Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-67984	N/A	WordPress NPS computy plugin <= 2.8.2 - Cross Site Scr…	calliko	NPS computy	2026-02-20T15:46:31.564Z	2026-02-20T15:46:31.564Z
CVE-2025-67982	N/A	WordPress Urna theme <= 2.5.12 - Local File Inclusion …	thembay	Urna	2026-02-20T15:46:31.376Z	2026-02-20T15:46:31.376Z
CVE-2025-67981	N/A	WordPress Besa theme <= 2.3.15 - Local File Inclusion …	thembay	Besa	2026-02-20T15:46:31.208Z	2026-02-20T15:46:31.208Z
CVE-2025-67980	N/A	WordPress Hara theme <= 1.2.17 - Local File Inclusion …	thembay	Hara	2026-02-20T15:46:31.029Z	2026-02-20T15:46:31.029Z
CVE-2025-67979	N/A	WordPress WPForms Google Sheet Connector plugin <= 4.0…	WesternDeal	WPForms Google Sheet Connector	2026-02-20T15:46:30.861Z	2026-02-20T15:46:30.861Z
CVE-2025-67978	N/A	WordPress Educare plugin <= 1.6.1 - Cross Site Scripti…	FixBD	Educare	2026-02-20T15:46:30.665Z	2026-02-20T15:46:30.665Z
CVE-2025-67977	N/A	WordPress HAPPY plugin <= 1.0.8 - Broken Access Contro…	VillaTheme	HAPPY	2026-02-20T15:46:30.439Z	2026-02-20T15:46:30.439Z
CVE-2025-67975	N/A	WordPress aDirectory plugin <= 3.0.3 - Broken Access C…	aDirectory	aDirectory	2026-02-20T15:46:30.134Z	2026-02-20T15:46:30.134Z
CVE-2025-67974	N/A	WordPress WPLegalPages plugin <= 3.5.4 - Broken Access…	WP Legal Pages	WPLegalPages	2026-02-20T15:46:29.701Z	2026-02-20T15:46:29.701Z
CVE-2025-67973	N/A	WordPress Sunshine Photo Cart plugin <= 3.5.6.2 - Brok…	sunshinephotocart	Sunshine Photo Cart	2026-02-20T15:46:29.373Z	2026-02-20T15:46:29.373Z
CVE-2025-67972	N/A	WordPress Prague plugin <= 2.2.8 - Cross Site Scriptin…	fox-themes	Prague	2026-02-20T15:46:29.103Z	2026-02-20T15:46:29.103Z
CVE-2025-67971	N/A	WordPress FluentCart plugin < 1.3.0 - Cross Site Scrip…	WPManageNinja	FluentCart	2026-02-20T15:46:28.917Z	2026-02-20T15:46:28.917Z
CVE-2025-67970	N/A	WordPress Schedula plugin <= 1.0 - Broken Access Contr…	vertim	Schedula	2026-02-20T15:46:28.741Z	2026-02-20T15:46:28.741Z
CVE-2025-67969	N/A	WordPress UPI QR Code Payment Gateway for WooCommerce …	knitpay	UPI QR Code Payment Gateway for WooCommerce	2026-02-20T15:46:28.574Z	2026-02-20T15:46:28.574Z
CVE-2025-67624	N/A	WordPress Optimize More! – Images plugin <= 1.1.3 - Br…	Arya Dhiratara	Optimize More! – Images	2026-02-20T15:46:28.340Z	2026-02-20T15:46:28.340Z
CVE-2025-67547	N/A	WordPress Konte theme <= 2.4.6 - Broken Access Control…	uixthemes	Konte	2026-02-20T15:46:27.909Z	2026-02-20T15:46:27.909Z
CVE-2025-60183	N/A	WordPress Silencesoft RSS Reader Plugin <= 0.6 - Cross…	silence	Silencesoft RSS Reader	2026-02-20T15:46:27.695Z	2026-02-20T15:46:27.695Z
CVE-2025-60087	N/A	WordPress Extensive VC Addons for WPBakery page builde…	Nenad Obradovic	Extensive VC Addons for WPBakery page builder	2026-02-20T15:46:27.515Z	2026-02-20T15:46:27.515Z
CVE-2025-53237	N/A	WordPress WP Wizard Cloak Plugin <= 1.0.1 - Cross Site…	Soflyy	WP Wizard Cloak	2026-02-20T15:46:27.310Z	2026-02-20T15:46:27.310Z
CVE-2025-53233	N/A	WordPress Storyform plugin <= 0.6.14 - Cross Site Scri…	RylanH	Storyform	2026-02-20T15:46:27.120Z	2026-02-20T15:46:27.120Z
CVE-2025-53231	N/A	WordPress Easy Taxonomy Images plugin <= 1.0.1 - Cross…	wpdevstudio	Easy Taxonomy Images	2026-02-20T15:46:26.944Z	2026-02-20T15:46:26.944Z
CVE-2025-53228	N/A	WordPress bbpress Simple Advert Units Plugin <= 0.41 -…	jezza101	bbpress Simple Advert Units	2026-02-20T15:46:26.768Z	2026-02-20T15:46:26.768Z
CVE-2025-53217	N/A	WordPress AIO WP Builder Plugin <= 2.0.2 - Broken Acce…	staviravn	AIO WP Builder	2026-02-20T15:46:26.588Z	2026-02-20T15:46:26.588Z
CVE-2025-52744	N/A	WordPress Inpersttion For Theme plugin <= 1.0 - Arbitr…	inpersttion	Inpersttion For Theme	2026-02-20T15:46:26.398Z	2026-02-20T15:46:26.398Z
CVE-2024-56208	N/A	WordPress NewsMash theme <= 1.0.71 - Cross Site Script…	desertthemes	NewsMash	2026-02-20T15:46:26.166Z	2026-02-20T15:46:26.166Z
CVE-2024-54222	N/A	WordPress Seraphinite Accelerator plugin <= 2.22.15 - …	Seraphinite Solutions	Seraphinite Accelerator	2026-02-20T15:46:25.825Z	2026-02-20T15:46:25.825Z
CVE-2024-52387	N/A	WordPress Master Addons plugin <= 2.0.9.9.4 - Cross S…	Liton Arefin	Master Addons for Elementor	2026-02-20T15:46:25.639Z	2026-02-20T15:46:25.639Z
CVE-2024-51915	N/A	WordPress LiteSpeed Cache plugin <= 6.5.2 - Cross Site…	LiteSpeed Technologies	LiteSpeed Cache	2026-02-20T15:46:25.475Z	2026-02-20T15:46:25.475Z
CVE-2024-50555	N/A	WordPress Elementor Website Builder plugin <= 3.29.0 -…	Elementor	Elementor Website Builder	2026-02-20T15:46:25.284Z	2026-02-20T15:46:25.284Z
CVE-2024-50452	N/A	WordPress Nexter Blocks plugin <= 3.3.3 - Cross Site S…	POSIMYTH	Nexter Blocks	2026-02-20T15:46:25.053Z	2026-02-20T15:46:25.053Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-68834	N/A	WordPress Sync Master Sheet – Product Sync with Google…	Saiful Islam	Sync Master Sheet – Product Sync with Google Sheet for WooCommerce	2026-02-20T15:46:41.323Z	2026-02-20T15:46:41.323Z
CVE-2025-68564	N/A	WordPress Sendy plugin <= 3.4.2 - Broken Access Contro…	sendy	Sendy	2026-02-20T15:46:41.136Z	2026-02-20T15:46:41.136Z
CVE-2025-68552	N/A	WordPress WooCommerce Coming Soon Product with Countdo…	WebCodingPlace	WooCommerce Coming Soon Product with Countdown	2026-02-20T15:46:40.954Z	2026-02-20T15:46:40.954Z
CVE-2025-68549	N/A	WordPress Wiguard theme < 2.0.1 - Arbitrary File Uploa…	zozothemes	Wiguard	2026-02-20T15:46:40.793Z	2026-02-20T15:46:40.793Z
CVE-2025-68545	N/A	WordPress Nika theme <= 1.2.14 - Local File Inclusion …	thembay	Nika	2026-02-20T15:46:40.615Z	2026-02-20T15:46:40.615Z
CVE-2025-68543	N/A	WordPress Diza theme <= 1.3.15 - Local File Inclusion …	thembay	Diza	2026-02-20T15:46:40.451Z	2026-02-20T15:46:40.451Z
CVE-2025-68542	N/A	WordPress Checkout Gateway for IRIS plugin <= 1.3 - Br…	vgdevsolutions	Checkout Gateway for IRIS	2026-02-20T15:46:40.232Z	2026-02-20T15:46:40.232Z
CVE-2025-68541	N/A	WordPress Ippsum theme <= 1.2.0 - PHP Object Injection…	BoldThemes	Ippsum	2026-02-20T15:46:40.047Z	2026-02-20T15:46:40.047Z
CVE-2025-68539	N/A	WordPress Fana theme <= 1.1.35 - Local File Inclusion …	thembay	Fana	2026-02-20T15:46:39.873Z	2026-02-20T15:46:39.873Z
CVE-2025-68536	N/A	WordPress Zota theme <= 1.3.14 - Local File Inclusion …	thembay	Zota	2026-02-20T15:46:39.679Z	2026-02-20T15:46:39.679Z
CVE-2025-68534	N/A	WordPress PDF for WPForms plugin <= 6.3.0 - Broken Acc…	add-ons.org	PDF for WPForms	2026-02-20T15:46:39.366Z	2026-02-20T15:46:39.366Z
CVE-2025-68531	N/A	WordPress ModelTheme Addons for WPBakery and Elementor…	modeltheme	ModelTheme Addons for WPBakery and Elementor	2026-02-20T15:46:39.192Z	2026-02-20T15:46:39.192Z
CVE-2025-68526	N/A	WordPress Modal Popup Box plugin <= 1.6.1 - PHP Object…	A WP Life	Modal Popup Box	2026-02-20T15:46:39.001Z	2026-02-20T15:46:39.001Z
CVE-2025-68514	N/A	WordPress Paid Member Subscriptions plugin <= 2.16.8 -…	Cozmoslabs	Paid Member Subscriptions	2026-02-20T15:46:38.821Z	2026-02-20T15:46:38.821Z
CVE-2025-68501	N/A	WordPress Mollie Payments for WooCommerce plugin <= 8.…	Mollie	Mollie Payments for WooCommerce	2026-02-20T15:46:38.572Z	2026-02-20T15:46:38.572Z
CVE-2025-68495	N/A	WordPress JetEngine plugin <= 3.8.0 - Reflected Cross …	Crocoblock	JetEngine	2026-02-20T15:46:38.333Z	2026-02-20T15:46:38.333Z
CVE-2025-68069	N/A	WordPress Directorist plugin <= 8.5.10 - Broken Access…	wpWax	Directorist	2026-02-20T15:46:38.064Z	2026-02-20T15:46:38.064Z
CVE-2025-68051	N/A	WordPress Shiprocket plugin <= 2.0.8 - Insecure Direct…	Shiprocket	Shiprocket	2026-02-20T15:46:37.798Z	2026-02-20T15:46:37.798Z
CVE-2025-68050	N/A	WordPress Leadpages plugin <= 1.1.3 - Broken Access Co…	Leadpages	Leadpages	2026-02-20T15:46:37.392Z	2026-02-20T15:46:37.392Z
CVE-2025-68048	N/A	WordPress NextMove Lite plugin <= 2.23.0 - Broken Acce…	XLPlugins	NextMove Lite	2026-02-20T15:46:37.159Z	2026-02-20T15:46:37.159Z
CVE-2025-68043	N/A	WordPress LottieFiles plugin <= 3.0.0 - Broken Access …	LottieFiles	LottieFiles	2026-02-20T15:46:36.994Z	2026-02-20T15:46:36.994Z
CVE-2025-68042	N/A	WordPress Travelpayouts plugin <= 1.2.1 - Broken Acces…	Travelpayouts	Travelpayouts	2026-02-20T15:46:36.826Z	2026-02-20T15:46:36.826Z
CVE-2025-68037	N/A	WordPress Export Media URLs plugin <= 2.2 - Reflected …	Atlas Gondal	Export Media URLs	2026-02-20T15:46:36.647Z	2026-02-20T15:46:36.647Z
CVE-2025-68032	N/A	WordPress Advanced WC Analytics plugin <= 3.19.0 - Set…	Passionate Brains	Advanced WC Analytics	2026-02-20T15:46:36.477Z	2026-02-20T15:46:36.477Z
CVE-2025-68031	N/A	WordPress افزونه پیامک حرفه ای فراز اس ام اس plugin <=…	faraz sms	افزونه پیامک حرفه ای فراز اس ام اس	2026-02-20T15:46:36.305Z	2026-02-20T15:46:36.305Z
CVE-2025-68028	N/A	WordPress GA4WP: Google Analytics for WordPress plugin…	Passionate Brains	GA4WP: Google Analytics for WordPress	2026-02-20T15:46:36.112Z	2026-02-20T15:46:36.112Z
CVE-2025-68026	N/A	WordPress LC Wizard plugin <= 2.1.1 - Settings Change …	Niaj Morshed	LC Wizard	2026-02-20T15:46:35.938Z	2026-02-20T15:46:35.938Z
CVE-2025-68025	N/A	WordPress Addonify Floating Cart For WooCommerce plugi…	Addonify	Addonify Floating Cart For WooCommerce	2026-02-20T15:46:35.764Z	2026-02-20T15:46:35.764Z
CVE-2025-68024	N/A	WordPress Addonify – WooCommerce Wishlist plugin <= 2.…	Addonify	Addonify – WooCommerce Wishlist	2026-02-20T15:46:35.579Z	2026-02-20T15:46:35.579Z
CVE-2025-68023	N/A	WordPress Addonify – Compare Products For WooCommerce …	Addonify	Addonify – Compare Products For WooCommerce	2026-02-20T15:46:35.312Z	2026-02-20T15:46:35.312Z

ID	Description	Published	Updated
fkie_cve-2025-68495	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-20T16:22:09.630	2026-02-20T16:55:22.933
fkie_cve-2025-68069	Missing Authorization vulnerability in wpWax Directorist directorist allows Exploiting Incorrectly …	2026-02-20T16:22:09.380	2026-02-20T16:55:22.933
fkie_cve-2025-68051	Authorization Bypass Through User-Controlled Key vulnerability in Shiprocket Shiprocket shiprocket …	2026-02-20T16:22:09.003	2026-02-20T16:55:22.933
fkie_cve-2025-68050	Missing Authorization vulnerability in Leadpages Leadpages leadpages allows Exploiting Incorrectly …	2026-02-20T16:22:08.877	2026-02-20T16:55:22.933
fkie_cve-2025-68048	Missing Authorization vulnerability in XLPlugins NextMove Lite woo-thank-you-page-nextmove-lite all…	2026-02-20T16:22:08.750	2026-02-20T16:55:22.933
fkie_cve-2025-68043	Missing Authorization vulnerability in LottieFiles LottieFiles lottiefiles allows Exploiting Incorr…	2026-02-20T16:22:08.620	2026-02-20T16:55:22.933
fkie_cve-2025-68042	Missing Authorization vulnerability in Travelpayouts Travelpayouts travelpayouts allows Exploiting …	2026-02-20T16:22:08.493	2026-02-20T16:55:22.933
fkie_cve-2025-68037	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-20T16:22:08.353	2026-02-20T16:55:22.933
fkie_cve-2025-68032	Missing Authorization vulnerability in Passionate Brains Advanced WC Analytics advance-wc-analytics…	2026-02-20T16:22:08.220	2026-02-20T16:55:22.933
fkie_cve-2025-68031	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-20T16:22:08.087	2026-02-20T16:55:22.933
fkie_cve-2025-68028	Missing Authorization vulnerability in Passionate Brains GA4WP: Google Analytics for WordPress ga-f…	2026-02-20T16:22:07.930	2026-02-20T16:55:22.933
fkie_cve-2025-68026	Missing Authorization vulnerability in Niaj Morshed LC Wizard ghl-wizard allows Exploiting Incorrec…	2026-02-20T16:22:07.780	2026-02-20T16:55:22.933
fkie_cve-2025-68025	Missing Authorization vulnerability in Addonify Addonify Floating Cart For WooCommerce addonify-flo…	2026-02-20T16:22:07.657	2026-02-20T16:55:22.933
fkie_cve-2025-68024	Missing Authorization vulnerability in Addonify Addonify – WooCommerce Wishlist addonify-wishlist a…	2026-02-20T16:22:07.527	2026-02-20T16:55:22.933
fkie_cve-2025-68023	Missing Authorization vulnerability in Addonify Addonify – Compare Products For WooCommerce a…	2026-02-20T16:22:07.390	2026-02-20T16:55:22.933
fkie_cve-2025-68022	Missing Authorization vulnerability in soporteblue Plugin BlueX for WooCommerce bluex-for-woocommer…	2026-02-20T16:22:07.247	2026-02-20T16:55:22.933
fkie_cve-2025-68021	Missing Authorization vulnerability in ConveyThis ConveyThis conveythis-translate allows Exploiting…	2026-02-20T16:22:07.110	2026-02-20T16:55:22.933
fkie_cve-2025-68005	Missing Authorization vulnerability in themewant Easy Hotel Booking easy-hotel allows Exploiting In…	2026-02-20T16:22:06.973	2026-02-20T16:55:22.933
fkie_cve-2025-68002	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 100…	2026-02-20T16:22:06.530	2026-02-20T16:55:22.933
fkie_cve-2025-68000	Missing Authorization vulnerability in PickPlugins Testimonial Slider testimonial allows Exploiting…	2026-02-20T16:22:06.363	2026-02-20T16:55:22.933
fkie_cve-2025-67998	Authentication Bypass Using an Alternate Path or Channel vulnerability in kamleshyadav Miraculous E…	2026-02-20T16:22:06.200	2026-02-20T16:55:22.933
fkie_cve-2025-67997	Deserialization of Untrusted Data vulnerability in BoldThemes Travelicious travelicious allows Obje…	2026-02-20T16:22:06.063	2026-02-20T16:55:22.933
fkie_cve-2025-67996	Deserialization of Untrusted Data vulnerability in BoldThemes Nestin nestin allows Object Injection…	2026-02-20T16:22:05.907	2026-02-20T16:55:22.933
fkie_cve-2025-67995	Deserialization of Untrusted Data vulnerability in LoftOcean PatioTime patiotime allows Object Inje…	2026-02-20T16:22:05.770	2026-02-20T16:55:22.933
fkie_cve-2025-67994	Missing Authorization vulnerability in YayCommerce YayCurrency yaycurrency allows Exploiting Incorr…	2026-02-20T16:22:05.637	2026-02-20T16:55:22.933
fkie_cve-2025-67993	Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Exploit…	2026-02-20T16:22:05.500	2026-02-20T16:55:22.933
fkie_cve-2025-67992	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-02-20T16:22:05.360	2026-02-20T16:55:22.933
fkie_cve-2025-67991	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-20T16:22:05.230	2026-02-20T16:55:22.933
fkie_cve-2025-67990	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-20T16:22:05.100	2026-02-20T16:55:22.933
fkie_cve-2025-67988	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-02-20T16:22:04.970	2026-02-20T16:55:22.933

ID	Severity	Description	Published	Updated
ghsa-g3p5-97qh-q84r	4.3 (3.1)	The Whatsiplus Scheduled Notification for Woocommerce plugin for WordPress is vulnerable to Cross-S…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-fphv-qqwf-v9gp	6.5 (3.1)	The Shield Security plugin for WordPress is vulnerable to Cross-Site Request Forgery in all version…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-c783-xf2p-gqh6	7.2 (3.1)	The WP Customer Reviews plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via th…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-8m9g-3hqh-3f45	6.4 (3.1)	The Groups plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'grou…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-8f6v-m94c-843c	4.4 (3.1)	The PostmarkApp Email Integrator plugin for WordPress is vulnerable to Stored Cross-Site Scripting …	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-89v4-vh9p-rj53	6.4 (3.1)	The Advance Block Extend plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the …	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-7v8v-vq7m-6xxj	4.4 (3.1)	The TalkJS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in …	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-7fcp-xw65-jj37	6.4 (3.1)	The Advanced Custom Fields: Font Awesome Field plugin for WordPress is vulnerable to Cross-Site Scr…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-52hj-3g4x-h9g2	10.0 (4.0)	OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a ty…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-2mm4-m5m7-qxvr	4.4 (3.1)	The Tennis Court Bookings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via adm…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-2h7x-xp9w-mxwc	9.8 (3.1)	The s2Member plugin for WordPress is vulnerable to privilege escalation via account takeover in all…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-27f4-925x-grx7	9.8 (3.1)	The Prodigy Commerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up …	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-xwqg-rc23-pwjj	7.2 (3.1)	The CTX Feed – WooCommerce Product Feed Manager plugin for WordPress is vulnerable to unauthorized …	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-xf2h-44c3-m634	6.4 (3.1)	The Drift theme for WordPress is vulnerable to Stored Cross-Site Scripting via the post title in al…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-x7xv-7m65-qgq2	7.5 (3.1)	The GDPR Cookie Consent plugin for WordPress is vulnerable to unauthorized access of data due to a …	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-x5m6-cw78-7xrw	6.4 (3.1)	The StatCounter – Free Real Time Visitor Stats plugin for WordPress is vulnerable to Stored Cross-S…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-w64w-h2r9-c284	6.4 (3.1)	The Smartsupp – live chat, AI shopping assistant and chatbots plugin for WordPress is vulnerable to…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-w3jh-c422-596p	8.8 (3.1)	The NewsBlogger theme for WordPress is vulnerable to Cross-Site Request Forgery in versions 0.2.5.6…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-vrhw-wccx-mc8w	6.4 (3.1)	The Easy Table of Contents plugin for WordPress is vulnerable to Stored Cross-Site Scripting via th…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-vjww-2j24-c357	9.8 (3.1)	The Lizza LMS Pro plugin for WordPress is vulnerable to Privilege Escalation in all versions up to,…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-qqx4-ccm8-48mc	5.3 (3.1)	The Breadcrumb NavXT plugin for WordPress is vulnerable to authorization bypass through user-contro…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-qc95-pwfh-96qq	6.4 (3.1)	The Printful Integration for WooCommerce plugin for WordPress is vulnerable to Server-Side Request …	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-q54q-h92j-2fm3	6.5 (3.1)	The Aruba HiSpeed Cache plugin for WordPress is vulnerable to unauthorized modification of data due…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-mc3j-rvrg-782p	4.3 (3.1)	The Page Title, Description & Open Graph Updater plugin for WordPress is vulnerable to Cross-Site R…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-m8v5-px35-v2vx	4.3 (3.1)	The Mailchimp List Subscribe Form plugin for WordPress is vulnerable to Cross-Site Request Forgery …	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-j78x-7p3c-fhw7	9.8 (3.1)	The Clasifico Listing plugin for WordPress is vulnerable to privilege escalation in versions up to,…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-gg48-7983-fghq	6.4 (3.1)	The Renden theme for WordPress is vulnerable to Stored Cross-Site Scripting via the post title in a…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-fr28-xgc9-rqcr	6.1 (3.1)	The iXML – Google XML sitemap generator plugin for WordPress is vulnerable to Reflected Cross-Site …	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-fqr3-6hfc-hrf6	5.3 (3.1)	The Popup Builder – Create highly converting, mobile friendly marketing popups. plugin for WordPres…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-f54r-2cjp-2jhw	6.4 (3.1)	The Album and Image Gallery plus Lightbox plugin for WordPress is vulnerable to Stored Cross-Site S…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z

ID	Severity	Description	Package	Published	Updated
pysec-2023-134		Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthor…	apache-airflow	2023-08-05T07:15:00+00:00	2023-08-05T10:26:00.927631+00:00
pysec-2023-133	5.3 (3.1)	Vyper is a Pythonic programming language that targets the Ethereum Virtual Machine (EVM).…	vyper	2023-07-25T21:15:00+00:00	2023-08-03T18:27:50.332832+00:00
pysec-2023-132	6.1 (3.1)	copyparty is file server software. Prior to version 1.8.7, the application contains a ref…	copyparty	2023-07-25T22:15:00+00:00	2023-08-02T20:24:02.446410+00:00
pysec-2023-131	7.5 (3.1)	Vyper is a Pythonic Smart Contract Language for the ethereum virtual machine. In versions…	vyper	2023-04-24T22:15:00+00:00	2023-08-02T18:28:00.492615+00:00
pysec-2022-43053	7.5 (3.1)	Vyper is a Pythonic Smart Contract Language for the ethereum virtual machine. In versions…	vyper	2022-06-09T09:15:00+00:00	2023-08-02T18:28:00.437362+00:00
pysec-2023-130	6.5 (3.1)	Sentry is an error tracking and performance monitoring platform. Starting in version 8.21…	sentry	2023-07-25T19:15:00+00:00	2023-08-02T16:31:39.850029+00:00
pysec-2023-129	5.4 (3.1)	Indico is an open source a general-purpose, web based event management tool. There is a C…	indico	2023-07-21T19:15:00+00:00	2023-07-31T20:36:08.003610+00:00
pysec-2023-128	2.8 (3.1)	A flaw was found in the keylime attestation verifier, which fails to flag a device's subm…	keylime	2023-07-19T19:15:00+00:00	2023-07-28T16:31:09.279625+00:00
pysec-2023-127		Copyparty is a portable file server. Versions prior to 1.8.2 are subject to a path traver…	copyparty	2023-07-14T20:15:00+00:00	2023-07-27T20:23:01.674307+00:00
pysec-2023-126		PaddlePaddle before 2.5.0 has a command injection in fs.py. This resulted in the ability …	paddlepaddle	2023-07-26T12:15:00+00:00	2023-07-26T14:25:58.775032+00:00
pysec-2023-125		FPE in paddle.trace in PaddlePaddle before 2.5.0. This flaw can cause a runtime crash and…	paddlepaddle	2023-07-26T12:15:00+00:00	2023-07-26T14:25:58.693754+00:00
pysec-2023-124		Heap buffer overflow in paddle.trace in PaddlePaddle before 2.5.0. This flaw can lead to …	paddlepaddle	2023-07-26T11:15:00+00:00	2023-07-26T12:51:10.139446+00:00
pysec-2023-123		Null pointer dereference in paddle.flip in PaddlePaddle before 2.5.0. This resulted in a …	paddlepaddle	2023-07-26T11:15:00+00:00	2023-07-26T12:51:10.092120+00:00
pysec-2023-122		Use after free in paddle.diagonal in PaddlePaddle before 2.5.0. This resulted in a potent…	paddlepaddle	2023-07-26T10:15:00+00:00	2023-07-26T12:51:10.047714+00:00
pysec-2023-121		A vulnerability was found in zstd v1.4.10, where an attacker can supply empty string as a…	zstd	2023-03-31T20:15:00+00:00	2023-07-25T16:31:58.309647+00:00
pysec-2021-13		The Flask-Caching extension through 1.10.1 for Flask relies on Pickle for serialization, …	flask-caching	2021-05-13T23:15:00Z	2023-07-25T00:34:15.721702Z
pysec-2023-120		### Impact aiohttp v3.8.4 and earlier are [bundled with llhttp v6.0.6](https://github.co…	aiohttp	2023-07-20T14:52:00+00:00	2023-07-24T14:58:05.562874+00:00
pysec-2023-119		Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows unautho…	apache-airflow	2023-07-12T10:15:00+00:00	2023-07-20T19:19:47.109731+00:00
pysec-2023-118		RestrictedPython is a tool that helps to define a subset of the Python language which all…	restrictedpython	2023-07-11T18:15:00+00:00	2023-07-19T20:24:12.944004+00:00
pysec-2023-117		A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via …	pygments	2023-07-19T15:15:00+00:00	2023-07-19T17:26:16.938508+00:00
pysec-2023-116		xalpha v0.11.4 is vulnerable to Remote Command Execution (RCE).	xalpha	2023-07-11T15:15:00+00:00	2023-07-18T16:37:19.127985+00:00
pysec-2023-115		Sentry is an error tracking and performance monitoring platform. Starting in version 23.6…	sentry	2023-07-06T23:15:00+00:00	2023-07-17T20:27:52.414117+00:00
pysec-2023-114		DISPUTED A use-after-free issue was discovered in Py_FindObjects() function in SciP…	scipy	2023-07-06T21:15:00+00:00	2023-07-17T20:27:52.117232+00:00
pysec-2023-113		Products.CMFCore are the key framework services for the Zope Content Management Framework…	products-cmfcore	2023-07-03T17:15:00+00:00	2023-07-17T20:27:51.578279+00:00
pysec-2023-111		SQLFluff is a SQL linter. Prior to version 2.1.2, in environments where untrusted users h…	sqlfluff	2023-07-06T16:15:00+00:00	2023-07-13T21:23:24.026294+00:00
pysec-2023-108		MechanicalSoup is a Python library for automating interaction with websites. Starting in …	mechanicalsoup	2023-07-05T20:15:00+00:00	2023-07-12T18:32:48.148340+00:00
pysec-2023-107		Fides is an open-source privacy engineering platform for managing the fulfillment of data…	ethyca-fides	2023-07-05T22:15:00+00:00	2023-07-12T16:35:41.463418+00:00
pysec-2023-106		Apache Airflow, versions before 2.6.3, has a vulnerability where an authenticated user ca…	apache-airflow	2023-07-12T10:15:00+00:00	2023-07-12T12:59:56.816194+00:00
pysec-2023-105		Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an atta…	apache-airflow	2023-07-12T10:15:00+00:00	2023-07-12T12:59:56.733680+00:00
pysec-2023-104		Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an atta…	apache-airflow	2023-07-12T10:15:00+00:00	2023-07-12T12:59:56.649145+00:00

ID	Description	Updated
gsd-2024-33253	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.606354Z
gsd-2024-33252	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.638622Z
gsd-2024-33251	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.755000Z
gsd-2024-33250	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.741217Z
gsd-2024-33249	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.744741Z
gsd-2024-33248	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.747603Z
gsd-2024-33247	Sourcecodester Employee Task Management System v1.0 is vulnerable to SQL Injection via ad…	2024-04-24T05:02:09.612320Z
gsd-2024-33246	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.707963Z
gsd-2024-33245	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.654902Z
gsd-2024-33244	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.708588Z
gsd-2024-33243	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.709233Z
gsd-2024-33242	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.632369Z
gsd-2024-33241	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.612131Z
gsd-2024-33240	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.644562Z
gsd-2024-33239	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.683200Z
gsd-2024-33238	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.747012Z
gsd-2024-33237	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.743713Z
gsd-2024-33236	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.705030Z
gsd-2024-33235	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.612913Z
gsd-2024-33234	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.721580Z
gsd-2024-33233	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.664185Z
gsd-2024-33232	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.710450Z
gsd-2024-33231	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.702080Z
gsd-2024-33230	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.761978Z
gsd-2024-33229	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.752692Z
gsd-2024-33228	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.693921Z
gsd-2024-33227	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.761572Z
gsd-2024-33226	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.700419Z
gsd-2024-33225	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.733514Z
gsd-2024-33224	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.603732Z

ID	Description	Published	Updated
MAL-2026-521	Malicious code in hammer-jquery (npm)	2026-01-27T02:25:01Z	2026-02-02T05:56:27Z
MAL-2026-520	Malicious code in ftm-noderpc (npm)	2026-01-27T02:44:52Z	2026-02-02T05:56:27Z
mal-2026-588	Malicious code in chai-sub (npm)	2026-01-28T14:53:28Z	2026-02-02T05:56:26Z
mal-2026-587	Malicious code in chai-px (npm)	2026-01-28T14:48:04Z	2026-02-02T05:56:26Z
mal-2026-586	Malicious code in chai-chains-async (npm)	2026-01-28T14:46:57Z	2026-02-02T05:56:26Z
mal-2026-585	Malicious code in chai-async-tests (npm)	2026-01-28T14:56:54Z	2026-02-02T05:56:26Z
mal-2026-584	Malicious code in chai-as-extended (npm)	2026-01-28T15:06:22Z	2026-02-02T05:56:26Z
mal-2026-565	Malicious code in converse-rn-lib (npm)	2026-01-28T07:50:39Z	2026-02-02T05:56:26Z
mal-2026-564	Malicious code in chai-as-hashed (npm)	2026-01-28T07:53:44Z	2026-02-02T05:56:26Z
mal-2026-555	Malicious code in acuitymobileapp (npm)	2026-01-28T07:13:15Z	2026-02-02T05:56:26Z
mal-2026-550	Malicious code in cdnhost (npm)	2026-01-28T03:21:37Z	2026-02-02T05:56:26Z
mal-2026-549	Malicious code in blockchain-helper-lib (npm)	2026-01-28T03:20:46Z	2026-02-02T05:56:26Z
mal-2026-508	Malicious code in cartos-dds-ui (npm)	2026-01-26T16:41:17Z	2026-02-02T05:56:26Z
MAL-2026-588	Malicious code in chai-sub (npm)	2026-01-28T14:53:28Z	2026-02-02T05:56:26Z
MAL-2026-587	Malicious code in chai-px (npm)	2026-01-28T14:48:04Z	2026-02-02T05:56:26Z
MAL-2026-586	Malicious code in chai-chains-async (npm)	2026-01-28T14:46:57Z	2026-02-02T05:56:26Z
MAL-2026-585	Malicious code in chai-async-tests (npm)	2026-01-28T14:56:54Z	2026-02-02T05:56:26Z
MAL-2026-584	Malicious code in chai-as-extended (npm)	2026-01-28T15:06:22Z	2026-02-02T05:56:26Z
MAL-2026-565	Malicious code in converse-rn-lib (npm)	2026-01-28T07:50:39Z	2026-02-02T05:56:26Z
MAL-2026-564	Malicious code in chai-as-hashed (npm)	2026-01-28T07:53:44Z	2026-02-02T05:56:26Z
MAL-2026-555	Malicious code in acuitymobileapp (npm)	2026-01-28T07:13:15Z	2026-02-02T05:56:26Z
MAL-2026-550	Malicious code in cdnhost (npm)	2026-01-28T03:21:37Z	2026-02-02T05:56:26Z
MAL-2026-549	Malicious code in blockchain-helper-lib (npm)	2026-01-28T03:20:46Z	2026-02-02T05:56:26Z
MAL-2026-508	Malicious code in cartos-dds-ui (npm)	2026-01-26T16:41:17Z	2026-02-02T05:56:26Z
mal-2026-578	Malicious code in @pukpuk1/somsodamsd (npm)	2026-01-28T13:59:24Z	2026-02-02T05:56:25Z
mal-2026-563	Malicious code in @nayzak51/primebeem-db (npm)	2026-01-28T07:27:26Z	2026-02-02T05:56:25Z
mal-2026-528	Malicious code in @shije/new-qs (npm)	2026-01-27T07:55:42Z	2026-02-02T05:56:25Z
mal-2026-527	Malicious code in @santandergroup-uk/edgehome-components (npm)	2026-01-27T08:16:51Z	2026-02-02T05:56:25Z
mal-2026-526	Malicious code in @row-components/pricing-embedded-sui (npm)	2026-01-27T08:01:02Z	2026-02-02T05:56:25Z
mal-2026-519	Malicious code in @afg-ikea/ikea-modals (npm)	2026-01-27T02:11:41Z	2026-02-02T05:56:25Z

ID	Description	Published	Updated
wid-sec-w-2025-1937	Samsung Exynos: Schwachstelle ermöglicht Denial of Service	2025-08-31T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2025-1922	Rancher: Schwachstelle ermöglicht Denial of Service	2025-08-28T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2025-1913	Google Chrome und Microsoft Edge: Schwachstelle ermöglicht Codeausführung	2025-08-26T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2025-1815	Foxit PDF Editor und Reader: Mehrere Schwachstellen	2025-08-12T22:00:00.000+00:00	2025-09-02T22:00:00.000+00:00
wid-sec-w-2025-1542	Sitecore Experience Manager: Mehrere Schwachstellen	2025-07-13T22:00:00.000+00:00	2025-09-01T22:00:00.000+00:00
wid-sec-w-2025-1910	Citrix Systems ADC und NetScaler Gateway: Mehrere Schwachstellen	2025-08-26T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-1905	IBM QRadar SIEM Komponente: Mehrere Schwachstellen	2025-08-25T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-1857	Firebird: Mehrere Schwachstellen	2025-08-17T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-1831	Kubernetes: Schwachstelle ermöglicht Manipulation von Dateien	2025-08-13T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-1461	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-07-03T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-0499	Linux Kernel: Mehrere Schwachstellen	2025-03-06T23:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-0477	Android Patchday März 2025: Mehrere Schwachstellen	2025-03-03T23:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2024-3710	Red Hat Enterprise Linux (unbound und mpg123): Mehrere Schwachstellen	2024-12-16T23:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2024-3570	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2024-12-01T23:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2024-2057	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service oder unspezifischer Angriff	2024-09-04T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2024-1722	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-07-29T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2024-1451	Linux Kernel: Mehrere Schwachstellen	2024-06-25T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2023-1689	Intel Prozessoren: Mehrere Schwachstellen	2019-11-12T23:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2022-0049	Linux Kernel: Mehrere Schwachstellen	2022-01-10T23:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-1912	Shibboleth Identity Provider: Schwachstelle ermöglicht Cross-Site Scripting	2025-08-26T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1911	ILIAS: Mehrere Schwachstellen	2025-08-26T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1909	Nagios Enterprises Nagios XI: Schwachstelle ermöglicht Cross-Site Scripting	2025-08-26T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1908	TeamViewer: Schwachstelle ermöglicht Manipulation von Dateien	2025-08-25T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1907	QNAP NAS (File Station 5): Mehrere Schwachstellen	2025-08-25T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1903	Microsoft GitHub Enterprise: Mehrere Schwachstellen	2025-08-25T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1405	FasterXML Jackson: Schwachstelle ermöglicht Denial of Service	2025-06-25T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1349	Citrix Systems ADC: Mehrere Schwachstellen	2025-06-17T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1171	GStreamer: Mehrere Schwachstellen	2025-05-29T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-0461	Linux Kernel: Mehrere Schwachstellen	2025-02-27T23:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-0427	Linux Kernel: Schwachstelle ermöglichen nicht spezifizierten Angriff	2025-02-23T23:00:00.000+00:00	2025-08-26T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated
ssa-158827	SSA-158827: Denial-of-Service Vulnerability in Automation License Manager	2021-08-10T00:00:00Z	2021-08-10T00:00:00Z
ssa-729965	SSA-729965: TLS Certificate Validation Vulnerability in SINUMERIK Integrate Operate Client	2021-07-13T00:00:00Z	2021-07-13T00:00:00Z
ssa-641963	SSA-641963: Remote Code Execution Vulnerability in Multiple SIMATIC Software Products	2021-07-13T00:00:00Z	2021-07-13T00:00:00Z
ssa-622535	SSA-622535: Multiple Vulnerabilities in Teamcenter Active Workspace	2021-07-13T00:00:00Z	2021-07-13T00:00:00Z
ssa-483182	SSA-483182: Multiple File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.2	2021-07-13T00:00:00Z	2021-07-13T00:00:00Z
ssa-448291	SSA-448291: Denial-of-Service Vulnerability in ARP Protocol of RWG Universal Controllers	2021-07-13T00:00:00Z	2021-07-13T00:00:00Z
ssa-352521	SSA-352521: Access Check Bypass Vulnerability in Mendix	2021-07-13T00:00:00Z	2021-07-13T00:00:00Z
ssa-209268	SSA-209268: Multiple JT File Parsing Vulnerabilities in JT Utilities before V13.0.2.0	2021-07-13T00:00:00Z	2021-07-13T00:00:00Z
ssa-203306	SSA-203306: Password Vulnerabilities in SIPROTEC 4 and SIPROTEC Compact Relay Families	2018-03-08T00:00:00Z	2021-07-13T00:00:00Z
ssa-173615	SSA-173615: Multiple PAR and ASM File Parsing Vulnerabilities in Solid Edge	2021-07-13T00:00:00Z	2021-07-13T00:00:00Z
ssa-645530	SSA-645530: TIFF File Parsing Vulnerability in JT2Go and Teamcenter Visualization before V13.1.0.3	2021-06-08T00:00:00Z	2021-06-08T00:00:00Z
ssa-574442	SSA-574442: Multiple PAR and DFT File Parsing Vulnerabilities in Solid Edge	2021-04-13T00:00:00Z	2021-06-08T00:00:00Z
ssa-542525	SSA-542525: Authentication Vulnerabilities in SIMATIC HMI Products	2020-09-08T00:00:00Z	2021-06-08T00:00:00Z
ssa-522654	SSA-522654: Privilege Escalation Vulnerability in Mendix SAML Module	2021-06-08T00:00:00Z	2021-06-08T00:00:00Z
ssa-419820	SSA-419820: Denial-of-Service Vulnerability in TIM 1531 IRC	2021-06-08T00:00:00Z	2021-06-08T00:00:00Z
ssa-208356	SSA-208356: DFT File Parsing Vulnerabilities in Solid Edge	2021-06-08T00:00:00Z	2021-06-08T00:00:00Z
ssa-200951	SSA-200951: Multiple Vulnerabilities in Third-Party Component libcurl of TIM Devices	2021-06-08T00:00:00Z	2021-06-08T00:00:00Z
ssa-133038	SSA-133038: Multiple Modfem File Parsing Vulnerabilities in Simcenter Femap	2021-06-08T00:00:00Z	2021-06-08T00:00:00Z
ssa-119468	SSA-119468: Luxion KeyShot Vulnerabilities in Solid Edge	2021-05-25T00:00:00Z	2021-05-25T00:00:00Z
ssa-695540	SSA-695540: ASM and PAR File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.1.0.2	2021-05-17T00:00:00Z	2021-05-17T00:00:00Z
ssa-663999	SSA-663999: Multiple File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.1.0.1	2021-02-09T00:00:00Z	2021-05-17T00:00:00Z
ssa-622830	SSA-622830: Multiple File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.1.0	2021-01-12T00:00:00Z	2021-05-17T00:00:00Z
ssa-983548	SSA-983548: Multiple SPP File Parsing Vulnerabilities in Tecnomatix Plant Simulation	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-940818	SSA-940818: UltraVNC Vulnerabilities in SIMATIC HMIs/WinCC Products	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-919955	SSA-919955: Information Disclosure Vulnerability in Mendix Database Replication Module	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-854248	SSA-854248: Information Disclosure Vulnerability in Mendix Excel Importer Module	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-794542	SSA-794542: Insecure Folder Permissions in SIMARIS Configuration	2021-02-09T00:00:00Z	2021-05-11T00:00:00Z
ssa-676775	SSA-676775: Denial-of-Service Vulnerability in SIMATIC NET CP 343-1 Devices	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-646763	SSA-646763: DNSpooq - Dnsmasq Vulnerabilities in SCALANCE and RUGGEDCOM Devices	2021-01-19T00:00:00Z	2021-05-11T00:00:00Z
ssa-594364	SSA-594364: Denial-of-Service Vulnerability in SNMP Implementation of WinCC Runtime	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z

ID	Description	Published	Updated
rhsa-2024:3467	Red Hat Security Advisory: Red Hat OpenStack Platform 16.1 (etcd) security update	2024-05-29T13:33:38+00:00	2026-02-21T13:06:06+00:00
rhsa-2024:3352	Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (etcd) security update	2024-05-23T15:28:35+00:00	2026-02-21T13:06:05+00:00
rhsa-2024:2988	Red Hat Security Advisory: container-tools:rhel8 security update	2024-05-22T09:48:55+00:00	2026-02-21T13:06:04+00:00
rhsa-2024:1901	Red Hat Security Advisory: Red Hat Service Interconnect 1.5.3 Release (images)	2024-04-18T07:17:25+00:00	2026-02-21T13:06:04+00:00
rhsa-2024:1383	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.0 security, enhancement, & bug fix update	2024-03-19T15:19:34+00:00	2026-02-21T13:06:00+00:00
rhsa-2024:0121	Red Hat Security Advisory: container-tools:4.0 security update	2024-01-10T11:36:02+00:00	2026-02-21T13:05:47+00:00
rhsa-2023:7766	Red Hat Security Advisory: containernetworking-plugins security update	2023-12-12T17:25:07+00:00	2026-02-21T13:05:45+00:00
rhsa-2023:7765	Red Hat Security Advisory: podman security update	2023-12-12T17:24:49+00:00	2026-02-21T13:05:45+00:00
rhsa-2023:7764	Red Hat Security Advisory: buildah security update	2023-12-12T17:29:16+00:00	2026-02-21T13:05:45+00:00
rhsa-2023:7763	Red Hat Security Advisory: runc security update	2023-12-12T17:25:05+00:00	2026-02-21T13:05:45+00:00
rhsa-2023:7762	Red Hat Security Advisory: skopeo security update	2023-12-12T17:30:03+00:00	2026-02-21T13:05:44+00:00
rhsa-2023:7517	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update	2023-11-27T19:31:55+00:00	2026-02-21T13:05:37+00:00
rhsa-2023:5008	Red Hat Security Advisory: Red Hat build of MicroShift 4.14.0 security update	2023-10-31T14:23:30+00:00	2026-02-21T13:04:32+00:00
rhba-2023:7648	Red Hat Bug Fix Advisory: MTV 2.5.3 Images	2023-12-05T06:56:16+00:00	2026-02-21T13:04:17+00:00
rhba-2023:6928	Red Hat Bug Fix Advisory: go-toolset:rhel8 bug fix and enhancement update	2023-11-14T16:04:55+00:00	2026-02-21T13:04:17+00:00
rhba-2023:6364	Red Hat Bug Fix Advisory: golang and delve bug fix and enhancement update	2023-11-07T08:50:26+00:00	2026-02-21T13:04:16+00:00
rhsa-2025:9986	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update	2025-06-30T21:23:51+00:00	2026-02-21T07:36:16+00:00
rhsa-2025:9975	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update	2025-06-30T17:50:04+00:00	2026-02-21T07:36:16+00:00
rhsa-2025:9845	Red Hat Security Advisory: weldr-client security update	2025-06-26T16:57:30+00:00	2026-02-21T07:36:14+00:00
rhsa-2025:9844	Red Hat Security Advisory: osbuild-composer security update	2025-06-26T16:57:43+00:00	2026-02-21T07:36:14+00:00
rhsa-2025:9756	Red Hat Security Advisory: opentelemetry-collector security update	2025-06-26T07:53:59+00:00	2026-02-21T07:36:12+00:00
rhsa-2025:9715	Red Hat Security Advisory: osbuild-composer security update	2025-06-26T00:19:58+00:00	2026-02-21T07:36:12+00:00
rhsa-2025:9714	Red Hat Security Advisory: weldr-client security update	2025-06-26T00:29:48+00:00	2026-02-21T07:36:11+00:00
rhsa-2025:9713	Red Hat Security Advisory: osbuild-composer security update	2025-06-26T00:25:48+00:00	2026-02-21T07:36:11+00:00
rhsa-2025:9712	Red Hat Security Advisory: weldr-client security update	2025-06-26T00:30:53+00:00	2026-02-21T07:36:10+00:00
rhsa-2025:9711	Red Hat Security Advisory: osbuild-composer security update	2025-06-26T00:23:18+00:00	2026-02-21T07:36:10+00:00
rhsa-2025:9642	Red Hat Security Advisory: osbuild-composer security update	2025-06-25T14:01:42+00:00	2026-02-21T07:36:08+00:00
rhsa-2025:9641	Red Hat Security Advisory: osbuild-composer security update	2025-06-25T14:16:56+00:00	2026-02-21T07:36:08+00:00
rhsa-2025:9635	Red Hat Security Advisory: weldr-client security update	2025-06-25T12:17:36+00:00	2026-02-21T07:36:08+00:00
rhsa-2025:9640	Red Hat Security Advisory: osbuild-composer security update	2025-06-25T14:13:41+00:00	2026-02-21T07:36:07+00:00

ID	Description	Published	Updated
icsa-13-346-01	Cooper Power Systems Improper Input Validation Vulnerability	2013-09-14T06:00:00.000000Z	2025-06-06T18:43:28.031039Z
icsa-13-340-01	RuggedCom ROS Multiple Vulnerabilities	2013-09-08T06:00:00.000000Z	2025-06-06T18:43:15.047736Z
icsa-13-338-01	Siemens SINAMICS S/G Authentication Bypass Vulnerability	2013-09-06T06:00:00.000000Z	2025-06-06T18:43:08.603348Z
icsa-13-337-01	Elecsys Director Gateway Improper Input Validation Vulnerability	2013-09-05T06:00:00.000000Z	2025-06-06T18:43:02.174857Z
icsa-13-329-01	Triangle Research Nano-10 PLC Improper Input Validation	2013-08-28T06:00:00.000000Z	2025-06-06T18:42:55.702902Z
icsa-13-297-02	GE Proficy DNP3 Improper Input Validation	2013-07-27T06:00:00.000000Z	2025-06-06T18:42:42.774163Z
icsa-13-297-01	Catapult Software DNP3 Driver Improper Input Validation	2013-07-27T06:00:00.000000Z	2025-06-06T18:42:29.914784Z
icsa-13-295-01	WellinTech KingView ActiveX Vulnerabilities	2013-07-25T06:00:00.000000Z	2025-06-06T18:42:17.056042Z
icsa-13-282-01a	Alstom e-Terracontrol DNP3 Master Improper Input Validation (Update A)	2013-07-12T06:00:00.000000Z	2025-06-06T18:42:03.985605Z
icsa-13-277-01	Philips Xper Buffer Overflow Vulnerability	2013-07-07T06:00:00.000000Z	2025-06-06T18:41:57.477223Z
icsa-13-276-01	Invensys Wonderware InTouch Improper Input Validation Vulnerability	2013-07-06T06:00:00.000000Z	2025-06-06T18:41:51.044803Z
icsa-13-274-01	Siemens SCALANCE X-200 Authentication Bypass Vulnerability	2013-07-04T06:00:00.000000Z	2025-06-06T18:41:44.564454Z
icsa-13-259-01b	Emerson ROC800 Multiple Vulnerabilities (Update B)	2013-06-19T06:00:00.000000Z	2025-06-06T18:41:12.361598Z
icsa-13-259-01a	Emerson ROC800 Multiple Vulnerabilities (Update A)	2013-06-19T06:00:00.000000Z	2025-06-06T18:40:40.005036Z
icsa-13-252-01	SUBNET Solutions Inc. SubSTATION Server DNP3 Outstation Improper Input Validation	2013-06-12T06:00:00.000000Z	2025-06-06T18:40:27.160098Z
icsa-13-248-01	ProSoft Technology RadioLinx ControlScape PRNG Vulnerability	2013-06-08T06:00:00.000000Z	2025-06-06T18:40:20.749066Z
icsa-13-240-01	Triangle MicroWorks Improper Input Validation	2013-05-31T06:00:00.000000Z	2025-06-06T18:40:07.718354Z
icsa-13-234-02	Top Server OPC Improper Input Validation Vulnerability	2013-05-25T06:00:00.000000Z	2025-06-06T18:40:01.237007Z
icsa-13-234-01	Schneider Electric Trio J-Series Radio Encryption	2013-05-25T06:00:00.000000Z	2025-06-06T18:39:54.739781Z
icsa-13-233-01	Siemens COMOS Privilege Escalation Vulnerability	2013-05-24T06:00:00.000000Z	2025-06-06T18:39:48.283414Z
icsa-13-231-01b	Sixnet Universal Protocol Undocumented Function Codes (Update B)	2013-05-22T06:00:00.000000Z	2025-06-06T18:39:41.836043Z
icsa-13-226-01	Kepware Technologies Improper Input Validation Vulnerability	2013-05-17T06:00:00.000000Z	2025-06-06T18:39:35.172067Z
icsa-13-225-02	OSIsoft Multiple Vulnerabilities	2013-05-16T06:00:00.000000Z	2025-06-06T18:39:22.284357Z
icsa-13-225-01	Advantech WebAccess Cross-Site Scripting	2013-05-16T06:00:00.000000Z	2025-06-06T18:39:15.819001Z
icsa-13-217-02	Schneider Electric Vijeo Citect, CitectSCADA, PowerLogic SCADA Vulnerability	2013-05-08T06:00:00.000000Z	2025-06-06T18:39:09.378557Z
icsa-13-217-01	MOXA Weak Entropy in DSA Keys Vulnerability	2013-05-08T06:00:00.000000Z	2025-06-06T18:39:02.876567Z
icsa-13-213-04a	MatrikonOPC SCADA DNP3 Master Station Improper Input Validation	2013-05-04T06:00:00.000000Z	2025-06-06T18:38:56.423839Z
icsa-13-213-03	IOServer Master Station Improper Input Validation	2013-05-04T06:00:00.000000Z	2025-06-06T18:38:49.972335Z
icsa-13-213-02	Siemens WinCC TIA Portal Vulnerabilities	2013-05-04T06:00:00.000000Z	2025-06-06T18:38:37.068310Z
icsa-13-189-02	Triangle Research Nano 10 PLC Denial of Service	2013-04-10T06:00:00.000000Z	2025-06-06T18:38:30.225993Z

ID	Description	Published	Updated
cisco-sa-iox-8whGn5dL	Cisco IOx Application Hosting Environment Command Injection Vulnerability	2023-02-01T16:00:00+00:00	2023-06-01T15:34:21+00:00
cisco-sa-cuis-xss-omm8jybx	Cisco Unified Intelligence Center Reflected Cross-Site Scripting Vulnerability	2023-01-11T16:00:00+00:00	2023-05-30T14:22:18+00:00
cisco-sa-cuis-xss-Omm8jyBX	Cisco Unified Intelligence Center Reflected Cross-Site Scripting Vulnerability	2023-01-11T16:00:00+00:00	2023-05-30T14:22:18+00:00
cisco-sa-ftd-file-write-shvcmqvc	Cisco Firepower Threat Defense Software CLI Arbitrary File Write Vulnerability	2021-10-27T16:00:00+00:00	2023-05-26T11:54:17+00:00
cisco-sa-ftd-file-write-SHVcmQVc	Cisco Firepower Threat Defense Software CLI Arbitrary File Write Vulnerability	2021-10-27T16:00:00+00:00	2023-05-26T11:54:17+00:00
cisco-sa-iosxe-info-disc-nrorxjo	Cisco IOS XE ROM Monitor Software for Catalyst Switches Information Disclosure Vulnerability	2022-09-28T16:00:00+00:00	2023-05-17T18:23:37+00:00
cisco-sa-iosxe-info-disc-nrORXjO	Cisco IOS XE ROM Monitor Software for Catalyst Switches Information Disclosure Vulnerability	2022-09-28T16:00:00+00:00	2023-05-17T18:23:37+00:00
cisco-sa-ssm-sql-x9mmjsyh	Cisco Smart Software Manager On-Prem SQL Injection Vulnerability	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ssm-sql-X9MmjSYh	Cisco Smart Software Manager On-Prem SQL Injection Vulnerability	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-sg-web-multi-s9g4nkgv	Cisco Small Business Series Switches Buffer Overflow Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-sg-web-multi-S9g4Nkgv	Cisco Small Business Series Switches Buffer Overflow Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-xxe-inj-696oztcm	Cisco Identity Services Engine XML External Entity Injection Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-xxe-inj-696OZTCm	Cisco Identity Services Engine XML External Entity Injection Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-traversal-ztugmyhu	Cisco Identity Services Engine Path Traversal Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-traversal-ZTUgMYhu	Cisco Identity Services Engine Path Traversal Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-injection-srqnseu9	Cisco Identity Services Engine Command Injection Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-injection-sRQnsEU9	Cisco Identity Services Engine Command Injection Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-file-dwnld-srcdnkd2	Cisco Identity Services Engine Arbitrary File Download Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-file-dwnld-Srcdnkd2	Cisco Identity Services Engine Arbitrary File Download Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-file-delete-read-pk5ghddd	Cisco Identity Services Engine Arbitrary File Delete and File Read Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-file-delete-read-PK5ghDDd	Cisco Identity Services Engine Arbitrary File Delete and File Read Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-dnac-multiple-ktqkgu3	Cisco DNA Center Software API Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-dnac-multiple-kTQkGU3	Cisco DNA Center Software API Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-cbw-auth-bypass-ggnafdz	Cisco Business Wireless Access Points Social Login Guest User Authentication Bypass Vulnerability	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-cbw-auth-bypass-ggnAfdZ	Cisco Business Wireless Access Points Social Login Guest User Authentication Bypass Vulnerability	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-pi-epnm-erpwaxle	Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Vulnerabilities	2023-04-05T16:00:00+00:00	2023-05-15T13:11:25+00:00
cisco-sa-pi-epnm-eRPWAXLe	Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Vulnerabilities	2023-04-05T16:00:00+00:00	2023-05-15T13:11:25+00:00
cisco-sa-c9300-spi-ace-yejygnnq	Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches Secure Boot Bypass Vulnerability	2023-03-22T16:00:00+00:00	2023-05-11T15:34:52+00:00
cisco-sa-c9300-spi-ace-yejYgnNQ	Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches Secure Boot Bypass Vulnerability	2023-03-22T16:00:00+00:00	2023-05-11T15:34:52+00:00
cisco-sa-iox-priv-escalate-xg8zkypk	Cisco IOS XE Software IOx Application Hosting Environment Privilege Escalation Vulnerability	2023-03-22T16:00:00+00:00	2023-05-08T15:01:45+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2023-46813	An issue was discovered in the Linux kernel before 6.5.9 exploitable by local users with userspace access to MMIO registers. Incorrect access checking in the #VC handler and instruction emulation of the SEV-ES emulation of MMIO accesses could lead to arbitrary write access to kernel memory (and thus privilege escalation). This depends on a race condition through which userspace can replace an instruction before the #VC handler reads it.	2023-10-01T00:00:00.000Z	2026-02-19T01:03:52.000Z
msrc_cve-2022-47022	An issue was discovered in open-mpi hwloc 2.1.0 allows attackers to cause a denial of service or other unspecified impacts via glibc-cpuset in topology-linux.c.	2023-08-01T00:00:00.000Z	2026-02-19T01:03:41.000Z
msrc_cve-2024-50278	dm cache: fix potential out-of-bounds access on the first resume	2024-11-02T00:00:00.000Z	2026-02-19T01:03:37.000Z
msrc_cve-2024-57910	iio: light: vcnl4035: fix information leak in triggered buffer	2025-01-02T00:00:00.000Z	2026-02-19T01:03:35.000Z
msrc_cve-2022-3116	The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash.	2023-03-10T00:00:00.000Z	2026-02-19T01:03:20.000Z
msrc_cve-2024-50301	security/keys: fix slab-out-of-bounds in key_task_permission	2024-11-02T00:00:00.000Z	2026-02-19T01:03:18.000Z
msrc_cve-2025-21652	ipvlan: Fix use-after-free in ipvlan_get_iflink().	2025-01-02T00:00:00.000Z	2026-02-19T01:03:06.000Z
msrc_cve-2024-50192	irqchip/gic-v4: Don't allow a VMOVP on a dying VPE	2024-11-02T00:00:00.000Z	2026-02-19T01:02:59.000Z
msrc_cve-2023-4692	Grub2: out-of-bounds write at fs/ntfs.c may lead to unsigned code execution	2023-10-01T00:00:00.000Z	2026-02-19T01:02:57.000Z
msrc_cve-2024-38570	gfs2: Fix potential glock use-after-free on unmount	2024-06-02T07:00:00.000Z	2026-02-19T01:02:56.000Z
msrc_cve-2023-4693	Grub2: out-of-bounds read at fs/ntfs.c	2023-10-01T00:00:00.000Z	2026-02-19T01:02:45.000Z
msrc_cve-2024-39493	crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak	2024-07-01T07:00:00.000Z	2026-02-19T01:02:39.000Z
msrc_cve-2024-52338	Apache Arrow R package: Arbitrary code execution when loading a malicious data file	2024-11-02T00:00:00.000Z	2026-02-19T01:02:35.000Z
msrc_cve-2022-28736	There's a use-after-free vulnerability in grub_cmd_chainloader() function	2023-07-01T07:00:00.000Z	2026-02-19T01:02:32.000Z
msrc_cve-2023-33976	TensorFlow segfault in array_ops.upper_bound	2024-07-01T07:00:00.000Z	2026-02-19T01:02:27.000Z
msrc_cve-2022-28735	The GRUB2's shim_lock verifier allows non-kernel files to be loaded on shim-powered secure boot systems. Allowing such files to be loaded may lead to unverified code and modules to be loaded in GRUB2 breaking the secure boot trust-chain.	2023-07-01T07:00:00.000Z	2026-02-19T01:02:20.000Z
msrc_cve-2024-50195	posix-clock: Fix missing timespec64 check in pc_clock_settime()	2024-11-02T00:00:00.000Z	2026-02-19T01:02:18.000Z
msrc_cve-2024-39489	ipv6: sr: fix memleak in seg6_hmac_init_algo	2024-07-01T07:00:00.000Z	2026-02-19T01:02:14.000Z
msrc_cve-2022-28734	Out-of-bounds write when handling split HTTP headers	2023-07-01T07:00:00.000Z	2026-02-19T01:02:07.000Z
msrc_cve-2025-68188	tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()	2025-12-02T00:00:00.000Z	2026-02-19T01:02:00.000Z
msrc_cve-2024-53899	virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287.	2024-11-02T00:00:00.000Z	2026-02-19T01:01:59.000Z
msrc_cve-2022-28733	Integer underflow in grub_net_recv_ip4_packets	2023-07-01T07:00:00.000Z	2026-02-19T01:01:54.000Z
msrc_cve-2024-42076	net: can: j1939: Initialize unused data in j1939_send_one()	2024-07-01T07:00:00.000Z	2026-02-19T01:01:48.000Z
msrc_cve-2024-50273	btrfs: reinitialize delayed ref list after deleting it from the list	2024-11-02T00:00:00.000Z	2026-02-19T01:01:43.000Z
msrc_cve-2021-3981	A flaw in grub2 was found where its configuration file known as grub.cfg is being created with the wrong permission set allowing non privileged users to read its content. This represents a low severity confidentiality issue as those users can eventually read any encrypted passwords present in grub.cfg. This flaw affects grub2 2.06 and previous versions. This issue has been fixed in grub upstream but no version with the fix is currently released.	2022-03-02T00:00:00.000Z	2026-02-19T01:01:42.000Z
msrc_cve-2024-42067	bpf: Take return from set_memory_rox() into account with bpf_jit_binary_lock_ro()	2024-07-01T07:00:00.000Z	2026-02-19T01:01:33.000Z
msrc_cve-2021-3697	A crafted JPEG image may lead the JPEG reader to underflow its data pointer allowing user-controlled data to be written in heap. To a successful to be performed the attacker needs to perform some triage over the heap layout and craft an image with a malicious format and payload. This vulnerability can lead to data corruption and eventual code execution or secure boot circumvention. This flaw affects grub2 versions prior grub-2.12.	2022-07-02T00:00:00.000Z	2026-02-19T01:01:33.000Z
msrc_cve-2023-6476	Cri-o: pods are able to break out of resource confinement on cgroupv2	2024-01-01T08:00:00.000Z	2026-02-19T01:01:31.000Z
msrc_cve-2021-3696	A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in the heap space. Confidentiality Integrity and Availablity impact may be considered Low as it's very complex to an attacker control the encoding and positioning of corrupted Huffman entries to achieve results such as arbitrary code execution and/or secure boot circumvention. This flaw affects grub2 versions prior grub-2.12.	2022-07-02T00:00:00.000Z	2026-02-19T01:01:26.000Z
msrc_cve-2021-3695	A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12.	2022-07-02T00:00:00.000Z	2026-02-19T01:01:20.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated
opensuse-su-2025:15387-1	libmozjs-128-0-128.13.0-1.1 on GA media	2025-07-26T00:00:00Z	2025-07-26T00:00:00Z
opensuse-su-2025:15386-1	MozillaFirefox-141.0-1.1 on GA media	2025-07-26T00:00:00Z	2025-07-26T00:00:00Z
opensuse-su-2025:15385-1	perl-Authen-SASL-2.180.0-2.1 on GA media	2025-07-25T00:00:00Z	2025-07-25T00:00:00Z
opensuse-su-2025:15384-1	apache2-2.4.65-1.1 on GA media	2025-07-25T00:00:00Z	2025-07-25T00:00:00Z
opensuse-su-2025:15383-1	MozillaThunderbird-140.1.0-1.1 on GA media	2025-07-25T00:00:00Z	2025-07-25T00:00:00Z
opensuse-su-2025:15382-1	ruby3.4-rubygem-thor-1.4.0-1.1 on GA media	2025-07-24T00:00:00Z	2025-07-24T00:00:00Z
opensuse-su-2025:15381-1	python311-starlette-0.47.2-1.1 on GA media	2025-07-24T00:00:00Z	2025-07-24T00:00:00Z
opensuse-su-2025:15380-1	jupyter-nbdime-7.0.2-21.1 on GA media	2025-07-24T00:00:00Z	2025-07-24T00:00:00Z
opensuse-su-2025:15379-1	minio-client-20250721T052808Z-1.1 on GA media	2025-07-24T00:00:00Z	2025-07-24T00:00:00Z
opensuse-su-2025:15378-1	javamail-1.6.2-3.1 on GA media	2025-07-24T00:00:00Z	2025-07-24T00:00:00Z
opensuse-su-2025:15377-1	grype-db-0.35.0-1.1 on GA media	2025-07-24T00:00:00Z	2025-07-24T00:00:00Z
opensuse-su-2025:15376-1	cloud-init-25.1.3-1.1 on GA media	2025-07-24T00:00:00Z	2025-07-24T00:00:00Z
opensuse-su-2025:15375-1	chromedriver-138.0.7204.168-1.1 on GA media	2025-07-24T00:00:00Z	2025-07-24T00:00:00Z
opensuse-su-2025:15374-1	viewvc-1.3.0~dev20250722-1.1 on GA media	2025-07-23T00:00:00Z	2025-07-23T00:00:00Z
opensuse-su-2025:15373-1	jupyter-jupyterlab-templates-0.5.2-3.1 on GA media	2025-07-23T00:00:00Z	2025-07-23T00:00:00Z
opensuse-su-2025:15372-1	grafana-11.6.3+security01-1.1 on GA media	2025-07-23T00:00:00Z	2025-07-23T00:00:00Z
opensuse-su-2025:15371-1	firefox-esr-140.1.0-1.1 on GA media	2025-07-23T00:00:00Z	2025-07-23T00:00:00Z
opensuse-su-2025:15370-1	hauler-1.2.5-1.1 on GA media	2025-07-21T00:00:00Z	2025-07-21T00:00:00Z
opensuse-su-2025:15369-1	cyradm-3.8.6-1.1 on GA media	2025-07-21T00:00:00Z	2025-07-21T00:00:00Z
opensuse-su-2025:15368-1	lemon-3.50.3-1.1 on GA media	2025-07-20T00:00:00Z	2025-07-20T00:00:00Z
opensuse-su-2025:15367-1	python313-3.13.5-3.1 on GA media	2025-07-20T00:00:00Z	2025-07-20T00:00:00Z
opensuse-su-2025:15366-1	python312-3.12.11-3.1 on GA media	2025-07-20T00:00:00Z	2025-07-20T00:00:00Z
opensuse-su-2025:15365-1	python311-3.11.13-3.1 on GA media	2025-07-20T00:00:00Z	2025-07-20T00:00:00Z
opensuse-su-2025:15364-1	libexslt0-1.1.43-2.1 on GA media	2025-07-20T00:00:00Z	2025-07-20T00:00:00Z
opensuse-su-2025:15363-1	libxml2-2-2.13.8-3.1 on GA media	2025-07-20T00:00:00Z	2025-07-20T00:00:00Z
opensuse-su-2025:15362-1	java-21-openjdk-21.0.8.0-1.1 on GA media	2025-07-20T00:00:00Z	2025-07-20T00:00:00Z
opensuse-su-2025:15361-1	busybox-1.37.0-5.1 on GA media	2025-07-20T00:00:00Z	2025-07-20T00:00:00Z
opensuse-su-2025:15360-1	apache2-2.4.64-1.1 on GA media	2025-07-20T00:00:00Z	2025-07-20T00:00:00Z
opensuse-su-2025:15359-1	valkey-8.1.3-1.1 on GA media	2025-07-18T00:00:00Z	2025-07-18T00:00:00Z
opensuse-su-2025:15358-1	java-24-openjdk-24.0.2.0-1.1 on GA media	2025-07-18T00:00:00Z	2025-07-18T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
osv-2023-1300	Security exception in com.fasterxml.jackson.core.JsonParser.currentName	2023-12-14T00:13:10.208981Z	2023-12-14T00:13:10.209415Z
osv-2023-1299	Global-buffer-overflow in pcre_get_compiled_regex_cache_ex	2023-12-14T00:12:13.097305Z	2023-12-14T00:12:13.097842Z
osv-2023-1298	Heap-buffer-overflow in loongarch_split_args_by_comma	2023-12-14T00:10:40.133892Z	2023-12-14T00:10:40.134313Z
osv-2023-1295	Global-buffer-overflow in libraw_tagtype_dataunit_bytes	2023-12-14T00:03:32.723059Z	2023-12-14T00:03:32.723513Z
osv-2023-1291	Security exception in org.apache.poi.poifs.crypt.binaryrc4.BinaryRC4Decryptor.initCipherForBlock	2023-12-13T00:03:48.820074Z	2023-12-13T00:03:48.820457Z
osv-2023-1276	Heap-use-after-free in authentic_emu_update_tokeninfo	2023-12-10T00:04:07.333337Z	2023-12-10T00:04:07.333792Z
osv-2023-813	UNKNOWN READ in parse_priv_value	2023-09-09T14:00:12.875572Z	2023-12-09T14:23:28.975076Z
osv-2023-1244	Security exception in org.springframework.expression.spel.ast.OpPlus.getValueInternal	2023-12-02T13:00:17.170709Z	2023-12-09T14:11:35.526034Z
osv-2023-1272	Heap-buffer-overflow in OT::cff2::accelerator_templ_t<CFF::cff2_private_dict_opset_t, CFF::cff2_private_	2023-12-09T00:05:42.581782Z	2023-12-09T00:05:42.582124Z
osv-2023-1271	Heap-buffer-overflow in is_decl_requires_met	2023-12-09T00:03:11.119664Z	2023-12-09T00:03:11.120297Z
osv-2023-1268	Stack-buffer-overflow in decNaNs	2023-12-08T00:11:32.086790Z	2023-12-08T00:11:32.087163Z
osv-2023-1266	Security exception in java.base/javax.crypto.spec.SecretKeySpec.<init>	2023-12-08T00:10:39.042967Z	2023-12-08T00:10:39.043541Z
osv-2023-1265	Security exception in org.apache.poi.hdgf.streams.ChunkStream.findChunks	2023-12-08T00:02:47.592445Z	2023-12-08T00:02:47.593139Z
osv-2023-1263	Heap-buffer-overflow in js_is_live_code	2023-12-07T00:05:27.754264Z	2023-12-07T00:05:27.754792Z
osv-2023-599	Negative-size-param in passDoAction	2023-07-20T14:02:17.227069Z	2023-12-05T14:19:49.798233Z
osv-2023-1247	Heap-buffer-overflow in r_bin_coff_new_buf	2023-12-02T13:00:46.246790Z	2023-12-02T13:00:46.247042Z
osv-2023-717	Heap-buffer-overflow in bit_TV_to_utf8_codepage	2023-08-21T14:00:28.036480Z	2023-12-01T14:22:18.777534Z
osv-2023-1243	Heap-use-after-free in zend_reference_destroy	2023-12-01T13:02:45.270293Z	2023-12-01T13:02:45.270620Z
osv-2023-1240	UNKNOWN READ in MqttProps_Free	2023-11-30T13:03:05.050780Z	2023-11-30T13:03:05.051057Z
osv-2023-1239	Heap-buffer-overflow in decToString	2023-11-30T13:00:20.622604Z	2023-11-30T13:00:20.622871Z
osv-2023-1227	Stack-buffer-overflow in io_memory_read	2023-11-27T13:03:22.969939Z	2023-11-29T14:21:41.958752Z
osv-2023-1088	Heap-buffer-overflow in arrow::Status arrow::Result<std::__1::unique_ptr<arrow::Buffer, std::__1::defaul	2023-10-30T13:03:09.754708Z	2023-11-29T14:16:28.700148Z
osv-2023-1231	Global-buffer-overflow in iaace_estimate_scfs_chan	2023-11-28T13:01:01.666771Z	2023-11-28T13:01:01.667048Z
osv-2023-1228	Stack-buffer-overflow in asn1_decode_entry	2023-11-27T13:03:26.289859Z	2023-11-27T13:03:26.290112Z
osv-2023-1222	Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr	2023-11-27T13:00:10.105607Z	2023-11-27T13:00:10.105869Z
osv-2023-1214	Heap-buffer-overflow in NetworkInterface::dissectPacket	2023-11-25T13:00:09.439553Z	2023-11-25T13:00:09.439802Z
osv-2023-1208	Heap-buffer-overflow in ih264d_format_convert	2023-11-24T13:01:18.411662Z	2023-11-24T13:01:18.411934Z
osv-2023-1207	Heap-buffer-overflow in isvcd_start_of_pic	2023-11-24T13:00:50.874577Z	2023-11-24T13:00:50.874889Z
osv-2023-1206	Heap-buffer-overflow in ih264d_format_convert	2023-11-24T13:00:18.041607Z	2023-11-24T13:00:18.041977Z
osv-2023-1167	UNKNOWN WRITE in php_strip_url_passwd	2023-11-16T13:00:21.458665Z	2023-11-23T16:50:04.455264Z

ID	Description	Published	Updated
rustsec-2022-0015	pty is unmaintained	2022-03-22T12:00:00Z	2022-03-22T14:52:42Z
rustsec-2021-0134	rental is unmaintained, author has moved on	2021-12-27T12:00:00Z	2022-03-06T11:02:04Z
rustsec-2020-0162	`tokio-proto` is deprecated/unmaintained	2020-02-06T12:00:00Z	2022-02-07T02:25:36Z
rustsec-2022-0005	crate has been renamed to `ftdi-embedded-hal`	2022-01-22T12:00:00Z	2022-01-22T18:27:42Z
rustsec-2016-0005	rust-crypto is unmaintained; switch to a modern alternative	2016-09-06T12:00:00Z	2022-01-09T20:07:15Z
rustsec-2022-0001	lmdb is unmaintained, use lmdb-rkv instead	2022-01-05T12:00:00Z	2022-01-05T16:02:27Z
rustsec-2021-0133	cargo-download is unmaintained	2021-12-25T12:00:00Z	2021-12-25T18:20:22Z
rustsec-2021-0131	Integer overflow in the bundled Brotli C library	2021-12-20T12:00:00Z	2021-12-21T20:51:30Z
rustsec-2021-0127	serde_cbor is unmaintained	2021-08-15T12:00:00Z	2021-12-01T14:04:55Z
rustsec-2020-0158	slice-deque is unmaintained	2020-02-10T12:00:00Z	2021-11-18T14:04:01Z
rustsec-2021-0093	Data race in crossbeam-deque	2021-07-30T12:00:00Z	2021-10-19T22:14:35Z
rustsec-2021-0079	Integer overflow in `hyper`'s parsing of the `Transfer-Encoding` header leads to data loss	2021-07-07T12:00:00Z	2021-10-19T22:14:35Z
rustsec-2021-0078	Lenient `hyper` header parsing of `Content-Length` could allow request smuggling	2021-07-07T12:00:00Z	2021-10-19T22:14:35Z
rustsec-2021-0067	Memory access due to code generation flaw in Cranelift module	2021-05-21T12:00:00Z	2021-10-19T22:14:35Z
rustsec-2021-0020	Multiple Transfer-Encoding headers misinterprets request payload	2021-02-05T12:00:00Z	2021-10-19T22:14:35Z
rustsec-2021-0001	XSS in mdBook's search page	2021-01-04T12:00:00Z	2021-10-19T22:14:35Z
rustsec-2020-0024	Improper uniqueness verification of signature threshold	2020-07-09T12:00:00Z	2021-10-19T22:14:35Z
rustsec-2019-0035	Unaligned memory access	2019-04-19T12:00:00Z	2021-10-19T22:14:35Z
rustsec-2021-0069	SMTP command injection in body	2021-05-22T12:00:00Z	2021-10-19T19:56:47Z
rustsec-2021-0106	Uncontrolled Search Path Element in sharkdp/bat	2021-07-15T12:00:00Z	2021-09-10T16:11:09Z
rustsec-2021-0105	Relative Path Traversal in git-delta	2021-07-12T12:00:00Z	2021-09-10T16:04:49Z
rustsec-2020-0156	Observable Discrepancy in libsecp256k1-rs	2020-01-22T12:00:00Z	2021-09-10T16:03:52Z
rustsec-2021-0104	File exposure in pleaser	2021-05-27T12:00:00Z	2021-09-10T16:01:55Z
rustsec-2021-0101	Permissions bypass in pleaser	2021-05-27T12:00:00Z	2021-09-10T15:58:27Z
rustsec-2021-0102	Permissions bypass in pleaser	2021-05-27T12:00:00Z	2021-09-10T15:58:05Z
rustsec-2020-0157	Improper Synchronization and Race Condition in vm-memory	2020-06-02T12:00:00Z	2021-09-10T15:50:27Z
rustsec-2021-0099	Crate has been renamed to `cosmrs`	2021-08-25T12:00:00Z	2021-08-25T14:54:10Z
rustsec-2021-0096	spirv_headers is unmaintained, use spirv instead	2021-08-16T12:00:00Z	2021-08-23T14:34:15Z
rustsec-2021-0064	`cpuid-bool` has been renamed to `cpufeatures`	2021-05-06T12:00:00Z	2021-05-06T23:45:32Z
rustsec-2021-0061	`aes-ctr` has been merged into the `aes` crate	2021-04-29T12:00:00Z	2021-05-04T01:28:43Z

ID	Description	Published	Updated
bit-django-2025-27556		2025-09-25T08:40:31.995Z	2025-10-06T00:06:00.502Z
bit-django-2024-56374		2025-03-10T08:13:20.368Z	2025-10-06T00:06:00.502Z
bit-discourse-2025-59337	Discourse: Cross-Site Data Exposure via Backup Restore Metacommand Injection in Multisite Deployments	2025-10-05T23:41:00.220Z	2025-10-06T00:06:00.502Z
bit-redis-2025-46686		2025-09-25T08:52:27.726Z	2025-10-03T15:12:57.579Z
bit-powershell-2025-49734	PowerShell Direct Elevation of Privilege Vulnerability	2025-10-03T08:49:03.988Z	2025-10-03T09:07:39.166Z
bit-kibana-2025-25014	Kibana arbitrary code execution via prototype pollution	2025-05-08T05:41:37.442Z	2025-10-03T09:07:39.166Z
bit-kibana-2024-12556	Kibana Prototype Pollution can lead to code injection	2025-04-10T07:12:32.246Z	2025-10-03T09:07:39.166Z
bit-elk-2025-25014	Kibana arbitrary code execution via prototype pollution	2025-05-08T05:37:10.649Z	2025-10-03T09:07:39.166Z
bit-elk-2024-12556	Kibana Prototype Pollution can lead to code injection	2025-04-10T07:07:56.053Z	2025-10-03T09:07:39.166Z
bit-elasticsearch-2024-52981		2025-04-10T07:10:18.243Z	2025-10-03T09:07:39.166Z
bit-elasticsearch-2024-52979	Elasticsearch Uncontrolled Resource Consumption vulnerability	2025-05-03T05:41:02.354Z	2025-10-03T09:07:39.166Z
bit-django-2025-26699		2025-03-10T08:13:13.707Z	2025-10-03T09:07:39.166Z
bit-wordpress-2025-58674	WordPress <= 6.8.2 - (Author+) Cross Site Scripting (XSS) Vulnerability	2025-09-25T08:55:10.378Z	2025-10-02T15:07:00.184Z
bit-wordpress-2025-58246	WordPress <= 6.8.2 - (Contributor+) Sensitive Data Exposure Vulnerability	2025-09-25T08:55:08.592Z	2025-10-02T15:07:00.184Z
bit-mongodb-2024-10921	Improper neutralization of null bytes may lead to buffer over-reads in MongoDB Server	2025-10-02T14:44:36.017Z	2025-10-02T15:07:00.184Z
bit-mariadb-2023-5157	Mariadb: node crashes with transport endpoint is not connected mysqld got signal 6	2024-03-06T10:55:35.781Z	2025-10-02T15:07:00.184Z
bit-kibana-2024-43706	Kibana Improper Authorization	2025-06-14T05:44:15.801Z	2025-10-02T15:07:00.184Z
bit-kibana-2024-37285	Kibana arbitrary code execution via YAML deserialization	2024-11-16T07:11:25.479Z	2025-10-02T15:07:00.184Z
bit-elk-2024-43706	Kibana Improper Authorization	2025-06-14T05:38:22.709Z	2025-10-02T15:07:00.184Z
bit-elk-2024-37285	Kibana arbitrary code execution via YAML deserialization	2024-11-16T07:08:55.088Z	2025-10-02T15:07:00.184Z
bit-sqlite-2025-29088		2025-04-16T07:42:31.752Z	2025-10-01T15:14:38.852Z
bit-mongodb-2024-3374	MongoDB Server (mongod) may crash when generating ftdc	2025-10-01T14:49:48.814Z	2025-10-01T15:14:38.852Z
bit-kibana-2025-25012	Kibana Open Redirect	2025-06-30T14:45:12.946Z	2025-10-01T15:14:38.852Z
bit-kibana-2024-43707	Kibana exposure of sensitive information to an unauthorized actor	2025-01-27T07:12:51.527Z	2025-10-01T15:14:38.852Z
bit-jupyterlab-2025-59842	JupyterLab LaTeX typesetter links did not enforce `noopener` attribute	2025-10-01T14:43:22.333Z	2025-10-01T15:14:38.852Z
bit-gitlab-2025-9642	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab	2025-10-01T15:13:11.350Z	2025-10-01T15:14:38.852Z
bit-gitlab-2025-8014	Allocation of Resources Without Limits or Throttling in GitLab	2025-10-01T15:13:07.496Z	2025-10-01T15:14:38.852Z
bit-gitlab-2025-7691	Privilege Defined With Unsafe Actions in GitLab	2025-10-01T15:13:01.621Z	2025-10-01T15:14:38.852Z
bit-gitlab-2025-5069	Incorrect Ownership Assignment in GitLab	2025-10-01T15:12:30.475Z	2025-10-01T15:14:38.852Z
bit-gitlab-2025-11042	Allocation of Resources Without Limits or Throttling in GitLab	2025-10-01T15:11:04.156Z	2025-10-01T15:14:38.852Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-202205-0881	Buffer Over-read in function find_next_quote in GitHub repository vim/vim prior to 8.2.49…	2024-07-23T20:29:37.848000Z
var-201302-0305	Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on …	2024-07-23T20:29:37.668000Z
var-201912-0646	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T20:29:33.187000Z
var-200512-0634	passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 al…	2024-07-23T20:29:02.384000Z
var-202010-1512	An input validation issue was addressed with improved input validation. This issue is fix…	2024-07-23T20:29:01.717000Z
var-202006-0222	libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C sub…	2024-07-23T20:28:59.964000Z
var-200102-0007	WatchGuard SOHO firewall allows remote attackers to cause a denial of service via a flood…	2024-07-23T20:28:59.862000Z
var-201403-0514	The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certa…	2024-07-23T20:28:55.089000Z
var-200701-0014	Integer overflow in the ffs_mountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows lo…	2024-07-23T20:28:55.996000Z
var-200112-0223	Alcatel ADSL modems allow remote attackers to access the Trivial File Transfer Protocol (…	2024-07-23T20:28:55.223000Z
var-201311-0379	The scan function in ext/date/lib/parse_iso_intervals.c in PHP through 5.5.6 does not pro…	2024-07-23T20:27:48.646000Z
var-201006-1142	Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 throug…	2024-07-23T20:27:48.807000Z
var-200904-0794	Integer overflow in the TIFF image decoding routines in CUPS 1.3.9 and earlier allows rem…	2024-07-23T20:27:48.713000Z
var-200708-0604	The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and late…	2024-07-23T20:27:48.307000Z
var-201601-0495	Buffer overflow in the png_set_PLTE function in libpng before 1.0.65, 1.1.x and 1.2.x bef…	2024-07-23T20:27:47.728000Z
var-200701-0340	The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428…	2024-07-23T20:27:11.499000Z
var-201912-0647	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T20:26:07.934000Z
var-201912-0542	This issue was addressed with improved checks. This issue is fixed in iOS 12.2, macOS Moj…	2024-07-23T20:26:04.490000Z
var-200309-0035	A "buffer management error" in buffer_append_space of buffer.c for OpenSSH before 3.7 may…	2024-07-23T20:26:04.438000Z
var-202110-1512	This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS…	2024-07-23T20:26:00.417000Z
var-200807-0062	JavaScriptCore in WebKit on Apple iPhone before 2.0 and iPod touch before 2.0 does not pr…	2024-07-23T20:26:00.063000Z
var-202210-1528	A type confusion issue was addressed with improved memory handling. This issue is fixed i…	2024-07-23T20:25:59.725000Z
var-202106-1921	A security issue in nginx resolver was identified, which might allow an attacker who is a…	2024-07-23T20:25:59.461000Z
var-202004-0983	Apache CXF has the ability to integrate with JMX by registering an InstrumentationManager…	2024-07-23T20:25:59.004000Z
var-202201-0370	storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. The…	2024-07-23T20:25:58.764000Z
var-202104-1571	A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lea…	2024-07-23T20:25:58.423000Z
var-201405-0543	Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filter…	2024-07-23T20:25:58.247000Z
var-200703-0025	The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 does not suffici…	2024-07-23T20:25:58.189000Z
var-202006-1838	Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested…	2024-07-23T20:25:57.515000Z
var-201304-0381	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T20:25:24.023000Z

ID	Description	Published	Updated
jvndb-2021-000103	WordPress Plugin "Push Notifications for WordPress (Lite)" vulnerable to cross-site request forgery	2021-11-16T13:42+09:00	2021-11-16T13:42+09:00
jvndb-2021-000102	rwtxt vulnerable to cross-site scripting	2021-11-16T13:38+09:00	2021-11-16T13:38+09:00
jvndb-2021-000101	Unlimited Sitemap Generator vulnerable to cross-site request forgery	2021-11-12T15:07+09:00	2021-11-12T15:07+09:00
jvndb-2021-003840	Cross-site Scripting Vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer	2021-11-12T11:41+09:00	2021-11-12T11:41+09:00
jvndb-2021-000100	Multiple vulnerabilities in EC-CUBE 2 series	2021-11-11T15:09+09:00	2021-11-11T15:09+09:00
jvndb-2021-000094	WordPress Plugin "Booking Package - Appointment Booking Calendar System" vulnerable to cross-site scripting	2021-11-10T14:26+09:00	2021-11-10T14:26+09:00
jvndb-2021-003811	File Permission Vulnerability in Hitachi Automation Director, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center	2021-11-05T15:04+09:00	2021-11-05T15:04+09:00
jvndb-2021-003660	Authentication Bypass Vulnerability in Hitachi Device Manager	2021-11-01T15:56+09:00	2021-11-01T15:56+09:00
jvndb-2021-003080	OMRON CX-Supervisor vulnerable to out-of-bounds read	2021-10-18T15:26+09:00	2021-11-01T15:37+09:00
jvndb-2021-000096	Android App "Mercari (Merpay) - Marketplace and Mobile Payments App" (Japan version) vulnerable to improper handling of Intent	2021-10-29T15:11+09:00	2021-10-29T15:11+09:00
jvndb-2021-000098	ESET Cyber Security and ESET Endpoint series vulnerable to denial-of-service (DoS)	2021-10-29T14:58+09:00	2021-10-29T14:58+09:00
jvndb-2021-000095	Multiple improper restriction of XML external entity reference (XXE) vulnerabilities in Office Server Document Converter	2021-10-28T15:03+09:00	2021-10-28T15:03+09:00
jvndb-2021-003385	Trend Micro Endpoint security products for enterprises vulnerable to privilege escalation	2021-10-26T12:35+09:00	2021-10-26T12:35+09:00
jvndb-2021-000091	128 Technology Session Smart Router vulnerable to authentication bypass	2021-10-18T14:58+09:00	2021-10-18T14:58+09:00
jvndb-2021-000090	Apache HTTP Server vulnerable to directory traversal	2021-10-11T18:07+09:00	2021-10-11T18:07+09:00
jvndb-2021-000089	Nike App fails to restrict custom URL schemes properly	2021-10-08T14:32+09:00	2021-10-08T14:32+09:00
jvndb-2021-002810	Information Disclosure Vulnerability in Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer	2021-10-05T15:37+09:00	2021-10-05T15:37+09:00
jvndb-2021-002774	Trend Micro ServerProtect family vulnerable to authentication bypass	2021-10-01T14:42+09:00	2021-10-01T14:42+09:00
jvndb-2021-002752	Trend Micro HouseCall for Home Networks vulnerable to privilege escalation	2021-09-30T13:56+09:00	2021-09-30T13:56+09:00
jvndb-2021-000085	SNKRDUNK Market Place App for iOS vulnerable to improper server certificate verification	2021-09-28T15:18+09:00	2021-09-28T15:18+09:00
jvndb-2021-000086	WordPress Plugin "OG Tags" vulnerable to cross-site request forgery	2021-09-28T15:11+09:00	2021-09-28T15:11+09:00
jvndb-2021-000084	InBody App vulnerable to information disclosure	2021-09-28T14:27+09:00	2021-09-28T14:27+09:00
jvndb-2021-001123	Multiple vulnerabilities in GROWI	2021-03-09T14:17+09:00	2021-09-24T13:34+09:00
jvndb-2021-000083	EC-CUBE plugin "Order Status Batch Change Plug-in" vulnerable to cross-site scripting	2021-09-16T14:33+09:00	2021-09-16T14:33+09:00
jvndb-2021-000082	EC-CUBE plugin "List (order management) item change plug-in" vulnerable to cross-site scripting	2021-09-13T14:24+09:00	2021-09-13T14:24+09:00
jvndb-2021-000074	Multiple vulnerabilities in RevoWorks Browser	2021-09-10T15:44+09:00	2021-09-10T15:44+09:00
jvndb-2021-002342	Trend Micro Security family vulnerable to improper handling of Directory Junction	2021-09-03T16:10+09:00	2021-09-03T16:10+09:00
jvndb-2020-000085	Multiple vulnerabilities in GROWI	2020-12-15T15:41+09:00	2021-08-30T16:29+09:00
jvndb-2021-000080	baserCMS vulnerable to cross-site scripting	2021-08-27T13:29+09:00	2021-08-27T13:29+09:00
jvndb-2021-000079	Multiple cross-site scripting vulnerabilities in Movable Type	2021-08-25T14:54+09:00	2021-08-25T14:54+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:3996-1	Security update for java-11-openjdk	2025-11-07T15:48:31Z	2025-11-07T15:48:31Z
suse-su-2025:3995-1	Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP7)	2025-11-07T15:33:40Z	2025-11-07T15:33:40Z
suse-su-2025:3989-1	Security update for tiff	2025-11-07T13:44:29Z	2025-11-07T13:44:29Z
suse-su-2025:3987-1	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP7)	2025-11-07T13:03:43Z	2025-11-07T13:03:43Z
suse-su-2025:3986-1	Security update for gpg2	2025-11-07T10:31:06Z	2025-11-07T10:31:06Z
suse-su-2025:3985-1	Security update for ImageMagick	2025-11-07T10:30:54Z	2025-11-07T10:30:54Z
suse-su-2025:3983-1	Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP6)	2025-11-06T21:33:47Z	2025-11-06T21:33:47Z
suse-su-2025:20996-1	Security update for the Linux Kernel	2025-11-06T15:51:37Z	2025-11-06T15:51:37Z
suse-su-2025:3978-1	Security update for ImageMagick	2025-11-06T15:43:10Z	2025-11-06T15:43:10Z
suse-su-2025:20994-1	Security update for the Linux Kernel	2025-11-06T15:30:43Z	2025-11-06T15:30:43Z
suse-su-2025:3976-1	Security update for bind	2025-11-06T13:14:37Z	2025-11-06T13:14:37Z
suse-su-2025:3970-1	Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP6)	2025-11-06T12:03:46Z	2025-11-06T12:03:46Z
suse-su-2025:20991-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_2	2025-11-06T11:20:15Z	2025-11-06T11:20:15Z
suse-su-2025:20960-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_3	2025-11-06T11:20:15Z	2025-11-06T11:20:15Z
suse-su-2025:20959-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_2	2025-11-06T11:20:15Z	2025-11-06T11:20:15Z
suse-su-2025:20971-1	Security update for tiff	2025-11-06T11:07:55Z	2025-11-06T11:07:55Z
suse-su-2025:3966-1	Security update for fetchmail	2025-11-06T10:48:18Z	2025-11-06T10:48:18Z
suse-su-2025:3965-1	Security update for java-1_8_0-ibm	2025-11-06T10:47:33Z	2025-11-06T10:47:33Z
suse-su-2025:3964-1	Security update for java-1_8_0-ibm	2025-11-06T10:46:49Z	2025-11-06T10:46:49Z
suse-su-2025:3961-1	Security update for tiff	2025-11-06T09:19:55Z	2025-11-06T09:19:55Z
suse-su-2025:20981-1	Security update for kernel-livepatch-MICRO-6-0_Update_5	2025-11-05T16:34:28Z	2025-11-05T16:34:28Z
suse-su-2025:20955-1	Security update for kernel-livepatch-MICRO-6-0_Update_5	2025-11-05T16:34:28Z	2025-11-05T16:34:28Z
suse-su-2025:20980-1	Security update for kernel-livepatch-MICRO-6-0_Update_8	2025-11-05T16:34:09Z	2025-11-05T16:34:09Z
suse-su-2025:20956-1	Security update for kernel-livepatch-MICRO-6-0_Update_8	2025-11-05T16:34:09Z	2025-11-05T16:34:09Z
suse-su-2025:20990-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_12	2025-11-05T16:33:56Z	2025-11-05T16:33:56Z
suse-su-2025:20989-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_10	2025-11-05T16:33:56Z	2025-11-05T16:33:56Z
suse-su-2025:20954-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_12	2025-11-05T16:33:56Z	2025-11-05T16:33:56Z
suse-su-2025:20953-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_10	2025-11-05T16:33:56Z	2025-11-05T16:33:56Z
suse-su-2025:20979-1	Security update for kernel-livepatch-MICRO-6-0_Update_11	2025-11-05T16:33:53Z	2025-11-05T16:33:53Z
suse-su-2025:20958-1	Security update for kernel-livepatch-MICRO-6-0_Update_11	2025-11-05T16:33:53Z	2025-11-05T16:33:53Z

ID	Description	Published	Updated
cnvd-2026-02974	Google Android权限提升漏洞（CNVD-2026-02974）	2025-12-10	2026-01-13
cnvd-2026-02964	Google Android拒绝服务漏洞（CNVD-2026-02964）	2025-12-10	2026-01-13
cnvd-2026-02962	Google Android拒绝服务漏洞（CNVD-2026-02962）	2025-12-10	2026-01-13
cnvd-2026-02949	Google Android权限提升漏洞（CNVD-2026-02949）	2025-12-10	2026-01-13
cnvd-2026-02932	Google Android拒绝服务漏洞（CNVD-2026-02932）	2025-12-10	2026-01-13
cnvd-2026-02960	Intel Graphics Drivers代码问题漏洞	2024-11-15	2026-01-12
cnvd-2026-02959	Intel Ethernet Connection I219 Series访问控制不当漏洞	2025-02-17	2026-01-12
cnvd-2026-02958	Intel Ethernet Adapter Complete Driver Pack代码问题漏洞	2025-02-17	2026-01-12
cnvd-2026-02957	Intel Network Adapters Package竞争条件漏洞	2025-05-28	2026-01-12
cnvd-2026-02956	Intel Ethernet Connection Software搜索路径控制不当漏洞	2025-05-28	2026-01-12
cnvd-2026-02955	Intel SigTest访问控制不当漏洞	2025-11-14	2026-01-12
cnvd-2026-02954	Intel Processor Identification Utility未控制的搜索路径漏洞	2025-11-14	2026-01-12
cnvd-2026-02953	Intel Processor Identification Utility默认权限设置不当漏洞	2025-11-14	2026-01-12
cnvd-2026-02952	Intel Processor Identification Utility权限提升漏洞	2025-11-14	2026-01-12
cnvd-2026-02951	Intel Graphics Software代码问题漏洞	2025-11-14	2026-01-12
cnvd-2026-02933	Google Android权限提升漏洞（CNVD-2026-02933）	2025-12-10	2026-01-12
cnvd-2026-02931	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-02931）	2025-12-15	2026-01-12
cnvd-2026-02930	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-02930）	2025-12-15	2026-01-12
cnvd-2026-02929	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-02929）	2025-12-15	2026-01-12
cnvd-2026-02928	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-02928）	2025-12-15	2026-01-12
cnvd-2026-02927	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-02927）	2025-12-15	2026-01-12
cnvd-2026-02926	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-02926）	2025-12-15	2026-01-12
cnvd-2026-02925	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-02925）	2025-12-15	2026-01-12
cnvd-2026-02924	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-02924）	2025-12-15	2026-01-12
cnvd-2026-02923	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-02923）	2025-12-15	2026-01-12
cnvd-2026-02922	Adobe Experience Manager跨站脚本漏洞（CNVD-2026-02922）	2025-12-15	2026-01-12
cnvd-2026-02918	Ivanti EPMM身份验证绕过漏洞	2023-08-17	2026-01-12
cnvd-2026-02917	Ivanti Endpoint Manager路径遍历漏洞（CNVD-2026-02917）	2024-11-15	2026-01-12
cnvd-2026-02916	Ivanti EPMM路径遍历漏洞	2025-10-17	2026-01-12
cnvd-2026-02915	Ivanti EPMM操作系统命令注入漏洞（CNVD-2026-02915）	2025-10-17	2026-01-12

ID	Description	Published	Updated
certfr-2025-avi-0910	Multiples vulnérabilités dans Oracle Virtualization	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0909	Multiples vulnérabilités dans Oracle Systems	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0908	Multiples vulnérabilités dans Oracle PeopleSoft	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0907	Multiples vulnérabilités dans Oracle MySQL	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0906	Multiples vulnérabilités dans Oracle Java SE	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0905	Multiples vulnérabilités dans Oracle Database Server	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0904	Multiples vulnérabilités dans GitLab	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0903	Multiples vulnérabilités dans les produits Atlassian	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0902	Multiples vulnérabilités dans Xen	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0901	Vulnérabilité dans Google Chrome	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0900	Multiples vulnérabilités dans Centreon Web	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0912	Vulnérabilité dans SolarWinds Observability	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0911	Multiples vulnérabilités dans Oracle Weblogic	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0910	Multiples vulnérabilités dans Oracle Virtualization	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0909	Multiples vulnérabilités dans Oracle Systems	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0908	Multiples vulnérabilités dans Oracle PeopleSoft	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0907	Multiples vulnérabilités dans Oracle MySQL	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0906	Multiples vulnérabilités dans Oracle Java SE	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0905	Multiples vulnérabilités dans Oracle Database Server	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0904	Multiples vulnérabilités dans GitLab	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0903	Multiples vulnérabilités dans les produits Atlassian	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0902	Multiples vulnérabilités dans Xen	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0901	Vulnérabilité dans Google Chrome	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
CERTFR-2025-AVI-0900	Multiples vulnérabilités dans Centreon Web	2025-10-22T00:00:00.000000	2025-10-22T00:00:00.000000
certfr-2025-avi-0899	Multiples vulnérabilités dans les produits Microsoft	2025-10-20T00:00:00.000000	2025-10-20T00:00:00.000000
certfr-2025-avi-0898	Vulnérabilité dans Microsoft Edge	2025-10-20T00:00:00.000000	2025-10-20T00:00:00.000000
certfr-2025-avi-0897	Multiples vulnérabilités dans Tenable Identity Exposure	2025-10-20T00:00:00.000000	2025-10-20T00:00:00.000000
CERTFR-2025-AVI-0899	Multiples vulnérabilités dans les produits Microsoft	2025-10-20T00:00:00.000000	2025-10-20T00:00:00.000000
CERTFR-2025-AVI-0898	Vulnérabilité dans Microsoft Edge	2025-10-20T00:00:00.000000	2025-10-20T00:00:00.000000
CERTFR-2025-AVI-0897	Multiples vulnérabilités dans Tenable Identity Exposure	2025-10-20T00:00:00.000000	2025-10-20T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated