Recent vulnerabilities

ID	Description	Published	Updated
ghsa-fm8g-vxm5-h9qc	A flaw has been found in code-projects Refugee Food Management System 1.0. Affected by this vulnera…	2025-12-29T12:30:16Z	2025-12-29T12:30:16Z
ghsa-fcm2-vr5g-rj8f	A weakness has been identified in code-projects Refugee Food Management System 1.0. This affects an…	2025-12-29T12:30:16Z	2025-12-29T12:30:16Z
ghsa-cgrf-8qxm-cw5j	A vulnerability was detected in code-projects Refugee Food Management System 1.0. Affected is an un…	2025-12-29T12:30:16Z	2025-12-29T12:30:16Z
ghsa-7pfj-7xq4-95vf	A vulnerability has been found in code-projects Refugee Food Management System 1.0. Affected by thi…	2025-12-29T12:30:16Z	2025-12-29T12:30:16Z
ghsa-cg22-j369-q853	A security flaw has been discovered in code-projects Refugee Food Management System 1.0. The impact…	2025-12-29T09:30:24Z	2025-12-29T09:30:25Z
ghsa-wgvp-jwxw-3rhx	BPMFlowWebkit developed by WELLTEND TECHNOLOGY has a Arbitrary File Upload vulnerability, allowing …	2025-12-29T09:30:24Z	2025-12-29T09:30:24Z
ghsa-m9qv-jv94-ch3q	WMPro developed by Sunnet has a Arbitrary File Upload vulnerability, allowing unauthenticated remot…	2025-12-29T09:30:23Z	2025-12-29T09:30:24Z
ghsa-hmh7-992g-3462	A vulnerability was found in Tenda WH450 1.0.0.18. This issue affects some unknown processing of th…	2025-12-29T09:30:24Z	2025-12-29T09:30:24Z
ghsa-g344-h4p6-wpq9	A vulnerability was identified in Tenda WH450 1.0.0.18. The affected element is an unknown function…	2025-12-29T09:30:24Z	2025-12-29T09:30:24Z
ghsa-62p4-493g-4423	A vulnerability was determined in Tenda WH450 1.0.0.18. Impacted is an unknown function of the file…	2025-12-29T09:30:24Z	2025-12-29T09:30:24Z
ghsa-29c2-7qg3-7c74	BPMFlowWebkit developed by WELLTEND TECHNOLOGY has a Arbitrary File Read vulnerability, allowing un…	2025-12-29T09:30:24Z	2025-12-29T09:30:24Z
ghsa-qvjf-wrj2-9pj8	WMPro developed by Sunnet has an Arbitrary File Read vulnerability, allowing unauthenticated remote…	2025-12-29T09:30:23Z	2025-12-29T09:30:23Z
ghsa-mxx2-735j-g9gp	A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of …	2025-12-29T09:30:23Z	2025-12-29T09:30:23Z
ghsa-229x-w52j-6f5m	A flaw has been found in Open5GS up to 2.7.5. This affects the function decode_ipv6_header/ogs_pfcp…	2025-12-29T09:30:23Z	2025-12-29T09:30:23Z
ghsa-x78m-hxx2-v34v	Missing Authorization vulnerability in Gmission Web Fax allows Privilege Abuse, Session Credential …	2025-12-29T06:30:24Z	2025-12-29T06:30:24Z
ghsa-wv78-2995-7xgf	Improper Authentication vulnerability in Gmission Web Fax allows Privilege Escalation.This issue af…	2025-12-29T06:30:24Z	2025-12-29T06:30:24Z
ghsa-rqv7-99wg-986m	A security vulnerability has been detected in Advaya Softech GEMS ERP Portal up to 2.1. This affect…	2025-12-29T06:30:23Z	2025-12-29T06:30:24Z
ghsa-m25v-pprh-9m5m	A security vulnerability has been detected in SohuTV CacheCloud up to 3.2.0. Affected by this vulne…	2025-12-29T06:30:24Z	2025-12-29T06:30:24Z
ghsa-gg4m-38pj-gwmc	A vulnerability was identified in SohuTV CacheCloud up to 3.2.0. This affects the function index of…	2025-12-29T06:30:24Z	2025-12-29T06:30:24Z
ghsa-8jv6-h799-v689	A security flaw has been discovered in SohuTV CacheCloud up to 3.2.0. This impacts the function pre…	2025-12-29T06:30:24Z	2025-12-29T06:30:24Z
ghsa-88mr-q29h-43g6	A weakness has been identified in SohuTV CacheCloud up to 3.2.0. Affected is the function advancedA…	2025-12-29T06:30:24Z	2025-12-29T06:30:24Z
ghsa-53q9-538q-rmmw	Exposure of Sensitive Information to an Unauthorized Actor, Missing Authorization vulnerability in …	2025-12-29T06:30:24Z	2025-12-29T06:30:24Z
ghsa-4jhr-55hq-jhcw	A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. Affected by this issue is the functi…	2025-12-29T06:30:24Z	2025-12-29T06:30:24Z
ghsa-rq63-8xjc-f72r	A weakness has been identified in BiggiDroid Simple PHP CMS 1.0. Affected by this issue is some unk…	2025-12-29T06:30:23Z	2025-12-29T06:30:23Z
ghsa-r83m-ghv4-r378	A vulnerability was determined in itsourcecode Online Cake Ordering System 1.0. This impacts an unk…	2025-12-29T03:30:25Z	2025-12-29T03:30:26Z
ghsa-hp9p-9hpg-4rpv	A vulnerability was identified in itsourcecode Student Management System 1.0. Affected is an unknow…	2025-12-29T03:30:26Z	2025-12-29T03:30:26Z
ghsa-c9vj-8fwr-4gvq	Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbi…	2025-12-29T03:30:26Z	2025-12-29T03:30:26Z
ghsa-qvph-8rch-f939	A vulnerability has been found in itsourcecode Online Cake Ordering System 1.0. The impacted elemen…	2025-12-29T03:30:25Z	2025-12-29T03:30:25Z
ghsa-j7cw-4mwg-5fw5	A vulnerability was identified in Tenda WH450 1.0.0.18. Affected by this issue is some unknown func…	2025-12-29T03:30:25Z	2025-12-29T03:30:25Z
ghsa-gjm8-9h85-538q	A vulnerability was found in itsourcecode Online Cake Ordering System 1.0. This affects an unknown …	2025-12-29T03:30:25Z	2025-12-29T03:30:25Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-69022	N/A	WordPress HR Management Lite plugin <= 3.5 - Broken Ac…	Weblizar - WordPress Themes & Plugin	HR Management Lite	2025-12-30T10:47:55.337Z	2025-12-30T10:47:55.337Z
cve-2025-69021	N/A	WordPress Popup box plugin <= 6.0.7 - Cross Site Reque…	Ays Pro	Popup box	2025-12-30T10:47:55.134Z	2025-12-30T10:47:55.134Z
cve-2023-36377	N/A	Buffer Overflow vulnerability in mtrojnar osslsig…	n/a	n/a	2023-07-03T00:00:00.000Z	2025-12-30T08:05:05.405Z
cve-2025-12771	7.8 (v3.1)	IBM Concert Software Improper Restriction of Operation…	IBM	Concert	2025-12-26T13:01:23.145Z	2025-12-30T04:55:29.012Z
cve-2025-64645	7.7 (v3.1)	Time-of-check Time-of-use (TOCTOU) in IBM Concert Software.	IBM	Concert	2025-12-26T14:24:57.880Z	2025-12-30T04:55:27.810Z
cve-2022-2068		The c_rehash script allows command injection	OpenSSL	OpenSSL	2022-06-21T14:45:20.597Z	2025-12-30T04:55:27.130Z
cve-2022-1292		The c_rehash script allows command injection	OpenSSL	OpenSSL	2022-05-03T15:15:19.758Z	2025-12-30T04:55:25.734Z
cve-2018-25153	N/A	{'providerMetadata': {'orgId': '83251b91-4cc7-4094-a5c7-464a1b83ea10', 'shortName': 'VulnCheck', 'dateUpdated': '2025-12-30T00:11:01.693Z'}, 'rejectedReasons': [{'lang': 'en', 'supportingMedia': [{'base64': False, 'type': 'text/html', 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority as the reported issue does not constitute a security vulnerability and represents a minor, non-exploitable memory leak.'}], 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority as the reported issue does not constitute a security vulnerability and represents a minor, non-exploitable memory leak.'}], 'x_generator': {'engine': 'Vulnogram 0.1.0-dev'}}	N/A	N/A	2025-12-24T19:27:53.062Z	2025-12-30T00:11:01.693Z
cve-2025-15084		youlaitech youlai-mall Order Payment OrderController.j…	youlaitech	youlai-mall	2025-12-25T18:32:05.729Z	2025-12-29T21:29:17.869Z
cve-2025-15085		youlaitech youlai-mall Balance MemberController.java d…	youlaitech	youlai-mall	2025-12-25T19:32:08.203Z	2025-12-29T21:28:29.460Z
cve-2025-15144		dayrui XunRuiCMS JSONP Callback Init.php dr_exit_msg c…	dayrui	XunRuiCMS	2025-12-28T16:32:07.116Z	2025-12-29T21:27:18.449Z
cve-2025-15145		SohuTV CacheCloud TotalManageController.java doTotalLi…	SohuTV	CacheCloud	2025-12-28T17:02:05.970Z	2025-12-29T21:26:55.456Z
cve-2025-15146		SohuTV CacheCloud UserManageController.java doUserList…	SohuTV	CacheCloud	2025-12-28T17:32:06.551Z	2025-12-29T21:25:59.423Z
cve-2025-15148		CmsEasy Backend Template Management template_admin.php…	n/a	CmsEasy	2025-12-28T18:02:08.178Z	2025-12-29T21:22:26.770Z
cve-2025-15149		rawchen ecms Add New Product updateProductServlet.java…	rawchen	ecms	2025-12-28T18:32:06.054Z	2025-12-29T21:17:12.684Z
cve-2025-68502	4.3 (v3.1)	WordPress JetPopup plugin <= 2.0.20.1 - Insecure Direc…	Crocoblock	JetPopup	2025-12-29T21:16:55.539Z	2025-12-29T21:16:55.539Z
cve-2025-68503	6.5 (v3.1)	WordPress JetBlog plugin <= 2.4.7 - Broken Access Cont…	Crocoblock	JetBlog	2025-12-29T21:15:43.312Z	2025-12-29T21:15:43.312Z
cve-2025-15161		Tenda WH450 PPTPUserSetting stack-based overflow	Tenda	WH450	2025-12-28T23:02:08.101Z	2025-12-29T21:13:48.407Z
cve-2025-15162		Tenda WH450 RouteStatic stack-based overflow	Tenda	WH450	2025-12-28T23:32:08.620Z	2025-12-29T21:06:49.439Z
cve-2025-15163		Tenda WH450 SafeEmailFilter stack-based overflow	Tenda	WH450	2025-12-29T00:02:07.226Z	2025-12-29T21:03:37.471Z
cve-2024-25182	N/A	givanz VvvebJs 1.7.2 suffers from a File Upload v…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:40:54.229Z
cve-2024-27480	N/A	givanz VvvebJs 1.7.2 is vulnerable to Insecure Fi…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:27:33.820Z
cve-2025-13958	N/A	YaMaps < 0.6.40 - Contributor+ Stored XSS	Unknown	YaMaps for WordPress Plugin	2025-12-29T06:00:10.716Z	2025-12-29T20:16:35.365Z
cve-2025-13417	N/A	Plugin Organizer < 10.2.4 - Subscriber+ SQLi	Unknown	Plugin Organizer	2025-12-29T06:00:08.587Z	2025-12-29T20:15:42.608Z
cve-2025-15086		youlaitech youlai-mall MemberController.java getMember…	youlaitech	youlai-mall	2025-12-25T20:32:06.220Z	2025-12-29T19:37:23.384Z
cve-2025-14175	6 (v4.0)	Weak Algorithm Support in SSH Server on TL-WR820N	TP-Link Systems Inc.	TL-WR820N v2.8	2025-12-29T19:31:23.473Z	2025-12-29T19:31:23.473Z
cve-2025-15165		itsourcecode Online Cake Ordering System updatecustome…	itsourcecode	Online Cake Ordering System	2025-12-29T01:02:08.921Z	2025-12-29T19:29:33.393Z
cve-2025-15087		youlaitech youlai-mall OrderController.java submitOrde…	youlaitech	youlai-mall	2025-12-25T21:02:07.632Z	2025-12-29T19:07:55.386Z
cve-2025-15088		ketr JEPaaS loadPostil postilService.loadPostils sql i…	ketr	JEPaaS	2025-12-25T22:02:06.408Z	2025-12-29T19:07:06.727Z
cve-2025-15089		UTT 进取 512W APSecurity strcpy buffer overflow	UTT	进取 512W	2025-12-25T22:32:07.032Z	2025-12-29T19:06:28.668Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-64641	4.1 (v3.1)	Mattermost Jira plugin crafted action leaks Jira issue…	Mattermost	Mattermost	2025-12-24T08:02:55.476Z	2025-12-24T16:35:17.618Z
cve-2025-68494	N/A	WordPress Premium Addons for Elementor plugin <= 4.11.…	Leap13	Premium Addons for Elementor	2025-12-24T12:31:19.012Z	2025-12-24T19:35:42.557Z
cve-2024-35322	N/A	MyNET up to v26.08 was discovered to contain a re…	n/a	n/a	2025-12-24T00:00:00.000Z	2025-12-24T16:45:02.195Z
cve-2024-40317	N/A	A reflected cross-site scripting (XSS) vulnerabil…	n/a	n/a	2025-12-24T00:00:00.000Z	2025-12-24T21:47:08.435Z
cve-2023-53929	6.2 (v4.0) 8.8 (v3.1)	phpMyFAQ 3.1.12 CSV Injection via User Profile Export	Phpmyfaq	phpMyFAQ	2025-12-17T22:44:57.447Z	2025-12-18T15:02:17.690Z
cve-2018-25138	9.3 (v4.0) 7.5 (v3.1)	FLIR AX8 Thermal Camera 1.32.16 Hard-Coded Credentials…	FLIR Systems	FLIR AX8 Thermal Camera	2025-12-24T19:27:46.730Z	2025-12-24T20:26:22.231Z
cve-2018-25139	8.7 (v4.0) 7.5 (v3.1)	FLIR AX8 Thermal Camera 1.32.16 Unauthenticated RTSP S…	FLIR Systems, Inc.	FLIR AX8 Thermal Camera	2025-12-24T19:27:47.117Z	2025-12-24T20:26:15.968Z
cve-2025-60541	N/A	A Server-Side Request Forgery (SSRF) in the /api/…	n/a	n/a	2025-11-06T00:00:00.000Z	2025-11-07T15:20:19.324Z
cve-2023-53928	5.1 (v4.0) 5.4 (v3.1)	PHPFusion 9.10.30 Stored Cross-Site Scripting via File…	Php-fusion	PHPFusion	2025-12-17T22:44:56.912Z	2025-12-18T15:02:25.900Z
cve-2023-53921	8.7 (v4.0) 9.8 (v3.1)	SitemagicCMS 4.4.3 Remote Code Execution via Unrestric…	Sitemagic	SitemagicCMS	2025-12-17T22:44:53.262Z	2025-12-18T15:02:58.900Z
cve-2025-64329		containerd CRI server: Host memory exhaustion through …	containerd	containerd	2025-11-07T04:15:09.381Z	2025-11-07T17:42:07.929Z
cve-2023-53917	8.7 (v4.0) 6.5 (v3.1)	Affiliate Me 5.0.1 SQL Injection Vulnerability via Adm…	powerstonegh	Affiliate Me	2025-12-17T22:46:25.099Z	2025-12-18T18:54:17.403Z
cve-2023-53907	7.1 (v4.0) 6.5 (v3.1)	Bludit 3.13.1 Authenticated Arbitrary File Download vi…	Bludit	Backup Plugin	2025-12-17T22:44:45.886Z	2025-12-18T15:05:29.554Z
cve-2025-64338		ClipBucket's Manage Photos Feature is Vulnerable to St…	MacWarrior	clipbucket-v5	2025-12-15T22:55:03.488Z	2025-12-16T15:09:59.194Z
cve-2023-53900	4.8 (v4.0) 8.8 (v3.1)	Spip 4.1.10 Admin Account Spoofing via Malicious SVG Upload	spip	spip	2025-12-16T17:06:24.258Z	2025-12-18T20:52:24.248Z
cve-2024-58308	9.3 (v4.0)	Quick.CMS 6.7 SQL Injection Authentication Bypass via …	opensolution	Quick.CMS	2025-12-11T21:42:09.518Z	2025-12-18T21:28:22.202Z
cve-2024-58280	8.6 (v4.0)	CMSimple 5.15 Remote Command Execution via Extensions …	CMSimple	CMSimple	2025-12-10T21:13:33.152Z	2025-12-11T18:51:51.374Z
cve-2025-60876	N/A	BusyBox wget thru 1.3.7 accepted raw CR (0x0D)/LF…	n/a	n/a	2025-11-10T00:00:00.000Z	2025-11-12T20:47:02.144Z
cve-2025-62780		changedetection.io vulnerable to stored XSS in Watch u…	dgtlmoon	changedetection.io	2025-11-10T21:18:52.945Z	2025-11-10T21:43:52.020Z
cve-2025-63397	N/A	Improper input validation in OneFlow v0.9.0 allow…	n/a	n/a	2025-11-10T00:00:00.000Z	2025-11-12T20:29:15.686Z
cve-2025-64512		pdfminer.six vulnerable to Arbitrary Code Execution vi…	pdfminer	pdfminer.six	2025-11-10T21:58:37.950Z	2025-11-19T00:12:35.732Z
cve-2025-63678	N/A	An authenticated arbitrary file upload vulnerabil…	n/a	n/a	2025-11-10T00:00:00.000Z	2025-11-12T20:25:12.631Z
cve-2025-64519		TorrentPier is Vulnerable to Authenticated SQL Injecti…	torrentpier	torrentpier	2025-11-10T22:17:31.083Z	2025-11-12T20:13:03.908Z
cve-2025-64522		Soft Serve is vulnerable to SSRF through its Webhooks	charmbracelet	soft-serve	2025-11-10T22:11:18.863Z	2025-11-12T20:13:12.894Z
cve-2022-50689	6.9 (v4.0) 6.2 (v3.1)	Cobian Reflector 0.9.93 RC1 Local Denial of Service vi…	Cobiansoft	Cobian Reflector	2025-12-22T21:35:26.757Z	2025-12-22T22:05:37.321Z
cve-2022-50687	6.9 (v4.0) 6.2 (v3.1)	Cobian Backup 11 Gravity 11.2.0.582 Local Denial of Se…	Cobiansoft	Cobian Backup Gravity	2025-12-22T21:35:25.934Z	2025-12-22T22:05:48.906Z
cve-2023-53945	8.7 (v4.0) 8.8 (v3.1)	BrainyCP 1.0 Remote Code Execution via Authenticated C…	brainycp	BrainyCP	2025-12-19T21:05:48.436Z	2025-12-22T16:41:22.542Z
cve-2025-34451	6.9 (v4.0)	rofl0r/proxychains-ng <= 4.17 Stack-based Buffer Overflow	rofl0r	proxychains-ng	2025-12-18T21:16:18.730Z	2025-12-20T13:33:26.831Z
cve-2025-34450	6.9 (v4.0)	merbanan/rtl_433 <= 25.02 Stack-based Buffer Overflow	merbanan	rtl_433	2025-12-18T21:15:50.730Z	2025-12-20T13:34:31.358Z
cve-2025-34449	6.9 (v4.0)	Genymobile/scrcpy <= 3.3.3 Global Buffer Overflow	Genymobile	scrcpy	2025-12-18T21:15:23.069Z	2025-12-22T17:47:59.157Z

ID	Description	Published	Updated
fkie_cve-2025-64641	Mattermost versions 11.1.x <= 11.1.0, 11.0.x <= 11.0.5, 10.12.x <= 10.12.3, 10.11.x <= 10.11.7 fail…	2025-12-24T08:15:46.487	2025-12-31T18:55:29.067
fkie_cve-2025-68494	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Leap13 …	2025-12-24T13:16:19.927	2025-12-31T18:50:25.007
fkie_cve-2024-35322	MyNET up to v26.08 was discovered to contain a reflected cross-site scripting (XSS) vulnerability v…	2025-12-24T16:15:46.653	2025-12-31T18:49:10.483
fkie_cve-2024-40317	A reflected cross-site scripting (XSS) vulnerability in MyNET up to v26.08 allows attackers to exec…	2025-12-24T16:15:47.387	2025-12-31T18:48:50.920
fkie_cve-2023-53929	phpMyFAQ 3.1.12 contains a CSV injection vulnerability that allows authenticated users to inject ma…	2025-12-17T23:15:52.343	2025-12-31T18:45:39.697
fkie_cve-2018-25138	FLIR AX8 Thermal Camera 1.32.16 contains hard-coded SSH and web panel credentials that cannot be ch…	2025-12-24T20:15:47.807	2025-12-31T18:42:59.357
fkie_cve-2018-25139	FLIR AX8 Thermal Camera 1.32.16 contains an unauthenticated vulnerability that allows remote attack…	2025-12-24T20:15:47.957	2025-12-31T18:40:36.483
fkie_cve-2025-60541	A Server-Side Request Forgery (SSRF) in the /api/proxy/ component of linshenkx prompt-optimizer v1.…	2025-11-06T19:15:41.790	2025-12-31T18:37:19.573
fkie_cve-2023-53928	PHPFusion 9.10.30 contains a stored cross-site scripting vulnerability in the file manager that all…	2025-12-17T23:15:52.180	2025-12-31T18:37:03.983
fkie_cve-2023-53921	SitemagicCMS 4.4.3 contains a remote code execution vulnerability that allows attackers to upload m…	2025-12-17T23:15:51.107	2025-12-31T18:36:40.327
fkie_cve-2025-64329	containerd is an open-source container runtime. Versions 1.7.28 and below, 2.0.0-beta.0 through 2.0…	2025-11-07T05:16:08.017	2025-12-31T18:34:48.060
fkie_cve-2023-53917	Affiliate Me version 5.0.1 contains a SQL injection vulnerability in the admin.php endpoint that al…	2025-12-17T23:15:50.453	2025-12-31T18:32:01.127
fkie_cve-2023-53907	Bludit versions before 3.13.1 contain an authenticated file download vulnerability in the Backup Pl…	2025-12-17T23:15:48.883	2025-12-31T18:31:31.747
fkie_cve-2025-64338	ClipBucket v5 is an open source video sharing platform. In versions 5.5.2 - #156 and below, an auth…	2025-11-07T05:16:10.167	2025-12-31T18:30:53.520
fkie_cve-2023-53900	Spip 4.1.10 contains a file upload vulnerability that allows attackers to upload malicious SVG file…	2025-12-16T18:16:07.063	2025-12-31T18:30:53.463
fkie_cve-2024-58308	Quick.CMS 6.7 contains a SQL injection vulnerability that allows unauthenticated attackers to bypas…	2025-12-11T22:15:52.340	2025-12-31T18:30:13.567
fkie_cve-2024-58280	CMSimple 5.15 contains a remote command execution vulnerability that allows authenticated attackers…	2025-12-10T22:16:19.723	2025-12-31T18:29:58.403
fkie_cve-2025-60876	BusyBox wget thru 1.3.7 accepted raw CR (0x0D)/LF (0x0A) and other C0 control bytes in the HTTP req…	2025-11-10T20:15:48.683	2025-12-31T18:29:41.550
fkie_cve-2025-62780	changedetection.io is a free open source web page change detection tool. A Stored Cross Site Script…	2025-11-10T22:15:36.200	2025-12-31T18:28:07.050
fkie_cve-2025-63397	Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via addi…	2025-11-10T22:15:36.390	2025-12-31T18:26:04.333
fkie_cve-2025-64512	Pdfminer.six is a community maintained fork of the original PDFMiner, a tool for extracting informa…	2025-11-10T22:15:40.067	2025-12-31T17:58:38.777
fkie_cve-2025-63678	An authenticated arbitrary file upload vulnerability in the /uploads/ endpoint of CMS Made Simple F…	2025-11-10T23:15:41.700	2025-12-31T17:56:57.773
fkie_cve-2025-64519	TorrentPier is an open source BitTorrent Public/Private tracker engine, written in php. In versions…	2025-11-10T23:15:41.833	2025-12-31T17:55:04.723
fkie_cve-2025-64522	Soft Serve is a self-hostable Git server for the command line. Versions prior to 0.11.1 have a SSRF…	2025-11-10T23:15:41.987	2025-12-31T17:54:07.507
fkie_cve-2022-50689	Cobian Reflector 0.9.93 RC1 contains a denial of service vulnerability that allows attackers to cra…	2025-12-22T22:15:59.607	2025-12-31T17:53:24.480
fkie_cve-2022-50687	Cobian Backup 11 Gravity 11.2.0.582 contains a denial of service vulnerability in the FTP password …	2025-12-22T22:15:59.277	2025-12-31T17:52:53.143
fkie_cve-2023-53945	BrainyCP 1.0 contains an authenticated remote code execution vulnerability that allows logged-in us…	2025-12-19T21:15:48.583	2025-12-31T17:48:36.777
fkie_cve-2025-34451	rofl0r/proxychains-ng versions up to and including 4.17 and prior to commit cc005b7 contain a stack…	2025-12-18T22:15:56.320	2025-12-31T17:45:49.977
fkie_cve-2025-34450	merbanan/rtl_433 versions up to and including 25.02 and prior to commit 25e47f8 contain a stack-bas…	2025-12-18T22:15:56.163	2025-12-31T17:45:03.617
fkie_cve-2025-34449	Genymobile/scrcpy versions up to and including 3.3.3, prior to commit 3e40b24, contain a buffer ove…	2025-12-18T22:15:56.003	2025-12-31T17:43:22.477

ID	Description	Package	Published	Updated
pysec-2023-133	Vyper is a Pythonic programming language that targets the Ethereum Virtual Machine (EVM).…	vyper	2023-07-25T21:15:00+00:00	2023-08-03T18:27:50.332832+00:00
pysec-2023-132	copyparty is file server software. Prior to version 1.8.7, the application contains a ref…	copyparty	2023-07-25T22:15:00+00:00	2023-08-02T20:24:02.446410+00:00
pysec-2023-131	Vyper is a Pythonic Smart Contract Language for the ethereum virtual machine. In versions…	vyper	2023-04-24T22:15:00+00:00	2023-08-02T18:28:00.492615+00:00
pysec-2022-43053	Vyper is a Pythonic Smart Contract Language for the ethereum virtual machine. In versions…	vyper	2022-06-09T09:15:00+00:00	2023-08-02T18:28:00.437362+00:00
pysec-2023-130	Sentry is an error tracking and performance monitoring platform. Starting in version 8.21…	sentry	2023-07-25T19:15:00+00:00	2023-08-02T16:31:39.850029+00:00
pysec-2023-129	Indico is an open source a general-purpose, web based event management tool. There is a C…	indico	2023-07-21T19:15:00+00:00	2023-07-31T20:36:08.003610+00:00
pysec-2023-128	A flaw was found in the keylime attestation verifier, which fails to flag a device's subm…	keylime	2023-07-19T19:15:00+00:00	2023-07-28T16:31:09.279625+00:00
pysec-2023-127	Copyparty is a portable file server. Versions prior to 1.8.2 are subject to a path traver…	copyparty	2023-07-14T20:15:00+00:00	2023-07-27T20:23:01.674307+00:00
pysec-2023-126	PaddlePaddle before 2.5.0 has a command injection in fs.py. This resulted in the ability …	paddlepaddle	2023-07-26T12:15:00+00:00	2023-07-26T14:25:58.775032+00:00
pysec-2023-125	FPE in paddle.trace in PaddlePaddle before 2.5.0. This flaw can cause a runtime crash and…	paddlepaddle	2023-07-26T12:15:00+00:00	2023-07-26T14:25:58.693754+00:00
pysec-2023-124	Heap buffer overflow in paddle.trace in PaddlePaddle before 2.5.0. This flaw can lead to …	paddlepaddle	2023-07-26T11:15:00+00:00	2023-07-26T12:51:10.139446+00:00
pysec-2023-123	Null pointer dereference in paddle.flip in PaddlePaddle before 2.5.0. This resulted in a …	paddlepaddle	2023-07-26T11:15:00+00:00	2023-07-26T12:51:10.092120+00:00
pysec-2023-122	Use after free in paddle.diagonal in PaddlePaddle before 2.5.0. This resulted in a potent…	paddlepaddle	2023-07-26T10:15:00+00:00	2023-07-26T12:51:10.047714+00:00
pysec-2023-121	A vulnerability was found in zstd v1.4.10, where an attacker can supply empty string as a…	zstd	2023-03-31T20:15:00+00:00	2023-07-25T16:31:58.309647+00:00
pysec-2021-13	The Flask-Caching extension through 1.10.1 for Flask relies on Pickle for serialization, …	flask-caching	2021-05-13T23:15:00Z	2023-07-25T00:34:15.721702Z
pysec-2023-120	### Impact aiohttp v3.8.4 and earlier are [bundled with llhttp v6.0.6](https://github.co…	aiohttp	2023-07-20T14:52:00+00:00	2023-07-24T14:58:05.562874+00:00
pysec-2023-119	Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows unautho…	apache-airflow	2023-07-12T10:15:00+00:00	2023-07-20T19:19:47.109731+00:00
pysec-2023-118	RestrictedPython is a tool that helps to define a subset of the Python language which all…	restrictedpython	2023-07-11T18:15:00+00:00	2023-07-19T20:24:12.944004+00:00
pysec-2023-117	A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via …	pygments	2023-07-19T15:15:00+00:00	2023-07-19T17:26:16.938508+00:00
pysec-2023-116	xalpha v0.11.4 is vulnerable to Remote Command Execution (RCE).	xalpha	2023-07-11T15:15:00+00:00	2023-07-18T16:37:19.127985+00:00
pysec-2023-115	Sentry is an error tracking and performance monitoring platform. Starting in version 23.6…	sentry	2023-07-06T23:15:00+00:00	2023-07-17T20:27:52.414117+00:00
pysec-2023-114	DISPUTED A use-after-free issue was discovered in Py_FindObjects() function in SciP…	scipy	2023-07-06T21:15:00+00:00	2023-07-17T20:27:52.117232+00:00
pysec-2023-113	Products.CMFCore are the key framework services for the Zope Content Management Framework…	products-cmfcore	2023-07-03T17:15:00+00:00	2023-07-17T20:27:51.578279+00:00
pysec-2023-111	SQLFluff is a SQL linter. Prior to version 2.1.2, in environments where untrusted users h…	sqlfluff	2023-07-06T16:15:00+00:00	2023-07-13T21:23:24.026294+00:00
pysec-2023-108	MechanicalSoup is a Python library for automating interaction with websites. Starting in …	mechanicalsoup	2023-07-05T20:15:00+00:00	2023-07-12T18:32:48.148340+00:00
pysec-2023-107	Fides is an open-source privacy engineering platform for managing the fulfillment of data…	ethyca-fides	2023-07-05T22:15:00+00:00	2023-07-12T16:35:41.463418+00:00
pysec-2023-106	Apache Airflow, versions before 2.6.3, has a vulnerability where an authenticated user ca…	apache-airflow	2023-07-12T10:15:00+00:00	2023-07-12T12:59:56.816194+00:00
pysec-2023-105	Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an atta…	apache-airflow	2023-07-12T10:15:00+00:00	2023-07-12T12:59:56.733680+00:00
pysec-2023-104	Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an atta…	apache-airflow	2023-07-12T10:15:00+00:00	2023-07-12T12:59:56.649145+00:00
pysec-2023-103	Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an unau…	apache-airflow	2023-07-12T10:15:00+00:00	2023-07-12T12:59:56.564522+00:00

ID	Description	Updated
gsd-2024-33453	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.698683Z
gsd-2024-33160	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.698437Z
gsd-2024-33061	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.698231Z
gsd-2024-33481	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.698021Z
gsd-2024-33352	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.697823Z
gsd-2024-33110	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.697620Z
gsd-2024-33322	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.697418Z
gsd-2024-33041	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.697200Z
gsd-2024-33512	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.696971Z
gsd-2024-33499	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.696759Z
gsd-2024-33457	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.696566Z
gsd-2024-33377	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.696373Z
gsd-2024-33080	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.696178Z
gsd-2024-33142	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.695922Z
gsd-2024-33050	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.695724Z
gsd-2024-33350	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.695535Z
gsd-2024-33106	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.695334Z
gsd-2024-33334	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.695143Z
gsd-2024-33358	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.694949Z
gsd-2024-33141	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.694744Z
gsd-2024-33271	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.694529Z
gsd-2024-33183	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.694317Z
gsd-2024-33488	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.694115Z
gsd-2024-33228	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.693921Z
gsd-2024-33189	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.693720Z
gsd-2024-33111	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.693473Z
gsd-2024-33341	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.693276Z
gsd-2024-33351	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.693072Z
gsd-2024-33072	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.692854Z
gsd-2024-33327	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.692651Z

ID	Description	Published	Updated
mal-2025-192484	Malicious code in elf-stats-cheery-muffin-949 (npm)	2025-12-11T19:46:09Z	2025-12-23T17:09:49Z
mal-2025-192483	Malicious code in elf-stats-caroling-workshop-885 (npm)	2025-12-11T19:46:09Z	2025-12-23T17:09:49Z
mal-2025-192481	Malicious code in elf-stats-caroling-sled-530 (npm)	2025-12-11T19:46:09Z	2025-12-23T17:09:49Z
mal-2025-192369	Malicious code in elf-stats-caroling-wishlist-626 (npm)	2025-12-04T17:18:58Z	2025-12-23T17:09:49Z
mal-2025-192206	Malicious code in elf-stats-cocoa-fir-846 (npm)	2025-12-03T17:22:10Z	2025-12-23T17:09:49Z
mal-2025-192008	Malicious code in elf-stats-cocoa-northstar-632 (npm)	2025-12-03T15:59:29Z	2025-12-23T17:09:49Z
mal-2025-192005	Malicious code in elf-stats-cheery-fireplace-598 (npm)	2025-12-03T15:59:29Z	2025-12-23T17:09:49Z
mal-2025-192003	Malicious code in elf-stats-cheery-bell-343 (npm)	2025-12-03T15:59:29Z	2025-12-23T17:09:49Z
mal-2025-192002	Malicious code in elf-stats-caroling-toy-109 (npm)	2025-12-03T15:59:29Z	2025-12-23T17:09:49Z
mal-2025-192480	Malicious code in elf-stats-caroling-hammer-382 (npm)	2025-12-11T19:46:09Z	2025-12-23T16:45:01Z
mal-2025-192478	Malicious code in elf-stats-candystriped-workbench-865 (npm)	2025-12-11T19:46:09Z	2025-12-23T16:45:01Z
mal-2025-192477	Malicious code in elf-stats-candystriped-star-592 (npm)	2025-12-11T19:46:09Z	2025-12-23T16:45:01Z
mal-2025-192475	Malicious code in elf-stats-candystriped-cookiejar-799 (npm)	2025-12-11T19:46:09Z	2025-12-23T16:45:01Z
mal-2025-192474	Malicious code in elf-stats-candystriped-bauble-740 (npm)	2025-12-11T19:46:09Z	2025-12-23T16:45:01Z
mal-2025-192279	Malicious code in elf-stats-candystriped-chimney-879 (npm)	2025-12-03T19:54:12Z	2025-12-23T16:45:01Z
mal-2025-192278	Malicious code in elf-stats-aurora-toy-659 (npm)	2025-12-03T19:51:09Z	2025-12-23T16:45:01Z
mal-2025-192272	Malicious code in elf-stats-candystriped-ornament-933 (npm)	2025-12-03T19:22:08Z	2025-12-23T16:45:01Z
mal-2025-192000	Malicious code in elf-stats-caroling-hollyberry-628 (npm)	2025-12-03T15:59:29Z	2025-12-23T16:45:01Z
mal-2025-191999	Malicious code in elf-stats-candystriped-saddlebag-217 (npm)	2025-12-03T15:59:29Z	2025-12-23T16:45:01Z
mal-2025-191998	Malicious code in elf-stats-candystriped-lantern-205 (npm)	2025-12-03T15:59:29Z	2025-12-23T16:45:01Z
mal-2025-191997	Malicious code in elf-stats-candystriped-hollyberry-986 (npm)	2025-12-03T15:59:29Z	2025-12-23T16:45:01Z
mal-2025-191996	Malicious code in elf-stats-candlelit-toy-571 (npm)	2025-12-03T15:59:29Z	2025-12-23T16:45:01Z
mal-2025-191994	Malicious code in elf-stats-bright-star-712 (npm)	2025-12-03T15:59:29Z	2025-12-23T16:45:01Z
mal-2025-191993	Malicious code in elf-stats-bright-cushion-246 (npm)	2025-12-03T12:20:47Z	2025-12-23T16:45:01Z
mal-2025-191992	Malicious code in elf-stats-bright-bow-377 (npm)	2025-12-03T15:59:29Z	2025-12-23T16:45:01Z
mal-2025-191991	Malicious code in elf-stats-aurora-workbench-5l3 (npm)	2025-12-03T15:59:29Z	2025-12-23T16:45:01Z
mal-2025-191990	Malicious code in elf-stats-aurora-workbench-513 (npm)	2025-12-03T15:59:29Z	2025-12-23T16:45:01Z
mal-2025-191989	Malicious code in elf-stats-aurora-garland-513 (npm)	2025-12-03T15:59:29Z	2025-12-23T16:45:01Z
mal-2025-192557	Malicious code in cos-js-sdk-v6 (npm)	2025-12-12T06:34:05Z	2025-12-23T16:45:00Z
mal-2025-192398	Malicious code in database-mongoose-kit (npm)	2025-12-10T01:47:17Z	2025-12-23T16:45:00Z

ID	Description	Published	Updated
wid-sec-w-2024-1863	NGINX und NGINX Plus: Mehrere Schwachstellen ermöglichen Denial of Service	2024-08-14T22:00:00.000+00:00	2025-07-29T22:00:00.000+00:00
wid-sec-w-2024-1744	Ruby REXML: Mehrere Schwachstellen ermöglichen Denial of Service	2024-07-31T22:00:00.000+00:00	2025-07-29T22:00:00.000+00:00
wid-sec-w-2024-1720	Ruby REXML: Schwachstelle ermöglicht Denial of Service	2024-07-28T22:00:00.000+00:00	2025-07-29T22:00:00.000+00:00
wid-sec-w-2024-0848	QEMU: Schwachstelle ermöglicht Denial of Service	2024-04-10T22:00:00.000+00:00	2025-07-29T22:00:00.000+00:00
wid-sec-w-2024-0534	Linux Kernel: Mehrere Schwachstellen	2024-03-03T23:00:00.000+00:00	2025-07-29T22:00:00.000+00:00
wid-sec-w-2024-0005	QEMU: Schwachstelle ermöglicht Offenlegung von Informationen	2024-01-02T23:00:00.000+00:00	2025-07-29T22:00:00.000+00:00
wid-sec-w-2023-2933	GIMP: Mehrere Schwachstellen ermöglichen Codeausführung	2023-11-15T23:00:00.000+00:00	2025-07-29T22:00:00.000+00:00
wid-sec-w-2023-0890	libcurl: Mehrere Schwachstellen	2018-01-24T23:00:00.000+00:00	2025-07-29T22:00:00.000+00:00
wid-sec-w-2022-0283	GIMP: Schwachstelle ermöglicht Denial of Service	2022-05-17T22:00:00.000+00:00	2025-07-29T22:00:00.000+00:00
wid-sec-w-2025-1643	xwiki: Mehrere Schwachstelle ermöglicht eine SQL Injection	2025-07-24T22:00:00.000+00:00	2025-07-28T22:00:00.000+00:00
wid-sec-w-2025-1593	Grafana: Mehrere Schwachstellen	2025-07-17T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1580	Google Chrome / Microsoft Edge: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1449	Microsoft Edge: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten	2025-07-02T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1436	Google Chrome / Microsoft Edge: Schwachstelle ermöglicht Codeausführung	2025-06-30T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1397	Google Chrome / Microsoft Edge: Mehrere Schwachstellen	2025-06-24T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1354	Verschiedene Linux Distributionen: Mehrere Schwachstellen ermöglichen Privilegieneskalation	2025-06-17T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1340	Google Chrome und Microsoft Edge: Mehrere Schwachstellen	2025-06-17T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1296	Google Chrome und Microsoft Edge: Mehrere Schwachstellen ermöglichen Codeausführung	2025-06-10T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1222	Google Chrome / Microsoft Edge: Mehrere Schwachstellen	2025-06-02T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1220	QT: Schwachstelle ermöglicht Denial of Service	2025-06-02T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1126	Google Chrome: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-05-21T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1080	CPython: Schwachstelle ermöglicht Denial of Service	2025-05-15T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1058	Google Chrome / Microsoft Edge: Mehrere Schwachstellen	2025-05-14T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-0885	GStreamer: Schwachstelle ermöglicht Denial of Service	2025-04-24T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2024-3409	Red Hat Enterprise Linux: Mehrere Schwachstellen	2024-11-11T23:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2024-3062	PowerDNS: Schwachstelle ermöglicht Denial of Service	2024-10-03T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2024-1955	IBM Java SDK: Schwachstelle ermöglicht Denial of Service	2024-08-29T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2024-1658	Oracle Java SE: Mehrere Schwachstellen	2024-07-16T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1627	GitLab: Mehrere Schwachstellen	2025-07-22T22:00:00.000+00:00	2025-07-23T22:00:00.000+00:00
wid-sec-w-2025-1525	MediaWiki Extensions und Skins: Mehrere Schwachstellen	2025-07-09T22:00:00.000+00:00	2025-07-23T22:00:00.000+00:00

ID	Description	Published	Updated
ssa-695540	SSA-695540: ASM and PAR File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.1.0.2	2021-05-17T00:00:00Z	2021-05-17T00:00:00Z
ssa-983548	SSA-983548: Multiple SPP File Parsing Vulnerabilities in Tecnomatix Plant Simulation	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-940818	SSA-940818: UltraVNC Vulnerabilities in SIMATIC HMIs/WinCC Products	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-919955	SSA-919955: Information Disclosure Vulnerability in Mendix Database Replication Module	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-854248	SSA-854248: Information Disclosure Vulnerability in Mendix Excel Importer Module	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-794542	SSA-794542: Insecure Folder Permissions in SIMARIS Configuration	2021-02-09T00:00:00Z	2021-05-11T00:00:00Z
ssa-676775	SSA-676775: Denial-of-Service Vulnerability in SIMATIC NET CP 343-1 Devices	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-646763	SSA-646763: DNSpooq - Dnsmasq Vulnerabilities in SCALANCE and RUGGEDCOM Devices	2021-01-19T00:00:00Z	2021-05-11T00:00:00Z
ssa-594364	SSA-594364: Denial-of-Service Vulnerability in SNMP Implementation of WinCC Runtime	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-478893	SSA-478893: TightVNC Vulnerabilities in Industrial Products (Revoked)	2020-12-08T00:00:00Z	2021-05-11T00:00:00Z
ssa-116379	SSA-116379: Denial-of-Service Vulnerability in OSPF Packet Handling of SCALANCE XM-400 and XR-500 Devices	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-875726	SSA-875726: Privilege Escalation Vulnerability in Mendix	2021-04-14T00:00:00Z	2021-04-14T00:00:00Z
ssa-979775	SSA-979775: Stack Overflow Vulnerability in SCALANCE and RUGGEDCOM Devices	2021-03-09T00:00:00Z	2021-04-13T00:00:00Z
ssa-853866	SSA-853866: User Credentials Disclosure Vulnerability in Siveillance Video Open Network Bridge (ONVIF)	2021-04-13T00:00:00Z	2021-04-13T00:00:00Z
ssa-788287	SSA-788287: Disclosure of Private Data	2021-04-13T00:00:00Z	2021-04-13T00:00:00Z
ssa-715184	SSA-715184: Multiple File Parsing Vulnerabilities in Solid Edge	2021-03-09T00:00:00Z	2021-04-13T00:00:00Z
ssa-689942	SSA-689942: Denial-of-Service and DLL Hijacking Vulnerabilities in Multiple SIMATIC Software Products	2020-06-09T00:00:00Z	2021-04-13T00:00:00Z
ssa-591405	SSA-591405: Web Vulnerabilities in SCALANCE S-600 Family	2020-02-11T00:00:00Z	2021-04-13T00:00:00Z
ssa-541017	SSA-541017: Embedded TCP/IP Stack Vulnerabilities (AMNESIA:33) in SIRIUS 3RW5 Modbus TCP and SENTRON PAC / 3VA Devices	2020-12-08T00:00:00Z	2021-04-13T00:00:00Z
ssa-296266	SSA-296266: Denial-of-Service Vulnerability in SCALANCE and RUGGEDCOM Devices	2021-03-09T00:00:00Z	2021-04-13T00:00:00Z
ssa-292794	SSA-292794: Multiple Denial-of-Service Vulnerabilities in SINEMA Remote Connect Server	2021-04-13T00:00:00Z	2021-04-13T00:00:00Z
ssa-163226	SSA-163226: CELL File Parsing Vulnerability in Tecnomatix RobotExpert	2021-04-13T00:00:00Z	2021-04-13T00:00:00Z

ID	Description	Published	Updated
rhsa-2023:1486	Red Hat Security Advisory: Red Hat Gluster Storage web-admin-build security update	2023-03-28T00:18:32+00:00	2025-11-27T17:55:48+00:00
rhsa-2023:1049	Red Hat Security Advisory: Red Hat Single Sign-On 7.6.2 security update	2023-03-01T21:58:17+00:00	2025-11-27T17:55:47+00:00
rhsa-2023:1045	Red Hat Security Advisory: Red Hat Single Sign-On 7.6.2 security update on RHEL 9	2023-03-01T21:45:17+00:00	2025-11-27T17:55:45+00:00
rhsa-2023:1044	Red Hat Security Advisory: Red Hat Single Sign-On 7.6.2 security update on RHEL 8	2023-03-01T21:45:12+00:00	2025-11-27T17:55:42+00:00
rhsa-2023:1043	Red Hat Security Advisory: Red Hat Single Sign-On 7.6.2 security update on RHEL 7	2023-03-01T22:02:40+00:00	2025-11-27T17:55:42+00:00
rhsa-2022:8652	Red Hat Security Advisory: Red Hat Fuse 7.11.1 release and security update	2022-11-28T14:39:27+00:00	2025-11-27T17:55:40+00:00
rhsa-2022:7313	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.6.2 security update and bug fixes	2022-11-02T14:05:53+00:00	2025-11-27T17:55:38+00:00
rhsa-2022:7276	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.4.8 security fixes and container updates	2022-11-01T19:46:29+00:00	2025-11-27T17:55:37+00:00
rhsa-2022:7055	Red Hat Security Advisory: RHOSDT 2.6.0 operator/operand containers Security Update	2022-10-19T12:55:42+00:00	2025-11-27T17:55:36+00:00
rhsa-2022:6835	Red Hat Security Advisory: Service Registry (container images) release and security update [2.3.0.GA]	2022-10-06T12:26:20+00:00	2025-11-27T17:55:34+00:00
rhsa-2022:6813	Red Hat Security Advisory: Red Hat Process Automation Manager 7.13.1 security update	2022-10-05T10:44:49+00:00	2025-11-27T17:55:33+00:00
rhsa-2022:6696	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.4.6 security update and bug fixes	2022-09-26T14:49:03+00:00	2025-11-27T17:55:32+00:00
rhsa-2022:6422	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.0.2 security and bug fixes	2022-09-12T21:10:32+00:00	2025-11-27T17:55:30+00:00
rhsa-2022:6507	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.5.2 security fixes and bug fixes	2022-09-13T21:48:13+00:00	2025-11-27T17:55:29+00:00
rhsa-2022:6392	Red Hat Security Advisory: RHV RHEL Host (ovirt-host) [ovirt-4.5.2] security update	2022-09-08T11:29:21+00:00	2025-11-27T17:55:26+00:00
rhsa-2022:6393	Red Hat Security Advisory: RHV Manager (ovirt-engine) [ovirt-4.5.2] bug fix and security update	2022-09-08T11:31:04+00:00	2025-11-27T17:55:24+00:00
rhsa-2022:6370	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.6.0 security updates and bug fixes	2022-09-06T22:27:58+00:00	2025-11-27T17:55:20+00:00
rhsa-2022:6345	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.1 security updates and bug fixes	2022-09-06T14:28:04+00:00	2025-11-27T17:55:19+00:00
rhsa-2022:6272	Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.0.11 security update	2022-08-31T15:00:53+00:00	2025-11-27T17:55:17+00:00
rhsa-2022:6271	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.3.12 security updates and bug fixes	2022-08-31T14:25:25+00:00	2025-11-27T17:55:15+00:00
rhsa-2022:5915	Red Hat Security Advisory: Red Hat Kiali for OpenShift Service Mesh 2.2 security update	2022-08-08T08:47:11+00:00	2025-11-27T17:55:13+00:00
rhsa-2022:5914	Red Hat Security Advisory: Red Hat Kiali for OpenShift Service Mesh 2.1 security update	2022-08-08T08:16:49+00:00	2025-11-27T17:55:13+00:00
rhsa-2022:5913	Red Hat Security Advisory: Red Hat Kiali for OpenShift Service Mesh 2.0 security update	2022-08-08T08:09:05+00:00	2025-11-27T17:55:11+00:00
rhsa-2025:21328	Red Hat Security Advisory: OpenShift Container Platform 4.14.59 packages and security update	2025-11-20T07:57:21+00:00	2025-11-27T17:38:16+00:00
rhsa-2025:21824	Red Hat Security Advisory: OpenShift Container Platform 4.16.53 bug fix and security update	2025-11-27T11:08:51+00:00	2025-11-27T17:38:15+00:00
rhsa-2025:21795	Red Hat Security Advisory: OpenShift Container Platform 4.18.29 bug fix and security update	2025-11-27T04:24:21+00:00	2025-11-27T17:38:14+00:00
rhsa-2025:21634	Red Hat Security Advisory: buildah security update	2025-11-18T00:31:14+00:00	2025-11-27T17:38:13+00:00
rhsa-2025:21633	Red Hat Security Advisory: buildah security update	2025-11-18T00:16:49+00:00	2025-11-27T17:38:13+00:00
rhsa-2025:21220	Red Hat Security Advisory: podman security update	2025-11-13T09:10:41+00:00	2025-11-27T17:38:11+00:00
rhsa-2025:21829	Red Hat Security Advisory: OpenShift Container Platform 4.12.83 bug fix and security update	2025-11-27T12:20:57+00:00	2025-11-27T17:38:04+00:00

ID	Description	Published	Updated
msrc_cve-2023-53209	wifi: mac80211_hwsim: Fix possible NULL dereference	2025-09-02T00:00:00.000Z	2025-12-06T01:01:33.000Z
msrc_cve-2022-50304	mtd: core: fix possible resource leak in init_mtd()	2025-09-02T00:00:00.000Z	2025-12-06T01:01:27.000Z
msrc_cve-2022-50303	drm/amdkfd: Fix double release compute pasid	2025-09-02T00:00:00.000Z	2025-12-06T01:01:22.000Z
msrc_cve-2025-38709	loop: Avoid updating block size under exclusive owner	2025-09-02T00:00:00.000Z	2025-12-05T01:02:51.000Z
msrc_cve-2023-53254	cacheinfo: Fix shared_cpu_map to handle shared caches at different levels	2025-09-02T00:00:00.000Z	2025-12-05T01:02:34.000Z
msrc_cve-2023-53248	drm/amdgpu: install stub fence into potential unused fence pointers	2025-09-02T00:00:00.000Z	2025-12-05T01:02:29.000Z
msrc_cve-2023-53247	btrfs: set_page_extent_mapped after read_folio in btrfs_cont_expand	2025-09-02T00:00:00.000Z	2025-12-05T01:02:23.000Z
msrc_cve-2023-53240	xsk: check IFF_UP earlier in Tx path	2025-09-02T00:00:00.000Z	2025-12-05T01:02:17.000Z
msrc_cve-2023-53221	bpf: Fix memleak due to fentry attach failure	2025-09-02T00:00:00.000Z	2025-12-05T01:02:12.000Z
msrc_cve-2023-53218	rxrpc: Make it so that a waiting process can be aborted	2025-09-02T00:00:00.000Z	2025-12-05T01:02:06.000Z
msrc_cve-2025-66031	node-forge ASN.1 Unbounded Recursion	2025-11-02T00:00:00.000Z	2025-12-04T14:36:01.000Z
msrc_cve-2025-66030	node-forge ASN.1 OID Integer Truncation	2025-11-02T00:00:00.000Z	2025-12-04T14:35:55.000Z
msrc_cve-2025-12816	CVE-2025-12816	2025-11-02T00:00:00.000Z	2025-12-04T14:35:48.000Z
msrc_cve-2025-62223	Microsoft Edge (Chromium-based) for Mac Spoofing Vulnerability	2025-12-04T08:00:00.000Z	2025-12-04T08:00:00.000Z
msrc_cve-2025-39829	trace/fgraph: Fix the warning caused by missing unregister notifier	2025-09-02T00:00:00.000Z	2025-12-04T01:01:45.000Z
msrc_cve-2023-53292	blk-mq: fix NULL dereference on q->elevator in blk_mq_elv_switch_none	2025-09-02T00:00:00.000Z	2025-12-04T01:01:35.000Z
msrc_cve-2022-50266	kprobes: Fix check for probe enabled in kill_kprobe()	2025-09-02T00:00:00.000Z	2025-12-04T01:01:24.000Z
msrc_cve-2025-11494	GNU Binutils Linker elfxx-x86.c _bfd_x86_elf_late_size_sections out-of-bounds	2025-10-02T00:00:00.000Z	2025-12-03T01:39:19.000Z
msrc_cve-2025-4953	Podman: build context bind mount	2025-09-02T00:00:00.000Z	2025-12-03T01:39:03.000Z
msrc_cve-2025-38626	f2fs: fix to trigger foreground gc during f2fs_map_blocks() in lfs mode	2025-08-02T00:00:00.000Z	2025-12-03T01:38:53.000Z
msrc_cve-2025-38615	fs/ntfs3: cancle set bad inode after removing name fails	2025-08-02T00:00:00.000Z	2025-12-03T01:38:48.000Z
msrc_cve-2025-38597	drm/rockchip: vop2: fail cleanly if missing a primary plane for a video-port	2025-08-02T00:00:00.000Z	2025-12-03T01:38:43.000Z
msrc_cve-2025-38659	gfs2: No more self recovery	2025-08-02T00:00:00.000Z	2025-12-03T01:38:39.000Z
msrc_cve-2025-64506	LIBPNG is vulnerable to a heap buffer over-read in `png_write_image_8bit` with grayscale+alpha or RGB/RGBA images	2025-11-02T00:00:00.000Z	2025-12-03T01:38:33.000Z
msrc_cve-2025-64505	LIBPNG is vulnerable to a heap buffer overflow in `png_do_quantize` via malformed palette index	2025-11-02T00:00:00.000Z	2025-12-03T01:38:21.000Z
msrc_cve-2025-39781	parisc: Drop WARN_ON_ONCE() from flush_cache_vmap	2025-09-02T00:00:00.000Z	2025-12-03T01:38:04.000Z
msrc_cve-2025-39753	gfs2: Set .migrate_folio in gfs2_{rgrp,meta}_aops	2025-09-02T00:00:00.000Z	2025-12-03T01:37:58.000Z
msrc_cve-2025-39745	rcutorture: Fix rcutorture_one_extend_check() splat in RT kernels	2025-09-02T00:00:00.000Z	2025-12-03T01:37:53.000Z
msrc_cve-2025-39732	wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask()	2025-09-02T00:00:00.000Z	2025-12-03T01:37:48.000Z
msrc_cve-2025-39726	s390/ism: fix concurrency management in ism_cmd()	2025-09-02T00:00:00.000Z	2025-12-03T01:37:43.000Z

ID	Description	Published	Updated
icsa-12-320-01	ABB AC500 PLC Webserver CoDeSys Vulnerability	2012-08-19T06:00:00.000000Z	2025-06-06T15:59:36.140401Z
icsa-13-079-03	Siemens WinCC TIA Portal Vulnerabilities	2013-12-22T07:00:00.000000Z	2025-06-06T15:58:50.552597Z
icsa-10-337-01	Advantech Studio Test Web Server Buffer Overflow	2010-09-05T06:00:00.000000Z	2025-06-05T22:08:57.337024Z
icsa-10-322-01	Ecava IntegraXor Buffer Overflow	2010-08-21T06:00:00.000000Z	2025-06-05T22:08:38.193155Z
icsa-10-316-01a	Intellicom NetBiter WebSCADA Vulnerabilities	2010-08-15T06:00:00.000000Z	2025-06-05T22:08:03.683549Z
icsa-10-147-01	Cisco Network Building Mediator	2010-02-27T07:00:00.000000Z	2025-06-05T22:07:03.531375Z
icsa-15-085-01	Schneider Electric InduSoft Web Studio and InTouch Machine Edition 2014 Vulnerabilities	2015-12-27T07:00:00.000000Z	2025-06-05T22:06:04.803381Z
icsa-15-064-03	Siemens SPC Controller Series Denial-of-Service Vulnerability	2015-12-06T07:00:00.000000Z	2025-06-05T22:05:58.585431Z
icsma-16-279-01	Animas OneTouch Ping Insulin Pump Vulnerabilities	2016-07-09T06:00:00.000000Z	2025-06-05T22:05:39.885072Z
icsa-16-357-02	WAGO Ethernet Web-based Management Authentication Bypass Vulnerability	2016-09-25T06:00:00.000000Z	2025-06-05T22:05:33.606250Z
icsa-16-357-01	Fidelix FX-20 Series Controllers Path Traversal Vulnerability	2016-09-25T06:00:00.000000Z	2025-06-05T22:05:19.325133Z
icsa-16-355-01	Siemens Desigo PX Web Module Insufficient Entropy Vulnerability	2016-09-23T06:00:00.000000Z	2025-06-05T22:05:04.729768Z
icsa-16-350-02	OmniMetrix OmniView Vulnerabilities	2016-09-18T06:00:00.000000Z	2025-06-05T22:04:46.712389Z
icsa-16-350-01	FATEK Automation PLC WinProladder Stack-Based Buffer Overflow Vulnerability	2016-09-18T06:00:00.000000Z	2025-06-05T22:04:36.703364Z
icsa-16-348-04	Siemens SIMATIC WinCC and SIMATIC PCS 7 ActiveX Vulnerability	2016-09-16T06:00:00.000000Z	2025-06-05T22:04:30.476125Z
icsa-16-348-03	Delta Electronics WPLSoft, ISPSoft, and PMSoft Vulnerabilities	2016-09-16T06:00:00.000000Z	2025-06-05T22:04:14.714722Z
icsa-16-348-02	Moxa DACenter Vulnerabilities	2016-09-16T06:00:00.000000Z	2025-06-05T22:04:01.652622Z
icsa-16-348-01	Visonic PowerLink2 Vulnerabilities	2016-09-16T06:00:00.000000Z	2025-06-05T22:03:49.178165Z
icsa-16-343-03	Adcon Telemetry A850 Telemetry Gateway Base Station Vulnerabilities	2016-09-11T06:00:00.000000Z	2025-06-05T22:03:42.940815Z
icsa-16-343-02	Sauter NovaWeb Web HMI Authentication Bypass Vulnerability	2016-09-11T06:00:00.000000Z	2025-06-05T22:03:36.733125Z
icsa-16-341-01	Tesla Gateway ECU Vulnerability	2016-09-09T06:00:00.000000Z	2025-06-05T22:03:30.461381Z
icsa-16-336-03	Mitsubishi Electric MELSEC-Q Series Ethernet Interface Module Vulnerabilities	2016-09-04T06:00:00.000000Z	2025-06-05T22:03:18.001347Z
icsa-16-334-03	Emerson DeltaV Wireless I/O Card Open SSH Port Vulnerability	2016-09-02T06:00:00.000000Z	2025-06-05T22:03:11.738502Z
icsa-16-334-01	Emerson Liebert SiteScan XML External Entity Vulnerability	2016-09-02T06:00:00.000000Z	2025-06-05T22:03:05.507055Z
icsa-16-322-02	Moxa SoftCMS Vulnerabilities	2016-08-21T06:00:00.000000Z	2025-06-05T22:02:46.777740Z
icsa-16-322-01	Vanderbilt Industries Siemens IP CCTV Cameras Vulnerability	2016-08-21T06:00:00.000000Z	2025-06-05T22:02:40.536934Z
icsa-16-320-01	Lynxspring JENEsys BAS Bridge Vulnerabilities	2016-08-19T06:00:00.000000Z	2025-06-05T22:02:15.149456Z
icsa-16-315-01b	CA Unified Infrastructure Management Directory Traversal Vulnerability (Update B)	2016-08-14T06:00:00.000000Z	2025-06-05T22:02:08.926022Z
icsa-16-313-03	OSIsoft PI System Incomplete Model of Endpoint Features Vulnerability	2016-08-12T06:00:00.000000Z	2025-06-05T22:02:02.695028Z
icsa-16-313-01	Phoenix Contact ILC PLC Authentication Vulnerabilities	2016-08-12T06:00:00.000000Z	2025-06-05T22:01:49.839605Z

ID	Description	Published	Updated
cisco-sa-cucm-dos-4ag3ywbd	Cisco Unified Communications Manager Denial of Service Vulnerability	2023-06-07T16:00:00+00:00	2023-06-07T16:00:00+00:00
cisco-sa-cucm-dos-4Ag3yWbD	Cisco Unified Communications Manager Denial of Service Vulnerability	2023-06-07T16:00:00+00:00	2023-06-07T16:00:00+00:00
cisco-sa-csw-auth-openapi-ktndjdnx	Cisco Secure Workload Authenticated OpenAPI Privilege Escalation Vulnerability	2023-06-07T16:00:00+00:00	2023-06-07T16:00:00+00:00
cisco-sa-csw-auth-openapi-kTndjdNX	Cisco Secure Workload Authenticated OpenAPI Privilege Escalation Vulnerability	2023-06-07T16:00:00+00:00	2023-06-07T16:00:00+00:00
cisco-sa-iox-8whgn5dl	Cisco IOx Application Hosting Environment Command Injection Vulnerability	2023-02-01T16:00:00+00:00	2023-06-01T15:34:21+00:00
cisco-sa-iox-8whGn5dL	Cisco IOx Application Hosting Environment Command Injection Vulnerability	2023-02-01T16:00:00+00:00	2023-06-01T15:34:21+00:00
cisco-sa-cuis-xss-omm8jybx	Cisco Unified Intelligence Center Reflected Cross-Site Scripting Vulnerability	2023-01-11T16:00:00+00:00	2023-05-30T14:22:18+00:00
cisco-sa-cuis-xss-Omm8jyBX	Cisco Unified Intelligence Center Reflected Cross-Site Scripting Vulnerability	2023-01-11T16:00:00+00:00	2023-05-30T14:22:18+00:00
cisco-sa-ftd-file-write-shvcmqvc	Cisco Firepower Threat Defense Software CLI Arbitrary File Write Vulnerability	2021-10-27T16:00:00+00:00	2023-05-26T11:54:17+00:00
cisco-sa-ftd-file-write-SHVcmQVc	Cisco Firepower Threat Defense Software CLI Arbitrary File Write Vulnerability	2021-10-27T16:00:00+00:00	2023-05-26T11:54:17+00:00
cisco-sa-iosxe-info-disc-nrorxjo	Cisco IOS XE ROM Monitor Software for Catalyst Switches Information Disclosure Vulnerability	2022-09-28T16:00:00+00:00	2023-05-17T18:23:37+00:00
cisco-sa-iosxe-info-disc-nrORXjO	Cisco IOS XE ROM Monitor Software for Catalyst Switches Information Disclosure Vulnerability	2022-09-28T16:00:00+00:00	2023-05-17T18:23:37+00:00
cisco-sa-ssm-sql-x9mmjsyh	Cisco Smart Software Manager On-Prem SQL Injection Vulnerability	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ssm-sql-X9MmjSYh	Cisco Smart Software Manager On-Prem SQL Injection Vulnerability	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-sg-web-multi-s9g4nkgv	Cisco Small Business Series Switches Buffer Overflow Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-sg-web-multi-S9g4Nkgv	Cisco Small Business Series Switches Buffer Overflow Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-xxe-inj-696oztcm	Cisco Identity Services Engine XML External Entity Injection Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-xxe-inj-696OZTCm	Cisco Identity Services Engine XML External Entity Injection Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-traversal-ztugmyhu	Cisco Identity Services Engine Path Traversal Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-traversal-ZTUgMYhu	Cisco Identity Services Engine Path Traversal Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-injection-srqnseu9	Cisco Identity Services Engine Command Injection Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-injection-sRQnsEU9	Cisco Identity Services Engine Command Injection Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-file-dwnld-srcdnkd2	Cisco Identity Services Engine Arbitrary File Download Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-file-dwnld-Srcdnkd2	Cisco Identity Services Engine Arbitrary File Download Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-file-delete-read-pk5ghddd	Cisco Identity Services Engine Arbitrary File Delete and File Read Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-ise-file-delete-read-PK5ghDDd	Cisco Identity Services Engine Arbitrary File Delete and File Read Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-dnac-multiple-ktqkgu3	Cisco DNA Center Software API Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-dnac-multiple-kTQkGU3	Cisco DNA Center Software API Vulnerabilities	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-cbw-auth-bypass-ggnafdz	Cisco Business Wireless Access Points Social Login Guest User Authentication Bypass Vulnerability	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00
cisco-sa-cbw-auth-bypass-ggnAfdZ	Cisco Business Wireless Access Points Social Login Guest User Authentication Bypass Vulnerability	2023-05-17T16:00:00+00:00	2023-05-17T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201605-0037	The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0…	2024-11-29T20:53:43.943000Z
var-201711-0480	An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be…	2024-11-29T20:53:12.993000Z
var-202004-1972	A race condition was addressed with additional validation. This issue is fixed in iOS 13.…	2024-11-29T20:53:12.360000Z
var-201007-0948	Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 thro…	2024-11-29T20:52:19.140000Z
var-201501-0340	Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0…	2024-11-29T20:52:17.910000Z
var-202108-2087	A logic issue was addressed with improved restrictions. This issue is fixed in macOS Mont…	2024-11-29T20:52:17.056000Z
var-201006-1253	WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Apple Safari…	2024-11-29T20:52:16.941000Z
var-202003-1784	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali…	2024-11-29T20:52:15.797000Z
var-201801-1708	The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before…	2024-11-29T20:52:09.897000Z
var-201912-1849	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T20:51:34.248000Z
var-200406-0158	Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (sys…	2024-11-29T20:51:32.879000Z
var-202105-1306	The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-…	2024-11-29T20:51:25.981000Z
var-201205-0058	Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 updat…	2024-11-29T20:51:24.828000Z
var-201107-0102	Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execut…	2024-11-29T20:51:23.923000Z
var-201904-1475	A memory consumption issue was addressed with improved memory handling. This issue affect…	2024-11-29T20:51:13.424000Z
var-200704-0220	Buffer overflow in natd in network_cmds in Apple Mac OS X 10.3.9 through 10.4.9, when Int…	2024-11-29T20:51:13.344000Z
var-201203-0181	Google Chrome before 18.0.1025.142 does not properly handle text fragments, which allows …	2024-11-29T20:51:11.102000Z
var-201905-1057	Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics for Linux b…	2024-11-29T20:51:08.349000Z
var-200512-0749	The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.…	2024-11-29T20:50:56.979000Z
var-200906-0618	Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops fi…	2024-11-29T20:50:56.836000Z
var-202101-0220	A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded qu…	2024-11-29T20:50:56.131000Z
var-201304-0381	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T20:50:20.941000Z
var-201808-1004	Bluetooth firmware or operating system software drivers in macOS versions before 10.13, H…	2024-11-29T20:50:10.141000Z
var-201506-0497	The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL before 0.9.8zg, 1.0.0 …	2024-11-29T20:49:38.516000Z
var-201912-0615	An out-of-bounds read was addressed with improved input validation. This issue is fixed i…	2024-11-29T20:49:36.884000Z
var-200905-0196	racoon/isakmp_frag.c in ipsec-tools before 0.7.2 allows remote attackers to cause a denia…	2024-11-29T20:49:32.309000Z
var-200505-0359	Apple Terminal 1.4.4 allows attackers to execute arbitrary commands via terminal escape s…	2024-11-29T20:49:31.863000Z
var-201404-0246	Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JavaFX 2.2.51; and…	2024-11-29T20:48:57.644000Z
var-201504-0361	The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 4.x befor…	2024-11-29T20:48:21.127000Z
var-201007-0319	The counters functionality in the Cascading Style Sheets (CSS) implementation in WebKit i…	2024-11-29T20:48:15.845000Z

ID	Description	Published	Updated
jvndb-2021-000066	WordPress Plugin "Software License Manager" vulnerable to cross-site request forgery	2021-07-08T13:45+09:00	2021-07-08T13:45+09:00
jvndb-2021-000064	GU App for Android fails to restrict access permissions	2021-07-07T13:16+09:00	2021-07-07T13:16+09:00
jvndb-2021-001968	Multiple vulnerabilities in Trend Micro Password Manager	2021-07-06T16:08+09:00	2021-07-06T16:08+09:00
jvndb-2021-000063	WordPress Plugin "WordPress Email Template Designer - WP HTML Mail" vulnerable to cross-site request forgery	2021-07-06T14:50+09:00	2021-07-06T14:50+09:00
jvndb-2021-000062	WordPress Plugin "WPCS - WordPress Currency Switcher" vulnerable to cross-site request forgery	2021-07-06T14:11+09:00	2021-07-06T14:11+09:00
jvndb-2021-000061	A-Stage SCT-40CM01SR and AT-40CM01SR vulnerable to authentication bypass	2021-07-05T14:28+09:00	2021-07-05T14:28+09:00
jvndb-2021-000059	EC-CUBE fails to restrict access permissions	2021-07-01T15:49+09:00	2021-07-01T15:49+09:00
jvndb-2007-002102	boastMachine vulnerable to cross-site scripting	2021-06-30T14:32+09:00	2021-06-30T14:32+09:00
jvndb-2021-000058	IkaIka RSS Reader vulnerable to cross-site scripting	2021-06-30T14:21+09:00	2021-06-30T14:21+09:00
jvndb-2021-000056	WordPress Plugin "WordPress Popular Posts" vulnerable to cross-site scripting	2021-06-30T11:36+09:00	2021-06-30T11:36+09:00
jvndb-2021-000057	Multiple cross-site scripting vulnerabilities in EC-CUBE	2021-06-23T15:15+09:00	2021-06-23T15:15+09:00
jvndb-2021-000055	WordPress plugin "Fudousan plugin" series vulnerable to cross-site scripting	2021-06-22T15:06+09:00	2021-06-22T15:06+09:00
jvndb-2021-000054	Inkdrop vulnerable to OS command injection	2021-06-22T15:06+09:00	2021-06-22T15:06+09:00
jvndb-2021-000053	Hitachi Virtual File Platform vulnerable to OS command injection	2021-06-18T15:45+09:00	2021-06-18T15:45+09:00
jvndb-2021-000052	Hitachi Application Server Help vulnerable cross-site scripting	2021-06-17T15:11+09:00	2021-06-17T15:11+09:00
jvndb-2021-000051	Multiple cross-site scripting vulnerabilities in multiple EC-CUBE plugins provided by EC-CUBE	2021-06-16T16:18+09:00	2021-06-16T16:18+09:00
jvndb-2021-000049	Multiple ETUNA EC-CUBE plugins vulnerable to cross-site scripting	2021-06-15T16:09+09:00	2021-06-16T11:52+09:00
jvndb-2021-000050	Multiple vulnerabilities in GROWI	2021-06-14T15:10+09:00	2021-06-14T15:10+09:00
jvndb-2021-000048	Asken App for Android fails to restrict custom URL schemes properly	2021-06-14T15:10+09:00	2021-06-14T15:10+09:00
jvndb-2021-000047	WordPress plugin "Welcart e-Commerce" vulnerable to cross-site scripting	2021-06-11T15:24+09:00	2021-06-11T15:24+09:00
jvndb-2021-001756	urllib3 vulnerable to Regular expression Denial-of-Service (ReDoS)	2021-06-08T12:21+09:00	2021-06-08T12:21+09:00
jvndb-2021-000044	Zettlr vulnerable to cross-site scripting	2021-05-26T14:50+09:00	2021-06-03T16:21+09:00
jvndb-2021-000046	ATOM - Smart life App vulnerable to improper server certificate verification	2021-06-03T14:05+09:00	2021-06-03T14:05+09:00
jvndb-2021-000045	goo blog App fails to restrict custom URL schemes properly	2021-06-02T15:46+09:00	2021-06-02T15:46+09:00
jvndb-2021-001575	Multiple vulnerabilities in Buffalo WSR-1166DHP3 and WSR-1166DHP4 routers	2021-06-01T15:18+09:00	2021-06-01T15:18+09:00
jvndb-2021-001506	Hitachi Ops Center Analyzer vulnerability of communication using a certificate not intended by the user	2021-05-25T14:11+09:00	2021-05-25T14:11+09:00
jvndb-2021-000041	The installers of ScanSnap Manager may insecurely load Dynamic Link Libraries	2021-05-21T16:34+09:00	2021-05-21T16:34+09:00
jvndb-2021-000043	Installer of Overwolf may insecurely load Dynamic Link Libraries	2021-05-21T16:07+09:00	2021-05-21T16:07+09:00
jvndb-2021-000042	Multiple cross-site scripting vulnerabilities in multiple PHP Factory products	2021-05-21T15:38+09:00	2021-05-21T15:38+09:00
jvndb-2021-000040	QND vulnerable to privilege escalation	2021-05-21T14:21+09:00	2021-05-21T14:21+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated