApusTheme |
Famita |
2025-11-06T15:55:21.866Z | 2025-11-07T14:25:34.207Z |
| cve-2025-60248 | N/A | WordPress WPC Product Options for WooCommerce plugin <… |
WPClever |
WPC Product Options for WooCommerce |
2025-11-06T15:55:21.142Z | 2025-11-07T14:25:39.722Z |
| cve-2025-60247 | N/A | WordPress Bux Woocommerce plugin <= 1.2.3 - Broken Acc… |
Bux |
Bux Woocommerce |
2025-11-06T15:55:20.539Z | 2025-11-07T14:25:45.410Z |
| cve-2025-60245 | N/A | WordPress WP User Manager plugin <= 2.9.12 - PHP Objec… |
WP User Manager |
WP User Manager |
2025-11-06T15:55:19.859Z | 2025-11-06T15:55:19.859Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-61327 | Malicious code in special_asp_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61326 | Malicious code in spare_krill_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61325 | Malicious code in spare_chimpanzee_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61324 | Malicious code in soviet_koi_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61323 | Malicious code in southern_yak_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61322 | Malicious code in southern_impala_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61321 | Malicious code in sour_newt_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61320 | Malicious code in sound_cat_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61319 | Malicious code in sore_zebra_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61318 | Malicious code in sore_meerkat_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61317 | Malicious code in sore_fowl_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61316 | Malicious code in sore_antelope_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61315 | Malicious code in solid_turkey_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61314 | Malicious code in solid_krill_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61313 | Malicious code in sole_tick_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61312 | Malicious code in sole_opossum_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61311 | Malicious code in solar_herring_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61310 | Malicious code in solar_baboon_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61309 | Malicious code in soft_crocodile_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61308 | Malicious code in soft_canid_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61307 | Malicious code in social_dragon_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61306 | Malicious code in smooth_mink_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61305 | Malicious code in smoggy_fly_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61304 | Malicious code in smoggy_carp_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61303 | Malicious code in smiling_earwig_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61302 | Malicious code in smart_orangutan_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61301 | Malicious code in small_lion_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61300 | Malicious code in small_duck_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61299 | Malicious code in slow_hornet_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| mal-2025-61298 | Malicious code in slippery_swan_z3n (npm) | 2025-11-10T18:02:22Z | 2025-11-10T18:02:22Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:16861 | Red Hat Security Advisory: mysql:8.0 security update | 2025-09-29T01:34:13+00:00 | 2025-11-06T23:14:59+00:00 |
| rhsa-2025:16823 | Red Hat Security Advisory: openssh security update | 2025-09-26T01:05:14+00:00 | 2025-11-06T23:34:35+00:00 |
| rhsa-2025:16747 | Red Hat Security Advisory: Red Hat Developer Hub 1.6.5 release. | 2025-09-25T11:13:18+00:00 | 2025-11-10T01:32:51+00:00 |
| rhsa-2025:16159 | Red Hat Security Advisory: OpenShift Container Platform 4.15.58 bug fix and security update | 2025-09-25T09:09:37+00:00 | 2025-11-06T23:14:58+00:00 |
| rhsa-2025:16160 | Red Hat Security Advisory: OpenShift Container Platform 4.15.58 bug fix and security update | 2025-09-25T08:35:24+00:00 | 2025-11-10T18:55:50+00:00 |
| rhsa-2025:16161 | Red Hat Security Advisory: OpenShift Container Platform 4.15.58 security and extras update | 2025-09-25T07:53:49+00:00 | 2025-11-10T01:32:47+00:00 |
| rhsa-2025:16165 | Red Hat Security Advisory: OpenShift Container Platform 4.14.57 bug fix and security update | 2025-09-25T04:42:04+00:00 | 2025-11-10T18:55:50+00:00 |
| rhsa-2025:16166 | Red Hat Security Advisory: OpenShift Container Platform 4.14.57 security and extras update | 2025-09-25T04:00:42+00:00 | 2025-11-10T01:32:47+00:00 |
| rhsa-2025:16669 | Red Hat Security Advisory: kernel security update | 2025-09-25T00:40:46+00:00 | 2025-11-08T07:17:19+00:00 |
| rhsa-2025:16667 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.15 security update | 2025-09-25T00:09:21+00:00 | 2025-11-07T21:05:31+00:00 |
| rhsa-2025:16668 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.12 on RHEL 7 security update | 2025-09-25T00:09:06+00:00 | 2025-11-07T15:56:03+00:00 |
| rhsa-2025:16592 | Red Hat Security Advisory: cups security update | 2025-09-24T16:34:55+00:00 | 2025-11-06T23:42:23+00:00 |
| rhsa-2025:16591 | Red Hat Security Advisory: cups security update | 2025-09-24T15:50:17+00:00 | 2025-11-06T23:42:23+00:00 |
| rhsa-2025:16590 | Red Hat Security Advisory: cups security update | 2025-09-24T15:40:20+00:00 | 2025-11-06T23:42:22+00:00 |
| rhsa-2025:16595 | Red Hat Security Advisory: VolSync v0.13 security fixes and container updates | 2025-09-24T15:33:41+00:00 | 2025-11-10T13:43:32+00:00 |
| rhsa-2025:16589 | Red Hat Security Advisory: thunderbird security update | 2025-09-24T14:11:45+00:00 | 2025-11-06T23:23:59+00:00 |
| rhsa-2025:16583 | Red Hat Security Advisory: kpatch-patch-4_18_0-477_67_1, kpatch-patch-4_18_0-477_81_1, kpatch-patch-4_18_0-477_89_1, and kpatch-patch-4_18_0-477_97_1 security update | 2025-09-24T13:10:55+00:00 | 2025-11-10T06:42:28+00:00 |
| rhsa-2025:16582 | Red Hat Security Advisory: kpatch-patch-4_18_0-553_16_1, kpatch-patch-4_18_0-553_30_1, kpatch-patch-4_18_0-553_40_1, kpatch-patch-4_18_0-553_53_1, and kpatch-patch-4_18_0-553_72_1 security update | 2025-09-24T13:06:20+00:00 | 2025-11-10T06:42:28+00:00 |
| rhsa-2025:16580 | Red Hat Security Advisory: kpatch-patch-4_18_0-372_118_1, kpatch-patch-4_18_0-372_131_1, kpatch-patch-4_18_0-372_137_1, and kpatch-patch-4_18_0-372_145_1 security update | 2025-09-24T12:53:25+00:00 | 2025-11-10T06:42:27+00:00 |
| rhsa-2025:16538 | Red Hat Security Advisory: kpatch-patch-5_14_0-570_17_1 security update | 2025-09-24T00:37:28+00:00 | 2025-11-10T06:42:26+00:00 |
| rhsa-2025:16540 | Red Hat Security Advisory: kpatch-patch-5_14_0-427_31_1, kpatch-patch-5_14_0-427_44_1, kpatch-patch-5_14_0-427_55_1, kpatch-patch-5_14_0-427_68_2, and kpatch-patch-5_14_0-427_84_1 security update | 2025-09-24T00:31:03+00:00 | 2025-11-10T06:42:27+00:00 |
| rhsa-2025:16541 | Red Hat Security Advisory: kpatch-patch-5_14_0-70_112_1, kpatch-patch-5_14_0-70_121_1, kpatch-patch-5_14_0-70_124_1, and kpatch-patch-5_14_0-70_132_1 security update | 2025-09-24T00:22:33+00:00 | 2025-11-10T06:42:27+00:00 |
| rhsa-2025:16539 | Red Hat Security Advisory: kpatch-patch-5_14_0-284_104_1, kpatch-patch-5_14_0-284_117_1, kpatch-patch-5_14_0-284_79_1, and kpatch-patch-5_14_0-284_92_1 security update | 2025-09-24T00:22:33+00:00 | 2025-11-10T06:42:27+00:00 |
| rhsa-2025:16514 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Container Release Update | 2025-09-23T21:34:31+00:00 | 2025-11-06T23:42:22+00:00 |
| rhsa-2025:16535 | Red Hat Security Advisory: OpenShift Container Platform 4.19 ztp-site-generate container | 2025-09-23T21:08:55+00:00 | 2025-11-10T01:32:51+00:00 |
| rhsa-2025:16534 | Red Hat Security Advisory: OpenShift Container Platform 4.12 ztp-site-generate container | 2025-09-23T21:08:07+00:00 | 2025-11-06T22:56:34+00:00 |
| rhsa-2025:16530 | Red Hat Security Advisory: OpenShift Container Platform 4.18 ztp-site-generate container | 2025-09-23T21:00:41+00:00 | 2025-11-10T01:32:50+00:00 |
| rhsa-2025:16529 | Red Hat Security Advisory: OpenShift Container Platform 4.17 ztp-site-generate container | 2025-09-23T20:50:52+00:00 | 2025-11-10T01:32:50+00:00 |
| rhsa-2025:16527 | Red Hat Security Advisory: OpenShift Container Platform 4.16 ztp-site-generate container | 2025-09-23T20:37:14+00:00 | 2025-11-10T01:32:49+00:00 |
| rhsa-2025:16526 | Red Hat Security Advisory: OpenShift Container Platform 4.14 ztp-site-generate container | 2025-09-23T19:55:07+00:00 | 2025-11-10T01:32:48+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-38723 | LoongArch: BPF: Fix jump offset calculation in tailcall | 2025-09-02T00:00:00.000Z | 2025-09-06T01:01:32.000Z |
| msrc_cve-2025-38722 | habanalabs: fix UAF in export_dmabuf() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:11:57.000Z |
| msrc_cve-2025-38721 | netfilter: ctnetlink: fix refcount leak on table dump | 2025-09-02T00:00:00.000Z | 2025-09-06T01:10:33.000Z |
| msrc_cve-2025-38718 | sctp: linearize cloned gso packets in sctp_rcv | 2025-09-02T00:00:00.000Z | 2025-09-06T01:01:23.000Z |
| msrc_cve-2025-38717 | net: kcm: Fix race condition in kcm_unattach() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:12:47.000Z |
| msrc_cve-2025-38716 | hfs: fix general protection fault in hfs_find_init() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:07:12.000Z |
| msrc_cve-2025-38715 | hfs: fix slab-out-of-bounds in hfs_bnode_read() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:05:31.000Z |
| msrc_cve-2025-38714 | hfsplus: fix slab-out-of-bounds in hfsplus_bnode_read() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:05:58.000Z |
| msrc_cve-2025-38713 | hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:14:32.000Z |
| msrc_cve-2025-38712 | hfsplus: don't use BUG_ON() in hfsplus_create_attributes_file() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:10:07.000Z |
| msrc_cve-2025-38711 | smb/server: avoid deadlock when linking with ReplaceIfExists | 2025-09-02T00:00:00.000Z | 2025-09-06T01:10:53.000Z |
| msrc_cve-2025-38710 | gfs2: Validate i_depth for exhash directories | 2025-09-02T00:00:00.000Z | 2025-09-06T01:03:00.000Z |
| msrc_cve-2025-38709 | loop: Avoid updating block size under exclusive owner | 2025-09-02T00:00:00.000Z | 2025-09-06T01:03:29.000Z |
| msrc_cve-2025-38708 | drbd: add missing kref_get in handle_write_conflicts | 2025-09-02T00:00:00.000Z | 2025-09-06T01:05:12.000Z |
| msrc_cve-2025-38707 | fs/ntfs3: Add sanity check for file name | 2025-09-02T00:00:00.000Z | 2025-09-06T01:07:31.000Z |
| msrc_cve-2025-38706 | ASoC: core: Check for rtd == NULL in snd_soc_remove_pcm_runtime() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:13:41.000Z |
| msrc_cve-2025-38705 | drm/amd/pm: fix null pointer access | 2025-09-02T00:00:00.000Z | 2025-09-06T01:08:14.000Z |
| msrc_cve-2025-38704 | rcu/nocb: Fix possible invalid rdp's->nocb_cb_kthread pointer access | 2025-09-02T00:00:00.000Z | 2025-09-06T01:13:17.000Z |
| msrc_cve-2025-38703 | drm/xe: Make dma-fences compliant with the safe access rules | 2025-09-02T00:00:00.000Z | 2025-09-06T01:11:40.000Z |
| msrc_cve-2025-38702 | fbdev: fix potential buffer overflow in do_register_framebuffer() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:08:54.000Z |
| msrc_cve-2025-38701 | ext4: do not BUG when INLINE_DATA_FL lacks system.data xattr | 2025-09-02T00:00:00.000Z | 2025-09-06T01:14:03.000Z |
| msrc_cve-2025-38700 | scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated | 2025-09-02T00:00:00.000Z | 2025-09-06T01:14:54.000Z |
| msrc_cve-2025-38699 | scsi: bfa: Double-free fix | 2025-09-02T00:00:00.000Z | 2025-09-06T01:07:53.000Z |
| msrc_cve-2025-38698 | jfs: Regular file corruption check | 2025-09-02T00:00:00.000Z | 2025-09-06T01:04:52.000Z |
| msrc_cve-2025-38697 | jfs: upper bound check of tree index in dbAllocAG | 2025-09-02T00:00:00.000Z | 2025-09-06T01:06:21.000Z |
| msrc_cve-2025-38696 | MIPS: Don't crash in stack_top() for tasks without ABI or vDSO | 2025-09-02T00:00:00.000Z | 2025-09-06T01:01:49.000Z |
| msrc_cve-2025-38695 | scsi: lpfc: Check for hdwq null ptr when cleaning up lpfc_vport structure | 2025-09-02T00:00:00.000Z | 2025-09-06T01:04:14.000Z |
| msrc_cve-2025-38692 | exfat: add cluster chain loop check for dir | 2025-09-02T00:00:00.000Z | 2025-09-06T01:12:22.000Z |
| msrc_cve-2025-38691 | pNFS: Fix uninited ptr deref in block/scsi layout | 2025-09-02T00:00:00.000Z | 2025-09-06T01:02:01.000Z |
| msrc_cve-2025-38688 | iommufd: Prevent ALIGN() overflow | 2025-09-02T00:00:00.000Z | 2025-09-06T01:01:17.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2023-000116 | Redmine vulnerable to cross-site scripting | 2023-11-17T14:32+09:00 | 2024-05-09T17:55+09:00 |
| jvndb-2023-000118 | Multiple vulnerabilities in CubeCart | 2023-11-17T14:22+09:00 | 2024-04-30T18:15+09:00 |
| jvndb-2023-006588 | Multiple vulnerabilities in ELECOM and LOGITEC routers | 2023-11-15T18:27+09:00 | 2024-04-26T15:22+09:00 |
| jvndb-2023-006578 | ASUSTeK COMPUTER RT-AC87U vulnerable to improper access control | 2023-11-15T17:44+09:00 | 2024-04-30T18:08+09:00 |
| jvndb-2023-000115 | OSS Calendar vulnerable to SQL injection | 2023-11-14T14:05+09:00 | 2024-05-01T17:38+09:00 |
| jvndb-2023-006199 | Multiple security updates for Trend Micro Apex One and Apex One as a Service (November 2023) | 2023-11-13T17:28+09:00 | 2024-03-13T17:28+09:00 |
| jvndb-2023-000112 | Multiple vulnerabilities in Pleasanter | 2023-11-13T15:57+09:00 | 2024-04-22T17:56+09:00 |
| jvndb-2023-000114 | Multiple vulnerabilities in Cisco Firepower Management Center Software | 2023-11-13T14:01+09:00 | 2024-05-07T15:07+09:00 |
| jvndb-2023-000113 | HOTELDRUID vulnerable to cross-site scripting | 2023-11-10T14:41+09:00 | 2024-05-01T17:47+09:00 |
| jvndb-2023-000111 | Remarshal unlimitedly expanding YAML alias nodes | 2023-11-10T14:41+09:00 | 2024-05-08T17:53+09:00 |
| jvndb-2023-000107 | EC-CUBE 3 series and 4 series vulnerable to arbitrary code execution | 2023-11-07T13:47+09:00 | 2024-05-09T17:17+09:00 |
| jvndb-2023-004919 | FUJIFILM Business Innovation Corp. and Xerox Corporation MFPs export Address Books with insufficient encryption strength | 2023-11-02T17:21+09:00 | 2024-05-07T15:25+09:00 |
| jvndb-2023-000110 | Improper restriction of XML external entity references (XXE) in e-Tax software | 2023-11-02T13:38+09:00 | 2024-05-01T18:41+09:00 |
| jvndb-2023-004790 | Multiple Vulnerabilities in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer | 2023-11-02T12:14+09:00 | 2023-11-02T12:14+09:00 |
| jvndb-2023-004754 | MCL Technologies MCL-Net vulnerable to directory traversal | 2023-11-01T16:49+09:00 | 2023-11-01T16:49+09:00 |
| jvndb-2023-000109 | Cybozu Remote Service vulnerable to uncontrolled resource consumption | 2023-10-31T13:43+09:00 | 2024-05-07T15:51+09:00 |
| jvndb-2023-000108 | Inkdrop vulnerable to code injection | 2023-10-30T13:48+09:00 | 2024-05-07T16:09+09:00 |
| jvndb-2023-004294 | Advanced Micro Devices Windows kernel drivers vulnerable to insufficient access control on its IOCTL | 2023-10-27T16:10+09:00 | 2024-05-20T17:49+09:00 |
| jvndb-2023-000106 | Multiple vulnerabilities in baserCMS | 2023-10-27T14:46+09:00 | 2024-05-07T15:59+09:00 |
| jvndb-2023-000105 | Movable Type vulnerable to cross-site scripting | 2023-10-25T15:18+09:00 | 2024-05-10T17:47+09:00 |
| jvndb-2023-003956 | Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Designer | 2023-10-24T16:11+09:00 | 2024-05-10T17:47+09:00 |
| jvndb-2023-000103 | HP ThinUpdate vulnerable to improper server certificate verification | 2023-10-23T14:26+09:00 | 2023-10-23T14:26+09:00 |
| jvndb-2023-000102 | Multiple vulnerabilities in JustSystems products | 2023-10-19T15:16+09:00 | 2024-05-16T16:44+09:00 |
| jvndb-2023-000104 | Improper restriction of XML external entity references (XXE) in Proself | 2023-10-18T18:00+09:00 | 2024-05-15T17:08+09:00 |
| jvndb-2023-003913 | Multiple vulnerabilities in JTEKT ELECTRONICS OnSinView2 | 2023-10-18T14:13+09:00 | 2024-05-16T17:28+09:00 |
| jvndb-2023-000101 | web2py vulnerable to OS command injection | 2023-10-16T16:11+09:00 | 2024-05-22T17:58+09:00 |
| jvndb-2023-000100 | Scanning evasion issue in Cisco Secure Email Gateway | 2023-10-16T16:11+09:00 | 2023-10-27T15:52+09:00 |
| jvndb-2023-003788 | Out-of-bounds read vulnerability in Keyence KV STUDIO and KV REPLAY VIEWER | 2023-10-11T15:23+09:00 | 2024-05-16T17:09+09:00 |
| jvndb-2023-000098 | e-Gov Client Application fails to restrict custom URL schemes properly | 2023-10-06T14:57+09:00 | 2024-05-17T17:55+09:00 |
| jvndb-2023-003771 | File and Directory Permissions Vulnerability in JP1/Performance Management | 2023-10-04T15:23+09:00 | 2023-10-04T15:23+09:00 |
| ID | Description | Updated |
|---|