Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-hmh7-992g-3462 | A vulnerability was found in Tenda WH450 1.0.0.18. This issue affects some unknown processing of th… | 2025-12-29T09:30:24Z | 2025-12-29T09:30:24Z |
| ghsa-g344-h4p6-wpq9 | A vulnerability was identified in Tenda WH450 1.0.0.18. The affected element is an unknown function… | 2025-12-29T09:30:24Z | 2025-12-29T09:30:24Z |
| ghsa-cg22-j369-q853 | A security flaw has been discovered in code-projects Refugee Food Management System 1.0. The impact… | 2025-12-29T09:30:24Z | 2025-12-29T09:30:25Z |
| ghsa-62p4-493g-4423 | A vulnerability was determined in Tenda WH450 1.0.0.18. Impacted is an unknown function of the file… | 2025-12-29T09:30:24Z | 2025-12-29T09:30:24Z |
| ghsa-29c2-7qg3-7c74 | BPMFlowWebkit developed by WELLTEND TECHNOLOGY has a Arbitrary File Read vulnerability, allowing un… | 2025-12-29T09:30:24Z | 2025-12-29T09:30:24Z |
| ghsa-qvjf-wrj2-9pj8 | WMPro developed by Sunnet has an Arbitrary File Read vulnerability, allowing unauthenticated remote… | 2025-12-29T09:30:23Z | 2025-12-29T09:30:23Z |
| ghsa-mxx2-735j-g9gp | A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of … | 2025-12-29T09:30:23Z | 2025-12-29T09:30:23Z |
| ghsa-m9qv-jv94-ch3q | WMPro developed by Sunnet has a Arbitrary File Upload vulnerability, allowing unauthenticated remot… | 2025-12-29T09:30:23Z | 2025-12-29T09:30:24Z |
| ghsa-229x-w52j-6f5m | A flaw has been found in Open5GS up to 2.7.5. This affects the function decode_ipv6_header/ogs_pfcp… | 2025-12-29T09:30:23Z | 2025-12-29T09:30:23Z |
| ghsa-x78m-hxx2-v34v | Missing Authorization vulnerability in Gmission Web Fax allows Privilege Abuse, Session Credential … | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-wv78-2995-7xgf | Improper Authentication vulnerability in Gmission Web Fax allows Privilege Escalation.This issue af… | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-mfq8-ww9j-9c8g | The YaMaps for WordPress Plugin WordPress plugin before 0.6.40 does not validate and escape some of… | 2025-12-29T06:30:24Z | 2025-12-29T18:30:51Z |
| ghsa-m25v-pprh-9m5m | A security vulnerability has been detected in SohuTV CacheCloud up to 3.2.0. Affected by this vulne… | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-gg4m-38pj-gwmc | A vulnerability was identified in SohuTV CacheCloud up to 3.2.0. This affects the function index of… | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-8jv6-h799-v689 | A security flaw has been discovered in SohuTV CacheCloud up to 3.2.0. This impacts the function pre… | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-88mr-q29h-43g6 | A weakness has been identified in SohuTV CacheCloud up to 3.2.0. Affected is the function advancedA… | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-74hv-hc8x-rcwg | The Plugin Organizer WordPress plugin before 10.2.4 does not sanitize and escape a parameter before… | 2025-12-29T06:30:24Z | 2025-12-29T18:30:51Z |
| ghsa-53q9-538q-rmmw | Exposure of Sensitive Information to an Unauthorized Actor, Missing Authorization vulnerability in … | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-4jhr-55hq-jhcw | A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. Affected by this issue is the functi… | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-rqv7-99wg-986m | A security vulnerability has been detected in Advaya Softech GEMS ERP Portal up to 2.1. This affect… | 2025-12-29T06:30:23Z | 2025-12-29T06:30:24Z |
| ghsa-rq63-8xjc-f72r | A weakness has been identified in BiggiDroid Simple PHP CMS 1.0. Affected by this issue is some unk… | 2025-12-29T06:30:23Z | 2025-12-29T06:30:23Z |
| ghsa-hp9p-9hpg-4rpv | A vulnerability was identified in itsourcecode Student Management System 1.0. Affected is an unknow… | 2025-12-29T03:30:26Z | 2025-12-29T03:30:26Z |
| ghsa-c9vj-8fwr-4gvq | Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbi… | 2025-12-29T03:30:26Z | 2025-12-29T03:30:26Z |
| ghsa-r83m-ghv4-r378 | A vulnerability was determined in itsourcecode Online Cake Ordering System 1.0. This impacts an unk… | 2025-12-29T03:30:25Z | 2025-12-29T03:30:26Z |
| ghsa-qvph-8rch-f939 | A vulnerability has been found in itsourcecode Online Cake Ordering System 1.0. The impacted elemen… | 2025-12-29T03:30:25Z | 2025-12-29T03:30:25Z |
| ghsa-j7cw-4mwg-5fw5 | A vulnerability was identified in Tenda WH450 1.0.0.18. Affected by this issue is some unknown func… | 2025-12-29T03:30:25Z | 2025-12-29T03:30:25Z |
| ghsa-gjm8-9h85-538q | A vulnerability was found in itsourcecode Online Cake Ordering System 1.0. This affects an unknown … | 2025-12-29T03:30:25Z | 2025-12-29T03:30:25Z |
| ghsa-89fx-3w93-77f2 | A security flaw has been discovered in Tenda WH450 1.0.0.18. This affects an unknown part of the fi… | 2025-12-29T03:30:25Z | 2025-12-29T03:30:25Z |
| ghsa-rpm9-rv74-f53f | Unrestricted Upload of File with Dangerous Type vulnerability in Innorix Innorix WP allows Upload a… | 2025-12-29T03:30:24Z | 2025-12-29T03:30:24Z |
| ghsa-h867-r9h7-gw3j | Exposure of Sensitive Information to an Unauthorized Actor, Missing Encryption of Sensitive Data, F… | 2025-12-29T03:30:24Z | 2025-12-29T03:30:24Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2024-25183 | N/A | givanz VvvebJs 1.7.2 is vulnerable to Directory T… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-30T15:58:32.923Z |
| cve-2024-25182 | N/A | givanz VvvebJs 1.7.2 suffers from a File Upload v… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-29T20:40:54.229Z |
| cve-2024-25181 | N/A | A critical vulnerability has been identified in g… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-30T15:58:38.236Z |
| cve-2025-15162 | Tenda WH450 RouteStatic stack-based overflow |
Tenda |
WH450 |
2025-12-28T23:32:08.620Z | 2025-12-29T21:06:49.439Z | |
| cve-2025-15161 | Tenda WH450 PPTPUserSetting stack-based overflow |
Tenda |
WH450 |
2025-12-28T23:02:08.101Z | 2025-12-29T21:13:48.407Z | |
| cve-2025-15160 | Tenda WH450 PPTPServer stack-based overflow |
Tenda |
WH450 |
2025-12-28T22:32:07.881Z | 2025-12-29T16:08:39.716Z | |
| cve-2025-15156 | omec-project UPF PFCP Session Establishment Request me… |
omec-project |
UPF |
2025-12-28T22:02:06.001Z | 2025-12-29T16:08:01.587Z | |
| cve-2025-15155 | floooh sokol sokol_gfx.h _sg_pipeline_desc_defaults st… |
floooh |
sokol |
2025-12-28T21:32:10.957Z | 2025-12-29T14:43:28.566Z | |
| cve-2025-15154 | PbootCMS Header handle.php get_user_ip less trusted source |
n/a |
PbootCMS |
2025-12-28T21:02:07.992Z | 2025-12-29T14:48:02.795Z | |
| cve-2025-15153 | PbootCMS SQLite Database pbootcms.db file access |
n/a |
PbootCMS |
2025-12-28T20:32:07.587Z | 2025-12-29T14:55:49.904Z | |
| cve-2025-15152 | h-moses moga-mall PmsProductController.java addProduct… |
h-moses |
moga-mall |
2025-12-28T20:02:08.188Z | 2025-12-29T15:50:24.977Z | |
| cve-2025-15151 | TaleLin Lin-CMS Tests Folder config.py password in con… |
TaleLin |
Lin-CMS |
2025-12-28T19:32:05.944Z | 2025-12-29T15:52:38.176Z | |
| cve-2025-15150 | PX4 PX4-Autopilot mavlink_log_handler.cpp log_entry_fr… |
PX4 |
PX4-Autopilot |
2025-12-28T19:02:07.960Z | 2025-12-29T16:08:11.074Z | |
| cve-2025-15149 | rawchen ecms Add New Product updateProductServlet.java… |
rawchen |
ecms |
2025-12-28T18:32:06.054Z | 2025-12-29T21:17:12.684Z | |
| cve-2025-15148 | CmsEasy Backend Template Management template_admin.php… |
n/a |
CmsEasy |
2025-12-28T18:02:08.178Z | 2025-12-29T21:22:26.770Z | |
| cve-2025-15146 | SohuTV CacheCloud UserManageController.java doUserList… |
SohuTV |
CacheCloud |
2025-12-28T17:32:06.551Z | 2025-12-29T21:25:59.423Z | |
| cve-2025-15145 | SohuTV CacheCloud TotalManageController.java doTotalLi… |
SohuTV |
CacheCloud |
2025-12-28T17:02:05.970Z | 2025-12-29T21:26:55.456Z | |
| cve-2025-15144 | dayrui XunRuiCMS JSONP Callback Init.php dr_exit_msg c… |
dayrui |
XunRuiCMS |
2025-12-28T16:32:07.116Z | 2025-12-29T21:27:18.449Z | |
| cve-2025-68973 | 7.8 (v3.1) | In GnuPG before 2.4.9, armor_filter in g10/armor.… |
GnuPG |
GnuPG |
2025-12-28T16:19:11.019Z | 2025-12-31T03:34:28.426Z |
| cve-2025-15143 | EyouCMS Backend Template Management FilemanagerLogic.p… |
n/a |
EyouCMS |
2025-12-28T16:02:08.347Z | 2025-12-29T16:24:22.854Z | |
| cve-2025-15142 | 9786 phpok3w show.php sql injection |
9786 |
phpok3w |
2025-12-28T15:32:12.734Z | 2025-12-29T16:26:52.591Z | |
| cve-2025-15141 | Halo Configuration actuator information disclosure |
n/a |
Halo |
2025-12-28T15:02:05.484Z | 2025-12-29T16:30:18.082Z | |
| cve-2025-15140 | saiftheboss7 onlinemcqexam quesadd.php sql injection |
saiftheboss7 |
onlinemcqexam |
2025-12-28T14:32:06.750Z | 2025-12-29T16:07:22.328Z | |
| cve-2025-15139 | TRENDnet TEW-822DRE formWsc sub_43ACF4 command injection |
TRENDnet |
TEW-822DRE |
2025-12-28T14:02:07.407Z | 2025-12-29T16:06:45.224Z | |
| cve-2025-15138 | prasathmani TinyFileManager tinyfilemanager.php path t… |
prasathmani |
TinyFileManager |
2025-12-28T13:32:08.843Z | 2025-12-29T16:40:10.063Z | |
| cve-2025-15137 | TRENDnet TEW-800MB NTPSyncWithHost.cgi sub_F934 comma… |
TRENDnet |
TEW-800MB |
2025-12-28T13:02:05.931Z | 2025-12-29T17:19:47.335Z | |
| cve-2025-15136 | TRENDnet TEW-800MB Management wizardset do_setWizard_a… |
TRENDnet |
TEW-800MB |
2025-12-28T12:32:06.349Z | 2025-12-29T17:20:27.000Z | |
| cve-2025-15135 | joey-zhou xiaozhi-esp32-server-java Cookie Authenticat… |
joey-zhou |
xiaozhi-esp32-server-java |
2025-12-28T12:02:07.346Z | 2025-12-29T17:58:51.665Z | |
| cve-2025-15134 | yourmaileyes MOOC Submission MainController.java subre… |
yourmaileyes |
MOOC |
2025-12-28T11:32:05.791Z | 2025-12-29T17:59:32.211Z | |
| cve-2025-15133 | ZSPACE Z4Pro+ HTTP POST Request close zfilev2_api_Clos… |
ZSPACE |
Z4Pro+ |
2025-12-28T11:02:10.256Z | 2025-12-29T18:00:13.048Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-15194 | D-Link DIR-600 HTTP Header hedwig.cgi stack-based overflow |
D-Link |
DIR-600 |
2025-12-29T15:32:09.818Z | 2025-12-29T16:10:13.239Z | |
| cve-2025-68929 | Frappe may be vulnerable remote code execution due to … |
frappe |
frappe |
2025-12-29T15:10:59.510Z | 2025-12-29T16:13:17.680Z | |
| cve-2025-68928 | Frappe CRM vulnerable to authenticated XSS via website field |
frappe |
crm |
2025-12-29T15:06:31.756Z | 2025-12-29T16:12:29.988Z | |
| cve-2025-65570 | N/A | A type confusion in jsish 2.0 allows incorrect co… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-31T16:59:28.908Z |
| cve-2025-65442 | N/A | DOM-based Cross-Site Scripting (XSS) vulnerabilit… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-29T16:45:57.333Z |
| cve-2025-60458 | N/A | UxPlay 1.72 contains a double free vulnerability … |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-29T16:46:50.304Z |
| cve-2025-57462 | N/A | Stored cross-site scripting (xss) in machsol mach… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-30T14:42:39.714Z |
| cve-2025-15193 | D-Link DWR-M920 formParentControl sub_423848 buffer overflow |
D-Link |
DWR-M920 |
2025-12-29T15:02:08.698Z | 2025-12-29T16:10:51.648Z | |
| cve-2025-15192 | D-Link DWR-M920 formLtefotaUpgradeQuectel sub_415328 c… |
D-Link |
DWR-M920 |
2025-12-29T14:32:08.392Z | 2025-12-29T16:11:38.000Z | |
| cve-2025-57460 | N/A | File upload vulnerability in machsol machpanel 8.… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-31T16:59:34.009Z |
| cve-2025-15191 | D-Link DWR-M920 formLtefotaUpgradeFibocom sub_4155B4 c… |
D-Link |
DWR-M920 |
2025-12-29T14:02:07.207Z | 2025-12-29T14:26:08.160Z | |
| cve-2025-15190 | D-Link DWR-M920 formFilter sub_42261C stack-based overflow |
D-Link |
DWR-M920 |
2025-12-29T13:32:08.616Z | 2025-12-29T14:26:52.164Z | |
| cve-2025-15189 | D-Link DWR-M920 formDefRoute sub_464794 buffer overflow |
D-Link |
DWR-M920 |
2025-12-29T13:02:11.742Z | 2025-12-29T13:15:00.973Z | |
| cve-2025-15188 | Campcodes Complete Online Beauty Parlor Management Sys… |
Campcodes |
Complete Online Beauty Parlor Management System |
2025-12-29T12:32:06.935Z | 2025-12-29T13:17:11.342Z | |
| cve-2025-15187 | GreenCMS File DataController.class.php path traversal |
n/a |
GreenCMS |
2025-12-29T12:02:08.285Z | 2025-12-29T12:59:20.144Z | |
| cve-2025-15186 | code-projects Refugee Food Management System addusers.… |
code-projects |
Refugee Food Management System |
2025-12-29T11:32:06.009Z | 2025-12-29T13:17:51.214Z | |
| cve-2025-15185 | code-projects Refugee Food Management System refugeesr… |
code-projects |
Refugee Food Management System |
2025-12-29T11:02:07.163Z | 2025-12-29T13:24:46.871Z | |
| cve-2025-15184 | code-projects Refugee Food Management System refugeesr… |
code-projects |
Refugee Food Management System |
2025-12-29T10:32:08.687Z | 2025-12-29T13:30:04.962Z | |
| cve-2025-15183 | code-projects Refugee Food Management System viewtaken… |
code-projects |
Refugee Food Management System |
2025-12-29T10:02:07.718Z | 2025-12-29T13:52:13.840Z | |
| cve-2025-15182 | code-projects Refugee Food Management System served.ph… |
code-projects |
Refugee Food Management System |
2025-12-29T09:32:11.171Z | 2025-12-29T16:41:01.231Z | |
| cve-2025-15181 | code-projects Refugee Food Management System pagenateR… |
code-projects |
Refugee Food Management System |
2025-12-29T09:02:05.761Z | 2025-12-29T16:41:40.624Z | |
| cve-2025-15180 | Tenda WH450 HTTP Request webExcptypemanFilte stack-bas… |
Tenda |
WH450 |
2025-12-29T08:32:07.342Z | 2025-12-29T16:43:05.384Z | |
| cve-2025-15228 | 9.3 (v4.0) 9.8 (v3.1) | WELLTEND TECHNOLOGY| BPMFlowWebkit - Arbitrary File Upload |
WELLTEND TECHNOLOGY |
BPMFlowWebkit |
2025-12-29T07:18:59.303Z | 2025-12-29T16:45:14.701Z |
| cve-2025-15227 | 8.7 (v4.0) 7.5 (v3.1) | WELLTEND TECHNOLOGY| BPMFlowWebkit - Arbitrary File Read |
WELLTEND TECHNOLOGY |
BPMFlowWebkit |
2025-12-29T07:10:24.624Z | 2025-12-29T14:31:48.689Z |
| cve-2025-15179 | Tenda WH450 qossetting stack-based overflow |
Tenda |
WH450 |
2025-12-29T08:02:08.052Z | 2025-12-29T16:44:16.742Z | |
| cve-2025-15178 | Tenda WH450 HTTP Request VirtualSer stack-based overflow |
Tenda |
WH450 |
2025-12-29T07:32:09.177Z | 2025-12-29T16:44:43.007Z | |
| cve-2025-15226 | 9.3 (v4.0) 9.8 (v3.1) | Sunnet|WMPro - Arbitrary File Upload |
Sunnet |
WMPro |
2025-12-29T06:39:27.426Z | 2025-12-29T14:34:29.835Z |
| cve-2025-15225 | 8.7 (v4.0) 7.5 (v3.1) | Sunnet|WMPro - Arbitrary File Read |
Sunnet |
WMPro |
2025-12-29T06:31:49.460Z | 2025-12-29T16:45:35.087Z |
| cve-2025-15177 | Tenda WH450 HTTP Request SetIpBind stack-based overflow |
Tenda |
WH450 |
2025-12-29T07:02:07.082Z | 2025-12-29T14:33:44.092Z | |
| cve-2025-15176 | Open5GS PFCP Session Establishment Request rule-match.… |
n/a |
Open5GS |
2025-12-29T06:32:06.957Z | 2025-12-29T14:38:33.043Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192339 | Malicious code in elf-stats-snowdusted-chimney-406 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192338 | Malicious code in elf-stats-shimmering-toolkit-483 (npm) | 2025-12-05T21:10:10Z | 2025-12-23T21:08:54Z |
| mal-2025-192337 | Malicious code in elf-stats-shimmering-garland-476 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192336 | Malicious code in elf-stats-northbound-drum-422 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192335 | Malicious code in elf-stats-mulled-snowglobe-636 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192334 | Malicious code in elf-stats-midnight-rocket-813 (npm) | 2025-12-05T21:10:10Z | 2025-12-23T20:41:02Z |
| mal-2025-192333 | Malicious code in elf-stats-lanternlit-saddlebag-279 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192332 | Malicious code in elf-stats-flickering-lantern-502 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192331 | Malicious code in elf-stats-evergreen-satchel-264 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192330 | Malicious code in elf-stats-cranberry-pinecone-878 (npm) | 2025-12-05T21:10:10Z | 2025-12-23T19:09:02Z |
| mal-2025-192329 | Malicious code in elf-stats-cosy-toy-308 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192328 | Malicious code in elf-stats-cosy-sled-550 (npm) | 2025-12-05T21:10:10Z | 2025-12-23T19:09:02Z |
| mal-2025-192327 | Malicious code in elf-stats-candystriped-garland-735 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192326 | Malicious code in elf-stats-candlelit-hollyberry-248 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192325 | Malicious code in elf-stats-aurora-mailbag-938 (npm) | 2025-12-05T21:10:10Z | 2025-12-05T21:10:10Z |
| mal-2025-192324 | Malicious code in ambient-map (npm) | 2025-12-05T21:10:10Z | 2025-12-23T15:41:17Z |
| mal-2025-192323 | Malicious code in rendom (PyPI) | 2025-12-05T16:58:12Z | 2025-12-31T15:39:35Z |
| mal-2025-192322 | Malicious code in joyboyw (PyPI) | 2025-12-05T13:45:46Z | 2025-12-31T02:45:15Z |
| mal-0000-kam193-55fd309408cb22eb | Malicious code in joyboyw (PyPI) | 2025-12-05T13:45:46Z | 2025-12-05T13:45:46Z |
| mal-2025-192321 | Malicious code in json-map-source (npm) | 2025-12-05T05:53:00Z | 2025-12-23T22:40:24Z |
| mal-2025-192318 | Malicious code in chai-as-deployed (npm) | 2025-12-05T05:43:31Z | 2025-12-23T16:10:05Z |
| mal-2025-192319 | Malicious code in chai-promised-chain (npm) | 2025-12-05T05:40:01Z | 2025-12-23T16:10:05Z |
| mal-2025-192320 | Malicious code in dotnetenv (npm) | 2025-12-05T05:37:50Z | 2025-12-23T16:45:00Z |
| mal-2025-192317 | Malicious code in tailwindcss-setfont (npm) | 2025-12-05T03:07:11Z | 2025-12-05T20:41:20Z |
| mal-2025-192316 | Malicious code in tailwindcss-animation-helper (npm) | 2025-12-05T03:05:17Z | 2025-12-05T20:41:20Z |
| mal-2025-192315 | Malicious code in seeds-random (npm) | 2025-12-05T03:03:24Z | 2025-12-24T10:09:30Z |
| mal-2025-192313 | Malicious code in react-svg-fill (npm) | 2025-12-05T02:57:24Z | 2025-12-05T20:41:19Z |
| mal-2025-192314 | Malicious code in react-svg-supporter (npm) | 2025-12-05T02:52:02Z | 2025-12-05T20:41:19Z |
| mal-2025-192312 | Malicious code in react-svg-bundler (npm) | 2025-12-05T02:52:02Z | 2025-12-05T20:41:19Z |
| mal-2025-192311 | Malicious code in react-icon-updater (npm) | 2025-12-05T02:50:28Z | 2025-12-05T20:41:19Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:15814 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.17 OpenShift Jenkins security update | 2025-09-15T15:09:15+00:00 | 2025-11-27T17:36:40+00:00 |
| rhsa-2025:15816 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.14 OpenShift Jenkins security update | 2025-09-15T15:05:00+00:00 | 2025-11-27T17:36:41+00:00 |
| rhsa-2025:15817 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.15 OpenShift Jenkins security update | 2025-09-15T15:04:50+00:00 | 2025-11-27T17:36:42+00:00 |
| rhsa-2025:15812 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.19 OpenShift Jenkins security update | 2025-09-15T15:03:43+00:00 | 2025-11-27T17:36:39+00:00 |
| rhsa-2025:15811 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.16 OpenShift Jenkins security update | 2025-09-15T15:03:16+00:00 | 2025-11-27T17:36:38+00:00 |
| rhsa-2025:15810 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.18 OpenShift Jenkins security update | 2025-09-15T14:44:55+00:00 | 2025-11-27T17:36:38+00:00 |
| rhsa-2025:15815 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.13 OpenShift Jenkins security update | 2025-09-15T14:44:44+00:00 | 2025-11-27T17:36:41+00:00 |
| rhsa-2025:15813 | Red Hat Security Advisory: Red Hat Product OCP Tools 4.12 OpenShift Jenkins security update | 2025-09-15T14:44:30+00:00 | 2025-11-27T17:36:40+00:00 |
| rhsa-2025:15800 | Red Hat Security Advisory: python3.9 security update | 2025-09-15T14:24:25+00:00 | 2025-11-21T19:25:55+00:00 |
| rhsa-2025:15798 | Red Hat Security Advisory: kpatch-patch-5_14_0-570_17_1 and kpatch-patch-5_14_0-570_39_1 security update | 2025-09-15T13:36:15+00:00 | 2025-11-21T19:25:53+00:00 |
| rhsa-2025:15785 | Red Hat Security Advisory: kernel security update | 2025-09-15T10:45:25+00:00 | 2025-11-28T17:33:57+00:00 |
| rhsa-2025:15782 | Red Hat Security Advisory: kernel security update | 2025-09-15T10:31:30+00:00 | 2025-11-21T19:25:50+00:00 |
| rhsa-2025:15786 | Red Hat Security Advisory: kernel-rt security update | 2025-09-15T10:24:20+00:00 | 2025-11-28T17:33:58+00:00 |
| rhsa-2025:15771 | Red Hat Security Advisory: RHACS 4.8.4 security and bug fix update | 2025-09-15T08:25:16+00:00 | 2025-11-21T19:38:33+00:00 |
| rhsa-2025:15740 | Red Hat Security Advisory: kernel security update | 2025-09-15T08:24:54+00:00 | 2025-11-21T19:25:50+00:00 |
| rhsa-2025:15728 | Red Hat Security Advisory: aide security update | 2025-09-15T01:29:59+00:00 | 2025-11-22T03:02:13+00:00 |
| rhsa-2025:15729 | Red Hat Security Advisory: webkitgtk4 security update | 2025-09-15T01:29:39+00:00 | 2025-11-21T19:25:49+00:00 |
| rhsa-2025:15727 | Red Hat Security Advisory: mod_http2 security update | 2025-09-15T01:29:19+00:00 | 2025-11-21T19:25:48+00:00 |
| rhsa-2025:15726 | Red Hat Security Advisory: mod_http2 security update | 2025-09-15T01:26:54+00:00 | 2025-11-21T19:25:47+00:00 |
| rhsa-2025:15724 | Red Hat Security Advisory: python3.9 security update | 2025-09-15T01:26:54+00:00 | 2025-11-21T19:25:46+00:00 |
| rhsa-2025:15725 | Red Hat Security Advisory: mod_http2 security update | 2025-09-15T01:25:19+00:00 | 2025-11-21T19:25:46+00:00 |
| rhsa-2025:15723 | Red Hat Security Advisory: python-requests security update | 2025-09-15T01:16:24+00:00 | 2025-11-21T19:25:46+00:00 |
| rhsa-2025:15717 | Red Hat Security Advisory: Red Hat Single Sign-On 7.6.12 security update | 2025-09-11T19:39:47+00:00 | 2025-11-21T19:25:45+00:00 |
| rhsa-2025:15700 | Red Hat Security Advisory: cups security update | 2025-09-11T16:22:20+00:00 | 2025-11-26T15:30:26+00:00 |
| rhsa-2025:15702 | Red Hat Security Advisory: cups security update | 2025-09-11T16:10:25+00:00 | 2025-11-21T19:25:44+00:00 |
| rhsa-2025:15701 | Red Hat Security Advisory: cups security update | 2025-09-11T16:07:45+00:00 | 2025-11-26T15:30:25+00:00 |
| rhsa-2025:15709 | Red Hat Security Advisory: Red Hat OpenShift sandboxed containers release | 2025-09-11T15:29:48+00:00 | 2025-11-25T10:22:48+00:00 |
| rhsa-2025:15697 | Red Hat Security Advisory: Streams for Apache Kafka 2.9.2 release and security update | 2025-09-11T15:16:59+00:00 | 2025-11-21T19:25:40+00:00 |
| rhsa-2025:15698 | Red Hat Security Advisory: httpd:2.4 security update | 2025-09-11T14:40:49+00:00 | 2025-11-21T19:25:41+00:00 |
| rhsa-2025:15699 | Red Hat Security Advisory: mysql-selinux and mysql8.4 security update | 2025-09-11T14:40:48+00:00 | 2025-11-21T19:25:41+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-39847 | ppp: fix memory leak in pad_compress_skb | 2025-09-02T00:00:00.000Z | 2025-09-21T01:02:26.000Z |
| msrc_cve-2025-39846 | pcmcia: Fix a NULL pointer dereference in __iodyn_find_io_region() | 2025-09-02T00:00:00.000Z | 2025-09-21T01:03:30.000Z |
| msrc_cve-2025-39845 | x86/mm/64: define ARCH_PAGE_TABLE_SYNC_MASK and arch_sync_kernel_mappings() | 2025-09-02T00:00:00.000Z | 2025-09-21T01:01:39.000Z |
| msrc_cve-2025-39844 | mm: move page table sync declarations to linux/pgtable.h | 2025-09-02T00:00:00.000Z | 2025-09-21T01:02:31.000Z |
| msrc_cve-2025-39843 | mm: slub: avoid wake up kswapd in set_track_prepare | 2025-09-02T00:00:00.000Z | 2025-09-21T01:01:24.000Z |
| msrc_cve-2025-39842 | ocfs2: prevent release journal inode after journal shutdown | 2025-09-02T00:00:00.000Z | 2025-09-21T01:01:44.000Z |
| msrc_cve-2025-39841 | scsi: lpfc: Fix buffer free/clear order in deferred receive path | 2025-09-02T00:00:00.000Z | 2025-09-21T01:02:00.000Z |
| msrc_cve-2025-39839 | batman-adv: fix OOB read/write in network-coding decode | 2025-09-02T00:00:00.000Z | 2025-09-21T01:01:18.000Z |
| msrc_cve-2025-39838 | cifs: prevent NULL pointer dereference in UTF16 conversion | 2025-09-02T00:00:00.000Z | 2025-09-21T01:03:35.000Z |
| msrc_cve-2025-39835 | xfs: do not propagate ENODATA disk errors into xattr code | 2025-09-02T00:00:00.000Z | 2025-09-20T01:07:54.000Z |
| msrc_cve-2025-39833 | mISDN: hfcpci: Fix warning when deleting uninitialized timer | 2025-09-02T00:00:00.000Z | 2025-12-07T01:51:31.000Z |
| msrc_cve-2025-39832 | net/mlx5: Fix lockdep assertion on sync reset unload event | 2025-09-02T00:00:00.000Z | 2025-09-20T01:08:42.000Z |
| msrc_cve-2025-39829 | trace/fgraph: Fix the warning caused by missing unregister notifier | 2025-09-02T00:00:00.000Z | 2025-12-04T01:01:45.000Z |
| msrc_cve-2025-39828 | atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control(). | 2025-09-02T00:00:00.000Z | 2025-09-20T01:08:15.000Z |
| msrc_cve-2025-39827 | net: rose: include node references in rose_neigh refcount | 2025-09-02T00:00:00.000Z | 2025-09-20T01:08:20.000Z |
| msrc_cve-2025-39826 | net: rose: convert 'use' field to refcount_t | 2025-09-02T00:00:00.000Z | 2025-09-20T01:01:34.000Z |
| msrc_cve-2025-39825 | smb: client: fix race with concurrent opens in rename(2) | 2025-09-02T00:00:00.000Z | 2025-09-20T01:08:04.000Z |
| msrc_cve-2025-39824 | HID: asus: fix UAF via HID_CLAIMED_INPUT validation | 2025-09-02T00:00:00.000Z | 2025-09-20T01:09:08.000Z |
| msrc_cve-2025-39823 | KVM: x86: use array_index_nospec with indices that come from guest | 2025-09-02T00:00:00.000Z | 2025-09-20T01:09:03.000Z |
| msrc_cve-2025-39819 | fs/smb: Fix inconsistent refcnt update | 2025-09-02T00:00:00.000Z | 2025-09-20T01:07:49.000Z |
| msrc_cve-2025-39817 | efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare | 2025-09-02T00:00:00.000Z | 2025-09-20T01:08:26.000Z |
| msrc_cve-2025-39813 | ftrace: Fix potential warning in trace_printk_seq during ftrace_dump | 2025-09-02T00:00:00.000Z | 2025-09-20T01:07:59.000Z |
| msrc_cve-2025-39812 | sctp: initialize more fields in sctp_v6_from_sk() | 2025-09-02T00:00:00.000Z | 2025-09-20T01:08:53.000Z |
| msrc_cve-2025-39810 | bnxt_en: Fix memory corruption when FW resources change during ifdown | 2025-09-02T00:00:00.000Z | 2025-12-07T01:51:36.000Z |
| msrc_cve-2025-39808 | HID: hid-ntrig: fix unable to handle page fault in ntrig_report_version() | 2025-09-02T00:00:00.000Z | 2025-09-20T01:08:47.000Z |
| msrc_cve-2025-39805 | net: macb: fix unregister_netdev call order in macb_remove() | 2025-09-02T00:00:00.000Z | 2025-12-07T01:51:25.000Z |
| msrc_cve-2025-39801 | usb: dwc3: Remove WARN_ON for device endpoint command timeouts | 2025-09-02T00:00:00.000Z | 2025-09-16T01:01:45.000Z |
| msrc_cve-2025-39800 | btrfs: abort transaction on unexpected eb generation at btrfs_copy_root() | 2025-09-02T00:00:00.000Z | 2025-09-16T01:01:39.000Z |
| msrc_cve-2025-39799 | ACPI: processor: perflib: Move problematic pr->performance check | 2025-09-02T00:00:00.000Z | 2025-09-16T01:01:50.000Z |
| msrc_cve-2025-39798 | NFS: Fix the setting of capabilities when automounting a new filesystem | 2025-09-02T00:00:00.000Z | 2025-09-16T01:01:21.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2021-000090 | Apache HTTP Server vulnerable to directory traversal | 2021-10-11T18:07+09:00 | 2021-10-11T18:07+09:00 |
| jvndb-2021-000089 | Nike App fails to restrict custom URL schemes properly | 2021-10-08T14:32+09:00 | 2021-10-08T14:32+09:00 |
| jvndb-2021-002810 | Information Disclosure Vulnerability in Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer | 2021-10-05T15:37+09:00 | 2021-10-05T15:37+09:00 |
| jvndb-2021-002774 | Trend Micro ServerProtect family vulnerable to authentication bypass | 2021-10-01T14:42+09:00 | 2021-10-01T14:42+09:00 |
| jvndb-2021-000088 | Multiple vulnerabilities in Cybozu Remote Service | 2021-09-30T16:03+09:00 | 2024-04-08T18:09+09:00 |
| jvndb-2021-002752 | Trend Micro HouseCall for Home Networks vulnerable to privilege escalation | 2021-09-30T13:56+09:00 | 2021-09-30T13:56+09:00 |
| jvndb-2021-000085 | SNKRDUNK Market Place App for iOS vulnerable to improper server certificate verification | 2021-09-28T15:18+09:00 | 2021-09-28T15:18+09:00 |
| jvndb-2021-000086 | WordPress Plugin "OG Tags" vulnerable to cross-site request forgery | 2021-09-28T15:11+09:00 | 2021-09-28T15:11+09:00 |
| jvndb-2021-000084 | InBody App vulnerable to information disclosure | 2021-09-28T14:27+09:00 | 2021-09-28T14:27+09:00 |
| jvndb-2021-000081 | Multiple vulnerabilities in Sharp NEC Display Solutions' public displays | 2021-09-17T15:13+09:00 | 2025-12-10T10:24+09:00 |
| jvndb-2021-000083 | EC-CUBE plugin "Order Status Batch Change Plug-in" vulnerable to cross-site scripting | 2021-09-16T14:33+09:00 | 2021-09-16T14:33+09:00 |
| jvndb-2021-000082 | EC-CUBE plugin "List (order management) item change plug-in" vulnerable to cross-site scripting | 2021-09-13T14:24+09:00 | 2021-09-13T14:24+09:00 |
| jvndb-2021-000074 | Multiple vulnerabilities in RevoWorks Browser | 2021-09-10T15:44+09:00 | 2021-09-10T15:44+09:00 |
| jvndb-2021-002342 | Trend Micro Security family vulnerable to improper handling of Directory Junction | 2021-09-03T16:10+09:00 | 2021-09-03T16:10+09:00 |
| jvndb-2021-000080 | baserCMS vulnerable to cross-site scripting | 2021-08-27T13:29+09:00 | 2021-08-27T13:29+09:00 |
| jvndb-2021-000079 | Multiple cross-site scripting vulnerabilities in Movable Type | 2021-08-25T14:54+09:00 | 2021-08-25T14:54+09:00 |
| jvndb-2021-000078 | The installers of multiple Sony products may insecurely load Dynamic Link Libraries | 2021-08-24T14:30+09:00 | 2021-08-24T14:30+09:00 |
| jvndb-2021-002282 | Multiple vulnerabilities in Navigate CMS | 2021-08-20T14:25+09:00 | 2021-08-20T14:25+09:00 |
| jvndb-2021-002279 | Incorrect permission assignment vulnerability in multiple Trend Micro Endpoint security products for enterprises | 2021-08-19T15:01+09:00 | 2021-08-19T15:01+09:00 |
| jvndb-2021-000077 | Huawei EchoLife HG8045Q vulnerable to OS command injection | 2021-08-17T14:24+09:00 | 2021-08-17T14:24+09:00 |
| jvndb-2021-002273 | Multiple vulnerabilities in D-Link router DSL-2750U | 2021-08-17T14:09+09:00 | 2021-08-17T14:09+09:00 |
| jvndb-2021-000076 | Plone vulnerable to open redirect | 2021-08-12T14:05+09:00 | 2021-08-12T14:05+09:00 |
| jvndb-2021-000075 | WordPress Plugin "Quiz And Survey Master" vulnerable to cross-site scripting | 2021-08-10T14:40+09:00 | 2021-08-10T14:40+09:00 |
| jvndb-2021-002077 | Multiple vulnerabilities in multiple Trend Micro Endpoint security products for enterprises | 2021-08-04T11:15+09:00 | 2021-08-04T11:15+09:00 |
| jvndb-2021-000073 | Multiple vulnerabilities in Cybozu Garoon | 2021-08-02T16:42+09:00 | 2022-05-24T15:16+09:00 |
| jvndb-2021-000072 | Minecraft Java Edition vulnerable to directory traversal | 2021-07-21T15:12+09:00 | 2021-07-21T15:12+09:00 |
| jvndb-2021-002005 | Trend Micro InterScan Web Security Virtual Appliance (IWSVA) vulnerable to cross-site scripting | 2021-07-19T16:53+09:00 | 2021-07-19T16:53+09:00 |
| jvndb-2021-000070 | Multiple vulnerabilities in GroupSession | 2021-07-19T15:41+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2021-000069 | Optical BB unit E-WMTA2.3 vulnerable to cross-site request forgery | 2021-07-14T17:13+09:00 | 2021-07-14T17:13+09:00 |
| jvndb-2021-000068 | Multiple vulnerabilities in Retty App | 2021-07-13T14:34+09:00 | 2023-03-08T17:02+09:00 |
| ID | Description | Updated |
|---|