Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-1405	9.8 (3.1)	Slider Future <= 1.0.5 - Unauthenticated Arbitrary Fil…	franchidesign	Slider Future	2026-02-19T04:36:09.197Z	2026-02-19T17:38:32.984Z
CVE-2025-13612	6.4 (3.1)	Album and Image Gallery Plus Lightbox <= 2.1.7 - Authe…	essentialplugin	Album and Image Gallery Plus Lightbox	2026-02-19T04:36:09.665Z	2026-02-19T17:38:20.655Z
CVE-2026-1646	6.4 (3.1)	Advance Block Extend <= 1.0.4 - Authenticated (Contrib…	iamjaydip	Advance Block Extend	2026-02-19T04:36:08.200Z	2026-02-19T17:38:57.467Z
CVE-2025-13930	5.3 (3.1)	Checkout Field Manager (Checkout Manager) for WooComme…	quadlayers	Checkout Field Manager (Checkout Manager) for WooCommerce	2026-02-19T04:36:08.678Z	2026-02-19T17:38:45.402Z
CVE-2025-15041	7.2 (3.1)	BackWPup <= 5.6.2 - Authenticated (BackWPup Helper+) P…	wp_media	BackWPup – WordPress Backup & Restore Plugin	2026-02-19T04:36:07.701Z	2026-02-19T17:39:08.954Z
CVE-2025-14294	5.3 (3.1)	Razorpay for WooCommerce <= 4.7.8 - Missing Authentica…	razorpay	Razorpay for WooCommerce	2026-02-19T04:36:07.208Z	2026-02-19T17:39:20.614Z
CVE-2025-13732	6.4 (3.1)	s2Member <= 251005 - Authenticated (Contributor+) Stor…	clavaque	s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions	2026-02-19T04:36:06.236Z	2026-02-19T17:39:43.235Z
CVE-2025-13413	4.3 (3.1)	Country Blocker for AdSense <= 1.0 - Cross-Site Reques…	soyrodriguez	Country Blocker for AdSense	2026-02-19T04:36:06.743Z	2026-02-19T17:39:31.661Z
CVE-2026-2502	6.1 (3.1)	xmlrpc attacks blocker <= 1.0 - Unauthenticated Stored…	yehudah	xmlrpc attacks blocker	2026-02-19T04:36:05.011Z	2026-02-19T17:40:06.750Z
CVE-2025-13587	6.5 (3.1)	Two Factor (2FA) Authentication via Email <= 1.9.8 - T…	ss88_uk	Two Factor (2FA) Authentication via Email	2026-02-19T04:36:05.735Z	2026-02-19T17:39:55.138Z
CVE-2026-2704	5.3 (4.0) 4.3 (3.1) 4.3 (3.0)	Open Babel CIF File transform3d.cpp DescribeAsString o…	n/a	Open Babel	2026-02-19T04:32:07.297Z	2026-02-19T04:32:07.297Z
CVE-2026-2703	4.8 (4.0) 3.3 (3.1) 3.3 (3.0)	xlnt-community xlnt Encrypted XLSX File base64.cpp dec…	xlnt-community	xlnt	2026-02-19T04:02:10.794Z	2026-02-19T04:02:10.794Z
CVE-2025-15586	10 (4.0)	OGP-Website installs prior git commit 52f865a4fba…	OpenGamePanel	OGP-Website	2026-02-19T03:41:04.720Z	2026-02-19T03:41:04.720Z
CVE-2026-2702	2.3 (4.0) 3.1 (3.1) 3.1 (3.0)	Beetel 777VR1 WPA2 PSK hard-coded credentials	Beetel	777VR1	2026-02-19T03:32:06.458Z	2026-02-19T03:32:06.458Z
CVE-2025-12500	5.3 (3.1)	Checkout Field Manager (Checkout Manager) for WooComme…	quadlayers	Checkout Field Manager (Checkout Manager) for WooCommerce	2026-02-19T03:25:20.170Z	2026-02-19T17:40:18.923Z
CVE-2025-13048	6.4 (3.1)	Official StatCounter Plugin <= 2.1.0 - Authenticated (…	statcounter	StatCounter – Free Real Time Visitor Stats	2026-02-19T03:25:19.247Z	2026-02-19T17:40:41.496Z
CVE-2025-12081	4.3 (3.1)	ACF Photo Gallery Field <= 3.0 - Missing Authorization…	navzme	ACF Photo Gallery Field	2026-02-19T03:25:19.703Z	2026-02-19T17:40:29.496Z
CVE-2025-13113	5.3 (3.1)	Web Accessibility by accessiBe <= 2.11 - Unauthenticat…	accessibewp	Web Accessibility by accessiBe	2026-02-19T03:25:18.315Z	2026-02-19T17:41:06.589Z
CVE-2025-12117	6.4 (3.1)	Renden <= 1.8.1 - Authenticated (Contributor+) Stored …	thinkupthemes	Renden	2026-02-19T03:25:18.752Z	2026-02-19T17:40:52.688Z
CVE-2025-12884	4.3 (3.1)	Advanced Ads – Ad Manager & AdSense <= 2.0.14 - Missin…	monetizemore	Advanced Ads – Ad Manager & AdSense	2026-02-19T03:25:17.396Z	2026-02-19T17:41:30.633Z
CVE-2025-12845	8.8 (3.1)	Tablesome Table – Contact Form DB – WPForms, CF7, Grav…	essekia	Tablesome Table – Contact Form DB – WPForms, CF7, Gravity, Forminator, Fluent	2026-02-19T03:25:17.846Z	2026-02-19T17:41:17.364Z
CVE-2025-12821	8.8 (3.1)	NewsBlogger <= 0.2.5.6 - 0.2.6.1 - Cross-Site Request …	spicethemes	NewsBlogger	2026-02-19T03:25:16.877Z	2026-02-19T17:41:41.142Z
CVE-2025-12116	6.4 (3.1)	Drift <= 1.5.0 - Authenticated (Contributor+) Stored …	thinkupthemes	Drift	2026-02-19T03:25:16.294Z	2026-02-19T17:41:54.223Z
CVE-2025-12882	9.8 (3.1)	Clasifico Listing <= 2.0 - Unauthenticated Privilege E…	SmartDataSoft	Clasifico Listing	2026-02-19T03:25:15.804Z	2026-02-19T17:42:05.893Z
CVE-2025-12707	7.5 (3.1)	Library Management System <= 3.2.1 - Unauthenticated S…	owthub	Library Management System	2026-02-19T03:25:15.322Z	2026-02-19T17:42:18.990Z
CVE-2025-13079	5.3 (3.1)	Popup Builder - Create highly converting, mobile frien…	popupbuilder	Popup Builder – Create highly converting, mobile friendly marketing popups.	2026-02-19T03:25:14.826Z	2026-02-19T17:42:29.750Z
CVE-2025-12375	6.4 (3.1)	Printful Integration for WooCommerce <= 2.2.11 - Authe…	printful	Printful Integration for WooCommerce	2026-02-19T03:25:14.353Z	2026-02-19T17:42:42.024Z
CVE-2025-12451	6.1 (3.1)	Easy SVG Support <= 4.0 - Authenticated (Author+) Stor…	benjamin_zekavica	Easy SVG Support	2026-02-19T03:25:13.845Z	2026-02-19T17:42:53.448Z
CVE-2025-11754	7.5 (3.1)	Cookie Banner, Cookie Consent, Consent Log, Cookie Sca…	wplegalpages	Cookie Banner for GDPR / CCPA – WPLP Cookie Consent	2026-02-19T03:25:13.376Z	2026-02-19T17:43:06.008Z
CVE-2025-12172	4.3 (3.1)	Mailchimp List Subscribe Form <= 2.0.0 - Cross-Site Re…	mailchimp	Mailchimp List Subscribe Form	2026-02-19T03:25:12.912Z	2026-02-19T17:43:16.858Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-24764	3.7 (3.1)	OpenClaw has Remote Code Execution via System Prompt I…	clawdbot	clawdbot	2026-02-19T01:10:17.540Z	2026-02-19T17:45:16.959Z
CVE-2026-1994	9.8 (3.1)	s2Member <= 260127 - Unauthenticated Privilege Escalat…	clavaque	s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions	2026-02-19T06:49:43.503Z	2026-02-19T21:20:40.661Z
CVE-2026-1646	6.4 (3.1)	Advance Block Extend <= 1.0.4 - Authenticated (Contrib…	iamjaydip	Advance Block Extend	2026-02-19T04:36:08.200Z	2026-02-19T17:38:57.467Z
CVE-2026-1455	4.3 (3.1)	Whatsiplus Scheduled Notification for Woocommerce <= 1…	whatsiplus	Whatsiplus Scheduled Notification for Woocommerce	2026-02-19T04:36:25.835Z	2026-02-19T21:28:00.278Z
CVE-2026-1405	9.8 (3.1)	Slider Future <= 1.0.5 - Unauthenticated Arbitrary Fil…	franchidesign	Slider Future	2026-02-19T04:36:09.197Z	2026-02-19T17:38:32.984Z
CVE-2026-1373	6.4 (3.1)	Easy Author Image <= 1.7 - Authenticated (Subscriber+)…	lawsonry	Easy Author Image	2026-02-19T04:36:26.857Z	2026-02-19T21:25:54.071Z
CVE-2026-1055	4.4 (3.1)	TalkJS <= 0.1.15 - Authenticated (Administrator+) Stor…	talkjs	TalkJS	2026-02-19T04:36:28.335Z	2026-02-19T04:36:28.335Z
CVE-2026-1047	4.4 (3.1)	salavat counter Plugin <= 0.9.5 - Authenticated (Admin…	goback2	salavat counter Plugin	2026-02-19T04:36:13.708Z	2026-02-19T17:36:45.995Z
CVE-2026-1044	4.4 (3.1)	Tennis Court Bookings <= 1.2.7 - Authenticated (Admini…	renoiriii	Tennis Court Bookings	2026-02-19T04:36:19.648Z	2026-02-19T21:05:09.781Z
CVE-2026-1043	4.4 (3.1)	PostmarkApp Email Integrator <= 2.4 - Authenticated (A…	gagan0123	PostmarkApp Email Integrator	2026-02-19T04:36:17.315Z	2026-02-19T20:37:09.646Z
CVE-2026-0974	8.8 (3.1)	Orderable <= 1.20.0 - Missing Authorization to Authent…	orderable	Orderable – WordPress Restaurant Online Ordering System and Food Ordering Plugin	2026-02-19T04:36:21.529Z	2026-02-19T04:36:21.529Z
CVE-2026-0926	9.8 (3.1)	Prodigy Commerce <= 3.2.9 - Unauthenticated Local File…	prodigycommerce	Prodigy Commerce	2026-02-19T04:36:24.867Z	2026-02-19T21:11:51.648Z
CVE-2026-0912	8.8 (3.1)	Toret Manager <= 1.2.7 - Authenticated (Subscriber+) A…	toret	Toret Manager	2026-02-19T04:36:10.131Z	2026-02-19T17:38:08.506Z
CVE-2026-0722	6.5 (3.1)	Shield Security <= 21.0.8 - Cross-Site Request Forgery…	paultgoodchild	Shield: Blocks Bots, Protects Users, and Prevents Security Breaches	2026-02-19T04:36:27.820Z	2026-02-19T04:36:27.820Z
CVE-2026-0561	6.1 (3.1)	Shield Security <= 21.0.8 - Unauthenticated Reflected …	paultgoodchild	Shield: Blocks Bots, Protects Users, and Prevents Security Breaches	2026-02-19T04:36:23.952Z	2026-02-19T21:14:59.387Z
CVE-2026-0556	6.4 (3.1)	XO Event Calendar <= 3.2.10 - Authenticated (Contribut…	ishitaka	XO Event Calendar	2026-02-19T04:36:14.235Z	2026-02-19T17:36:34.080Z
CVE-2026-0549	6.4 (3.1)	Groups <= 3.10.0 - Authenticated (Contributor+) Stored…	itthinx	Groups	2026-02-19T04:36:15.910Z	2026-02-19T21:04:08.107Z
CVE-2025-4960	7.8 (3.1)	macOS Local Privilege Escalation via Improper Authoriz…	EPSON	EPSON Printer Controller Installer	2026-02-19T01:37:22.018Z	2026-02-19T01:37:22.018Z
CVE-2025-4521	8.8 (3.1)	IDonate 2.1.5 - 2.1.9 - Missing Authorization to Authe…	themeatelier	IDonate – Blood Donation, Request And Donor Management System	2026-02-19T04:36:11.623Z	2026-02-19T17:37:33.720Z
CVE-2025-15586	10 (4.0)	OGP-Website installs prior git commit 52f865a4fba…	OpenGamePanel	OGP-Website	2026-02-19T03:41:04.720Z	2026-02-19T03:41:04.720Z
CVE-2025-15041	7.2 (3.1)	BackWPup <= 5.6.2 - Authenticated (BackWPup Helper+) P…	wp_media	BackWPup – WordPress Backup & Restore Plugin	2026-02-19T04:36:07.701Z	2026-02-19T17:39:08.954Z
CVE-2025-14983	6.4 (3.1)	Advanced Custom Fields: Font Awesome <= 5.0.1 - Authen…	mattkeys	Advanced Custom Fields: Font Awesome Field	2026-02-19T04:36:22.512Z	2026-02-19T04:36:22.512Z
CVE-2025-14864	4.3 (3.1)	Virusdie <= 1.1.7 - Missing Authorization to Authentic…	virusdie	Virusdie – One-click website security	2026-02-19T04:36:18.706Z	2026-02-19T21:09:20.114Z
CVE-2025-14851	6.4 (3.1)	YaMaps for WordPress <= 0.6.40 - Authenticated (Contri…	yhunter	YaMaps for WordPress Plugin	2026-02-19T04:36:20.136Z	2026-02-19T04:36:20.136Z
CVE-2025-14452	7.2 (3.1)	WP Customer Reviews <= 3.7.5 - Reflected Cross-Site Sc…	bompus	WP Customer Reviews	2026-02-19T04:36:23.007Z	2026-02-19T21:12:29.224Z
CVE-2025-14445	6.4 (3.1)	Image Hotspot by DevVN <= 1.2.9 - Authenticated (Autho…	levantoan	Image Hotspot by DevVN	2026-02-19T04:36:25.358Z	2026-02-19T21:28:58.239Z
CVE-2025-14427	4.3 (3.1)	Shield Security: Blocks Bots, Protects Users, and Prev…	paultgoodchild	Shield: Blocks Bots, Protects Users, and Prevents Security Breaches	2026-02-19T04:36:19.188Z	2026-02-19T21:08:14.561Z
CVE-2025-14357	5.3 (3.1)	Mega Store Woocommerce <= 5.9 - Missing Authorization …	misbahwp	Mega Store Woocommerce	2026-02-19T04:36:24.395Z	2026-02-19T21:18:31.802Z
CVE-2025-14342	4.3 (3.1)	SEO Plugin by Squirrly SEO <= 12.4.14 - Missing Author…	cifi	SEO Plugin by Squirrly SEO	2026-02-19T04:36:16.373Z	2026-02-19T20:40:01.636Z
CVE-2025-14294	5.3 (3.1)	Razorpay for WooCommerce <= 4.7.8 - Missing Authentica…	razorpay	Razorpay for WooCommerce	2026-02-19T04:36:07.208Z	2026-02-19T17:39:20.614Z

ID	Description	Published	Updated
fkie_cve-2026-2337	A vulnerability in Plunet Plunet BusinessManager allows session hijacking, data theft, unauthorized…	2026-02-11T14:16:02.390	2026-02-11T15:27:26.370
fkie_cve-2026-1227	CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could caus…	2026-02-11T14:16:02.117	2026-02-11T15:27:26.370
fkie_cve-2026-1226	CWE‑94: Improper Control of Generation of Code vulnerability exists that could cause execution of u…	2026-02-11T14:16:01.973	2026-02-11T15:27:26.370
fkie_cve-2026-0910	The wpForo Forum plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, …	2026-02-11T14:16:01.807	2026-02-11T15:27:26.370
fkie_cve-2025-8668	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2026-02-11T14:16:01.450	2026-02-11T15:27:26.370
fkie_cve-2026-22894	A path traversal vulnerability has been reported to affect File Station 6. If a remote attacker gai…	2026-02-11T13:15:58.937	2026-02-12T19:40:11.477
fkie_cve-2025-8025	Missing Authentication for Critical Function, Improper Access Control vulnerability in Dinosoft Bus…	2026-02-11T13:15:58.777	2026-02-11T15:27:26.370
fkie_cve-2025-68406	A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gain…	2026-02-11T13:15:58.640	2026-02-12T14:12:12.053
fkie_cve-2025-66278	A path traversal vulnerability has been reported to affect File Station 5. If a remote attacker gai…	2026-02-11T13:15:58.510	2026-02-12T19:43:46.360
fkie_cve-2025-66277	A link following vulnerability has been reported to affect several QNAP operating system versions. …	2026-02-11T13:15:58.380	2026-02-12T17:01:35.340
fkie_cve-2025-66274	A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system …	2026-02-11T13:15:58.243	2026-02-12T17:08:41.243
fkie_cve-2025-62856	A path traversal vulnerability has been reported to affect File Station 5. If a local attacker gain…	2026-02-11T13:15:58.107	2026-02-12T19:45:34.143
fkie_cve-2025-62855	A path traversal vulnerability has been reported to affect File Station 5. If a local attacker gain…	2026-02-11T13:15:57.950	2026-02-12T19:46:22.803
fkie_cve-2025-62854	An uncontrolled resource consumption vulnerability has been reported to affect File Station 5. If a…	2026-02-11T13:15:57.817	2026-02-12T19:48:21.780
fkie_cve-2025-62853	A path traversal vulnerability has been reported to affect File Station 5. If a remote attacker gai…	2026-02-11T13:15:57.673	2026-02-12T19:50:32.323
fkie_cve-2025-59386	A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system …	2026-02-11T13:15:57.540	2026-02-12T17:09:24.740
fkie_cve-2025-58472	A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote att…	2026-02-11T13:15:57.397	2026-02-12T14:12:48.840
fkie_cve-2025-58471	An allocation of resources without limits or throttling vulnerability has been reported to affect Q…	2026-02-11T13:15:56.997	2026-02-12T14:39:39.150
fkie_cve-2025-58470	A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gain…	2026-02-11T13:15:56.830	2026-02-12T14:40:15.713
fkie_cve-2025-58467	A relative path traversal vulnerability has been reported to affect Qsync Central. If a remote atta…	2026-02-11T13:15:56.587	2026-02-12T14:40:38.657
fkie_cve-2025-58466	A use of uninitialized variable vulnerability has been reported to affect several QNAP operating sy…	2026-02-11T13:15:56.447	2026-02-12T17:06:57.050
fkie_cve-2025-57713	A weak authentication vulnerability has been reported to affect File Station 5. The remote attacker…	2026-02-11T13:15:56.303	2026-02-12T19:52:29.873
fkie_cve-2025-57711	An allocation of resources without limits or throttling vulnerability has been reported to affect Q…	2026-02-11T13:15:56.170	2026-02-12T14:41:07.550
fkie_cve-2025-57710	An allocation of resources without limits or throttling vulnerability has been reported to affect Q…	2026-02-11T13:15:56.037	2026-02-12T14:41:27.283
fkie_cve-2025-57709	A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gai…	2026-02-11T13:15:55.897	2026-02-12T14:46:09.850
fkie_cve-2025-57708	An allocation of resources without limits or throttling vulnerability has been reported to affect Q…	2026-02-11T13:15:55.757	2026-02-12T14:47:29.717
fkie_cve-2025-57707	An improper neutralization of directives in statically saved code ('Static Code Injection') vulnera…	2026-02-11T13:15:55.617	2026-02-12T19:53:46.923
fkie_cve-2025-54170	An out-of-bounds read vulnerability has been reported to affect Qsync Central. If a remote attacker…	2026-02-11T13:15:55.487	2026-02-12T14:47:58.890
fkie_cve-2025-54169	An out-of-bounds read vulnerability has been reported to affect File Station 5. If a remote attacke…	2026-02-11T13:15:55.360	2026-02-12T19:55:24.247
fkie_cve-2025-54163	A NULL pointer dereference vulnerability has been reported to affect File Station 5. If a remote at…	2026-02-11T13:15:55.200	2026-02-12T19:55:56.343

ID	Severity	Description	Published	Updated
ghsa-vx2f-2j7r-3p8x	7.5 (3.1) 4.6 (4.0)	ScadaApp for iOS 1.1.4.0 contains a denial of service vulnerability that allows attackers to crash …	2026-02-19T00:30:28Z	2026-02-19T00:30:28Z
ghsa-vh22-vqgf-cr4h	7.5 (3.1) 8.7 (4.0)	gSOAP 2.8 contains a directory traversal vulnerability that allows unauthenticated attackers to acc…	2026-02-19T00:30:28Z	2026-02-19T00:30:28Z
ghsa-r29v-5x2x-xjh8	7.5 (3.1) 4.6 (4.0)	XMedia Recode 3.4.8.6 contains a denial of service vulnerability that allows attackers to crash the…	2026-02-19T00:30:28Z	2026-02-19T00:30:28Z
ghsa-ffp3-q8wm-h894	6.1 (3.1) 5.1 (4.0)	Bematech (formerly Logic Controls, now Elgin) MP-4200 TH printer contains a cross-site scripting vu…	2026-02-19T00:30:28Z	2026-02-19T00:30:28Z
ghsa-7ghp-cxp3-645v	7.5 (3.1) 4.6 (4.0)	iSmartViewPro 1.3.34 contains a denial of service vulnerability that allows attackers to crash the …	2026-02-19T00:30:28Z	2026-02-19T00:30:28Z
ghsa-653m-4r27-3m6m	8.4 (3.1) 8.4 (4.0)	Control Center PRO 6.2.9 contains a stack-based buffer overflow vulnerability in the user creation …	2026-02-19T00:30:28Z	2026-02-19T00:30:28Z
ghsa-5mx6-6w28-gw6c	8.8 (3.1) 7.1 (4.0)	Centova Cast 3.2.11 contains a file download vulnerability that allows authenticated attackers to r…	2026-02-19T00:30:28Z	2026-02-19T00:30:28Z
ghsa-4vww-ch2x-c53p	7.5 (3.1) 8.7 (4.0)	FileOptimizer 14.00.2524 contains a denial of service vulnerability that allows attackers to crash …	2026-02-19T00:30:28Z	2026-02-19T00:30:29Z
ghsa-3r32-v4qm-6hph	7.5 (3.1) 4.6 (4.0)	Foscam Video Management System 1.1.4.9 contains a denial of service vulnerability in the username i…	2026-02-19T00:30:28Z	2026-02-19T00:30:28Z
ghsa-mj9j-hqwg-6r6g	6.2 (3.1) 4.6 (4.0)	ipPulse 1.92 contains a denial of service vulnerability that allows local attackers to crash the ap…	2026-02-19T00:30:27Z	2026-02-19T00:30:28Z
ghsa-hfvx-25r5-qc3w	7.6 (3.1)	Fabric.js Affected by Stored XSS via SVG Export	2026-02-18T22:44:58Z	2026-02-19T21:57:26Z
ghsa-37gc-85xm-2ww6	5.8 (3.1)	OpenClaw affected by Stored XSS in Control UI via unsanitized assistant name/avatar in inline scrip…	2026-02-18T22:44:33Z	2026-02-20T16:47:40Z
ghsa-h7f7-89mm-pqh6	6.8 (4.0)	OpenClaw hardened the skill download target directory validation	2026-02-18T22:44:18Z	2026-02-20T16:47:32Z
ghsa-xxvh-5hwj-42pp	4.8 (4.0)	OpenClaw's sandbox config hash sorted primitive arrays and suppressed needed container recreation	2026-02-18T22:44:10Z	2026-02-20T16:47:26Z
ghsa-6hf3-mhgc-cm65	6.9 (4.0)	OpenClaw session tool visibility hardening and Telegram webhook secret fallback	2026-02-18T22:43:53Z	2026-02-20T16:47:17Z
ghsa-chf7-jq6g-qrwv	6.9 (4.0)	OpenClaw: Telegram bot token exposure via logs	2026-02-18T22:43:21Z	2026-02-20T16:47:10Z
ghsa-w235-x559-36mg	7.7 (4.0)	OpenClaw: Docker container escape via unvalidated bind mount config injection	2026-02-18T22:42:42Z	2026-02-20T16:47:03Z
ghsa-2qj5-gwg2-xwc4	8.6 (4.0)	OpenClaw: Unsanitized CWD path injection into LLM prompts	2026-02-18T22:42:29Z	2026-02-20T16:46:56Z
ghsa-3m4q-jmj6-r34q	7.1 (3.1)	Keras has a Local File Disclosure via HDF5 External Storage During Keras Weight Loading	2026-02-18T22:41:58Z	2026-02-18T22:41:58Z
ghsa-9mvc-8737-8j8h	6.9 (4.0)	pypdf possibly has long runtimes for malformed FlateDecode streams	2026-02-18T22:41:24Z	2026-02-18T22:41:24Z
ghsa-wgvp-vg3v-2xq3	6.9 (4.0)	pypdf has possible long runtimes/large memory usage for large /ToUnicode streams	2026-02-18T22:41:13Z	2026-02-18T22:41:13Z
ghsa-996q-pr4m-cvgq	6.9 (4.0)	pypdf has a possible infinite loop when processing TreeObject	2026-02-18T22:40:49Z	2026-02-18T22:40:49Z
ghsa-5mx2-w598-339m	6.5 (3.1)	RediSearch Query Injection in @langchain/langgraph-checkpoint-redis	2026-02-18T22:40:09Z	2026-02-18T22:40:09Z
ghsa-3ppc-4f35-3m26	8.7 (4.0)	minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern	2026-02-18T22:38:11Z	2026-02-20T16:52:14Z
ghsa-fw7p-63qq-7hpr	1.7 (4.0)	filippo.io/edwards25519 MultiScalarMult produces invalid results or undefined behavior if receiver …	2026-02-18T22:37:15Z	2026-02-20T16:46:42Z
ghsa-5vv4-hvf7-2h46	8.8 (3.1)	Command Injection via Unsanitized `locate` Output in `versions()` — systeminformation	2026-02-18T22:36:50Z	2026-02-19T21:57:18Z
ghsa-m6j8-rg6r-7mv8	6.9 (4.0)	Go Ethereum Improperly Validates the ECIES Public Key in RLPx Handshake	2026-02-18T22:36:06Z	2026-02-20T16:46:34Z
ghsa-2gjw-fg97-vg3r	8.7 (4.0)	Go Ethereum affected by DoS via malicious p2p message	2026-02-18T22:35:15Z	2026-02-20T16:46:27Z
ghsa-689v-6xwf-5jf3	6.9 (4.0)	Go Ethereum affected by DoS via malicious p2p message	2026-02-18T22:34:49Z	2026-02-19T21:57:09Z
ghsa-rrxv-pmq9-x67r	2.3 (4.0)	uTLS has a fingerprint vulnerability from missing padding extension for Chrome 120	2026-02-18T22:33:47Z	2026-02-18T22:33:47Z

ID	Severity	Description	Package	Published	Updated
pysec-2022-43121	9.8 (3.1)	The d8s-math for python, as distributed on PyPI, included a potential code-execution back…	democritus-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:44.735083Z
pysec-2022-43120	9.8 (3.1)	The d8s-json for python, as distributed on PyPI, included a potential code-execution back…	democritus-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:44.684065Z
pysec-2022-43119	9.8 (3.1)	The d8s-archives for python, as distributed on PyPI, included a potential code-execution …	democritus-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:44.633699Z
pysec-2022-43117	9.8 (3.1)	The d8s-pdfs for python, as distributed on PyPI, included a potential code-execution back…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.53409Z
pysec-2022-43116	9.8 (3.1)	The d8s-utility for python, as distributed on PyPI, included a potential code-execution b…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.483759Z
pysec-2022-43115	9.8 (3.1)	The d8s-ip-addresses for python, as distributed on PyPI, included a potential code-execut…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.428296Z
pysec-2022-43114	9.8 (3.1)	The d8s-mpeg for python, as distributed on PyPI, included a potential code-execution back…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.376649Z
pysec-2022-43112	9.8 (3.1)	The d8s-asns for python, as distributed on PyPI, included a potential code-execution back…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.27716Z
pysec-2022-43111	9.8 (3.1)	The d8s-html for python, as distributed on PyPI, included a potential code-execution back…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.226888Z
pysec-2022-43107	9.8 (3.1)	The d8s-ip-addresses for python, as distributed on PyPI, included a potential code-execut…	democritus-hypothesis	2022-09-19T16:15:00Z	2024-11-21T14:22:44.021497Z
pysec-2022-43106	9.8 (3.1)	The d8s-dicts for python, as distributed on PyPI, included a potential code-execution bac…	democritus-hypothesis	2022-09-19T16:15:00Z	2024-11-21T14:22:43.965654Z
pysec-2022-43101	9.8 (3.1)	The d8s-strings for python, as distributed on PyPI, included a potential code-execution b…	democritus-hypothesis	2022-09-19T16:15:00Z	2024-11-21T14:22:43.716069Z
pysec-2022-43099	9.8 (3.1)	The d8s-pdfs for python, as distributed on PyPI, included a potential code-execution back…	democritus-file-system	2022-09-19T16:15:00Z	2024-11-21T14:22:43.616362Z
pysec-2022-43092	9.8 (3.1)	The d8s-xml for python, as distributed on PyPI, included a potential code-execution backd…	d8s-xml	2022-09-19T16:15:00Z	2024-11-21T14:22:43.200942Z
pysec-2022-43087	9.8 (3.1)	The d8s-strings for python, as distributed on PyPI, included a potential code-execution b…	d8s-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:42.944804Z
pysec-2022-43083	9.8 (3.1)	The d8s-python for python, as distributed on PyPI, included a potential code-execution ba…	d8s-python	2022-09-19T16:15:00Z	2024-11-21T14:22:42.723606Z
pysec-2022-43080	9.8 (3.1)	The d8s-netstrings for python, as distributed on PyPI, included a potential code-executio…	d8s-netstrings	2022-09-19T16:15:00Z	2024-11-21T14:22:42.556543Z
pysec-2022-43079	9.8 (3.1)	The d8s-math for python, as distributed on PyPI, included a potential code-execution back…	d8s-math	2022-09-19T16:15:00Z	2024-11-21T14:22:42.499117Z
pysec-2022-43078	9.8 (3.1)	The d8s-json for python, as distributed on PyPI, included a potential code-execution back…	d8s-json	2022-09-19T16:15:00Z	2024-11-21T14:22:42.439723Z
pysec-2022-43076	9.8 (3.1)	The d8s-grammars for python, as distributed on PyPI, included a potential code-execution …	d8s-grammars	2022-09-19T16:15:00Z	2024-11-21T14:22:42.333517Z
pysec-2022-43074	9.8 (3.1)	The d8s-archives for python, as distributed on PyPI, included a potential code-execution …	d8s-archives	2022-09-19T16:15:00Z	2024-11-21T14:22:42.229096Z
pysec-2022-43113	9.8 (3.1)	The d8s-domains for python, as distributed on PyPI, included a potential code-execution b…	democritus-networking	2022-09-19T15:15:00Z	2024-11-21T14:22:44.327837Z
pysec-2022-43110	9.8 (3.1)	The d8s-urls for python, as distributed on PyPI, included a potential code-execution back…	democritus-networking	2022-09-19T15:15:00Z	2024-11-21T14:22:44.173987Z
pysec-2022-43105	9.8 (3.1)	The d8s-dates for python, as distributed on PyPI, included a potential code-execution bac…	democritus-hypothesis	2022-09-19T15:15:00Z	2024-11-21T14:22:43.915613Z
pysec-2022-43104	9.8 (3.1)	The d8s-domains for python, as distributed on PyPI, included a potential code-execution b…	democritus-hypothesis	2022-09-19T15:15:00Z	2024-11-21T14:22:43.865878Z
pysec-2022-43103	9.8 (3.1)	The d8s-uuids for python, as distributed on PyPI, included a potential code-execution bac…	democritus-hypothesis	2022-09-19T15:15:00Z	2024-11-21T14:22:43.817031Z
pysec-2022-43102	9.8 (3.1)	The d8s-urls for python 0.1.0, as distributed on PyPI, included a potential code-executio…	democritus-hypothesis	2022-09-19T15:15:00Z	2024-11-21T14:22:43.766564Z
pysec-2022-43098	9.8 (3.1)	The d8s-urls for python, as distributed on PyPI, included a potential code-execution back…	democritus-file-system	2022-09-19T15:15:00Z	2024-11-21T14:22:43.564135Z
pysec-2022-43118	9.8 (3.1)	The d8s-urls for python, as distributed on PyPI, included a potential code-execution back…	democritus-strings	2022-09-19T14:15:00Z	2024-11-21T14:22:44.584448Z
pysec-2022-281		Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.5.	rdiffweb	2022-09-17T20:15:00Z	2022-09-21T10:45:56.877746Z

ID	Description	Updated

ID	Description	Published	Updated
MAL-2026-567	Malicious code in debug-glitz (npm)	2026-01-28T07:37:08Z	2026-02-02T05:56:27Z
MAL-2026-566	Malicious code in debug-fmt (npm)	2026-01-28T07:37:08Z	2026-02-02T05:56:27Z
mal-2026-573	Malicious code in primebeem-db (npm)	2026-01-28T07:27:26Z	2026-02-02T05:56:29Z
mal-2026-563	Malicious code in @nayzak51/primebeem-db (npm)	2026-01-28T07:27:26Z	2026-02-02T05:56:25Z
MAL-2026-573	Malicious code in primebeem-db (npm)	2026-01-28T07:27:26Z	2026-02-02T05:56:29Z
MAL-2026-563	Malicious code in @nayzak51/primebeem-db (npm)	2026-01-28T07:27:26Z	2026-02-02T05:56:25Z
mal-2026-555	Malicious code in acuitymobileapp (npm)	2026-01-28T07:13:15Z	2026-02-02T05:56:26Z
MAL-2026-555	Malicious code in acuitymobileapp (npm)	2026-01-28T07:13:15Z	2026-02-02T05:56:26Z
mal-2026-558	Malicious code in n8n-zalo-fevox (npm)	2026-01-28T06:59:38Z	2026-02-02T05:56:29Z
mal-2026-557	Malicious code in n8n-nodes-zalo-fevox (npm)	2026-01-28T06:59:38Z	2026-02-02T05:56:29Z
MAL-2026-558	Malicious code in n8n-zalo-fevox (npm)	2026-01-28T06:59:38Z	2026-02-02T05:56:29Z
MAL-2026-557	Malicious code in n8n-nodes-zalo-fevox (npm)	2026-01-28T06:59:38Z	2026-02-02T05:56:29Z
mal-2026-556	Malicious code in digital-music-dynmsg-ribbon (npm)	2026-01-28T06:52:12Z	2026-02-02T05:56:27Z
MAL-2026-556	Malicious code in digital-music-dynmsg-ribbon (npm)	2026-01-28T06:52:12Z	2026-02-02T05:56:27Z
mal-2026-561	Malicious code in transform-regenerator (npm)	2026-01-28T06:44:48Z	2026-02-02T05:56:31Z
mal-2026-560	Malicious code in transform-async-to-generator (npm)	2026-01-28T06:44:48Z	2026-02-02T05:56:31Z
mal-2026-559	Malicious code in syntax-async-functions (npm)	2026-01-28T06:44:48Z	2026-02-02T05:56:30Z
MAL-2026-561	Malicious code in transform-regenerator (npm)	2026-01-28T06:44:48Z	2026-02-02T05:56:31Z
MAL-2026-560	Malicious code in transform-async-to-generator (npm)	2026-01-28T06:44:48Z	2026-02-02T05:56:31Z
MAL-2026-559	Malicious code in syntax-async-functions (npm)	2026-01-28T06:44:48Z	2026-02-02T05:56:30Z
mal-2026-551	Malicious code in express-lists-routes (npm)	2026-01-28T03:26:59Z	2026-02-02T05:56:27Z
MAL-2026-551	Malicious code in express-lists-routes (npm)	2026-01-28T03:26:59Z	2026-02-02T05:56:27Z
mal-2026-552	Malicious code in json-mapping-web (npm)	2026-01-28T03:24:26Z	2026-02-02T05:56:28Z
MAL-2026-552	Malicious code in json-mapping-web (npm)	2026-01-28T03:24:26Z	2026-02-02T05:56:28Z
mal-2026-550	Malicious code in cdnhost (npm)	2026-01-28T03:21:37Z	2026-02-02T05:56:26Z
MAL-2026-550	Malicious code in cdnhost (npm)	2026-01-28T03:21:37Z	2026-02-02T05:56:26Z
mal-2026-549	Malicious code in blockchain-helper-lib (npm)	2026-01-28T03:20:46Z	2026-02-02T05:56:26Z
MAL-2026-549	Malicious code in blockchain-helper-lib (npm)	2026-01-28T03:20:46Z	2026-02-02T05:56:26Z
mal-2026-548	Malicious code in tabletas (PyPI)	2026-01-27T18:26:01Z	2026-01-28T19:13:29Z
MAL-2026-548	Malicious code in tabletas (PyPI)	2026-01-27T18:26:01Z	2026-01-28T19:13:29Z

ID	Description	Published	Updated
wid-sec-w-2025-1244	Wireshark: Schwachstelle ermöglicht Denial of Service	2025-06-04T22:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-1243	Synology DiskStation Manager: Schwachstelle ermöglicht Manipulation von Dateien	2025-06-04T22:00:00.000+00:00	2025-06-04T22:00:00.000+00:00
wid-sec-w-2025-1242	Cisco Unified Communications Produkte: Schwachstelle ermöglicht Codeausführung mit Root Rechten	2025-06-04T22:00:00.000+00:00	2025-06-04T22:00:00.000+00:00
wid-sec-w-2025-1241	Cisco Nexus Dashboard: Schwachstelle ermöglicht Offenlegung von Informationen	2025-06-04T22:00:00.000+00:00	2025-06-04T22:00:00.000+00:00
wid-sec-w-2025-1240	Cisco Integrated Management Controller: Schwachstelle ermöglicht Privilegieneskalation	2025-06-04T22:00:00.000+00:00	2025-06-04T22:00:00.000+00:00
wid-sec-w-2025-1239	Cisco Identity Services Engine (ISE): Schwachstelle ermöglicht Unsicheres Erzeugen von temporären Dateien	2025-06-04T22:00:00.000+00:00	2025-06-04T22:00:00.000+00:00
wid-sec-w-2025-1238	Cisco Identity Services Engine (ISE) Cloud Platforms: Schwachstelle ermöglicht erlangen von Admin Rechten	2025-06-04T22:00:00.000+00:00	2025-06-04T22:00:00.000+00:00
wid-sec-w-2025-1237	Cisco Unified Intelligent Contact Management Enterprise: Schwachstelle ermöglicht Cross-Site Scripting	2025-06-04T22:00:00.000+00:00	2025-06-04T22:00:00.000+00:00
wid-sec-w-2025-1236	Dell PowerScale: Mehrere Schwachstellen	2025-06-03T22:00:00.000+00:00	2025-06-03T22:00:00.000+00:00
wid-sec-w-2025-1231	Python: Mehrere Schwachstellen	2025-06-03T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-1230	libxml2: Mehrere Schwachstellen ermöglichen Denial of Service	2025-06-03T22:00:00.000+00:00	2025-06-03T22:00:00.000+00:00
wid-sec-w-2025-1229	ZScaler Client Connector für MacOS: Schwachstelle ermöglicht Privilegieneskalation	2025-06-03T22:00:00.000+00:00	2025-06-03T22:00:00.000+00:00
wid-sec-w-2025-1228	cURL: Schwachstelle ermöglicht Denial of Service	2025-06-03T22:00:00.000+00:00	2025-06-04T22:00:00.000+00:00
wid-sec-w-2025-1227	Samsung Android: Mehrere Schwachstellen	2025-06-03T22:00:00.000+00:00	2025-06-03T22:00:00.000+00:00
wid-sec-w-2025-1226	Axis Axis OS: Mehrere Schwachstellen	2025-06-02T22:00:00.000+00:00	2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1225	Android Patchday Juni 2025: Mehrere Schwachstellen	2025-06-02T22:00:00.000+00:00	2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1224	Extreme Networks HiveOS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-06-02T22:00:00.000+00:00	2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1223	Linksys Router: Mehrere Schwachstellen ermöglichen Ausführen von Kommandos mit Administratorrechten	2025-06-02T22:00:00.000+00:00	2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1222	Google Chrome / Microsoft Edge: Mehrere Schwachstellen	2025-06-02T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1221	Samba: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-06-02T22:00:00.000+00:00	2025-11-17T23:00:00.000+00:00
wid-sec-w-2025-1220	QT: Schwachstelle ermöglicht Denial of Service	2025-06-02T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1219	Splunk Splunk Enterprise: Mehrere Schwachstellen	2025-06-02T22:00:00.000+00:00	2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1218	Dell Computer: Schwachstelle ermöglicht Privilegieneskalation und Manipulation	2025-06-02T22:00:00.000+00:00	2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1217	Red Hat Enterprise Linux pymongo: Schwachstelle ermöglicht Denial of Service und Offenlegung	2025-06-02T22:00:00.000+00:00	2025-06-03T22:00:00.000+00:00
wid-sec-w-2025-1216	SolarWinds Dameware: Schwachstelle ermöglicht Privilegieneskalation	2025-06-02T22:00:00.000+00:00	2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1215	OWASP ModSecurity: Schwachstelle ermöglicht Denial of Service	2025-06-02T22:00:00.000+00:00	2025-08-12T22:00:00.000+00:00
wid-sec-w-2025-1214	Cisco Meraki MX: Mehrere Schwachstellen ermöglichen Denial of Service	2025-06-02T22:00:00.000+00:00	2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1213	Red Hat Enterprise Linux (cmark-gfm): Schwachstelle ermöglicht Denial of Service	2025-06-02T22:00:00.000+00:00	2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1209	IGEL OS 10: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-06-02T22:00:00.000+00:00	2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1208	Roundcube: Schwachstelle ermöglicht Codeausführung	2025-06-01T22:00:00.000+00:00	2025-06-19T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2026:0266	Red Hat Security Advisory: postgresql:15 security update	2026-01-08T00:40:52+00:00	2026-02-02T21:27:17+00:00
rhsa-2026:0265	Red Hat Security Advisory: postgresql:13 security update	2026-01-08T00:35:37+00:00	2026-02-02T21:27:15+00:00
rhsa-2026:0263	Red Hat Security Advisory: postgresql security update	2026-01-08T00:18:42+00:00	2026-02-02T21:27:14+00:00
rhsa-2026:0261	Red Hat Security Advisory: Red Hat Developer Hub 1.7.4 release.	2026-01-07T18:34:52+00:00	2026-02-21T19:26:14+00:00
rhsa-2026:0251	Red Hat Security Advisory: libpng security update	2026-01-07T16:09:27+00:00	2026-02-03T20:02:49+00:00
rhsa-2026:0247	Red Hat Security Advisory: mariadb:10.11 security update	2026-01-07T15:09:41+00:00	2026-01-15T16:00:38+00:00
rhsa-2026:0250	Red Hat Security Advisory: gimp:2.8 security update	2026-01-07T15:08:46+00:00	2026-01-13T22:07:47+00:00
rhsa-2026:0246	Red Hat Security Advisory: grafana security update	2026-01-07T14:46:41+00:00	2026-02-21T13:34:35+00:00
rhsa-2026:0245	Red Hat Security Advisory: grafana security update	2026-01-07T14:45:51+00:00	2026-02-21T13:34:34+00:00
rhsa-2026:0243	Red Hat Security Advisory: grafana security update	2026-01-07T14:43:26+00:00	2026-02-21T13:34:33+00:00
rhsa-2026:0244	Red Hat Security Advisory: grafana security update	2026-01-07T14:38:56+00:00	2026-02-21T13:34:33+00:00
rhsa-2026:0241	Red Hat Security Advisory: libpng security update	2026-01-07T14:21:46+00:00	2026-02-19T13:36:57+00:00
rhsa-2026:0238	Red Hat Security Advisory: libpng security update	2026-01-07T13:43:11+00:00	2026-02-19T13:36:54+00:00
rhsa-2026:0237	Red Hat Security Advisory: libpng security update	2026-01-07T13:29:16+00:00	2026-02-19T13:36:55+00:00
rhsa-2026:0233	Red Hat Security Advisory: mariadb:10.5 security update	2026-01-07T13:18:51+00:00	2026-01-15T16:00:43+00:00
rhsa-2026:0232	Red Hat Security Advisory: mariadb:10.11 security update	2026-01-07T13:18:43+00:00	2026-01-15T16:00:43+00:00
rhsa-2026:0234	Red Hat Security Advisory: libpng security update	2026-01-07T13:03:31+00:00	2026-02-19T13:36:45+00:00
rhsa-2026:0210	Red Hat Security Advisory: libpng security update	2026-01-07T13:02:56+00:00	2026-02-19T13:36:44+00:00
rhsa-2026:0211	Red Hat Security Advisory: libpng security update	2026-01-07T12:57:50+00:00	2026-02-19T13:36:42+00:00
rhsa-2026:0226	Red Hat Security Advisory: osbuild-composer security update	2026-01-07T12:46:50+00:00	2026-02-21T13:34:31+00:00
rhsa-2026:0225	Red Hat Security Advisory: mariadb:10.3 security update	2026-01-07T11:52:55+00:00	2026-01-15T16:00:41+00:00
rhsa-2026:0227	Red Hat Security Advisory: osbuild-composer security update	2026-01-07T11:32:40+00:00	2026-02-21T13:34:32+00:00
rhsa-2026:0216	Red Hat Security Advisory: libpng security update	2026-01-07T11:23:35+00:00	2026-02-19T13:36:46+00:00
rhsa-2026:0224	Red Hat Security Advisory: git-lfs security update	2026-01-07T10:20:45+00:00	2026-01-13T22:08:17+00:00
rhsa-2026:0212	Red Hat Security Advisory: libpng security update	2026-01-07T09:24:35+00:00	2026-02-19T13:36:48+00:00
rhsa-2025:23113	Red Hat Security Advisory: OpenShift Container Platform 4.15.60 bug fix and security update	2026-01-07T07:16:55+00:00	2026-02-21T19:23:21+00:00
rhsa-2026:0204	Red Hat Security Advisory: git-lfs security update	2026-01-07T05:45:24+00:00	2026-01-13T22:14:38+00:00
rhsa-2026:0203	Red Hat Security Advisory: git-lfs security update	2026-01-07T05:31:09+00:00	2026-01-13T22:14:50+00:00
rhsa-2026:0199	Red Hat Security Advisory: git-lfs security update	2026-01-07T04:46:49+00:00	2026-01-13T22:11:46+00:00
rhsa-2026:0173	Red Hat Security Advisory: kernel security update	2026-01-07T01:07:25+00:00	2026-02-04T12:57:16+00:00

ID	Description	Published	Updated
icsa-24-214-04	Johnson Controls exacqVision Web Service	2024-08-01T06:00:00.000000Z	2024-08-01T06:00:00.000000Z
icsa-24-214-03	Johnson Controls exacqVision Web Service	2024-08-01T06:00:00.000000Z	2024-08-01T06:00:00.000000Z
icsa-24-214-02	Johnson Controls exacqVision Server web service	2024-08-01T06:00:00.000000Z	2024-08-01T06:00:00.000000Z
icsa-24-214-01	Johnson Controls exacqVision client and exacqVision server	2024-08-01T06:00:00.000000Z	2024-08-01T06:00:00.000000Z
icsa-24-207-02	Positron Broadcast Signal Processor	2024-07-25T06:00:00.000000Z	2024-07-25T06:00:00.000000Z
icsa-24-205-03	National Instruments LabVIEW	2024-07-23T06:00:00.000000Z	2024-07-23T06:00:00.000000Z
icsa-24-205-02	Hitachi Energy AFS/AFR Series Products	2024-07-23T06:00:00.000000Z	2024-07-23T06:00:00.000000Z
icsa-24-205-01	National Instruments IO Trace	2024-07-23T06:00:00.000000Z	2024-07-23T06:00:00.000000Z
icsa-24-207-01	Siemens SICAM Products	2024-07-22T00:00:00.000000Z	2024-07-22T00:00:00.000000Z
va-24-201-01	Adminer and AdminerEvo Multiple Vulnerabilities	2024-07-19T16:00:00Z	2024-11-14T17:00:00Z
icsma-24-200-01	Philips Vue PACS (Update A)	2024-07-18T06:00:00.000000Z	2024-11-21T07:00:00.000000Z
icsa-24-200-02	Subnet Solutions PowerSYSTEM Center	2024-07-18T06:00:00.000000Z	2024-07-18T06:00:00.000000Z
icsa-24-200-01	Mitsubishi Electric MELSOFT MaiLab and MELSOFT VIXIO (Update A)	2024-07-18T06:00:00.000000Z	2025-05-15T06:00:00.000000Z
icsa-24-198-01	Rockwell Automation Pavilion 8	2024-07-16T06:00:00.000000Z	2024-07-16T06:00:00.000000Z
icsa-24-193-20	HMS Industrial Networks Anybus-CompactCom 30	2024-07-11T06:00:00.000000Z	2024-07-11T06:00:00.000000Z
icsa-24-193-19	Rockwell Automation FactoryTalk System Services and Policy Manager	2024-07-11T06:00:00.000000Z	2024-07-11T06:00:00.000000Z
icsa-24-193-18	Rockwell Automation ThinManager ThinServer	2024-07-11T06:00:00.000000Z	2024-07-11T06:00:00.000000Z
icsa-24-191-05	Johnson Controls Inc. Software House C●CURE 9000 (Update B)	2024-07-09T06:00:00.000000Z	2025-07-17T06:00:00.000000Z
icsa-24-191-04	Johnson Controls Inc. Software House C●CURE 9000	2024-07-09T06:00:00.000000Z	2024-07-09T06:00:00.000000Z
icsa-24-191-03	Johnson Controls Illustra Pro Gen 4	2024-07-09T06:00:00.000000Z	2024-07-09T06:00:00.000000Z
icsa-24-191-02	Mitsubishi Electric MELIPC Series MI5122-VW	2024-07-09T06:00:00.000000Z	2024-07-09T06:00:00.000000Z
icsa-24-191-01	Delta Electronics CNCSoft-G2 (Update A)	2024-07-09T06:00:00.000000Z	2025-02-18T07:00:00.000000Z
icsa-25-112-03	Schneider Electric Wiser Home Controller WHC-5918A	2024-07-09T00:00:00.000000Z	2026-01-30T07:00:00.000000Z
icsa-24-345-03	Schneider Electric FoxRTU Station	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-345-02	Schneider Electric EcoStruxure Foxboro DCS Core Control Services	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-17	Siemens SIMATIC STEP 7 (TIA Portal)	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-16	Siemens SIMATIC WinCC	2024-07-09T00:00:00.000000Z	2024-11-12T00:00:00.000000Z
icsa-24-193-15	Siemens SINEMA Remote Connect Server	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-14	Siemens SIPROTEC	2024-07-09T00:00:00.000000Z	2025-11-11T00:00:00.000000Z
icsa-24-193-13	Siemens TIA Portal, SIMATIC, and SIRIUS	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-ap-ip-flood-dos-6hxxenvq	Cisco Embedded Wireless Controller with Catalyst Access Points IP Flood Denial of Service Vulnerability	2022-04-13T16:00:00+00:00	2022-04-13T16:00:00+00:00
cisco-sa-wsa-stored-xss-xpsjghmy	Cisco Web Security Appliance Stored Cross-Site Scripting Vulnerability	2022-04-06T16:00:00+00:00	2022-04-06T16:00:00+00:00
cisco-sa-webex-java-mvx6crh9	Cisco Webex Meetings Java Deserialization Vulnerability	2022-04-06T16:00:00+00:00	2022-04-06T16:00:00+00:00
cisco-sa-voip-phone-csrf-k56vxvvx	Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Cross-Site Request Forgery Vulnerability	2022-04-06T16:00:00+00:00	2022-10-28T14:20:37+00:00
cisco-sa-swa-filter-bypass-xxxtu3x	Cisco Web Security Appliance Filter Bypass Vulnerability	2022-04-06T16:00:00+00:00	2022-04-06T16:00:00+00:00
cisco-sa-sna-xss-mca9tqnj	Cisco Secure Network Analytics Network Diagrams Application Cross-Site Scripting Vulnerability	2022-04-06T16:00:00+00:00	2022-04-06T16:00:00+00:00
cisco-sa-info-exp-yxawyp3s	Cisco Identity Services Engine Sensitive Information Disclosure Vulnerability	2022-04-06T16:00:00+00:00	2022-04-06T16:00:00+00:00
cisco-sa-esa-snmp-jlajkswk	Multiple Cisco Security Products Simple Network Management Protocol Service Denial of Service Vulnerability	2022-04-06T16:00:00+00:00	2022-04-06T16:00:00+00:00
cisco-sa-java-spring-scf-rce-dqrhhjxh	Vulnerability in Spring Cloud Function Framework Affecting Cisco Products: March 2022	2022-04-01T23:45:00+00:00	2022-04-15T15:31:28+00:00
cisco-sa-java-spring-rce-zx9guc67	Vulnerability in Spring Framework Affecting Cisco Products: March 2022	2022-04-01T23:45:00+00:00	2023-02-09T15:14:14+00:00
cisco-sa-uccsmi-prvesc-bqhge4cm	Cisco Ultra Cloud Core - Subscriber Microservices Infrastructure Privilege Escalation Vulnerability	2022-03-02T16:00:00+00:00	2022-03-02T16:00:00+00:00
cisco-sa-staros-cmdinj-759mnt4n	Cisco StarOS Command Injection Vulnerability	2022-03-02T16:00:00+00:00	2022-03-02T16:00:00+00:00
cisco-sa-ise-dos-jlh9txbp	Cisco Identity Services Engine RADIUS Service Denial of Service Vulnerability	2022-03-02T16:00:00+00:00	2022-03-03T18:35:40+00:00
cisco-sa-expressway-filewrite-87q5yrk	Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities	2022-03-02T16:00:00+00:00	2022-03-02T16:00:00+00:00
cisco-sa-nxos-nxapi-cmdinject-uluknmz2	Cisco NX-OS Software NX-API Command Injection Vulnerability	2022-02-23T16:00:00+00:00	2022-02-23T16:00:00+00:00
cisco-sa-nxos-bfd-dos-wgqxrzxn	Cisco Nexus 9000 Series Switches Bidirectional Forwarding Detection Denial of Service Vulnerability	2022-02-23T16:00:00+00:00	2022-03-23T15:41:48+00:00
cisco-sa-cfsoip-dos-tpykydr	Cisco NX-OS Software Cisco Fabric Services Over IP Denial of Service Vulnerability	2022-02-23T16:00:00+00:00	2022-02-23T16:00:00+00:00
cisco-sa-cdp-dos-g8dplwyg	Cisco FXOS and NX-OS Software Cisco Discovery Protocol Service Denial of Service Vulnerability	2022-02-23T16:00:00+00:00	2022-03-01T17:35:44+00:00
cisco-sa-rcm-tcp-dos-2wh8xjaq	Cisco Redundancy Configuration Manager for Cisco StarOS Software TCP Denial of Service Vulnerability	2022-02-16T16:00:00+00:00	2022-02-16T16:00:00+00:00
cisco-sa-pi-epnm-xss-p8fbz2fw	Cisco Prime Infrastructure and Evolved Programmable Network Manager Cross-Site Scripting Vulnerability	2022-02-16T16:00:00+00:00	2022-02-16T16:00:00+00:00
cisco-sa-esa-dos-mxzvgtgu	Cisco Email Security Appliance DNS Verification Denial of Service Vulnerability	2022-02-16T16:00:00+00:00	2022-02-25T19:22:29+00:00
cisco-sa-swg-fbyps-3z4qt7p	Cisco Umbrella Secure Web Gateway File Inspection Bypass Vulnerability	2022-02-02T16:00:00+00:00	2022-02-02T16:00:00+00:00
cisco-sa-smb-mult-vuln-ka9pk6d	Cisco Small Business RV Series Routers Vulnerabilities	2022-02-02T16:00:00+00:00	2022-02-14T13:54:42+00:00
cisco-sa-dnac-info-disc-8qeynkej	Cisco DNA Center Information Disclosure Vulnerability	2022-02-02T16:00:00+00:00	2022-02-04T20:22:37+00:00
cisco-sa-cpsc-info-disc-zkjbdj9f	Cisco Prime Service Catalog Information Disclosure Vulnerability	2022-02-02T16:00:00+00:00	2022-02-02T16:00:00+00:00
cisco-sa-webex-xss-fmbpu2pe	Cisco Webex Meetings Cross-Site Scripting Vulnerability	2022-01-19T16:00:00+00:00	2022-01-19T16:00:00+00:00
cisco-sa-snort-dos-9d3hjluj	Multiple Cisco Products Snort Modbus Denial of Service Vulnerability	2022-01-19T16:00:00+00:00	2022-04-26T19:41:55+00:00
cisco-sa-rcm-vuls-7cs3nuq	Cisco Redundancy Configuration Manager for Cisco StarOS Software Multiple Vulnerabilities	2022-01-19T16:00:00+00:00	2022-01-19T16:00:00+00:00
cisco-sa-confdcli-cmdinj-wybqdssh	ConfD CLI Command Injection Vulnerability	2022-01-19T16:00:00+00:00	2022-01-19T16:00:00+00:00
cisco-sa-cli-cmdinj-4mttwzpb	Multiple Cisco Products CLI Command Injection Vulnerability	2022-01-19T16:00:00+00:00	2022-01-19T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-40187	net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce()	2025-11-02T00:00:00.000Z	2025-12-07T01:51:43.000Z
msrc_cve-2025-40180	mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop	2025-11-02T00:00:00.000Z	2026-02-18T14:14:02.000Z
msrc_cve-2025-40179	ext4: verify orphan file size is not too big	2025-11-02T00:00:00.000Z	2025-12-07T01:51:03.000Z
msrc_cve-2025-40178	pid: Add a judgment for ns null in pid_nr_ns	2025-11-02T00:00:00.000Z	2025-12-07T01:51:49.000Z
msrc_cve-2025-40176	tls: wait for pending async decryptions if tls_strp_msg_hold fails	2025-11-02T00:00:00.000Z	2025-12-07T01:50:46.000Z
msrc_cve-2025-40173	net/ip6_tunnel: Prevent perpetual tunnel growth	2025-11-02T00:00:00.000Z	2025-12-07T01:50:19.000Z
msrc_cve-2025-40172	accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages()	2025-11-02T00:00:00.000Z	2025-11-13T01:02:30.000Z
msrc_cve-2025-40170	net: use dst_dev_rcu() in sk_setup_caps()	2025-11-02T00:00:00.000Z	2026-02-18T14:11:40.000Z
msrc_cve-2025-40168	smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match().	2025-11-02T00:00:00.000Z	2026-02-18T14:10:50.000Z
msrc_cve-2025-40167	ext4: detect invalid INLINE_DATA + EXTENTS flag combination	2025-11-02T00:00:00.000Z	2025-12-07T01:49:17.000Z
msrc_cve-2025-40165	media: nxp: imx8-isi: m2m: Fix streaming cleanup on release	2025-11-02T00:00:00.000Z	2025-11-13T01:02:47.000Z
msrc_cve-2025-40164	usbnet: Fix using smp_processor_id() in preemptible code warnings	2025-11-02T00:00:00.000Z	2026-02-18T14:10:26.000Z
msrc_cve-2025-40158	ipv6: use RCU in ip6_output()	2025-11-02T00:00:00.000Z	2026-02-18T14:12:03.000Z
msrc_cve-2025-40149	tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock().	2025-11-02T00:00:00.000Z	2026-02-18T14:09:31.000Z
msrc_cve-2025-40146	blk-mq: fix potential deadlock while nr_requests grown	2025-11-02T00:00:00.000Z	2026-02-18T14:09:53.000Z
msrc_cve-2025-40139	smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set().	2025-11-02T00:00:00.000Z	2026-02-18T14:09:01.000Z
msrc_cve-2025-40136	crypto: hisilicon/qm - request reserved interrupt for virtual function	2025-11-02T00:00:00.000Z	2025-11-25T01:40:44.000Z
msrc_cve-2025-40135	ipv6: use RCU in ip6_xmit()	2025-11-02T00:00:00.000Z	2026-02-18T14:08:39.000Z
msrc_cve-2025-40111	drm/vmwgfx: Fix Use-after-free in validation	2025-11-02T00:00:00.000Z	2025-12-07T01:49:08.000Z
msrc_cve-2025-40110	drm/vmwgfx: Fix a null-ptr access in the cursor snooper	2025-11-02T00:00:00.000Z	2025-12-07T01:49:00.000Z
msrc_cve-2025-40109	crypto: rng - Ensure set_ent is always present	2025-11-02T00:00:00.000Z	2025-11-10T01:03:03.000Z
msrc_cve-2025-40107	can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled	2025-11-02T00:00:00.000Z	2025-11-04T01:01:14.000Z
msrc_cve-2025-31133	runc container escape via "masked path" abuse due to mount race conditions	2025-11-02T00:00:00.000Z	2025-12-17T14:35:21.000Z
msrc_cve-2025-2486	UEFI Shell accessible in AAVMF with Secure Boot enabled on Ubuntu	2025-11-02T00:00:00.000Z	2026-01-13T01:41:34.000Z
msrc_cve-2025-13601	Glib: integer overflow in in g_escape_uri_string()	2025-11-02T00:00:00.000Z	2025-12-02T01:35:13.000Z
msrc_cve-2025-13230	Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	2025-11-02T00:00:00.000Z	2026-02-18T14:26:06.000Z
msrc_cve-2025-13227	Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	2025-11-02T00:00:00.000Z	2026-02-18T14:27:08.000Z
msrc_cve-2025-13226	Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	2025-11-02T00:00:00.000Z	2026-02-18T14:26:43.000Z
msrc_cve-2025-13193	Libvirt: information disclosure via world-readable vm snapshots	2025-11-02T00:00:00.000Z	2025-12-07T01:38:09.000Z
msrc_cve-2025-13120	mruby array.c sort_cmp use after free	2025-11-02T00:00:00.000Z	2025-11-25T01:37:47.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
osv-2023-936	Heap-buffer-overflow in Gfx::decode_bmp_pixel_data	2023-09-30T14:00:38.870417Z	2023-09-30T14:00:38.870801Z
osv-2023-930	Heap-buffer-overflow in OT::cvar::decompile_tuple_variations	2023-09-29T14:02:21.147998Z	2023-09-29T14:02:21.148306Z
osv-2023-920	Security exception in com.github.javaparser.GeneratedJavaParser.Expression	2023-09-28T14:00:20.646633Z	2023-09-28T14:00:20.647008Z
osv-2023-905	Segv on unknown address in icu_74::UnicodeString::copyFrom	2023-09-24T14:02:51.344190Z	2023-09-24T14:02:51.344511Z
osv-2023-903	Heap-double-free in snmp_e2e_fuzzer.c	2023-09-23T14:02:30.314018Z	2023-09-23T14:02:30.314305Z
osv-2023-901	UNKNOWN READ in icu_74::RelativeDateTimeFormatter::formatRelativeImpl	2023-09-23T14:01:24.733487Z	2023-09-23T14:01:24.733779Z
osv-2023-899	Heap-buffer-overflow in cosm_create_key	2023-09-23T14:00:56.859961Z	2023-09-23T14:00:56.860254Z
osv-2023-896	UNKNOWN READ in deliver_chunked_chunks	2023-09-23T14:00:44.781770Z	2023-09-23T14:00:44.782064Z
osv-2023-894	Heap-double-free in dwg_free_object	2023-09-22T14:01:18.317891Z	2023-09-22T14:01:18.318214Z
osv-2023-890	Heap-use-after-free in dwarf_dealloc	2023-09-21T14:01:03.576514Z	2023-09-21T14:01:03.576815Z
osv-2023-889	Heap-double-free in regcomp	2023-09-21T14:00:59.739088Z	2023-09-21T14:00:59.739382Z
osv-2023-885	UNKNOWN READ in bytes1_char_at	2023-09-20T14:02:30.557328Z	2023-09-20T14:02:30.557630Z
osv-2023-883	Security exception in org.apache.lucene.util.ArrayUtil.copyOfSubArray	2023-09-20T14:01:10.331831Z	2023-09-20T14:01:10.332151Z
osv-2023-881	Heap-buffer-overflow in read_tmpl	2023-09-19T14:01:22.611246Z	2023-09-19T14:01:22.611560Z
osv-2023-877	Heap-buffer-overflow in btf_ensure_modifiable	2023-09-18T14:02:44.989260Z	2026-02-04T14:10:33.449942Z
osv-2023-874	Memcpy-param-overlap in bit_u_expand	2023-09-18T14:01:11.020858Z	2023-09-18T14:01:11.021190Z
osv-2023-873	UNKNOWN WRITE in icu_74::Calendar::set	2023-09-18T14:00:31.769072Z	2023-09-18T14:00:31.769380Z
osv-2023-872	Security exception in org.springframework.expression.spel.ast.OpPlus.getValueInternal	2023-09-18T14:00:10.451327Z	2023-09-18T14:00:10.451623Z
osv-2023-870	Heap-buffer-overflow in icu_74::SimpleDateFormat::subFormat	2023-09-17T14:01:25.114159Z	2023-09-17T14:01:25.114447Z
osv-2023-869	Heap-buffer-overflow in Assimp::MD5::MD5MeshParser::MD5MeshParser	2023-09-17T14:01:25.028324Z	2026-01-25T14:13:45.937535Z
osv-2023-867	Negative-size-param in http_cb	2023-09-16T14:02:46.648990Z	2023-09-16T14:02:46.649266Z
osv-2023-865	UNKNOWN in WasmEdge::Loader::SharedLibrary::load	2023-09-16T14:02:40.468661Z	2023-09-16T14:02:40.468956Z
osv-2023-862	Heap-use-after-free in g_datalist_get_flags	2023-09-16T14:01:07.280790Z	2025-01-10T05:49:31.753574Z
osv-2023-857	Segv on unknown address in FunctionCompiler::compileReturn	2023-09-15T14:02:42.221599Z	2023-09-15T14:02:42.222010Z
osv-2023-855	Heap-double-free in dwg_free_common_entity_data	2023-09-15T14:01:06.818081Z	2024-04-27T14:22:00.114824Z
osv-2023-850	Heap-buffer-overflow in bit_TV_to_utf8	2023-09-15T14:00:33.303768Z	2023-09-15T14:00:33.304088Z
osv-2023-849	Stack-buffer-overflow in ulocimp_toLanguageTag_74	2023-09-15T14:00:28.699483Z	2023-09-15T14:00:28.699782Z
osv-2023-844	Heap-buffer-overflow in Video::VP9::Decoder::create_video_frame	2023-09-14T14:00:27.712533Z	2023-09-14T14:00:27.712843Z
osv-2023-840	Null-dereference READ in isvcd_parse_inter_slice_data_cavlc_enh_lyr	2023-09-13T14:01:19.214532Z	2023-09-13T14:01:19.214860Z
osv-2023-839	Global-buffer-overflow in iusace_quantize_lines	2023-09-12T14:01:48.491847Z	2023-09-12T14:01:48.492091Z

ID	Description	Published	Updated
rustsec-2020-0022	Ozone contains several memory safety issues	2020-07-04T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0052	Undefined Behavior in bounded channel	2020-06-26T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0026	linked-hash-map creates uninitialized NonNull pointer	2020-06-23T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0167	`pnet_packet` buffer overrun in `set_payload` setters	2020-06-19T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0031	HTTP Request smuggling through malformed Transfer Encoding headers	2020-06-16T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0029	Allows viewing and modifying arbitrary structs as bytes	2020-06-14T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0157	Improper Synchronization and Race Condition in vm-memory	2020-06-02T12:00:00Z	2021-09-10T15:50:27Z
rustsec-2020-0027	traitobject assumes the layout of fat pointers	2020-06-01T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0100	Double free when calling `sys_info::disk_info` from multiple threads	2020-05-31T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0017	Use after free in ArcIntern::drop	2020-05-28T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0028	`LocalRequest::clone` creates multiple mutable references to the same object	2020-05-27T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0018	crate has been renamed to `block-cipher`	2020-05-26T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2020-0019	tokio-rustls reads may cause excessive memory usage	2020-05-19T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0021	rio allows a use-after-free buffer access when a future is leaked	2020-05-11T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0161	`array!` macro is unsound in presence of traits that implement methods it calls internally	2020-05-07T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0025	bigint is unmaintained, use uint instead	2020-05-07T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0056	stdweb is unmaintained	2020-05-04T12:00:00Z	2020-10-25T18:57:46Z
rustsec-2020-0061	futures_task::noop_waker_ref can segfault due to dereferencing a NULL pointer	2020-05-03T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0036	failure is officially deprecated/unmaintained	2020-05-02T12:00:00Z	2024-02-10T15:57:43Z
rustsec-2020-0016	`net2` crate has been deprecated; use `socket2` instead	2020-05-01T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2020-0015	Crash causing Denial of Service attack	2020-04-25T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0013	fake-static allows converting any reference into a `'static` reference	2020-04-24T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0012	Relies on undefined behavior of `char::from_u32_unchecked`	2020-04-24T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0014	Various memory safety issues	2020-04-23T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0011	Library exclusively intended to obfuscate code.	2020-04-23T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0020	`stb_truetype` crate has been deprecated; use `ttf-parser` instead	2020-04-18T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2020-0009	`read_scalar` and `read_scalar_at` allow transmuting values without `unsafe` blocks	2020-04-11T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0146	arr! macro erases lifetimes	2020-04-09T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0007	use-after or double free of allocated memory	2020-03-27T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0006	Flaw in `realloc` allows reading unknown memory	2020-03-24T12:00:00Z	2023-06-13T13:10:24Z

ID	Description	Published	Updated
bit-tomcat-2025-48988	Apache Tomcat: FileUpload large number of parts with headers DoS	2025-07-10T10:47:06.961Z	2025-11-06T13:25:46.476Z
bit-tomcat-2025-46701	Apache Tomcat: Security constraint bypass for CGI scripts	2025-07-10T10:47:00.568Z	2025-11-06T13:25:46.476Z
bit-tomcat-2025-31651	Apache Tomcat: Bypass of rules in Rewrite Valve	2025-07-10T10:46:54.240Z	2025-11-06T13:25:46.476Z
bit-tomcat-2025-24813	Apache Tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT	2025-07-10T10:46:47.051Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-56337	Apache Tomcat: RCE due to TOCTOU issue in JSP compilation - CVE-2024-50379 mitigation was incomplete	2025-07-10T10:46:39.151Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-54677	Apache Tomcat: DoS in examples web application	2025-07-10T10:46:30.955Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-52316	Apache Tomcat: Authentication bypass when using Jakarta Authentication API	2025-07-10T10:46:05.150Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-50379	Apache Tomcat: RCE due to TOCTOU issue in JSP compilation	2025-07-10T10:45:55.643Z	2025-11-06T13:25:46.476Z
bit-python-2025-4517	Arbitrary writes via tarfile realpath overflow	2025-07-10T09:02:40.800Z	2025-07-10T09:19:12.756Z
bit-python-2025-4435	Tarfile extracts filtered members when errorlevel=0	2025-07-10T09:02:32.309Z	2025-07-10T09:19:12.756Z
bit-python-2025-4330	Extraction filter bypass for linking outside extraction directory	2025-07-10T09:02:28.407Z	2025-07-10T09:19:12.756Z
bit-python-2025-4138	Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory	2025-07-10T09:02:24.495Z	2025-07-10T09:19:12.756Z
bit-python-2024-12718	Bypass extraction filter to modify file metadata outside extraction directory	2025-07-10T09:01:38.394Z	2025-07-10T09:19:12.756Z
bit-moodle-2025-53021		2025-07-10T06:00:29.762Z	2025-08-20T09:06:12.327Z
bit-helm-2025-53547	Helm Chart Dependency Updating With Malicious Chart.yaml Content And Symlink Can Lead To Code Execution	2025-07-10T05:43:09.073Z	2025-09-04T09:06:08.228Z
bit-git-2025-48386	Git allows a buffer overflow in 'wincred' credential helper	2025-07-10T05:40:43.979Z	2025-11-06T13:25:46.476Z
bit-git-2025-48385	Git alllows arbitrary file writes via bundle-uri parameter injection	2025-07-10T05:40:40.066Z	2025-11-06T13:25:46.476Z
bit-git-2025-48384	Git allows arbitrary code execution through broken config quoting	2025-07-10T05:40:36.268Z	2025-11-06T13:25:46.476Z
bit-appsmith-2024-55965		2025-07-09T05:35:58.647Z	2025-07-09T06:18:38.715Z
bit-modsecurity2-2025-52891	ModSecurity empty XML tag causes segmentation fault	2025-07-04T07:42:25.055Z	2025-07-04T08:10:20.098Z
bit-modsecurity-2025-52891	ModSecurity empty XML tag causes segmentation fault	2025-07-04T07:41:54.070Z	2025-07-04T08:10:20.098Z
bit-apisix-2025-46647	Apache APISIX: improper validation of issuer from introspection discovery url in plugin openid-connect	2025-07-04T07:28:48.965Z	2025-11-06T13:25:46.476Z
bit-pillow-2025-48379	Pillow Vulnerable to Write Buffer Overflow on BCn encoding	2025-07-03T05:57:27.923Z	2025-10-16T18:08:44.835Z
bit-discourse-2025-48954	Discourse vulnerable to XSS via user-provided query parameter in oauth failure flow	2025-07-01T17:44:46.702Z	2025-11-13T11:23:28.166Z
bit-discourse-2025-49845	Discourse users are able to see their own whispers even after being removed from a group that has been configured to see whispers	2025-07-01T08:03:12.143Z	2025-07-01T08:34:59.038Z
bit-gitlab-2025-5846	Missing Authorization in GitLab	2025-06-30T15:16:31.446Z	2025-08-13T06:08:53.695Z
bit-gitlab-2025-5315	Missing Authorization in GitLab	2025-06-30T15:16:30.030Z	2025-06-30T15:17:30.405Z
bit-gitlab-2025-3279	Allocation of Resources Without Limits or Throttling in GitLab	2025-06-30T15:16:22.902Z	2025-06-30T15:17:30.405Z
bit-gitlab-2025-2938	Business Logic Errors in GitLab	2025-06-30T15:16:20.004Z	2025-08-13T06:08:53.695Z
bit-gitlab-2025-1754	Missing Authentication for Critical Function in GitLab	2025-06-30T15:16:00.562Z	2025-06-30T15:17:30.405Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201601-0030	The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in…	2024-07-23T20:39:22.908000Z
var-202203-0083	Non-transparent sharing of branch predictor within a context in some Intel(R) Processors …	2024-07-23T20:38:45.721000Z
var-202109-1315	A memory corruption issue was addressed with improved state management. This issue is fix…	2024-07-23T20:38:26.600000Z
var-201511-0101	The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows …	2024-07-23T20:38:26.767000Z
var-200609-0313	Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to…	2024-07-23T20:38:25.677000Z
var-201710-1408	An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo…	2024-07-23T20:38:20.584000Z
var-201812-0271	Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular e…	2024-07-23T20:38:14.990000Z
var-200804-0038	Cross-site scripting (XSS) vulnerability in Apple WebKit, as used in Safari before 3.1.1,…	2024-07-23T20:37:41.672000Z
var-200703-0030	Unspecified vulnerability in ImageIO in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 all…	2024-07-23T20:37:19.915000Z
var-200411-0172	The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, all…	2024-07-23T20:37:18.156000Z
var-202207-1358	When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out o…	2024-07-23T20:37:02.433000Z
var-202106-0344	Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user…	2024-07-23T20:37:01.572000Z
var-201205-0195	Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other produ…	2024-07-23T20:37:00.626000Z
var-201912-0535	A logic issue was addressed with improved state management. This issue is fixed in iOS 12…	2024-07-23T20:36:29.815000Z
var-201310-0355	Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, a…	2024-07-23T20:36:28.203000Z
var-201605-0037	The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0…	2024-07-23T20:35:57.230000Z
var-201203-0200	Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers …	2024-07-23T20:35:40.622000Z
var-201203-0174	Use-after-free vulnerability in Google Chrome before 17.0.963.83 allows remote attackers …	2024-07-23T20:35:40.553000Z
var-201902-0192	If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (…	2024-07-23T20:34:36.580000Z
var-201712-1100	An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari be…	2024-07-23T20:33:34.770000Z
var-202110-1685	This issue was addressed with improved checks. This issue is fixed in Security Update 202…	2024-07-23T20:33:31.079000Z
var-202210-0997	An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML docum…	2024-07-23T20:33:29.996000Z
var-201410-1217	Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in c…	2024-07-23T20:33:29.145000Z
var-201203-0180	Google Chrome before 18.0.1025.142 does not properly handle SVG text elements, which allo…	2024-07-23T20:33:25.333000Z
var-202004-1972	A race condition was addressed with additional validation. This issue is fixed in iOS 13.…	2024-07-23T20:33:16.245000Z
var-201006-1139	WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4…	2024-07-23T20:33:08.459000Z
var-201912-0606	An input validation issue was addressed with improved input validation. This issue is fix…	2024-07-23T20:33:06.757000Z
var-201912-0576	An out-of-bounds read was addressed with improved input validation. This issue is fixed i…	2024-07-23T20:33:05.700000Z
var-201409-1148	Off-by-one error in the read_token_word function in parse.y in GNU Bash through 4.3 bash4…	2024-07-23T20:33:04.791000Z
var-202209-0761	A buffer overflow issue was addressed with improved memory handling. This issue is fixed …	2024-07-23T20:32:59.056000Z

ID	Description	Published	Updated
jvndb-2022-000009	CSV+ vulnerable to cross-site scripting	2022-02-08T16:33+09:00	2022-02-08T16:33+09:00
jvndb-2022-000010	Multiple vulnerabilities in multiple ELECOM LAN routers	2022-02-08T16:13+09:00	2022-02-08T16:13+09:00
jvndb-2016-008013	Multiple ESET products for macOS vulnerable to improper server certificate verification	2022-02-07T14:18+09:00	2022-02-07T14:18+09:00
jvndb-2022-000007	Multiple vulnerabilities in TransmitMail	2022-01-25T15:31+09:00	2022-01-25T15:31+09:00
jvndb-2022-001097	Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux	2022-01-25T13:35+09:00	2022-01-25T13:35+09:00
jvndb-2022-001087	GROWI vulnerable to authorization bypass through user-controlled key	2022-01-24T14:07+09:00	2022-01-24T14:07+09:00
jvndb-2022-000006	Multiple cross-site scripting vulnerabilities in php_mailform	2022-01-20T15:42+09:00	2022-01-20T15:42+09:00
jvndb-2022-000001	Canon laser printers and small office multifunctional printers vulnerable to cross-site scripting	2022-01-19T14:00+09:00	2022-01-19T14:00+09:00
jvndb-2022-000005	PASSWORD MANAGER "MIRUPASS" PW10 / PW20 missing encryption	2022-01-13T15:26+09:00	2022-01-13T15:26+09:00
jvndb-2022-000004	Label printers "TEPRA" PRO SR5900P / SR-R7900P vulnerable to insufficiently protected credentials	2022-01-13T15:21+09:00	2022-01-13T15:21+09:00
jvndb-2022-000003	Jimoty App for Android uses a hard-coded API key for an external service	2022-01-12T15:37+09:00	2022-01-12T15:37+09:00
jvndb-2022-000002	Multiple vulnerabilities in WordPress Plugin "Quiz And Survey Master"	2022-01-12T15:33+09:00	2022-01-12T15:33+09:00
jvndb-2021-006146	Multiple vulnerabilities in KONICA MINOLTA MFPs and printing systems	2021-12-28T11:51+09:00	2021-12-28T11:51+09:00
jvndb-2021-006117	Multiple vulnerabilities in IDEC PLCs	2021-12-27T16:54+09:00	2022-01-11T16:36+09:00
jvndb-2021-006026	TP-Link TL-WR802N V4(JP) vulnerable to OS command injection	2021-12-24T15:31+09:00	2021-12-24T15:31+09:00
jvndb-2021-005998	Multiple vulnerabilities in QNAP VioStar NVR	2021-12-24T10:58+09:00	2021-12-24T10:58+09:00
jvndb-2021-003929	Multiple vulnerabilities in multiple Yamaha routers	2021-12-24T10:51+09:00	2021-12-24T10:51+09:00
jvndb-2021-000112	Android Apps developed using Yappli fails to restrict custom URL schemes properly	2021-12-22T15:07+09:00	2021-12-22T15:07+09:00
jvndb-2021-000111	Multiple vulnerabilities in GroupSession	2021-12-20T14:53+09:00	2021-12-21T14:20+09:00
jvndb-2021-000110	UNIVERGE DT Series vulnerable to missing encryption of sensitive data	2021-12-17T16:57+09:00	2021-12-17T16:57+09:00
jvndb-2021-005174	Multiple vulnerabilities in Trend Micro Security 2021 family (Consumer)	2021-12-09T13:43+09:00	2021-12-09T13:43+09:00
jvndb-2021-004912	Multiple vulnerabilities in multiple ELECOM routers	2021-12-02T17:16+09:00	2022-03-30T16:11+09:00
jvndb-2021-000109	Multiple missing authorization vulnerabilities in WordPress Plugin "Advanced Custom Fields"	2021-12-02T15:02+09:00	2022-02-18T16:18+09:00
jvndb-2021-000108	Multiple vulnerabilities in multiple ELECOM LAN routers	2021-11-30T16:23+09:00	2022-03-29T16:18+09:00
jvndb-2021-000107	Wi-Fi STATION SH-52A vulnerable to cross-site scripting	2021-11-30T14:49+09:00	2021-11-30T14:49+09:00
jvndb-2021-004716	Trend Micro Antivirus for MAC vulnerable to improper access controls	2021-11-29T13:52+09:00	2021-11-29T13:52+09:00
jvndb-2021-000106	Multiple vulnerabilities in baserCMS	2021-11-26T14:59+09:00	2021-11-26T14:59+09:00
jvndb-2021-000104	WordPress Plugin "Browser and Operating System Finder" vulnerable to cross-site request forgery	2021-11-25T14:31+09:00	2021-11-25T14:31+09:00
jvndb-2021-000105	PowerCMS XMLRPC API vulnerable to OS command injection	2021-11-24T15:47+09:00	2024-07-26T15:22+09:00
jvndb-2021-004432	Multiple Vulnerabilities in JP1/Automatic Operation	2021-11-22T16:10+09:00	2021-11-22T16:10+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:21042-1	Security update for containerd	2025-11-14T08:36:43Z	2025-11-14T08:36:43Z
suse-su-2025:4099-1	Security update for squid	2025-11-14T08:23:10Z	2025-11-14T08:23:10Z
suse-su-2025:4098-1	Security update for openssh8.4	2025-11-14T08:22:50Z	2025-11-14T08:22:50Z
suse-su-2025:4097-1	Security update for openssh	2025-11-14T08:22:38Z	2025-11-14T08:22:38Z
suse-su-2025:4096-1	Security update for binutils	2025-11-14T08:07:40Z	2025-11-14T08:07:40Z
suse-su-2025:4094-1	Security update for lasso	2025-11-13T23:34:47Z	2025-11-13T23:34:47Z
suse-su-2025:4091-1	Security update for cargo-packaging, rust-bindgen	2025-11-13T16:30:39Z	2025-11-13T16:30:39Z
suse-su-2025:21040-1	Security update for the Linux Kernel	2025-11-13T15:32:12Z	2025-11-13T15:32:12Z
suse-su-2025:21056-1	Security update for the Linux Kernel	2025-11-13T14:22:56Z	2025-11-13T14:22:56Z
suse-su-2025:4090-1	Security update for lasso	2025-11-13T13:02:47Z	2025-11-13T13:02:47Z
suse-su-2025:4087-1	Security update for netty, netty-tcnative	2025-11-12T19:35:11Z	2025-11-12T19:35:11Z
suse-su-2025:4086-1	Security update for tomcat11	2025-11-12T15:02:26Z	2025-11-12T15:02:26Z
suse-su-2025:4081-1	Security update for podman	2025-11-12T12:49:35Z	2025-11-12T12:49:35Z
suse-su-2025:4080-1	Security update for podman	2025-11-12T12:49:06Z	2025-11-12T12:49:06Z
suse-su-2025:4079-1	Security update for podman	2025-11-12T12:48:51Z	2025-11-12T12:48:51Z
suse-su-2025:4078-1	Security update for the Linux Kernel (Live Patch 22 for SUSE Linux Enterprise 15 SP5)	2025-11-12T11:09:52Z	2025-11-12T11:09:52Z
suse-su-2025:4077-1	Security update for runc	2025-11-12T10:36:08Z	2025-11-12T10:36:08Z
suse-su-2025:4076-1	Security update for buildah	2025-11-12T10:35:40Z	2025-11-12T10:35:40Z
suse-su-2025:4075-1	Security update for buildah	2025-11-12T10:35:24Z	2025-11-12T10:35:24Z
suse-su-2025:4074-1	Security update for buildah	2025-11-12T10:35:09Z	2025-11-12T10:35:09Z
suse-su-2025:4073-1	Security update for runc	2025-11-12T10:34:42Z	2025-11-12T10:34:42Z
suse-su-2025:4072-1	Security update for containerd	2025-11-12T10:33:38Z	2025-11-12T10:33:38Z
suse-su-2025:4068-1	Security update for lasso	2025-11-12T08:04:16Z	2025-11-12T08:04:16Z
suse-su-2025:4067-1	Security update for openssh	2025-11-12T08:03:27Z	2025-11-12T08:03:27Z
suse-su-2025:4064-1	Security update for the Linux Kernel (Live Patch 60 for SUSE Linux Enterprise 15 SP3)	2025-11-12T02:35:06Z	2025-11-12T02:35:06Z
suse-su-2025:4063-1	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP6)	2025-11-12T02:34:57Z	2025-11-12T02:34:57Z
suse-su-2025:4062-1	Security update for the Linux Kernel (Live Patch 29 for SUSE Linux Enterprise 15 SP5)	2025-11-11T18:36:41Z	2025-11-11T18:36:41Z
suse-su-2025:4059-1	Security update for the Linux Kernel (Live Patch 26 for SUSE Linux Enterprise 15 SP5)	2025-11-11T18:36:30Z	2025-11-11T18:36:30Z
suse-su-2025:4058-1	Security update for the Linux Kernel (Live Patch 71 for SUSE Linux Enterprise 12 SP5)	2025-11-11T18:36:17Z	2025-11-11T18:36:17Z
suse-su-2025:4057-1	Security update for the Linux Kernel	2025-11-11T18:36:09Z	2025-11-11T18:36:09Z

ID	Description	Published	Updated
cnvd-2025-31465	Google Android缺少权限检查漏洞	2025-12-10	2025-12-29
cnvd-2025-31464	Google Android权限混淆漏洞	2025-12-10	2025-12-29
cnvd-2025-31463	Google Android逻辑错误漏洞	2025-12-10	2025-12-29
cnvd-2025-31462	Google Android权限绕过漏洞	2025-12-10	2025-12-29
cnvd-2025-31461	Google Android输入验证不当漏洞	2025-12-10	2025-12-29
cnvd-2025-31156	Currency Exchange System /editotheraccount.php文件SQL注入漏洞	2025-12-10	2025-12-22
cnvd-2025-31155	Currency Exchange System /edit.php文件SQL注入漏洞	2025-12-10	2025-12-22
cnvd-2025-31136	Huawei HarmonyOS拒绝服务漏洞（CNVD-2025-3113638）	2025-12-10	2025-12-23
cnvd-2025-31135	Huawei HarmonyOS安全检查不当漏洞	2025-12-10	2025-12-23
cnvd-2025-31134	Huawei HarmonyOS拒绝服务漏洞（CNVD-2025-3113443）	2025-12-10	2025-12-23
cnvd-2025-31133	Huawei HarmonyOS拒绝服务漏洞	2025-12-10	2025-12-23
cnvd-2025-31132	Huawei HarmonyOS竞争条件漏洞	2025-12-10	2025-12-23
cnvd-2025-30978	Advantech WISE-DeviceOn Server硬编码加密密钥漏洞	2025-12-10	2025-12-17
cnvd-2025-30977	Advantech WISE-DeviceOn Server跨站脚本漏洞（CNVD-2025-3097798）	2025-12-10	2025-12-17
cnvd-2025-30976	Advantech WISE-DeviceOn Server跨站脚本漏洞（CNVD-2025-3097699）	2025-12-10	2025-12-17
cnvd-2025-30975	Advantech WISE-DeviceOn Server跨站脚本漏洞（CNVD-2025-3097500）	2025-12-10	2025-12-17
cnvd-2025-30974	Advantech WISE-DeviceOn Server跨站脚本漏洞（CNVD-2025-3097401）	2025-12-10	2025-12-17
cnvd-2025-30973	Advantech WISE-DeviceOn Server跨站脚本漏洞（CNVD-2025-3097302）	2025-12-10	2025-12-17
cnvd-2025-30972	Advantech WISE-DeviceOn Server跨站脚本漏洞（CNVD-2025-3097203）	2025-12-10	2025-12-17
cnvd-2025-30971	Advantech WISE-DeviceOn Server跨站脚本漏洞（CNVD-2025-3097104）	2025-12-10	2025-12-17
cnvd-2025-30970	Advantech WISE-DeviceOn Server跨站脚本漏洞（CNVD-2025-3097005）	2025-12-10	2025-12-17
cnvd-2025-30969	Advantech WISE-DeviceOn Server跨站脚本漏洞（CNVD-2025-3096906）	2025-12-10	2025-12-17
cnvd-2025-30968	Advantech WISE-DeviceOn Server跨站脚本漏洞	2025-12-10	2025-12-17
cnvd-2025-30837	Apache HTTP Server存在未明漏洞（CNVD-2025-30837）	2025-12-10	2025-12-17
cnvd-2025-30836	Apache HTTP Server跨站请求伪造漏洞	2025-12-10	2025-12-17
cnvd-2025-30835	Apache HTTP Server代码执行漏洞（CNVD-2025-30835）	2025-12-10	2025-12-17
cnvd-2025-30833	Apache HTTP Server安全绕过漏洞（CNVD-2025-30833）	2025-12-10	2025-12-17
cnvd-2025-30755	Student Management System /newcurriculm.php文件SQL注入漏洞	2025-12-10	2025-12-16
cnvd-2025-30754	Student Management System /edit_user.php文件SQL注入漏洞	2025-12-10	2025-12-16
cnvd-2025-30677	Google Android权限提升漏洞（CNVD-2025-30677）	2025-12-10	2025-12-15

ID	Description	Published	Updated
CERTFR-2025-AVI-0937	Multiples vulnérabilités dans Google Chrome	2025-10-30T00:00:00.000000	2025-10-30T00:00:00.000000
certfr-2025-avi-0936	Multiples vulnérabilités dans Mattermost Server	2025-10-29T00:00:00.000000	2025-12-01T00:00:00.000000
certfr-2025-avi-0935	Multiples vulnérabilités dans les produits VMware	2025-10-29T00:00:00.000000	2025-10-29T00:00:00.000000
certfr-2025-avi-0934	Vulnérabilité dans les produits Mozilla	2025-10-29T00:00:00.000000	2025-10-29T00:00:00.000000
CERTFR-2025-AVI-0936	Multiples vulnérabilités dans Mattermost Server	2025-10-29T00:00:00.000000	2025-12-01T00:00:00.000000
CERTFR-2025-AVI-0935	Multiples vulnérabilités dans les produits VMware	2025-10-29T00:00:00.000000	2025-10-29T00:00:00.000000
CERTFR-2025-AVI-0934	Vulnérabilité dans les produits Mozilla	2025-10-29T00:00:00.000000	2025-10-29T00:00:00.000000
certfr-2025-avi-0933	Multiples vulnérabilités dans Apache Tomcat	2025-10-28T00:00:00.000000	2025-10-28T00:00:00.000000
certfr-2025-avi-0932	Multiples vulnérabilités dans Liferay	2025-10-28T00:00:00.000000	2025-10-28T00:00:00.000000
certfr-2025-avi-0931	Vulnérabilité dans StrongSwan	2025-10-28T00:00:00.000000	2025-10-28T00:00:00.000000
CERTFR-2025-AVI-0933	Multiples vulnérabilités dans Apache Tomcat	2025-10-28T00:00:00.000000	2025-10-28T00:00:00.000000
CERTFR-2025-AVI-0932	Multiples vulnérabilités dans Liferay	2025-10-28T00:00:00.000000	2025-10-28T00:00:00.000000
CERTFR-2025-AVI-0931	Vulnérabilité dans StrongSwan	2025-10-28T00:00:00.000000	2025-10-28T00:00:00.000000
certfr-2025-avi-0930	Vulnérabilité dans Microsoft Windows Server Update Service	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
certfr-2025-avi-0929	Vulnérabilité dans le client VPN de TheGreenBow	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
certfr-2025-avi-0928	Vulnérabilité dans Microsoft Configuration Manager	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
certfr-2025-avi-0927	Vulnérabilité dans Xen	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
certfr-2025-avi-0926	Vulnérabilité dans le pilote ODBC de MongoDB	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
certfr-2025-avi-0925	Vulnérabilité dans les produits Belden	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
CERTFR-2025-AVI-0930	Vulnérabilité dans Microsoft Windows Server Update Service	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
CERTFR-2025-AVI-0929	Vulnérabilité dans le client VPN de TheGreenBow	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
CERTFR-2025-AVI-0928	Vulnérabilité dans Microsoft Configuration Manager	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
CERTFR-2025-AVI-0927	Vulnérabilité dans Xen	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
CERTFR-2025-AVI-0926	Vulnérabilité dans le pilote ODBC de MongoDB	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
CERTFR-2025-AVI-0925	Vulnérabilité dans les produits Belden	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
certfr-2025-avi-0924	Multiples vulnérabilités dans les produits IBM	2025-10-24T00:00:00.000000	2025-10-24T00:00:00.000000
certfr-2025-avi-0923	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-10-24T00:00:00.000000	2025-10-24T00:00:00.000000
certfr-2025-avi-0922	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-10-24T00:00:00.000000	2025-10-24T00:00:00.000000
certfr-2025-avi-0921	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-10-24T00:00:00.000000	2025-10-24T00:00:00.000000
certfr-2025-avi-0920	Multiples vulnérabilités dans les produits Microsoft	2025-10-24T00:00:00.000000	2025-10-24T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated