Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-8jv6-h799-v689 | A security flaw has been discovered in SohuTV CacheCloud up to 3.2.0. This impacts the function pre… | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-88mr-q29h-43g6 | A weakness has been identified in SohuTV CacheCloud up to 3.2.0. Affected is the function advancedA… | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-74hv-hc8x-rcwg | The Plugin Organizer WordPress plugin before 10.2.4 does not sanitize and escape a parameter before… | 2025-12-29T06:30:24Z | 2025-12-29T18:30:51Z |
| ghsa-53q9-538q-rmmw | Exposure of Sensitive Information to an Unauthorized Actor, Missing Authorization vulnerability in … | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-4jhr-55hq-jhcw | A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. Affected by this issue is the functi… | 2025-12-29T06:30:24Z | 2025-12-29T06:30:24Z |
| ghsa-rqv7-99wg-986m | A security vulnerability has been detected in Advaya Softech GEMS ERP Portal up to 2.1. This affect… | 2025-12-29T06:30:23Z | 2025-12-29T06:30:24Z |
| ghsa-rq63-8xjc-f72r | A weakness has been identified in BiggiDroid Simple PHP CMS 1.0. Affected by this issue is some unk… | 2025-12-29T06:30:23Z | 2025-12-29T06:30:23Z |
| ghsa-hp9p-9hpg-4rpv | A vulnerability was identified in itsourcecode Student Management System 1.0. Affected is an unknow… | 2025-12-29T03:30:26Z | 2025-12-29T03:30:26Z |
| ghsa-c9vj-8fwr-4gvq | Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbi… | 2025-12-29T03:30:26Z | 2025-12-29T03:30:26Z |
| ghsa-r83m-ghv4-r378 | A vulnerability was determined in itsourcecode Online Cake Ordering System 1.0. This impacts an unk… | 2025-12-29T03:30:25Z | 2025-12-29T03:30:26Z |
| ghsa-qvph-8rch-f939 | A vulnerability has been found in itsourcecode Online Cake Ordering System 1.0. The impacted elemen… | 2025-12-29T03:30:25Z | 2025-12-29T03:30:25Z |
| ghsa-j7cw-4mwg-5fw5 | A vulnerability was identified in Tenda WH450 1.0.0.18. Affected by this issue is some unknown func… | 2025-12-29T03:30:25Z | 2025-12-29T03:30:25Z |
| ghsa-gjm8-9h85-538q | A vulnerability was found in itsourcecode Online Cake Ordering System 1.0. This affects an unknown … | 2025-12-29T03:30:25Z | 2025-12-29T03:30:25Z |
| ghsa-89fx-3w93-77f2 | A security flaw has been discovered in Tenda WH450 1.0.0.18. This affects an unknown part of the fi… | 2025-12-29T03:30:25Z | 2025-12-29T03:30:25Z |
| ghsa-rpm9-rv74-f53f | Unrestricted Upload of File with Dangerous Type vulnerability in Innorix Innorix WP allows Upload a… | 2025-12-29T03:30:24Z | 2025-12-29T03:30:24Z |
| ghsa-h867-r9h7-gw3j | Exposure of Sensitive Information to an Unauthorized Actor, Missing Encryption of Sensitive Data, F… | 2025-12-29T03:30:24Z | 2025-12-29T03:30:24Z |
| ghsa-69jh-5qjp-fcx9 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Missing Authorizati… | 2025-12-29T03:30:24Z | 2025-12-29T03:30:24Z |
| ghsa-xw6v-xv6h-m7g3 | A vulnerability has been found in Tenda WH450 1.0.0.18. This impacts an unknown function of the fil… | 2025-12-29T00:30:26Z | 2025-12-29T00:30:26Z |
| ghsa-whx8-c8r7-rv23 | A vulnerability was found in Tenda WH450 1.0.0.18. Affected is an unknown function of the file /gof… | 2025-12-29T00:30:26Z | 2025-12-29T00:30:26Z |
| ghsa-rp53-2m2g-pmqq | A vulnerability was detected in floooh sokol up to 16cbcc864012898793cd2bc57f802499a264ea40. The im… | 2025-12-29T00:30:26Z | 2025-12-29T00:30:26Z |
| ghsa-hcf6-r7h4-97g5 | A vulnerability was determined in Tenda WH450 1.0.0.18. Affected by this vulnerability is an unknow… | 2025-12-29T00:30:26Z | 2025-12-29T00:30:26Z |
| ghsa-4x7j-66xr-jfqf | A flaw has been found in omec-project UPF up to 2.1.3-dev. This affects the function handleSessionE… | 2025-12-29T00:30:26Z | 2025-12-29T00:30:26Z |
| ghsa-xc62-88x4-447w | A vulnerability was determined in TaleLin Lin-CMS up to 0.6.0. This affects an unknown part of the … | 2025-12-28T21:30:24Z | 2025-12-28T21:30:24Z |
| ghsa-vj9r-pqp4-6mxr | A weakness has been identified in PbootCMS up to 3.2.12. Impacted is an unknown function of the fil… | 2025-12-28T21:30:24Z | 2025-12-28T21:30:25Z |
| ghsa-vgjw-r3pf-238c | A vulnerability was found in PX4 PX4-Autopilot up to 1.16.0. Affected by this issue is the function… | 2025-12-28T21:30:24Z | 2025-12-28T21:30:24Z |
| ghsa-qwmp-482q-vqpm | A vulnerability was identified in h-moses moga-mall up to 392d631a5ef15962a9bddeeb9f1269b9085473fa.… | 2025-12-28T21:30:24Z | 2025-12-28T21:30:25Z |
| ghsa-hjpp-4hh8-vj87 | A vulnerability has been found in rawchen ecms up to b59d7feaa9094234e8aa6c8c6b290621ca575ded. Affe… | 2025-12-28T21:30:24Z | 2025-12-28T21:30:24Z |
| ghsa-hgch-f8pj-55cf | A security vulnerability has been detected in PbootCMS up to 3.2.12. The affected element is the fu… | 2025-12-28T21:30:24Z | 2025-12-28T21:30:25Z |
| ghsa-m496-m5ff-4j4p | A flaw has been found in CmsEasy up to 7.7.7. Affected is the function savetemp_action in the libra… | 2025-12-28T18:30:27Z | 2025-12-28T18:30:27Z |
| ghsa-v539-hv42-wghc | A weakness has been identified in dayrui XunRuiCMS up to 4.7.1. The impacted element is the functio… | 2025-12-28T18:30:26Z | 2025-12-28T18:30:26Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-15161 | Tenda WH450 PPTPUserSetting stack-based overflow |
Tenda |
WH450 |
2025-12-28T23:02:08.101Z | 2025-12-29T21:13:48.407Z | |
| cve-2025-15160 | Tenda WH450 PPTPServer stack-based overflow |
Tenda |
WH450 |
2025-12-28T22:32:07.881Z | 2025-12-29T16:08:39.716Z | |
| cve-2025-15156 | omec-project UPF PFCP Session Establishment Request me… |
omec-project |
UPF |
2025-12-28T22:02:06.001Z | 2025-12-29T16:08:01.587Z | |
| cve-2025-15155 | floooh sokol sokol_gfx.h _sg_pipeline_desc_defaults st… |
floooh |
sokol |
2025-12-28T21:32:10.957Z | 2025-12-29T14:43:28.566Z | |
| cve-2025-15154 | PbootCMS Header handle.php get_user_ip less trusted source |
n/a |
PbootCMS |
2025-12-28T21:02:07.992Z | 2025-12-29T14:48:02.795Z | |
| cve-2025-15153 | PbootCMS SQLite Database pbootcms.db file access |
n/a |
PbootCMS |
2025-12-28T20:32:07.587Z | 2025-12-29T14:55:49.904Z | |
| cve-2025-15152 | h-moses moga-mall PmsProductController.java addProduct… |
h-moses |
moga-mall |
2025-12-28T20:02:08.188Z | 2025-12-29T15:50:24.977Z | |
| cve-2025-15151 | TaleLin Lin-CMS Tests Folder config.py password in con… |
TaleLin |
Lin-CMS |
2025-12-28T19:32:05.944Z | 2025-12-29T15:52:38.176Z | |
| cve-2025-15150 | PX4 PX4-Autopilot mavlink_log_handler.cpp log_entry_fr… |
PX4 |
PX4-Autopilot |
2025-12-28T19:02:07.960Z | 2025-12-29T16:08:11.074Z | |
| cve-2025-15149 | rawchen ecms Add New Product updateProductServlet.java… |
rawchen |
ecms |
2025-12-28T18:32:06.054Z | 2025-12-29T21:17:12.684Z | |
| cve-2025-15148 | CmsEasy Backend Template Management template_admin.php… |
n/a |
CmsEasy |
2025-12-28T18:02:08.178Z | 2025-12-29T21:22:26.770Z | |
| cve-2025-15146 | SohuTV CacheCloud UserManageController.java doUserList… |
SohuTV |
CacheCloud |
2025-12-28T17:32:06.551Z | 2025-12-29T21:25:59.423Z | |
| cve-2025-15145 | SohuTV CacheCloud TotalManageController.java doTotalLi… |
SohuTV |
CacheCloud |
2025-12-28T17:02:05.970Z | 2025-12-29T21:26:55.456Z | |
| cve-2025-15144 | dayrui XunRuiCMS JSONP Callback Init.php dr_exit_msg c… |
dayrui |
XunRuiCMS |
2025-12-28T16:32:07.116Z | 2025-12-29T21:27:18.449Z | |
| cve-2025-68973 | 7.8 (v3.1) | In GnuPG before 2.4.9, armor_filter in g10/armor.… |
GnuPG |
GnuPG |
2025-12-28T16:19:11.019Z | 2025-12-31T03:34:28.426Z |
| cve-2025-15143 | EyouCMS Backend Template Management FilemanagerLogic.p… |
n/a |
EyouCMS |
2025-12-28T16:02:08.347Z | 2025-12-29T16:24:22.854Z | |
| cve-2025-15142 | 9786 phpok3w show.php sql injection |
9786 |
phpok3w |
2025-12-28T15:32:12.734Z | 2025-12-29T16:26:52.591Z | |
| cve-2025-15141 | Halo Configuration actuator information disclosure |
n/a |
Halo |
2025-12-28T15:02:05.484Z | 2025-12-29T16:30:18.082Z | |
| cve-2025-15140 | saiftheboss7 onlinemcqexam quesadd.php sql injection |
saiftheboss7 |
onlinemcqexam |
2025-12-28T14:32:06.750Z | 2025-12-29T16:07:22.328Z | |
| cve-2025-15139 | TRENDnet TEW-822DRE formWsc sub_43ACF4 command injection |
TRENDnet |
TEW-822DRE |
2025-12-28T14:02:07.407Z | 2025-12-29T16:06:45.224Z | |
| cve-2025-15138 | prasathmani TinyFileManager tinyfilemanager.php path t… |
prasathmani |
TinyFileManager |
2025-12-28T13:32:08.843Z | 2025-12-29T16:40:10.063Z | |
| cve-2025-15137 | TRENDnet TEW-800MB NTPSyncWithHost.cgi sub_F934 comma… |
TRENDnet |
TEW-800MB |
2025-12-28T13:02:05.931Z | 2025-12-29T17:19:47.335Z | |
| cve-2025-15136 | TRENDnet TEW-800MB Management wizardset do_setWizard_a… |
TRENDnet |
TEW-800MB |
2025-12-28T12:32:06.349Z | 2025-12-29T17:20:27.000Z | |
| cve-2025-15135 | joey-zhou xiaozhi-esp32-server-java Cookie Authenticat… |
joey-zhou |
xiaozhi-esp32-server-java |
2025-12-28T12:02:07.346Z | 2025-12-29T17:58:51.665Z | |
| cve-2025-15134 | yourmaileyes MOOC Submission MainController.java subre… |
yourmaileyes |
MOOC |
2025-12-28T11:32:05.791Z | 2025-12-29T17:59:32.211Z | |
| cve-2025-15133 | ZSPACE Z4Pro+ HTTP POST Request close zfilev2_api_Clos… |
ZSPACE |
Z4Pro+ |
2025-12-28T11:02:10.256Z | 2025-12-29T18:00:13.048Z | |
| cve-2025-15132 | ZSPACE Z4Pro+ HTTP POST Request open zfilev2_api_open … |
ZSPACE |
Z4Pro+ |
2025-12-28T10:32:05.208Z | 2025-12-29T18:00:46.951Z | |
| cve-2025-15131 | ZSPACE Z4Pro+ HTTP POST Request status zfilev2_api_Saf… |
ZSPACE |
Z4Pro+ |
2025-12-28T10:02:06.337Z | 2025-12-29T18:01:13.797Z | |
| cve-2025-15130 | shanyu SyCms Administrative Panel FileManageController… |
shanyu |
SyCms |
2025-12-28T09:32:10.325Z | 2025-12-29T18:01:53.351Z | |
| cve-2025-15129 | ChenJinchuang Lin-CMS-TP5 File Upload LocalUploader.ph… |
ChenJinchuang |
Lin-CMS-TP5 |
2025-12-28T09:02:10.127Z | 2025-12-29T18:55:29.222Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-65442 | N/A | DOM-based Cross-Site Scripting (XSS) vulnerabilit… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-29T16:45:57.333Z |
| cve-2025-60458 | N/A | UxPlay 1.72 contains a double free vulnerability … |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-29T16:46:50.304Z |
| cve-2025-57462 | N/A | Stored cross-site scripting (xss) in machsol mach… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-30T14:42:39.714Z |
| cve-2025-15193 | D-Link DWR-M920 formParentControl sub_423848 buffer overflow |
D-Link |
DWR-M920 |
2025-12-29T15:02:08.698Z | 2025-12-29T16:10:51.648Z | |
| cve-2025-15192 | D-Link DWR-M920 formLtefotaUpgradeQuectel sub_415328 c… |
D-Link |
DWR-M920 |
2025-12-29T14:32:08.392Z | 2025-12-29T16:11:38.000Z | |
| cve-2025-57460 | N/A | File upload vulnerability in machsol machpanel 8.… |
n/a |
n/a |
2025-12-29T00:00:00.000Z | 2025-12-31T16:59:34.009Z |
| cve-2025-15191 | D-Link DWR-M920 formLtefotaUpgradeFibocom sub_4155B4 c… |
D-Link |
DWR-M920 |
2025-12-29T14:02:07.207Z | 2025-12-29T14:26:08.160Z | |
| cve-2025-15190 | D-Link DWR-M920 formFilter sub_42261C stack-based overflow |
D-Link |
DWR-M920 |
2025-12-29T13:32:08.616Z | 2025-12-29T14:26:52.164Z | |
| cve-2025-15189 | D-Link DWR-M920 formDefRoute sub_464794 buffer overflow |
D-Link |
DWR-M920 |
2025-12-29T13:02:11.742Z | 2025-12-29T13:15:00.973Z | |
| cve-2025-15188 | Campcodes Complete Online Beauty Parlor Management Sys… |
Campcodes |
Complete Online Beauty Parlor Management System |
2025-12-29T12:32:06.935Z | 2025-12-29T13:17:11.342Z | |
| cve-2025-15187 | GreenCMS File DataController.class.php path traversal |
n/a |
GreenCMS |
2025-12-29T12:02:08.285Z | 2025-12-29T12:59:20.144Z | |
| cve-2025-15186 | code-projects Refugee Food Management System addusers.… |
code-projects |
Refugee Food Management System |
2025-12-29T11:32:06.009Z | 2025-12-29T13:17:51.214Z | |
| cve-2025-15185 | code-projects Refugee Food Management System refugeesr… |
code-projects |
Refugee Food Management System |
2025-12-29T11:02:07.163Z | 2025-12-29T13:24:46.871Z | |
| cve-2025-15184 | code-projects Refugee Food Management System refugeesr… |
code-projects |
Refugee Food Management System |
2025-12-29T10:32:08.687Z | 2025-12-29T13:30:04.962Z | |
| cve-2025-15183 | code-projects Refugee Food Management System viewtaken… |
code-projects |
Refugee Food Management System |
2025-12-29T10:02:07.718Z | 2025-12-29T13:52:13.840Z | |
| cve-2025-15182 | code-projects Refugee Food Management System served.ph… |
code-projects |
Refugee Food Management System |
2025-12-29T09:32:11.171Z | 2025-12-29T16:41:01.231Z | |
| cve-2025-15181 | code-projects Refugee Food Management System pagenateR… |
code-projects |
Refugee Food Management System |
2025-12-29T09:02:05.761Z | 2025-12-29T16:41:40.624Z | |
| cve-2025-15180 | Tenda WH450 HTTP Request webExcptypemanFilte stack-bas… |
Tenda |
WH450 |
2025-12-29T08:32:07.342Z | 2025-12-29T16:43:05.384Z | |
| cve-2025-15228 | 9.3 (v4.0) 9.8 (v3.1) | WELLTEND TECHNOLOGY| BPMFlowWebkit - Arbitrary File Upload |
WELLTEND TECHNOLOGY |
BPMFlowWebkit |
2025-12-29T07:18:59.303Z | 2025-12-29T16:45:14.701Z |
| cve-2025-15227 | 8.7 (v4.0) 7.5 (v3.1) | WELLTEND TECHNOLOGY| BPMFlowWebkit - Arbitrary File Read |
WELLTEND TECHNOLOGY |
BPMFlowWebkit |
2025-12-29T07:10:24.624Z | 2025-12-29T14:31:48.689Z |
| cve-2025-15179 | Tenda WH450 qossetting stack-based overflow |
Tenda |
WH450 |
2025-12-29T08:02:08.052Z | 2025-12-29T16:44:16.742Z | |
| cve-2025-15178 | Tenda WH450 HTTP Request VirtualSer stack-based overflow |
Tenda |
WH450 |
2025-12-29T07:32:09.177Z | 2025-12-29T16:44:43.007Z | |
| cve-2025-15226 | 9.3 (v4.0) 9.8 (v3.1) | Sunnet|WMPro - Arbitrary File Upload |
Sunnet |
WMPro |
2025-12-29T06:39:27.426Z | 2025-12-29T14:34:29.835Z |
| cve-2025-15225 | 8.7 (v4.0) 7.5 (v3.1) | Sunnet|WMPro - Arbitrary File Read |
Sunnet |
WMPro |
2025-12-29T06:31:49.460Z | 2025-12-29T16:45:35.087Z |
| cve-2025-15177 | Tenda WH450 HTTP Request SetIpBind stack-based overflow |
Tenda |
WH450 |
2025-12-29T07:02:07.082Z | 2025-12-29T14:33:44.092Z | |
| cve-2025-15176 | Open5GS PFCP Session Establishment Request rule-match.… |
n/a |
Open5GS |
2025-12-29T06:32:06.957Z | 2025-12-29T14:38:33.043Z | |
| cve-2025-15175 | SohuTV CacheCloud AppController.java appCommandAnalysi… |
SohuTV |
CacheCloud |
2025-12-29T06:02:06.400Z | 2025-12-29T16:46:17.772Z | |
| cve-2025-15174 | SohuTV CacheCloud AppManageController.java doAppAuditL… |
SohuTV |
CacheCloud |
2025-12-29T05:32:06.622Z | 2025-12-29T16:46:51.322Z | |
| cve-2025-15070 | 6.8 (v4.0) 5.5 (v3.1) | Data Exposure in Gmission Web FAX |
Gmission |
Web Fax |
2025-12-29T05:06:21.656Z | 2025-12-29T17:16:42.132Z |
| cve-2025-15069 | 8.4 (v4.0) 7.1 (v3.1) | Privilege Escalation in Gmission Web FAX |
Gmission |
Web Fax |
2025-12-29T05:05:58.228Z | 2025-12-29T17:22:58.014Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192315 | Malicious code in seeds-random (npm) | 2025-12-05T03:03:24Z | 2025-12-24T10:09:30Z |
| mal-2025-192313 | Malicious code in react-svg-fill (npm) | 2025-12-05T02:57:24Z | 2025-12-05T20:41:19Z |
| mal-2025-192314 | Malicious code in react-svg-supporter (npm) | 2025-12-05T02:52:02Z | 2025-12-05T20:41:19Z |
| mal-2025-192312 | Malicious code in react-svg-bundler (npm) | 2025-12-05T02:52:02Z | 2025-12-05T20:41:19Z |
| mal-2025-192311 | Malicious code in react-icon-updater (npm) | 2025-12-05T02:50:28Z | 2025-12-05T20:41:19Z |
| mal-2025-192307 | Malicious code in jsonify-settings (npm) | 2025-12-05T02:44:48Z | 2025-12-05T20:41:18Z |
| mal-2025-192310 | Malicious code in node-tailwind (npm) | 2025-12-05T02:42:15Z | 2025-12-05T20:41:19Z |
| mal-2025-192309 | Malicious code in node-dpapi1 (npm) | 2025-12-05T02:42:15Z | 2025-12-05T20:41:19Z |
| mal-2025-192308 | Malicious code in module-listener (npm) | 2025-12-05T02:42:15Z | 2025-12-05T20:41:19Z |
| mal-2025-192305 | Malicious code in dell-recovery (PyPI) | 2025-12-04T22:01:57Z | 2025-12-04T22:01:57Z |
| mal-2025-192306 | Malicious code in dell-restore-system (PyPI) | 2025-12-04T21:59:37Z | 2025-12-04T21:59:37Z |
| mal-2025-192304 | Malicious code in elf-stats-northbound-sparkler-410 (npm) | 2025-12-04T19:12:07Z | 2025-12-23T20:41:02Z |
| mal-2025-192370 | Malicious code in elf-stats-snowdusted-cookiejar-250 (npm) | 2025-12-04T18:52:41Z | 2025-12-10T21:09:37Z |
| mal-2025-192369 | Malicious code in elf-stats-caroling-wishlist-626 (npm) | 2025-12-04T17:18:58Z | 2025-12-23T17:09:49Z |
| mal-2025-192303 | Malicious code in elf-stats-ginger-wreath-646 (npm) | 2025-12-04T13:55:53Z | 2025-12-05T20:41:17Z |
| mal-2025-192302 | Malicious code in coremsft (PyPI) | 2025-12-04T12:39:04Z | 2025-12-04T15:10:43Z |
| mal-2025-192348 | Malicious code in sd-notexsit (npm) | 2025-12-04T09:29:16Z | 2025-12-08T02:41:36Z |
| mal-2025-192301 | Malicious code in elf-stats-mulled-ornament-810 (npm) | 2025-12-04T07:15:49Z | 2025-12-05T20:41:17Z |
| mal-2025-192300 | Malicious code in elf-stats-marzipan-cocoa-562 (npm) | 2025-12-04T07:15:49Z | 2025-12-05T20:41:17Z |
| mal-2025-192299 | Malicious code in elf-stats-lanternlit-snowman-834 (npm) | 2025-12-04T07:15:49Z | 2025-12-05T20:41:17Z |
| mal-2025-192298 | Malicious code in elf-stats-candlelit-marshmallow-663 (npm) | 2025-12-04T07:15:49Z | 2025-12-05T20:41:17Z |
| mal-2025-192297 | Malicious code in elf-stats-bright-cocoa-293 (npm) | 2025-12-04T07:15:49Z | 2025-12-05T20:41:17Z |
| mal-2025-192296 | Malicious code in beep-types (npm) | 2025-12-04T07:15:49Z | 2025-12-05T20:41:16Z |
| mal-0000-ghsa-malware-f25ea00974c6b9f6 | Malware in elf-stats-candlelit-marshmallow-663 | 2025-12-04T07:15:49Z | 2025-12-04T07:15:50Z |
| mal-0000-ghsa-malware-96fd8917025af2b5 | Malware in elf-stats-marzipan-cocoa-562 | 2025-12-04T07:15:49Z | 2025-12-04T07:15:50Z |
| mal-0000-ghsa-malware-66ecb0f8992d72a6 | Malware in beep-types | 2025-12-04T07:15:49Z | 2025-12-04T07:15:50Z |
| mal-0000-ghsa-malware-5358cc61b0fff34a | Malware in elf-stats-lanternlit-snowman-834 | 2025-12-04T07:15:49Z | 2025-12-04T07:15:59Z |
| mal-0000-ghsa-malware-17a5cba56932eeba | Malware in elf-stats-mulled-ornament-810 | 2025-12-04T07:15:49Z | 2025-12-04T07:15:59Z |
| mal-0000-ghsa-malware-0628e5d1f45b5c3a | Malware in elf-stats-bright-cocoa-293 | 2025-12-04T07:15:49Z | 2025-12-04T07:15:50Z |
| mal-0000-ghsa-malware-ef08c9391950720b | Malware in hast-util-to-mdast9 | 2025-12-04T07:11:04Z | 2025-12-04T07:11:04Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:15691 | Red Hat Security Advisory: python-requests security update | 2025-09-11T13:38:00+00:00 | 2025-11-21T19:25:39+00:00 |
| rhsa-2025:15308 | Red Hat Security Advisory: OpenShift Container Platform 4.12.80 bug fix and security update | 2025-09-11T12:02:09+00:00 | 2025-11-29T00:08:54+00:00 |
| rhsa-2025:15687 | Red Hat Security Advisory: php:8.2 security update | 2025-09-11T12:00:50+00:00 | 2025-11-21T19:25:39+00:00 |
| rhsa-2025:15332 | Red Hat Security Advisory: OpenShift Container Platform 4.12.80 bug fix and security update | 2025-09-11T10:37:17+00:00 | 2025-11-29T06:53:05+00:00 |
| rhsa-2025:15684 | Red Hat Security Advisory: httpd:2.4 security update | 2025-09-11T10:36:34+00:00 | 2025-11-21T19:25:39+00:00 |
| rhsa-2025:15333 | Red Hat Security Advisory: OpenShift Container Platform 4.12.80 security and extras update | 2025-09-11T09:52:22+00:00 | 2025-11-29T00:08:54+00:00 |
| rhsa-2025:15670 | Red Hat Security Advisory: kernel security update | 2025-09-11T07:38:39+00:00 | 2025-11-21T19:25:36+00:00 |
| rhsa-2025:15668 | Red Hat Security Advisory: kernel security update | 2025-09-11T06:45:54+00:00 | 2025-11-21T19:25:33+00:00 |
| rhsa-2025:15669 | Red Hat Security Advisory: kernel security update | 2025-09-11T06:33:39+00:00 | 2025-11-21T19:25:36+00:00 |
| rhsa-2025:15666 | Red Hat Security Advisory: ImageMagick security update | 2025-09-11T06:13:40+00:00 | 2025-11-21T19:25:35+00:00 |
| rhsa-2025:15662 | Red Hat Security Advisory: kernel security update | 2025-09-11T03:48:34+00:00 | 2025-11-21T19:25:31+00:00 |
| rhsa-2025:15661 | Red Hat Security Advisory: kernel security update | 2025-09-11T03:38:29+00:00 | 2025-11-21T19:25:31+00:00 |
| rhsa-2025:15660 | Red Hat Security Advisory: kernel security update | 2025-09-11T01:52:13+00:00 | 2025-11-21T19:25:31+00:00 |
| rhsa-2025:15658 | Red Hat Security Advisory: kernel-rt security update | 2025-09-10T20:45:03+00:00 | 2025-11-21T19:25:31+00:00 |
| rhsa-2025:15657 | Red Hat Security Advisory: kernel-rt security update | 2025-09-10T18:51:02+00:00 | 2025-11-21T19:25:30+00:00 |
| rhsa-2025:15656 | Red Hat Security Advisory: kernel security update | 2025-09-10T18:25:22+00:00 | 2025-11-21T19:25:29+00:00 |
| rhsa-2025:15649 | Red Hat Security Advisory: kernel security update | 2025-09-10T17:18:12+00:00 | 2025-11-21T19:25:29+00:00 |
| rhsa-2025:15648 | Red Hat Security Advisory: kernel security update | 2025-09-10T16:23:22+00:00 | 2025-11-21T19:25:28+00:00 |
| rhsa-2025:15647 | Red Hat Security Advisory: kernel security update | 2025-09-10T16:20:58+00:00 | 2025-11-21T19:25:28+00:00 |
| rhsa-2025:15646 | Red Hat Security Advisory: kernel-rt security update | 2025-09-10T15:54:37+00:00 | 2025-11-21T19:25:27+00:00 |
| rhsa-2025:15643 | Red Hat Security Advisory: Satellite 6.15.5.4 Async Update | 2025-09-10T15:05:57+00:00 | 2025-11-21T19:25:27+00:00 |
| rhsa-2025:15622 | Red Hat Security Advisory: fence-agents security update | 2025-09-10T12:56:48+00:00 | 2025-11-21T19:25:26+00:00 |
| rhsa-2025:15619 | Red Hat Security Advisory: httpd:2.4 security update | 2025-09-10T12:38:27+00:00 | 2025-11-21T19:25:26+00:00 |
| rhsa-2025:15615 | Red Hat Security Advisory: fence-agents security update | 2025-09-10T12:28:07+00:00 | 2025-11-21T19:25:23+00:00 |
| rhsa-2025:15614 | Red Hat Security Advisory: fence-agents security update | 2025-09-10T12:27:22+00:00 | 2025-11-21T19:25:22+00:00 |
| rhsa-2025:15616 | Red Hat Security Advisory: resource-agents security update | 2025-09-10T12:20:52+00:00 | 2025-11-21T19:25:25+00:00 |
| rhsa-2025:15618 | Red Hat Security Advisory: resource-agents security update | 2025-09-10T12:20:42+00:00 | 2025-11-21T19:25:25+00:00 |
| rhsa-2025:15617 | Red Hat Security Advisory: resource-agents security update | 2025-09-10T12:20:37+00:00 | 2025-11-21T19:25:28+00:00 |
| rhsa-2025:15612 | Red Hat Security Advisory: Red Hat Data Grid 8.5.5 security update | 2025-09-10T11:57:53+00:00 | 2025-11-21T19:25:22+00:00 |
| rhsa-2025:15345 | Red Hat Security Advisory: OpenShift Container Platform 4.17.39 security and extras update | 2025-09-10T10:50:39+00:00 | 2025-11-21T23:04:35+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-39797 | xfrm: Duplicate SPI Handling | 2025-09-02T00:00:00.000Z | 2025-11-26T01:01:49.000Z |
| msrc_cve-2025-39795 | block: avoid possible overflow for chunk_sectors check in blk_stack_limits() | 2025-09-02T00:00:00.000Z | 2025-09-16T01:01:32.000Z |
| msrc_cve-2025-39794 | ARM: tegra: Use I/O memcpy to write to IRAM | 2025-09-02T00:00:00.000Z | 2025-09-16T01:01:56.000Z |
| msrc_cve-2025-39790 | bus: mhi: host: Detect events pointing to unexpected TREs | 2025-09-02T00:00:00.000Z | 2025-09-13T01:04:20.000Z |
| msrc_cve-2025-39789 | crypto: x86/aegis - Add missing error checks | 2025-09-02T00:00:00.000Z | 2025-12-07T01:51:10.000Z |
| msrc_cve-2025-39788 | scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPE | 2025-09-02T00:00:00.000Z | 2025-09-13T01:01:40.000Z |
| msrc_cve-2025-39787 | soc: qcom: mdt_loader: Ensure we don't read past the ELF header | 2025-09-02T00:00:00.000Z | 2025-09-13T01:03:36.000Z |
| msrc_cve-2025-39783 | PCI: endpoint: Fix configfs group list head handling | 2025-09-02T00:00:00.000Z | 2025-09-13T01:01:23.000Z |
| msrc_cve-2025-39781 | parisc: Drop WARN_ON_ONCE() from flush_cache_vmap | 2025-09-02T00:00:00.000Z | 2025-12-03T01:38:04.000Z |
| msrc_cve-2025-39779 | btrfs: subpage: keep TOWRITE tag until folio is cleaned | 2025-09-02T00:00:00.000Z | 2025-12-07T01:50:33.000Z |
| msrc_cve-2025-39776 | mm/debug_vm_pgtable: clear page table entries at destroy_args() | 2025-09-02T00:00:00.000Z | 2025-09-13T01:04:42.000Z |
| msrc_cve-2025-39773 | net: bridge: fix soft lockup in br_multicast_query_expired() | 2025-09-02T00:00:00.000Z | 2025-09-13T01:02:46.000Z |
| msrc_cve-2025-39772 | drm/hisilicon/hibmc: fix the hibmc loaded failed bug | 2025-09-02T00:00:00.000Z | 2025-09-13T01:04:31.000Z |
| msrc_cve-2025-39767 | LoongArch: Optimize module load time by optimizing PLT/GOT counting | 2025-09-02T00:00:00.000Z | 2025-09-13T01:03:03.000Z |
| msrc_cve-2025-39766 | net/sched: Make cake_enqueue return NET_XMIT_CN when past buffer_limit | 2025-09-02T00:00:00.000Z | 2025-09-13T01:04:14.000Z |
| msrc_cve-2025-39764 | netfilter: ctnetlink: remove refcounting in expectation dumpers | 2025-09-02T00:00:00.000Z | 2025-12-07T01:50:25.000Z |
| msrc_cve-2025-39763 | ACPI: APEI: send SIGBUS to current task if synchronous memory error not recovered | 2025-09-02T00:00:00.000Z | 2025-11-27T01:03:04.000Z |
| msrc_cve-2025-39762 | drm/amd/display: add null check | 2025-09-02T00:00:00.000Z | 2025-12-07T01:50:49.000Z |
| msrc_cve-2025-39761 | wifi: ath12k: Decrement TID on RX peer frag setup error handling | 2025-09-02T00:00:00.000Z | 2025-09-13T01:03:52.000Z |
| msrc_cve-2025-39760 | usb: core: config: Prevent OOB read in SS endpoint companion parsing | 2025-09-02T00:00:00.000Z | 2025-09-13T01:01:51.000Z |
| msrc_cve-2025-39759 | btrfs: qgroup: fix race between quota disable and quota rescan ioctl | 2025-09-02T00:00:00.000Z | 2025-09-13T01:03:25.000Z |
| msrc_cve-2025-39758 | RDMA/siw: Fix the sendmsg byte count in siw_tcp_sendpages | 2025-09-02T00:00:00.000Z | 2025-09-13T01:01:56.000Z |
| msrc_cve-2025-39757 | ALSA: usb-audio: Validate UAC3 cluster segment descriptors | 2025-09-02T00:00:00.000Z | 2025-09-13T01:04:09.000Z |
| msrc_cve-2025-39756 | fs: Prevent file descriptor table allocations exceeding INT_MAX | 2025-09-02T00:00:00.000Z | 2025-09-13T01:01:34.000Z |
| msrc_cve-2025-39754 | mm/smaps: fix race between smaps_hugetlb_range and migration | 2025-09-02T00:00:00.000Z | 2025-12-07T01:50:42.000Z |
| msrc_cve-2025-39753 | gfs2: Set .migrate_folio in gfs2_{rgrp,meta}_aops | 2025-09-02T00:00:00.000Z | 2025-12-03T01:37:58.000Z |
| msrc_cve-2025-39752 | ARM: rockchip: fix kernel hang during smp initialization | 2025-09-02T00:00:00.000Z | 2025-09-13T01:03:41.000Z |
| msrc_cve-2025-39751 | ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control | 2025-09-02T00:00:00.000Z | 2025-09-13T01:03:08.000Z |
| msrc_cve-2025-39750 | wifi: ath12k: Correct tid cleanup when tid setup fails | 2025-09-02T00:00:00.000Z | 2025-09-13T01:02:51.000Z |
| msrc_cve-2025-39749 | rcu: Protect ->defer_qs_iw_pending from data race | 2025-09-02T00:00:00.000Z | 2025-09-13T01:02:13.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2021-000067 | voidtools "Everything" vulnerable to HTTP header injection | 2021-07-09T14:40+09:00 | 2021-07-09T14:40+09:00 |
| jvndb-2021-000065 | WordPress Plugin "WordPress Meta Data Filter & Taxonomies Filter" vulnerable to cross-site request forgery | 2021-07-08T14:29+09:00 | 2021-07-08T14:29+09:00 |
| jvndb-2021-000066 | WordPress Plugin "Software License Manager" vulnerable to cross-site request forgery | 2021-07-08T13:45+09:00 | 2021-07-08T13:45+09:00 |
| jvndb-2021-001977 | Multiple vulnerabilities in Elecom routers | 2021-07-07T14:03+09:00 | 2021-07-12T16:04+09:00 |
| jvndb-2021-000064 | GU App for Android fails to restrict access permissions | 2021-07-07T13:16+09:00 | 2021-07-07T13:16+09:00 |
| jvndb-2021-001968 | Multiple vulnerabilities in Trend Micro Password Manager | 2021-07-06T16:08+09:00 | 2021-07-06T16:08+09:00 |
| jvndb-2021-000063 | WordPress Plugin "WordPress Email Template Designer - WP HTML Mail" vulnerable to cross-site request forgery | 2021-07-06T14:50+09:00 | 2021-07-06T14:50+09:00 |
| jvndb-2021-000062 | WordPress Plugin "WPCS - WordPress Currency Switcher" vulnerable to cross-site request forgery | 2021-07-06T14:11+09:00 | 2021-07-06T14:11+09:00 |
| jvndb-2021-000061 | A-Stage SCT-40CM01SR and AT-40CM01SR vulnerable to authentication bypass | 2021-07-05T14:28+09:00 | 2021-07-05T14:28+09:00 |
| jvndb-2021-000059 | EC-CUBE fails to restrict access permissions | 2021-07-01T15:49+09:00 | 2021-07-01T15:49+09:00 |
| jvndb-2007-002102 | boastMachine vulnerable to cross-site scripting | 2021-06-30T14:32+09:00 | 2021-06-30T14:32+09:00 |
| jvndb-2021-000058 | IkaIka RSS Reader vulnerable to cross-site scripting | 2021-06-30T14:21+09:00 | 2021-06-30T14:21+09:00 |
| jvndb-2021-000056 | WordPress Plugin "WordPress Popular Posts" vulnerable to cross-site scripting | 2021-06-30T11:36+09:00 | 2021-06-30T11:36+09:00 |
| jvndb-2021-000057 | Multiple cross-site scripting vulnerabilities in EC-CUBE | 2021-06-23T15:15+09:00 | 2021-06-23T15:15+09:00 |
| jvndb-2021-000055 | WordPress plugin "Fudousan plugin" series vulnerable to cross-site scripting | 2021-06-22T15:06+09:00 | 2021-06-22T15:06+09:00 |
| jvndb-2021-000054 | Inkdrop vulnerable to OS command injection | 2021-06-22T15:06+09:00 | 2021-06-22T15:06+09:00 |
| jvndb-2021-000053 | Hitachi Virtual File Platform vulnerable to OS command injection | 2021-06-18T15:45+09:00 | 2021-06-18T15:45+09:00 |
| jvndb-2021-000052 | Hitachi Application Server Help vulnerable cross-site scripting | 2021-06-17T15:11+09:00 | 2021-06-17T15:11+09:00 |
| jvndb-2021-000051 | Multiple cross-site scripting vulnerabilities in multiple EC-CUBE plugins provided by EC-CUBE | 2021-06-16T16:18+09:00 | 2021-06-16T16:18+09:00 |
| jvndb-2021-000049 | Multiple ETUNA EC-CUBE plugins vulnerable to cross-site scripting | 2021-06-15T16:09+09:00 | 2021-06-16T11:52+09:00 |
| jvndb-2021-000050 | Multiple vulnerabilities in GROWI | 2021-06-14T15:10+09:00 | 2021-06-14T15:10+09:00 |
| jvndb-2021-000048 | Asken App for Android fails to restrict custom URL schemes properly | 2021-06-14T15:10+09:00 | 2021-06-14T15:10+09:00 |
| jvndb-2021-000047 | WordPress plugin "Welcart e-Commerce" vulnerable to cross-site scripting | 2021-06-11T15:24+09:00 | 2021-06-11T15:24+09:00 |
| jvndb-2021-001756 | urllib3 vulnerable to Regular expression Denial-of-Service (ReDoS) | 2021-06-08T12:21+09:00 | 2021-06-08T12:21+09:00 |
| jvndb-2021-000046 | ATOM - Smart life App vulnerable to improper server certificate verification | 2021-06-03T14:05+09:00 | 2021-06-03T14:05+09:00 |
| jvndb-2021-000045 | goo blog App fails to restrict custom URL schemes properly | 2021-06-02T15:46+09:00 | 2021-06-02T15:46+09:00 |
| jvndb-2021-001575 | Multiple vulnerabilities in Buffalo WSR-1166DHP3 and WSR-1166DHP4 routers | 2021-06-01T15:18+09:00 | 2021-06-01T15:18+09:00 |
| jvndb-2021-000044 | Zettlr vulnerable to cross-site scripting | 2021-05-26T14:50+09:00 | 2021-06-03T16:21+09:00 |
| jvndb-2021-001506 | Hitachi Ops Center Analyzer vulnerability of communication using a certificate not intended by the user | 2021-05-25T14:11+09:00 | 2021-05-25T14:11+09:00 |
| jvndb-2021-000041 | The installers of ScanSnap Manager may insecurely load Dynamic Link Libraries | 2021-05-21T16:34+09:00 | 2021-05-21T16:34+09:00 |
| ID | Description | Updated |
|---|