Recent vulnerabilities

ID	Description	Published	Updated
ghsa-r9ff-8j26-q598	In the Linux kernel, the following vulnerability has been resolved: rpmsg: glink: Add check for ks…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-pjj6-7q87-wc4g	In the Linux kernel, the following vulnerability has been resolved: ext4: fix bug_on in __es_tree_…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-mpc6-67r3-hw66	In the Linux kernel, the following vulnerability has been resolved: net: fix UAF issue in nfqnl_nf…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-mg6p-rh4v-v7jm	In the Linux kernel, the following vulnerability has been resolved: drm/rockchip: dw_hdmi: cleanup…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-m7wm-fq3g-5gmr	In the Linux kernel, the following vulnerability has been resolved: crypto: essiv - Handle EBUSY c…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-m5p9-mq47-qx73	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-jqw4-r57w-p985	In the Linux kernel, the following vulnerability has been resolved: net: do not allow gso_size to …	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-jqf8-w9mv-cm82	In the Linux kernel, the following vulnerability has been resolved: amdgpu/pm: prevent array under…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-hwvv-764m-j5cv	In the Linux kernel, the following vulnerability has been resolved: iommufd: Do not add the same h…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-h2v3-h25x-63cp	In the Linux kernel, the following vulnerability has been resolved: fortify: Fix __compiletime_str…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-fp97-j955-wgw4	In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: pcie: fix possi…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-ch2x-wwr8-7fwg	In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix buffer over…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-c9vq-m3c3-2m7g	In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix DMA transfer…	2025-12-24T15:30:34Z	2025-12-24T15:30:35Z
ghsa-9qfw-3fwg-f8qv	Missing Authorization vulnerability in bnayawpguy Resoto allows Exploiting Incorrectly Configured A…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-8x32-fq94-j5fv	In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix memory leak of…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-898h-rphv-24jr	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-87wj-m7w2-v2mf	In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix refcount leak in…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-86q8-vcjj-g3x5	In the Linux kernel, the following vulnerability has been resolved: clk: st: Fix memory leak in st…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-7hfj-fw8x-q6p6	In the Linux kernel, the following vulnerability has been resolved: mptcp: use proper req destruct…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-6j54-x24w-xmph	Missing Authorization vulnerability in Jewel Theme Master Addons for Elementor allows Exploiting In…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-4jff-2mpg-6xjx	In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix skb le…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-4h8w-644c-qcrw	In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix memleak when insert…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-4gfv-wqf7-r3g7	In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Prevent handling…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-2jvw-hf8m-phpv	In the Linux kernel, the following vulnerability has been resolved: net: phy: xgmiitorgmii: Fix re…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-xpg5-5j2p-2g3r	In the Linux kernel, the following vulnerability has been resolved: acct: fix potential integer ov…	2025-12-24T15:30:33Z	2025-12-24T15:30:34Z
ghsa-xp8v-ff5g-65c6	In the Linux kernel, the following vulnerability has been resolved: crypto: marvell/octeontx - pre…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-v749-pfxc-qfwj	In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Avoid UBSAN error on…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-mx2m-7wfj-355r	In the Linux kernel, the following vulnerability has been resolved: netdevsim: fix memory leak in …	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-m38r-m4xr-gxwh	In the Linux kernel, the following vulnerability has been resolved: rcu: Fix __this_cpu_read() loc…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-j2wx-wqf4-px3j	In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix mempool alloc si…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-49144		Notepad++ Privilege Escalation in Installer via Uncont…	notepad-plus-plus	notepad-plus-plus	2025-06-23T19:01:16.276Z	2025-12-24T14:46:08.689Z
cve-2025-62549	8.8 (v3.1)	Windows Routing and Remote Access Service (RRAS) Remot…	Microsoft	Windows 10 Version 1809	2025-12-09T17:55:38.801Z	2025-12-24T14:42:03.416Z
cve-2025-68664		LangChain serialization injection vulnerability enable…	langchain-ai	langchain	2025-12-23T22:47:44.084Z	2025-12-24T14:40:58.427Z
cve-2025-68669		5ire vulnerable to Remote Code Execution (RCE) via mermaid	nanbingxyz	5ire	2025-12-23T22:51:35.848Z	2025-12-24T14:39:38.656Z
cve-2025-68665		LangChain serialization injection vulnerability enable…	langchain-ai	langchainjs	2025-12-23T22:56:04.837Z	2025-12-24T14:38:40.268Z
cve-2025-54100	7.8 (v3.1)	PowerShell Remote Code Execution Vulnerability	Microsoft	Windows 10 Version 1809	2025-12-09T17:56:09.562Z	2025-12-24T14:37:33.163Z
cve-2025-68696		httparty Has Potential SSRF Vulnerability That Leads t…	jnunemaker	httparty	2025-12-23T22:59:04.201Z	2025-12-24T14:31:58.017Z
cve-2025-15049		code-projects Online Farm System addProduct.php sql in…	code-projects	Online Farm System	2025-12-23T23:02:07.647Z	2025-12-24T14:24:53.874Z
cve-2024-58335		OpenXRechnungToolbox through 2024-10-05-3.0.0 bef…	jcthiele	OpenXRechnungToolbox	2025-12-24T00:00:00.000Z	2025-12-24T14:22:58.208Z
cve-2025-15050		code-projects Student File Management System save_file…	code-projects	Student File Management System	2025-12-24T00:32:05.799Z	2025-12-24T14:21:48.005Z
cve-2025-15052		code-projects Student Information System profile.php c…	code-projects	Student Information System	2025-12-24T01:32:08.989Z	2025-12-24T14:21:06.288Z
cve-2025-15053		code-projects Student Information System searchresults…	code-projects	Student Information System	2025-12-24T02:02:06.480Z	2025-12-24T14:18:13.240Z
cve-2025-13773		Print Invoice & Delivery Notes for WooCommerce <= 5.8.…	tychesoftwares	Print Invoice & Delivery Notes for WooCommerce	2025-12-24T04:32:56.262Z	2025-12-24T14:17:05.956Z
cve-2025-66445	7.1 (v3.1)	Authorization bypass vulnerability in Hitachi Infrastr…	Hitachi	Hitachi Infrastructure Analytics Advisor	2025-12-24T04:52:40.728Z	2025-12-24T14:15:29.203Z
cve-2025-66444	8.2 (v3.1)	Cross-Site Scripting vulnerability in Hitachi Infrastr…	Hitachi	Hitachi Infrastructure Analytics Advisor	2025-12-24T04:53:34.752Z	2025-12-24T14:13:50.610Z
cve-2024-12125	7.5 (v3.1)	3scale-porta: readonly fields not validated server-side	3scale	porta	2025-11-06T21:50:40.704Z	2025-12-24T14:07:33.002Z
cve-2025-13888	9.1 (v3.1)	Openshift-gitops-operator: openshift gitops: namespace…	redhat-developer	gitops-operator	2025-12-15T15:36:49.274Z	2025-12-24T13:49:12.218Z
cve-2025-10725	9.9 (v3.1)	Openshift-ai: overly permissive clusterrole allows aut…	opendatahub-io	opendatahub-operator	2025-09-30T17:47:08.577Z	2025-12-24T13:39:32.225Z
cve-2024-46858	N/A	mptcp: pm: Fix uaf in __timer_delete_sync	Linux	Linux	2024-09-27T12:42:49.167Z	2025-12-24T13:21:35.775Z
cve-2025-5448	N/A	{'providerMetadata': {'orgId': '53f830b8-0a3f-465b-8143-3b8a9948e749', 'shortName': 'redhat', 'dateUpdated': '2025-12-24T13:15:12.460Z'}, 'rejectedReasons': [{'lang': 'en', 'value': 'This CVE id was assigned but later discarded.'}]}	N/A	N/A		2025-12-24T13:15:12.460Z
cve-2023-54160	N/A	firmware: arm_sdei: Fix sleep from invalid context BUG	Linux	Linux	2025-12-24T13:07:08.883Z	2025-12-24T13:07:08.883Z
cve-2023-54159	N/A	usb: mtu3: fix kernel panic at qmu transfer done irq handler	Linux	Linux	2025-12-24T13:07:08.207Z	2025-12-24T13:07:08.207Z
cve-2023-54158	N/A	btrfs: don't free qgroup space unless specified	Linux	Linux	2025-12-24T13:07:07.438Z	2025-12-24T13:07:07.438Z
cve-2023-54157	N/A	binder: fix UAF of alloc->vma in race with munmap()	Linux	Linux	2025-12-24T13:07:06.764Z	2025-12-24T13:07:06.764Z
cve-2023-54156	N/A	sfc: fix crash when reading stats while NIC is resetting	Linux	Linux	2025-12-24T13:07:06.043Z	2025-12-24T13:07:06.043Z
cve-2023-54155	N/A	net: core: remove unnecessary frame_sz check in bpf_xd…	Linux	Linux	2025-12-24T13:07:05.385Z	2025-12-24T13:07:05.385Z
cve-2023-54154	N/A	scsi: target: core: Fix target_cmd_counter leak	Linux	Linux	2025-12-24T13:07:04.721Z	2025-12-24T13:07:04.721Z
cve-2023-54153	N/A	ext4: turn quotas off if mount failed after enabling quotas	Linux	Linux	2025-12-24T13:07:04.007Z	2025-12-24T13:07:04.007Z
cve-2023-54152	N/A	can: j1939: prevent deadlock by moving j1939_sk_errqueue()	Linux	Linux	2025-12-24T13:07:03.310Z	2025-12-24T13:07:03.310Z
cve-2023-54151	N/A	f2fs: Fix system crash due to lack of free space in LFS	Linux	Linux	2025-12-24T13:07:02.600Z	2025-12-24T13:07:02.600Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-68596	N/A	WordPress Bit Assist plugin <= 1.5.11 - Broken Access …	Bit Apps	Bit Assist	2025-12-24T13:10:45.364Z	2025-12-24T19:27:55.686Z
cve-2025-68595	N/A	WordPress Widgets for Social Photo Feed plugin <= 1.7.…	Trustindex	Widgets for Social Photo Feed	2025-12-24T13:10:44.856Z	2025-12-24T19:28:01.577Z
cve-2025-68594	N/A	WordPress Poll, Survey & Quiz Maker Plugin by Opinion …	Assaf Parag	Poll, Survey & Quiz Maker Plugin by Opinion Stage	2025-12-24T13:10:44.556Z	2025-12-24T19:28:08.300Z
cve-2025-68593	N/A	WordPress WP Adminify plugin <= 4.0.6.1 - Broken Acces…	Liton Arefin	WP Adminify	2025-12-24T13:10:44.275Z	2025-12-24T19:28:13.749Z
cve-2025-68592	N/A	WordPress WP Adminify plugin <= 4.0.6.1 - Broken Acces…	Liton Arefin	WP Adminify	2025-12-24T13:10:43.992Z	2025-12-24T19:28:20.490Z
cve-2025-68591	N/A	WordPress Simple File List plugin <= 6.1.15 - Broken A…	Mitchell Bennis	Simple File List	2025-12-24T13:10:43.716Z	2025-12-24T19:28:25.578Z
cve-2025-68590	N/A	WordPress Integration for Contact Form 7 HubSpot plugi…	CRM Perks	Integration for Contact Form 7 HubSpot	2025-12-24T13:10:43.422Z	2025-12-24T19:28:30.139Z
cve-2025-68589	N/A	WordPress WP Telegram Widget and Join Link plugin <= 2…	WP Socio	WP Telegram Widget and Join Link	2025-12-24T13:10:43.150Z	2025-12-24T19:28:35.116Z
cve-2025-68588	N/A	WordPress TS Poll plugin <= 2.5.3 - Broken Access Cont…	totalsoft	TS Poll	2025-12-24T13:10:42.857Z	2025-12-24T19:28:40.371Z
cve-2025-68587	N/A	WordPress Watu Quiz plugin <= 3.4.5 - Broken Access Co…	Bob	Watu Quiz	2025-12-24T13:10:42.440Z	2025-12-24T19:28:45.997Z
cve-2025-68586	N/A	WordPress Cooked plugin <= 1.11.2 - Broken Access Cont…	Gora Tech	Cooked	2025-12-24T13:10:42.037Z	2025-12-24T19:28:51.677Z
cve-2025-68585	N/A	WordPress WP Document Revisions plugin <= 3.7.2 - Brok…	Ben Balter	WP Document Revisions	2025-12-24T13:10:41.715Z	2025-12-24T19:28:57.679Z
cve-2025-68584	N/A	WordPress Vimeotheque plugin <= 2.3.5.2 - Cross Site R…	Constantin Boiangiu	Vimeotheque	2025-12-24T13:10:41.424Z	2025-12-24T19:29:04.076Z
cve-2025-68583	N/A	WordPress Fast User Switching plugin <= 1.4.10 - Cross…	Tikweb Management	Fast User Switching	2025-12-24T13:10:41.121Z	2025-12-24T19:29:09.323Z
cve-2025-68582	N/A	WordPress Funnelforms Free plugin <= 3.8 - Broken Acce…	Funnelforms	Funnelforms Free	2025-12-24T13:10:40.817Z	2025-12-24T19:29:14.885Z
cve-2025-68581	N/A	WordPress YITH Slider for page builders plugin <= 1.0.…	YITHEMES	YITH Slider for page builders	2025-12-24T13:10:40.513Z	2025-12-24T19:29:20.723Z
cve-2025-68580	N/A	WordPress Advanced Classifieds & Directory Pro plugin …	pluginsware	Advanced Classifieds & Directory Pro	2025-12-24T13:10:40.193Z	2025-12-24T19:29:27.270Z
cve-2025-68579	N/A	WordPress FV Simpler SEO plugin <= 1.9.6 - Broken Acce…	FolioVision	FV Simpler SEO	2025-12-24T13:10:39.669Z	2025-12-24T19:29:33.249Z
cve-2025-68578	N/A	WordPress Addonify plugin <= 2.0.4 - Broken Access Con…	Addonify	Addonify	2025-12-24T13:10:39.343Z	2025-12-24T19:29:38.853Z
cve-2025-68577	N/A	WordPress Virusdie plugin <= 1.1.6 - Broken Access Con…	Virusdie	Virusdie	2025-12-24T13:10:38.980Z	2025-12-24T19:29:44.994Z
cve-2025-68576	N/A	WordPress Virusdie plugin <= 1.1.6 - Sensitive Data Ex…	Virusdie	Virusdie	2025-12-24T13:10:38.690Z	2025-12-24T19:29:50.810Z
cve-2025-68575	N/A	WordPress Wappointment plugin <=2.7.2 - Broken Access …	Wappointment team	Wappointment	2025-12-24T13:10:38.366Z	2025-12-24T19:29:56.848Z
cve-2025-68574	N/A	WordPress WPBakery Visual Composer WHMCS Elements plug…	voidcoders	WPBakery Visual Composer WHMCS Elements	2025-12-24T13:10:38.100Z	2025-12-24T19:30:04.744Z
cve-2025-68573	N/A	WordPress Simple Keyword to Link plugin <= 1.5 - Cross…	Alessandro Piconi	Simple Keyword to Link	2025-12-24T13:10:37.793Z	2025-12-24T19:30:12.847Z
cve-2025-68572	N/A	WordPress BBP Core plugin <= 1.4.1 - Broken Access Con…	Spider Themes	BBP Core	2025-12-24T13:10:37.515Z	2025-12-24T19:30:18.794Z
cve-2025-68571	N/A	WordPress SALESmanago plugin <= 3.9.0 - Broken Access …	SALESmanago	SALESmanago	2025-12-24T13:10:37.254Z	2025-12-24T19:30:24.422Z
cve-2025-68570	N/A	WordPress Captivate Sync plugin <= 3.2.2 - SQL Injecti…	captivateaudio	Captivate Sync	2025-12-24T13:10:36.970Z	2025-12-24T19:30:29.515Z
cve-2025-68569	N/A	WordPress WP Time Slots Booking Form plugin <= 1.2.38 …	codepeople	WP Time Slots Booking Form	2025-12-24T13:10:36.669Z	2025-12-24T19:30:34.949Z
cve-2025-68568	N/A	WordPress Popup Builder: Exit-Intent pop-up, Spin the …	integrationclaspo	Popup Builder: Exit-Intent pop-up, Spin the Wheel, Newsletter signup, Email Capture & Lead Generation forms maker	2025-12-24T13:10:36.357Z	2025-12-24T19:30:40.727Z
cve-2025-68567	N/A	WordPress My auctions allegro plugin <= 3.6.32 - Cross…	wphocus	My auctions allegro	2025-12-24T13:10:36.094Z	2025-12-24T19:30:46.741Z

ID	Description	Published	Updated
fkie_cve-2025-68590	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-24T13:16:26.337	2025-12-29T15:58:13.147
fkie_cve-2025-68589	Missing Authorization vulnerability in WP Socio WP Telegram Widget and Join Link wptelegram-widget …	2025-12-24T13:16:26.220	2025-12-29T15:58:13.147
fkie_cve-2025-68588	Missing Authorization vulnerability in totalsoft TS Poll poll-wp allows Exploiting Incorrectly Conf…	2025-12-24T13:16:26.100	2025-12-29T15:58:13.147
fkie_cve-2025-68587	Missing Authorization vulnerability in Bob Watu Quiz watu allows Exploiting Incorrectly Configured …	2025-12-24T13:16:25.980	2025-12-29T15:58:13.147
fkie_cve-2025-68586	Missing Authorization vulnerability in Gora Tech Cooked cooked allows Exploiting Incorrectly Config…	2025-12-24T13:16:25.860	2025-12-29T15:58:13.147
fkie_cve-2025-68585	Missing Authorization vulnerability in Ben Balter WP Document Revisions wp-document-revisions allow…	2025-12-24T13:16:25.740	2025-12-29T15:58:13.147
fkie_cve-2025-68584	Cross-Site Request Forgery (CSRF) vulnerability in Constantin Boiangiu Vimeotheque codeflavors-vime…	2025-12-24T13:16:25.620	2025-12-29T15:58:13.147
fkie_cve-2025-68583	Cross-Site Request Forgery (CSRF) vulnerability in Tikweb Management Fast User Switching fast-user-…	2025-12-24T13:16:25.507	2025-12-29T15:58:13.147
fkie_cve-2025-68582	Missing Authorization vulnerability in Funnelforms Funnelforms Free funnelforms-free allows Exploit…	2025-12-24T13:16:25.387	2025-12-29T15:58:13.147
fkie_cve-2025-68581	Missing Authorization vulnerability in YITHEMES YITH Slider for page builders yith-slider-for-page-…	2025-12-24T13:16:25.267	2025-12-29T15:58:13.147
fkie_cve-2025-68580	Cross-Site Request Forgery (CSRF) vulnerability in pluginsware Advanced Classifieds & Directory Pro…	2025-12-24T13:16:25.140	2025-12-29T15:58:13.147
fkie_cve-2025-68579	Missing Authorization vulnerability in FolioVision FV Simpler SEO fv-all-in-one-seo-pack allows Exp…	2025-12-24T13:16:25.020	2025-12-29T15:58:13.147
fkie_cve-2025-68578	Missing Authorization vulnerability in Addonify Addonify addonify-quick-view allows Exploiting Inco…	2025-12-24T13:16:24.893	2025-12-29T15:58:13.147
fkie_cve-2025-68577	Missing Authorization vulnerability in Virusdie Virusdie virusdie allows Exploiting Incorrectly Con…	2025-12-24T13:16:24.777	2025-12-29T15:58:13.147
fkie_cve-2025-68576	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Virusdi…	2025-12-24T13:16:24.660	2025-12-29T15:58:13.147
fkie_cve-2025-68575	Missing Authorization vulnerability in Wappointment team Wappointment wappointment allows Exploitin…	2025-12-24T13:16:24.540	2025-12-29T15:58:13.147
fkie_cve-2025-68574	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:24.423	2025-12-29T15:58:13.147
fkie_cve-2025-68573	Cross-Site Request Forgery (CSRF) vulnerability in Alessandro Piconi Simple Keyword to Link simple-…	2025-12-24T13:16:24.300	2025-12-29T15:58:13.147
fkie_cve-2025-68572	Missing Authorization vulnerability in Spider Themes BBP Core bbp-core allows Exploiting Incorrectl…	2025-12-24T13:16:24.183	2025-12-29T15:58:13.147
fkie_cve-2025-68571	Missing Authorization vulnerability in SALESmanago SALESmanago salesmanago allows Exploiting Incorr…	2025-12-24T13:16:24.070	2025-12-29T15:58:13.147
fkie_cve-2025-68570	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-24T13:16:23.953	2025-12-29T15:58:13.147
fkie_cve-2025-68569	Missing Authorization vulnerability in codepeople WP Time Slots Booking Form wp-time-slots-booking-…	2025-12-24T13:16:23.833	2025-12-29T15:58:13.147
fkie_cve-2025-68568	Missing Authorization vulnerability in integrationclaspo Popup Builder: Exit-Intent pop-up, Spin th…	2025-12-24T13:16:23.710	2025-12-29T15:58:13.147
fkie_cve-2025-68567	Cross-Site Request Forgery (CSRF) vulnerability in wphocus My auctions allegro my-auctions-allegro-…	2025-12-24T13:16:23.593	2025-12-29T15:58:13.147
fkie_cve-2025-68566	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:23.470	2025-12-29T15:58:13.147
fkie_cve-2025-68565	Missing Authorization vulnerability in JayBee Twitch Player ttv-easy-embed-player allows Exploiting…	2025-12-24T13:16:23.340	2025-12-29T15:58:13.147
fkie_cve-2025-68563	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:23.223	2025-12-29T15:58:13.147
fkie_cve-2025-68540	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:23.093	2025-12-29T15:58:13.147
fkie_cve-2025-68537	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:22.970	2025-12-29T15:58:13.147
fkie_cve-2025-68535	Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart al…	2025-12-24T13:16:22.850	2025-12-29T15:58:13.147

ID	Description	Package	Published	Updated
pysec-2024-77	An arbitrary code execution vulnerability exists in versions 23.10.3.0 up to 24.7.4.1 of …	mindsdb	2024-09-12T13:15:00+00:00	2024-09-16T19:20:04.616691+00:00
pysec-2024-76	An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of eboo…	ebookmeta	2024-06-07T19:15:00+00:00	2024-09-13T21:22:04.531357+00:00
pysec-2024-75	Twisted is an event-based framework for internet applications, supporting Python 3.6+. Th…	twisted	2024-07-29T16:15:00+00:00	2024-09-11T19:19:18.005250+00:00
pysec-2024-71	A vulnerability in corydolphin/flask-cors up to version 4.0.1 allows the `Access-Control-…	flask-cors	2024-08-18T19:15:00Z	2024-09-09T07:59:30.591275Z
pysec-2024-74	MindsDB is a platform for building artificial intelligence from enterprise data. Prior to…	mindsdb	2024-09-05T17:15:00+00:00	2024-09-06T15:22:53.971446+00:00
pysec-2024-73	A vulnerability in the JSON file handling of gaizhenbiao/chuanhuchatgpt version 20240410 …	chuanhuchatgpt	2024-07-31T01:15:00+00:00	2024-08-27T15:22:40.259109+00:00
pysec-2024-70	An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. QuerySet.values…	django	2024-08-07T15:15:00+00:00	2024-08-07T17:22:10.804411+00:00
pysec-2024-69	An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The urlize and …	django	2024-08-07T15:15:00+00:00	2024-08-07T17:22:10.745844+00:00
pysec-2024-68	An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The urlize() an…	django	2024-08-07T15:15:00+00:00	2024-08-07T17:22:10.682679+00:00
pysec-2024-67	An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The floatformat…	django	2024-08-07T15:15:00+00:00	2024-08-07T17:22:10.613440+00:00
pysec-2024-66	dbt enables data analysts and engineers to transform their data using the same practices …	dbt-core	2024-07-16T23:15:00+00:00	2024-07-19T17:21:49.664320+00:00
pysec-2024-65	Roundup before 2.4.0 allows XSS via JavaScript in PDF, XML, and SVG documents.	roundup	2024-07-17T20:15:00+00:00	2024-07-17T23:22:05.024899+00:00
pysec-2024-64	Roundup before 2.4.0 allows XSS via a SCRIPT element in an HTTP Referer header.	roundup	2024-07-17T20:15:00+00:00	2024-07-17T23:22:04.987078+00:00
pysec-2024-63	In Roundup before 2.4.0, classhelpers (_generic.help.html) allow XSS.	roundup	2024-07-17T20:15:00+00:00	2024-07-17T23:22:04.949977+00:00
pysec-2024-62	Versions of the package langchain-experimental from 0.0.15 and before 0.0.21 are vulnerab…	langchain-experimental	2024-07-15T05:15:00+00:00	2024-07-15T11:19:36.686972+00:00
pysec-2024-61	A Stored Cross-Site Scripting (XSS) vulnerability exists in gaizhenbiao/chuanhuchatgpt ve…	chuanhuchatgpt	2024-07-11T11:15:00+00:00	2024-07-12T21:33:00.657381+00:00
pysec-2024-60	A vulnerability was identified in the kjd/idna library, specifically within the `idna.enc…	idna	2024-07-07T18:15:00+00:00	2024-07-11T17:21:37.216928+00:00
pysec-2024-59	An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. get_supported_l…	django	2024-07-10T05:15:00+00:00	2024-07-10T11:20:07.800540+00:00
pysec-2024-58	An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. Derived classes…	django	2024-07-10T05:15:00+00:00	2024-07-10T11:20:07.704786+00:00
pysec-2024-57	An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. The django.cont…	django	2024-07-10T05:15:00+00:00	2024-07-10T11:20:07.604887+00:00
pysec-2024-56	An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7. urlize and urli…	django	2024-07-10T05:15:00+00:00	2024-07-10T11:20:07.495359+00:00
pysec-2024-54	CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang St…	codechecker	2024-06-24T18:15:00+00:00	2024-06-26T19:19:24.981233+00:00
pysec-2024-53	langchain_experimental (aka LangChain Experimental) before 0.0.61 for LangChain provides …	langchain-experimental	2024-06-16T15:15:00+00:00	2024-06-16T17:20:32.187558+00:00
pysec-2024-52	lepture Authlib before 1.3.1 has algorithm confusion with asymmetric public keys. Unless …	authlib	2024-06-09T19:15:00+00:00	2024-06-09T21:20:21.309692+00:00
pysec-2024-51	A broken access control vulnerability exists in mlflow/mlflow versions before 2.10.1, whe…	mlflow	2024-05-16T09:15:00+00:00	2024-05-16T11:19:52.866536+00:00
pysec-2024-50	Synapse is an open-source Matrix homeserver. A remote Matrix user with malicious intent, …	matrix-synapse	2024-04-23T18:15:00+00:00	2024-04-23T21:18:51.688096+00:00
pysec-2023-260	A reflected Cross-Site Scripting (XSS) vulnerability exists in the mlflow/mlflow reposito…	mlflow	2023-12-07T05:15:00+00:00	2024-04-16T15:20:55.191003+00:00
pysec-2024-49	Lektor before 3.3.11 does not sanitize DB path traversal. Thus, shell commands might be e…	lektor	2024-03-27T06:15:00+00:00	2024-03-27T11:18:36.506150+00:00
pysec-2024-48	Versions of the package black before 24.3.0 are vulnerable to Regular Expression Denial o…	black	2024-03-19T05:15:00+00:00	2024-03-19T11:18:50.379002+00:00
pysec-2024-47	In Django 3.2 before 3.2.25, 4.2 before 4.2.11, and 5.0 before 5.0.3, the django.utils.te…	django	2024-03-15T20:15:00+00:00	2024-03-15T23:20:34.975097+00:00

ID	Description	Updated
gsd-2024-33255	Jerryscript commit cefd391 was discovered to contain an Assertion Failure via ECMA_STRING…	2024-04-24T05:02:09.756677Z
gsd-2024-33275	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.756484Z
gsd-2024-33096	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.756284Z
gsd-2024-33168	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.756074Z
gsd-2024-33100	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.755796Z
gsd-2024-33431	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.755593Z
gsd-2024-33143	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.755388Z
gsd-2024-33190	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.755195Z
gsd-2024-33251	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.755000Z
gsd-2024-33134	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.754805Z
gsd-2024-33118	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.754600Z
gsd-2024-33128	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.754393Z
gsd-2024-33068	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.754188Z
gsd-2024-33421	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.753988Z
gsd-2024-33368	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.753782Z
gsd-2024-33464	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.753578Z
gsd-2024-33439	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.753324Z
gsd-2024-33258	Jerryscript commit ff9ff8f was discovered to contain a segmentation violation via the com…	2024-04-24T05:02:09.753118Z
gsd-2024-33208	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.752907Z
gsd-2024-33229	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.752692Z
gsd-2024-33090	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.752483Z
gsd-2024-33390	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.752268Z
gsd-2024-33361	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.752033Z
gsd-2024-33287	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.751819Z
gsd-2024-33450	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.751570Z
gsd-2024-33125	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.749323Z
gsd-2024-33188	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.749121Z
gsd-2024-33486	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.748923Z
gsd-2024-33215	Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu…	2024-04-24T05:02:09.748476Z
gsd-2024-33192	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.748196Z

ID	Description	Published	Updated
mal-2025-192906	Malicious code in haybales (RubyGems)	2025-12-23T08:40:55Z	2025-12-23T08:40:55Z
mal-2025-192905	Malicious code in critter (RubyGems)	2025-12-23T08:40:54Z	2025-12-23T08:40:54Z
mal-2025-192904	Malicious code in cocoapod (RubyGems)	2025-12-23T08:40:53Z	2025-12-23T08:40:53Z
mal-2025-192903	Malicious code in chalk-thrift (RubyGems)	2025-12-23T08:40:52Z	2025-12-23T08:40:52Z
mal-2025-192902	Malicious code in chalk-service (RubyGems)	2025-12-23T08:40:51Z	2025-12-23T08:40:51Z
mal-2025-192901	Malicious code in chalk-sentry (RubyGems)	2025-12-23T08:40:50Z	2025-12-23T08:40:50Z
mal-2025-192900	Malicious code in chalk-interface (RubyGems)	2025-12-23T08:40:50Z	2025-12-23T08:40:50Z
mal-2025-192899	Malicious code in chalk-hostname (RubyGems)	2025-12-23T08:40:50Z	2025-12-23T08:40:50Z
mal-2025-192898	Malicious code in chalk-henson (RubyGems)	2025-12-23T08:40:49Z	2025-12-23T08:40:49Z
mal-2025-192897	Malicious code in chalk-consul (RubyGems)	2025-12-23T08:40:49Z	2025-12-23T08:40:49Z
mal-2025-192896	Malicious code in chalk-cli (RubyGems)	2025-12-23T08:40:48Z	2025-12-23T08:40:48Z
mal-2025-192895	Malicious code in chalk-aws (RubyGems)	2025-12-23T08:40:47Z	2025-12-23T08:40:47Z
mal-2025-192894	Malicious code in activestorage-redundancy (RubyGems)	2025-12-23T08:40:46Z	2025-12-23T08:40:46Z
mal-2025-192893	Malicious code in fireeye-main (PyPI)	2025-12-23T08:38:27Z	2025-12-23T08:38:27Z
mal-2025-192892	Malicious code in fire-eye-bcs (PyPI)	2025-12-23T08:38:27Z	2025-12-23T08:38:27Z
mal-2025-192891	Malicious code in blastchamber-python-pypi (PyPI)	2025-12-23T08:38:03Z	2025-12-23T08:38:03Z
mal-2025-192890	Malicious code in sqzrframework480 (NuGet)	2025-12-23T08:37:46Z	2025-12-23T08:37:46Z
mal-2025-192889	Malicious code in minimutex (NuGet)	2025-12-23T08:37:45Z	2025-12-23T08:37:45Z
mal-2025-192888	Malicious code in workvivo-layout-extension (npm)	2025-12-23T08:36:36Z	2025-12-23T08:36:36Z
mal-2025-192887	Malicious code in workvivo-chatbot (npm)	2025-12-23T08:36:36Z	2025-12-23T08:36:36Z
mal-2025-192886	Malicious code in workvivo-anniversary-automation (npm)	2025-12-23T08:36:35Z	2025-12-23T08:36:35Z
mal-2025-192885	Malicious code in wealthbox-marketing (npm)	2025-12-23T08:35:44Z	2025-12-23T08:35:44Z
mal-2025-192884	Malicious code in vite-react-setting (npm)	2025-12-23T08:35:16Z	2025-12-23T08:35:16Z
mal-2025-192883	Malicious code in varshade-afc (npm)	2025-12-23T08:34:50Z	2025-12-23T08:34:50Z
mal-2025-192882	Malicious code in vapark-boost-v1 (npm)	2025-12-23T08:34:49Z	2025-12-23T08:34:49Z
mal-2025-192881	Malicious code in typeface-maison-neue (npm)	2025-12-23T08:34:00Z	2025-12-23T08:34:00Z
mal-2025-192880	Malicious code in tierlist (npm)	2025-12-23T08:33:32Z	2025-12-23T08:33:32Z
mal-2025-192879	Malicious code in tescoutils (npm)	2025-12-23T08:33:02Z	2025-12-23T08:33:02Z
mal-2025-192878	Malicious code in teeseest (npm)	2025-12-23T08:32:50Z	2025-12-23T08:32:50Z
mal-2025-192877	Malicious code in tdm-react (npm)	2025-12-23T08:32:44Z	2025-12-23T08:32:44Z

ID	Description	Published	Updated
wid-sec-w-2025-1231	Python: Mehrere Schwachstellen	2025-06-03T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2025-1171	GStreamer: Mehrere Schwachstellen	2025-05-29T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2025-1145	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2025-05-26T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2025-0997	Apache Commons Configuration: Schwachstelle ermöglicht Denial of Service	2025-05-11T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2025-0815	Oracle Java SE: Mehrere Schwachstellen	2025-04-15T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-3397	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-11-10T23:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-3289	Linux Kernel: Mehrere Schwachstellen	2024-10-28T23:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-3147	Red Hat Produkte: Mehrere Schwachstellen	2024-10-10T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-3050	Linux Kernel: Mehrere Schwachstellen	2024-09-29T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-1888	Linux Kernel: Mehrere Schwachstellen	2024-08-20T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-1875	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2024-08-18T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-1418	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-06-19T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-1259	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service und unspezifischen Angriff	2024-05-30T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-1188	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2024-05-20T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-0813	OpenSSL: Schwachstelle ermöglicht Denial of Service	2024-04-08T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2024-0181	OpenSSL: Schwachstelle ermöglicht Denial of Service	2024-01-23T23:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2023-2712	Apache HTTP Server: Mehrere Schwachstellen ermöglichen Denial of Service	2023-10-18T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2023-1323	OpenSSL: Schwachstelle ermöglicht Denial of Service	2023-05-30T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2023-0782	OpenSSL: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2023-03-28T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2022-2277	systemd: Schwachstelle ermöglicht Denial of Service	2022-01-10T23:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2022-0882	libpng: Schwachstelle ermöglicht Denial of Service	2019-02-04T23:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2025-1542	Sitecore Experience Manager: Mehrere Schwachstellen	2025-07-13T22:00:00.000+00:00	2025-09-01T22:00:00.000+00:00
wid-sec-w-2025-1857	Firebird: Mehrere Schwachstellen	2025-08-17T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2025-1672	Apple macOS Sequoia, Sonoma und Ventura: Mehrere Schwachstellen	2025-07-29T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2025-1325	libxml2: Schwachstelle ermöglicht Denial of Service	2025-06-15T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2025-1266	libarchive: Mehrere Schwachstellen ermöglichen Denial of Service	2025-06-09T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2025-1204	systemd-coredump: Schwachstelle ermöglicht Offenlegung von Informationen	2025-06-01T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2025-0915	Debian Linux (libuv und Node.js): Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-05-01T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2025-0704	xz: Schwachstelle ermöglicht Denial of Service	2025-04-03T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2025-0679	Golang Go: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-04-01T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00

ID	Description	Published	Updated
ssa-386812	SSA-386812: Remote Code Execution Vulnerability in Simcenter Amesim before V2021.1	2023-10-10T00:00:00Z	2023-10-10T00:00:00Z
ssa-295483	SSA-295483: User Enumeration Vulnerability in Mendix Forgot Password Module	2023-10-10T00:00:00Z	2023-10-10T00:00:00Z
ssa-285795	SSA-285795: Denial of Service in OPC-UA in Industrial Products	2022-05-10T00:00:00Z	2023-10-10T00:00:00Z
ssa-250085	SSA-250085: Multiple Vulnerabilities in SINEC NMS and SINEMA Server	2022-03-08T00:00:00Z	2023-10-10T00:00:00Z
ssa-134651	SSA-134651: Hard Coded SSH ID in CPCI85 Firmware of SICAM A8000 Devices	2023-10-10T00:00:00Z	2023-10-10T00:00:00Z
ssa-646240	SSA-646240: Sensitive Information Disclosure in SIMATIC PCS neo Administration Console	2023-09-14T00:00:00Z	2023-09-14T00:00:00Z
ssa-357182	SSA-357182: Local Privilege Escalation Vulnerability in Spectrum Power 7	2023-09-14T00:00:00Z	2023-09-14T00:00:00Z
ssa-957369	SSA-957369: Insyde BIOS Vulnerabilities in RUGGEDCOM APE1808 Product Family	2023-09-12T00:00:00Z	2023-09-12T00:00:00Z
ssa-764801	SSA-764801: File Parsing Vulnerabilities in Tecnomatix Plant Simulation	2023-07-11T00:00:00Z	2023-09-12T00:00:00Z
ssa-587547	SSA-587547: Unencrypted Storage of User Credentials in QMS Automotive	2022-11-08T00:00:00Z	2023-09-12T00:00:00Z
ssa-478960	SSA-478960: Missing CSRF Protection in the Web Server Login Page of Industrial Controllers	2022-11-08T00:00:00Z	2023-09-12T00:00:00Z
ssa-450613	SSA-450613: Insyde BIOS Vulnerabilities in RUGGEDCOM APE1808 Product Family	2023-02-14T00:00:00Z	2023-09-12T00:00:00Z
ssa-382653	SSA-382653: Multiple Denial of Service Vulnerabilities in Industrial Products	2022-12-13T00:00:00Z	2023-09-12T00:00:00Z
ssa-278349	SSA-278349: Multiple WRL File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go	2023-09-12T00:00:00Z	2023-09-12T00:00:00Z
ssa-190839	SSA-190839: X_T File Parsing Vulnerabilities in Parasolid	2023-09-12T00:00:00Z	2023-09-12T00:00:00Z
ssa-147266	SSA-147266: Multiple Vulnerabilities in QMS Automotive before V12.39	2023-09-12T00:00:00Z	2023-09-12T00:00:00Z
ssa-811403	SSA-811403: Multiple File Parsing Vulnerabilities in Solid Edge before V223 Update 7	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-472630	SSA-472630: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.4	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-223771	SSA-223771: SISCO Stack Vulnerability in SIPROTEC 5 Devices	2022-12-13T00:00:00Z	2023-08-08T00:00:00Z
ssa-188491	SSA-188491: DLL Hijacking Vulnerabilities in Siemens Software Center	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-180579	SSA-180579: Privilege Management Vulnerability and Multiple Nucleus RTOS Vulnerabilities in APOGEE/TALON Field Panels before V3.5.5/V2.8.20	2022-12-13T00:00:00Z	2023-08-08T00:00:00Z
ssa-131450	SSA-131450: File parsing Vulnerabilities in Solid Edge, JT2Go and Teamcenter Visualization	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-116172	SSA-116172: Nullsoft Scriptable Install System (NSIS) Vulnerability (CVE-2023-37378) in Parasolid Installer	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-001569	SSA-001569: JT File Parsing Vulnerabilities in JT Open, JT Utilities and Parasolid	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-930100	SSA-930100: Privilege Escalation Vulnerability in Simcenter STAR-CCM+	2022-12-13T00:00:00Z	2023-07-11T00:00:00Z
ssa-924149	SSA-924149: Stack Overflow Vulnerability in SiPass Integrated before V2.90.3.8	2023-07-11T00:00:00Z	2023-07-11T00:00:00Z
ssa-561322	SSA-561322: Multiple Vulnerabilities in SIMATIC MV500 Devices before V3.3.4	2023-07-11T00:00:00Z	2023-07-11T00:00:00Z
ssa-313488	SSA-313488: Multiple Vulnerabilities in SIMATIC CN 4100 before V2.5	2023-07-11T00:00:00Z	2023-07-11T00:00:00Z
ssa-146325	SSA-146325: Multiple Vulnerabilities in RUGGEDCOM ROX before V2.16	2023-07-11T00:00:00Z	2023-07-11T00:00:00Z
ssa-942865	SSA-942865: Multiple Vulnerabilities in the Integrated SCALANCE S615 of SINAMICS Medium Voltage Products	2023-06-13T00:00:00Z	2023-06-14T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:21203	Red Hat Security Advisory: Red Hat Ceph Storage	2025-11-12T21:27:55+00:00	2025-11-28T14:33:56+00:00
rhsa-2025:21068	Red Hat Security Advisory: Red Hat Ceph Storage 8.1 bug fix update	2025-11-12T02:43:07+00:00	2025-11-28T14:33:55+00:00
rhsa-2025:10853	Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.19.0	2025-07-14T07:36:21+00:00	2025-11-28T14:33:49+00:00
rhba-2025:0304	Red Hat Bug Fix Advisory: .NET 8.0 bug fix and enhancement update	2025-01-14T01:20:49+00:00	2025-11-28T14:33:49+00:00
rhsa-2023:3593	Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update	2023-06-14T10:02:32+00:00	2025-11-28T14:29:04+00:00
rhsa-2023:3592	Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update	2023-06-14T09:51:37+00:00	2025-11-28T14:29:04+00:00
rhsa-2023:3582	Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update	2023-06-14T08:41:36+00:00	2025-11-28T14:29:02+00:00
rhsa-2023:3581	Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update	2023-06-14T08:03:19+00:00	2025-11-28T14:29:01+00:00
rhsa-2023:3580	Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update	2023-06-14T08:54:51+00:00	2025-11-28T14:29:01+00:00
rhsa-2025:3807	Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release	2025-04-10T14:20:32+00:00	2025-11-28T14:19:09+00:00
rhsa-2025:9776	Red Hat Security Advisory: New RHCS 8.1 container image is now available in the Red Hat Ecosystem Catalog.	2025-06-26T12:12:44+00:00	2025-11-28T12:47:37+00:00
rhsa-2025:15904	Red Hat Security Advisory: container-tools:rhel8 security update	2025-09-16T05:56:47+00:00	2025-11-28T12:47:35+00:00
rhsa-2025:17669	Red Hat Security Advisory: OpenShift Container Platform 4.12.81 packages and security update	2025-10-16T11:03:25+00:00	2025-11-28T12:47:33+00:00
rhsa-2025:16729	Red Hat Security Advisory: OpenShift Container Platform 4.18.25 packages and security update	2025-10-01T16:38:14+00:00	2025-11-28T12:47:33+00:00
rhsa-2025:16724	Red Hat Security Advisory: OpenShift Container Platform 4.16.49 packages and security update	2025-10-01T13:18:39+00:00	2025-11-28T12:47:33+00:00
rhsa-2025:0771	Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.4.2 security and bug fix update	2025-01-28T15:50:58+00:00	2025-11-28T12:47:32+00:00
rhsa-2024:9960	Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.4 security and bug fix update	2024-11-19T01:54:11+00:00	2025-11-28T12:47:31+00:00
rhsa-2024:9485	Red Hat Security Advisory: Control plane Operators for RHOSO 18.0.3 (Feature Release 1) security update	2024-11-13T13:14:57+00:00	2025-11-28T12:47:31+00:00
rhsa-2024:9459	Red Hat Security Advisory: buildah security update	2024-11-12T10:25:04+00:00	2025-11-28T12:47:30+00:00
rhsa-2024:9454	Red Hat Security Advisory: podman security update	2024-11-12T10:29:20+00:00	2025-11-28T12:47:29+00:00
rhsa-2024:8704	Red Hat Security Advisory: Kube Descheduler Operator for Red Hat OpenShift 5.0.2 for RHEL 9	2024-12-02T14:11:34+00:00	2025-11-28T12:47:29+00:00
rhsa-2024:8700	Red Hat Security Advisory: OpenShift Container Platform 4.14.40 packages and security update	2024-11-08T15:04:34+00:00	2025-11-28T12:47:29+00:00
rhsa-2024:8697	Red Hat Security Advisory: OpenShift Container Platform 4.14.40 bug fix and security update	2024-11-08T01:46:12+00:00	2025-11-28T12:47:29+00:00
rhsa-2024:8694	Red Hat Security Advisory: OpenShift Container Platform 4.12.68 security update	2024-11-07T03:33:36+00:00	2025-11-28T12:47:26+00:00
rhsa-2024:8692	Red Hat Security Advisory: OpenShift Container Platform 4.12.68 security update	2024-11-07T03:09:07+00:00	2025-11-28T12:47:26+00:00
rhsa-2024:8688	Red Hat Security Advisory: OpenShift Container Platform 4.13.53 bug fix and security update	2024-11-06T14:30:20+00:00	2025-11-28T12:47:26+00:00
rhsa-2024:8428	Red Hat Security Advisory: OpenShift Container Platform 4.15.37 packages and security update	2024-10-31T04:01:33+00:00	2025-11-28T12:47:25+00:00
rhsa-2024:8425	Red Hat Security Advisory: OpenShift Container Platform 4.15.37 bug fix and security update	2024-10-31T03:37:09+00:00	2025-11-28T12:47:24+00:00
rhsa-2024:8337	Red Hat Security Advisory: Run Once Duration Override Operator for Red Hat OpenShift 1.1.2 for RHEL 9	2024-10-31T00:55:34+00:00	2025-11-28T12:47:24+00:00
rhsa-2024:8329	Red Hat Security Advisory: Red Hat build of Cryostat security update	2024-10-22T15:40:25+00:00	2025-11-28T12:47:24+00:00

ID	Description	Published	Updated
msrc_cve-2024-49888	bpf: Fix a sdiv overflow issue	2024-10-01T07:00:00.000Z	2025-12-07T01:47:17.000Z
msrc_cve-2025-38531	iio: common: st_sensors: Fix use of uninitialize device structs	2025-08-02T00:00:00.000Z	2025-12-07T01:47:16.000Z
msrc_cve-2025-21768	net: ipv6: fix dst ref loops in rpl, seg6 and ioam6 lwtunnels	2025-02-02T00:00:00.000Z	2025-12-07T01:47:16.000Z
msrc_cve-2025-8114	: null pointer dereference in libssh kex session id calculation	2025-07-02T00:00:00.000Z	2025-12-07T01:47:07.000Z
msrc_cve-2025-64329	containerd CRI server: Host memory exhaustion through Attach goroutine leak	2025-11-02T00:00:00.000Z	2025-12-07T01:47:05.000Z
msrc_cve-2024-43826	nfs: pass explicit offset/count to trace events	2024-08-02T00:00:00.000Z	2025-12-07T01:47:05.000Z
msrc_cve-2025-22113	ext4: avoid journaling sb update on error if journal is destroying	2025-04-02T00:00:00.000Z	2025-12-07T01:46:57.000Z
msrc_cve-2024-58266	The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection.	2025-07-02T00:00:00.000Z	2025-12-07T01:46:56.000Z
msrc_cve-2025-37750	smb: client: fix UAF in decryption with multichannel	2025-05-02T00:00:00.000Z	2025-12-07T01:46:55.000Z
msrc_cve-2025-21825	bpf: Cancel the running bpf_timer through kworker for PREEMPT_RT	2025-03-02T00:00:00.000Z	2025-12-07T01:46:49.000Z
msrc_cve-2025-38361	drm/amd/display: Check dce_hwseq before dereferencing it	2025-07-02T00:00:00.000Z	2025-12-07T01:46:46.000Z
msrc_cve-2025-37747	perf: Fix hang while freeing sigtrap event	2025-05-02T00:00:00.000Z	2025-12-07T01:46:46.000Z
msrc_cve-2024-49968	ext4: filesystems without casefold feature cannot be mounted with siphash	2024-10-01T07:00:00.000Z	2025-12-07T01:46:42.000Z
msrc_cve-2025-22109	ax25: Remove broken autobind	2025-04-02T00:00:00.000Z	2025-12-07T01:46:38.000Z
msrc_cve-2025-38359	s390/mm: Fix in_atomic() handling in do_secure_storage_access()	2025-07-02T00:00:00.000Z	2025-12-07T01:46:35.000Z
msrc_cve-2025-38104	drm/amdgpu: Replace Mutex with Spinlock for RLCG register access to avoid Priority Inversion in SRIOV	2025-04-02T00:00:00.000Z	2025-12-07T01:46:35.000Z
msrc_cve-2025-40266	KVM: arm64: Check the untrusted offset in FF-A memory share	2025-12-02T00:00:00.000Z	2025-12-07T01:46:28.000Z
msrc_cve-2025-37942	HID: pidff: Make sure to fetch pool before checking SIMULTANEOUS_MAX	2025-05-02T00:00:00.000Z	2025-12-07T01:46:28.000Z
msrc_cve-2025-38426	drm/amdgpu: Add basic validation for RAS header	2025-07-02T00:00:00.000Z	2025-12-07T01:46:25.000Z
msrc_cve-2025-23135	RISC-V: KVM: Teardown riscv specific bits after kvm_exit	2025-04-02T00:00:00.000Z	2025-12-07T01:46:25.000Z
msrc_cve-2024-49971	drm/amd/display: Increase array size of dummy_boolean	2024-10-01T07:00:00.000Z	2025-12-07T01:46:21.000Z
msrc_cve-2025-40251	devlink: rate: Unset parent pointer in devl_rate_nodes_destroy	2025-12-02T00:00:00.000Z	2025-12-07T01:46:18.000Z
msrc_cve-2024-41045	bpf: Defer work in bpf_timer_cancel_and_free	2024-07-01T07:00:00.000Z	2025-12-07T01:46:18.000Z
msrc_cve-2025-51480	Path Traversal vulnerability in onnx.external_data_helper.save_external_data in ONNX 1.17.0 allows attackers to overwrite arbitrary files by supplying crafted external_data.location paths containing traversal sequences, bypassing intended directory restrictions.	2025-07-02T00:00:00.000Z	2025-12-07T01:46:15.000Z
msrc_cve-2025-12464	Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode	2025-10-02T00:00:00.000Z	2025-12-07T01:46:15.000Z
msrc_cve-2024-49945	net/ncsi: Disable the ncsi work before freeing the associated structure	2024-10-01T07:00:00.000Z	2025-12-07T01:46:11.000Z
msrc_cve-2025-40250	net/mlx5: Clean up only new IRQ glue on request_irq() failure	2025-12-02T00:00:00.000Z	2025-12-07T01:46:07.000Z
msrc_cve-2025-22107	net: dsa: sja1105: fix kasan out-of-bounds warning in sja1105_table_delete_entry()	2025-04-02T00:00:00.000Z	2025-12-07T01:46:07.000Z
msrc_cve-2025-6075	Quadratic complexity in os.path.expandvars() with user-controlled template	2025-10-02T00:00:00.000Z	2025-12-07T01:46:03.000Z
msrc_cve-2024-49972	drm/amd/display: Deallocate DML memory if allocation fails	2024-10-01T07:00:00.000Z	2025-12-07T01:46:00.000Z

ID	Description	Published	Updated
icsa-15-232-01	Everest Software PeakHMI Pointer Dereference Vulnerabilities	2015-05-23T06:00:00.000000Z	2025-06-09T16:22:44.799609Z
icsa-14-105-02a	Innominate mGuard OpenSSL HeartBleed Vulnerability	2014-01-16T07:00:00.000000Z	2025-06-06T22:55:58.996445Z
icsa-14-084-01	Festo CECX-X-(C1/M1) Controller Vulnerabilities	2014-12-26T07:00:00.000000Z	2025-06-06T22:55:26.819560Z
icsa-13-344-01	WellinTech Vulnerabilities	2013-09-12T06:00:00.000000Z	2025-06-06T22:55:13.840768Z
icsa-13-213-01	Siemens Scalance W-7xx Product Family Multiple Vulnerabilities	2013-05-04T06:00:00.000000Z	2025-06-06T22:54:47.674263Z
icsa-13-142-01	3S CODESYS Gateway Use After Free	2013-02-23T07:00:00.000000Z	2025-06-06T22:54:41.230556Z
icsa-13-136-01	TURCK BL20 and BL67 Programmable Gateway Hard-Coded User Accounts	2013-02-17T07:00:00.000000Z	2025-06-06T22:54:28.354036Z
icsa-13-116-01	Galil RIO-47100 Improper Input Validation	2013-01-28T07:00:00.000000Z	2025-06-06T22:54:21.910443Z
icsa-13-084-01	Siemens CP 1604 and CP 1616 Improper Access Control	2013-12-27T07:00:00.000000Z	2025-06-06T22:53:49.627883Z
icsa-15-008-02	Schneider Electric Wonderware InTouch Access Anywhere Server Buffer Overflow Vulnerability	2015-10-11T06:00:00.000000Z	2025-06-06T22:53:43.105671Z
icsa-15-008-01a	Emerson HART DTM Vulnerability	2015-10-11T06:00:00.000000Z	2025-06-06T22:53:36.666065Z
icsa-14-352-02	Innominate mGuard Privilege Escalation Vulnerability	2014-09-20T06:00:00.000000Z	2025-06-06T22:53:30.239639Z
icsa-14-352-01	Honeywell Experion PKS Vulnerabilities	2014-09-20T06:00:00.000000Z	2025-06-06T22:52:57.847857Z
icsa-14-350-02	Johnson Controls Metasys Vulnerabilities	2014-09-18T06:00:00.000000Z	2025-06-06T22:52:44.918877Z
icsa-14-350-01	Schneider Electric ProClima Command Injection Vulnerabilities	2014-09-18T06:00:00.000000Z	2025-06-06T22:52:12.653446Z
icsa-14-345-01	Arbiter Systems 1094B GPS Clock Spoofing Vulnerability	2014-09-13T06:00:00.000000Z	2025-06-06T22:52:06.020081Z
icsa-14-343-02	Trihedral Engineering Limited VTScada Integer Overflow Vulnerability	2014-09-11T06:00:00.000000Z	2025-06-06T22:51:59.572172Z
icsa-14-343-01	Yokogawa FAST/TOOLS XML External Entity	2014-09-11T06:00:00.000000Z	2025-06-06T22:51:53.131755Z
icsa-14-329-02d	Siemens SIMATIC WinCC, PCS7, and TIA Portal Vulnerabilities	2014-08-28T06:00:00.000000Z	2025-06-06T22:51:40.258927Z
icsa-14-329-01	MatrikonOPC for DNP Unhandled C++ Exception	2014-08-28T06:00:00.000000Z	2025-06-06T22:51:33.725836Z
icsa-14-324-01	Advantech WebAccess Stack-based Buffer Overflow	2014-08-23T06:00:00.000000Z	2025-06-06T22:51:27.267005Z
icsa-14-308-01	ABB RobotStudio and Test Signal Viewer DLL Hijack Vulnerability	2014-08-07T06:00:00.000000Z	2025-06-06T22:51:20.827501Z
icsa-14-303-02	Elipse SCADA DNP3 Denial of Service	2014-08-02T06:00:00.000000Z	2025-06-06T22:51:14.375678Z
icsa-14-303-01	Nordex NC2 XSS Vulnerability	2014-08-02T06:00:00.000000Z	2025-06-06T22:51:07.945182Z
icsa-14-294-01	Rockwell Automation Connected Components Workbench ActiveX Component Vulnerabilities	2014-07-24T06:00:00.000000Z	2025-06-06T22:51:01.469791Z
icsa-14-289-02	GE Proficy HMI/SCADA CIMPLICITY CimView Memory Access Violation	2014-07-19T06:00:00.000000Z	2025-06-06T22:50:54.817836Z
icsa-14-289-01	IOServer Resource Exhaustion Vulnerability	2014-07-19T06:00:00.000000Z	2025-06-06T22:50:48.380867Z
icsa-14-288-01	CareFusion Pyxis SupplyStation System Vulnerabilities	2014-07-18T06:00:00.000000Z	2025-06-06T22:50:22.557418Z
icsa-14-287-01	GE Proficy HMI/SCADA DNP3 Driver Input Validation	2014-07-17T06:00:00.000000Z	2025-06-06T22:50:16.095529Z
icsa-14-275-02	Accuenergy Acuvim II Authentication Vulnerabilities	2014-07-05T06:00:00.000000Z	2025-06-06T22:50:03.174225Z

ID	Description	Published	Updated
cisco-sa-cuic-access-control-jjszqmjj	Cisco Unified Intelligence Center Insufficient Access Control Vulnerability	2024-02-21T16:00:00+00:00	2024-02-21T16:00:00+00:00
cisco-sa-cuic-access-control-jJsZQMjj	Cisco Unified Intelligence Center Insufficient Access Control Vulnerability	2024-02-21T16:00:00+00:00	2024-02-21T16:00:00+00:00
cisco-sa-asaftd-info-disclose-9ejtycmb	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Information Disclosure Vulnerability	2020-05-06T16:00:00+00:00	2024-02-21T15:57:20+00:00
cisco-sa-asaftd-info-disclose-9eJtycMB	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Information Disclosure Vulnerability	2020-05-06T16:00:00+00:00	2024-02-21T15:57:20+00:00
cisco-sa-clamav-hdffu6t	ClamAV OLE2 File Format Parsing Denial of Service Vulnerability	2024-02-07T16:00:00+00:00	2024-02-13T17:57:43+00:00
cisco-sa-clamav-hDffu6t	ClamAV OLE2 File Format Parsing Denial of Service Vulnerability	2024-02-07T16:00:00+00:00	2024-02-13T17:57:43+00:00
cisco-sa-expressway-csrf-knnzdmj3	Cisco Expressway Series Cross-Site Request Forgery Vulnerabilities	2024-02-07T16:00:00+00:00	2024-02-12T17:55:43+00:00
cisco-sa-expressway-csrf-KnnZDMj3	Cisco Expressway Series Cross-Site Request Forgery Vulnerabilities	2024-02-07T16:00:00+00:00	2024-02-12T17:55:43+00:00
cisco-sa-ftd-snort3acp-bypass-3bdr2beh	Multiple Cisco Products Snort 3 Access Control Policy Bypass Vulnerability	2023-11-01T16:00:00+00:00	2024-02-06T18:30:17+00:00
cisco-sa-ftd-snort3acp-bypass-3bdR2BEh	Multiple Cisco Products Snort 3 Access Control Policy Bypass Vulnerability	2023-11-01T16:00:00+00:00	2024-02-06T18:30:17+00:00
cisco-sa-cuc-unauth-afu-froyscsd	Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability	2024-01-10T16:00:00+00:00	2024-02-05T17:23:14+00:00
cisco-sa-cuc-unauth-afu-FROYsCsD	Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability	2024-01-10T16:00:00+00:00	2024-02-05T17:23:14+00:00
cisco-sa-cucm-rce-bwnzqcum	Cisco Unified Communications Products Remote Code Execution Vulnerability	2024-01-24T16:00:00+00:00	2024-01-30T19:16:46+00:00
cisco-sa-cucm-rce-bWNzQcUm	Cisco Unified Communications Products Remote Code Execution Vulnerability	2024-01-24T16:00:00+00:00	2024-01-30T19:16:46+00:00
cisco-sa-sb-bus-acl-bypass-5zn9hnjk	Cisco Small Business Series Switches Stacked Reload ACL Bypass Vulnerability	2024-01-24T16:00:00+00:00	2024-01-24T16:00:00+00:00
cisco-sa-sb-bus-acl-bypass-5zn9hNJk	Cisco Small Business Series Switches Stacked Reload ACL Bypass Vulnerability	2024-01-24T16:00:00+00:00	2024-01-24T16:00:00+00:00
cisco-sa-cuc-xss-9tfuu5ms	Cisco Unity Connection Cross-Site Scripting Vulnerability	2024-01-24T16:00:00+00:00	2024-01-24T16:00:00+00:00
cisco-sa-cuc-xss-9TFuu5MS	Cisco Unity Connection Cross-Site Scripting Vulnerability	2024-01-24T16:00:00+00:00	2024-01-24T16:00:00+00:00
cisco-sa-sdwan-privesc-cli-xkgwmqku	Cisco SD-WAN Software Arbitrary File Corruption Vulnerability	2022-09-28T16:00:00+00:00	2024-01-23T23:05:35+00:00
cisco-sa-sdwan-privesc-cli-xkGwmqKu	Cisco SD-WAN Software Arbitrary File Corruption Vulnerability	2022-09-28T16:00:00+00:00	2024-01-23T23:05:35+00:00
cisco-sa-sd-wan-file-access-vw36d28p	Cisco SD-WAN Solution Improper Access Control Vulnerability	2022-04-13T16:00:00+00:00	2024-01-23T21:31:33+00:00
cisco-sa-sd-wan-file-access-VW36d28P	Cisco SD-WAN Solution Improper Access Control Vulnerability	2022-04-13T16:00:00+00:00	2024-01-23T21:31:33+00:00
cisco-sa-broadworks-xss-6syj82ju	Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Stored Cross-Site Scripting Vulnerability	2024-01-10T16:00:00+00:00	2024-01-23T17:43:55+00:00
cisco-sa-broadworks-xss-6syj82Ju	Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Stored Cross-Site Scripting Vulnerability	2024-01-10T16:00:00+00:00	2024-01-23T17:43:55+00:00
cisco-sa-tms-portal-xss-axnevg3s	Cisco TelePresence Management Suite Cross-Site Scripting Vulnerabilities	2024-01-10T16:00:00+00:00	2024-01-12T15:18:40+00:00
cisco-sa-tms-portal-xss-AXNeVg3s	Cisco TelePresence Management Suite Cross-Site Scripting Vulnerabilities	2024-01-10T16:00:00+00:00	2024-01-12T15:18:40+00:00
cisco-sa-thouseyes-privesc-dmzhg3qv	Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-thouseyes-privesc-DmzHG3Qv	Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-sb-wap-inject-bhstwgxo	Cisco WAP371 Wireless Access Point Command Injection Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-sb-wap-inject-bHStWgXO	Cisco WAP371 Wireless Access Point Command Injection Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201902-0192	If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (…	2024-11-29T21:28:53.683000Z
var-201408-0094	Double free vulnerability in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before…	2024-11-29T21:28:53.364000Z
var-201206-0057	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T21:28:52.642000Z
var-201604-0129	Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 …	2024-11-29T21:28:52.271000Z
var-201108-0150	Integer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and…	2024-11-29T21:28:51.779000Z
var-201603-0244	Heap-based buffer overflow in Mozilla Network Security Services (NSS) before 3.19.2.3 and…	2024-11-29T21:28:51.380000Z
var-201904-1411	A cross-origin issue existed with "iframe" elements. This was addressed with improved tra…	2024-11-29T21:28:50.877000Z
var-200904-0809	The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.1…	2024-11-29T21:28:18.075000Z
var-202109-1313	An integer overflow was addressed with improved input validation. This issue is fixed in …	2024-11-29T21:28:17.384000Z
var-201205-0016	The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified M…	2024-11-29T21:28:17.214000Z
var-202204-0432	Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based …	2024-11-29T21:28:17.148000Z
var-201110-0444	Heap-based buffer overflow in the ecommunity_ecom2str function in bgp_ecommunity.c in bgp…	2024-11-29T21:28:17.007000Z
var-200603-0283	Unspecified vulnerability in Safari, LaunchServices, and/or CoreTypes in Apple Mac OS X 1…	2024-11-29T21:28:15.741000Z
var-201203-0171	Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google…	2024-11-29T21:28:12.571000Z
var-202108-2072	A race condition was addressed with improved locking. This issue is fixed in Security Upd…	2024-11-29T21:28:12.240000Z
var-200704-0215	Use-after-free vulnerability in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows re…	2024-11-29T21:28:11.433000Z
var-200809-0190	Multiple integer overflows in the SearchKit API in Apple Mac OS X 10.4.11 and 10.5 throug…	2024-11-29T21:28:10.708000Z
var-201702-0878	An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari …	2024-11-29T21:28:09.899000Z
var-201302-0136	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T21:28:05.138000Z
var-201607-0321	The MultipartStream class in Apache Commons Fileupload before 1.3.2, as used in Apache To…	2024-11-29T21:28:05.043000Z
var-202205-0855	Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4…	2024-11-29T21:28:00.157000Z
var-201401-0579	expat 2.1.0 and earlier does not properly handle entities expansion unless an application…	2024-11-29T21:27:59.150000Z
var-201904-1403	The issue was addressed by removing origin information. This issue affected versions prio…	2024-11-29T21:27:58.347000Z
var-200703-0018	Integer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to…	2024-11-29T21:27:52.771000Z
var-202201-0499	Heap-based Buffer Overflow in vim/vim prior to 8.2. Summary: The Migration Toolkit for C…	2024-11-29T21:27:51.913000Z
var-202102-1488	The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique…	2024-11-29T21:27:51.722000Z
var-200704-0221	The WebFoundation framework in Apple Mac OS X 10.3.9 and earlier allows subdomain cookies…	2024-11-29T21:27:49.195000Z
var-201306-0148	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T21:27:49.017000Z
var-202108-2123	A memory corruption vulnerability was addressed with improved locking. This issue is fixe…	2024-11-29T21:27:47.271000Z
var-202203-1690	zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if th…	2024-11-29T21:27:46.168000Z

ID	Description	Published	Updated
jvndb-2023-000083	Multiple vulnerabilities in LuxCal Web Calendar	2023-08-21T13:29+09:00	2024-03-26T17:09+09:00
jvndb-2024-000906	ffBull vulnerable to OS command injection	2024-03-26T16:07+09:00	2024-03-26T16:07+09:00
jvndb-2024-000900	"EasyRange" may insecurely load executable files	2024-03-26T15:50+09:00	2024-03-26T15:50+09:00
jvndb-2024-000907	0ch BBS Script (0ch) vulnerable to cross-site scripting	2024-03-26T15:35+09:00	2024-03-26T15:35+09:00
jvndb-2024-000902	TvRock vulnerable to cross-site scripting	2024-03-26T14:27+09:00	2024-03-26T14:27+09:00
jvndb-2024-000904	WebProxy vulnerable to OS command injection	2024-03-26T14:19+09:00	2024-03-26T14:19+09:00
jvndb-2023-025113	BUFFALO LinkStation 200 series vulnerable to arbitrary code execution	2024-03-25T18:16+09:00	2024-03-25T18:16+09:00
jvndb-2023-000082	EC-CUBE 2 series vulnerable to cross-site scripting	2023-08-17T15:12+09:00	2024-03-25T18:07+09:00
jvndb-2023-000084	WordPress Plugin "Advanced Custom Fields" vulnerable to cross-site scripting	2023-08-21T14:05+09:00	2024-03-25T17:55+09:00
jvndb-2024-000033	WordPress Plugin "easy-popup-show" vulnerable to cross-site request forgery	2024-03-25T13:31+09:00	2024-03-25T13:31+09:00
jvndb-2023-000055	ESS REC Agent Server Edition for Linux etc. vulnerable to directory traversal	2023-05-26T13:58+09:00	2024-03-21T17:15+09:00
jvndb-2023-000053	Tornado vulnerable to open redirect	2023-05-22T13:30+09:00	2024-03-21T17:05+09:00
jvndb-2023-000058	Pleasanter vulnerable to cross-site scripting	2023-05-31T15:34+09:00	2024-03-19T18:17+09:00
jvndb-2023-002002	Multiple vulnerabilities in Contec CONPROSYS HMI System (CHS)	2023-06-01T13:48+09:00	2024-03-19T18:13+09:00
jvndb-2023-000072	Improper restriction of XML external entity references (XXE) in XBRL data create application	2023-07-18T15:22+09:00	2024-03-19T18:11+09:00
jvndb-2023-000056	Starlette vulnerable to directory traversal	2023-05-30T13:34+09:00	2024-03-19T18:08+09:00
jvndb-2023-000125	Multiple vulnerabilities in BUFFALO VR-S1000	2023-12-26T15:51+09:00	2024-03-19T17:56+09:00
jvndb-2023-000123	Multiple vulnerabilities in GROWI	2023-12-13T15:30+09:00	2024-03-19T17:46+09:00
jvndb-2023-000052	DataSpider Servista uses a hard-coded cryptographic key	2023-05-31T15:34+09:00	2024-03-19T17:44+09:00
jvndb-2024-000032	Multiple vulnerabilities in FitNesse	2024-03-18T14:08+09:00	2024-03-19T11:02+09:00
jvndb-2023-014781	Brother iPrint&Scan Desktop for Windows vulnerable to improper link resolution before file access	2023-12-26T09:27+09:00	2024-03-18T18:05+09:00
jvndb-2023-000126	Multiple vulnerabilities in PowerCMS	2023-12-26T16:46+09:00	2024-03-18T17:58+09:00
jvndb-2024-000031	"ABEMA" App for Android fails to restrict access permissions	2024-03-15T16:37+09:00	2024-03-15T16:37+09:00
jvndb-2024-000013	Android App "Spoon" uses a hard-coded API key for an external service	2024-01-23T16:53+09:00	2024-03-14T17:44+09:00
jvndb-2024-000010	Improper restriction of XML external entity references (XXE) in "Electronic Delivery Check System (Ministry of Agriculture, Forestry and Fisheries The Agriculture and Rural Development Project Version)"	2024-01-23T15:25+09:00	2024-03-14T17:33+09:00
jvndb-2024-001002	Multiple TP-Link products vulnerable to OS command injection	2024-01-10T13:57+09:00	2024-03-14T13:52+09:00
jvndb-2024-000001	Improper input validation vulnerability in WordPress Plugin "WordPress Quiz Maker Plugin"	2024-01-12T13:51+09:00	2024-03-14T12:28+09:00
jvndb-2023-003757	Trend Micro Mobile Security vulnerable to cross-site scripting	2023-09-26T11:30+09:00	2024-03-13T18:07+09:00
jvndb-2023-002796	Multiple server-side request forgery vulnerabilities in Trend Micro Apex Central (July 2023)	2023-08-10T16:04+09:00	2024-03-13T17:58+09:00
jvndb-2024-000011	Multiple vulnerabilities in a-blog cms	2024-01-22T15:08+09:00	2024-03-13T17:50+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated