Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-52c5-vh7f-26fx | Cross-Site Scripting (XSS) vulnerability through unescaped HTML attribute values | 2025-11-06T15:44:35Z | 2025-11-06T15:44:36Z |
| ghsa-w2jf-268q-mrvh | OpenTofu affected denials of service in "tofu init" with maliciously-crafted module package responses | 2025-11-06T15:44:04Z | 2025-11-06T15:44:04Z |
| ghsa-j5h3-g7ch-42qf | Improper preservation of permissions in Elastic Defend on Windows hosts can lead to arbitrary files… | 2025-11-06T15:31:02Z | 2025-11-06T15:31:02Z |
| ghsa-chqh-jw54-v96h | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2025-11-06T15:31:02Z | 2025-11-06T15:31:02Z |
| ghsa-954p-ff4g-qrwj | IBM Business Automation Workflow containers 24.0.0 through 24.0.0-IF006, 24.0.1 through 24.0.1-IF00… | 2025-11-06T15:31:02Z | 2025-11-06T15:31:02Z |
| ghsa-47fj-h8p3-32hr | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2025-11-06T15:31:02Z | 2025-11-06T15:31:02Z |
| ghsa-w832-gg5g-x44m | Open redirect endpoint in Datasette | 2025-11-06T15:13:33Z | 2025-11-07T21:56:19Z |
| ghsa-pwhc-rpq9-4c8w | containerd affected by a local privilege escalation via wide permissions on CRI directory | 2025-11-06T15:12:08Z | 2025-11-06T23:12:26Z |
| ghsa-wwqf-mr46-f48r | The Hubbub Lite – Fast, free social sharing and follow buttons plugin for WordPress is vulnerable t… | 2025-11-06T09:30:27Z | 2025-11-06T09:30:27Z |
| ghsa-c6mq-jmqr-fj42 | The Better Find and Replace – AI-Powered Suggestions plugin for WordPress is vulnerable to unauthor… | 2025-11-06T09:30:27Z | 2025-11-06T09:30:27Z |
| ghsa-8pxf-65qh-4qrc | Improper Validation of Specified Quantity in Input vulnerability in TCP Communication Function on M… | 2025-11-06T09:30:27Z | 2025-11-06T09:30:27Z |
| ghsa-59gw-wcgq-689r | The Strong Testimonials plugin for WordPress is vulnerable to arbitrary shortcode execution in all … | 2025-11-06T09:30:27Z | 2025-11-06T09:30:27Z |
| ghsa-w98m-8w6g-8h8h | Rejected reason: Not used | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-rrj6-v2g6-p956 | Cross-site scripting vulnerability exists in GROWI prior to v7.2.10. If a malicious user creates a … | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-rqm6-jmg2-pgr4 | The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to Server-Si… | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-c6v2-f464-375q | The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to limited f… | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-89rw-3v7g-7694 | A improper restriction of operations within the bounds of a memory buffer exists in AsIO3.sys drive… | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-6jrq-cfpr-p7h7 | The Easy Digital Downloads plugin for WordPress is vulnerable to Order Manipulation in all versions… | 2025-11-06T06:31:00Z | 2025-11-06T06:31:00Z |
| ghsa-xr75-qffj-f7pp | Rejected reason: Not used | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ghsa-jfgq-q79f-mg46 | Rejected reason: Not used | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ghsa-j46x-7r2f-39jj | Rejected reason: Not used | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ghsa-hxmw-gjp6-v3hg | Rejected reason: Not used | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ghsa-cgph-cwx2-p8cf | Rejected reason: Not used | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ghsa-9rw2-959c-gw2m | Rejected reason: Not used | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ghsa-5f59-4f8w-6g47 | Rejected reason: Not used | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ghsa-4rhv-r8jc-m23p | The Easy Email Subscription plugin for WordPress is vulnerable to Cross-Site Request Forgery in all… | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ghsa-25h8-7qpw-h33r | Rejected reason: Not used | 2025-11-06T06:30:59Z | 2025-11-06T06:30:59Z |
| ghsa-q7xf-93c3-w2p7 | The Easy Email Subscription plugin for WordPress is vulnerable to SQL Injection via the 'uid' param… | 2025-11-06T03:30:25Z | 2025-11-06T03:30:25Z |
| ghsa-mcg2-rcmm-mhww | Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions 2… | 2025-11-06T00:30:26Z | 2025-11-10T21:30:32Z |
| ghsa-8gg4-hx7q-h82p | Improper authentication in the API authentication middleware of HCL DevOps Loop allows authenticati… | 2025-11-06T00:30:26Z | 2025-11-06T00:30:26Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-58592 | N/A | WordPress TranslatePress Plugin <= 2.10.2 - Deserializ… |
Cozmoslabs |
TranslatePress |
2025-11-06T15:54:20.550Z | 2025-11-07T15:56:17.602Z |
| cve-2025-58243 | N/A | WordPress imEvent Theme <= 3.4.0 - Broken Access Contr… |
Jthemes |
imEvent |
2025-11-06T15:54:19.824Z | 2025-11-06T16:15:30.261Z |
| cve-2025-58207 | N/A | WordPress Ai Image Alt Text Generator for WP Plugin <=… |
WP Messiah |
Ai Image Alt Text Generator for WP |
2025-11-06T15:54:19.210Z | 2025-11-06T16:19:34.849Z |
| cve-2025-5803 | N/A | WordPress VikBooking Hotel Booking Engine & PMS plugin… |
e4jvikwp |
VikBooking Hotel Booking Engine & PMS |
2025-11-06T15:54:18.609Z | 2025-11-10T19:47:13.884Z |
| cve-2025-54737 | N/A | WordPress Jobmonster theme <= 4.7.8 - Cross Site Scrip… |
NooTheme |
Jobmonster |
2025-11-06T15:54:17.806Z | 2025-11-06T16:21:42.168Z |
| cve-2025-54722 | N/A | WordPress WooTour plugin <= 3.6.3 - Cross Site Scripti… |
Ex-Themes |
WooTour |
2025-11-06T15:54:16.991Z | 2025-11-06T16:27:22.618Z |
| cve-2025-54721 | N/A | WordPress Resca theme <= 3.0.2 - Cross Site Scripting … |
ThimPress |
Resca |
2025-11-06T15:54:16.209Z | 2025-11-06T16:30:47.235Z |
| cve-2025-54719 | N/A | WordPress Yogi - Health Beauty & Yoga Theme <= 2.9.2 -… |
NooTheme |
Yogi - Health Beauty & Yoga |
2025-11-06T15:54:15.371Z | 2025-11-06T18:07:10.677Z |
| cve-2025-54718 | N/A | WordPress Yogi - Health Beauty & Yoga theme <= 2.9.2 -… |
NooTheme |
Yogi - Health Beauty & Yoga |
2025-11-06T15:54:14.634Z | 2025-11-06T19:48:15.891Z |
| cve-2025-54711 | N/A | WordPress Info Cards Plugin <= 1.0.11 - Broken Access … |
bPlugins |
Info Cards |
2025-11-06T15:54:14.029Z | 2025-11-07T20:38:27.602Z |
| cve-2025-53586 | N/A | WordPress WeMusic Theme <= 1.9.1 - PHP Object Injectio… |
NooTheme |
WeMusic |
2025-11-06T15:54:13.387Z | 2025-11-10T19:47:21.249Z |
| cve-2025-53585 | N/A | WordPress WeMusic theme <= 1.9.1 - Cross Site Scriptin… |
NooTheme |
WeMusic |
2025-11-06T15:54:12.787Z | 2025-11-07T19:41:15.613Z |
| cve-2025-53574 | N/A | WordPress Doliconnect Plugin <= 9.3.2 - Cross Site Scr… |
ptibogxiv |
Doliconnect |
2025-11-06T15:54:11.607Z | 2025-11-10T19:47:28.207Z |
| cve-2025-53573 | N/A | WordPress Epic Review Plugin <= 1.0.2 - Cross Site Scr… |
jegtheme |
Epic Review |
2025-11-06T15:54:10.426Z | 2025-11-07T13:21:38.978Z |
| cve-2025-53349 | N/A | WordPress Kalium Theme <= 3.18.3 - Cross Site Scriptin… |
Laborator |
Kalium |
2025-11-06T15:54:06.581Z | 2025-11-10T19:47:34.159Z |
| cve-2025-53324 | N/A | WordPress Gutenify Plugin <= 1.5.7 - Cross Site Script… |
CodeYatri |
Gutenify |
2025-11-06T15:54:05.737Z | 2025-11-10T19:47:40.684Z |
| cve-2025-53316 | N/A | WordPress WP GDPR Cookie Consent plugin <= 1.0.0 - Cro… |
Shahjahan Jewel |
WP GDPR Cookie Consent |
2025-11-06T15:54:04.995Z | 2025-11-10T19:47:48.401Z |
| cve-2025-53286 | N/A | WordPress Dropify Plugin <= 4.6.9 - Cross Site Scripti… |
Jhainey Milevis |
Dropify |
2025-11-06T15:54:04.283Z | 2025-11-10T19:48:00.218Z |
| cve-2025-53283 | N/A | WordPress Drop Uploader for CF7 - Drag&Drop File Uploa… |
borisolhor |
Drop Uploader for CF7 - Drag&Drop File Uploader Addon |
2025-11-06T15:54:03.506Z | 2025-11-07T14:56:14.631Z |
| cve-2025-53252 | N/A | WordPress Zegen Theme <= 1.1.9 - Local File Inclusion … |
zozothemes |
Zegen |
2025-11-06T15:54:02.680Z | 2025-11-10T19:48:53.392Z |
| cve-2025-53246 | N/A | WordPress Backup and Move Plugin <= 0.1 - Broken Acces… |
Gaurav Aggarwal |
Backup and Move |
2025-11-06T15:53:59.915Z | 2025-11-10T19:49:05.718Z |
| cve-2025-53245 | N/A | WordPress WP Logo Changer Plugin <= 1.2 - Cross Site S… |
Afzal Multani |
WP Logo Changer |
2025-11-06T15:53:59.391Z | 2025-11-10T19:49:54.432Z |
| cve-2025-53242 | N/A | WordPress Seil Theme <= 1.7.1 - Deserialization of unt… |
VictorThemes |
Seil |
2025-11-06T15:53:58.962Z | 2025-11-10T19:50:01.019Z |
| cve-2025-53239 | N/A | WordPress User Registration Aide Plugin <= 1.5.3.8 - C… |
bnovotny |
User Registration Aide |
2025-11-06T15:53:58.555Z | 2025-11-10T19:50:09.183Z |
| cve-2025-53214 | N/A | WordPress Sertifier Certificate & Badge Maker plugin <… |
sertifier |
Sertifier Certificate & Badge Maker |
2025-11-06T15:53:58.037Z | 2025-11-10T19:51:37.248Z |
| cve-2025-52773 | N/A | WordPress HieCOR Payment Gateway plugin plugin <= 1.5.… |
hiecor |
HieCOR Payment Gateway Plugin |
2025-11-06T15:53:57.496Z | 2025-11-10T19:51:43.599Z |
| cve-2025-52764 | N/A | WordPress flexoslider plugin <= 1.0004 - Cross Site Sc… |
marielav |
flexoslider |
2025-11-06T15:53:56.937Z | 2025-11-10T19:51:51.375Z |
| cve-2025-49909 | N/A | WordPress Penci Bookmark & Follow plugin < 2.4 - Cross… |
PenciDesign |
Penci Bookmark & Follow |
2025-11-06T15:53:56.279Z | 2025-11-10T19:52:08.438Z |
| cve-2025-49905 | N/A | WordPress Range Slider Addon for Gravity Forms plugin … |
PluginsCafe |
Range Slider Addon for Gravity Forms |
2025-11-06T15:53:55.700Z | 2025-11-10T19:52:18.567Z |
| cve-2025-49904 | N/A | WordPress Booking and Rental Manager plugin <= 2.5.3 -… |
magepeopleteam |
Booking and Rental Manager |
2025-11-06T15:53:55.162Z | 2025-11-10T19:52:27.580Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-58996 | N/A | WordPress Advanced Settings Plugin <= 3.1.1 - Arbitrar… |
Helmut Wandl |
Advanced Settings |
2025-11-06T15:54:36.343Z | 2025-11-06T15:54:36.343Z |
| cve-2025-58995 | N/A | WordPress Leblix Theme <= 2.4 - Local File Inclusion V… |
Creatives_Planet |
Leblix |
2025-11-06T15:54:33.654Z | 2025-11-06T15:54:33.654Z |
| cve-2025-58994 | N/A | WordPress Greenify theme <= 2.2 - Local File Inclusion… |
designervily |
Greenify |
2025-11-06T15:54:32.378Z | 2025-11-06T15:54:32.378Z |
| cve-2025-58986 | N/A | WordPress Jock On Air Now (JOAN) plugin <= 6.0.4 - Bro… |
ganddser |
Jock On Air Now (JOAN) |
2025-11-06T15:54:30.961Z | 2025-11-06T15:54:30.961Z |
| cve-2025-58972 | N/A | WordPress Barcode Scanner with Inventory & Order Manag… |
Dmitry V. (CEO of "UKR Solution") |
Barcode Scanner with Inventory & Order Manager |
2025-11-06T15:54:30.300Z | 2025-11-06T15:54:30.300Z |
| cve-2025-58964 | N/A | WordPress Enzy theme < 1.6.4 - Cross Site Scripting (X… |
skygroup |
Enzy |
2025-11-06T15:54:29.627Z | 2025-11-06T15:54:29.627Z |
| cve-2025-58638 | N/A | WordPress Institutions Directory Plugin <= 1.3.3 - Cro… |
e-plugins |
Institutions Directory |
2025-11-06T15:54:28.161Z | 2025-11-06T15:54:28.161Z |
| cve-2025-58636 | N/A | WordPress WP Gravity Forms Keap/Infusionsoft Plugin <=… |
CRM Perks |
WP Gravity Forms Keap/Infusionsoft |
2025-11-06T15:54:26.970Z | 2025-11-06T15:54:26.970Z |
| cve-2025-58629 | N/A | WordPress Miraculous theme < 2.0.9 - Arbitrary Content… |
kamleshyadav |
Miraculous |
2025-11-06T15:54:25.101Z | 2025-11-06T15:54:25.101Z |
| cve-2025-58627 | N/A | WordPress Miraculous Core Plugin plugin < 2.0.9 - Inse… |
kamleshyadav |
Miraculous Core Plugin |
2025-11-06T15:54:23.943Z | 2025-11-06T15:54:23.943Z |
| cve-2025-58619 | N/A | WordPress Falang multilanguage Plugin <= 1.3.65 - PHP … |
sbouey |
Falang multilanguage |
2025-11-06T15:54:22.879Z | 2025-11-07T16:13:04.283Z |
| cve-2025-58595 | N/A | WordPress All In One Login plugin <= 2.0.8 - Bypass Vu… |
Saad Iqbal |
All In One Login |
2025-11-06T15:54:21.774Z | 2025-11-10T19:47:08.490Z |
| cve-2025-58592 | N/A | WordPress TranslatePress Plugin <= 2.10.2 - Deserializ… |
Cozmoslabs |
TranslatePress |
2025-11-06T15:54:20.550Z | 2025-11-07T15:56:17.602Z |
| cve-2025-58243 | N/A | WordPress imEvent Theme <= 3.4.0 - Broken Access Contr… |
Jthemes |
imEvent |
2025-11-06T15:54:19.824Z | 2025-11-06T16:15:30.261Z |
| cve-2025-58207 | N/A | WordPress Ai Image Alt Text Generator for WP Plugin <=… |
WP Messiah |
Ai Image Alt Text Generator for WP |
2025-11-06T15:54:19.210Z | 2025-11-06T16:19:34.849Z |
| cve-2025-54737 | N/A | WordPress Jobmonster theme <= 4.7.8 - Cross Site Scrip… |
NooTheme |
Jobmonster |
2025-11-06T15:54:17.806Z | 2025-11-06T16:21:42.168Z |
| cve-2025-54722 | N/A | WordPress WooTour plugin <= 3.6.3 - Cross Site Scripti… |
Ex-Themes |
WooTour |
2025-11-06T15:54:16.991Z | 2025-11-06T16:27:22.618Z |
| cve-2025-54721 | N/A | WordPress Resca theme <= 3.0.2 - Cross Site Scripting … |
ThimPress |
Resca |
2025-11-06T15:54:16.209Z | 2025-11-06T16:30:47.235Z |
| cve-2025-54719 | N/A | WordPress Yogi - Health Beauty & Yoga Theme <= 2.9.2 -… |
NooTheme |
Yogi - Health Beauty & Yoga |
2025-11-06T15:54:15.371Z | 2025-11-06T18:07:10.677Z |
| cve-2025-54718 | N/A | WordPress Yogi - Health Beauty & Yoga theme <= 2.9.2 -… |
NooTheme |
Yogi - Health Beauty & Yoga |
2025-11-06T15:54:14.634Z | 2025-11-06T19:48:15.891Z |
| cve-2025-54711 | N/A | WordPress Info Cards Plugin <= 1.0.11 - Broken Access … |
bPlugins |
Info Cards |
2025-11-06T15:54:14.029Z | 2025-11-07T20:38:27.602Z |
| cve-2025-53586 | N/A | WordPress WeMusic Theme <= 1.9.1 - PHP Object Injectio… |
NooTheme |
WeMusic |
2025-11-06T15:54:13.387Z | 2025-11-10T19:47:21.249Z |
| cve-2025-53585 | N/A | WordPress WeMusic theme <= 1.9.1 - Cross Site Scriptin… |
NooTheme |
WeMusic |
2025-11-06T15:54:12.787Z | 2025-11-07T19:41:15.613Z |
| cve-2025-53574 | N/A | WordPress Doliconnect Plugin <= 9.3.2 - Cross Site Scr… |
ptibogxiv |
Doliconnect |
2025-11-06T15:54:11.607Z | 2025-11-10T19:47:28.207Z |
| cve-2025-53573 | N/A | WordPress Epic Review Plugin <= 1.0.2 - Cross Site Scr… |
jegtheme |
Epic Review |
2025-11-06T15:54:10.426Z | 2025-11-07T13:21:38.978Z |
| cve-2025-53349 | N/A | WordPress Kalium Theme <= 3.18.3 - Cross Site Scriptin… |
Laborator |
Kalium |
2025-11-06T15:54:06.581Z | 2025-11-10T19:47:34.159Z |
| cve-2025-53324 | N/A | WordPress Gutenify Plugin <= 1.5.7 - Cross Site Script… |
CodeYatri |
Gutenify |
2025-11-06T15:54:05.737Z | 2025-11-10T19:47:40.684Z |
| cve-2025-53316 | N/A | WordPress WP GDPR Cookie Consent plugin <= 1.0.0 - Cro… |
Shahjahan Jewel |
WP GDPR Cookie Consent |
2025-11-06T15:54:04.995Z | 2025-11-10T19:47:48.401Z |
| cve-2025-53286 | N/A | WordPress Dropify Plugin <= 4.6.9 - Cross Site Scripti… |
Jhainey Milevis |
Dropify |
2025-11-06T15:54:04.283Z | 2025-11-10T19:48:00.218Z |
| cve-2025-53283 | N/A | WordPress Drop Uploader for CF7 - Drag&Drop File Uploa… |
borisolhor |
Drop Uploader for CF7 - Drag&Drop File Uploader Addon |
2025-11-06T15:54:03.506Z | 2025-11-07T14:56:14.631Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-0000-amazon-inspector-c8eba1cf246b221d | Malicious code in feminist_stork-strongdev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c8c828cf200d91c4 | Malicious code in slippery_panda-appteadev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c8a78cddaf9a193d | Malicious code in ready_tick-silentdev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c8a2ef94cbba2f41 | Malicious code in jolly_alligator-gooddev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c88500626fd08418 | Malicious code in ilstina-notthedevs (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c87a85b0353ab566 | Malicious code in present_possum-notthedevs (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c8668ca3d2fdb816 | Malicious code in allied_python-smiletea (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c8622df5162d8cae | Malicious code in apricot-notthedevs (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c844b7bb9a7b8543 | Malicious code in delicious_cricket-appteadev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c825227f1f140b5f | Malicious code in right_hedgehog-biggestdev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c824126baf2d2952 | Malicious code in marvellous_quelea-smiletea (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c80bf41038f5d7a8 | Malicious code in yzsnvz-devapp (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c804cf665902f56a | Malicious code in substantial_hippopotamus-teagooddev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c7f7d4287b723cc5 | Malicious code in obnoxious_crow-silentdev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c7d367f0fc4c7f8c | Malicious code in nyghqd-devapptea (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c785f736d48d1bd7 | Malicious code in nosy_cicada_replicate_automation (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c752e5981cc6062c | Malicious code in unable_perch-smiletea (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c745058ed6e90cbe | Malicious code in careful_donkey_replicate_automation (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c72e6a178c2d4d13 | Malicious code in sympathetic_dragonfly-smiletea (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c7063f7a147ead74 | Malicious code in rdnder-devapptea (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c6d3d94b5a0c4f9f | Malicious code in funny_amphibian-notthedevs (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c69dbcc25e947937 | Malicious code in carsfrot-notthedevs (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c6990b6902fbfdce | Malicious code in orildyn-notthedevs (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c676825fe6a5d30e | Malicious code in distinctive_chicken-appteadev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c673d9fc3d2ed1d2 | Malicious code in frantic_goose-notthedevs (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c663cfdeac71df4b | Malicious code in diverse_yak-appteadev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c638876862c33442 | Malicious code in continuous_egret-appteadev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c629dd5fb11d3ae2 | Malicious code in married_weasel-gooddev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c619edab38738bde | Malicious code in condemned_mongoose-notthedev (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| mal-0000-amazon-inspector-c60a94955f62f1fc | Malicious code in alaran-notthedevs (npm) | 2025-11-11T07:44:04Z | 2025-11-11T07:44:04Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:15691 | Red Hat Security Advisory: python-requests security update | 2025-09-11T13:38:00+00:00 | 2025-11-06T23:59:21+00:00 |
| rhsa-2025:15308 | Red Hat Security Advisory: OpenShift Container Platform 4.12.80 bug fix and security update | 2025-09-11T12:02:09+00:00 | 2025-11-07T18:40:21+00:00 |
| rhsa-2025:15687 | Red Hat Security Advisory: php:8.2 security update | 2025-09-11T12:00:50+00:00 | 2025-11-06T22:02:14+00:00 |
| rhsa-2025:15332 | Red Hat Security Advisory: OpenShift Container Platform 4.12.80 bug fix and security update | 2025-09-11T10:37:17+00:00 | 2025-11-10T13:43:32+00:00 |
| rhsa-2025:15684 | Red Hat Security Advisory: httpd:2.4 security update | 2025-09-11T10:36:34+00:00 | 2025-11-07T10:53:53+00:00 |
| rhsa-2025:15333 | Red Hat Security Advisory: OpenShift Container Platform 4.12.80 security and extras update | 2025-09-11T09:52:22+00:00 | 2025-11-07T00:15:36+00:00 |
| rhsa-2025:15670 | Red Hat Security Advisory: kernel security update | 2025-09-11T07:38:39+00:00 | 2025-11-08T07:17:13+00:00 |
| rhsa-2025:15668 | Red Hat Security Advisory: kernel security update | 2025-09-11T06:45:54+00:00 | 2025-11-08T07:17:13+00:00 |
| rhsa-2025:15669 | Red Hat Security Advisory: kernel security update | 2025-09-11T06:33:39+00:00 | 2025-11-08T07:17:13+00:00 |
| rhsa-2025:15666 | Red Hat Security Advisory: ImageMagick security update | 2025-09-11T06:13:40+00:00 | 2025-11-06T23:42:14+00:00 |
| rhsa-2025:15662 | Red Hat Security Advisory: kernel security update | 2025-09-11T03:48:34+00:00 | 2025-11-06T23:14:51+00:00 |
| rhsa-2025:15661 | Red Hat Security Advisory: kernel security update | 2025-09-11T03:38:29+00:00 | 2025-11-08T07:17:12+00:00 |
| rhsa-2025:15660 | Red Hat Security Advisory: kernel security update | 2025-09-11T01:52:13+00:00 | 2025-11-08T07:17:12+00:00 |
| rhsa-2025:15658 | Red Hat Security Advisory: kernel-rt security update | 2025-09-10T20:45:03+00:00 | 2025-11-08T07:17:17+00:00 |
| rhsa-2025:15657 | Red Hat Security Advisory: kernel-rt security update | 2025-09-10T18:51:02+00:00 | 2025-11-08T07:17:12+00:00 |
| rhsa-2025:15656 | Red Hat Security Advisory: kernel security update | 2025-09-10T18:25:22+00:00 | 2025-11-08T07:17:10+00:00 |
| rhsa-2025:15649 | Red Hat Security Advisory: kernel security update | 2025-09-10T17:18:12+00:00 | 2025-11-08T07:17:10+00:00 |
| rhsa-2025:15648 | Red Hat Security Advisory: kernel security update | 2025-09-10T16:23:22+00:00 | 2025-11-06T23:14:48+00:00 |
| rhsa-2025:15647 | Red Hat Security Advisory: kernel security update | 2025-09-10T16:20:58+00:00 | 2025-11-08T07:17:10+00:00 |
| rhsa-2025:15646 | Red Hat Security Advisory: kernel-rt security update | 2025-09-10T15:54:37+00:00 | 2025-11-06T23:14:47+00:00 |
| rhsa-2025:15643 | Red Hat Security Advisory: Satellite 6.15.5.4 Async Update | 2025-09-10T15:05:57+00:00 | 2025-11-07T20:55:54+00:00 |
| rhsa-2025:15622 | Red Hat Security Advisory: fence-agents security update | 2025-09-10T12:56:48+00:00 | 2025-11-06T23:59:20+00:00 |
| rhsa-2025:15619 | Red Hat Security Advisory: httpd:2.4 security update | 2025-09-10T12:38:27+00:00 | 2025-11-07T10:53:54+00:00 |
| rhsa-2025:15615 | Red Hat Security Advisory: fence-agents security update | 2025-09-10T12:28:07+00:00 | 2025-11-06T23:59:19+00:00 |
| rhsa-2025:15614 | Red Hat Security Advisory: fence-agents security update | 2025-09-10T12:27:22+00:00 | 2025-11-06T23:59:19+00:00 |
| rhsa-2025:15616 | Red Hat Security Advisory: resource-agents security update | 2025-09-10T12:20:52+00:00 | 2025-11-06T23:59:19+00:00 |
| rhsa-2025:15618 | Red Hat Security Advisory: resource-agents security update | 2025-09-10T12:20:42+00:00 | 2025-11-06T23:59:24+00:00 |
| rhsa-2025:15617 | Red Hat Security Advisory: resource-agents security update | 2025-09-10T12:20:37+00:00 | 2025-11-06T23:59:19+00:00 |
| rhsa-2025:15612 | Red Hat Security Advisory: Red Hat Data Grid 8.5.5 security update | 2025-09-10T11:57:53+00:00 | 2025-11-07T20:55:53+00:00 |
| rhsa-2025:15345 | Red Hat Security Advisory: OpenShift Container Platform 4.17.39 security and extras update | 2025-09-10T10:50:39+00:00 | 2025-11-10T01:32:43+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-38577 | f2fs: fix to avoid panic in f2fs_evict_inode | 2025-08-02T00:00:00.000Z | 2025-09-04T03:16:52.000Z |
| msrc_cve-2025-38576 | powerpc/eeh: Make EEH driver device hotplug safe | 2025-08-02T00:00:00.000Z | 2025-09-04T04:15:21.000Z |
| msrc_cve-2025-38574 | pptp: ensure minimal skb length in pptp_xmit() | 2025-08-02T00:00:00.000Z | 2025-09-04T03:20:25.000Z |
| msrc_cve-2025-38572 | ipv6: reject malicious packets in ipv6_gso_segment() | 2025-08-02T00:00:00.000Z | 2025-09-04T04:31:59.000Z |
| msrc_cve-2025-38571 | sunrpc: fix client side handling of tls alerts | 2025-08-02T00:00:00.000Z | 2025-09-04T03:08:05.000Z |
| msrc_cve-2025-38568 | net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing | 2025-08-02T00:00:00.000Z | 2025-09-04T03:57:06.000Z |
| msrc_cve-2025-38566 | sunrpc: fix handling of server side tls alerts | 2025-08-02T00:00:00.000Z | 2025-09-04T03:32:11.000Z |
| msrc_cve-2025-38565 | perf/core: Exit early on perf_mmap() fail | 2025-08-02T00:00:00.000Z | 2025-09-04T04:47:59.000Z |
| msrc_cve-2025-38563 | perf/core: Prevent VMA split of buffer mappings | 2025-08-02T00:00:00.000Z | 2025-09-04T03:47:38.000Z |
| msrc_cve-2025-38562 | ksmbd: fix null pointer dereference error in generate_encryptionkey | 2025-08-02T00:00:00.000Z | 2025-09-04T02:55:37.000Z |
| msrc_cve-2025-38561 | ksmbd: fix Preauh_HashValue race condition | 2025-08-02T00:00:00.000Z | 2025-09-04T04:06:25.000Z |
| msrc_cve-2025-38560 | x86/sev: Evict cache lines during SNP memory validation | 2025-08-02T00:00:00.000Z | 2025-09-04T04:44:06.000Z |
| msrc_cve-2025-38556 | HID: core: Harden s32ton() against conversion to 0 bits | 2025-08-02T00:00:00.000Z | 2025-09-04T03:43:17.000Z |
| msrc_cve-2025-38555 | usb: gadget : fix use-after-free in composite_dev_cleanup() | 2025-08-02T00:00:00.000Z | 2025-09-04T03:24:39.000Z |
| msrc_cve-2025-38553 | net/sched: Restrict conditions for adding duplicating netems to qdisc tree | 2025-08-02T00:00:00.000Z | 2025-09-04T02:28:56.000Z |
| msrc_cve-2025-38552 | mptcp: plug races between subflow fail and subflow creation | 2025-08-02T00:00:00.000Z | 2025-09-04T00:28:50.000Z |
| msrc_cve-2025-38550 | ipv6: mcast: Delay put pmc->idev in mld_del_delrec() | 2025-08-02T00:00:00.000Z | 2025-09-04T00:35:43.000Z |
| msrc_cve-2025-38548 | hwmon: (corsair-cpro) Validate the size of the received input buffer | 2025-08-02T00:00:00.000Z | 2025-09-04T00:51:22.000Z |
| msrc_cve-2025-38546 | atm: clip: Fix memory leak of struct clip_vcc. | 2025-08-02T00:00:00.000Z | 2025-09-04T00:44:48.000Z |
| msrc_cve-2025-38544 | rxrpc: Fix bug due to prealloc collision | 2025-08-02T00:00:00.000Z | 2025-09-04T01:23:01.000Z |
| msrc_cve-2025-38543 | drm/tegra: nvdec: Fix dma_alloc_coherent error check | 2025-08-02T00:00:00.000Z | 2025-09-04T01:28:47.000Z |
| msrc_cve-2025-38542 | net: appletalk: Fix device refcount leak in atrtr_create() | 2025-08-02T00:00:00.000Z | 2025-09-04T00:57:26.000Z |
| msrc_cve-2025-38540 | HID: quirks: Add quirk for 2 Chicony Electronics HP 5MP Cameras | 2025-08-02T00:00:00.000Z | 2025-09-04T00:41:42.000Z |
| msrc_cve-2025-38539 | tracing: Add down_write(trace_event_sem) when adding trace event | 2025-08-02T00:00:00.000Z | 2025-09-04T01:12:44.000Z |
| msrc_cve-2025-38538 | dmaengine: nbpfaxi: Fix memory corruption in probe() | 2025-08-02T00:00:00.000Z | 2025-09-04T01:10:08.000Z |
| msrc_cve-2025-38537 | net: phy: Don't register LEDs for genphy | 2025-08-02T00:00:00.000Z | 2025-09-04T01:58:39.000Z |
| msrc_cve-2025-38535 | phy: tegra: xusb: Fix unbalanced regulator disable in UTMI PHY mode | 2025-08-02T00:00:00.000Z | 2025-09-04T00:31:56.000Z |
| msrc_cve-2025-38533 | net: libwx: fix the using of Rx buffer DMA | 2025-08-02T00:00:00.000Z | 2025-09-04T02:07:07.000Z |
| msrc_cve-2025-38532 | net: libwx: properly reset Rx ring descriptor | 2025-08-02T00:00:00.000Z | 2025-09-04T00:39:05.000Z |
| msrc_cve-2025-38531 | iio: common: st_sensors: Fix use of uninitialize device structs | 2025-08-02T00:00:00.000Z | 2025-09-04T01:02:17.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2023-001292 | Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service | 2023-03-02T17:33+09:00 | 2024-06-07T16:59+09:00 |
| jvndb-2023-001269 | File and Directory Permissions Vulnerability in Hitachi Automation Director, Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center | 2023-03-01T16:59+09:00 | 2024-06-11T16:42+09:00 |
| jvndb-2023-000021 | Multiple vulnerabilities in SS1 and Rakuraku PC Cloud | 2023-03-01T15:57+09:00 | 2024-06-06T18:02+09:00 |
| jvndb-2023-000019 | Multiple cross-site scripting vulnerabilities in EC-CUBE | 2023-02-28T16:38+09:00 | 2024-06-10T17:28+09:00 |
| jvndb-2023-000020 | web2py development tool vulnerable to open redirect | 2023-02-28T15:00+09:00 | 2024-06-07T16:31+09:00 |
| jvndb-2023-000018 | Multiple cross-site scripting vulnerabilities in SHIRASAGI | 2023-02-22T15:16+09:00 | 2024-06-10T17:18+09:00 |
| jvndb-2023-000017 | Improper restriction of XML external entity reference (XXE) vulnerability in tsClinical Define.xml Generator and tsClinical Metadata Desktop Tools | 2023-02-14T17:00+09:00 | 2024-06-12T11:15+09:00 |
| jvndb-2023-000016 | The installers of ELECOM Camera Assistant and QuickFileDealer may insecurely load Dynamic Link Libraries | 2023-02-14T17:00+09:00 | 2023-02-14T17:00+09:00 |
| jvndb-2023-000015 | Multiple vulnerabilities in PLANEX COMMUNICATIONS Network Camera CS-WMV02G | 2023-02-13T14:48+09:00 | 2024-06-12T17:03+09:00 |
| jvndb-2023-001215 | Zuken Elmic KASAGO uses insufficient random values for TCP Initial Sequence Numbers | 2023-02-13T14:18+09:00 | 2024-06-14T15:45+09:00 |
| jvndb-2023-000014 | NEC PC Settings Tool vulnerable to missing authentication for critical function | 2023-02-10T14:43+09:00 | 2024-06-10T18:13+09:00 |
| jvndb-2023-001212 | Multiple vulnerabilities in JTEKT ELECTRONICS Screen Creator Advance 2 | 2023-02-08T12:46+09:00 | 2024-06-10T17:25+09:00 |
| jvndb-2023-000013 | Ichiran App vulnerable to improper server certificate verification | 2023-02-06T14:31+09:00 | 2024-06-12T14:25+09:00 |
| jvndb-2023-000012 | Vulnerability in Driver Distributor where passwords are stored in a recoverable format | 2023-01-31T14:14+09:00 | 2024-06-12T11:07+09:00 |
| jvndb-2023-000011 | SUSHIRO App for Android outputs sensitive information to the log file | 2023-01-31T14:10+09:00 | 2024-06-11T17:35+09:00 |
| jvndb-2023-001110 | Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Motion Pro | 2023-01-25T14:28+09:00 | 2023-01-25T14:28+09:00 |
| jvndb-2023-000010 | pgAdmin 4 vulnerable to directory traversal | 2023-01-24T16:00+09:00 | 2024-06-05T16:22+09:00 |
| jvndb-2023-000009 | EasyMail vulnerable to cross-site scripting | 2023-01-24T16:00+09:00 | 2023-01-24T16:00+09:00 |
| jvndb-2023-001108 | Contec CONPROSYS HMI System (CHS) vulnerable to multiple SQL injections | 2023-01-24T13:38+09:00 | 2023-01-24T13:38+09:00 |
| jvndb-2023-000008 | Pgpool-II vulnerable to information disclosure | 2023-01-23T16:35+09:00 | 2024-06-20T17:54+09:00 |
| jvndb-2023-001008 | File and Directory Permissions Vulnerability in Hitachi Tuning Manager | 2023-01-18T13:51+09:00 | 2023-01-18T13:51+09:00 |
| jvndb-2023-000007 | WordPress plugin "Welcart e-Commerce" vulnerable to directory traversal | 2023-01-17T14:17+09:00 | 2023-01-17T14:17+09:00 |
| jvndb-2023-001005 | Active debug code vulnerability in OMRON CP1L-EL20DR-D | 2023-01-12T15:53+09:00 | 2023-01-12T15:53+09:00 |
| jvndb-2023-001003 | Access of uninitialized pointer vulnerability in OMRON CX-Motion-MCH | 2023-01-12T15:06+09:00 | 2023-01-12T15:06+09:00 |
| jvndb-2023-000006 | Multiple vulnerabilities in PIXELA PIX-RT100 | 2023-01-12T14:50+09:00 | 2023-01-12T14:50+09:00 |
| jvndb-2023-001002 | OpenAM Web Policy Agent (OpenAM Consortium Edition) vulnerable to path traversal | 2023-01-11T17:07+09:00 | 2023-01-11T17:07+09:00 |
| jvndb-2023-000005 | Multiple vulnerabilities in MAHO-PBX NetDevancer series | 2023-01-11T16:11+09:00 | 2023-01-11T16:11+09:00 |
| jvndb-2023-000003 | TP-Link SG105PE vulnerable to authentication bypass | 2023-01-11T15:04+09:00 | 2023-01-11T15:04+09:00 |
| jvndb-2023-000004 | pgAdmin 4 vulnerable to open redirect | 2023-01-11T14:23+09:00 | 2023-01-11T14:23+09:00 |
| jvndb-2023-000002 | Digital Arts m-FILTER vulnerable to improper authentication | 2023-01-06T14:57+09:00 | 2023-01-06T14:57+09:00 |
| ID | Description | Updated |
|---|