Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-xfwx-x943-x38c | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-11-06T18:32:50Z | 2025-11-10T18:30:33Z |
| ghsa-rpg8-jc3j-fqj2 | Improper Control of Generation of Code ('Code Injection') vulnerability in Widgetlogic.org Widget L… | 2025-11-06T18:32:50Z | 2025-11-10T21:30:32Z |
| ghsa-pjf2-prg8-pcm6 | Missing Authorization vulnerability in flippercode Advanced Google Maps wp-google-map-gold allows E… | 2025-11-06T18:32:50Z | 2025-11-10T21:30:32Z |
| ghsa-mwrg-545v-m46r | Path Traversal: '.../...//' vulnerability in WPMU DEV - Your All-in-One WordPress Platform Smush Im… | 2025-11-06T18:32:50Z | 2025-11-07T21:31:19Z |
| ghsa-hr7c-9g7w-vxmx | An argument injection vulnerability exists in the affected product that could allow an attacker to … | 2025-11-06T18:32:50Z | 2025-11-06T18:32:50Z |
| ghsa-89gq-fcxr-3chg | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:50Z | 2025-11-10T21:30:32Z |
| ghsa-3cm5-9xrj-gw96 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T18:32:50Z | 2025-11-10T21:30:32Z |
| ghsa-38f8-fpgx-rq7p | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T18:32:50Z | 2025-11-10T21:30:32Z |
| ghsa-x33c-7c2v-mrj9 | Apollo Router Affected by an Access Control Bypass on Polymorphic Types | 2025-11-06T15:47:05Z | 2025-11-06T23:13:08Z |
| ghsa-g8jh-vg5j-4h3f | Apollo Router Improperly Enforces Renamed Access Control Directives | 2025-11-06T15:45:34Z | 2025-11-07T20:31:54Z |
| ghsa-52c5-vh7f-26fx | Cross-Site Scripting (XSS) vulnerability through unescaped HTML attribute values | 2025-11-06T15:44:35Z | 2025-11-06T15:44:36Z |
| ghsa-w2jf-268q-mrvh | OpenTofu affected denials of service in "tofu init" with maliciously-crafted module package responses | 2025-11-06T15:44:04Z | 2025-11-06T15:44:04Z |
| ghsa-j5h3-g7ch-42qf | Improper preservation of permissions in Elastic Defend on Windows hosts can lead to arbitrary files… | 2025-11-06T15:31:02Z | 2025-11-06T15:31:02Z |
| ghsa-chqh-jw54-v96h | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2025-11-06T15:31:02Z | 2025-11-06T15:31:02Z |
| ghsa-954p-ff4g-qrwj | IBM Business Automation Workflow containers 24.0.0 through 24.0.0-IF006, 24.0.1 through 24.0.1-IF00… | 2025-11-06T15:31:02Z | 2025-11-06T15:31:02Z |
| ghsa-47fj-h8p3-32hr | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2025-11-06T15:31:02Z | 2025-11-06T15:31:02Z |
| ghsa-w832-gg5g-x44m | Open redirect endpoint in Datasette | 2025-11-06T15:13:33Z | 2025-11-07T21:56:19Z |
| ghsa-pwhc-rpq9-4c8w | containerd affected by a local privilege escalation via wide permissions on CRI directory | 2025-11-06T15:12:08Z | 2025-11-06T23:12:26Z |
| ghsa-wwqf-mr46-f48r | The Hubbub Lite – Fast, free social sharing and follow buttons plugin for WordPress is vulnerable t… | 2025-11-06T09:30:27Z | 2025-11-06T09:30:27Z |
| ghsa-c6mq-jmqr-fj42 | The Better Find and Replace – AI-Powered Suggestions plugin for WordPress is vulnerable to unauthor… | 2025-11-06T09:30:27Z | 2025-11-06T09:30:27Z |
| ghsa-8pxf-65qh-4qrc | Improper Validation of Specified Quantity in Input vulnerability in TCP Communication Function on M… | 2025-11-06T09:30:27Z | 2025-11-06T09:30:27Z |
| ghsa-59gw-wcgq-689r | The Strong Testimonials plugin for WordPress is vulnerable to arbitrary shortcode execution in all … | 2025-11-06T09:30:27Z | 2025-11-06T09:30:27Z |
| ghsa-w98m-8w6g-8h8h | Rejected reason: Not used | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-rrj6-v2g6-p956 | Cross-site scripting vulnerability exists in GROWI prior to v7.2.10. If a malicious user creates a … | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-rqm6-jmg2-pgr4 | The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to Server-Si… | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-c6v2-f464-375q | The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to limited f… | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-89rw-3v7g-7694 | A improper restriction of operations within the bounds of a memory buffer exists in AsIO3.sys drive… | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-6jrq-cfpr-p7h7 | The Easy Digital Downloads plugin for WordPress is vulnerable to Order Manipulation in all versions… | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-xr75-qffj-f7pp | Rejected reason: Not used | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ghsa-jfgq-q79f-mg46 | Rejected reason: Not used | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-60074 | N/A | WordPress Lazy Load Optimizer plugin <= 1.4.7 - Local … |
Processby |
Lazy Load Optimizer |
2025-11-06T15:54:43.533Z | 2025-11-06T21:30:24.551Z |
| cve-2025-60073 | N/A | WordPress Responsive Sidebar plugin <= 1.2.2 - Local F… |
Processby |
Responsive Sidebar |
2025-11-06T15:54:42.201Z | 2025-11-06T15:54:42.201Z |
| cve-2025-59556 | N/A | WordPress GoStore theme < 1.6.4 - Cross Site Scripting… |
skygroup |
GoStore |
2025-11-06T15:54:38.990Z | 2025-11-06T15:54:38.990Z |
| cve-2025-58998 | N/A | WordPress s2Member Plugin <= 250701 - PHP Object Injec… |
Cristián Lávaque |
s2Member |
2025-11-06T15:54:37.699Z | 2025-11-06T15:54:37.699Z |
| cve-2025-58996 | N/A | WordPress Advanced Settings Plugin <= 3.1.1 - Arbitrar… |
Helmut Wandl |
Advanced Settings |
2025-11-06T15:54:36.343Z | 2025-11-06T15:54:36.343Z |
| cve-2025-58995 | N/A | WordPress Leblix Theme <= 2.4 - Local File Inclusion V… |
Creatives_Planet |
Leblix |
2025-11-06T15:54:33.654Z | 2025-11-06T15:54:33.654Z |
| cve-2025-58994 | N/A | WordPress Greenify theme <= 2.2 - Local File Inclusion… |
designervily |
Greenify |
2025-11-06T15:54:32.378Z | 2025-11-06T15:54:32.378Z |
| cve-2025-58986 | N/A | WordPress Jock On Air Now (JOAN) plugin <= 6.0.4 - Bro… |
ganddser |
Jock On Air Now (JOAN) |
2025-11-06T15:54:30.961Z | 2025-11-06T15:54:30.961Z |
| cve-2025-58972 | N/A | WordPress Barcode Scanner with Inventory & Order Manag… |
Dmitry V. (CEO of "UKR Solution") |
Barcode Scanner with Inventory & Order Manager |
2025-11-06T15:54:30.300Z | 2025-11-06T15:54:30.300Z |
| cve-2025-58964 | N/A | WordPress Enzy theme < 1.6.4 - Cross Site Scripting (X… |
skygroup |
Enzy |
2025-11-06T15:54:29.627Z | 2025-11-06T15:54:29.627Z |
| cve-2025-58638 | N/A | WordPress Institutions Directory Plugin <= 1.3.3 - Cro… |
e-plugins |
Institutions Directory |
2025-11-06T15:54:28.161Z | 2025-11-06T15:54:28.161Z |
| cve-2025-58636 | N/A | WordPress WP Gravity Forms Keap/Infusionsoft Plugin <=… |
CRM Perks |
WP Gravity Forms Keap/Infusionsoft |
2025-11-06T15:54:26.970Z | 2025-11-06T15:54:26.970Z |
| cve-2025-58629 | N/A | WordPress Miraculous theme < 2.0.9 - Arbitrary Content… |
kamleshyadav |
Miraculous |
2025-11-06T15:54:25.101Z | 2025-11-06T15:54:25.101Z |
| cve-2025-58627 | N/A | WordPress Miraculous Core Plugin plugin < 2.0.9 - Inse… |
kamleshyadav |
Miraculous Core Plugin |
2025-11-06T15:54:23.943Z | 2025-11-06T15:54:23.943Z |
| cve-2025-58619 | N/A | WordPress Falang multilanguage Plugin <= 1.3.65 - PHP … |
sbouey |
Falang multilanguage |
2025-11-06T15:54:22.879Z | 2025-11-07T16:13:04.283Z |
| cve-2025-58595 | N/A | WordPress All In One Login plugin <= 2.0.8 - Bypass Vu… |
Saad Iqbal |
All In One Login |
2025-11-06T15:54:21.774Z | 2025-11-10T19:47:08.490Z |
| cve-2025-58592 | N/A | WordPress TranslatePress Plugin <= 2.10.2 - Deserializ… |
Cozmoslabs |
TranslatePress |
2025-11-06T15:54:20.550Z | 2025-11-07T15:56:17.602Z |
| cve-2025-58243 | N/A | WordPress imEvent Theme <= 3.4.0 - Broken Access Contr… |
Jthemes |
imEvent |
2025-11-06T15:54:19.824Z | 2025-11-06T16:15:30.261Z |
| cve-2025-58207 | N/A | WordPress Ai Image Alt Text Generator for WP Plugin <=… |
WP Messiah |
Ai Image Alt Text Generator for WP |
2025-11-06T15:54:19.210Z | 2025-11-06T16:19:34.849Z |
| cve-2025-5803 | N/A | WordPress VikBooking Hotel Booking Engine & PMS plugin… |
e4jvikwp |
VikBooking Hotel Booking Engine & PMS |
2025-11-06T15:54:18.609Z | 2025-11-10T19:47:13.884Z |
| cve-2025-54737 | N/A | WordPress Jobmonster theme <= 4.7.8 - Cross Site Scrip… |
NooTheme |
Jobmonster |
2025-11-06T15:54:17.806Z | 2025-11-06T16:21:42.168Z |
| cve-2025-54722 | N/A | WordPress WooTour plugin <= 3.6.3 - Cross Site Scripti… |
Ex-Themes |
WooTour |
2025-11-06T15:54:16.991Z | 2025-11-06T16:27:22.618Z |
| cve-2025-54721 | N/A | WordPress Resca theme <= 3.0.2 - Cross Site Scripting … |
ThimPress |
Resca |
2025-11-06T15:54:16.209Z | 2025-11-06T16:30:47.235Z |
| cve-2025-54719 | N/A | WordPress Yogi - Health Beauty & Yoga Theme <= 2.9.2 -… |
NooTheme |
Yogi - Health Beauty & Yoga |
2025-11-06T15:54:15.371Z | 2025-11-06T18:07:10.677Z |
| cve-2025-54718 | N/A | WordPress Yogi - Health Beauty & Yoga theme <= 2.9.2 -… |
NooTheme |
Yogi - Health Beauty & Yoga |
2025-11-06T15:54:14.634Z | 2025-11-06T19:48:15.891Z |
| cve-2025-54711 | N/A | WordPress Info Cards Plugin <= 1.0.11 - Broken Access … |
bPlugins |
Info Cards |
2025-11-06T15:54:14.029Z | 2025-11-07T20:38:27.602Z |
| cve-2025-53586 | N/A | WordPress WeMusic Theme <= 1.9.1 - PHP Object Injectio… |
NooTheme |
WeMusic |
2025-11-06T15:54:13.387Z | 2025-11-10T19:47:21.249Z |
| cve-2025-53585 | N/A | WordPress WeMusic theme <= 1.9.1 - Cross Site Scriptin… |
NooTheme |
WeMusic |
2025-11-06T15:54:12.787Z | 2025-11-07T19:41:15.613Z |
| cve-2025-53574 | N/A | WordPress Doliconnect Plugin <= 9.3.2 - Cross Site Scr… |
ptibogxiv |
Doliconnect |
2025-11-06T15:54:11.607Z | 2025-11-10T19:47:28.207Z |
| cve-2025-53573 | N/A | WordPress Epic Review Plugin <= 1.0.2 - Cross Site Scr… |
jegtheme |
Epic Review |
2025-11-06T15:54:10.426Z | 2025-11-07T13:21:38.978Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-60201 | N/A | WordPress WP Customer Area plugin <= 8.2.7 - Local Fil… |
aguilatechnologies |
WP Customer Area |
2025-11-06T15:55:00.953Z | 2025-11-06T17:40:48.385Z |
| cve-2025-60200 | N/A | WordPress LearnPress Export Import plugin <= 4.0.9 - L… |
ThimPress |
LearnPress Export Import |
2025-11-06T15:54:59.689Z | 2025-11-06T17:42:08.469Z |
| cve-2025-60199 | N/A | WordPress InHype - Blog & Magazine WordPress Theme the… |
dedalx |
InHype - Blog & Magazine WordPress Theme |
2025-11-06T15:54:56.700Z | 2025-11-06T17:44:09.601Z |
| cve-2025-60198 | N/A | WordPress Saxon - Viral Content Blog & Magazine Market… |
dedalx |
Saxon - Viral Content Blog & Magazine Marketing WordPress Theme |
2025-11-06T15:54:55.955Z | 2025-11-06T17:45:02.935Z |
| cve-2025-60197 | N/A | WordPress Simple Contact Forms plugin <= 1.6.4 - Local… |
owenr88 |
Simple Contact Forms |
2025-11-06T15:54:54.553Z | 2025-11-06T17:45:51.893Z |
| cve-2025-60196 | N/A | WordPress Clearblue® Ovulation Calculator plugin <= 1.… |
Clearblue |
Clearblue® Ovulation Calculator |
2025-11-06T15:54:52.172Z | 2025-11-06T19:42:52.437Z |
| cve-2025-60195 | N/A | WordPress Atarim plugin <= 4.2 - Privilege Escalation … |
Vito Peleg |
Atarim |
2025-11-06T15:54:51.541Z | 2025-11-06T19:46:32.722Z |
| cve-2025-60194 | N/A | WordPress Premmerce Product Search for WooCommerce plu… |
Premmerce |
Premmerce Product Search for WooCommerce |
2025-11-06T15:54:50.878Z | 2025-11-06T20:02:04.425Z |
| cve-2025-60193 | N/A | WordPress Premmerce User Roles plugin <= 1.0.13 - Loca… |
Premmerce |
Premmerce User Roles |
2025-11-06T15:54:49.770Z | 2025-11-06T20:01:26.912Z |
| cve-2025-60192 | N/A | WordPress Premmerce Wholesale Pricing for WooCommerce … |
Premmerce |
Premmerce Wholesale Pricing for WooCommerce |
2025-11-06T15:54:49.257Z | 2025-11-06T19:57:53.547Z |
| cve-2025-60191 | N/A | WordPress Premmerce Wishlist for WooCommerce plugin <=… |
Premmerce |
Premmerce Wishlist for WooCommerce |
2025-11-06T15:54:48.713Z | 2025-11-06T21:19:06.815Z |
| cve-2025-60190 | N/A | WordPress Immocaster WordPress Plugin plugin <= 1.3.6 … |
Hinnerk Altenburg |
Immocaster WordPress Plugin |
2025-11-06T15:54:48.157Z | 2025-11-06T21:20:06.464Z |
| cve-2025-60189 | N/A | WordPress PoloPag – Pix Automático para Woocommerce pl… |
PoloPag |
PoloPag – Pix Automático para Woocommerce |
2025-11-06T15:54:47.579Z | 2025-11-06T15:54:47.579Z |
| cve-2025-60188 | N/A | WordPress Atarim plugin <= 4.2 - Sensitive Data Exposu… |
Vito Peleg |
Atarim |
2025-11-06T15:54:46.469Z | 2025-11-06T15:54:46.469Z |
| cve-2025-60187 | N/A | WordPress Atarim plugin <= 4.2 - Arbitrary File Upload… |
Vito Peleg |
Atarim |
2025-11-06T15:54:45.484Z | 2025-11-06T21:29:17.523Z |
| cve-2025-60074 | N/A | WordPress Lazy Load Optimizer plugin <= 1.4.7 - Local … |
Processby |
Lazy Load Optimizer |
2025-11-06T15:54:43.533Z | 2025-11-06T21:30:24.551Z |
| cve-2025-60073 | N/A | WordPress Responsive Sidebar plugin <= 1.2.2 - Local F… |
Processby |
Responsive Sidebar |
2025-11-06T15:54:42.201Z | 2025-11-06T15:54:42.201Z |
| cve-2025-5803 | N/A | WordPress VikBooking Hotel Booking Engine & PMS plugin… |
e4jvikwp |
VikBooking Hotel Booking Engine & PMS |
2025-11-06T15:54:18.609Z | 2025-11-10T19:47:13.884Z |
| cve-2025-59556 | N/A | WordPress GoStore theme < 1.6.4 - Cross Site Scripting… |
skygroup |
GoStore |
2025-11-06T15:54:38.990Z | 2025-11-06T15:54:38.990Z |
| cve-2025-59392 | N/A | On Elspec G5 devices through 1.2.2.19, a person w… |
n/a |
n/a |
2025-11-06T00:00:00.000Z | 2025-11-06T16:38:10.176Z |
| cve-2025-58998 | N/A | WordPress s2Member Plugin <= 250701 - PHP Object Injec… |
Cristián Lávaque |
s2Member |
2025-11-06T15:54:37.699Z | 2025-11-06T15:54:37.699Z |
| cve-2025-58996 | N/A | WordPress Advanced Settings Plugin <= 3.1.1 - Arbitrar… |
Helmut Wandl |
Advanced Settings |
2025-11-06T15:54:36.343Z | 2025-11-06T15:54:36.343Z |
| cve-2025-58995 | N/A | WordPress Leblix Theme <= 2.4 - Local File Inclusion V… |
Creatives_Planet |
Leblix |
2025-11-06T15:54:33.654Z | 2025-11-06T15:54:33.654Z |
| cve-2025-58994 | N/A | WordPress Greenify theme <= 2.2 - Local File Inclusion… |
designervily |
Greenify |
2025-11-06T15:54:32.378Z | 2025-11-06T15:54:32.378Z |
| cve-2025-58986 | N/A | WordPress Jock On Air Now (JOAN) plugin <= 6.0.4 - Bro… |
ganddser |
Jock On Air Now (JOAN) |
2025-11-06T15:54:30.961Z | 2025-11-06T15:54:30.961Z |
| cve-2025-58972 | N/A | WordPress Barcode Scanner with Inventory & Order Manag… |
Dmitry V. (CEO of "UKR Solution") |
Barcode Scanner with Inventory & Order Manager |
2025-11-06T15:54:30.300Z | 2025-11-06T15:54:30.300Z |
| cve-2025-58964 | N/A | WordPress Enzy theme < 1.6.4 - Cross Site Scripting (X… |
skygroup |
Enzy |
2025-11-06T15:54:29.627Z | 2025-11-06T15:54:29.627Z |
| cve-2025-58638 | N/A | WordPress Institutions Directory Plugin <= 1.3.3 - Cro… |
e-plugins |
Institutions Directory |
2025-11-06T15:54:28.161Z | 2025-11-06T15:54:28.161Z |
| cve-2025-58636 | N/A | WordPress WP Gravity Forms Keap/Infusionsoft Plugin <=… |
CRM Perks |
WP Gravity Forms Keap/Infusionsoft |
2025-11-06T15:54:26.970Z | 2025-11-06T15:54:26.970Z |
| cve-2025-58629 | N/A | WordPress Miraculous theme < 2.0.9 - Arbitrary Content… |
kamleshyadav |
Miraculous |
2025-11-06T15:54:25.101Z | 2025-11-06T15:54:25.101Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-76207 | Malicious code in wawan-rojak22-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76206 | Malicious code in wawan-rawon14-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76205 | Malicious code in wawan-rangi32-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76204 | Malicious code in wawan-rangginang81-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76203 | Malicious code in wawan-ragi32-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76202 | Malicious code in wawan-oncom38-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76201 | Malicious code in wawan-oblok9-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76200 | Malicious code in wawan-nasiuduk10-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76199 | Malicious code in wawan-nasisayur71-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76198 | Malicious code in wawan-nasicampur47-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76197 | Malicious code in wawan-nasicampur19-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76196 | Malicious code in wawan-nasi76-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76195 | Malicious code in wawan-nasi56-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76194 | Malicious code in wawan-miemee49-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76193 | Malicious code in wawan-miemee37-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76192 | Malicious code in wawan-miebogor66-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76191 | Malicious code in wawan-mieayam45-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76190 | Malicious code in wawan-mieaceh66-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76189 | Malicious code in wawan-menjes50-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76188 | Malicious code in wawan-menjes33-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76187 | Malicious code in wawan-mendut94-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76186 | Malicious code in wawan-mangut35-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76185 | Malicious code in wawan-mangut14-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76184 | Malicious code in wawan-mangga86-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76183 | Malicious code in wawan-lontong7-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76182 | Malicious code in wawan-lodeh82-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76181 | Malicious code in wawan-lapis95-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76180 | Malicious code in wawan-lapis47-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76179 | Malicious code in wawan-kupat32-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| mal-2025-76178 | Malicious code in wawan-kue83-breki (npm) | 2025-11-11T02:29:13Z | 2025-11-11T02:29:13Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:16354 | Red Hat Security Advisory: kernel security update | 2025-09-22T10:43:33+00:00 | 2025-11-07T19:47:45+00:00 |
| rhsa-2025:16313 | Red Hat Security Advisory: ImageMagick security update | 2025-09-22T05:39:13+00:00 | 2025-11-06T23:42:19+00:00 |
| rhsa-2025:16260 | Red Hat Security Advisory: firefox security update | 2025-09-22T01:28:33+00:00 | 2025-11-06T23:23:54+00:00 |
| rhsa-2025:16262 | Red Hat Security Advisory: python3 security update | 2025-09-22T01:17:47+00:00 | 2025-11-07T10:53:35+00:00 |
| rhsa-2025:16130 | Red Hat Security Advisory: udisks2 security update | 2025-09-18T14:23:10+00:00 | 2025-11-06T23:42:19+00:00 |
| rhsa-2025:16157 | Red Hat Security Advisory: thunderbird security update | 2025-09-18T13:10:56+00:00 | 2025-11-06T23:23:54+00:00 |
| rhsa-2025:16156 | Red Hat Security Advisory: thunderbird security update | 2025-09-18T10:30:09+00:00 | 2025-11-06T23:23:54+00:00 |
| rhsa-2025:16154 | Red Hat Security Advisory: grub2 security update | 2025-09-18T08:45:20+00:00 | 2025-11-06T23:23:53+00:00 |
| rhsa-2025:16153 | Red Hat Security Advisory: python3 security update | 2025-09-18T07:56:44+00:00 | 2025-11-07T10:53:35+00:00 |
| rhsa-2025:16152 | Red Hat Security Advisory: python3.9 security update | 2025-09-18T07:56:08+00:00 | 2025-11-07T10:53:33+00:00 |
| rhsa-2025:16151 | Red Hat Security Advisory: python3 security update | 2025-09-18T07:55:09+00:00 | 2025-11-07T10:53:33+00:00 |
| rhsa-2025:15672 | Red Hat Security Advisory: OpenShift Container Platform 4.13.60 bug fix and security update | 2025-09-18T05:46:13+00:00 | 2025-11-07T18:40:21+00:00 |
| rhsa-2025:15673 | Red Hat Security Advisory: OpenShift Container Platform 4.13.60 bug fix and security update | 2025-09-18T04:52:06+00:00 | 2025-11-10T13:43:32+00:00 |
| rhsa-2025:15674 | Red Hat Security Advisory: OpenShift Container Platform 4.13.60 security and extras update | 2025-09-18T04:25:22+00:00 | 2025-11-07T00:15:36+00:00 |
| rhsa-2025:16125 | Red Hat Security Advisory: udisks2 security update | 2025-09-17T20:37:27+00:00 | 2025-11-06T23:42:22+00:00 |
| rhsa-2025:16124 | Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.17.2-1 Update | 2025-09-17T19:43:34+00:00 | 2025-11-07T00:15:07+00:00 |
| rhsa-2025:16122 | Red Hat Security Advisory: udisks2 security update | 2025-09-17T18:58:27+00:00 | 2025-11-06T23:42:19+00:00 |
| rhsa-2025:16121 | Red Hat Security Advisory: udisks2 security update | 2025-09-17T18:30:12+00:00 | 2025-11-06T23:42:19+00:00 |
| rhsa-2025:16116 | Red Hat Security Advisory: gnutls security, bug fix, and enhancement update | 2025-09-17T18:17:11+00:00 | 2025-11-06T23:14:58+00:00 |
| rhsa-2025:16118 | Red Hat Security Advisory: python39:3.9 security update | 2025-09-17T17:59:12+00:00 | 2025-11-07T10:53:33+00:00 |
| rhsa-2025:16117 | Red Hat Security Advisory: python3 security update | 2025-09-17T17:59:11+00:00 | 2025-11-07T10:53:33+00:00 |
| rhsa-2025:16115 | Red Hat Security Advisory: gnutls security, bug fix, and enhancement update | 2025-09-17T17:13:16+00:00 | 2025-11-06T23:14:58+00:00 |
| rhsa-2025:16108 | Red Hat Security Advisory: firefox security update | 2025-09-17T15:53:46+00:00 | 2025-11-06T23:23:53+00:00 |
| rhsa-2025:16109 | Red Hat Security Advisory: firefox security update | 2025-09-17T15:41:36+00:00 | 2025-11-06T23:23:53+00:00 |
| rhsa-2025:16086 | Red Hat Security Advisory: mysql security update | 2025-09-17T15:33:11+00:00 | 2025-11-06T23:14:59+00:00 |
| rhsa-2025:16099 | Red Hat Security Advisory: postgresql security update | 2025-09-17T15:33:06+00:00 | 2025-11-06T22:49:05+00:00 |
| rhsa-2025:16106 | Red Hat Security Advisory: udisks2 security update | 2025-09-17T15:30:26+00:00 | 2025-11-06T23:42:19+00:00 |
| rhsa-2025:16090 | Red Hat Security Advisory: udisks2 security update | 2025-09-17T14:51:21+00:00 | 2025-11-06T23:42:19+00:00 |
| rhsa-2025:16078 | Red Hat Security Advisory: python39:3.9 security update | 2025-09-17T14:45:21+00:00 | 2025-11-07T10:53:32+00:00 |
| rhsa-2025:16062 | Red Hat Security Advisory: python39:3.9 security update | 2025-09-17T14:27:11+00:00 | 2025-11-07T10:53:32+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-9403 | jqlang jq JSON jq_test.c run_jq_tests assertion | 2025-08-02T00:00:00.000Z | 2025-09-03T23:38:41.000Z |
| msrc_cve-2025-9390 | vim xxd xxd.c main buffer overflow | 2025-08-02T00:00:00.000Z | 2025-09-03T23:44:33.000Z |
| msrc_cve-2025-9301 | cmake cmForEachCommand.cxx ReplayItems assertion | 2025-08-02T00:00:00.000Z | 2025-09-03T21:58:03.000Z |
| msrc_cve-2025-9288 | Missing type checks leading to hash rewind and passing on crafted data | 2025-08-02T00:00:00.000Z | 2025-09-03T22:01:56.000Z |
| msrc_cve-2025-9165 | LibTIFF tiffcmp tiffcmp.c InitCCITTFax3 memory leak | 2025-08-02T00:00:00.000Z | 2025-09-03T21:50:43.000Z |
| msrc_cve-2025-8961 | LibTIFF tiffcrop tiffcrop.c main memory corruption | 2025-08-02T00:00:00.000Z | 2025-09-04T02:20:45.000Z |
| msrc_cve-2025-8851 | LibTIFF tiffcrop tiffcrop.c readSeparateStripsetoBuffer stack-based overflow | 2025-08-02T00:00:00.000Z | 2025-09-03T23:29:23.000Z |
| msrc_cve-2025-8846 | NASM Netwide Assember parser.c parse_line stack-based overflow | 2025-08-02T00:00:00.000Z | 2025-09-03T23:48:09.000Z |
| msrc_cve-2025-8845 | NASM Netwide Assember nasm.c assemble_file stack-based overflow | 2025-08-02T00:00:00.000Z | 2025-09-03T23:38:10.000Z |
| msrc_cve-2025-8844 | NASM Netwide Assember preproc.c parse_smacro_template null pointer dereference | 2025-08-02T00:00:00.000Z | 2025-09-03T23:16:28.000Z |
| msrc_cve-2025-8843 | NASM Netwide Assember outmacho.c macho_no_dead_strip heap-based overflow | 2025-08-02T00:00:00.000Z | 2025-09-03T23:08:17.000Z |
| msrc_cve-2025-8842 | NASM Netwide Assember preproc.c do_directive use after free | 2025-08-02T00:00:00.000Z | 2025-09-03T23:00:16.000Z |
| msrc_cve-2025-8837 | JasPer JPEG2000 File jpc_dec.c jpc_dec_dump use after free | 2025-08-02T00:00:00.000Z | 2025-09-03T22:40:08.000Z |
| msrc_cve-2025-8836 | JasPer JPEG2000 Encoder jpc_enc.c jpc_floorlog2 assertion | 2025-08-02T00:00:00.000Z | 2025-09-03T22:35:09.000Z |
| msrc_cve-2025-8835 | JasPer Image Color Space Conversion jas_image.c jas_image_chclrspc null pointer dereference | 2025-08-02T00:00:00.000Z | 2025-09-03T22:30:59.000Z |
| msrc_cve-2025-8747 | Keras safe_mode bypass allows arbitrary code execution when loading a malicious model. | 2025-08-02T00:00:00.000Z | 2025-09-03T22:43:52.000Z |
| msrc_cve-2025-8734 | GNU Bison scan-code.c code_free double free | 2025-08-02T00:00:00.000Z | 2025-09-03T22:23:02.000Z |
| msrc_cve-2025-8733 | GNU Bison obprintf.c __obstack_vprintf_internal assertion | 2025-08-02T00:00:00.000Z | 2025-09-03T22:20:27.000Z |
| msrc_cve-2025-8732 | libxml2 xmlcatalog xmlParseSGMLCatalog recursion | 2025-08-02T00:00:00.000Z | 2025-09-03T22:52:04.000Z |
| msrc_cve-2025-8715 | PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server | 2025-08-02T00:00:00.000Z | 2025-09-04T00:09:05.000Z |
| msrc_cve-2025-8714 | PostgreSQL pg_dump lets superuser of origin server execute arbitrary code in psql client | 2025-08-02T00:00:00.000Z | 2025-09-04T00:03:47.000Z |
| msrc_cve-2025-8713 | PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table | 2025-08-02T00:00:00.000Z | 2025-09-03T23:59:25.000Z |
| msrc_cve-2025-8534 | libtiff tiff2ps tiff2ps.c PS_Lvl2page null pointer dereference | 2025-08-02T00:00:00.000Z | 2025-09-03T21:53:12.000Z |
| msrc_cve-2025-58058 | github.com/ulikunitz/xz leaks memory when decoding a corrupted multiple LZMA archives | 2025-08-02T00:00:00.000Z | 2025-09-04T00:16:28.000Z |
| msrc_cve-2025-55199 | Helm Charts with Specific JSON Schema Values Can Cause Memory Exhaustion | 2025-08-02T00:00:00.000Z | 2025-09-04T00:23:40.000Z |
| msrc_cve-2025-55198 | Helm May Panic Due To Incorrect YAML Content | 2025-08-02T00:00:00.000Z | 2025-09-04T00:18:06.000Z |
| msrc_cve-2025-54409 | AIDE null pointer dereference when reading incorrectly encoded xattr attributes from database (local DoS) | 2025-08-02T00:00:00.000Z | 2025-09-04T02:25:53.000Z |
| msrc_cve-2025-54389 | AIDE improper output neutralization vulnerability | 2025-08-02T00:00:00.000Z | 2025-09-03T23:53:54.000Z |
| msrc_cve-2025-54351 | In iperf before 3.19.1, net.c has a buffer overflow when --skip-rx-copy is used (for MSG_TRUNC in recv). | 2025-08-02T00:00:00.000Z | 2025-09-03T21:50:16.000Z |
| msrc_cve-2025-54350 | In iperf before 3.19.1, iperf_auth.c has a Base64Decode assertion failure and application exit upon a malformed authentication attempt. | 2025-08-02T00:00:00.000Z | 2025-09-04T03:37:15.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2023-002796 | Multiple server-side request forgery vulnerabilities in Trend Micro Apex Central (July 2023) | 2023-08-10T16:04+09:00 | 2024-03-13T17:58+09:00 |
| jvndb-2023-000081 | "Rikunabi NEXT" App for Android fails to restrict custom URL schemes properly | 2023-08-09T12:45+09:00 | 2024-03-28T18:01+09:00 |
| jvndb-2023-000080 | "FFRI yarai" and "FFRI yarai Home and Business Edition" handle exceptional conditions improperly | 2023-08-07T17:39+09:00 | 2024-03-28T17:54+09:00 |
| jvndb-2023-000079 | Multiple vulnerabilities in Special Interest Group Network for Analysis and Liaison's API | 2023-08-07T15:15+09:00 | 2024-03-28T18:08+09:00 |
| jvndb-2023-000077 | Fujitsu Software Infrastructure Manager (ISM) stores sensitive information in cleartext | 2023-08-04T17:31+09:00 | 2024-04-03T17:19+09:00 |
| jvndb-2023-002787 | OMRON CJ series and CS/CJ Series EtherNet/IT unit vulnerable to Denial-of-Service (DoS) | 2023-08-03T13:45+09:00 | 2023-08-03T13:45+09:00 |
| jvndb-2023-002786 | Multiple vulnerabilities in OMRON CX-Programmer | 2023-08-03T13:42+09:00 | 2024-04-05T17:39+09:00 |
| jvndb-2023-000076 | SEIKO EPSON printer Web Config vulnerable to denial-of-service (DoS) | 2023-08-02T14:55+09:00 | 2024-04-19T17:27+09:00 |
| jvndb-2023-002725 | Multiple vulnerabilities in Command Center RX (CCRX) of Kyocera Document Solutions MFPs and printers | 2023-07-28T18:24+09:00 | 2024-05-07T18:15+09:00 |
| jvndb-2023-002722 | Fujitsu network devices Si-R series and SR-M series vulnerable to authentication bypass | 2023-07-27T18:12+09:00 | 2024-04-19T18:07+09:00 |
| jvndb-2023-000074 | Fujitsu Real-time Video Transmission Gear "IP series" uses a hard-coded credentials | 2023-07-26T18:00+09:00 | 2024-04-12T18:04+09:00 |
| jvndb-2023-000075 | Improper restriction of XML external entity references (XXE) in Applicant Programme | 2023-07-24T15:44+09:00 | 2024-04-22T14:20+09:00 |
| jvndb-2023-000073 | GBrowse vulnerable to unrestricted upload of files with dangerous types | 2023-07-21T15:02+09:00 | 2024-04-12T17:31+09:00 |
| jvndb-2023-000070 | Multiple vulnerabilities in WordPress Plugin "TS Webfonts for SAKURA" | 2023-07-20T16:05+09:00 | 2024-04-17T17:20+09:00 |
| jvndb-2023-002512 | EL Injection Vulnerability in Hitachi Replication Manager | 2023-07-19T14:48+09:00 | 2024-04-26T12:24+09:00 |
| jvndb-2023-002511 | File and Directory Permissions Vulnerability in Hitachi Command Suite | 2023-07-19T14:48+09:00 | 2024-04-26T12:29+09:00 |
| jvndb-2023-002510 | Multiple Vulnerabilities in Hitachi Device Manager | 2023-07-19T14:48+09:00 | 2023-07-19T14:48+09:00 |
| jvndb-2023-000072 | Improper restriction of XML external entity references (XXE) in XBRL data create application | 2023-07-18T15:22+09:00 | 2024-03-19T18:11+09:00 |
| jvndb-2023-002413 | Multiple vulnerabilities in ELECOM and LOGITEC wireless LAN routers | 2023-07-12T16:15+09:00 | 2024-04-22T16:18+09:00 |
| jvndb-2023-000071 | Multiple vulnerabilities in multiple ELECOM wireless LAN routers and wireless LAN repeaters | 2023-07-11T15:37+09:00 | 2024-03-29T15:28+09:00 |
| jvndb-2023-000069 | Multiple vulnerabilities in SoftEther VPN and PacketiX VPN | 2023-07-03T15:07+09:00 | 2024-05-22T17:47+09:00 |
| jvndb-2023-000068 | "NewsPicks" App uses a hard-coded API key for an external service | 2023-06-30T15:06+09:00 | 2024-04-30T18:09+09:00 |
| jvndb-2023-002270 | Null pointer dereference vulnerability in multiple printers and MFPs which implement BROTHER debut web server | 2023-06-30T11:49+09:00 | 2024-04-22T16:07+09:00 |
| jvndb-2023-000067 | WordPress Plugin "Snow Monkey Forms" vulnerable to directory traversal | 2023-06-27T17:05+09:00 | 2024-04-26T17:56+09:00 |
| jvndb-2023-000065 | Multiple vulnerabilities in WAVLINK WL-WN531AX2 | 2023-06-27T16:50+09:00 | 2023-06-27T16:50+09:00 |
| jvndb-2023-000066 | Multiple vulnerabilities in Aterm series | 2023-06-27T15:12+09:00 | 2024-05-22T18:16+09:00 |
| jvndb-2023-000060 | Multiple vulnerabilities in Pleasanter | 2023-06-22T15:49+09:00 | 2024-05-07T14:10+09:00 |
| jvndb-2023-000064 | SYNCK GRAPHICA Mailform Pro CGI vulnerable to Regular expression Denial-of-Service (ReDoS) | 2023-06-20T14:48+09:00 | 2024-04-26T18:03+09:00 |
| jvndb-2023-000063 | Multiple vulnerabilities in Panasonic AiSEG2 | 2023-06-16T14:05+09:00 | 2023-06-16T14:05+09:00 |
| jvndb-2023-002111 | Printer Driver Packager NX creates driver installation packages without modification detection | 2023-06-15T16:06+09:00 | 2024-05-23T15:45+09:00 |
| ID | Description | Updated |
|---|