Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-26270	5.4 (3.1)	InvoicePlane has Stored Cross-Site Scripting Issue in …	InvoicePlane	InvoicePlane	2026-02-18T23:01:41.222Z	2026-02-19T16:42:10.944Z
CVE-2025-15581	4.7 (4.0)	Orthanc versions before 1.12.10 are affected by a…	orthanc-server	orthanc	2026-02-18T22:59:55.491Z	2026-02-19T16:39:35.695Z
CVE-2026-25596	4.8 (3.1)	InvoicePlane has Stored XSS via Product Unit Name in I…	InvoicePlane	InvoicePlane	2026-02-18T22:59:44.627Z	2026-02-19T16:33:52.856Z
CVE-2026-25595	4.8 (3.1)	InvoicePlane has Stored XSS via Invoice Number in Invo…	InvoicePlane	InvoicePlane	2026-02-18T22:52:27.047Z	2026-02-19T17:45:39.099Z
CVE-2026-25594	4.8 (3.1)	InvoicePlane has Stored XSS via Family Name in Product Form	InvoicePlane	InvoicePlane	2026-02-18T22:50:45.523Z	2026-02-19T17:45:49.423Z
CVE-2026-25548	9.1 (3.1)	InvoicePlane Vulnerable to Remote Code Execution via L…	InvoicePlane	InvoicePlane	2026-02-18T22:49:15.235Z	2026-02-19T17:46:01.656Z
CVE-2026-24745	5.7 (3.1)	InvoicePlane has a Stored Cross-Site Scripting (XSS) issue	InvoicePlane	InvoicePlane	2026-02-18T22:47:19.717Z	2026-02-19T16:14:50.756Z
CVE-2026-2682	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	Tsinghua Unigroup Electronic Archives System prinRepor…	Tsinghua Unigroup	Electronic Archives System	2026-02-18T22:32:08.536Z	2026-02-19T16:11:57.633Z
CVE-2025-12812	5.3 (4.0)	Cloud Suite and Privilege Access Service – SQL Injection	Delinea Inc.	Cloud Suite and Privileged Access Service	2026-02-18T22:10:35.049Z	2026-02-19T16:09:52.937Z
CVE-2025-12811	6.9 (4.0)	Cloud Suite and Privilege Access Service– HTTP request…	Delinea Inc.	Cloud Suite and Privileged Access Service	2026-02-18T22:08:25.254Z	2026-02-19T16:04:19.494Z
CVE-2026-2676	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	GoogTech sms-ssm API LoginInterceptor.java preHandle i…	GoogTech	sms-ssm	2026-02-18T22:02:07.132Z	2026-02-19T16:00:57.872Z
CVE-2019-25401	8.7 (4.0) 7.5 (3.1)	Bematech Printer MP-4200 TH Denial of Service	Bematech	MP-4200	2026-02-18T21:55:11.819Z	2026-02-19T20:08:28.965Z
CVE-2019-25365	8.4 (4.0) 9.8 (3.1)	ChaosPro 2.0 - Buffer Overflow	Chaospro	ChaosPro	2026-02-18T21:55:11.104Z	2026-02-19T20:08:42.024Z
CVE-2019-25364	9.3 (4.0) 9.8 (3.1)	Win10 MailCarrier 2.51 - 'POP3 User' Remote Buffer Overflow	TABS Laboratories Corporation	Win10 MailCarrier	2026-02-18T21:55:10.094Z	2026-02-19T20:08:53.368Z
CVE-2019-25363	8.4 (4.0) 7.5 (3.1)	WMV to AVI MPEG DVD WMV Convertor 4.6.1217 - Denial of…	Alloksoft	WMV to AVI MPEG DVD WMV Convertor	2026-02-18T21:55:09.268Z	2026-02-19T20:09:07.038Z
CVE-2019-25362	9.3 (4.0) 9.8 (3.1)	WMV to AVI MPEG DVD WMV Convertor 4.6.1217 - Buffer OverFlow	Alloksoft	WMV to AVI MPEG DVD WMV Convertor	2026-02-18T21:55:08.448Z	2026-02-19T20:09:18.092Z
CVE-2019-25361	8.6 (4.0) 9.8 (3.1)	Ayukov NFTP client 1.71 - 'SYST' Buffer Overflow	Ayukov	Ayukov NFTP client	2026-02-18T21:55:07.501Z	2026-02-19T20:09:29.375Z
CVE-2019-25360	8.4 (4.0) 9.8 (3.1)	Aida64 6.10.5200 - Buffer Overflow	FinalWire Ltd.	Aida64	2026-02-18T21:55:06.734Z	2026-02-19T20:09:41.717Z
CVE-2019-25359	8.8 (4.0) 8.2 (3.1)	SD.NET RIM 4.7.3c - 'idtyp' SQL Injection	Sitzungsdienst	SD.NET RIM	2026-02-18T21:55:05.859Z	2026-02-19T20:09:53.575Z
CVE-2019-25358	8.7 (4.0) 7.5 (3.1)	FileOptimizer 14.00.2524 - Denial of Service	nikkhokkho	FileOptimizer	2026-02-18T21:55:04.412Z	2026-02-19T20:10:06.522Z
CVE-2019-25357	8.4 (4.0) 8.4 (3.1)	Control Center PRO 6.2.9 - Local Stack Based BufferOverflow	WEBGATE Inc.	Control Center PRO	2026-02-18T21:55:03.509Z	2026-02-19T20:10:17.924Z
CVE-2019-25356	5.1 (4.0) 6.1 (3.1)	Bematech Printer MP-4200 TH Cross-Site Scripting	Bematech	MP-4200	2026-02-18T21:55:02.644Z	2026-02-19T20:10:30.381Z
CVE-2019-25355	8.7 (4.0) 7.5 (3.1)	Genivia gSOAP 2.8 - 'gSOAP' Path Traversal	Genivia Inc.	gSOAP	2026-02-18T21:55:01.343Z	2026-02-19T20:10:40.635Z
CVE-2019-25354	4.6 (4.0) 7.5 (3.1)	iSmartViewPro 1.3.34 - Denial of Service	Shenzhen Smarteye Digital Electronics Co., Ltd.	iSmartViewPro	2026-02-18T21:55:00.498Z	2026-02-19T20:10:53.385Z
CVE-2019-25353	4.6 (4.0) 7.5 (3.1)	Foscam Video Management System 1.1.4.9 - 'Username' De…	Diy Security SL	Foscam Video Management System	2026-02-18T21:54:59.344Z	2026-02-19T15:53:57.128Z
CVE-2019-25352	8.7 (4.0) 7.5 (3.1)	Genivia Crystal Live HTTP Server 6.01 - 'Crystal Live …	Genivia Inc.	Crystal Live HTTP Server	2026-02-18T21:54:58.491Z	2026-02-19T15:55:57.560Z
CVE-2019-25351	7.1 (4.0) 8.8 (3.1)	Centova Cast 3.2.11 - Arbitrary File Download	Centova Technologies Inc.	Centova Cast	2026-02-18T21:54:57.670Z	2026-02-19T15:32:41.538Z
CVE-2019-25350	4.6 (4.0) 7.5 (3.1)	XMedia Recode 3.4.8.6 - '.m3u' Denial Of Service	XMedia Recode	XMedia Recode	2026-02-18T21:54:56.851Z	2026-02-19T15:20:02.077Z
CVE-2019-25349	4.6 (4.0) 7.5 (3.1)	scadaApp for iOS 1.1.4.0 - 'Servername' Denial of Service	scadaapp	scadaApp for iOS	2026-02-18T21:54:56.070Z	2026-02-19T15:10:23.796Z
CVE-2019-25326	4.6 (4.0) 6.2 (3.1)	ipPulse 1.92 - 'Enter Key' Denial of Service	Northwest Performance Software, Inc.	ipPulse	2026-02-18T21:54:55.158Z	2026-02-19T15:06:37.732Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-12172	4.3 (3.1)	Mailchimp List Subscribe Form <= 2.0.0 - Cross-Site Re…	mailchimp	Mailchimp List Subscribe Form	2026-02-19T03:25:12.912Z	2026-02-19T17:43:16.858Z
CVE-2025-12117	6.4 (3.1)	Renden <= 1.8.1 - Authenticated (Contributor+) Stored …	thinkupthemes	Renden	2026-02-19T03:25:18.752Z	2026-02-19T17:40:52.688Z
CVE-2025-12116	6.4 (3.1)	Drift <= 1.5.0 - Authenticated (Contributor+) Stored …	thinkupthemes	Drift	2026-02-19T03:25:16.294Z	2026-02-19T17:41:54.223Z
CVE-2025-12081	4.3 (3.1)	ACF Photo Gallery Field <= 3.0 - Missing Authorization…	navzme	ACF Photo Gallery Field	2026-02-19T03:25:19.703Z	2026-02-19T17:40:29.496Z
CVE-2025-12027	4.3 (3.1)	Mesmerize Companion <= 1.6.158 - Missing Authorization…	horearadu	Mesmerize Companion	2026-02-19T03:25:10.834Z	2026-02-19T17:44:05.140Z
CVE-2025-11754	7.5 (3.1)	Cookie Banner, Cookie Consent, Consent Log, Cookie Sca…	wplegalpages	Cookie Banner for GDPR / CCPA – WPLP Cookie Consent	2026-02-19T03:25:13.376Z	2026-02-19T17:43:06.008Z
CVE-2025-11725	6.5 (3.1)	Aruba HiSpeed Cache <= 3.0.2 - Missing Authorization t…	arubadev	Aruba HiSpeed Cache	2026-02-19T03:25:11.535Z	2026-02-19T17:43:52.800Z
CVE-2025-11706	6.1 (3.1)	Aruba HiSpeed Cache <= 3.0.2 - Reflected Cross-Site Sc…	arubadev	Aruba HiSpeed Cache	2026-02-19T03:25:12.460Z	2026-02-19T17:43:28.951Z
CVE-2026-2686	9.3 (4.0) 9.8 (3.1) 9.8 (3.0)	SECCN Dingcheng G10 session_login.cgi qq os command in…	SECCN Dingcheng	G10	2026-02-19T00:02:07.214Z	2026-02-19T00:02:07.214Z
CVE-2026-2684	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	Tsinghua Unigroup Electronic Archives System uploadFil…	Tsinghua Unigroup	Electronic Archives System	2026-02-18T23:32:07.382Z	2026-02-19T17:18:01.380Z
CVE-2026-25926	7.3 (3.1)	Notepad++ has an Untrusted Search Path	notepad-plus-plus	notepad-plus-plus	2026-02-18T23:07:36.383Z	2026-02-19T17:45:27.028Z
CVE-2026-24126	6.6 (3.1)	Weblate has an argument injection in management console	WeblateOrg	weblate	2026-02-18T23:05:03.478Z	2026-02-19T17:13:53.353Z
CVE-2025-15585	6.7 (4.0)	Fileflows versions before 25.05.2 are affected by…	fileflows	fileflows	2026-02-18T23:44:40.034Z	2026-02-19T17:20:20.747Z
CVE-2026-2683	5.3 (4.0) 4.3 (3.1) 4.3 (3.0)	Tsinghua Unigroup Electronic Archives System downLoad.…	Tsinghua Unigroup	Electronic Archives System	2026-02-18T23:02:06.726Z	2026-02-19T16:44:32.076Z
CVE-2026-2682	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	Tsinghua Unigroup Electronic Archives System prinRepor…	Tsinghua Unigroup	Electronic Archives System	2026-02-18T22:32:08.536Z	2026-02-19T16:11:57.633Z
CVE-2026-2676	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	GoogTech sms-ssm API LoginInterceptor.java preHandle i…	GoogTech	sms-ssm	2026-02-18T22:02:07.132Z	2026-02-19T16:00:57.872Z
CVE-2026-26281	4.4 (3.1)	InvoicePlane has Stored Cross-Site Scripting (XSS) Iss…	InvoicePlane	InvoicePlane	2026-02-18T23:03:08.876Z	2026-02-19T16:47:43.663Z
CVE-2026-26270	5.4 (3.1)	InvoicePlane has Stored Cross-Site Scripting Issue in …	InvoicePlane	InvoicePlane	2026-02-18T23:01:41.222Z	2026-02-19T16:42:10.944Z
CVE-2026-25596	4.8 (3.1)	InvoicePlane has Stored XSS via Product Unit Name in I…	InvoicePlane	InvoicePlane	2026-02-18T22:59:44.627Z	2026-02-19T16:33:52.856Z
CVE-2026-25595	4.8 (3.1)	InvoicePlane has Stored XSS via Invoice Number in Invo…	InvoicePlane	InvoicePlane	2026-02-18T22:52:27.047Z	2026-02-19T17:45:39.099Z
CVE-2026-25594	4.8 (3.1)	InvoicePlane has Stored XSS via Family Name in Product Form	InvoicePlane	InvoicePlane	2026-02-18T22:50:45.523Z	2026-02-19T17:45:49.423Z
CVE-2026-25548	9.1 (3.1)	InvoicePlane Vulnerable to Remote Code Execution via L…	InvoicePlane	InvoicePlane	2026-02-18T22:49:15.235Z	2026-02-19T17:46:01.656Z
CVE-2026-24745	5.7 (3.1)	InvoicePlane has a Stored Cross-Site Scripting (XSS) issue	InvoicePlane	InvoicePlane	2026-02-18T22:47:19.717Z	2026-02-19T16:14:50.756Z
CVE-2025-15581	4.7 (4.0)	Orthanc versions before 1.12.10 are affected by a…	orthanc-server	orthanc	2026-02-18T22:59:55.491Z	2026-02-19T16:39:35.695Z
CVE-2025-12812	5.3 (4.0)	Cloud Suite and Privilege Access Service – SQL Injection	Delinea Inc.	Cloud Suite and Privileged Access Service	2026-02-18T22:10:35.049Z	2026-02-19T16:09:52.937Z
CVE-2025-12811	6.9 (4.0)	Cloud Suite and Privilege Access Service– HTTP request…	Delinea Inc.	Cloud Suite and Privileged Access Service	2026-02-18T22:08:25.254Z	2026-02-19T16:04:19.494Z
CVE-2026-2672	5.3 (4.0) 4.3 (3.1) 4.3 (3.0)	Tsinghua Unigroup Electronic Archives System downLoad …	Tsinghua Unigroup	Electronic Archives System	2026-02-18T21:32:07.412Z	2026-02-19T15:03:03.632Z
CVE-2026-2670	8.6 (4.0) 7.2 (3.1) 7.2 (3.0)	Advantech WISE-6610 Background Management openvpn_appl…	Advantech	WISE-6610	2026-02-18T21:02:08.426Z	2026-02-20T19:32:51.761Z
CVE-2026-2669	6.9 (4.0) 6.5 (3.1) 6.5 (3.0)	Rongzhitong Visual Integrated Command and Dispatch Pla…	Rongzhitong	Visual Integrated Command and Dispatch Platform	2026-02-18T21:02:06.522Z	2026-02-20T19:34:16.364Z
CVE-2026-27182	8.6 (4.0) 8.4 (3.1)	Saturn Remote Mouse Server UDP Command Injection RCE	saturnremote	Saturn Remote Mouse Server	2026-02-18T20:59:12.092Z	2026-02-19T14:57:25.386Z

ID	Description	Published	Updated
fkie_cve-2025-13650	An attacker with access to the web application ZeusWeb of the provider Microcom (in this case, regi…	2026-02-11T09:15:50.147	2026-02-11T15:27:26.370
fkie_cve-2025-13649	An attacker with access to the web application ZeusWeb of the provider Microcom (in this case, re…	2026-02-11T09:15:49.997	2026-02-11T15:27:26.370
fkie_cve-2025-13648	An attacker with access to the web application ZeusWeb of the provider Microcom (in this case, re…	2026-02-11T09:15:49.793	2026-02-11T15:27:26.370
fkie_cve-2025-10913	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2026-02-11T08:16:07.057	2026-02-11T15:27:26.370
fkie_cve-2025-10912	Authorization Bypass Through User-Controlled Key vulnerability in Saastech Cleaning and Internet Se…	2026-02-11T08:16:06.830	2026-02-11T15:27:26.370
fkie_cve-2026-1357	The Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress is vulnerable to U…	2026-02-11T06:15:51.677	2026-02-11T15:27:26.370
fkie_cve-2026-1235	The WP eCommerce WordPress plugin through 3.15.1 unserializes user input via ajax actions, which co…	2026-02-11T06:15:51.220	2026-02-11T16:16:03.583
fkie_cve-2025-15400	The Pix para Woocommerce WordPress plugin through 2.13.3 allows any authenticated user to trigger …	2026-02-11T06:15:47.870	2026-02-11T17:16:07.057
fkie_cve-2026-26079	Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13 allows Cascading Style Sheets (CSS) injection…	2026-02-11T05:16:28.650	2026-02-11T15:27:26.370
fkie_cve-2026-26044	Rejected reason: Not used	2026-02-11T05:16:28.590	2026-02-11T05:16:28.590
fkie_cve-2026-26043	Rejected reason: Not used	2026-02-11T05:16:28.527	2026-02-11T05:16:28.527
fkie_cve-2026-26042	Rejected reason: Not used	2026-02-11T05:16:28.463	2026-02-11T05:16:28.463
fkie_cve-2026-26041	Rejected reason: Not used	2026-02-11T05:16:28.400	2026-02-11T05:16:28.400
fkie_cve-2026-26040	Rejected reason: Not used	2026-02-11T05:16:28.337	2026-02-11T05:16:28.337
fkie_cve-2026-26039	Rejected reason: Not used	2026-02-11T05:16:28.267	2026-02-11T05:16:28.267
fkie_cve-2026-26038	Rejected reason: Not used	2026-02-11T05:16:28.193	2026-02-11T05:16:28.193
fkie_cve-2026-26037	Rejected reason: Not used	2026-02-11T05:16:28.133	2026-02-11T05:16:28.133
fkie_cve-2026-26036	Rejected reason: Not used	2026-02-11T05:16:28.003	2026-02-11T05:16:28.003
fkie_cve-2026-1893	The Orbisius Random Name Generator plugin for WordPress is vulnerable to Stored Cross-Site Scriptin…	2026-02-11T05:16:20.150	2026-02-11T15:27:26.370
fkie_cve-2026-1231	The Beaver Builder Page Builder – Drag and Drop Website Builder plugin for WordPress is vulnerable …	2026-02-11T02:15:58.297	2026-02-11T15:27:26.370
fkie_cve-2025-15524	The Gallery by FooGallery plugin for WordPress is vulnerable to unauthorized access of data due to …	2026-02-11T02:15:58.057	2026-02-11T15:27:26.370
fkie_cve-2025-14541	The Lucky Wheel Giveaway plugin for WordPress is vulnerable to Remote Code Execution in all version…	2026-02-11T02:15:57.887	2026-02-11T15:27:26.370
fkie_cve-2025-13431	The SlimStat Analytics plugin for WordPress is vulnerable to time-based SQL Injection via the ‘args…	2026-02-11T02:15:57.667	2026-02-11T15:27:26.370
fkie_cve-2026-1571	User-controlled input is reflected into the HTML output without proper encoding on TP-Link Archer C…	2026-02-11T01:15:56.453	2026-02-20T20:19:24.487
fkie_cve-2026-25872	JUNG Smart Panel KNX firmware version L1.12.22 and prior contain an unauthenticated path traversal …	2026-02-10T23:16:16.473	2026-02-11T15:27:26.370
fkie_cve-2026-25870	DoraCMS version 3.1 and prior contains a server-side request forgery (SSRF) vulnerability in its UE…	2026-02-10T23:16:16.287	2026-02-11T22:15:50.797
fkie_cve-2026-25251	Rejected reason: This has been moved to the REJECTED state because the information source is under …	2026-02-10T23:16:16.080	2026-02-10T23:16:16.080
fkie_cve-2026-26013	LangChain is a framework for building agents and LLM-powered applications. Prior to 1.2.11, the Cha…	2026-02-10T22:17:00.453	2026-02-11T15:27:26.370
fkie_cve-2026-26007	cryptography is a package designed to expose cryptographic primitives and recipes to Python develop…	2026-02-10T22:17:00.307	2026-02-11T15:27:26.370
fkie_cve-2026-26006	AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelli…	2026-02-10T22:16:59.710	2026-02-17T15:28:04.533

ID	Severity	Description	Published	Updated
ghsa-wjf9-j9vw-27f4	8.8 (3.1)	PHPGurukul Hospital Management System v4.0 contains a Privilege Escalation vulnerability. A low-pri…	2026-02-18T21:31:22Z	2026-02-18T21:31:22Z
ghsa-rcjr-qg8v-4c3v	7.8 (3.1)	A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-o…	2026-02-18T21:31:22Z	2026-02-18T21:31:22Z
ghsa-pppv-pc54-6j8r	3.3 (3.1) 1.9 (4.0)	A security flaw has been discovered in Squirrel up to 3.2. This affects the function SQObjectPtr::o…	2026-02-18T21:31:22Z	2026-02-18T21:31:23Z
ghsa-h5jq-923c-7w8g	7.8 (3.1)	A maliciously crafted CATPART file, when parsed through certain Autodesk products, can force an Out…	2026-02-18T21:31:22Z	2026-02-18T21:31:22Z
ghsa-cq5p-w4x6-m6h3	3.3 (3.1) 1.9 (4.0)	A vulnerability was identified in FascinatedBox lily up to 2.3. Affected by this issue is the funct…	2026-02-18T21:31:22Z	2026-02-18T21:31:23Z
ghsa-8gfj-223w-87pr	6.5 (3.1)	The 'Medical History' module in PHPGurukul Hospital Management System v4.0 contains an Insecure Dir…	2026-02-18T21:31:22Z	2026-02-18T21:31:22Z
ghsa-2hcf-jfqx-g286	6.5 (3.1)	PHPGurukul Hospital Management System v4.0 contains a Cross-Site Request Forgery (CSRF) vulnerabili…	2026-02-18T21:31:22Z	2026-02-18T21:31:22Z
ghsa-f5pv-9whq-7mv7	6.8 (3.1)	In Splunk Enterprise versions below 10.2.0, 10.0.2, 9.4.7, 9.3.8, and 9.2.11, and Splunk Cloud Plat…	2026-02-18T18:30:41Z	2026-02-18T18:30:41Z
ghsa-9pjv-cqr5-4xh7	4.3 (3.1) 2.1 (4.0)	A vulnerability was found in newbee-ltd newbee-mall up to a069069b07027613bf0e7f571736be86f431faee.…	2026-02-18T18:30:41Z	2026-02-18T18:30:41Z
ghsa-4mcw-fcqm-vqg3	3.3 (3.1) 1.9 (4.0)	A vulnerability was determined in Squirrel up to 3.2. Affected by this vulnerability is the functio…	2026-02-18T18:30:41Z	2026-02-18T18:30:41Z
ghsa-w35p-gjc5-2g6r	4.3 (3.1)	The Booking Calendar plugin for WordPress is vulnerable to Insecure Direct Object Reference in all …	2026-02-18T18:30:40Z	2026-02-18T18:30:40Z
ghsa-v8wf-h34r-55f7	6.8 (3.1)	In Splunk Enterprise versions below 10.2.0, 10.0.2, 9.4.7, 9.3.9, and 9.2.11, a user of a Splunk Se…	2026-02-18T18:30:40Z	2026-02-20T15:31:00Z
ghsa-v3v9-r7ff-976x	9.8 (3.1)	CodeAstro Membership Management System 1.0 is vulnerable to SQL Injection in print_membership_card.…	2026-02-18T18:30:40Z	2026-02-18T21:31:22Z
ghsa-p68h-c56f-p3v6		In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid …	2026-02-18T18:30:40Z	2026-02-19T18:31:44Z
ghsa-p525-h9pq-233r		In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Don't assume CID …	2026-02-18T18:30:40Z	2026-02-18T18:30:40Z
ghsa-mx4x-pxgm-r77w		In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix out-of-bound…	2026-02-18T18:30:40Z	2026-02-18T18:30:40Z
ghsa-m4v3-95xp-3j5h	7.5 (3.1)	Missing authentication in /admin/student.php and /admin/teacher.php in ProjectWorlds Online Time Ta…	2026-02-18T18:30:40Z	2026-02-18T21:31:22Z
ghsa-m4f3-qp2w-gwh6	8.2 (3.1)	OpenStack Nova calls qemu-img without format restrictions for resize	2026-02-18T18:30:40Z	2026-02-21T06:30:15Z
ghsa-m34c-wrf8-mw69		In the Linux kernel, the following vulnerability has been resolved: nilfs2: Fix potential block ov…	2026-02-18T18:30:40Z	2026-02-19T18:31:44Z
ghsa-jp99-8xc8-367m		In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-fre…	2026-02-18T18:30:40Z	2026-02-19T18:31:44Z
ghsa-j87r-wgfm-7fjj		In the Linux kernel, the following vulnerability has been resolved: crypto: virtio - Add spinlock …	2026-02-18T18:30:40Z	2026-02-19T18:31:44Z
ghsa-j6h2-wr53-6vcg		In the Linux kernel, the following vulnerability has been resolved: smb: server: fix leak of activ…	2026-02-18T18:30:40Z	2026-02-19T18:31:44Z
ghsa-hcrc-x9p4-f9jh	9.8 (3.1)	code-projects Community Project Scholars Tracking System 1.0 is vulnerable to SQL Injection in the …	2026-02-18T18:30:40Z	2026-02-18T18:30:40Z
ghsa-h437-rr98-fx56		In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchk_btree_che…	2026-02-18T18:30:40Z	2026-02-18T18:30:40Z
ghsa-g3vh-wfh4-fp76		In the Linux kernel, the following vulnerability has been resolved: drm/exynos: vidi: use ctx->loc…	2026-02-18T18:30:40Z	2026-02-18T18:30:40Z
ghsa-f7pj-q7w5-89fg		In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Validate sp bef…	2026-02-18T18:30:40Z	2026-02-19T18:31:44Z
ghsa-chpq-fr33-gp2m	7.5 (3.1) 8.7 (4.0)	When BIG-IP AFM or BIG-IP DDoS is provisioned, undisclosed traffic can cause TMM to terminate. Not…	2026-02-18T18:30:40Z	2026-02-18T18:30:40Z
ghsa-9wwr-2jh3-482p		In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix infinite loop cause…	2026-02-18T18:30:40Z	2026-02-19T18:31:44Z
ghsa-8rqj-9226-cwx7	8.8 (3.1)	code-projects Scholars Tracking System 1.0 allows an authenticated attacker to achieve remote code …	2026-02-18T18:30:40Z	2026-02-18T21:31:22Z
ghsa-8j5g-3q2r-xfjh		In the Linux kernel, the following vulnerability has been resolved: erofs: fix UAF issue for file-…	2026-02-18T18:30:40Z	2026-02-18T18:30:40Z

ID	Severity	Description	Package	Published	Updated
pysec-2022-236		The Apache Spark UI offers the possibility to enable ACLs via the configuration option sp…	pyspark	2022-07-18T07:15:00Z	2022-07-25T14:38:46.692270Z
pysec-2022-235		WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles uploa…	octobot	2022-07-16T17:15:00Z	2022-07-21T08:44:55.990435Z
pysec-2022-43143	6.5 (3.1)	OpenZeppelin Contracts for Cairo is a library for contract development written in Cairo f…	openzeppelin-cairo-contracts-test	2022-07-15T18:15:00Z	2024-11-21T14:22:57.304802Z
pysec-2022-238		This affects the package codecov before 2.0.16. The vulnerability occurs due to not sanit…	codecov	2022-07-13T12:15:00Z	2022-07-26T13:13:30.178958Z
pysec-2022-226		The package whoogle-search before 0.7.2 are vulnerable to Cross-site Scripting (XSS) via …	whoogle-search	2022-07-12T15:15:00Z	2022-07-14T05:11:54.875994Z
pysec-2022-225		The ganga-devs/ganga repository before 8.5.10 on GitHub allows absolute path traversal be…	ganga	2022-07-11T01:15:00Z	2022-07-14T05:11:52.325698Z
pysec-2022-223		mat2 (aka metadata anonymisation toolkit) before 0.13.0 allows ../ directory traversal du…	mat2	2022-07-08T18:15:00Z	2022-07-14T05:11:52.948988Z
pysec-2022-233		openssh_key_parser is an open source Python package providing utilities to parse and pack…	openssh-key-parser	2022-07-06T18:15:00Z	2023-05-25T05:07:00Z
pysec-2022-230		NULL Pointer Dereference allows attackers to cause a denial of service (or application cr…	lxml	2022-07-05T10:15:00Z	2023-05-25T05:07:00Z
pysec-2022-213		An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and…	django	2022-07-04T16:15:00Z	2022-07-04T18:45:03.823587Z
pysec-2022-232		NVFLARE, versions prior to 2.1.2, contains a vulnerability in its utils module, where YAM…	nvflare	2022-07-01T18:15:00Z	2023-06-05T01:12:56.865026Z
pysec-2022-231		NVFLARE, versions prior to 2.1.2, contains a vulnerability in its PKI implementation modu…	nvflare	2022-07-01T18:15:00Z	2023-06-05T01:12:56.789968Z
pysec-2022-224		Synapse is an open source home server implementation for the Matrix chat network. In vers…	matrix-synapse	2022-06-28T17:15:00Z	2022-07-14T05:11:53.027228Z
pysec-2022-222		The Security Team noticed that the termination condition of the for loop in the readExter…	systemds	2022-06-27T18:15:00Z	2022-07-14T05:11:54.728743Z
pysec-2022-43176	9.8 (3.1)	The Zibal package in PyPI v1.0.0 was discovered to contain a code execution backdoor. Thi…	zibal	2022-06-24T21:15:00Z	2024-11-21T14:23:03.404044Z
pysec-2022-43172	9.8 (3.1)	The Watertools package in PyPI v0.0.0 was discovered to contain a code execution backdoor…	watertools	2022-06-24T21:15:00Z	2024-11-21T14:23:03.143453Z
pysec-2022-43169	9.8 (3.1)	The Togglee package in PyPI version v0.0.8 was discovered to contain a code execution bac…	togglee	2022-06-24T21:15:00Z	2024-11-21T14:23:01.740031Z
pysec-2022-43168	9.8 (3.1)	The Sixfab-Tool in PyPI v0.0.2 to v0.0.3 was discovered to contain a code execution backd…	sixfab-tool	2022-06-24T21:15:00Z	2022-07-06T19:30:00Z
pysec-2022-43165	9.8 (3.1)	The Scoptrial package in PyPI version v0.0.5 was discovered to contain a code execution b…	scoptrial	2022-06-24T21:15:00Z	2024-11-21T14:23:01.181819Z
pysec-2022-43164	9.8 (3.1)	The Rondolu-YT-Concate package in PyPI v0.1.0 was discovered to contain a code execution …	rondolu-yt-concate	2022-06-24T21:15:00Z	2024-11-21T14:23:00.996865Z
pysec-2022-43133	9.8 (3.1)	The drxhello package in PyPI v0.0.1 was discovered to contain a code execution backdoor v…	drxhello	2022-06-24T21:15:00Z	2024-11-21T14:22:45.663614Z
pysec-2022-43132	9.8 (3.1)	The DR-Web-Engine package in PyPI v0.2.0b0 was discovered to contain a code execution bac…	dr-web-engine	2022-06-24T21:15:00Z	2024-11-21T14:22:45.610409Z
pysec-2022-43073	9.8 (3.1)	The cloudlabeling package in PyPI v0.0.1 was discovered to contain a code execution backd…	cloudlabeling	2022-06-24T21:15:00Z	2024-11-21T14:22:42.118573Z
pysec-2022-43066	9.8 (3.1)	The AAmiles package in PyPI v0.1.0 was discovered to contain a code execution backdoor vi…	aamiles	2022-06-24T21:15:00Z	2024-11-21T14:22:40.256677Z
pysec-2022-221		The Catly-Translate package in PyPI v0.0.3 to v0.0.5 was discovered to contain a code exe…	catly-translate	2022-06-24T21:15:00Z	2022-07-06T20:32:04.087337Z
pysec-2022-220		Reserved The pyesasky for python, as distributed on PyPI, included a code-execution…	pyesasky	2022-06-24T21:15:00Z	2022-07-06T18:41:16.470294Z
pysec-2022-219		The RootInteractive package in PyPI v0.0.5 to v0.0.19b0 was discovered to contain a code …	rootinteractive	2022-06-24T21:15:00Z	2022-07-05T20:48:00Z
pysec-2022-218		The django-navbar-client package of v0.9.50 to v1.0.1 was discovered to contain a code ex…	django-navbar-client	2022-06-24T21:15:00Z	2022-07-05T20:48:00Z
pysec-2022-217		The cryptoasset-data-downloader package in PyPI v1.0.0 to v1.0.1 was discovered to contai…	cryptoasset-data-downloader	2022-06-24T21:15:00Z	2022-07-05T22:30:15.999007Z
pysec-2022-216		The Perdido package in PyPI v0.0.1 to v0.0.2 was discovered to contain a code execution b…	perdido	2022-06-24T21:15:00Z	2022-07-05T19:16:00Z

ID	Description	Updated

ID	Description	Published	Updated
MAL-2026-519	Malicious code in @afg-ikea/ikea-modals (npm)	2026-01-27T02:11:41Z	2026-02-02T05:56:25Z
mal-2026-518	Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)	2026-01-27T02:11:40Z	2026-02-02T05:56:25Z
mal-2026-517	Malicious code in @afg-ikea/ikea-family-registration-module (npm)	2026-01-27T02:11:40Z	2026-02-02T05:56:25Z
MAL-2026-518	Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)	2026-01-27T02:11:40Z	2026-02-02T05:56:25Z
MAL-2026-517	Malicious code in @afg-ikea/ikea-family-registration-module (npm)	2026-01-27T02:11:40Z	2026-02-02T05:56:25Z
mal-2026-510	Malicious code in radishwxm5 (PyPI)	2026-01-26T19:50:28Z	2026-01-26T19:50:28Z
MAL-2026-510	Malicious code in radishwxm5 (PyPI)	2026-01-26T19:50:28Z	2026-01-26T19:50:28Z
mal-2026-509	Malicious code in @sommos/create-program-template-form-data (npm)	2026-01-26T18:20:46Z	2026-02-02T05:56:25Z
MAL-2026-509	Malicious code in @sommos/create-program-template-form-data (npm)	2026-01-26T18:20:46Z	2026-02-02T05:56:25Z
mal-2026-508	Malicious code in cartos-dds-ui (npm)	2026-01-26T16:41:17Z	2026-02-02T05:56:26Z
MAL-2026-508	Malicious code in cartos-dds-ui (npm)	2026-01-26T16:41:17Z	2026-02-02T05:56:26Z
mal-2026-553	Malicious code in @snazah/davey (npm)	2026-01-26T16:04:18Z	2026-02-10T16:41:03Z
MAL-2026-553	Malicious code in @snazah/davey (npm)	2026-01-26T16:04:18Z	2026-02-10T16:41:03Z
mal-2026-507	Malicious code in tripica-library (npm)	2026-01-26T15:31:06Z	2026-02-02T05:56:31Z
MAL-2026-507	Malicious code in tripica-library (npm)	2026-01-26T15:31:06Z	2026-02-02T05:56:31Z
mal-2026-554	Malicious code in braintree-web-latest (npm)	2026-01-25T19:34:34Z	2026-02-03T04:54:38Z
MAL-2026-554	Malicious code in braintree-web-latest (npm)	2026-01-25T19:34:34Z	2026-02-03T04:54:38Z
mal-2026-506	Malicious code in selenium-integration (PyPI)	2026-01-25T16:56:33Z	2026-01-25T16:56:33Z
MAL-2026-506	Malicious code in selenium-integration (PyPI)	2026-01-25T16:56:33Z	2026-01-25T16:56:33Z
mal-2026-512	Malicious code in overstock-component-library (npm)	2026-01-25T15:11:29Z	2026-02-02T05:56:29Z
MAL-2026-512	Malicious code in overstock-component-library (npm)	2026-01-25T15:11:29Z	2026-02-02T05:56:29Z
mal-2026-516	Malicious code in overstock-login-layer (npm)	2026-01-25T15:01:01Z	2026-02-02T05:56:29Z
MAL-2026-516	Malicious code in overstock-login-layer (npm)	2026-01-25T15:01:01Z	2026-02-02T05:56:29Z
mal-2026-511	Malicious code in ostk-otel-autoconfig (npm)	2026-01-25T14:59:26Z	2026-02-02T05:56:29Z
MAL-2026-511	Malicious code in ostk-otel-autoconfig (npm)	2026-01-25T14:59:26Z	2026-02-02T05:56:29Z
mal-2026-513	Malicious code in overstock-component-library-v3 (npm)	2026-01-25T14:59:25Z	2026-02-02T05:56:29Z
MAL-2026-513	Malicious code in overstock-component-library-v3 (npm)	2026-01-25T14:59:25Z	2026-02-02T05:56:29Z
mal-2026-505	Malicious code in flask-hookserver (PyPI)	2026-01-25T11:13:11Z	2026-01-25T11:25:04Z
MAL-2026-505	Malicious code in flask-hookserver (PyPI)	2026-01-25T11:13:11Z	2026-01-25T11:25:04Z
mal-2026-504	Malicious code in researchpoc (PyPI)	2026-01-25T10:54:30Z	2026-01-25T10:54:30Z

ID	Description	Published	Updated
wid-sec-w-2025-1121	Trend Micro Apex Central: Mehrere Schwachstellen ermöglichen Codeausführung	2025-05-21T22:00:00.000+00:00	2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1120	Internet Systems Consortium BIND: Schwachstelle ermöglicht Denial of Service	2025-05-21T22:00:00.000+00:00	2025-06-01T22:00:00.000+00:00
wid-sec-w-2025-1119	Drupal Produkte: Mehrere Schwachstellen	2025-05-21T22:00:00.000+00:00	2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1118	OWASP ModSecurity: Schwachstelle ermöglicht Denial of Service	2025-05-21T22:00:00.000+00:00	2025-08-14T22:00:00.000+00:00
wid-sec-w-2025-1117	GitLab: Mehrere Schwachstellen	2025-05-21T22:00:00.000+00:00	2025-05-22T22:00:00.000+00:00
wid-sec-w-2025-1116	Cisco Unified Communications Produkte: Schwachstelle ermöglicht Privilegieneskalation	2025-05-21T22:00:00.000+00:00	2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1115	Mattermost: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-05-21T22:00:00.000+00:00	2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1114	Linux Kernel: Mehrere Schwachstellen	2025-05-20T22:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-1113	VMware Produkte: Mehrere Schwachstellen	2025-05-20T22:00:00.000+00:00	2025-05-20T22:00:00.000+00:00
wid-sec-w-2025-1112	Arista EOS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-05-20T22:00:00.000+00:00	2025-05-20T22:00:00.000+00:00
wid-sec-w-2025-1111	Atlassian Jira: Mehrere Schwachstellen	2025-05-20T22:00:00.000+00:00	2025-05-20T22:00:00.000+00:00
wid-sec-w-2025-1110	JetBrains TeamCity: Mehrere Schwachstellen	2025-05-20T22:00:00.000+00:00	2025-05-20T22:00:00.000+00:00
wid-sec-w-2025-1109	Mitel OpenScape Xpressions: Schwachstelle ermöglicht Offenlegung von Informationen	2025-05-20T22:00:00.000+00:00	2025-05-20T22:00:00.000+00:00
wid-sec-w-2025-1108	Atlassian Crucible: Schwachstelle ermöglicht Denial of Service	2025-05-20T22:00:00.000+00:00	2025-05-20T22:00:00.000+00:00
wid-sec-w-2025-1107	TYPO3 Extensions: Mehrere Schwachstellen	2025-05-19T22:00:00.000+00:00	2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1106	TYPO3 Core: Mehrere Schwachstellen	2025-05-19T22:00:00.000+00:00	2025-05-20T22:00:00.000+00:00
wid-sec-w-2025-1105	VMware Cloud Foundation: Mehrere Schwachstellen	2025-05-19T22:00:00.000+00:00	2025-05-20T22:00:00.000+00:00
wid-sec-w-2025-1104	Ivanti Neurons for ITSM: Schwachstelle ermöglicht Erlangen von Administratorrechten	2025-05-19T22:00:00.000+00:00	2025-05-20T22:00:00.000+00:00
wid-sec-w-2025-1103	Broadcom Automic Automation: Schwachstelle ermöglicht Privilegieneskalation	2025-05-19T22:00:00.000+00:00	2025-05-19T22:00:00.000+00:00
wid-sec-w-2025-1102	OpenCTI: Schwachstelle ermöglicht Denial of Service	2025-05-19T22:00:00.000+00:00	2025-05-19T22:00:00.000+00:00
wid-sec-w-2025-1101	IBM App Connect Enterprise: Schwachstelle ermöglicht Denial of Service	2025-05-19T22:00:00.000+00:00	2025-05-19T22:00:00.000+00:00
wid-sec-w-2025-1100	Lexmark Multifunction Printer: Schwachstelle ermöglicht Codeausführung	2025-05-19T22:00:00.000+00:00	2025-05-19T22:00:00.000+00:00
wid-sec-w-2025-1099	VMware Tanzu Spring Security: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-05-19T22:00:00.000+00:00	2025-05-19T22:00:00.000+00:00
wid-sec-w-2025-1098	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2025-05-18T22:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-1097	Mozilla Firefox / Thunderbird: Mehrere Schwachstellen	2025-05-18T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1096	Grafana: Schwachstelle ermöglicht Cross-Site Scripting	2025-05-18T22:00:00.000+00:00	2025-06-17T22:00:00.000+00:00
wid-sec-w-2025-1095	HCL Domino Volt und Leap: Mehrere Schwachstellen	2025-05-18T22:00:00.000+00:00	2025-05-18T22:00:00.000+00:00
wid-sec-w-2025-1094	QT: Schwachstelle ermöglicht Privilegieneskalation	2025-05-18T22:00:00.000+00:00	2025-05-18T22:00:00.000+00:00
wid-sec-w-2025-1093	IBM Security Guardium: Schwachstelle ermöglicht Manipulation von Dateien	2025-05-18T22:00:00.000+00:00	2025-05-18T22:00:00.000+00:00
wid-sec-w-2025-1092	D-LINK DAP-2695 Router: Mehrere Schwachstellen ermöglichen Cross-Site Scripting	2025-05-18T22:00:00.000+00:00	2025-05-18T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2026:0007	Red Hat Security Advisory: firefox security update	2026-01-05T01:37:07+00:00	2026-01-06T12:46:01+00:00
rhsa-2026:0015	Red Hat Security Advisory: firefox security update	2026-01-05T01:36:47+00:00	2026-01-06T12:46:02+00:00
rhsa-2026:0025	Red Hat Security Advisory: thunderbird security update	2026-01-05T01:33:48+00:00	2026-01-06T12:43:14+00:00
rhsa-2026:0024	Red Hat Security Advisory: thunderbird security update	2026-01-05T01:32:27+00:00	2026-01-06T12:45:56+00:00
rhsa-2026:0008	Red Hat Security Advisory: brotli security update	2026-01-05T01:26:08+00:00	2026-02-19T13:36:49+00:00
rhsa-2026:0006	Red Hat Security Advisory: firefox security update	2026-01-05T01:23:27+00:00	2026-01-06T12:46:00+00:00
rhsa-2026:0005	Red Hat Security Advisory: firefox security update	2026-01-05T01:17:27+00:00	2026-01-06T12:46:00+00:00
rhsa-2026:0002	Red Hat Security Advisory: tar security update	2026-01-05T00:51:42+00:00	2026-02-03T20:56:50+00:00
rhsa-2026:0001	Red Hat Security Advisory: spice-client-win security update	2026-01-05T00:51:17+00:00	2026-02-10T16:53:20+00:00
rhsa-2025:23975	Red Hat Security Advisory: webkitgtk4 security update	2025-12-24T09:04:13+00:00	2026-01-19T19:12:07+00:00
rhsa-2025:23974	Red Hat Security Advisory: webkit2gtk3 security update	2025-12-24T09:01:38+00:00	2026-01-28T05:51:30+00:00
rhsa-2025:23972	Red Hat Security Advisory: webkit2gtk3 security update	2025-12-24T08:38:43+00:00	2026-01-28T05:51:29+00:00
rhsa-2025:23973	Red Hat Security Advisory: webkit2gtk3 security update	2025-12-24T08:19:08+00:00	2026-01-28T05:51:33+00:00
rhsa-2025:23971	Red Hat Security Advisory: webkit2gtk3 security update	2025-12-24T07:59:13+00:00	2026-01-28T05:51:29+00:00
rhsa-2025:23970	Red Hat Security Advisory: webkit2gtk3 security update	2025-12-24T07:55:33+00:00	2026-01-28T05:51:28+00:00
rhsa-2025:23969	Red Hat Security Advisory: webkit2gtk3 security update	2025-12-24T07:42:23+00:00	2026-01-28T05:51:28+00:00
rhsa-2025:23968	Red Hat Security Advisory: webkit2gtk3 security update	2025-12-24T07:39:38+00:00	2026-01-28T05:51:31+00:00
rhsa-2025:23967	Red Hat Security Advisory: webkit2gtk3 security update	2025-12-24T07:18:48+00:00	2026-01-28T05:51:31+00:00
rhsa-2025:23919	Red Hat Security Advisory: httpd security update	2025-12-22T23:27:16+00:00	2026-01-13T22:14:14+00:00
rhsa-2025:23947	Red Hat Security Advisory: kernel security update	2025-12-22T17:42:52+00:00	2026-02-03T21:42:32+00:00
rhsa-2025:23948	Red Hat Security Advisory: grafana security update	2025-12-22T17:10:29+00:00	2026-02-21T13:32:31+00:00
rhsa-2025:23960	Red Hat Security Advisory: kernel-rt security update	2025-12-22T17:04:29+00:00	2026-02-03T21:42:32+00:00
rhsa-2025:23932	Red Hat Security Advisory: httpd security update	2025-12-22T16:55:54+00:00	2026-01-13T22:10:06+00:00
rhsa-2025:23927	Red Hat Security Advisory: ruby security update	2025-12-22T16:49:49+00:00	2026-02-03T20:10:41+00:00
rhsa-2025:23940	Red Hat Security Advisory: python3.12 security update	2025-12-22T16:40:10+00:00	2026-02-03T20:56:50+00:00
rhsa-2025:23916	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18 security, enhancement & bug fix update	2025-12-22T14:47:09+00:00	2026-02-22T01:33:21+00:00
rhsa-2025:23856	Red Hat Security Advisory: thunderbird security update	2025-12-22T13:36:18+00:00	2026-01-06T12:43:14+00:00
rhsa-2025:23858	Red Hat Security Advisory: rsync security update	2025-12-22T12:57:18+00:00	2026-01-28T18:58:19+00:00
rhsa-2025:23857	Red Hat Security Advisory: gimp:2.8 security update	2025-12-22T12:54:58+00:00	2026-01-13T22:09:36+00:00
rhsa-2025:23854	Red Hat Security Advisory: rsync security update	2025-12-22T12:14:03+00:00	2026-01-28T18:58:19+00:00

ID	Description	Published	Updated
icsa-24-165-01	Siemens Mendix Applications	2024-06-11T00:00:00.000000Z	2024-06-11T00:00:00.000000Z
icsa-24-158-04	Johnson Controls Software House iStar Door Controller (Update A)	2024-06-06T06:00:00.000000Z	2025-07-29T06:00:00.000000Z
icsa-24-158-03	Mitsubishi Electric CC-Link IE TSN Industrial Managed Switch	2024-06-06T06:00:00.000000Z	2024-06-06T06:00:00.000000Z
icsa-24-158-02	Emerson Ovation	2024-06-06T06:00:00.000000Z	2024-06-06T06:00:00.000000Z
icsa-24-158-01	Emerson PACSystem and Fanuc	2024-06-06T06:00:00.000000Z	2024-06-06T06:00:00.000000Z
icsa-24-156-01	Uniview NVR301-04S2-P4 (Update A)	2024-06-04T06:00:00.000000Z	2024-09-24T06:00:00.000000Z
icsma-24-151-02	Baxter Welch Allyn Connex Spot Monitor	2024-05-30T06:00:00.000000Z	2024-05-30T06:00:00.000000Z
icsma-24-151-01	Baxter Welch Allyn Configuration Tool	2024-05-30T06:00:00.000000Z	2024-05-30T06:00:00.000000Z
icsa-24-151-04	Westermo EDW-100	2024-05-30T06:00:00.000000Z	2024-05-30T06:00:00.000000Z
icsa-24-151-03	Inosoft VisiWin	2024-05-30T06:00:00.000000Z	2024-05-30T06:00:00.000000Z
icsa-24-151-02	Fuji Electric Monitouch V-SFT (Update A)	2024-05-30T06:00:00.000000Z	2025-07-18T06:00:00.000000Z
icsa-24-151-01	LenelS2 NetBox	2024-05-30T06:00:00.000000Z	2024-05-30T06:00:00.000000Z
icsa-24-149-01	Campbell Scientific CSI Web Server	2024-05-28T06:00:00.000000Z	2024-05-28T06:00:00.000000Z
icsa-24-144-01	AutomationDirect Productivity PLCs	2024-05-23T06:00:00.000000Z	2024-05-23T06:00:00.000000Z
icsa-24-142-01	LCDS LAquis SCADA	2024-05-21T06:00:00.000000Z	2024-05-21T06:00:00.000000Z
icsa-24-137-14	Rockwell Automation FactoryTalk View SE	2024-05-16T06:00:00.000000Z	2024-05-16T06:00:00.000000Z
icsa-24-135-04	Mitsubishi Electric Multiple FA Engineering Software Products (Update E)	2024-05-14T06:00:00.000000Z	2026-01-15T07:00:00.000000Z
icsa-24-135-03	Johnson Controls Software House C●CURE 9000	2024-05-14T06:00:00.000000Z	2024-05-14T06:00:00.000000Z
icsa-24-135-02	SUBNET PowerSYSTEM Center	2024-05-14T06:00:00.000000Z	2024-05-14T06:00:00.000000Z
icsa-24-135-01	Rockwell Automation FactoryTalk Remote Access	2024-05-14T06:00:00.000000Z	2024-05-14T06:00:00.000000Z
icsa-24-137-13	Siemens Industrial Products	2024-05-14T00:00:00.000000Z	2024-12-10T00:00:00.000000Z
icsa-24-137-12	Siemens Desigo Fire Safety UL and Cerberus PRO UL Fire Protection Systems	2024-05-14T00:00:00.000000Z	2024-05-14T00:00:00.000000Z
icsa-24-137-11	Siemens RUGGEDCOM APE1808	2024-05-14T00:00:00.000000Z	2024-05-14T00:00:00.000000Z
icsa-24-137-10	Siemens RUGGEDCOM CROSSBOW	2024-05-14T00:00:00.000000Z	2024-05-14T00:00:00.000000Z
icsa-24-137-09	Siemens Solid Edge	2024-05-14T00:00:00.000000Z	2024-05-14T00:00:00.000000Z
icsa-24-137-08	Siemens PS/IGES Parasolid Translator Component	2024-05-14T00:00:00.000000Z	2024-05-14T00:00:00.000000Z
icsa-24-137-07	Siemens SIMATIC RTLS Locating Manager	2024-05-14T00:00:00.000000Z	2024-06-11T00:00:00.000000Z
icsa-24-137-06	Siemens SIMATIC CN 4100	2024-05-14T00:00:00.000000Z	2024-05-14T00:00:00.000000Z
icsa-24-137-05	Siemens Simcenter Nastran	2024-05-14T00:00:00.000000Z	2024-05-14T00:00:00.000000Z
icsa-24-137-04	Siemens Polarion ALM	2024-05-14T00:00:00.000000Z	2024-05-14T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-ssm-priv-esc-5g35cddj	Cisco Smart Software Manager Privilege Escalation Vulnerability	2021-10-06T16:00:00+00:00	2021-10-06T16:00:00+00:00
cisco-sa-sb220-lldp-multivuls-mvrutq8t	Cisco Small Business 220 Series Smart Switches Link Layer Discovery Protocol Vulnerabilities	2021-10-06T16:00:00+00:00	2022-01-13T21:37:56+00:00
cisco-sa-sb-hardcoded-cred-mjcexvx	Cisco Business 220 Series Smart Switches Static Key and Password Vulnerabilities	2021-10-06T16:00:00+00:00	2021-10-06T16:00:00+00:00
cisco-sa-ise-xxe-inj-v4vsjesx	Cisco Identity Services Engine XML External Entity Injection Vulnerability	2021-10-06T16:00:00+00:00	2021-10-06T16:00:00+00:00
cisco-sa-ise-priv-esc-uwqprbm3	Cisco Identity Services Engine Privilege Escalation Vulnerability	2021-10-06T16:00:00+00:00	2021-10-11T16:18:56+00:00
cisco-sa-ise-info-disc-pnxtlhdp	Cisco Identity Services Engine Sensitive Information Disclosure Vulnerability	2021-10-06T16:00:00+00:00	2021-10-06T16:00:00+00:00
cisco-sa-ipphone-arbfileread-npdte2ow	Cisco IP Phone Software Arbitrary File Read Vulnerability	2021-10-06T16:00:00+00:00	2021-10-14T13:57:39+00:00
cisco-sa-esa-url-bypass-sgcfsdrp	Cisco Email Security Appliance URL Filtering Bypass Vulnerability	2021-10-06T16:00:00+00:00	2021-10-06T16:00:00+00:00
cisco-sa-dnac-infodisc-kyc6yncs	Cisco DNA Center Information Disclosure Vulnerability	2021-10-06T16:00:00+00:00	2021-10-06T16:00:00+00:00
cisco-sa-cvdsd-xss-fvdj6hk	Cisco Vision Dynamic Signage Director Reflected Cross-Site Scripting Vulnerability	2021-10-06T16:00:00+00:00	2021-10-15T21:45:49+00:00
cisco-sa-ata19x-multivuln-a4j57f3	Cisco ATA 190 Series Analog Telephone Adapter Software Vulnerabilities	2021-10-06T16:00:00+00:00	2021-10-22T15:03:27+00:00
cisco-sa-anyconnect-lib-hija-cafb7x4q	Cisco AnyConnect Secure Mobility Client for Linux and Mac OS with VPN Posture (HostScan) Module Shared Library Hijacking Vulnerability	2021-10-06T16:00:00+00:00	2021-10-06T16:00:00+00:00
cisco-sa-amp-redirect-rq2bu7du	Cisco Orbital Open Redirect Vulnerability	2021-10-06T16:00:00+00:00	2021-10-06T16:00:00+00:00
cisco-sa-zbfw-tguguyq	Cisco IOS XE Software Protection Against Distributed Denial of Service Attacks Feature Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-zbfw-pp9jfzwl	Cisco IOS XE Software Zone-Based Policy Firewall ICMP and UDP Inspection Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-trustsec-dos-7fuxdr2	Cisco IOS and IOS XE Software TrustSec CLI Parser Denial of Service Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-sdwan-maapi-privesc-ksug7qss	Cisco IOS XE SD-WAN Software Command Injection Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-sdwan-maapi-cmdinjec-znuytuc	Cisco SD-WAN Software Command Injection Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-sd-wan-josurjcc	Cisco SD-WAN vManage Software Cypher Query Language Injection Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-sd-wan-gjr5pgom	Cisco IOS XE SD-WAN Software Arbitrary File Overwrite Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-sd-wan-fhqh8pkx	Cisco SD-WAN Software Information Disclosure Vulnerability	2021-09-22T16:00:00+00:00	2023-06-16T19:11:51+00:00
cisco-sa-sd-wan-credentials-ydyfskzz	Cisco SD-WAN vManage Software Disaster Recovery Feature Password Exposure Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-ratenat-pyvla7wm	Cisco IOS XE Software Rate Limiting Network Address Translation Denial of Service Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-quewedge-69bshubw	Cisco IOS XE Software Interface Queue Wedge Denial of Service Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-lldp-dos-sbnuhsjt	Cisco IOS and IOS XE Software Link Layer Discovery Protocol Denial of Service Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-ioxesdwan-clicmdinj-7byx5k3	Cisco IOS XE SD-WAN Software Command Injection Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-iosxesdwan-rbuffover-ve2ob6tp	Cisco IOS XE SD-WAN Software Buffer Overflow Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-iosxesdwan-privesc-vp4fg3jd	Cisco IOS XE SD-WAN Software Privilege Escalation Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-iosxesdwan-arbfileov-mvof3zzn	Cisco IOS XE SD-WAN Software Arbitrary File Overwrite Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-iosxe-h323alg-bypass-4vy2mp2q	Cisco IOS XE Software H.323 Application Level Gateway Bypass Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-59250	JDBC Driver for SQL Server Spoofing Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59249	Microsoft Exchange Server Elevation of Privilege Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59248	Microsoft Exchange Server Spoofing Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59247	Azure PlayFab Elevation of Privilege Vulnerability	2025-10-14T00:00:00.000Z	2025-10-09T00:00:00.000Z
msrc_cve-2025-59246	Azure Entra ID Elevation of Privilege Vulnerability	2025-10-14T00:00:00.000Z	2025-10-09T00:00:00.000Z
msrc_cve-2025-59244	NTLM Hash Disclosure Spoofing Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59243	Microsoft Excel Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59242	Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59241	Windows Health and Optimized Experiences Elevation of Privilege Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59238	Microsoft PowerPoint Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59237	Microsoft SharePoint Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59236	Microsoft Excel Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59235	Microsoft Excel Information Disclosure Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59234	Microsoft Office Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59233	Microsoft Excel Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-15T00:00:00.000Z
msrc_cve-2025-59232	Microsoft Excel Information Disclosure Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59231	Microsoft Excel Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59230	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59229	Microsoft Office Denial of Service Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59228	Microsoft SharePoint Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59227	Microsoft Office Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-15T00:00:00.000Z
msrc_cve-2025-59226	Microsoft Office Visio Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59225	Microsoft Excel Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59224	Microsoft Excel Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59223	Microsoft Excel Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59222	Microsoft Word Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59221	Microsoft Word Remote Code Execution Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59218	Azure Entra ID Elevation of Privilege Vulnerability	2025-10-14T00:00:00.000Z	2025-10-09T00:00:00.000Z
msrc_cve-2025-59214	Microsoft Windows File Explorer Spoofing Vulnerability	2025-10-14T00:00:00.000Z	2025-10-14T00:00:00.000Z
msrc_cve-2025-59213	Configuration Manager Elevation of Privilege Vulnerability	2025-10-14T00:00:00.000Z	2026-02-13T08:00:00.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
osv-2023-640	Stack-buffer-overflow in initialize_encryption_key	2023-08-04T14:00:55.352181Z	2023-08-17T14:21:56.675468Z
osv-2022-1280	Heap-buffer-overflow in Canvas5Structure::NIBDecoder::decode	2023-08-04T14:00:41.927304Z	2023-08-04T14:00:41.927544Z
osv-2023-636	Security exception in jflex.core.NFA.insertNFA	2023-08-03T14:00:58.919043Z	2023-08-03T14:00:58.919497Z
osv-2023-634	Heap-buffer-overflow in bit_read_BB	2023-08-02T14:02:44.231233Z	2023-11-01T14:21:43.594840Z
osv-2023-631	Heap-buffer-overflow in test_verify	2023-08-01T14:02:11.454420Z	2023-08-01T14:02:11.454673Z
osv-2023-627	Security exception in org.apache.lucene.util.automaton.RegExp.toAutomaton	2023-07-31T14:00:58.902209Z	2023-07-31T14:00:58.902458Z
osv-2023-623	Heap-use-after-free in Elf32_free	2023-07-28T14:01:31.646164Z	2023-07-28T14:01:31.646403Z
osv-2023-619	Security exception in java.base/java.util.regex.Pattern$GroupTail.match	2023-07-27T14:00:54.002113Z	2023-07-27T14:00:54.002341Z
osv-2023-618	Security exception in java.base/java.util.regex.Pattern$Loop.match	2023-07-27T14:00:53.785484Z	2023-07-27T14:00:53.785737Z
osv-2023-617	Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr	2023-07-27T14:00:51.420632Z	2023-08-04T14:17:57.934642Z
osv-2023-610	Security exception in org.apache.lucene.util.automaton.RegExp.toAutomaton	2023-07-23T14:02:28.957945Z	2023-07-23T14:02:28.958170Z
osv-2023-609	Stack-buffer-overflow in sc_pkcs15_get_lastupdate	2023-07-23T14:02:26.863116Z	2023-07-23T14:02:26.863362Z
osv-2023-606	Heap-buffer-overflow in ZSTD_decompressMultiFrame	2023-07-23T14:01:02.159160Z	2026-01-29T14:15:23.692004Z
osv-2023-605	Heap-use-after-free in Elf64_free	2023-07-23T14:00:51.654724Z	2024-04-01T14:21:09.455014Z
osv-2023-599	Negative-size-param in passDoAction	2023-07-20T14:02:17.227069Z	2023-12-05T14:19:49.798233Z
osv-2023-598	Heap-use-after-free in zval_call_destructor	2023-07-20T14:01:52.569977Z	2023-07-20T14:01:52.570218Z
osv-2023-586	Heap-buffer-overflow in setcos_create_key	2023-07-19T14:00:35.841154Z	2023-07-19T14:00:35.841409Z
osv-2023-581	Heap-buffer-overflow in wwunpack	2023-07-18T14:00:33.759863Z	2023-07-18T14:00:33.760126Z
osv-2023-580	Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr	2023-07-17T14:01:47.459416Z	2023-07-17T14:01:47.459668Z
osv-2023-578	Heap-buffer-overflow in cosm_new_file	2023-07-17T14:00:32.356018Z	2023-07-17T14:00:32.356264Z
osv-2023-576	Heap-double-free in sc_pkcs15_free_object_content	2023-07-16T14:02:13.225841Z	2023-07-16T14:02:13.226071Z
osv-2023-573	Negative-size-param in check_content_type_and_change_protocol	2023-07-16T14:01:41.260979Z	2023-07-16T14:01:41.261270Z
osv-2023-566	Heap-buffer-overflow in check_content_type_and_change_protocol	2023-07-14T14:01:52.369317Z	2023-07-14T14:01:52.369590Z
osv-2023-560	Stack-buffer-overflow in sc_pkcs15_get_lastupdate	2023-07-12T14:02:05.479616Z	2023-07-12T14:02:05.479901Z
osv-2023-556	Heap-buffer-overflow in xt_valid_enum_values	2023-07-11T14:00:08.080412Z	2023-07-11T14:00:08.082346Z
osv-2023-555	Heap-buffer-overflow in Gfx::InputStreamer::read_u24	2023-07-10T14:02:24.239473Z	2023-07-10T14:02:24.239720Z
osv-2023-554	Heap-buffer-overflow in OT::CmapSubtable::get_glyph	2023-07-10T14:02:00.983105Z	2023-07-10T14:02:00.983375Z
osv-2023-551	Heap-buffer-overflow in OT::CmapSubtable::collect_unicodes	2023-07-10T14:00:18.751239Z	2023-07-10T14:00:18.751501Z
osv-2023-547	UNKNOWN READ in r_str_ncpy	2023-07-08T14:00:22.061855Z	2023-10-06T14:21:12.777567Z
osv-2023-546	Invalid-free in jpeg_free_large	2023-07-06T14:00:42.657808Z	2023-07-06T14:00:42.658073Z

ID	Description	Published	Updated
rustsec-2019-0038	Fix for UB in failure to catch panics crossing FFI boundaries	2019-03-10T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0020	Possible use-after-free with `proplist::Iterator`	2018-12-22T12:00:00Z	2024-02-10T15:57:43Z
rustsec-2018-0012	Flaw in streaming state reset() functions can create incorrect results.	2018-12-20T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0011	Enum repr causing potential memory corruption	2018-12-18T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0009	MsQueue and SegQueue suffer from double-free	2018-12-09T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0008	Bug in SliceDeque::move_head_unchecked allows read of corrupted memory	2018-12-05T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0013	Vec-to-vec transmutations could lead to heap overflow/corruption	2018-11-27T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0015	term is looking for a new maintainer	2018-11-19T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2018-0007	Stack overflow when parsing malicious DNS packet	2018-10-09T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0018	smallvec creates uninitialized value of any type	2018-09-25T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0006	Uncontrolled recursion leads to abort in deserialization	2018-09-17T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0005	Uncontrolled recursion leads to abort in deserialization	2018-09-17T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0004	Malicious input could cause uninitialized memory to be exposed	2018-08-25T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0022	Use of uninitialized memory in temporary	2018-08-22T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0014	chan is end-of-life; use crossbeam-channel instead	2018-07-31T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2018-0003	Possible double free during unwinding in SmallVec::insert_many	2018-07-19T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0016	quickersort is deprecated and unmaintained	2018-06-30T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2018-0002	Links in archives can overwrite any existing file	2018-06-29T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0001	An integer underflow could lead to panic	2018-06-21T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0021	Use-after-free with objects returned by `Stream`'s `get_format_info` and `get_context` methods	2018-06-15T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0019	Multiple memory safety issues	2018-06-08T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0010	Use after free in CMS Signing	2018-06-01T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2018-0017	`tempdir` crate has been deprecated; use `tempfile` instead	2018-02-13T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2017-0006	Unchecked vector pre-allocation	2017-11-21T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2017-0008	`serial` crate is unmaintained	2017-07-02T12:00:00Z	2024-12-04T13:14:28Z
rustsec-2017-0005	Large cookie Max-Age values can cause a denial of service	2017-05-06T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2017-0004	Integer overflow leads to heap-based buffer overflow in encode_config_buf	2017-05-03T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2017-0007	lz4-compress is unmaintained	2017-04-17T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2017-0003	Hostname verification skipped when custom root certs used	2017-03-15T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2017-0001	scalarmult() vulnerable to degenerate public keys	2017-01-26T12:00:00Z	2023-06-13T13:10:24Z

ID	Description	Published	Updated
bit-gitlab-2025-1763	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab	2025-06-03T15:14:55.173Z	2025-06-03T15:16:07.023Z
bit-superset-2025-48912	Apache Superset: Improper authorization bypass on row level security via SQL Injection	2025-06-03T15:03:14.788Z	2025-06-03T15:16:07.023Z
bit-moodle-2024-48899	Moodle: idor when accessing list of course badges	2025-06-03T14:59:22.068Z	2025-06-03T15:16:07.023Z
bit-moodle-2024-45691	Moodle: lesson activity password bypass through php loose comparison	2025-06-03T14:59:09.259Z	2025-06-03T15:16:07.023Z
bit-moodle-2024-45690	Moodle: idor when deleting oauth2 linked accounts	2025-06-03T14:59:05.874Z	2025-06-03T15:16:07.023Z
bit-moodle-2024-45689	Moodle: unprotected access to sensitive information via dynamic tables	2025-06-03T14:59:02.378Z	2025-06-03T15:16:07.023Z
bit-joomla-2024-21726	[20240205] - Core - Inadequate content filtering within the filter code	2025-06-03T14:48:46.964Z	2025-08-20T09:06:12.327Z
bit-joomla-2024-21725	[20240204] - Core - XSS in mail address outputs	2025-06-03T14:48:43.681Z	2025-06-03T15:16:07.023Z
bit-joomla-2024-21723	[20240202] - Core - Open redirect in installation application	2025-06-03T14:48:37.081Z	2025-06-03T15:16:07.023Z
bit-joomla-2024-21722	[20240201] - Core - Insufficient session expiration in MFA management views	2025-06-03T14:48:33.767Z	2025-06-03T15:16:07.023Z
bit-drupal-2025-31675	Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2025-004	2025-06-03T14:41:48.563Z	2025-06-03T15:16:07.023Z
bit-drupal-2025-31673	Drupal core - Moderately critical - Access bypass - SA-CORE-2025-002	2025-06-03T14:41:39.975Z	2025-06-03T15:16:07.023Z
bit-drupal-2024-55638	Drupal core - Moderately critical - Gadget chain - SA-CORE-2024-008	2025-06-03T14:41:31.768Z	2025-06-03T15:16:07.023Z
bit-drupal-2024-55637	Drupal core - Moderately critical - Gadget chain - SA-CORE-2024-007	2025-06-03T14:41:27.578Z	2025-06-03T15:16:07.023Z
bit-drupal-2024-55636	Drupal core - Less critical - Gadget chain - SA-CORE-2024-006	2025-06-03T14:41:23.754Z	2025-06-03T15:16:07.023Z
bit-drupal-2024-55635	Drupal core - Critical - Cross Site Scripting - SA-CORE-2024-005	2025-06-03T14:41:19.575Z	2025-06-03T15:16:07.023Z
bit-drupal-2024-55634	Drupal core - Moderately critical - Access bypass - SA-CORE-2024-004	2025-06-03T14:41:15.479Z	2025-06-03T15:16:07.023Z
bit-drupal-2024-12393	Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2024-003	2025-06-03T14:41:06.473Z	2025-06-03T15:16:07.023Z
bit-drupal-2024-11942	Drupal core - Moderately critical - Improper error handling - SA-CORE-2024-002	2025-06-03T14:41:02.265Z	2025-06-03T15:16:07.023Z
bit-drupal-2024-11941	Drupal core - Moderately critical - Denial of Service - SA-CORE-2024-001	2025-06-03T14:40:58.183Z	2025-06-03T15:16:07.023Z
bit-valkey-2025-27151	redis-check-aof may lead to stack overflow and potential RCE	2025-05-31T06:02:22.962Z	2025-11-06T13:25:46.476Z
bit-redis-2025-27151	redis-check-aof may lead to stack overflow and potential RCE	2025-05-31T05:59:53.747Z	2025-08-22T06:06:45.932Z
bit-moodle-2024-34009	moodle: ReCAPTCHA can be bypassed on the login page	2025-05-31T05:57:48.365Z	2025-05-31T06:15:48.797Z
bit-moodle-2024-34007	moodle: logout CSRF in admin/tool/mfa/auth.php	2025-05-31T05:57:41.568Z	2025-05-31T06:15:48.797Z
bit-moodle-2024-34006	moodle: unsanitized HTML in site log for config_log_created	2025-05-31T05:57:38.163Z	2025-05-31T06:15:48.797Z
bit-moodle-2024-34001	moodle: CSRF risk in admin preset tool management of presets	2025-05-31T05:57:21.248Z	2025-05-31T06:15:48.797Z
bit-moodle-2024-34000	moodle: stored XSS in lesson overview report via user ID number	2025-05-31T05:57:17.759Z	2025-05-31T06:15:48.797Z
bit-moodle-2024-33999	moodle: unsafe direct use of $_SERVER['HTTP_REFERER'] in admin/tool/mfa/index.php	2025-05-31T05:57:14.246Z	2025-05-31T06:15:48.797Z
bit-moodle-2024-33998	moodle: stored XSS via user's name on participants page when opening some options	2025-05-31T05:57:10.769Z	2025-05-31T06:15:48.797Z
bit-moodle-2024-33997	moodle: stored XSS risk when editing another user's equation in equation editor	2025-05-31T05:57:07.361Z	2025-05-31T06:15:48.797Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201804-1182	An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be…	2024-07-23T20:25:18.221000Z
var-202207-0588	The llhttp parser <v14.20.1, <v16.17.1 and <v18.9.1 in the http module in Node.js does no…	2024-07-23T20:25:16.794000Z
var-200809-0184	Race condition in Login Window in Apple Mac OS X 10.5 through 10.5.4, when a blank-passwo…	2024-07-23T20:25:15.218000Z
var-201210-0269	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T20:25:11.811000Z
var-201404-0374	Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 an…	2024-07-23T20:25:08.563000Z
var-201704-1034	Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.…	2024-07-23T20:25:07.884000Z
var-201912-1848	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T20:24:44.163000Z
var-201210-0280	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T20:24:43.164000Z
var-201912-0589	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T20:24:42.912000Z
var-200611-0487	com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8, and possibly other versions,…	2024-07-23T20:24:10.857000Z
var-202006-1807	Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)]…	2024-07-23T20:23:24.085000Z
var-201306-0242	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T20:22:47.590000Z
var-202101-0220	A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded qu…	2024-07-23T20:21:44.763000Z
var-202105-1451	An issue was discovered in Linux: KVM through Improper handling of VM_IO\|VM_PFNMAP vmas i…	2024-07-23T20:21:39.668000Z
var-201504-0479	The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle …	2024-07-23T20:21:39.248000Z
var-200904-0817	Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS …	2024-07-23T20:21:39.155000Z
var-200810-0394	Unspecified vulnerability in Script Editor in Mac OS X 10.4.11 and 10.5.5 allows local us…	2024-07-23T20:21:38.100000Z
var-202105-1469	A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol(…	2024-07-23T20:21:37.217000Z
var-202006-1640	A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 a…	2024-07-23T20:21:37.869000Z
var-201203-0171	Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google…	2024-07-23T20:21:34.716000Z
var-200609-1013	Stack-based buffer overflow in the Apple Type Services (ATS) server in Mac OS 10.4.8 and …	2024-07-23T20:21:33.528000Z
var-201410-1418	The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeter…	2024-07-23T20:21:29.859000Z
var-201010-0168	Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache…	2024-07-23T20:20:56.693000Z
var-201707-1197	An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari …	2024-07-23T20:20:19.517000Z
var-200810-0643	Integer overflow in the netsnmp_create_subtree_cache function in agent/snmp_agent.c in ne…	2024-07-23T20:20:17.446000Z
var-201808-1002	Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo…	2024-07-23T20:20:15.857000Z
var-201506-0210	The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 befo…	2024-07-23T20:20:15.383000Z
var-202006-0241	Incomplete cleanup from specific special register read operations in some Intel(R) Proces…	2024-07-23T20:20:14.740000Z
var-201110-0392	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK…	2024-07-23T20:20:14.628000Z
var-201306-0226	mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 wri…	2024-07-23T20:20:13.633000Z

ID	Description	Published	Updated
jvndb-2021-000055	WordPress plugin "Fudousan plugin" series vulnerable to cross-site scripting	2021-06-22T15:06+09:00	2021-06-22T15:06+09:00
jvndb-2021-000054	Inkdrop vulnerable to OS command injection	2021-06-22T15:06+09:00	2021-06-22T15:06+09:00
jvndb-2021-000053	Hitachi Virtual File Platform vulnerable to OS command injection	2021-06-18T15:45+09:00	2021-06-18T15:45+09:00
jvndb-2021-000052	Hitachi Application Server Help vulnerable cross-site scripting	2021-06-17T15:11+09:00	2021-06-17T15:11+09:00
jvndb-2021-000051	Multiple cross-site scripting vulnerabilities in multiple EC-CUBE plugins provided by EC-CUBE	2021-06-16T16:18+09:00	2021-06-16T16:18+09:00
jvndb-2021-000049	Multiple ETUNA EC-CUBE plugins vulnerable to cross-site scripting	2021-06-15T16:09+09:00	2021-06-16T11:52+09:00
jvndb-2021-000050	Multiple vulnerabilities in GROWI	2021-06-14T15:10+09:00	2021-06-14T15:10+09:00
jvndb-2021-000048	Asken App for Android fails to restrict custom URL schemes properly	2021-06-14T15:10+09:00	2021-06-14T15:10+09:00
jvndb-2021-000047	WordPress plugin "Welcart e-Commerce" vulnerable to cross-site scripting	2021-06-11T15:24+09:00	2021-06-11T15:24+09:00
jvndb-2021-001756	urllib3 vulnerable to Regular expression Denial-of-Service (ReDoS)	2021-06-08T12:21+09:00	2021-06-08T12:21+09:00
jvndb-2021-000046	ATOM - Smart life App vulnerable to improper server certificate verification	2021-06-03T14:05+09:00	2021-06-03T14:05+09:00
jvndb-2021-000045	goo blog App fails to restrict custom URL schemes properly	2021-06-02T15:46+09:00	2021-06-02T15:46+09:00
jvndb-2021-001575	Multiple vulnerabilities in Buffalo WSR-1166DHP3 and WSR-1166DHP4 routers	2021-06-01T15:18+09:00	2021-06-01T15:18+09:00
jvndb-2021-000044	Zettlr vulnerable to cross-site scripting	2021-05-26T14:50+09:00	2021-06-03T16:21+09:00
jvndb-2021-001506	Hitachi Ops Center Analyzer vulnerability of communication using a certificate not intended by the user	2021-05-25T14:11+09:00	2021-05-25T14:11+09:00
jvndb-2021-000041	The installers of ScanSnap Manager may insecurely load Dynamic Link Libraries	2021-05-21T16:34+09:00	2021-05-21T16:34+09:00
jvndb-2021-000043	Installer of Overwolf may insecurely load Dynamic Link Libraries	2021-05-21T16:07+09:00	2021-05-21T16:07+09:00
jvndb-2021-000042	Multiple cross-site scripting vulnerabilities in multiple PHP Factory products	2021-05-21T15:38+09:00	2021-05-21T15:38+09:00
jvndb-2021-000040	QND vulnerable to privilege escalation	2021-05-21T14:21+09:00	2021-05-21T14:21+09:00
jvndb-2021-000037	mod_auth_openidc vulnerable to denial-of-service (DoS)	2021-05-14T15:35+09:00	2021-05-14T15:35+09:00
jvndb-2021-000038	Multiple vulnerabilities in Cisco Small Business Series Wireless Access Points	2021-05-14T15:26+09:00	2021-05-14T15:26+09:00
jvndb-2021-000039	RFNTPS vulnerable to OS command injection	2021-05-13T16:05+09:00	2021-05-13T16:05+09:00
jvndb-2021-000036	Multiple vulnerabilities in KonaWiki2	2021-05-13T16:05+09:00	2021-05-13T16:05+09:00
jvndb-2021-000035	EC-CUBE vulnerable to cross-site scripting	2021-05-10T18:08+09:00	2021-05-10T18:08+09:00
jvndb-2021-001380	Multiple Buffalo network devices contain hidden functionality	2021-04-28T16:15+09:00	2021-05-07T16:16+09:00
jvndb-2021-001381	Multiple vulnerabilities in Buffalo broadband routers	2021-04-28T16:14+09:00	2021-05-07T16:28+09:00
jvndb-2021-000034	WordPress plugin "WP Fastest Cache" vulnerable to directory traversal	2021-04-27T17:12+09:00	2021-04-27T17:12+09:00
jvndb-2021-000033	Hot Pepper Gourmet App fails to restrict access permissions	2021-04-27T17:10+09:00	2023-03-08T17:02+09:00
jvndb-2021-000909	yappa-ng vulnerable to cross-site scripting	2021-04-22T16:33+09:00	2021-04-22T16:33+09:00
jvndb-2021-001374	Trend Micro Password Manager may insecurely load Dynamic Link Libraries	2021-04-20T12:25+09:00	2021-04-20T12:25+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:20978-1	Security update for kernel-livepatch-MICRO-6-0_Update_9	2025-11-05T16:33:38Z	2025-11-05T16:33:38Z
suse-su-2025:20957-1	Security update for kernel-livepatch-MICRO-6-0_Update_9	2025-11-05T16:33:38Z	2025-11-05T16:33:38Z
suse-su-2025:20988-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_9	2025-11-05T16:32:15Z	2025-11-05T16:32:15Z
suse-su-2025:20952-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_9	2025-11-05T16:32:15Z	2025-11-05T16:32:15Z
suse-su-2025:20987-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_8	2025-11-05T16:26:09Z	2025-11-05T16:26:09Z
suse-su-2025:20951-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_8	2025-11-05T16:26:09Z	2025-11-05T16:26:09Z
suse-su-2025:20977-1	Security update for kernel-livepatch-MICRO-6-0_Update_2	2025-11-05T16:18:40Z	2025-11-05T16:18:40Z
suse-su-2025:20950-1	Security update for kernel-livepatch-MICRO-6-0_Update_2	2025-11-05T16:18:40Z	2025-11-05T16:18:40Z
suse-su-2025:20986-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_11	2025-11-05T16:16:55Z	2025-11-05T16:16:55Z
suse-su-2025:20949-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_11	2025-11-05T16:16:55Z	2025-11-05T16:16:55Z
suse-su-2025:20976-1	Security update for kernel-livepatch-MICRO-6-0_Update_12	2025-11-05T16:15:32Z	2025-11-05T16:15:32Z
suse-su-2025:20975-1	Security update for kernel-livepatch-MICRO-6-0_Update_7	2025-11-05T16:15:32Z	2025-11-05T16:15:32Z
suse-su-2025:20948-1	Security update for kernel-livepatch-MICRO-6-0_Update_12	2025-11-05T16:15:32Z	2025-11-05T16:15:32Z
suse-su-2025:20947-1	Security update for kernel-livepatch-MICRO-6-0_Update_7	2025-11-05T16:15:32Z	2025-11-05T16:15:32Z
suse-su-2025:20974-1	Security update for kernel-livepatch-MICRO-6-0_Update_6	2025-11-05T16:13:22Z	2025-11-05T16:13:22Z
suse-su-2025:20944-1	Security update for kernel-livepatch-MICRO-6-0_Update_6	2025-11-05T16:13:22Z	2025-11-05T16:13:22Z
suse-su-2025:20973-1	Security update for kernel-livepatch-MICRO-6-0_Update_4	2025-11-05T16:13:01Z	2025-11-05T16:13:01Z
suse-su-2025:20946-1	Security update for kernel-livepatch-MICRO-6-0_Update_3	2025-11-05T16:13:01Z	2025-11-05T16:13:01Z
suse-su-2025:20945-1	Security update for kernel-livepatch-MICRO-6-0_Update_4	2025-11-05T16:13:01Z	2025-11-05T16:13:01Z
suse-su-2025:20972-1	Security update for kernel-livepatch-MICRO-6-0_Update_10	2025-11-05T16:12:05Z	2025-11-05T16:12:05Z
suse-su-2025:20941-1	Security update for kernel-livepatch-MICRO-6-0_Update_10	2025-11-05T16:12:05Z	2025-11-05T16:12:05Z
suse-su-2025:20985-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_7	2025-11-05T16:11:42Z	2025-11-05T16:11:42Z
suse-su-2025:20984-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_6	2025-11-05T16:11:42Z	2025-11-05T16:11:42Z
suse-su-2025:20943-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_7	2025-11-05T16:11:42Z	2025-11-05T16:11:42Z
suse-su-2025:20942-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_6	2025-11-05T16:11:42Z	2025-11-05T16:11:42Z
suse-su-2025:20983-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_5	2025-11-05T16:09:50Z	2025-11-05T16:09:50Z
suse-su-2025:20940-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_5	2025-11-05T16:09:50Z	2025-11-05T16:09:50Z
suse-su-2025:20982-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_4	2025-11-05T16:03:00Z	2025-11-05T16:03:00Z
suse-su-2025:20939-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_4	2025-11-05T16:03:00Z	2025-11-05T16:03:00Z
suse-su-2025:3957-1	Security update for tiff	2025-11-05T15:45:20Z	2025-11-05T15:45:20Z

ID	Description	Published	Updated
cnvd-2025-30509	LIVE555 Streaming Media堆缓冲区溢出漏洞（CNVD-2025-30509）	2025-12-03	2025-12-11
cnvd-2025-30508	LIVE555 Streaming Media缓冲区溢出漏洞	2025-12-03	2025-12-11
cnvd-2025-30507	LIVE555 Streaming Media释放后重用漏洞	2025-12-03	2025-12-11
cnvd-2025-30463	Socomec Easy Config System身份认证绕过漏洞	2025-12-03	2025-12-11
cnvd-2025-30462	Socomec DIRIS Digiware M-70明文传输漏洞	2025-12-03	2025-12-11
cnvd-2025-30461	Socomec DIRIS Digiware M-70跨站请求伪造漏洞	2025-12-03	2025-12-11
cnvd-2025-30460	Socomec DIRIS Digiware M-70缓冲区溢出漏洞	2025-12-03	2025-12-11
cnvd-2025-30459	Socomec DIRIS Digiware M-70拒绝服务漏洞（CNVD-2025-30459）	2025-12-03	2025-12-11
cnvd-2025-30458	Socomec DIRIS Digiware M-70拒绝服务漏洞（CNVD-2025-30458）	2025-12-03	2025-12-11
cnvd-2025-30457	Socomec DIRIS Digiware M-70拒绝服务漏洞（CNVD-2025-30457）	2025-12-03	2025-12-11
cnvd-2025-30456	Socomec DIRIS Digiware M-70拒绝服务漏洞（CNVD-2025-30456）	2025-12-03	2025-12-11
cnvd-2025-30455	Socomec DIRIS Digiware M-70拒绝服务漏洞（CNVD-2025-30455）	2025-12-03	2025-12-11
cnvd-2025-30454	Socomec DIRIS Digiware M-70拒绝服务漏洞（CNVD-2025-30454）	2025-12-03	2025-12-11
cnvd-2025-30453	Socomec DIRIS Digiware M-70拒绝服务漏洞（CNVD-2025-30453）	2025-12-03	2025-12-11
cnvd-2025-30452	Socomec DIRIS Digiware M-70拒绝服务漏洞	2025-12-03	2025-12-11
cnvd-2025-30355	Grav资源管理错误漏洞	2025-12-03	2025-12-09
cnvd-2025-30354	Grav权限提升漏洞（CNVD-2025-30354）	2025-12-03	2025-12-09
cnvd-2025-30353	Grav路径遍历漏洞（CNVD-2025-30353）	2025-12-03	2025-12-09
cnvd-2025-30352	Grav服务端模板注入漏洞（CNVD-2025-30352）	2025-12-03	2025-12-09
cnvd-2025-30351	Grav授权问题漏洞	2025-12-03	2025-12-09
cnvd-2025-30350	Grav路径遍历漏洞（CNVD-2025-30350）	2025-12-03	2025-12-09
cnvd-2025-30349	Grav路径遍历漏洞	2025-12-03	2025-12-09
cnvd-2025-30348	Grav跨站脚本漏洞（CNVD-2025-30348）	2025-12-03	2025-12-09
cnvd-2025-30347	Grav跨站脚本漏洞（CNVD-2025-30347）	2025-12-03	2025-12-09
cnvd-2025-30346	Grav跨站脚本漏洞（CNVD-2025-30346）	2025-12-03	2025-12-09
cnvd-2025-30345	Grav跨站脚本漏洞（CNVD-2025-30345）	2025-12-03	2025-12-09
cnvd-2025-30344	Grav跨站脚本漏洞	2025-12-03	2025-12-09
cnvd-2025-30343	Grav拒绝服务漏洞	2025-12-03	2025-12-09
cnvd-2025-30342	Grav服务器端模板注入漏洞（CNVD-2025-30342）	2025-12-03	2025-12-09
cnvd-2025-30341	Grav代码执行漏洞	2025-12-03	2025-12-09

ID	Description	Published	Updated
CERTFR-2025-AVI-0895	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0894	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0893	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0892	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0891	Vulnérabilité dans MongoDB Connector for BI pour Windows	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0890	Multiples vulnérabilités dans les produits Moxa	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0889	Vulnérabilité dans Squid	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0888	Multiples vulnérabilités dans les produits Mattermost	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0887	Vulnérabilité dans Synacor Zimbra Collaboration	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0886	Multiples vulnérabilités dans les produits F5	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0885	Multiples vulnérabilités dans Samba	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0884	Multiples vulnérabilités dans les produits Cisco	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0883	Multiples vulnérabilités dans les produits Spring	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0888	Multiples vulnérabilités dans les produits Mattermost	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0887	Vulnérabilité dans Synacor Zimbra Collaboration	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0886	Multiples vulnérabilités dans les produits F5	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0885	Multiples vulnérabilités dans Samba	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0884	Multiples vulnérabilités dans les produits Cisco	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0883	Multiples vulnérabilités dans les produits Spring	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0882	Multiples vulnérabilités dans les produits Microsoft	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0881	Multiples vulnérabilités dans Microsoft Azure	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0880	Multiples vulnérabilités dans Microsoft .Net	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0879	Multiples vulnérabilités dans Microsoft Windows	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0878	Multiples vulnérabilités dans Microsoft Office	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0877	Multiples vulnérabilités dans les produits Ivanti	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0876	Multiples vulnérabilités dans les produits Adobe	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0875	Vulnérabilité dans Google Chrome	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0874	Vulnérabilité dans Schneider Electric EcoStruxure	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0873	Multiples vulnérabilités dans les produits Mozilla	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0872	Multiples vulnérabilités dans les produits HPE Aruba Networking	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated