Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-vpqx-2jhq-wrpw | Unrestricted Upload of File with Dangerous Type vulnerability in borisolhor Drop Uploader for CF7 -… | 2025-11-06T18:32:53Z | 2025-11-07T15:31:28Z |
| ghsa-fc2m-qm5j-pmj5 | Missing Authorization vulnerability in sertifier Sertifier Certificate & Badge Maker sertifier-cert… | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-f5mm-444h-94q4 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-c9jj-ghwx-hh7x | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-97fx-g7m5-mqpj | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-8q3g-wc86-q94h | Cross-Site Request Forgery (CSRF) vulnerability in Shahjahan Jewel WP GDPR Cookie Consent wp-gdpr-c… | 2025-11-06T18:32:53Z | 2025-11-10T21:30:34Z |
| ghsa-66fq-7q7x-4qmp | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-57gx-p5pr-9553 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-494c-jx9h-h8rq | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-27jq-qqfj-p2xx | Missing Authorization vulnerability in Gaurav Aggarwal Backup and Move backup-and-move allows Explo… | 2025-11-06T18:32:53Z | 2025-11-10T21:30:33Z |
| ghsa-wj4q-gpcg-gvvm | Improper Control of Generation of Code ('Code Injection') vulnerability in VillaTheme HAPPY happy-h… | 2025-11-06T18:32:52Z | 2025-11-07T21:31:20Z |
| ghsa-pxxx-822x-qh29 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:52Z | 2025-11-10T21:30:33Z |
| ghsa-prhc-jq43-ww89 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:52Z | 2025-11-10T21:30:32Z |
| ghsa-mrv4-5c7q-v4v8 | Missing Authorization vulnerability in bPlugins Image Gallery block – Create and display photo gall… | 2025-11-06T18:32:52Z | 2025-11-10T21:30:33Z |
| ghsa-mhjp-6pj9-669q | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-11-06T18:32:52Z | 2025-11-10T21:30:32Z |
| ghsa-m36c-hhr2-59cc | Deserialization of Untrusted Data vulnerability in Scott Reilly Preserve Code Formatting preserve-c… | 2025-11-06T18:32:52Z | 2025-11-10T21:30:33Z |
| ghsa-jh59-6j7x-fwhp | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Easy… | 2025-11-06T18:32:52Z | 2025-11-10T21:30:33Z |
| ghsa-8wj3-h346-q9h6 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:52Z | 2025-11-10T21:30:32Z |
| ghsa-68wf-63x8-j6c7 | Deserialization of Untrusted Data vulnerability in Fetch Designs Sign-up Sheets sign-up-sheets allo… | 2025-11-06T18:32:52Z | 2025-11-10T21:30:33Z |
| ghsa-577h-jj3m-6vw4 | Incorrect Privilege Assignment vulnerability in bPlugins Advanced scrollbar advanced-scrollbar allo… | 2025-11-06T18:32:52Z | 2025-11-10T21:30:33Z |
| ghsa-467j-6f98-pgc4 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:52Z | 2025-11-10T21:30:33Z |
| ghsa-2cw4-5fxp-f6gf | Path Traversal: '.../...//' vulnerability in CocoBasic Blanka - One Page WordPress Theme blanka-wp … | 2025-11-06T18:32:52Z | 2025-11-06T18:32:52Z |
| ghsa-xpx5-8gpf-9924 | Cross-Site Request Forgery (CSRF) vulnerability in ZIPANG Simple Stripe simple-stripe allows Stored… | 2025-11-06T18:32:51Z | 2025-11-10T21:30:32Z |
| ghsa-jx2x-xr6q-gvf7 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:51Z | 2025-11-10T21:30:32Z |
| ghsa-hmgm-p3v6-4gvh | Path Traversal: '.../...//' vulnerability in Mikado-Themes Wanderland wanderland allows PHP Local F… | 2025-11-06T18:32:51Z | 2025-11-10T21:30:32Z |
| ghsa-cmj6-wrgg-4jjx | Cross-Site Request Forgery (CSRF) vulnerability in andriassundskard wpNamedUsers wpnamedusers allow… | 2025-11-06T18:32:51Z | 2025-11-10T21:30:32Z |
| ghsa-8w7x-rpx6-rgj9 | Cross-Site Request Forgery (CSRF) vulnerability in Norbert Slick Google Map slick-google-map allows… | 2025-11-06T18:32:51Z | 2025-11-10T21:30:32Z |
