Recent vulnerabilities

ID Description Published Updated
ghsa-rw7h-fw9j-wrgx A weakness has been identified in QuickJS up to eb2c89087def1829ed99630cb14b549d7a98408c. This affe… 2025-11-05T21:31:02Z 2025-11-05T21:31:02Z
ghsa-rvq5-4f2h-pm6w PocketVJ CP PocketVJ-CP-v3 pvj version 3.9.1 contains an unauthenticated remote code execution vuln… 2025-11-05T21:31:02Z 2025-11-05T21:31:02Z
ghsa-h5hr-wq48-rq9c OSSN (Open Source Social Network) 8.6 is vulnerable to SQL Injection in /action/rtcomments/status v… 2025-11-05T21:31:02Z 2025-11-07T00:30:28Z
ghsa-fwcq-rjr3-7rr9 GOG Galaxy 2.0.0.2 suffers from Missing SSL Certificate Validation. An attacker who controls the lo… 2025-11-05T21:31:02Z 2025-11-07T00:30:28Z
ghsa-7gqw-xrp6-92rg ** exclusively-hosted-service ** A Stored Cross-Site Scripting (XSS) vulnerability in the chat func… 2025-11-05T21:31:02Z 2025-11-05T21:31:02Z
ghsa-3q32-2fc9-c758 A vulnerability in the XiaozhangBang Voluntary Like System V8.8 allows remote attackers to manipula… 2025-11-05T21:31:02Z 2025-11-05T21:31:02Z
ghsa-xx43-6j8m-vx2f Quipux 4.0.1 through e1774ac allows enumeration of usernames, and accessing the Ecuadorean identifi… 2025-11-05T21:31:01Z 2025-11-06T18:32:49Z
ghsa-vghq-cm29-427c HCL iAutomate v6.5.1 and v6.5.2 is susceptible to a sensitive information disclosure. An HTTP GET … 2025-11-05T21:31:01Z 2025-11-05T21:31:02Z
ghsa-v698-c6j4-6m42 A Stored Cross-Site Scripting (XSS) vulnerability in the chat functionality of the SelfBest platfor… 2025-11-05T21:31:01Z 2025-11-06T18:32:50Z
ghsa-rc63-xm4j-4f8h A reflected cross-site scripting (XSS) vulnerability exists in the authentication endpoints of mult… 2025-11-05T21:31:01Z 2025-11-05T21:31:02Z
ghsa-qfqc-4pqq-rfmh An arbitrary code execution vulnerability exists in multiple WSO2 products due to insufficient rest… 2025-11-05T21:31:01Z 2025-11-05T21:31:01Z
ghsa-9jrh-6qjc-j6p4 Quipux 4.0.1 through e1774ac allows authenticated users to conduct SQL injection attacks via busque… 2025-11-05T21:31:01Z 2025-11-05T21:31:02Z
ghsa-96ff-3rwm-724g A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS … 2025-11-05T21:31:01Z 2025-11-05T21:31:01Z
ghsa-8f5r-v3mh-q89r Cross Site Scripting vulnerability in Quipux 4.0.1 through e1774ac allows anexos/anexos_nuevo.php a… 2025-11-05T21:31:01Z 2025-11-06T18:32:49Z
ghsa-4x6x-rggp-ff9q A reflected cross-site scripting (XSS) vulnerability exists in the management console of multiple W… 2025-11-05T21:31:01Z 2025-11-05T21:31:02Z
ghsa-4h7f-6q5m-3p6f A DOM-based Cross-Site Scripting (XSS) vulnerability in the SelfBest platform 2023.3 allows attacke… 2025-11-05T21:31:01Z 2025-11-06T18:32:50Z
ghsa-2vg5-px79-v62f This issue was addressed by restricting options offered on a locked device. This issue is fixed in … 2025-11-05T21:31:01Z 2025-11-05T21:31:02Z
ghsa-wwqv-p2pp-99h5 LangGraph Checkpoint affected by RCE in "json" mode of JsonPlusSerializer 2025-11-05T19:52:50Z 2025-11-07T21:55:55Z
ghsa-x4qj-2f4q-r4rx Parse Server Vulnerable to Server-Side Request Forgery (SSRF) in File Upload via URI Format 2025-11-05T19:52:27Z 2025-11-07T20:31:43Z
ghsa-cpf4-pmr4-w6cx IDOR Vulnerabilities in ZITADEL's Organization API allows Cross-Tenant Data Tempering 2025-11-05T19:52:01Z 2025-11-07T21:55:43Z
ghsa-gr35-vpx2-qxhc Weblate leaks the IP of project member inviting user to be reviewer in Audit log 2025-11-05T18:45:59Z 2025-11-06T23:13:28Z
ghsa-vf95-55w6-qmrf youki container escape and denial of service due to arbitrary write gadgets and procfs write redirects 2025-11-05T18:45:18Z 2025-11-06T15:29:58Z
ghsa-4g74-7cff-xcv8 youki container escape via "masked path" abuse due to mount race conditions 2025-11-05T18:44:18Z 2025-11-06T15:29:34Z
ghsa-cgrx-mc8f-2prm runc container escape and denial of service due to arbitrary write gadgets and procfs write redirects 2025-11-05T18:40:40Z 2025-11-07T12:31:34Z
ghsa-fvfq-q238-j7j3 WSO2 Carbon Mediation vulnerable to XML External Entity (XXE) attacks 2025-11-05T18:31:31Z 2025-11-06T15:12:30Z
ghsa-fc89-q8rg-m49m An arbitrary file upload vulnerability exists in multiple WSO2 products due to insufficient validat… 2025-11-05T18:31:31Z 2025-11-05T18:31:31Z
ghsa-6mv5-ch6p-7g97 Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validati… 2025-11-05T18:31:31Z 2025-11-05T21:31:01Z
ghsa-x3h8-2mvf-vv78 A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to… 2025-11-05T17:48:29Z 2025-11-05T17:48:29Z
ghsa-vhqc-4wgw-frfj Dell CloudLink, versions prior 8.1.1, contain a Command Injection vulnerability which can be exploi… 2025-11-05T17:48:29Z 2025-11-05T17:48:29Z
ghsa-vcvf-6gw2-rm4v A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to… 2025-11-05T17:48:29Z 2025-11-05T17:48:29Z
ID CVSS Description Vendor Product Published Updated
cve-2025-49904 N/A WordPress Booking and Rental Manager plugin <= 2.5.3 -… magepeopleteam
 Booking and Rental Manager
 2025-11-06T15:53:55.162Z 2025-11-10T19:52:27.580Z
cve-2025-49900 N/A WordPress Advanced scrollbar plugin <= 1.1.8 - Privile… bPlugins
 Advanced scrollbar
 2025-11-06T15:53:54.586Z 2025-11-10T19:52:34.186Z
cve-2025-49398 N/A WordPress Easy Appointments plugin <= 3.12.14 - Conten… Easy Appointments
 Easy Appointments
 2025-11-06T15:53:53.979Z 2025-11-10T19:52:40.016Z
cve-2025-49394 N/A WordPress Image Gallery block – Create and display pho… bPlugins
 Image Gallery block – Create and display photo gallery/photo album.
 2025-11-06T15:53:53.230Z 2025-11-10T19:52:45.863Z
cve-2025-49393 N/A WordPress Sign-up Sheets Plugin <= 2.3.2 - PHP Object … Fetch Designs
 Sign-up Sheets
 2025-11-06T15:53:52.480Z 2025-11-10T19:52:51.590Z
cve-2025-49390 N/A WordPress Cookie Notice & Consent plugin <= 1.6.4 - Cr… christophrado
 Cookie Notice & Consent
 2025-11-06T15:53:51.739Z 2025-11-10T19:52:57.246Z
cve-2025-49386 N/A WordPress Preserve Code Formatting Plugin <= 4.0.1 - P… Scott Reilly
 Preserve Code Formatting
 2025-11-06T15:53:50.934Z 2025-11-10T19:53:04.290Z
cve-2025-49372 N/A WordPress HAPPY plugin <= 1.0.7 - Remote Code Executio… VillaTheme
 HAPPY
 2025-11-06T15:53:50.181Z 2025-11-07T19:36:21.511Z
cve-2025-48330 N/A WordPress Real Time Validation for Gravity Forms <= 1.… Daman Jeet
 Real Time Validation for Gravity Forms
 2025-11-06T15:53:48.806Z 2025-11-10T19:53:10.548Z
cve-2025-48290 N/A WordPress Kinsley theme <= 3.4.4 - Local File Inclusio… bslthemes
 Kinsley
 2025-11-06T15:53:47.362Z 2025-11-10T19:53:18.019Z
cve-2025-48090 N/A WordPress Blanka - One Page WordPress Theme Theme < 1.… CocoBasic
 Blanka - One Page WordPress Theme
 2025-11-06T15:53:43.727Z 2025-11-06T16:06:05.906Z
cve-2025-48089 N/A WordPress Education WordPress Theme | HiStudy theme < … Rainbow-Themes
 Education WordPress Theme | HiStudy
 2025-11-06T15:53:43.152Z 2025-11-10T19:53:23.943Z
cve-2025-48086 N/A WordPress Ajax Search Lite plugin <= 4.13.3 - PHP Obje… wpdreams
 Ajax Search Lite
 2025-11-06T15:53:42.585Z 2025-11-10T19:53:29.931Z
cve-2025-48085 N/A WordPress Simple Stripe plugin <= 0.9.17 - Cross Site … ZIPANG
 Simple Stripe
 2025-11-06T15:53:41.777Z 2025-11-10T19:53:36.546Z
cve-2025-48083 N/A WordPress wpNamedUsers plugin <= 0.5 - Cross Site Requ… andriassundskard
 wpNamedUsers
 2025-11-06T15:53:40.546Z 2025-11-10T19:53:42.815Z
cve-2025-48078 N/A WordPress Slick Google Map plugin <= 0.3 - Cross Site … Norbert
 Slick Google Map
 2025-11-06T15:53:37.443Z 2025-11-10T19:53:50.504Z
cve-2025-48077 N/A WordPress Block Country plugin <= 1.0 - Cross Site Req… nitinmaurya12
 Block Country
 2025-11-06T15:53:36.642Z 2025-11-10T19:53:57.882Z
cve-2025-47588 N/A WordPress Dynamic Pricing With Discount Rules for WooC… acowebs
 Dynamic Pricing With Discount Rules for WooCommerce
 2025-11-06T15:53:35.904Z 2025-11-10T19:54:06.119Z
cve-2025-39468 N/A WordPress Modal Survey plugin <= 2.0.2.0.1 - Local Fil… pantherius
 Modal Survey
 2025-11-06T15:53:34.539Z 2025-11-10T19:54:12.439Z
cve-2025-39467 N/A WordPress Wanderland theme <= 1.7.1 - Local File Inclu… Mikado-Themes
 Wanderland
 2025-11-06T15:53:33.195Z 2025-11-10T19:54:18.577Z
cve-2025-39466 N/A WordPress Dør theme <= 2.4 - Local File Inclusion Vuln… Mikado-Themes
 Dør
 2025-11-06T15:53:30.016Z 2025-11-10T19:54:24.503Z
cve-2025-39465 N/A WordPress Advanced Google Maps plugin <= 5.8.4 - Broke… flippercode
 Advanced Google Maps
 2025-11-06T15:53:29.145Z 2025-11-10T20:02:29.234Z
cve-2025-39463 N/A WordPress Dessau theme < 1.9 - Local File Inclusion vu… Select-Themes
 Dessau
 2025-11-06T15:53:23.424Z 2025-11-10T20:02:35.975Z
cve-2025-32222 N/A WordPress Widget Logic <= 6.0.5 - Remote Code Executio… Widgetlogic.org
 Widget Logic
 2025-11-06T15:53:22.717Z 2025-11-10T20:02:45.118Z
cve-2025-31029 N/A WordPress replyMail plugin <= 1.2.0 - Cross Site Reque… bingu
 replyMail
 2025-11-06T15:53:19.694Z 2025-11-10T20:02:50.744Z
cve-2025-28953 N/A WordPress smart SEO plugin <= 4.0 - SQL Injection Vuln… axiomthemes
 smart SEO
 2025-11-06T15:53:18.852Z 2025-11-10T16:16:55.832Z
cve-2025-22288 N/A WordPress Smush Image Compression and Optimization plu… WPMU DEV - Your All-in-One WordPress Platform
 Smush Image Compression and Optimization
 2025-11-06T15:53:18.126Z 2025-11-07T20:32:23.564Z
cve-2025-12556 8.7 (v4.0) 8.8 (v3.1) IDIS ICM Viewer Argument Injection IDIS
 ICM Viewer
 2025-11-06T15:35:58.447Z 2025-11-06T15:47:08.878Z
cve-2025-11956 8.9 (v3.1) XSS in Proliz's OBS Proliz Software Ltd. Co.
 OBS (Student Affairs Information System)
 2025-11-06T14:51:51.292Z 2025-11-06T15:07:43.302Z
cve-2025-10955 6.1 (v3.1) HTML Injection in Netcad Software's Netigma Netcad Software Inc.
 Netigma
 2025-11-06T14:46:09.596Z 2025-11-07T08:38:36.099Z
ID CVSS Description Vendor Product Published Updated
cve-2025-53573 N/A WordPress Epic Review Plugin <= 1.0.2 - Cross Site Scr… jegtheme
 Epic Review
 2025-11-06T15:54:10.426Z 2025-11-07T13:21:38.978Z
cve-2025-53349 N/A WordPress Kalium Theme <= 3.18.3 - Cross Site Scriptin… Laborator
 Kalium
 2025-11-06T15:54:06.581Z 2025-11-10T19:47:34.159Z
cve-2025-53324 N/A WordPress Gutenify Plugin <= 1.5.7 - Cross Site Script… CodeYatri
 Gutenify
 2025-11-06T15:54:05.737Z 2025-11-10T19:47:40.684Z
cve-2025-53316 N/A WordPress WP GDPR Cookie Consent plugin <= 1.0.0 - Cro… Shahjahan Jewel
 WP GDPR Cookie Consent
 2025-11-06T15:54:04.995Z 2025-11-10T19:47:48.401Z
cve-2025-53286 N/A WordPress Dropify Plugin <= 4.6.9 - Cross Site Scripti… Jhainey Milevis
 Dropify
 2025-11-06T15:54:04.283Z 2025-11-10T19:48:00.218Z
cve-2025-53283 N/A WordPress Drop Uploader for CF7 - Drag&Drop File Uploa… borisolhor
 Drop Uploader for CF7 - Drag&Drop File Uploader Addon
 2025-11-06T15:54:03.506Z 2025-11-07T14:56:14.631Z
cve-2025-53252 N/A WordPress Zegen Theme <= 1.1.9 - Local File Inclusion … zozothemes
 Zegen
 2025-11-06T15:54:02.680Z 2025-11-10T19:48:53.392Z
cve-2025-53246 N/A WordPress Backup and Move Plugin <= 0.1 - Broken Acces… Gaurav Aggarwal
 Backup and Move
 2025-11-06T15:53:59.915Z 2025-11-10T19:49:05.718Z
cve-2025-53245 N/A WordPress WP Logo Changer Plugin <= 1.2 - Cross Site S… Afzal Multani
 WP Logo Changer
 2025-11-06T15:53:59.391Z 2025-11-10T19:49:54.432Z
cve-2025-53242 N/A WordPress Seil Theme <= 1.7.1 - Deserialization of unt… VictorThemes
 Seil
 2025-11-06T15:53:58.962Z 2025-11-10T19:50:01.019Z
cve-2025-53239 N/A WordPress User Registration Aide Plugin <= 1.5.3.8 - C… bnovotny
 User Registration Aide
 2025-11-06T15:53:58.555Z 2025-11-10T19:50:09.183Z
cve-2025-53214 N/A WordPress Sertifier Certificate & Badge Maker plugin <… sertifier
 Sertifier Certificate & Badge Maker
 2025-11-06T15:53:58.037Z 2025-11-10T19:51:37.248Z
cve-2025-52773 N/A WordPress HieCOR Payment Gateway plugin plugin <= 1.5.… hiecor
 HieCOR Payment Gateway Plugin
 2025-11-06T15:53:57.496Z 2025-11-10T19:51:43.599Z
cve-2025-52764 N/A WordPress flexoslider plugin <= 1.0004 - Cross Site Sc… marielav
 flexoslider
 2025-11-06T15:53:56.937Z 2025-11-10T19:51:51.375Z
cve-2025-49909 N/A WordPress Penci Bookmark & Follow plugin < 2.4 - Cross… PenciDesign
 Penci Bookmark & Follow
 2025-11-06T15:53:56.279Z 2025-11-10T19:52:08.438Z
cve-2025-49905 N/A WordPress Range Slider Addon for Gravity Forms plugin … PluginsCafe
 Range Slider Addon for Gravity Forms
 2025-11-06T15:53:55.700Z 2025-11-10T19:52:18.567Z
cve-2025-49904 N/A WordPress Booking and Rental Manager plugin <= 2.5.3 -… magepeopleteam
 Booking and Rental Manager
 2025-11-06T15:53:55.162Z 2025-11-10T19:52:27.580Z
cve-2025-49900 N/A WordPress Advanced scrollbar plugin <= 1.1.8 - Privile… bPlugins
 Advanced scrollbar
 2025-11-06T15:53:54.586Z 2025-11-10T19:52:34.186Z
cve-2025-49398 N/A WordPress Easy Appointments plugin <= 3.12.14 - Conten… Easy Appointments
 Easy Appointments
 2025-11-06T15:53:53.979Z 2025-11-10T19:52:40.016Z
cve-2025-49394 N/A WordPress Image Gallery block – Create and display pho… bPlugins
 Image Gallery block – Create and display photo gallery/photo album.
 2025-11-06T15:53:53.230Z 2025-11-10T19:52:45.863Z
cve-2025-49393 N/A WordPress Sign-up Sheets Plugin <= 2.3.2 - PHP Object … Fetch Designs
 Sign-up Sheets
 2025-11-06T15:53:52.480Z 2025-11-10T19:52:51.590Z
cve-2025-49390 N/A WordPress Cookie Notice & Consent plugin <= 1.6.4 - Cr… christophrado
 Cookie Notice & Consent
 2025-11-06T15:53:51.739Z 2025-11-10T19:52:57.246Z
cve-2025-49386 N/A WordPress Preserve Code Formatting Plugin <= 4.0.1 - P… Scott Reilly
 Preserve Code Formatting
 2025-11-06T15:53:50.934Z 2025-11-10T19:53:04.290Z
cve-2025-49372 N/A WordPress HAPPY plugin <= 1.0.7 - Remote Code Executio… VillaTheme
 HAPPY
 2025-11-06T15:53:50.181Z 2025-11-07T19:36:21.511Z
cve-2025-48330 N/A WordPress Real Time Validation for Gravity Forms <= 1.… Daman Jeet
 Real Time Validation for Gravity Forms
 2025-11-06T15:53:48.806Z 2025-11-10T19:53:10.548Z
cve-2025-48290 N/A WordPress Kinsley theme <= 3.4.4 - Local File Inclusio… bslthemes
 Kinsley
 2025-11-06T15:53:47.362Z 2025-11-10T19:53:18.019Z
cve-2025-48090 N/A WordPress Blanka - One Page WordPress Theme Theme < 1.… CocoBasic
 Blanka - One Page WordPress Theme
 2025-11-06T15:53:43.727Z 2025-11-06T16:06:05.906Z
cve-2025-48089 N/A WordPress Education WordPress Theme | HiStudy theme < … Rainbow-Themes
 Education WordPress Theme | HiStudy
 2025-11-06T15:53:43.152Z 2025-11-10T19:53:23.943Z
cve-2025-48086 N/A WordPress Ajax Search Lite plugin <= 4.13.3 - PHP Obje… wpdreams
 Ajax Search Lite
 2025-11-06T15:53:42.585Z 2025-11-10T19:53:29.931Z
cve-2025-48085 N/A WordPress Simple Stripe plugin <= 0.9.17 - Cross Site … ZIPANG
 Simple Stripe
 2025-11-06T15:53:41.777Z 2025-11-10T19:53:36.546Z
ID Description Published Updated
ID Description Package Published Updated
ID Description Updated
ID Description Published Updated
mal-2025-111932 Malicious code in future_deer_aquamarine-97 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111931 Malicious code in future_bear_emerald-98 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111930 Malicious code in furious_wren_copper-74 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111929 Malicious code in funny_shark_gray-62 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111928 Malicious code in functional_tahr_apricot-34 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111927 Malicious code in fun_trout_beige-70 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111926 Malicious code in fun_pheasant_salmon-52 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111925 Malicious code in front_orangutan_jade-81 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111924 Malicious code in frightened_landfowl_black-19 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111923 Malicious code in friendly_koala_orange-99 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111922 Malicious code in friendly_bovid_maroon-9 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111921 Malicious code in free_coral_fuchsia-29 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111920 Malicious code in frantic_parakeet_brown-6 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111919 Malicious code in formal_crow_pink-2 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111918 Malicious code in foreign_coral_gold-54 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111917 Malicious code in foreign_booby_plum-83 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111916 Malicious code in foolish_pike_tomato-15 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111915 Malicious code in fond_muskox_chocolate-58 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111914 Malicious code in following_worm_aquamarine-25 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111913 Malicious code in flying_porpoise_copper-85 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111912 Malicious code in flat_tuna_fuchsia-65 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111911 Malicious code in flat_bear_maroon-97 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111910 Malicious code in flaky_camel_ivory-38 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111909 Malicious code in fit_gayal_jade-66 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111908 Malicious code in fiscal_scorpion_cyan-7 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111907 Malicious code in fiscal_galliform_amber-18 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111906 Malicious code in firm_baboon_plum-71 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111905 Malicious code in financial_raccoon_jade-98 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111904 Malicious code in financial_llama_purple-44 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
mal-2025-111903 Malicious code in financial_halibut_lavender-61 (npm) 2025-11-11T07:47:12Z 2025-11-11T07:47:12Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
rhsa-2025:15612 Red Hat Security Advisory: Red Hat Data Grid 8.5.5 security update 2025-09-10T11:57:53+00:00 2025-11-07T20:55:53+00:00
rhsa-2025:15345 Red Hat Security Advisory: OpenShift Container Platform 4.17.39 security and extras update 2025-09-10T10:50:39+00:00 2025-11-10T01:32:43+00:00
rhsa-2025:15291 Red Hat Security Advisory: OpenShift Container Platform 4.19.11 packages and security update 2025-09-09T15:23:04+00:00 2025-11-06T23:34:38+00:00
rhsa-2025:15535 Red Hat Security Advisory: thunderbird security update 2025-09-09T05:08:42+00:00 2025-11-06T22:48:41+00:00
rhsa-2025:15516 Red Hat Security Advisory: httpd:2.4 security update 2025-09-08T19:04:32+00:00 2025-11-07T10:53:56+00:00
rhsa-2025:15496 Red Hat Security Advisory: thunderbird security update 2025-09-08T16:31:37+00:00 2025-11-06T22:48:39+00:00
rhsa-2025:15471 Red Hat Security Advisory: kernel security update 2025-09-08T15:06:34+00:00 2025-11-06T23:14:47+00:00
rhsa-2025:15472 Red Hat Security Advisory: kernel-rt security update 2025-09-08T15:06:33+00:00 2025-11-06T23:14:47+00:00
rhsa-2025:15447 Red Hat Security Advisory: kernel security update 2025-09-08T12:06:04+00:00 2025-11-08T07:17:10+00:00
rhsa-2025:15438 Red Hat Security Advisory: thunderbird security update 2025-09-08T08:05:45+00:00 2025-11-06T22:48:37+00:00
rhsa-2025:15435 Red Hat Security Advisory: thunderbird security update 2025-09-08T08:05:45+00:00 2025-11-06T22:48:34+00:00
rhsa-2025:15434 Red Hat Security Advisory: thunderbird security update 2025-09-08T08:05:45+00:00 2025-11-06T22:48:34+00:00
rhsa-2025:15437 Red Hat Security Advisory: thunderbird security update 2025-09-08T08:05:44+00:00 2025-11-06T22:48:37+00:00
rhsa-2025:15436 Red Hat Security Advisory: thunderbird security update 2025-09-08T08:05:44+00:00 2025-11-06T22:48:35+00:00
rhsa-2025:15429 Red Hat Security Advisory: kernel security update 2025-09-08T08:05:41+00:00 2025-11-11T09:14:41+00:00
rhsa-2025:15430 Red Hat Security Advisory: firefox security update 2025-09-08T06:35:15+00:00 2025-11-06T22:48:33+00:00
rhsa-2025:15423 Red Hat Security Advisory: firefox security update 2025-09-08T03:28:05+00:00 2025-11-06T22:48:32+00:00
rhsa-2025:15424 Red Hat Security Advisory: firefox security update 2025-09-08T03:25:56+00:00 2025-11-06T22:48:32+00:00
rhsa-2025:15422 Red Hat Security Advisory: firefox security update 2025-09-08T03:25:55+00:00 2025-11-06T22:48:31+00:00
rhsa-2025:15420 Red Hat Security Advisory: firefox security update 2025-09-08T03:12:35+00:00 2025-11-06T22:48:30+00:00
rhsa-2025:15421 Red Hat Security Advisory: firefox security update 2025-09-08T03:07:50+00:00 2025-11-06T22:48:31+00:00
rhsa-2025:15418 Red Hat Security Advisory: firefox security update 2025-09-08T02:45:05+00:00 2025-11-06T22:48:34+00:00
rhsa-2025:15419 Red Hat Security Advisory: firefox security update 2025-09-08T02:43:10+00:00 2025-11-06T22:48:29+00:00
rhsa-2025:15410 Red Hat Security Advisory: python39:3.9 security update 2025-09-08T01:31:20+00:00 2025-11-07T03:32:44+00:00
rhsa-2025:15408 Red Hat Security Advisory: python39:3.9 security update 2025-09-08T01:27:15+00:00 2025-11-07T03:32:44+00:00
rhsa-2025:15406 Red Hat Security Advisory: opentelemetry-collector security update 2025-09-08T01:27:06+00:00 2025-11-07T16:34:36+00:00
rhsa-2025:15409 Red Hat Security Advisory: aide security update 2025-09-08T01:26:40+00:00 2025-11-06T23:42:13+00:00
rhsa-2025:15411 Red Hat Security Advisory: python39:3.9 security update 2025-09-08T01:17:10+00:00 2025-11-07T03:32:44+00:00
rhsa-2025:15389 Red Hat Security Advisory: Red Hat OpenShift GitOps security update 2025-09-04T19:49:38+00:00 2025-10-20T15:51:31+00:00
rhsa-2025:15387 Red Hat Security Advisory: Red Hat OpenShift GitOps security update 2025-09-04T19:38:44+00:00 2025-10-20T16:56:53+00:00
ID Description Published Updated
msrc_cve-2025-38530 comedi: pcl812: Fix bit shift out of bounds 2025-08-02T00:00:00.000Z 2025-09-04T01:36:44.000Z
msrc_cve-2025-38529 comedi: aio_iiro_16: Fix bit shift out of bounds 2025-08-02T00:00:00.000Z 2025-09-04T01:42:30.000Z
msrc_cve-2025-38528 bpf: Reject %p% format string in bprintf-like helpers 2025-08-02T00:00:00.000Z 2025-09-04T02:02:23.000Z
msrc_cve-2025-38527 smb: client: fix use-after-free in cifs_oplock_break 2025-08-02T00:00:00.000Z 2025-09-04T01:51:07.000Z
msrc_cve-2025-38526 ice: add NULL check in eswitch lag check 2025-08-02T00:00:00.000Z 2025-09-04T00:47:42.000Z
msrc_cve-2025-38524 rxrpc: Fix recv-recv race of completed call 2025-08-02T00:00:00.000Z 2025-09-04T01:16:14.000Z
msrc_cve-2025-38520 drm/amdkfd: Don't call mmput from MMU notifier callback 2025-08-02T00:00:00.000Z 2025-09-04T02:14:26.000Z
msrc_cve-2025-38516 pinctrl: qcom: msm: mark certain pins as invalid for interrupts 2025-08-02T00:00:00.000Z 2025-09-04T01:53:53.000Z
msrc_cve-2025-38515 drm/sched: Increment job count before swapping tail spsc queue 2025-08-02T00:00:00.000Z 2025-09-04T01:39:53.000Z
msrc_cve-2025-38514 rxrpc: Fix oops due to non-existence of prealloc backlog struct 2025-08-02T00:00:00.000Z 2025-09-04T01:32:03.000Z
msrc_cve-2025-38513 wifi: zd1211rw: Fix potential NULL pointer dereference in zd_mac_tx_to_dev() 2025-08-02T00:00:00.000Z 2025-09-04T01:21:04.000Z
msrc_cve-2025-38512 wifi: prevent A-MSDU attacks in mesh networks 2025-08-02T00:00:00.000Z 2025-09-04T01:45:38.000Z
msrc_cve-2025-38510 kasan: remove kasan_find_vm_area() to prevent possible deadlock 2025-08-02T00:00:00.000Z 2025-09-04T01:07:11.000Z
msrc_cve-2025-38503 btrfs: fix assertion when building free space tree 2025-08-02T00:00:00.000Z 2025-09-04T00:53:31.000Z
msrc_cve-2025-38502 bpf: Fix oob access in cgroup local storage 2025-08-02T00:00:00.000Z 2025-09-04T00:58:44.000Z
msrc_cve-2025-38501 ksmbd: limit repeated connections from clients with the same IP 2025-08-02T00:00:00.000Z 2025-09-04T02:11:25.000Z
msrc_cve-2025-38500 xfrm: interface: fix use-after-free after changing collect_md xfrm interface 2025-08-02T00:00:00.000Z 2025-09-03T23:19:48.000Z
msrc_cve-2025-38499 clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns 2025-08-02T00:00:00.000Z 2025-09-03T22:46:59.000Z
msrc_cve-2025-3770 SMM IDT Privilege Escalation Vulnerability 2025-08-02T00:00:00.000Z 2025-09-03T22:07:10.000Z
msrc_cve-2024-13978 LibTIFF fax2ps tiff2pdf.c t2p_read_tiff_init null pointer dereference 2025-08-02T00:00:00.000Z 2025-09-13T01:05:01.000Z
msrc_cve-2023-26819 cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}. 2025-08-02T00:00:00.000Z 2025-08-07T00:00:00.000Z
msrc_cve-2025-8225 GNU Binutils DWARF Section dwarf.c process_debug_info memory leak 2025-07-02T00:00:00.000Z 2025-09-04T01:57:24.000Z
msrc_cve-2025-8224 GNU Binutils BFD Library elf.c bfd_elf_get_str_section null pointer dereference 2025-07-02T00:00:00.000Z 2025-09-04T02:04:38.000Z
msrc_cve-2025-8197 Rejected reason: Maintainers have included reasons at https://gitlab.gnome.org/GNOME/libsoup/-/issues/465 2025-07-02T00:00:00.000Z 2025-09-04T02:10:57.000Z
msrc_cve-2025-8194 Tarfile infinite loop during parsing with negative member offset 2025-07-02T00:00:00.000Z 2025-09-04T02:31:30.000Z
msrc_cve-2025-8177 LibTIFF thumbnail.c setrow buffer overflow 2025-07-02T00:00:00.000Z 2025-09-04T02:16:00.000Z
msrc_cve-2025-8176 LibTIFF tiffmedian.c get_histogram use after free 2025-07-02T00:00:00.000Z 2025-09-04T02:22:03.000Z
msrc_cve-2025-8114 : null pointer dereference in libssh kex session id calculation 2025-07-02T00:00:00.000Z 2025-09-03T23:24:40.000Z
msrc_cve-2025-7783 Usage of unsafe random function in form-data for choosing boundary 2025-07-02T00:00:00.000Z 2025-09-04T04:02:28.000Z
msrc_cve-2025-7546 GNU Binutils elf.c bfd_elf_set_group_contents out-of-bounds write 2025-07-02T00:00:00.000Z 2025-08-06T00:00:00.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2023-000001 Multiple code injection vulnerabilities in ruby-git 2023-01-05T15:51+09:00 2023-01-05T15:51+09:00
jvndb-2022-002838 Multiple vulnerabilities in Fuji Electric V-Server 2023-01-04T14:21+09:00 2023-01-04T14:21+09:00
jvndb-2022-002837 Multiple vulnerabilities in Fuji Electric V-SFT and TELLUS 2023-01-04T14:16+09:00 2023-01-04T14:16+09:00
jvndb-2022-002836 Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service 2022-12-26T16:21+09:00 2024-05-30T17:47+09:00
jvndb-2022-000102 Installers generated by Squirrel.Windows may insecurely load Dynamic Link Libraries 2022-12-21T14:23+09:00 2022-12-21T14:23+09:00
jvndb-2022-000101 +Message App improper handling of Unicode control characters 2022-12-21T14:13+09:00 2022-12-21T14:13+09:00
jvndb-2022-002783 Use-after-free vulnerability in Omron CX-Drive 2022-12-20T15:32+09:00 2022-12-20T15:32+09:00
jvndb-2022-002780 Command injection vulnerability in SHARP Multifunctional Products (MFP) 2022-12-20T12:12+09:00 2022-12-20T12:12+09:00
jvndb-2022-000099 Corel Roxio Creator LJB starts a program with an unquoted file path 2022-12-19T13:47+09:00 2022-12-19T13:47+09:00
jvndb-2022-000098 Zenphoto vulnerable to cross-site scripting 2022-12-19T13:39+09:00 2022-12-19T13:39+09:00
jvndb-2022-002779 Multiple vulnerabilities in Contec CONPROSYS HMI System (CHS) 2022-12-16T13:29+09:00 2023-01-11T16:55+09:00
jvndb-2022-000097 Multiple vulnerabilities in DENSHI NYUSATSU CORE SYSTEM 2022-12-15T15:18+09:00 2024-05-29T17:40+09:00
jvndb-2022-000096 Redmine vulnerable to cross-site scripting 2022-12-13T14:05+09:00 2024-06-03T16:47+09:00
jvndb-2022-002775 Multiple vulnerabilities in Buffalo network devices 2022-12-12T15:28+09:00 2024-02-14T15:45+09:00
jvndb-2022-002771 Information Exposure Vulnerability in JP1/Automatic Operation 2022-12-07T17:30+09:00 2022-12-07T17:30+09:00
jvndb-2022-002770 Contec SolarView Compact vulnerable to cross-site scripting 2022-12-06T15:08+09:00 2024-06-04T17:13+09:00
jvndb-2022-002768 Multiple vulnerabilities in UNIMO Technology digital video recorders 2022-12-02T14:57+09:00 2024-06-03T16:55+09:00
jvndb-2022-002765 Multiple vulnerabilities in OMRON CX-Programmer 2022-11-28T15:40+09:00 2024-04-05T18:15+09:00
jvndb-2022-000095 Cybozu Remote Service vulnerable to Uncontrolled Resource Consumption 2022-11-25T14:15+09:00 2024-06-03T16:08+09:00
jvndb-2022-000094 Multiple cross-site scripting vulnerabilities in baserCMS 2022-11-25T13:42+09:00 2024-05-31T18:17+09:00
jvndb-2022-000093 TP-Link RE300 V1 tdpServer vulnerable to improper processing of its input 2022-11-24T14:46+09:00 2024-06-03T16:41+09:00
jvndb-2022-002761 Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service 2022-11-21T18:25+09:00 2024-05-31T17:43+09:00
jvndb-2022-000092 Typora fails to properly neutralize JavaScript code. 2022-11-21T15:31+09:00 2024-06-03T15:13+09:00
jvndb-2022-000091 WordPress Plugin "WordPress Popular Posts" accepts untrusted external inputs to update certain internal variables 2022-11-18T15:14+09:00 2022-11-18T15:14+09:00
jvndb-2022-000089 RICOH Aficio SP 4210N vulnerable to cross-site scripting 2022-11-17T11:15+09:00 2022-11-17T11:15+09:00
jvndb-2022-000090 Multiple vulnerabilities in Movable Type 2022-11-16T17:07+09:00 2024-06-03T15:31+09:00
jvndb-2022-000088 TERASOLUNA Global Framework and TERASOLUNA Server Framework for Java (Rich) vulnerable to ClassLoader manipulation 2022-11-14T16:45+09:00 2024-06-06T16:11+09:00
jvndb-2022-000086 Aiphone Video Multi-Tenant System Entrance Stations vulnerable to information disclosure 2022-11-10T13:40+09:00 2024-06-06T17:37+09:00
jvndb-2022-002691 Multiple vulnerabilities in OMRON products 2022-11-10T09:46+09:00 2022-11-10T09:46+09:00
jvndb-2022-000085 WordPress Plugin "Salon booking system" vulnerable to cross-site scripting 2022-11-08T15:07+09:00 2024-06-05T18:07+09:00
ID Description Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated