Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-wq4h-35pf-mp23 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Updat… | 2022-05-17T00:55:30Z | 2025-10-22T03:30:33Z |
| ghsa-m5w3-m6g8-4mhf | Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunder… | 2022-05-17T00:55:57Z | 2025-10-22T03:30:34Z |
| ghsa-7cv2-f4f9-vw96 | Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunder… | 2022-05-17T00:56:01Z | 2025-10-22T03:30:33Z |
| ghsa-3xgg-69w3-vvww | Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 1… | 2022-05-17T00:56:59Z | 2025-10-22T03:30:33Z |
| ghsa-5mvv-qmf3-7p25 | Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allow remote… | 2022-05-17T00:57:00Z | 2025-10-22T03:30:33Z |
| ghsa-v7gg-cccr-jpfx | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Updat… | 2022-05-17T00:57:51Z | 2025-10-22T03:30:32Z |
| ghsa-g2wp-w28c-8vg2 | Unspecified vulnerability in the U3D component in Adobe Reader and Acrobat 10.1.1 and earlier on Wi… | 2022-05-17T01:01:02Z | 2025-11-21T18:30:26Z |
| ghsa-cmrc-q43h-xrrq | Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3… | 2022-05-17T01:03:53Z | 2025-10-22T03:30:29Z |
| ghsa-9f8x-323m-6vw4 | Citrix NetScaler SD-WAN devices through v9.1.2.26.561201 allow remote attackers to execute arbitrar… | 2022-05-17T01:06:04Z | 2025-10-22T00:31:23Z |
| ghsa-8mf8-x5px-f6px | Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 7.1 before SP2 Patch 4 allo… | 2022-05-17T01:06:10Z | 2025-10-22T03:30:36Z |
| ghsa-wg97-qrh5-p5pr | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.… | 2022-05-17T01:08:11Z | 2025-10-22T00:31:12Z |
| ghsa-8987-qgc7-79p9 | Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastruc… | 2022-05-17T01:10:19Z | 2025-10-22T00:31:12Z |
| ghsa-fg66-4vpm-36cx | Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 1… | 2022-05-17T01:11:33Z | 2025-11-17T21:31:16Z |
| ghsa-ppfw-543c-9q84 | Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR-600 router (rev. Bx) with … | 2022-05-17T01:16:26Z | 2025-10-22T03:30:41Z |
| ghsa-56q2-4f8q-pxwc | Cross-site scripting (XSS) vulnerability in GE Multilink ML810/3000/3100 series switch 5.2.0 and ea… | 2022-05-17T01:17:02Z | 2025-11-05T00:31:12Z |
| ghsa-rgmj-9q73-5phf | The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invok… | 2022-05-17T01:18:20Z | 2025-10-22T00:31:18Z |
| ghsa-7p8v-5r94-xc7r | The (1) get_user and (2) put_user API functions in the Linux kernel before 3.5.5 on the v6k and v7 … | 2022-05-17T01:18:31Z | 2025-10-22T03:30:35Z |
| ghsa-6cqf-r56h-g5xf | An issue was discovered on NETGEAR R8500, R8300, R7000, R6400, R7300, R7100LG, R6300v2, WNDR3400v3,… | 2022-05-17T01:19:01Z | 2025-10-22T00:31:17Z |
| ghsa-jwpx-wh9c-729p | Race condition in Apport before 2.17.2-0ubuntu1.1 as packaged in Ubuntu 15.04, before 2.14.70ubuntu… | 2022-05-17T01:22:29Z | 2025-11-03T21:30:29Z |
| ghsa-pjh8-cj3j-fv9q | Multiple cross-site scripting (XSS) vulnerabilities in D-Link DSL-2760U Gateway (Rev. E1) allow rem… | 2022-05-17T01:32:35Z | 2025-10-22T03:30:35Z |
| ghsa-2qh2-hj3f-rhcf | IBM InfoSphere BigInsights before 2.1.0.3 allows remote authenticated users to bypass intended file… | 2022-05-17T01:33:53Z | 2025-10-22T03:30:37Z |
| ghsa-wwq7-pxwc-p4rc | Apache Axis2 has Improper Input Validation | 2022-05-17T01:38:56Z | 2025-12-04T22:13:34Z |
| ghsa-x6c2-j4cw-94j8 | Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.… | 2022-05-17T01:44:50Z | 2025-10-22T03:30:32Z |
| ghsa-4w4w-866c-5vgg | (1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics d… | 2022-05-17T01:57:47Z | 2025-10-22T00:31:23Z |
| ghsa-3hj2-5cwp-2349 | The vold volume manager daemon on Android 3.0 and 2.x before 2.3.4 trusts messages that are receive… | 2022-05-17T01:59:36Z | 2025-10-22T03:30:29Z |
| ghsa-9q29-g37m-5wmp | Cisco IOS XR 3.4.0 through 3.9.1, when BGP is enabled, does not properly handle unrecognized transi… | 2022-05-17T02:05:47Z | 2025-10-22T03:30:28Z |
| ghsa-494m-pv6g-vh73 | Stack-based buffer overflow in DMitry (Deepmagic Information Gathering Tool) version 1.3a (Unix) al… | 2022-05-17T02:12:34Z | 2025-11-04T00:30:29Z |
| ghsa-pxpc-qfm6-wwp4 | NETGEAR R6250 before 1.0.4.6.Beta, R6400 before 1.0.1.18.Beta, R6700 before 1.0.1.14.Beta, R6900, R… | 2022-05-17T02:13:04Z | 2025-10-22T00:31:17Z |
| ghsa-342q-x494-83vw | The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Mi… | 2022-05-17T02:14:18Z | 2025-10-22T00:31:22Z |
| ghsa-xjjj-92c2-q84f | NETGEAR WNR2000v3 devices before 1.1.2.14, WNR2000v4 devices before 1.0.0.66, and WNR2000v5 devices… | 2022-05-17T02:28:12Z | 2025-10-22T00:31:22Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2020-12812 | N/A | An improper authentication vulnerability in SSL V… |
n/a |
Fortinet FortiOS |
2020-07-24T22:28:43.000Z | 2025-10-21T23:35:38.889Z |
| cve-2020-8218 | N/A | A code injection vulnerability exists in Pulse Co… |
n/a |
Pulse Connect Secure |
2020-07-30T12:53:02.000Z | 2025-10-21T23:35:38.731Z |
| cve-2020-15702 | TOCTOU in apport |
Canonical |
apport |
2020-08-06T22:50:22.871Z | 2025-11-03T19:25:30.971Z | |
| cve-2020-17496 | N/A | vBulletin 5.5.4 through 5.6.2 allows remote comma… |
n/a |
n/a |
2020-08-12T13:07:58.000Z | 2025-10-21T23:35:38.580Z |
| cve-2020-17463 | N/A | FUEL CMS 1.4.7 allows SQL Injection via the col p… |
n/a |
n/a |
2020-08-13T12:28:57.000Z | 2025-10-21T23:35:38.419Z |
| cve-2019-5591 | N/A | A Default Configuration vulnerability in FortiOS … |
Fortinet |
Fortinet FortiOS |
2020-08-14T15:28:25.000Z | 2025-10-21T23:35:38.280Z |
| cve-2020-24372 | N/A | LuaJIT through 2.1.0-beta3 has an out-of-bounds r… |
n/a |
n/a |
2020-08-17T16:05:57.000Z | 2025-11-03T18:07:57.766Z |
| cve-2020-3433 | Cisco AnyConnect Secure Mobility Client for Windows DL… |
Cisco |
Cisco AnyConnect Secure Mobility Client |
2020-08-17T18:01:06.828Z | 2025-10-21T23:35:38.115Z | |
| cve-2020-1380 | 7.8 (v3.1) | Scripting Engine Memory Corruption Vulnerability |
Microsoft |
Internet Explorer 11 |
2020-08-17T19:13:00.000Z | 2025-10-21T23:35:37.973Z |
| cve-2020-1464 | 7.8 (v3.1) | Windows Spoofing Vulnerability |
Microsoft |
Windows 10 Version 1803 |
2020-08-17T19:13:03.000Z | 2025-10-21T23:35:37.819Z |
| cve-2020-1472 | 5.5 (v3.1) | Netlogon Elevation of Privilege Vulnerability |
Microsoft |
Windows Server version 2004 |
2020-08-17T19:13:05.000Z | 2025-10-21T23:35:37.656Z |
| cve-2020-15861 | N/A | Net-SNMP through 5.7.3 allows Escalation of Privi… |
n/a |
n/a |
2020-08-19T18:28:30.000Z | 2025-12-03T18:23:52.736Z |
| cve-2020-10123 | N/A | The currency dispenser of NCR SelfSev ATMs runnin… |
NCR |
SelfServ ATM |
2020-08-21T20:30:39.511Z | 2025-11-04T19:12:01.005Z |
| cve-2020-10124 | N/A | NCR SelfServ ATMs running APTRA XFS 05.01.00 do n… |
NCR |
SelfServ ATM |
2020-08-21T20:30:39.977Z | 2025-11-04T19:12:02.183Z |
| cve-2020-10125 | N/A | NCR SelfServ ATMs running APTRA XFS 04.02.01 and … |
NCR |
SelfServ ATM |
2020-08-21T20:30:40.398Z | 2025-11-04T19:12:03.905Z |
| cve-2020-10126 | N/A | NCR SelfServ ATMs running APTRA XFS 05.01.00 do n… |
NCR |
SelfServ ATM |
2020-08-21T20:30:40.835Z | 2025-11-04T19:12:05.056Z |
| cve-2020-9063 | N/A | NCR SelfServ ATMs running APTRA XFS 05.01.00 or e… |
NCR |
SelfServ ATM |
2020-08-21T20:30:41.703Z | 2025-11-04T19:12:24.291Z |
| cve-2020-3566 | Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability |
Cisco |
Cisco IOS XR Software |
2020-08-29T15:15:13.627Z | 2025-10-21T23:35:37.484Z | |
| cve-2020-25019 | N/A | jitsi-meet-electron (aka Jitsi Meet Electron) bef… |
n/a |
n/a |
2020-08-29T16:07:29.000Z | 2025-11-17T19:13:58.652Z |
| cve-2020-24363 | N/A | TP-Link TL-WA855RE V5 20200415-rel37464 devices a… |
n/a |
n/a |
2020-08-31T15:49:15.000Z | 2025-10-21T23:35:37.336Z |
| cve-2020-24557 | N/A | A vulnerability in Trend Micro Apex One and Worry… |
Trend Micro |
Trend Micro Apex One |
2020-09-01T18:55:27.000Z | 2025-10-21T23:35:37.172Z |
| cve-2020-25079 | N/A | An issue was discovered on D-Link DCS-2530L befor… |
n/a |
n/a |
2020-09-02T15:33:07.000Z | 2025-10-21T23:35:37.012Z |
| cve-2020-25078 | N/A | An issue was discovered on D-Link DCS-2530L befor… |
n/a |
n/a |
2020-09-02T15:33:18.000Z | 2025-10-21T23:35:36.861Z |
| cve-2020-25213 | The File Manager (wp-file-manager) plugin before … |
n/a |
n/a |
2020-09-09T00:00:00.000Z | 2025-10-21T23:35:36.713Z | |
| cve-2020-0878 | 4.2 (v3.1) | Microsoft Browser Memory Corruption Vulnerability |
Microsoft |
ChakraCore |
2020-09-11T17:08:26.000Z | 2025-10-21T23:35:36.572Z |
| cve-2020-0279 | N/A | In the AAC parser, there is a possible out of bou… |
n/a |
Android |
2020-09-17T20:54:38.000Z | 2025-11-04T21:08:11.854Z |
| cve-2020-25789 | N/A | An issue was discovered in Tiny Tiny RSS (aka tt-… |
n/a |
n/a |
2020-09-19T20:17:49.000Z | 2025-12-22T19:40:27.495Z |
| cve-2020-25788 | N/A | An issue was discovered in Tiny Tiny RSS (aka tt-… |
n/a |
n/a |
2020-09-19T20:18:08.000Z | 2025-12-22T19:43:51.287Z |
| cve-2020-25787 | N/A | An issue was discovered in Tiny Tiny RSS (aka tt-… |
n/a |
n/a |
2020-09-19T20:18:20.000Z | 2025-12-23T14:43:16.585Z |
| cve-2020-3569 | Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerab… |
Cisco |
Cisco IOS XR Software |
2020-09-23T00:25:17.287Z | 2025-10-21T23:35:36.407Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2019-1652 | Cisco Small Business RV320 and RV325 Routers Command I… |
Cisco |
Cisco Small Business RV Series Router Firmware |
2019-01-24T16:00:00.000Z | 2025-10-21T23:45:44.135Z | |
| cve-2019-1653 | Cisco Small Business RV320 and RV325 Routers Informati… |
Cisco |
Cisco Small Business RV Series Router Firmware |
2019-01-24T16:00:00.000Z | 2025-10-21T23:45:43.980Z | |
| cve-2019-6110 | N/A | In OpenSSH 7.9, due to accepting and displaying a… |
n/a |
n/a |
2019-01-31T00:00:00.000Z | 2025-12-18T14:32:50.185Z |
| cve-2019-6111 | N/A | An issue was discovered in OpenSSH 7.9. Due to th… |
n/a |
n/a |
2019-01-31T00:00:00.000Z | 2025-12-18T14:35:00.730Z |
| cve-2017-18362 | N/A | ConnectWise ManagedITSync integration through 201… |
n/a |
n/a |
2019-02-05T05:00:00.000Z | 2025-10-21T23:45:43.838Z |
| cve-2018-20753 | N/A | Kaseya VSA RMM before R9.3 9.3.0.35, R9.4 before … |
n/a |
n/a |
2019-02-05T05:00:00.000Z | 2025-10-21T23:45:43.693Z |
| cve-2018-20250 | N/A | In WinRAR versions prior to and including 5.61, T… |
Check Point Software Technologies Ltd. |
WinRAR |
2019-02-05T20:00:00.000Z | 2025-10-21T23:45:43.535Z |
| cve-2018-18505 | N/A | An earlier fix for an Inter-process Communication… |
Mozilla |
Thunderbird |
2019-02-05T21:00:00 | 2024-08-05T11:08:21.951Z |
| cve-2019-6242 | N/A | Kentico v10.0.42 allows Global Administrators to … |
n/a |
n/a |
2019-02-08T05:00:00 | 2024-08-04T20:16:24.785Z |
| cve-2019-8394 | N/A | Zoho ManageEngine ServiceDesk Plus (SDP) before 1… |
n/a |
n/a |
2019-02-17T04:00:00.000Z | 2025-10-21T23:45:43.349Z |
| cve-2019-6340 | N/A | Drupal core - Highly critical - Remote Code Execution |
Drupal |
Drupal Core |
2019-02-21T21:00:00.000Z | 2025-10-21T23:45:43.200Z |
| cve-2019-9082 | N/A | ThinkPHP before 3.2.4, as used in Open Source BMS… |
n/a |
n/a |
2019-02-24T18:00:00.000Z | 2025-12-09T14:38:34.117Z |
| cve-2019-9182 | N/A | There is a CSRF in ZZZCMS zzzphp V1.6.1 via a /ad… |
n/a |
n/a |
2019-02-26T07:00:00.000Z | 2025-12-09T14:41:14.098Z |
| cve-2018-12389 | N/A | Mozilla developers and community members reported… |
Mozilla |
Firefox ESR |
2019-02-28T18:00:00 | 2024-08-05T08:31:00.289Z |
| cve-2018-12390 | N/A | Mozilla developers and community members reported… |
Mozilla |
Firefox |
2019-02-28T18:00:00 | 2024-08-05T08:30:59.986Z |
| cve-2018-12392 | N/A | When manipulating user events in nested loops whi… |
Mozilla |
Firefox |
2019-02-28T18:00:00 | 2024-08-05T08:30:59.822Z |
| cve-2018-12397 | N/A | A WebExtension can request access to local files … |
Mozilla |
Firefox ESR |
2019-02-28T18:00:00 | 2024-08-05T08:30:59.851Z |
| cve-2018-12405 | N/A | Mozilla developers and community members reported… |
Mozilla |
Thunderbird |
2019-02-28T18:00:00 | 2024-08-05T08:38:04.965Z |
| cve-2018-18492 | N/A | A use-after-free vulnerability can occur after de… |
Mozilla |
Thunderbird |
2019-02-28T18:00:00 | 2024-08-05T11:08:21.899Z |
| cve-2018-18493 | N/A | A buffer overflow can occur in the Skia library d… |
Mozilla |
Thunderbird |
2019-02-28T18:00:00 | 2024-08-05T11:08:21.887Z |
| cve-2018-18494 | N/A | A same-origin policy violation allowing the theft… |
Mozilla |
Thunderbird |
2019-02-28T18:00:00 | 2024-08-05T11:08:21.990Z |
| cve-2019-6223 | N/A | A logic issue existed in the handling of Group Fa… |
Apple |
iOS |
2019-03-05T16:00:00.000Z | 2025-12-20T04:55:48.072Z |
| cve-2019-0604 | N/A | A remote code execution vulnerability exists in M… |
Microsoft |
Microsoft SharePoint Server |
2019-03-06T00:00:00.000Z | 2025-10-21T23:45:42.715Z |
| cve-2019-0676 | N/A | An information disclosure vulnerability exists wh… |
Microsoft |
Internet Explorer 11 |
2019-03-06T00:00:00.000Z | 2025-10-21T23:45:42.572Z |
| cve-2018-18809 | TIBCO JasperReports Library Directory Traversal Vulner… |
TIBCO Software Inc. |
TIBCO JasperReports Library |
2019-03-07T22:00:00.000Z | 2025-10-21T23:45:42.384Z | |
| cve-2019-1003029 | N/A | A sandbox bypass vulnerability exists in Jenkins … |
Jenkins project |
Jenkins Script Security Plugin |
2019-03-08T21:00:00.000Z | 2025-10-21T23:45:42.215Z |
| cve-2019-1003030 | N/A | A sandbox bypass vulnerability exists in Jenkins … |
Jenkins project |
Jenkins Pipeline: Groovy Plugin |
2019-03-08T21:00:00.000Z | 2025-10-21T23:45:42.056Z |
| cve-2019-3859 | An out of bounds read flaw was discovered in libs… |
The libssh2 Project |
libssh2 |
2019-03-20T21:18:13.000Z | 2025-12-18T11:43:47.109Z | |
| cve-2019-7238 | N/A | Sonatype Nexus Repository Manager before 3.15.0 h… |
n/a |
n/a |
2019-03-21T16:45:23.000Z | 2025-10-21T23:45:41.913Z |
| cve-2019-9978 | N/A | The social-warfare plugin before 3.5.3 for WordPr… |
n/a |
n/a |
2019-03-24T14:47:26.000Z | 2025-10-21T23:45:41.750Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-0000-kam193-35b815ba5cd6fe5e | Pentesting or research code in globrex (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-35c977fbec44078b | Pentesting or research code in requests-rapidl (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-365743b23bd5cff5 | Pentesting or research code in your-module-name (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-36b196225aebd015 | Pentesting or research code in layoutspecs (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-36c403f729a963d0 | Pentesting or research code in szn-rain-client (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3847e0b3317494cc | Pentesting or research code in oracle-tools (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-38eb272538ac306c | Pentesting or research code in security-automation-job (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-39a7a45aa4f13d59 | Pentesting or research code in cloudx-auth (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3a0cd03149005afa | Pentesting or research code in rtxt-dep2 (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3a503af7229bedfc | Pentesting or research code in piprce (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3a6cae1c5ed5c484 | Pentesting or research code in dexat2 (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3a8f13b55e27e835 | Pentesting or research code in szn-sasanka (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3aa6ed6789228cf0 | Pentesting or research code in crunchie (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3af217ab42360fa6 | Pentesting or research code in arnold-toolbox (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3bbd6907e35723bb | Pentesting or research code in masirkhan (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3c0077c8c19022bb | Pentesting or research code in 123bla (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3ce33648003ab87b | Pentesting or research code in python-drgn-commons-all (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3d4eb3aaf4038064 | Pentesting or research code in some-random-package-33 (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3e2fc58543015336 | Pentesting or research code in voto3 (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3e752a2e84135761 | Pentesting or research code in wr-test (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3e9283f7f2d0986e | Pentesting or research code in pyqubee (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3ed5e109142f6f71 | Pentesting or research code in qassabi (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-3f7b85bfd6f1469e | Pentesting or research code in search-python-common (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-41176b609425135f | Pentesting or research code in example-vizsla-tutorial (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-41394b4e398c9e82 | Pentesting or research code in appsec-script-py (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-41c882a107106146 | Pentesting or research code in cmdb-worker-pckg (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-41d3cadcf9e5d683 | Pentesting or research code in otc-metadata (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-427390115c195d52 | Pentesting or research code in story-mcp-hub (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-42b314e2110fe1fe | Pentesting or research code in dependency133434fr43437 (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| mal-0000-kam193-42f5245aa3b149ad | Pentesting or research code in orion-algo-extrapol (PyPI) | 2024-07-26T16:53:30Z | 2024-07-26T16:53:30Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2006:0191 | Red Hat Security Advisory: kernel security update | 2006-02-01T17:57:00+00:00 | 2025-11-21T17:30:00+00:00 |
| rhsa-2006:0194 | Red Hat Security Advisory: gd security update | 2006-02-01T18:05:00+00:00 | 2025-11-21T17:30:00+00:00 |
| rhsa-2006:0200 | Red Hat Security Advisory: firefox security update | 2006-02-02T15:50:00+00:00 | 2025-11-21T17:30:01+00:00 |
| rhsa-2006:0207 | Red Hat Security Advisory: gnutls security update | 2006-02-10T21:43:00+00:00 | 2025-11-21T17:30:03+00:00 |
| rhsa-2006:0201 | Red Hat Security Advisory: xpdf security update | 2006-02-13T15:27:00+00:00 | 2025-11-21T17:30:01+00:00 |
| rhsa-2006:0206 | Red Hat Security Advisory: kdegraphics security update | 2006-02-13T15:31:00+00:00 | 2025-11-21T17:30:02+00:00 |
| rhsa-2006:0205 | Red Hat Security Advisory: libpng security update | 2006-02-13T15:35:00+00:00 | 2025-11-21T17:30:02+00:00 |
| rhsa-2006:0178 | Red Hat Security Advisory: ImageMagick security update | 2006-02-14T16:12:00+00:00 | 2025-11-21T17:29:58+00:00 |
| rhsa-2006:0195 | Red Hat Security Advisory: tar security update | 2006-02-21T14:35:00+00:00 | 2025-11-21T17:30:00+00:00 |
| rhsa-2006:0217 | Red Hat Security Advisory: metamail security update | 2006-02-21T14:38:00+00:00 | 2025-11-21T17:30:03+00:00 |
| rhsa-2006:0232 | Red Hat Security Advisory: tar security update | 2006-03-01T15:03:00+00:00 | 2025-11-21T17:30:04+00:00 |
| rhsa-2006:0129 | Red Hat Security Advisory: spamassassin security update | 2006-03-07T15:14:00+00:00 | 2025-11-21T17:29:52+00:00 |
| rhsa-2006:0044 | Red Hat Security Advisory: openssh security update | 2006-03-07T15:15:00+00:00 | 2025-11-21T17:29:55+00:00 |
| rhsa-2006:0016 | Red Hat Security Advisory: initscripts security update | 2006-03-07T15:16:00+00:00 | 2025-11-21T17:29:50+00:00 |
| rhsa-2006:0052 | Red Hat Security Advisory: squid security update | 2006-03-07T15:17:00+00:00 | 2025-11-21T17:29:51+00:00 |
| rhsa-2006:0132 | Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 4 Update 3 | 2006-03-07T15:29:00+00:00 | 2025-11-21T17:29:53+00:00 |
| rhsa-2006:0161 | Red Hat Security Advisory: RHAPS security and enhancement update | 2006-03-07T20:30:00+00:00 | 2025-11-21T17:29:56+00:00 |
| rhsa-2006:0204 | Red Hat Security Advisory: mailman security update | 2006-03-07T20:44:00+00:00 | 2025-11-21T17:30:01+00:00 |
| rhsa-2006:0197 | Red Hat Security Advisory: python security update | 2006-03-09T20:45:00+00:00 | 2025-11-21T17:30:04+00:00 |
| rhsa-2006:0262 | Red Hat Security Advisory: kdegraphics security update | 2006-03-09T20:53:00+00:00 | 2025-11-21T17:30:04+00:00 |
| rhsa-2006:0144 | Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 3 Update 7 | 2006-03-15T14:05:00+00:00 | 2025-11-21T17:29:54+00:00 |
| rhsa-2006:0117 | Red Hat Security Advisory: vixie-cron security update | 2006-03-15T14:06:00+00:00 | 2025-11-21T17:29:51+00:00 |
| rhsa-2006:0015 | Red Hat Security Advisory: initscripts security update | 2006-03-15T14:13:00+00:00 | 2025-11-21T17:29:53+00:00 |
| rhsa-2006:0045 | Red Hat Security Advisory: squid security update | 2006-03-15T14:14:00+00:00 | 2025-11-21T17:29:51+00:00 |
| rhsa-2006:0266 | Red Hat Security Advisory: gnupg security update | 2006-03-15T16:36:00+00:00 | 2025-11-21T17:30:06+00:00 |
| rhsa-2006:0268 | Red Hat Security Advisory: flash-plugin security update | 2006-03-15T22:43:00+00:00 | 2025-11-21T17:30:06+00:00 |
| rhsa-2006:0265 | Red Hat Security Advisory: sendmail security update | 2006-03-22T16:07:00+00:00 | 2025-11-21T17:30:06+00:00 |
| rhsa-2006:0264 | Red Hat Security Advisory: sendmail security update | 2006-03-22T16:14:00+00:00 | 2025-11-21T17:30:05+00:00 |
| rhsa-2006:0257 | Red Hat Security Advisory: RealPlayer security update | 2006-03-22T20:29:00+00:00 | 2025-11-21T17:30:04+00:00 |
| rhsa-2006:0271 | Red Hat Security Advisory: freeradius security update | 2006-04-04T08:51:00+00:00 | 2025-11-21T17:30:07+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2020-29370 | An issue was discovered in kmem_cache_alloc_bulk in mm/slub.c in the Linux kernel before 5.5.11. The slowpath lacks the required TID increment aka CID-fd4d9c7d0c71. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-29371 | An issue was discovered in romfs_dev_read in fs/romfs/storage.c in the Linux kernel before 5.8.4. Uninitialized memory leaks to userspace aka CID-bcf85fcedfdd. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-29372 | An issue was discovered in do_madvise in mm/madvise.c in the Linux kernel before 5.6.8. There is a race condition between coredump operations and the IORING_OP_MADVISE implementation aka CID-bc0c4d1e176e. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-29373 | An issue was discovered in fs/io_uring.c in the Linux kernel before 5.6. It unsafely handles the root directory during path lookups and thus a process inside a mount namespace can escape to unintended filesystem locations aka CID-ff002b30181d. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-29374 | An issue was discovered in the Linux kernel before 5.7.3 related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation when used for a copy-on-write page does not properly consider the semantics of read operations and therefore can grant unintended write access aka CID-17839856fd58. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-8037 | ppp decapsulator can be convinced to allocate a large amount of memory | 2020-11-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-8277 | A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1 < 14.15.1 and < 12.19.1 by getting the application to resolve a DNS record with a larger number of responses. This is fixed in 15.2.1 14.15.1 and 12.19.1. | 2020-11-02T00:00:00.000Z | 2021-03-09T00:00:00.000Z |
| msrc_cve-2020-14318 | A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker. | 2020-12-02T00:00:00.000Z | 2024-10-15T00:00:00.000Z |
| msrc_cve-2020-14351 | A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly escalate privileges. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2020-12-02T00:00:00.000Z | 2020-12-09T00:00:00.000Z |
| msrc_cve-2020-14381 | A flaw was found in the Linux kernel’s futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a futex on a filesystem that is about to be unmounted. The highest threat from this vulnerability is to confidentiality integrity as well as system availability. | 2020-12-02T00:00:00.000Z | 2020-12-09T00:00:00.000Z |
| msrc_cve-2020-14383 | A flaw was found in samba's DNS server. An authenticated user could use this flaw to the RPC server to crash. This RPC server which also serves protocols other than dnsserver will be restarted after a short delay but it is easy for an authenticated non administrative attacker to crash it again as soon as it returns. The Samba DNS server itself will continue to operate but many RPC services will not. | 2020-12-02T00:00:00.000Z | 2024-10-15T00:00:00.000Z |
| msrc_cve-2020-17527 | Apache Tomcat: Request header mix-up between HTTP/2 streams | 2020-12-02T00:00:00.000Z | 2025-10-01T23:11:04.000Z |
| msrc_cve-2020-25656 | A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality. | 2020-12-02T00:00:00.000Z | 2020-12-05T00:00:00.000Z |
| msrc_cve-2020-25692 | A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55 during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request causing a Denial of Service. | 2020-12-02T00:00:00.000Z | 2020-12-09T00:00:00.000Z |
| msrc_cve-2020-25704 | A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if using PERF_EVENT_IOC_SET_FILTER. A local user could use this flaw to starve the resources causing denial of service. | 2020-12-02T00:00:00.000Z | 2020-12-08T00:00:00.000Z |
| msrc_cve-2020-25723 | A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on the host resulting in a denial of service. | 2020-12-02T00:00:00.000Z | 2020-12-08T00:00:00.000Z |
| msrc_cve-2020-27534 | util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname constructed with an empty first argument in an ioutil.TempDir call. | 2020-12-02T00:00:00.000Z | 2021-07-16T00:00:00.000Z |
| msrc_cve-2020-27777 | A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down (usually due to Secure Boot) guest system running on top of PowerVM or KVM hypervisors (pseries platform) a root like local user could use this flaw to further increase their privileges to that of a running kernel. | 2020-12-02T00:00:00.000Z | 2020-12-23T00:00:00.000Z |
| msrc_cve-2020-27780 | A flaw was found in Linux-Pam in versions prior to 1.5.1 in the way it handle empty passwords for non-existing users. When the user doesn't exist PAM try to authenticate with root and in the case of an empty password it successfully authenticate. | 2020-12-02T00:00:00.000Z | 2020-12-23T00:00:00.000Z |
| msrc_cve-2020-27783 | A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code. | 2020-12-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-27821 | A flaw was found in the memory management API of QEMU during the initialization of a memory region cache. This issue could lead to an out-of-bounds write access to the MSI-X table while performing MMIO operations. A guest user may abuse this flaw to crash the QEMU process on the host resulting in a denial of service. This flaw affects QEMU versions prior to 5.2.0. | 2020-12-02T00:00:00.000Z | 2020-12-11T00:00:00.000Z |
| msrc_cve-2020-28458 | All versions of package datatables.net are vulnerable to Prototype Pollution | 2020-12-02T00:00:00.000Z | 2024-11-23T00:00:00.000Z |
| msrc_cve-2020-28925 | Bolt before 3.7.2 does not restrict filter options in a Request in the Twig context, and is therefore inconsistent with the "How to Harden Your PHP for Better Security" guidance. | 2020-12-02T00:00:00.000Z | 2025-10-01T23:11:05.000Z |
| msrc_cve-2020-28935 | Local symlink attack in Unbound and NSD | 2020-12-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-29361 | An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command where overflow checks are missing before calling realloc or calloc. | 2020-12-02T00:00:00.000Z | 2020-12-19T00:00:00.000Z |
| msrc_cve-2020-29362 | An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function call the receiving entity may allow the reading of up to 4 bytes of memory past the heap allocation. | 2020-12-02T00:00:00.000Z | 2020-12-24T00:00:00.000Z |
| msrc_cve-2020-29363 | An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE the receiving entity may not allocate sufficient length for the buffer to store the deserialized value. | 2020-12-02T00:00:00.000Z | 2020-12-24T00:00:00.000Z |
| msrc_cve-2020-29396 | A sandboxing issue in Odoo Community 11.0 through 13.0 and Odoo Enterprise 11.0 through 13.0 when running with Python 3.6 or later allows remote authenticated users to execute arbitrary code leading to privilege escalation. | 2020-12-02T00:00:00.000Z | 2020-12-24T00:00:00.000Z |
| msrc_cve-2020-29509 | The encoding/xml package in Go (all versions) does not correctly preserve the semantics of attribute namespace prefixes during tokenization round-trips which allows an attacker to craft inputs that behave in conflicting ways during different stages of processing in affected downstream applications. | 2020-12-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-29511 | The encoding/xml package in Go (all versions) does not correctly preserve the semantics of element namespace prefixes during tokenization round-trips which allows an attacker to craft inputs that behave in conflicting ways during different stages of processing in affected downstream applications. | 2020-12-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2012-000084 | Cybozu KUNAI for Android vulnerable in the WebView class | 2012-09-07T16:40+09:00 | 2012-09-07T16:40+09:00 |
| jvndb-2012-000085 | KUNAI Browser for Remote Service beta vulnerable in the WebView class | 2012-09-13T13:51+09:00 | 2012-09-13T13:51+09:00 |
| jvndb-2012-000086 | Email Anti-virus (formerly WebShield SMTP) vulnerable to denial-of-service | 2012-09-20T12:31+09:00 | 2012-09-20T12:31+09:00 |
| jvndb-2012-000087 | myLittleAdmin for SQL Server 2000 vulnerable to arbitrary script execution | 2012-09-20T12:33+09:00 | 2012-09-20T12:33+09:00 |
| jvndb-2012-000089 | ATOK for Android issue in the access permissions for the learning information file | 2012-09-25T13:40+09:00 | 2012-09-25T13:40+09:00 |
| jvndb-2012-000090 | Trend Micro Control Manager vulnerable to SQL injection | 2012-09-27T12:43+09:00 | 2012-09-27T12:43+09:00 |
| jvndb-2012-000091 | jigbrowser+ for Android vulnerable in the WebView class | 2012-09-28T12:20+09:00 | 2012-09-28T12:20+09:00 |
| jvndb-2012-000092 | MyWebSearch vulnerable to cross-site scripting | 2012-10-05T16:49+09:00 | 2012-10-05T16:49+09:00 |
| jvndb-2012-000094 | Smarty vulnerable to cross-site scripting | 2012-10-10T14:45+09:00 | 2012-10-10T14:45+09:00 |
| jvndb-2012-000088 | Safari vulnerable to local file content disclosure | 2012-10-23T14:57+09:00 | 2012-10-23T14:57+09:00 |
| jvndb-2012-000093 | Tokyo BBS vulnerable to cross-site scripting | 2012-10-26T14:00+09:00 | 2012-10-26T14:00+09:00 |
| jvndb-2012-000095 | Mac OS X OpenSSH vulnerable to denial-of-service (DoS) | 2012-10-31T15:01+09:00 | 2012-10-31T15:01+09:00 |
| jvndb-2012-000096 | MosP kintai kanri fails to restrict access permissions | 2012-11-02T14:16+09:00 | 2012-11-02T14:16+09:00 |
| jvndb-2012-000097 | MosP kintai kanri vulnerable to authentication bypass | 2012-11-02T14:18+09:00 | 2012-11-02T14:18+09:00 |
| jvndb-2012-000098 | Pebble vulnerability where entries may become unviewable | 2012-11-02T14:20+09:00 | 2012-11-02T14:20+09:00 |
| jvndb-2012-000099 | Pebble vulnerable to HTTP header injection | 2012-11-02T14:21+09:00 | 2012-11-02T14:21+09:00 |
| jvndb-2012-000100 | Pebble vulnerable to open redirect | 2012-11-02T14:23+09:00 | 2012-11-02T14:23+09:00 |
| jvndb-2012-005201 | Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP | 2012-11-05T17:58+09:00 | 2012-11-26T18:01+09:00 |
| jvndb-2012-000101 | BeZIP vulnerable to directory traversal | 2012-11-07T16:01+09:00 | 2012-11-07T16:01+09:00 |
| jvndb-2012-000102 | Multiple Android devices vulnerable to denial-of-service (DoS) | 2012-11-14T15:07+09:00 | 2012-11-30T18:01+09:00 |
| jvndb-2012-000103 | Monaca Debugger for Android information management vulnerability | 2012-11-16T14:10+09:00 | 2012-11-16T14:10+09:00 |
| jvndb-2012-000104 | BIGACE vulnerable to session fixation | 2012-11-21T14:34+09:00 | 2012-11-21T14:34+09:00 |
| jvndb-2012-005485 | Hitachi Device Manager Software Denial of Service (DoS) Vulnerability | 2012-11-29T14:48+09:00 | 2012-11-29T14:48+09:00 |
| jvndb-2012-005486 | Denial of Service (DoS) Vulnerability in JP1/Automatic Job Management System 3 and JP1/Automatic Job Management System 2 | 2012-11-29T15:23+09:00 | 2012-11-29T15:23+09:00 |
| jvndb-2012-000105 | Multiple KYOCERA mobile devices may reboot during email reception | 2012-11-30T13:58+09:00 | 2012-11-30T13:58+09:00 |
| jvndb-2012-000106 | KENT-WEB ACCESS REPORT vulnerable to cross-site scripting | 2012-12-06T12:40+09:00 | 2012-12-06T12:40+09:00 |
| jvndb-2012-000107 | KENT-WEB ACCESS REPORT vulnerable to cross-site scripting | 2012-12-06T12:41+09:00 | 2012-12-06T12:41+09:00 |
| jvndb-2012-000108 | Welcart vulnerable to cross-site scripting | 2012-12-14T12:50+09:00 | 2012-12-14T12:50+09:00 |
| jvndb-2012-000109 | Welcart vulnerable to cross-site request forgery | 2012-12-14T12:52+09:00 | 2012-12-14T12:52+09:00 |
| jvndb-2012-000110 | WikkaWiki vulnerable to cross-site scripting | 2012-12-17T12:23+09:00 | 2012-12-17T12:23+09:00 |
| ID | Description | Updated |
|---|