| ghsa-87qw-788g-jv7c | Cross-Site Request Forgery (CSRF) vulnerability in nitinmaurya12 Block Country block-country allows… | 2025-11-06T18:32:51Z | 2025-11-10T21:30:32Z |
| ghsa-6h69-vc2q-gh29 | Deserialization of Untrusted Data vulnerability in wpdreams Ajax Search Lite ajax-search-lite allow… | 2025-11-06T18:32:51Z | 2025-11-10T21:30:32Z |
| ghsa-3388-vwwc-36qr | Improper Control of Generation of Code ('Code Injection') vulnerability in acowebs Dynamic Pricing … | 2025-11-06T18:32:51Z | 2025-11-10T21:30:32Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-62010 | N/A | WordPress Famita theme <= 1.54 - Local File Inclusion … |
ApusTheme |
Famita |
2025-11-06T15:55:21.866Z | 2025-11-07T14:25:34.207Z |
| cve-2025-60248 | N/A | WordPress WPC Product Options for WooCommerce plugin <… |
WPClever |
WPC Product Options for WooCommerce |
2025-11-06T15:55:21.142Z | 2025-11-07T14:25:39.722Z |
| cve-2025-60247 | N/A | WordPress Bux Woocommerce plugin <= 1.2.3 - Broken Acc… |
Bux |
Bux Woocommerce |
2025-11-06T15:55:20.539Z | 2025-11-07T14:25:45.410Z |
| cve-2025-60245 | N/A | WordPress WP User Manager plugin <= 2.9.12 - PHP Objec… |
WP User Manager |
WP User Manager |
2025-11-06T15:55:19.859Z | 2025-11-06T15:55:19.859Z |
| cve-2025-60244 | N/A | WordPress TableOn plugin <= 1.0.4.2 - Content Injectio… |
RealMag777 |
TableOn |
2025-11-06T15:55:18.193Z | 2025-11-06T15:55:18.193Z |
| cve-2025-60243 | N/A | WordPress Selling Commander for WooCommerce plugin <= … |
Holest Engineering |
Selling Commander for WooCommerce |
2025-11-06T15:55:15.782Z | 2025-11-06T15:55:15.782Z |
| cve-2025-60242 | N/A | WordPress Download Counter plugin <= 1.4 - Arbitrary F… |
Anatoly |
Download Counter |
2025-11-06T15:55:14.917Z | 2025-11-06T15:55:14.917Z |
| cve-2025-60241 | N/A | WordPress Premmerce plugin <= 1.3.19 - Local File Incl… |
Premmerce |
Premmerce |
2025-11-06T15:55:13.362Z | 2025-11-07T14:25:51.174Z |
| cve-2025-60240 | N/A | WordPress AnyComment plugin <= 0.3.6 - Local File Incl… |
Alexander |
AnyComment |
2025-11-06T15:55:10.324Z | 2025-11-07T14:25:56.516Z |
| cve-2025-60239 | N/A | WordPress CoSchool LMS plugin <= 1.4.3 - SQL Injection… |
Codexpert, Inc |
CoSchool LMS |
2025-11-06T15:55:09.493Z | 2025-11-07T14:26:02.764Z |
| cve-2025-60235 | N/A | WordPress Helpdesk Support Ticket System for WooCommer… |
Plugify |
Helpdesk Support Ticket System for WooCommerce |
2025-11-06T15:55:07.928Z | 2025-11-06T15:55:07.928Z |
| cve-2025-60207 | N/A | WordPress Custom User Registration Fields for WooComme… |
Addify |
Custom User Registration Fields for WooCommerce |
2025-11-06T15:55:06.274Z | 2025-11-06T15:55:06.274Z |
| cve-2025-60204 | N/A | WordPress WooCommerce Store Toolkit plugin <= 2.4.3 - … |
Josh Kohlbach |
WooCommerce Store Toolkit |
2025-11-06T15:55:05.172Z | 2025-11-06T17:35:11.397Z |
| cve-2025-60203 | N/A | WordPress Store Exporter plugin <= 2.7.6 - Local File … |
Josh Kohlbach |
Store Exporter |
2025-11-06T15:55:04.065Z | 2025-11-06T17:37:00.570Z |
| cve-2025-60202 | N/A | WordPress Favorites plugin <= 2.3.6 - Local File Inclu… |
Kyle Phillips |
Favorites |
2025-11-06T15:55:03.303Z | 2025-11-06T17:38:34.953Z |
| cve-2025-60201 | N/A | WordPress WP Customer Area plugin <= 8.2.7 - Local Fil… |
aguilatechnologies |
WP Customer Area |
2025-11-06T15:55:00.953Z | 2025-11-06T17:40:48.385Z |
| cve-2025-60200 | N/A | WordPress LearnPress Export Import plugin <= 4.0.9 - L… |
ThimPress |
LearnPress Export Import |
2025-11-06T15:54:59.689Z | 2025-11-06T17:42:08.469Z |
| cve-2025-60199 | N/A | WordPress InHype - Blog & Magazine WordPress Theme the… |
dedalx |
InHype - Blog & Magazine WordPress Theme |
2025-11-06T15:54:56.700Z | 2025-11-06T17:44:09.601Z |
| cve-2025-60198 | N/A | WordPress Saxon - Viral Content Blog & Magazine Market… |
dedalx |
Saxon - Viral Content Blog & Magazine Marketing WordPress Theme |
2025-11-06T15:54:55.955Z | 2025-11-06T17:45:02.935Z |
| cve-2025-60197 | N/A | WordPress Simple Contact Forms plugin <= 1.6.4 - Local… |
owenr88 |
Simple Contact Forms |
2025-11-06T15:54:54.553Z | 2025-11-06T17:45:51.893Z |
| cve-2025-60196 | N/A | WordPress Clearblue® Ovulation Calculator plugin <= 1.… |
Clearblue |
Clearblue® Ovulation Calculator |
2025-11-06T15:54:52.172Z | 2025-11-06T19:42:52.437Z |
| cve-2025-60195 | N/A | WordPress Atarim plugin <= 4.2 - Privilege Escalation … |
Vito Peleg |
Atarim |
2025-11-06T15:54:51.541Z | 2025-11-06T19:46:32.722Z |
| cve-2025-60194 | N/A | WordPress Premmerce Product Search for WooCommerce plu… |
Premmerce |
Premmerce Product Search for WooCommerce |
2025-11-06T15:54:50.878Z | 2025-11-06T20:02:04.425Z |
| cve-2025-60193 | N/A | WordPress Premmerce User Roles plugin <= 1.0.13 - Loca… |
Premmerce |
Premmerce User Roles |
2025-11-06T15:54:49.770Z | 2025-11-06T20:01:26.912Z |
| cve-2025-60192 | N/A | WordPress Premmerce Wholesale Pricing for WooCommerce … |
Premmerce |
Premmerce Wholesale Pricing for WooCommerce |
2025-11-06T15:54:49.257Z | 2025-11-06T19:57:53.547Z |
| cve-2025-60191 | N/A | WordPress Premmerce Wishlist for WooCommerce plugin <=… |
Premmerce |
Premmerce Wishlist for WooCommerce |
2025-11-06T15:54:48.713Z | 2025-11-06T21:19:06.815Z |
| cve-2025-60190 | N/A | WordPress Immocaster WordPress Plugin plugin <= 1.3.6 … |
Hinnerk Altenburg |
Immocaster WordPress Plugin |
2025-11-06T15:54:48.157Z | 2025-11-06T21:20:06.464Z |
| cve-2025-60189 | N/A | WordPress PoloPag – Pix Automático para Woocommerce pl… |
PoloPag |
PoloPag – Pix Automático para Woocommerce |
2025-11-06T15:54:47.579Z | 2025-11-06T15:54:47.579Z |
| cve-2025-60188 | N/A | WordPress Atarim plugin <= 4.2 - Sensitive Data Exposu… |
Vito Peleg |
Atarim |
2025-11-06T15:54:46.469Z | 2025-11-06T15:54:46.469Z |
| cve-2025-60187 | N/A | WordPress Atarim plugin <= 4.2 - Arbitrary File Upload… |
Vito Peleg |
Atarim |
2025-11-06T15:54:45.484Z | 2025-11-06T21:29:17.523Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-62037 | N/A | WordPress Togo theme < 1.0.4 - Broken Access Control v… |
uxper |
Togo |
2025-11-06T15:55:34.720Z | 2025-11-06T18:20:50.029Z |
| cve-2025-62036 | N/A | WordPress Togo theme < 1.0.4 - Cross Site Scripting (X… |
uxper |
Togo |
2025-11-06T15:55:32.766Z | 2025-11-06T18:18:58.843Z |
| cve-2025-62035 | N/A | WordPress Togo theme < 1.0.4 - PHP Object Injection vu… |
uxper |
Togo |
2025-11-06T15:55:31.398Z | 2025-11-06T18:17:30.906Z |
| cve-2025-62034 | N/A | WordPress Togo theme < 1.0.4 - Privilege Escalation vu… |
uxper |
Togo |
2025-11-06T15:55:30.572Z | 2025-11-07T14:04:24.192Z |
| cve-2025-62033 | N/A | WordPress Togo theme < 1.0.4 - Broken Access Control v… |
uxper |
Togo |
2025-11-06T15:55:29.843Z | 2025-11-06T18:15:37.360Z |
| cve-2025-62032 | N/A | WordPress tagDiv Cloud Library plugin < 3.9.2 - Cross … |
tagDiv |
tagDiv Cloud Library |
2025-11-06T15:55:29.230Z | 2025-11-06T18:13:57.864Z |
| cve-2025-62031 | N/A | WordPress tagDiv Composer plugin <= 5.4.1 - Cross Site… |
tagDiv |
tagDiv Composer |
2025-11-06T15:55:28.516Z | 2025-11-06T18:11:04.272Z |
| cve-2025-62030 | N/A | WordPress tagDiv Composer plugin <= 5.4.1 - Cross Site… |
tagDiv |
tagDiv Composer |
2025-11-06T15:55:27.866Z | 2025-11-06T18:09:44.391Z |
| cve-2025-62028 | N/A | WordPress Salient theme < 17.4.0 - Broken Access Contr… |
ThemeNectar |
Salient |
2025-11-06T15:55:27.077Z | 2025-11-06T18:08:30.204Z |
| cve-2025-62018 | N/A | WordPress Kallyas theme <= 4.22.0 - Broken Access Cont… |
hogash |
Kallyas |
2025-11-06T15:55:26.361Z | 2025-11-06T18:00:28.192Z |
| cve-2025-62017 | N/A | WordPress Kallyas theme <= 4.22.0 - Broken Access Cont… |
hogash |
Kallyas |
2025-11-06T15:55:25.294Z | 2025-11-06T17:59:33.877Z |
| cve-2025-62016 | N/A | WordPress Kallyas theme <= 4.22.0 - Arbitrary File Upl… |
hogash |
Kallyas |
2025-11-06T15:55:24.586Z | 2025-11-07T14:05:19.194Z |
| cve-2025-62014 | N/A | WordPress ITok theme <= 1.1.42 - Local File Inclusion … |
ApusTheme |
ITok |
2025-11-06T15:55:23.874Z | 2025-11-07T14:06:52.557Z |
| cve-2025-62012 | N/A | WordPress TheGem (Elementor) theme <= 5.10.5 - Cross S… |
CodexThemes |
TheGem (Elementor) |
2025-11-06T15:55:23.261Z | 2025-11-07T14:25:21.864Z |
| cve-2025-62011 | N/A | WordPress TheGem theme <= 5.10.5 - Cross Site Scriptin… |
CodexThemes |
TheGem |
2025-11-06T15:55:22.593Z | 2025-11-07T14:25:28.464Z |
| cve-2025-62010 | N/A | WordPress Famita theme <= 1.54 - Local File Inclusion … |
ApusTheme |
Famita |
2025-11-06T15:55:21.866Z | 2025-11-07T14:25:34.207Z |
| cve-2025-60248 | N/A | WordPress WPC Product Options for WooCommerce plugin <… |
WPClever |
WPC Product Options for WooCommerce |
2025-11-06T15:55:21.142Z | 2025-11-07T14:25:39.722Z |
| cve-2025-60247 | N/A | WordPress Bux Woocommerce plugin <= 1.2.3 - Broken Acc… |
Bux |
Bux Woocommerce |
2025-11-06T15:55:20.539Z | 2025-11-07T14:25:45.410Z |
| cve-2025-60245 | N/A | WordPress WP User Manager plugin <= 2.9.12 - PHP Objec… |
WP User Manager |
WP User Manager |
2025-11-06T15:55:19.859Z | 2025-11-06T15:55:19.859Z |
| cve-2025-60244 | N/A | WordPress TableOn plugin <= 1.0.4.2 - Content Injectio… |
RealMag777 |
TableOn |
2025-11-06T15:55:18.193Z | 2025-11-06T15:55:18.193Z |
| cve-2025-60243 | N/A | WordPress Selling Commander for WooCommerce plugin <= … |
Holest Engineering |
Selling Commander for WooCommerce |
2025-11-06T15:55:15.782Z | 2025-11-06T15:55:15.782Z |
| cve-2025-60242 | N/A | WordPress Download Counter plugin <= 1.4 - Arbitrary F… |
Anatoly |
Download Counter |
2025-11-06T15:55:14.917Z | 2025-11-06T15:55:14.917Z |
| cve-2025-60241 | N/A | WordPress Premmerce plugin <= 1.3.19 - Local File Incl… |
Premmerce |
Premmerce |
2025-11-06T15:55:13.362Z | 2025-11-07T14:25:51.174Z |
| cve-2025-60240 | N/A | WordPress AnyComment plugin <= 0.3.6 - Local File Incl… |
Alexander |
AnyComment |
2025-11-06T15:55:10.324Z | 2025-11-07T14:25:56.516Z |
| cve-2025-60239 | N/A | WordPress CoSchool LMS plugin <= 1.4.3 - SQL Injection… |
Codexpert, Inc |
CoSchool LMS |
2025-11-06T15:55:09.493Z | 2025-11-07T14:26:02.764Z |
| cve-2025-60235 | N/A | WordPress Helpdesk Support Ticket System for WooCommer… |
Plugify |
Helpdesk Support Ticket System for WooCommerce |
2025-11-06T15:55:07.928Z | 2025-11-06T15:55:07.928Z |
| cve-2025-60207 | N/A | WordPress Custom User Registration Fields for WooComme… |
Addify |
Custom User Registration Fields for WooCommerce |
2025-11-06T15:55:06.274Z | 2025-11-06T15:55:06.274Z |
| cve-2025-60204 | N/A | WordPress WooCommerce Store Toolkit plugin <= 2.4.3 - … |
Josh Kohlbach |
WooCommerce Store Toolkit |
2025-11-06T15:55:05.172Z | 2025-11-06T17:35:11.397Z |
| cve-2025-60203 | N/A | WordPress Store Exporter plugin <= 2.7.6 - Local File … |
Josh Kohlbach |
Store Exporter |
2025-11-06T15:55:04.065Z | 2025-11-06T17:37:00.570Z |
| cve-2025-60202 | N/A | WordPress Favorites plugin <= 2.3.6 - Local File Inclu… |
Kyle Phillips |
Favorites |
2025-11-06T15:55:03.303Z | 2025-11-06T17:38:34.953Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-71382 | Malicious code in useless-tan-sole (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71381 | Malicious code in useless-ivory-baboon (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71380 | Malicious code in useless-gold-bird (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71379 | Malicious code in useless-bronze-cougar (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71378 | Malicious code in useless-amethyst-worm (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71377 | Malicious code in useful-silver-earthworm (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71376 | Malicious code in useful-sapphire-primate (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71375 | Malicious code in useful-moccasin-grasshopper (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71374 | Malicious code in useful-cyan-ferret (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71373 | Malicious code in useful-azure-pinniped (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71372 | Malicious code in useful-amethyst-peafowl (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71371 | Malicious code in used-red-loon (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71370 | Malicious code in used-lavender-porcupine (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71369 | Malicious code in used-crimson-mouse (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71368 | Malicious code in used-azure-krill (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71367 | Malicious code in used-amethyst-skunk (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71366 | Malicious code in urgent-yellow-hedgehog (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71365 | Malicious code in urgent-silver-canid (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71364 | Malicious code in urgent-peach-pigeon (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71363 | Malicious code in urgent-copper-leech (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71362 | Malicious code in urgent-chocolate-raccoon (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71361 | Malicious code in urban-pink-rooster (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71360 | Malicious code in urban-indigo-mockingbird (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71359 | Malicious code in urban-amethyst-smelt (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71358 | Malicious code in uptight-peach-dingo (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71357 | Malicious code in uptight-maroon-crawdad (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71356 | Malicious code in uptight-fuchsia-clam (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71355 | Malicious code in uptight-apricot-chinchilla (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71354 | Malicious code in upset-magenta-mandrill (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| mal-2025-71353 | Malicious code in upset-indigo-piranha (npm) | 2025-11-11T00:41:25Z | 2025-11-11T00:41:25Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:16527 | Red Hat Security Advisory: OpenShift Container Platform 4.16 ztp-site-generate container | 2025-09-23T20:37:14+00:00 | 2025-11-10T01:32:49+00:00 |
| rhsa-2025:16526 | Red Hat Security Advisory: OpenShift Container Platform 4.14 ztp-site-generate container | 2025-09-23T19:55:07+00:00 | 2025-11-10T01:32:48+00:00 |
| rhsa-2025:16524 | Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage | 2025-09-23T19:28:34+00:00 | 2025-11-07T10:53:35+00:00 |
| rhsa-2025:16515 | Red Hat Security Advisory: container-tools:rhel8 security update | 2025-09-23T18:32:48+00:00 | 2025-11-07T18:35:50+00:00 |
| rhsa-2025:16487 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update | 2025-09-23T18:04:58+00:00 | 2025-11-06T23:42:22+00:00 |
| rhsa-2025:16488 | Red Hat Security Advisory: podman security update | 2025-09-23T16:48:17+00:00 | 2025-11-07T18:35:50+00:00 |
| rhsa-2025:16504 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.19 security, enhancement & bug fix update | 2025-09-23T15:46:00+00:00 | 2025-11-08T06:04:12+00:00 |
| rhsa-2025:16482 | Red Hat Security Advisory: container-tools:rhel8 security update | 2025-09-23T15:24:48+00:00 | 2025-11-07T18:35:50+00:00 |
| rhsa-2025:16481 | Red Hat Security Advisory: podman security update | 2025-09-23T15:19:02+00:00 | 2025-11-07T18:35:49+00:00 |
| rhsa-2025:16480 | Red Hat Security Advisory: podman security update | 2025-09-23T14:06:08+00:00 | 2025-11-07T18:35:49+00:00 |
| rhsa-2025:16483 | Red Hat Security Advisory: OpenShift Virtualization 4.12.20 Images | 2025-09-23T13:46:22+00:00 | 2025-11-07T10:53:09+00:00 |
| rhsa-2025:16461 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.14 OpenShift Jenkins security update | 2025-09-23T10:10:12+00:00 | 2025-11-06T23:42:22+00:00 |
| rhsa-2025:16462 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.15 OpenShift Jenkins security update | 2025-09-23T10:09:56+00:00 | 2025-11-06T23:42:24+00:00 |
| rhsa-2025:16460 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.13 OpenShift Jenkins security update | 2025-09-23T10:09:41+00:00 | 2025-11-06T23:42:21+00:00 |
| rhsa-2025:16459 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.12 OpenShift Jenkins security update | 2025-09-23T09:47:46+00:00 | 2025-11-06T23:42:21+00:00 |
| rhsa-2025:16457 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.16 OpenShift Jenkins security update | 2025-09-23T09:44:56+00:00 | 2025-11-06T23:42:21+00:00 |
| rhsa-2025:16456 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.17 OpenShift Jenkins security update | 2025-09-23T09:44:51+00:00 | 2025-11-06T23:42:21+00:00 |
| rhsa-2025:16454 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.19 OpenShift Jenkins security update | 2025-09-23T09:44:32+00:00 | 2025-11-06T23:42:21+00:00 |
| rhsa-2025:16455 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.18 Openshift Jenkins security update | 2025-09-23T09:40:23+00:00 | 2025-11-06T23:42:21+00:00 |
| rhsa-2025:16428 | Red Hat Security Advisory: libtpms security update | 2025-09-23T08:27:06+00:00 | 2025-11-06T23:42:21+00:00 |
| rhsa-2025:16432 | Red Hat Security Advisory: opentelemetry-collector security update | 2025-09-23T08:27:01+00:00 | 2025-11-07T16:34:39+00:00 |
| rhsa-2025:16398 | Red Hat Security Advisory: kernel security update | 2025-09-23T01:04:55+00:00 | 2025-11-10T17:57:00+00:00 |
| rhsa-2025:16409 | Red Hat Security Advisory: Red Hat AMQ Broker 7.12.5 release and security update | 2025-09-22T23:39:35+00:00 | 2025-11-06T23:42:21+00:00 |
| rhsa-2025:16407 | Red Hat Security Advisory: Streams for Apache Kafka 3.0.1 release and security update | 2025-09-22T21:48:11+00:00 | 2025-11-07T20:55:54+00:00 |
| rhsa-2025:16404 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Container Release Update | 2025-09-22T20:31:19+00:00 | 2025-11-06T23:42:20+00:00 |
| rhsa-2025:16403 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update | 2025-09-22T18:14:13+00:00 | 2025-11-06T23:42:20+00:00 |
| rhsa-2025:16399 | Red Hat Security Advisory: Red Hat build of Keycloak 26.2.9 Security Update | 2025-09-22T15:36:01+00:00 | 2025-11-07T21:05:30+00:00 |
| rhsa-2025:16400 | Red Hat Security Advisory: Red Hat build of Keycloak 26.2.9 Images Security Update | 2025-09-22T15:35:49+00:00 | 2025-11-07T21:05:31+00:00 |
| rhsa-2025:16372 | Red Hat Security Advisory: kernel security update | 2025-09-22T14:18:04+00:00 | 2025-11-08T07:17:16+00:00 |
| rhsa-2025:16373 | Red Hat Security Advisory: kernel-rt security update | 2025-09-22T11:07:39+00:00 | 2025-11-08T07:17:17+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-38687 | comedi: fix race between polling and detaching | 2025-09-02T00:00:00.000Z | 2025-09-06T01:09:14.000Z |
| msrc_cve-2025-38685 | fbdev: Fix vmalloc out-of-bounds write in fast_imageblit | 2025-09-02T00:00:00.000Z | 2025-09-06T01:01:41.000Z |
| msrc_cve-2025-38684 | net/sched: ets: use old 'nbands' while purging unused classes | 2025-09-02T00:00:00.000Z | 2025-09-06T01:06:52.000Z |
| msrc_cve-2025-38681 | mm/ptdump: take the memory hotplug lock inside ptdump_walk_pgd() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:03:45.000Z |
| msrc_cve-2025-38680 | media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format() | 2025-09-02T00:00:00.000Z | 2025-09-06T01:02:38.000Z |
| msrc_cve-2025-38679 | media: venus: Fix OOB read due to missing payload bound check | 2025-09-02T00:00:00.000Z | 2025-09-06T01:09:41.000Z |
| msrc_cve-2025-38678 | netfilter: nf_tables: reject duplicate device on updates | 2025-09-02T00:00:00.000Z | 2025-09-04T01:02:24.000Z |
| msrc_cve-2025-11083 | GNU Binutils Linker elfcode.h elf_swap_shdr heap-based overflow | 2025-09-02T00:00:00.000Z | 2025-10-02T01:04:49.000Z |
| msrc_cve-2025-11082 | GNU Binutils Linker elf-eh-frame.c _bfd_elf_parse_eh_frame heap-based overflow | 2025-09-02T00:00:00.000Z | 2025-10-02T01:04:39.000Z |
| msrc_cve-2025-11081 | GNU Binutils objdump.c dump_dwarf_section out-of-bounds | 2025-09-02T00:00:00.000Z | 2025-10-02T01:04:20.000Z |
| msrc_cve-2025-11021 | Libsoup: out-of-bounds read in cookie date handling of libsoup http library | 2025-09-02T00:00:00.000Z | 2025-09-29T01:01:39.000Z |
| msrc_cve-2025-10911 | Libxslt: use-after-free with key data stored cross-rvt | 2025-09-02T00:00:00.000Z | 2025-09-29T01:01:46.000Z |
| msrc_cve-2025-10824 | axboe fio init.c __parse_jobs_ini use after free | 2025-09-02T00:00:00.000Z | 2025-09-24T01:01:39.000Z |
| msrc_cve-2025-10823 | axboe fio options.c str_buffer_pattern_cb null pointer dereference | 2025-09-02T00:00:00.000Z | 2025-09-24T01:01:30.000Z |
| msrc_cve-2022-50380 | mm: /proc/pid/smaps_rollup: fix no vma's null-deref | 2025-09-02T00:00:00.000Z | 2025-09-20T01:02:40.000Z |
| msrc_cve-2025-53784 | Microsoft Word Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53783 | Microsoft Teams Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-30T07:00:00.000Z |
| msrc_cve-2025-53761 | Microsoft PowerPoint Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53760 | Microsoft SharePoint Elevation of Privilege Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53759 | Microsoft Excel Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53741 | Microsoft Excel Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53740 | Microsoft Office Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53739 | Microsoft Excel Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53738 | Microsoft Word Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53737 | Microsoft Excel Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53736 | Microsoft Word Information Disclosure Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53735 | Microsoft Excel Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53733 | Microsoft Word Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-53731 | Microsoft Office Remote Code Execution Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| msrc_cve-2025-50154 | Microsoft Windows File Explorer Spoofing Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-16T07:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2023-003770 | DoS Vulnerability in Hitachi Ops Center Common Services | 2023-10-04T15:23+09:00 | 2024-05-22T15:31+09:00 |
| jvndb-2023-003769 | Information Exposure Vulnerability in Hitachi Ops Center Administrator | 2023-10-04T15:23+09:00 | 2024-05-22T15:20+09:00 |
| jvndb-2023-000097 | Citadel WebCit vulnerable to cross-site scripting on Instant Messaging facility | 2023-10-04T14:07+09:00 | 2024-05-21T17:08+09:00 |
| jvndb-2023-003767 | Multiple vulnerabilities in multiple FURUNO SYSTEMS wireless LAN access point devices in ST(Standalone) mode | 2023-10-03T14:26+09:00 | 2024-05-22T18:01+09:00 |
| jvndb-2023-000096 | Improper restriction of XML external entity references (XXE) in FD Application | 2023-10-02T12:36+09:00 | 2024-05-22T15:37+09:00 |
| jvndb-2023-003764 | Multiple vulnerabilities in Panasonic KW Watcher | 2023-09-27T14:44+09:00 | 2023-09-27T14:44+09:00 |
| jvndb-2023-000095 | Shihonkanri Plus vulnerable to relative path traversal | 2023-09-27T13:49+09:00 | 2024-05-21T17:16+09:00 |
| jvndb-2023-003757 | Trend Micro Mobile Security vulnerable to cross-site scripting | 2023-09-26T11:30+09:00 | 2024-03-13T18:07+09:00 |
| jvndb-2023-000094 | Multiple vulnerabilities in WordPress plugin "Welcart e-Commerce" | 2023-09-22T13:51+09:00 | 2024-07-11T16:49+09:00 |
| jvndb-2023-003721 | Trend Micro Endpoint security products for enterprises vulnerable to arbitrary code execution | 2023-09-20T13:58+09:00 | 2024-05-09T18:22+09:00 |
| jvndb-2023-003592 | Multiple vulnerabilities in JTEKT ELECTRONICS Kostac PLC Programming Software | 2023-09-13T15:02+09:00 | 2023-09-13T15:02+09:00 |
| jvndb-2023-000093 | Pyramid vulnerable to directory traversal | 2023-09-11T13:53+09:00 | 2024-05-16T16:52+09:00 |
| jvndb-2023-003335 | Vulnerability in JP1/VERITAS | 2023-09-06T15:35+09:00 | 2023-09-06T15:35+09:00 |
| jvndb-2023-000092 | "direct" Desktop App for macOS fails to restrict access permissions | 2023-09-06T14:33+09:00 | 2023-09-06T14:33+09:00 |
| jvndb-2023-000091 | Multiple vulnerabilities in F-RevoCRM | 2023-09-05T15:51+09:00 | 2024-05-14T18:06+09:00 |
| jvndb-2023-000090 | Multiple vulnerabilities in CGIs of PMailServer and PMailServer2 | 2023-09-05T14:55+09:00 | 2023-09-05T14:55+09:00 |
| jvndb-2023-000088 | Multiple vulnerabilities in SHIRASAGI | 2023-09-04T13:41+09:00 | 2024-05-14T17:58+09:00 |
| jvndb-2023-000089 | Multiple vulnerabilities in i-PRO VI Web Client | 2023-08-31T14:13+09:00 | 2024-05-14T18:05+09:00 |
| jvndb-2023-003028 | Phoenix Technologies Windows kernel driver vulnerable to insufficient access control on its IOCTL | 2023-08-30T10:05+09:00 | 2024-04-24T11:43+09:00 |
| jvndb-2023-003023 | Vulnerability in HiRDB | 2023-08-29T15:55+09:00 | 2023-09-06T15:45+09:00 |
| jvndb-2023-000087 | SYNCK GRAPHICA Mailform Pro CGI vulnerable to Regular expression Denial-of-Service (ReDoS) | 2023-08-24T14:12+09:00 | 2024-05-15T17:12+09:00 |
| jvndb-2023-000085 | "Skylark" App fails to restrict custom URL schemes properly | 2023-08-24T13:34+09:00 | 2024-12-03T15:51+09:00 |
| jvndb-2023-000086 | Rakuten WiFi Pocket vulnerable to improper authentication | 2023-08-23T12:42+09:00 | 2024-03-27T13:43+09:00 |
| jvndb-2023-002906 | Multiple vulnerabilities in Panasonic Control FPWIN Pro7 | 2023-08-22T18:02+09:00 | 2024-04-18T17:31+09:00 |
| jvndb-2023-002905 | Multiple vulnerabilities in CBC digital video recorders | 2023-08-22T17:35+09:00 | 2024-04-10T17:39+09:00 |
| jvndb-2023-000084 | WordPress Plugin "Advanced Custom Fields" vulnerable to cross-site scripting | 2023-08-21T14:05+09:00 | 2024-03-25T17:55+09:00 |
| jvndb-2023-000083 | Multiple vulnerabilities in LuxCal Web Calendar | 2023-08-21T13:29+09:00 | 2024-03-26T17:09+09:00 |
| jvndb-2023-000078 | Multiple vulnerabilities in Proself | 2023-08-18T13:47+09:00 | 2024-03-28T17:43+09:00 |
| jvndb-2023-000082 | EC-CUBE 2 series vulnerable to cross-site scripting | 2023-08-17T15:12+09:00 | 2024-03-25T18:07+09:00 |
| jvndb-2023-002797 | Multiple vulnerabilities in ELECOM and LOGITEC network devices | 2023-08-15T11:54+09:00 | 2025-02-13T15:21+09:00 |
| ID | Description | Updated |
|---|