Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-55245	7.8 (3.1)	Xbox Gaming Services Elevation of Privilege Vulnerability	Microsoft	Xbox Gaming Services	2025-09-09T17:01:05.889Z	2026-02-20T16:00:34.886Z
CVE-2025-32713	7.8 (3.1)	Windows Common Log File System Driver Elevation of Pri…	Microsoft	Windows 10 Version 1507	2025-06-10T17:02:09.807Z	2026-02-20T16:00:34.862Z
CVE-2025-55236	7.3 (3.1)	Graphics Kernel Remote Code Execution Vulnerability	Microsoft	Windows 10 Version 1809	2025-09-09T17:01:05.384Z	2026-02-20T16:00:33.720Z
CVE-2025-55232	9.8 (3.1)	Microsoft High Performance Compute (HPC) Pack Remote C…	Microsoft	Microsoft HPC Pack 2019	2025-09-09T17:01:04.860Z	2026-02-20T16:00:33.073Z
CVE-2025-32712	7.8 (3.1)	Win32k Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1507	2025-06-10T17:02:09.229Z	2026-02-20T16:00:33.753Z
CVE-2025-32710	8.1 (3.1)	Windows Remote Desktop Services Remote Code Execution …	Microsoft	Windows Server 2008 R2 Service Pack 1	2025-06-10T17:02:08.524Z	2026-02-20T16:00:33.143Z
CVE-2025-55228	7.8 (3.1)	Windows Graphics Component Remote Code Execution Vulne…	Microsoft	Windows 10 Version 21H2	2025-09-09T17:01:04.230Z	2026-02-20T16:00:32.326Z
CVE-2025-30399	7.5 (3.1)	.NET and Visual Studio Remote Code Execution Vulnerability	Microsoft	.NET 8.0	2025-06-13T01:08:00.208Z	2026-02-20T16:00:32.339Z
CVE-2025-55226	6.7 (3.1)	Graphics Kernel Remote Code Execution Vulnerability	Microsoft	Windows 10 Version 1507	2025-09-09T17:01:03.660Z	2026-02-20T16:00:31.543Z
CVE-2025-29828	8.1 (3.1)	Windows Schannel Remote Code Execution Vulnerability	Microsoft	Windows 11 version 22H2	2025-06-10T17:02:06.710Z	2026-02-20T16:00:31.562Z
CVE-2025-55225	6.5 (3.1)	Windows Routing and Remote Access Service (RRAS) Infor…	Microsoft	Windows Server 2008 R2 Service Pack 1	2025-09-09T17:01:03.108Z	2026-02-20T16:00:30.789Z
CVE-2025-55223	7 (3.1)	DirectX Graphics Kernel Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1809	2025-09-09T17:01:02.102Z	2026-02-20T16:00:30.092Z
CVE-2025-47957	8.4 (3.1)	Microsoft Word Remote Code Execution Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-06-10T17:02:05.558Z	2026-02-20T16:00:30.890Z
CVE-2025-54919	7.5 (3.1)	Windows Graphics Component Remote Code Execution Vulne…	Microsoft	Windows 10 Version 1809	2025-09-09T17:01:01.459Z	2026-02-20T16:00:29.346Z
CVE-2025-54918	8.8 (3.1)	Windows NTLM Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1507	2025-09-09T17:01:00.822Z	2026-02-20T16:00:28.449Z
CVE-2025-54916	7.8 (3.1)	Windows NTFS Remote Code Execution Vulnerability	Microsoft	Windows 10 Version 1507	2025-09-09T17:01:00.277Z	2026-02-20T16:00:27.426Z
CVE-2025-54913	7.8 (3.1)	Windows UI XAML Maps MapControlSettings Elevation of P…	Microsoft	Windows 10 Version 1507	2025-09-09T17:00:59.724Z	2026-02-20T16:00:26.821Z
CVE-2025-54908	7.8 (3.1)	Microsoft PowerPoint Remote Code Execution Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-09-09T17:00:58.996Z	2026-02-20T16:00:25.973Z
CVE-2025-54907	7.8 (3.1)	Microsoft Office Visio Remote Code Execution Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-09-09T17:00:58.387Z	2026-02-20T16:00:25.193Z
CVE-2025-54906	7.8 (3.1)	Microsoft Office Remote Code Execution Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-09-09T17:00:57.894Z	2026-02-20T16:00:24.374Z
CVE-2025-54905	7.1 (3.1)	Microsoft Word Information Disclosure Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-09-09T17:00:57.268Z	2026-02-20T16:00:23.697Z
CVE-2025-54904	7.8 (3.1)	Microsoft Excel Remote Code Execution Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-09-09T17:00:56.615Z	2026-02-20T16:00:22.731Z
CVE-2025-54903	7.8 (3.1)	Microsoft Excel Remote Code Execution Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-09-09T17:00:55.968Z	2026-02-20T16:00:22.055Z
CVE-2025-54902	7.8 (3.1)	Microsoft Excel Remote Code Execution Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-09-09T17:00:55.356Z	2026-02-20T16:00:21.537Z
CVE-2025-54899	7.8 (3.1)	Microsoft Excel Remote Code Execution Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-09-09T17:00:54.798Z	2026-02-20T16:00:20.646Z
CVE-2025-54898	7.8 (3.1)	Microsoft Excel Remote Code Execution Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-09-09T17:00:54.212Z	2026-02-20T16:00:20.092Z
CVE-2025-54897	8.8 (3.1)	Microsoft SharePoint Remote Code Execution Vulnerability	Microsoft	Microsoft SharePoint Enterprise Server 2016	2025-09-09T17:00:53.664Z	2026-02-20T16:00:19.610Z
CVE-2025-54896	7.8 (3.1)	Microsoft Excel Remote Code Execution Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2025-09-09T17:00:53.019Z	2026-02-20T16:00:18.966Z
CVE-2025-54895	7.8 (3.1)	SPNEGO Extended Negotiation (NEGOEX) Security Mechanis…	Microsoft	Windows 10 Version 1507	2025-09-09T17:00:52.371Z	2026-02-20T16:00:18.435Z
CVE-2025-54894	7.8 (3.1)	Local Security Authority Subsystem Service Elevation o…	Microsoft	Windows 10 Version 1507	2025-09-09T17:00:51.652Z	2026-02-20T16:00:17.688Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-68051	N/A	WordPress Shiprocket plugin <= 2.0.8 - Insecure Direct…	Shiprocket	Shiprocket	2026-02-20T15:46:37.798Z	2026-02-20T15:46:37.798Z
CVE-2025-68050	N/A	WordPress Leadpages plugin <= 1.1.3 - Broken Access Co…	Leadpages	Leadpages	2026-02-20T15:46:37.392Z	2026-02-20T15:46:37.392Z
CVE-2025-68048	N/A	WordPress NextMove Lite plugin <= 2.23.0 - Broken Acce…	XLPlugins	NextMove Lite	2026-02-20T15:46:37.159Z	2026-02-20T15:46:37.159Z
CVE-2025-68043	N/A	WordPress LottieFiles plugin <= 3.0.0 - Broken Access …	LottieFiles	LottieFiles	2026-02-20T15:46:36.994Z	2026-02-20T15:46:36.994Z
CVE-2025-68042	N/A	WordPress Travelpayouts plugin <= 1.2.1 - Broken Acces…	Travelpayouts	Travelpayouts	2026-02-20T15:46:36.826Z	2026-02-20T15:46:36.826Z
CVE-2025-68037	N/A	WordPress Export Media URLs plugin <= 2.2 - Reflected …	Atlas Gondal	Export Media URLs	2026-02-20T15:46:36.647Z	2026-02-20T15:46:36.647Z
CVE-2025-68032	N/A	WordPress Advanced WC Analytics plugin <= 3.19.0 - Set…	Passionate Brains	Advanced WC Analytics	2026-02-20T15:46:36.477Z	2026-02-20T15:46:36.477Z
CVE-2025-68031	N/A	WordPress افزونه پیامک حرفه ای فراز اس ام اس plugin <=…	faraz sms	افزونه پیامک حرفه ای فراز اس ام اس	2026-02-20T15:46:36.305Z	2026-02-20T15:46:36.305Z
CVE-2025-68028	N/A	WordPress GA4WP: Google Analytics for WordPress plugin…	Passionate Brains	GA4WP: Google Analytics for WordPress	2026-02-20T15:46:36.112Z	2026-02-20T15:46:36.112Z
CVE-2025-68026	N/A	WordPress LC Wizard plugin <= 2.1.1 - Settings Change …	Niaj Morshed	LC Wizard	2026-02-20T15:46:35.938Z	2026-02-20T15:46:35.938Z
CVE-2025-68025	N/A	WordPress Addonify Floating Cart For WooCommerce plugi…	Addonify	Addonify Floating Cart For WooCommerce	2026-02-20T15:46:35.764Z	2026-02-20T15:46:35.764Z
CVE-2025-68024	N/A	WordPress Addonify – WooCommerce Wishlist plugin <= 2.…	Addonify	Addonify – WooCommerce Wishlist	2026-02-20T15:46:35.579Z	2026-02-20T15:46:35.579Z
CVE-2025-68023	N/A	WordPress Addonify – Compare Products For WooCommerce …	Addonify	Addonify – Compare Products For WooCommerce	2026-02-20T15:46:35.312Z	2026-02-20T15:46:35.312Z
CVE-2025-68022	N/A	WordPress Plugin BlueX for WooCommerce plugin <= 3.1.6…	soporteblue	Plugin BlueX for WooCommerce	2026-02-20T15:46:34.974Z	2026-02-20T15:46:34.974Z
CVE-2025-68021	N/A	WordPress ConveyThis plugin <= 269.5 - Broken Access C…	ConveyThis	ConveyThis	2026-02-20T15:46:34.400Z	2026-02-20T15:46:34.400Z
CVE-2025-68005	N/A	WordPress Easy Hotel Booking plugin <= 1.8.7 - Broken …	themewant	Easy Hotel Booking	2026-02-20T15:46:34.209Z	2026-02-20T15:46:34.209Z
CVE-2025-68002	N/A	WordPress Open User Map plugin <= 1.4.16 - Arbitrary F…	100plugins	Open User Map	2026-02-20T15:46:34.046Z	2026-02-20T15:46:34.046Z
CVE-2025-68000	N/A	WordPress Testimonial Slider plugin <= 2.0.15 - Broken…	PickPlugins	Testimonial Slider	2026-02-20T15:46:33.875Z	2026-02-20T15:46:33.875Z
CVE-2025-67998	N/A	WordPress Miraculous Elementor plugin <= 2.0.7 - Broke…	kamleshyadav	Miraculous Elementor	2026-02-20T15:46:33.699Z	2026-02-20T15:46:33.699Z
CVE-2025-67997	N/A	WordPress Travelicious theme < 1.6.7 - PHP Object Inje…	BoldThemes	Travelicious	2026-02-20T15:46:33.519Z	2026-02-20T15:46:33.519Z
CVE-2025-67996	N/A	WordPress Nestin theme < 1.2.6 - PHP Object Injection …	BoldThemes	Nestin	2026-02-20T15:46:33.328Z	2026-02-20T15:46:33.328Z
CVE-2025-67995	N/A	WordPress PatioTime theme < 2.1 - PHP Object Injection…	LoftOcean	PatioTime	2026-02-20T15:46:33.136Z	2026-02-20T15:46:33.136Z
CVE-2025-67994	N/A	WordPress YayCurrency plugin <= 3.3 - Arbitrary Conten…	YayCommerce	YayCurrency	2026-02-20T15:46:32.934Z	2026-02-20T15:46:32.934Z
CVE-2025-67993	N/A	WordPress Atarim plugin <= 4.2.1 - Broken Access Contr…	Vito Peleg	Atarim	2026-02-20T15:46:32.736Z	2026-02-20T15:46:32.736Z
CVE-2025-67992	N/A	WordPress PatioTime theme < 2.1 - Local File Inclusion…	LoftOcean	PatioTime	2026-02-20T15:46:32.513Z	2026-02-20T15:46:32.513Z
CVE-2025-67991	N/A	WordPress User Extra Fields plugin <= 16.8 - Cross Sit…	vanquish	User Extra Fields	2026-02-20T15:46:32.315Z	2026-02-20T15:46:32.315Z
CVE-2025-67990	N/A	WordPress GMap Targeting plugin <= 1.1.7 - Cross Site …	RealMag777	GMap Targeting	2026-02-20T15:46:32.120Z	2026-02-20T15:46:32.120Z
CVE-2025-67988	N/A	WordPress CozyStay theme < 1.9.1 - Local File Inclusio…	LoftOcean	CozyStay	2026-02-20T15:46:31.946Z	2026-02-20T15:46:31.946Z
CVE-2025-67987	N/A	WordPress Quiz And Survey Master plugin <= 10.3.1 - SQ…	ExpressTech Systems	Quiz And Survey Master	2026-02-20T15:46:31.764Z	2026-02-20T15:46:31.764Z
CVE-2025-67984	N/A	WordPress NPS computy plugin <= 2.8.2 - Cross Site Scr…	calliko	NPS computy	2026-02-20T15:46:31.564Z	2026-02-20T15:46:31.564Z

ID	Description	Published	Updated
fkie_cve-2025-68050	Missing Authorization vulnerability in Leadpages Leadpages leadpages allows Exploiting Incorrectly …	2026-02-20T16:22:08.877	2026-02-20T16:55:22.933
fkie_cve-2025-68048	Missing Authorization vulnerability in XLPlugins NextMove Lite woo-thank-you-page-nextmove-lite all…	2026-02-20T16:22:08.750	2026-02-20T16:55:22.933
fkie_cve-2025-68043	Missing Authorization vulnerability in LottieFiles LottieFiles lottiefiles allows Exploiting Incorr…	2026-02-20T16:22:08.620	2026-02-20T16:55:22.933
fkie_cve-2025-68042	Missing Authorization vulnerability in Travelpayouts Travelpayouts travelpayouts allows Exploiting …	2026-02-20T16:22:08.493	2026-02-20T16:55:22.933
fkie_cve-2025-68037	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-20T16:22:08.353	2026-02-20T16:55:22.933
fkie_cve-2025-68032	Missing Authorization vulnerability in Passionate Brains Advanced WC Analytics advance-wc-analytics…	2026-02-20T16:22:08.220	2026-02-20T16:55:22.933
fkie_cve-2025-68031	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-20T16:22:08.087	2026-02-20T16:55:22.933
fkie_cve-2025-68028	Missing Authorization vulnerability in Passionate Brains GA4WP: Google Analytics for WordPress ga-f…	2026-02-20T16:22:07.930	2026-02-20T16:55:22.933
fkie_cve-2025-68026	Missing Authorization vulnerability in Niaj Morshed LC Wizard ghl-wizard allows Exploiting Incorrec…	2026-02-20T16:22:07.780	2026-02-20T16:55:22.933
fkie_cve-2025-68025	Missing Authorization vulnerability in Addonify Addonify Floating Cart For WooCommerce addonify-flo…	2026-02-20T16:22:07.657	2026-02-20T16:55:22.933
fkie_cve-2025-68024	Missing Authorization vulnerability in Addonify Addonify – WooCommerce Wishlist addonify-wishlist a…	2026-02-20T16:22:07.527	2026-02-20T16:55:22.933
fkie_cve-2025-68023	Missing Authorization vulnerability in Addonify Addonify – Compare Products For WooCommerce a…	2026-02-20T16:22:07.390	2026-02-20T16:55:22.933
fkie_cve-2025-68022	Missing Authorization vulnerability in soporteblue Plugin BlueX for WooCommerce bluex-for-woocommer…	2026-02-20T16:22:07.247	2026-02-20T16:55:22.933
fkie_cve-2025-68021	Missing Authorization vulnerability in ConveyThis ConveyThis conveythis-translate allows Exploiting…	2026-02-20T16:22:07.110	2026-02-20T16:55:22.933
fkie_cve-2025-68005	Missing Authorization vulnerability in themewant Easy Hotel Booking easy-hotel allows Exploiting In…	2026-02-20T16:22:06.973	2026-02-20T16:55:22.933
fkie_cve-2025-68002	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 100…	2026-02-20T16:22:06.530	2026-02-20T16:55:22.933
fkie_cve-2025-68000	Missing Authorization vulnerability in PickPlugins Testimonial Slider testimonial allows Exploiting…	2026-02-20T16:22:06.363	2026-02-20T16:55:22.933
fkie_cve-2025-67998	Authentication Bypass Using an Alternate Path or Channel vulnerability in kamleshyadav Miraculous E…	2026-02-20T16:22:06.200	2026-02-20T16:55:22.933
fkie_cve-2025-67997	Deserialization of Untrusted Data vulnerability in BoldThemes Travelicious travelicious allows Obje…	2026-02-20T16:22:06.063	2026-02-20T16:55:22.933
fkie_cve-2025-67996	Deserialization of Untrusted Data vulnerability in BoldThemes Nestin nestin allows Object Injection…	2026-02-20T16:22:05.907	2026-02-20T16:55:22.933
fkie_cve-2025-67995	Deserialization of Untrusted Data vulnerability in LoftOcean PatioTime patiotime allows Object Inje…	2026-02-20T16:22:05.770	2026-02-20T16:55:22.933
fkie_cve-2025-67994	Missing Authorization vulnerability in YayCommerce YayCurrency yaycurrency allows Exploiting Incorr…	2026-02-20T16:22:05.637	2026-02-20T16:55:22.933
fkie_cve-2025-67993	Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Exploit…	2026-02-20T16:22:05.500	2026-02-20T16:55:22.933
fkie_cve-2025-67992	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-02-20T16:22:05.360	2026-02-20T16:55:22.933
fkie_cve-2025-67991	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-20T16:22:05.230	2026-02-20T16:55:22.933
fkie_cve-2025-67990	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-20T16:22:05.100	2026-02-20T16:55:22.933
fkie_cve-2025-67988	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-02-20T16:22:04.970	2026-02-20T16:55:22.933
fkie_cve-2025-67987	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2026-02-20T16:22:04.837	2026-02-20T16:55:22.933
fkie_cve-2025-67984	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-20T16:22:04.710	2026-02-20T16:55:22.933
fkie_cve-2025-67982	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-02-20T16:22:04.580	2026-02-20T16:55:22.933

ID	Severity	Description	Published	Updated
ghsa-8m9g-3hqh-3f45	6.4 (3.1)	The Groups plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'grou…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-8f6v-m94c-843c	4.4 (3.1)	The PostmarkApp Email Integrator plugin for WordPress is vulnerable to Stored Cross-Site Scripting …	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-89v4-vh9p-rj53	6.4 (3.1)	The Advance Block Extend plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the …	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-7v8v-vq7m-6xxj	4.4 (3.1)	The TalkJS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in …	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-7fcp-xw65-jj37	6.4 (3.1)	The Advanced Custom Fields: Font Awesome Field plugin for WordPress is vulnerable to Cross-Site Scr…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-52hj-3g4x-h9g2	10.0 (4.0)	OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a ty…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-2mm4-m5m7-qxvr	4.4 (3.1)	The Tennis Court Bookings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via adm…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-2h7x-xp9w-mxwc	9.8 (3.1)	The s2Member plugin for WordPress is vulnerable to privilege escalation via account takeover in all…	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-27f4-925x-grx7	9.8 (3.1)	The Prodigy Commerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up …	2026-02-19T18:31:50Z	2026-02-19T18:31:50Z
ghsa-xwqg-rc23-pwjj	7.2 (3.1)	The CTX Feed – WooCommerce Product Feed Manager plugin for WordPress is vulnerable to unauthorized …	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-xf2h-44c3-m634	6.4 (3.1)	The Drift theme for WordPress is vulnerable to Stored Cross-Site Scripting via the post title in al…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-x7xv-7m65-qgq2	7.5 (3.1)	The GDPR Cookie Consent plugin for WordPress is vulnerable to unauthorized access of data due to a …	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-x5m6-cw78-7xrw	6.4 (3.1)	The StatCounter – Free Real Time Visitor Stats plugin for WordPress is vulnerable to Stored Cross-S…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-w64w-h2r9-c284	6.4 (3.1)	The Smartsupp – live chat, AI shopping assistant and chatbots plugin for WordPress is vulnerable to…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-w3jh-c422-596p	8.8 (3.1)	The NewsBlogger theme for WordPress is vulnerable to Cross-Site Request Forgery in versions 0.2.5.6…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-vrhw-wccx-mc8w	6.4 (3.1)	The Easy Table of Contents plugin for WordPress is vulnerable to Stored Cross-Site Scripting via th…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-vjww-2j24-c357	9.8 (3.1)	The Lizza LMS Pro plugin for WordPress is vulnerable to Privilege Escalation in all versions up to,…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-qqx4-ccm8-48mc	5.3 (3.1)	The Breadcrumb NavXT plugin for WordPress is vulnerable to authorization bypass through user-contro…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-qc95-pwfh-96qq	6.4 (3.1)	The Printful Integration for WooCommerce plugin for WordPress is vulnerable to Server-Side Request …	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-q54q-h92j-2fm3	6.5 (3.1)	The Aruba HiSpeed Cache plugin for WordPress is vulnerable to unauthorized modification of data due…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-mc3j-rvrg-782p	4.3 (3.1)	The Page Title, Description & Open Graph Updater plugin for WordPress is vulnerable to Cross-Site R…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-m8v5-px35-v2vx	4.3 (3.1)	The Mailchimp List Subscribe Form plugin for WordPress is vulnerable to Cross-Site Request Forgery …	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-j78x-7p3c-fhw7	9.8 (3.1)	The Clasifico Listing plugin for WordPress is vulnerable to privilege escalation in versions up to,…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-gg48-7983-fghq	6.4 (3.1)	The Renden theme for WordPress is vulnerable to Stored Cross-Site Scripting via the post title in a…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-fr28-xgc9-rqcr	6.1 (3.1)	The iXML – Google XML sitemap generator plugin for WordPress is vulnerable to Reflected Cross-Site …	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-fqr3-6hfc-hrf6	5.3 (3.1)	The Popup Builder – Create highly converting, mobile friendly marketing popups. plugin for WordPres…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-f54r-2cjp-2jhw	6.4 (3.1)	The Album and Image Gallery plus Lightbox plugin for WordPress is vulnerable to Stored Cross-Site S…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-cq95-5r52-wxw4	5.3 (3.1)	The Checkout Field Manager (Checkout Manager) for WooCommerce plugin for WordPress is vulnerable to…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-c2c2-q654-5c4f	4.3 (3.1)	The Shopire theme for WordPress is vulnerable to unauthorized modification of data due to a missing…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z
ghsa-9w3m-jf2g-m8qm	6.4 (3.1)	The Apollo13 Framework Extensions plugin for WordPress is vulnerable to Stored Cross-Site Scripting…	2026-02-19T18:31:49Z	2026-02-19T18:31:49Z

ID	Description	Package	Published	Updated
pysec-2023-103	Apache Airflow, versions before 2.6.3, is affected by a vulnerability that allows an unau…	apache-airflow	2023-07-12T10:15:00+00:00	2023-07-12T12:59:56.564522+00:00
pysec-2023-100	In Django 3.2 before 3.2.20, 4 before 4.1.10, and 4.2 before 4.2.3, EmailValidator and UR…	django	2023-07-03T13:15:00+00:00	2023-07-11T16:37:11.407533+00:00
pysec-2023-99	A dependency confusion in pipreqs v0.3.0 to v0.4.11 allows attackers to execute arbitrary…	pipreqs	2023-06-30T20:15:00+00:00	2023-07-10T18:33:06.804092+00:00
pysec-2023-97	easy-parse v0.1.1 was discovered to contain a XML External Entity Injection (XXE) vulnera…	easy-parse	2023-06-29T21:15:00+00:00	2023-07-07T02:41:36.549732+00:00
pysec-2023-96	requests-xml v0.2.3 was discovered to contain an XML External Entity Injection (XXE) vuln…	requests-xml	2023-06-29T21:15:00+00:00	2023-07-06T22:29:19.818007+00:00
pysec-2023-95	py-xml v1.0 was discovered to contain an XML External Entity Injection (XXE) vulnerabilit…	py-xml	2023-06-29T21:15:00+00:00	2023-07-06T22:29:19.184837+00:00
pysec-2022-43052	Fluture-Node is a FP-style HTTP and streaming utils for Node based on Fluture. Using `fol…	request-util	2022-03-01T21:15:00+00:00	2023-07-03T20:33:00+00:00
pysec-2022-43051	Fluture-Node is a FP-style HTTP and streaming utils for Node based on Fluture. Using `fol…	pyquest	2022-03-01T21:15:00+00:00	2023-07-03T20:33:00+00:00
pysec-2023-94	Flask-AppBuilder is an application development framework, built on top of Flask. Prior to…	flask-appbuilder	2023-06-22T23:15:00+00:00	2023-07-03T20:28:23.811646+00:00
pysec-2023-93	pacparser_find_proxy in Pacparser before 1.4.2 allows JavaScript injection, and possibly …	pacparser	2023-06-30T18:15:00+00:00	2023-06-30T20:25:46.450877+00:00
pysec-2023-73	redis-7.0.10 was discovered to contain a segmentation violation.	redis	2023-05-18T20:15:00Z	2023-06-27T18:49:56.911238Z
pysec-2020-221	A flaw was found in Ansible Base when using the aws_ssm connection plugin as there is no …	ansible	2020-10-05T13:15:00Z	2023-06-22T16:29:43.777510Z
pysec-2023-90	Gradio is an open-source Python library that is used to build machine learning and data s…	gradio	2023-06-08T00:15:00Z	2023-06-21T05:27:13.352872Z
pysec-2023-89	In Apache Airflow, some potentially sensitive values were being shown to the user in cert…	apache-airflow	2023-06-19T09:15:00Z	2023-06-19T10:29:28.607914Z
pysec-2023-88	The Snowflake Connector for Python provides an interface for developing Python applicatio…	snowflake-connector-python	2023-06-08T21:15:00Z	2023-06-16T18:28:10.272383Z
pysec-2023-81	A vulnerability classified as problematic was found in MindSpore 2.0.0-alpha/2.0.0-rc1. T…	mindspore	2023-05-30T06:16:00Z	2023-06-16T08:29:55.937187Z
pysec-2023-87	sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL p…	sqlparse	2023-04-18T22:15:00Z	2023-06-14T20:24:17.342510Z
pysec-2023-86	OWSLib is a Python package for client programming with Open Geospatial Consortium (OGC) w…	owslib	2023-03-08T00:15:00Z	2023-06-14T18:28:54.683011Z
pysec-2023-85	Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. A d…	matrix-synapse	2023-06-06T19:15:00Z	2023-06-13T20:24:13.764030Z
pysec-2023-84	Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. In …	matrix-synapse	2023-06-06T19:15:00Z	2023-06-13T18:28:46.812103Z
pysec-2023-83	Directory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.2…	starlette	2023-06-01T02:15:00Z	2023-06-08T05:25:54.818459Z
pysec-2023-82	Django-SES is a drop-in mail backend for Django. The django_ses library implements a mail…	django-ses	2023-05-26T21:15:00Z	2023-06-06T20:23:42.892470Z
pysec-2023-80	Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. In contract…	vyper	2023-05-19T20:15:00Z	2023-06-05T01:13:03.140034Z
pysec-2023-79	Vyper is a Pythonic smart contract language for the Ethereum virtual machine. Prior to ve…	vyper	2023-05-11T22:15:00Z	2023-06-05T01:13:03.051477Z
pysec-2023-78	Vyper is a Pythonic smart contract language for the Ethereum virtual machine. Prior to ve…	vyper	2023-05-11T21:15:00Z	2023-06-05T01:13:02.949990Z
pysec-2023-77	Vyper is a Pythonic smart contract language for the Ethereum virtual machine. Prior to ve…	vyper	2023-05-11T21:15:00Z	2023-06-05T01:13:02.500642Z
pysec-2023-76	Vyper is a pythonic smart contract language for the EVM. The storage allocator does not g…	vyper	2023-05-08T17:15:00Z	2023-06-05T01:13:02.407312Z
pysec-2023-75	Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthe…	tornado	2023-05-25T10:15:00Z	2023-06-05T01:13:01.694311Z
pysec-2023-74	Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authori…	requests	2023-05-26T18:15:00Z	2023-06-05T01:13:00.534973Z
pysec-2023-46	redis-py through 4.5.3 leaves a connection open after canceling an async Redis command at…	redis	2023-03-26T19:15:00Z	2023-06-05T01:13:00.432606Z

ID	Description	Updated
gsd-2024-33223	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.706662Z
gsd-2024-33222	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.760715Z
gsd-2024-33221	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.715064Z
gsd-2024-33220	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.721987Z
gsd-2024-33219	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.661517Z
gsd-2024-33218	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.711814Z
gsd-2024-33217	Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu…	2024-04-24T05:02:09.720970Z
gsd-2024-33216	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.717949Z
gsd-2024-33215	Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu…	2024-04-24T05:02:09.748476Z
gsd-2024-33214	Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu…	2024-04-24T05:02:09.710943Z
gsd-2024-33213	Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu…	2024-04-24T05:02:09.735466Z
gsd-2024-33212	Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu…	2024-04-24T05:02:09.727129Z
gsd-2024-33211	Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu…	2024-04-24T05:02:09.635754Z
gsd-2024-33210	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.762839Z
gsd-2024-33209	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.700226Z
gsd-2024-33208	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.752907Z
gsd-2024-33207	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.707334Z
gsd-2024-33206	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.742097Z
gsd-2024-33205	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.677776Z
gsd-2024-33204	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.612720Z
gsd-2024-33203	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.612515Z
gsd-2024-33202	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.617718Z
gsd-2024-33201	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.690170Z
gsd-2024-33200	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.713644Z
gsd-2024-33199	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.657538Z
gsd-2024-33198	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.684409Z
gsd-2024-33197	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.664646Z
gsd-2024-33196	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.637713Z
gsd-2024-33195	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.746132Z
gsd-2024-33194	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.603987Z

ID	Description	Published	Updated
mal-2026-527	Malicious code in @santandergroup-uk/edgehome-components (npm)	2026-01-27T08:16:51Z	2026-02-02T05:56:25Z
mal-2026-526	Malicious code in @row-components/pricing-embedded-sui (npm)	2026-01-27T08:01:02Z	2026-02-02T05:56:25Z
mal-2026-519	Malicious code in @afg-ikea/ikea-modals (npm)	2026-01-27T02:11:41Z	2026-02-02T05:56:25Z
mal-2026-518	Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)	2026-01-27T02:11:40Z	2026-02-02T05:56:25Z
mal-2026-517	Malicious code in @afg-ikea/ikea-family-registration-module (npm)	2026-01-27T02:11:40Z	2026-02-02T05:56:25Z
mal-2026-509	Malicious code in @sommos/create-program-template-form-data (npm)	2026-01-26T18:20:46Z	2026-02-02T05:56:25Z
MAL-2026-578	Malicious code in @pukpuk1/somsodamsd (npm)	2026-01-28T13:59:24Z	2026-02-02T05:56:25Z
MAL-2026-563	Malicious code in @nayzak51/primebeem-db (npm)	2026-01-28T07:27:26Z	2026-02-02T05:56:25Z
MAL-2026-528	Malicious code in @shije/new-qs (npm)	2026-01-27T07:55:42Z	2026-02-02T05:56:25Z
MAL-2026-527	Malicious code in @santandergroup-uk/edgehome-components (npm)	2026-01-27T08:16:51Z	2026-02-02T05:56:25Z
MAL-2026-526	Malicious code in @row-components/pricing-embedded-sui (npm)	2026-01-27T08:01:02Z	2026-02-02T05:56:25Z
MAL-2026-519	Malicious code in @afg-ikea/ikea-modals (npm)	2026-01-27T02:11:41Z	2026-02-02T05:56:25Z
MAL-2026-518	Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)	2026-01-27T02:11:40Z	2026-02-02T05:56:25Z
MAL-2026-517	Malicious code in @afg-ikea/ikea-family-registration-module (npm)	2026-01-27T02:11:40Z	2026-02-02T05:56:25Z
MAL-2026-509	Malicious code in @sommos/create-program-template-form-data (npm)	2026-01-26T18:20:46Z	2026-02-02T05:56:25Z
mal-2026-635	Malicious code in finnairshop (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-633	Malicious code in cowsay-fancy (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-632	Malicious code in cowsay-deluxe (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-631	Malicious code in cowsay-caps (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-630	Malicious code in cowsay-allcaps (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-629	Malicious code in client-desktop-web-installer (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
MAL-2026-635	Malicious code in finnairshop (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
MAL-2026-633	Malicious code in cowsay-fancy (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
MAL-2026-632	Malicious code in cowsay-deluxe (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
MAL-2026-631	Malicious code in cowsay-caps (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
MAL-2026-630	Malicious code in cowsay-allcaps (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
MAL-2026-629	Malicious code in client-desktop-web-installer (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-627	Malicious code in theanswre (PyPI)	2026-01-29T13:57:51Z	2026-02-02T01:40:48Z
MAL-2026-627	Malicious code in theanswre (PyPI)	2026-01-29T13:57:51Z	2026-02-02T01:40:48Z
mal-2026-624	Malicious code in hultine (PyPI)	2026-02-01T21:00:48Z	2026-02-01T21:00:48Z

ID	Description	Published	Updated
wid-sec-w-2025-0320	Apache Cassandra: Schwachstelle ermöglicht Privilegieneskalation	2025-02-11T23:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2024-1474	Red Hat OpenShift Container Platform: Mehrere Schwachstellen	2024-06-27T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2023-3019	HAProxy Enterprise: Schwachstelle ermöglicht Offenlegung von Informationen	2023-11-28T23:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1902	D-LINK Router DI-7400G+ und DIR-650IN: Mehrere Schwachstellen	2025-08-25T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-1899	OpenText Enterprise Security Manager: Schwachstelle ermöglicht Offenlegung von Informationen	2025-08-24T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-1897	vim: Mehrere Schwachstellen ermöglichen Denial of Service	2025-08-24T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-1624	Arista EOS: Mehrere Schwachstellen	2025-07-22T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-1468	Apache Tomcat: Mehrere Schwachstellen ermöglichen Denial of Service	2025-07-07T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-0815	Oracle Java SE: Mehrere Schwachstellen	2025-04-15T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-0607	WebKitGTK and WPE WebKit: Mehrere Schwachstellen	2025-03-20T23:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-0401	ffmpeg: Mehrere Schwachstellen	2025-02-18T23:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-0295	ProFTPD: Schwachstelle ermöglicht Denial of Service	2025-02-06T23:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-0115	ffmpeg: Schwachstelle ermöglicht Offenlegung von Informationen	2025-01-16T23:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2024-3572	ffmpeg: Schwachstelle ermöglicht Denial of Service	2024-12-01T23:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2024-3564	ProFTPD: Schwachstelle ermöglicht Privilegieneskalation	2024-11-28T23:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2024-3493	Red Hat Enterprise Linux (pam): Schwachstelle ermöglicht Offenlegung von Informationen	2024-11-18T23:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2024-3443	Citrix Systems Virtual Apps and Desktops: Mehrere Schwachstellen	2024-11-12T23:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2024-3386	libxml2: Schwachstelle ermöglicht Denial of Service	2016-03-21T23:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2024-1578	RADIUS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2024-07-09T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2024-0939	ffmpeg: Mehrere Schwachstellen	2024-04-21T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2024-0923	ffmpeg: Mehrere Schwachstellen ermöglichen Denial of Service	2024-04-17T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2023-1632	ImageMagick: Schwachstelle ermöglicht Denial of Service	2023-07-02T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-1895	Bouncy Castle: Mehrere Schwachstellen	2025-08-21T22:00:00.000+00:00	2025-08-24T22:00:00.000+00:00
wid-sec-w-2025-1888	IBM QRadar SIEM: Mehrere Schwachstellen	2025-08-21T22:00:00.000+00:00	2025-08-24T22:00:00.000+00:00
wid-sec-w-2025-1864	Google Chrome und Microsoft Edge: Schwachstelle ermöglicht Codeausführung	2025-08-19T22:00:00.000+00:00	2025-08-24T22:00:00.000+00:00
wid-sec-w-2025-1735	Ubiquiti UniFi: Mehrere Schwachstellen	2025-08-06T22:00:00.000+00:00	2025-08-24T22:00:00.000+00:00
wid-sec-w-2025-1717	libTIFF (tiff2ps): Schwachstelle ermöglicht Denial of Service	2025-08-04T22:00:00.000+00:00	2025-08-24T22:00:00.000+00:00
wid-sec-w-2025-1700	libTIFF: Schwachstelle ermöglicht einen Denial of Service	2025-08-03T22:00:00.000+00:00	2025-08-24T22:00:00.000+00:00
wid-sec-w-2025-1644	QEMU: Mehrere Schwachstellen ermöglichen Manipulation von Dateien	2025-07-24T22:00:00.000+00:00	2025-08-24T22:00:00.000+00:00
wid-sec-w-2025-1614	PowerDNS: Schwachstelle ermöglicht Denial of Service	2025-07-21T22:00:00.000+00:00	2025-08-24T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated
ssa-478893	SSA-478893: TightVNC Vulnerabilities in Industrial Products (Revoked)	2020-12-08T00:00:00Z	2021-05-11T00:00:00Z
ssa-116379	SSA-116379: Denial-of-Service Vulnerability in OSPF Packet Handling of SCALANCE XM-400 and XR-500 Devices	2021-05-11T00:00:00Z	2021-05-11T00:00:00Z
ssa-875726	SSA-875726: Privilege Escalation Vulnerability in Mendix	2021-04-14T00:00:00Z	2021-04-14T00:00:00Z
ssa-979775	SSA-979775: Stack Overflow Vulnerability in SCALANCE and RUGGEDCOM Devices	2021-03-09T00:00:00Z	2021-04-13T00:00:00Z
ssa-853866	SSA-853866: User Credentials Disclosure Vulnerability in Siveillance Video Open Network Bridge (ONVIF)	2021-04-13T00:00:00Z	2021-04-13T00:00:00Z
ssa-788287	SSA-788287: Disclosure of Private Data	2021-04-13T00:00:00Z	2021-04-13T00:00:00Z
ssa-715184	SSA-715184: Multiple File Parsing Vulnerabilities in Solid Edge	2021-03-09T00:00:00Z	2021-04-13T00:00:00Z
ssa-689942	SSA-689942: Denial-of-Service and DLL Hijacking Vulnerabilities in Multiple SIMATIC Software Products	2020-06-09T00:00:00Z	2021-04-13T00:00:00Z
ssa-591405	SSA-591405: Web Vulnerabilities in SCALANCE S-600 Family	2020-02-11T00:00:00Z	2021-04-13T00:00:00Z
ssa-541017	SSA-541017: Embedded TCP/IP Stack Vulnerabilities (AMNESIA:33) in SIRIUS 3RW5 Modbus TCP and SENTRON PAC / 3VA Devices	2020-12-08T00:00:00Z	2021-04-13T00:00:00Z
ssa-296266	SSA-296266: Denial-of-Service Vulnerability in SCALANCE and RUGGEDCOM Devices	2021-03-09T00:00:00Z	2021-04-13T00:00:00Z
ssa-292794	SSA-292794: Multiple Denial-of-Service Vulnerabilities in SINEMA Remote Connect Server	2021-04-13T00:00:00Z	2021-04-13T00:00:00Z
ssa-163226	SSA-163226: CELL File Parsing Vulnerability in Tecnomatix RobotExpert	2021-04-13T00:00:00Z	2021-04-13T00:00:00Z

ID	Description	Published	Updated
rhsa-2024:0121	Red Hat Security Advisory: container-tools:4.0 security update	2024-01-10T11:36:02+00:00	2026-02-21T13:05:47+00:00
rhsa-2023:7766	Red Hat Security Advisory: containernetworking-plugins security update	2023-12-12T17:25:07+00:00	2026-02-21T13:05:45+00:00
rhsa-2023:7765	Red Hat Security Advisory: podman security update	2023-12-12T17:24:49+00:00	2026-02-21T13:05:45+00:00
rhsa-2023:7764	Red Hat Security Advisory: buildah security update	2023-12-12T17:29:16+00:00	2026-02-21T13:05:45+00:00
rhsa-2023:7763	Red Hat Security Advisory: runc security update	2023-12-12T17:25:05+00:00	2026-02-21T13:05:45+00:00
rhsa-2023:7762	Red Hat Security Advisory: skopeo security update	2023-12-12T17:30:03+00:00	2026-02-21T13:05:44+00:00
rhsa-2023:7517	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update	2023-11-27T19:31:55+00:00	2026-02-21T13:05:37+00:00
rhsa-2023:5008	Red Hat Security Advisory: Red Hat build of MicroShift 4.14.0 security update	2023-10-31T14:23:30+00:00	2026-02-21T13:04:32+00:00
rhba-2023:7648	Red Hat Bug Fix Advisory: MTV 2.5.3 Images	2023-12-05T06:56:16+00:00	2026-02-21T13:04:17+00:00
rhba-2023:6928	Red Hat Bug Fix Advisory: go-toolset:rhel8 bug fix and enhancement update	2023-11-14T16:04:55+00:00	2026-02-21T13:04:17+00:00
rhba-2023:6364	Red Hat Bug Fix Advisory: golang and delve bug fix and enhancement update	2023-11-07T08:50:26+00:00	2026-02-21T13:04:16+00:00
rhsa-2025:9986	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update	2025-06-30T21:23:51+00:00	2026-02-21T07:36:16+00:00
rhsa-2025:9975	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update	2025-06-30T17:50:04+00:00	2026-02-21T07:36:16+00:00
rhsa-2025:9845	Red Hat Security Advisory: weldr-client security update	2025-06-26T16:57:30+00:00	2026-02-21T07:36:14+00:00
rhsa-2025:9844	Red Hat Security Advisory: osbuild-composer security update	2025-06-26T16:57:43+00:00	2026-02-21T07:36:14+00:00
rhsa-2025:9756	Red Hat Security Advisory: opentelemetry-collector security update	2025-06-26T07:53:59+00:00	2026-02-21T07:36:12+00:00
rhsa-2025:9715	Red Hat Security Advisory: osbuild-composer security update	2025-06-26T00:19:58+00:00	2026-02-21T07:36:12+00:00
rhsa-2025:9714	Red Hat Security Advisory: weldr-client security update	2025-06-26T00:29:48+00:00	2026-02-21T07:36:11+00:00
rhsa-2025:9713	Red Hat Security Advisory: osbuild-composer security update	2025-06-26T00:25:48+00:00	2026-02-21T07:36:11+00:00
rhsa-2025:9712	Red Hat Security Advisory: weldr-client security update	2025-06-26T00:30:53+00:00	2026-02-21T07:36:10+00:00
rhsa-2025:9711	Red Hat Security Advisory: osbuild-composer security update	2025-06-26T00:23:18+00:00	2026-02-21T07:36:10+00:00
rhsa-2025:9642	Red Hat Security Advisory: osbuild-composer security update	2025-06-25T14:01:42+00:00	2026-02-21T07:36:08+00:00
rhsa-2025:9641	Red Hat Security Advisory: osbuild-composer security update	2025-06-25T14:16:56+00:00	2026-02-21T07:36:08+00:00
rhsa-2025:9635	Red Hat Security Advisory: weldr-client security update	2025-06-25T12:17:36+00:00	2026-02-21T07:36:08+00:00
rhsa-2025:9640	Red Hat Security Advisory: osbuild-composer security update	2025-06-25T14:13:41+00:00	2026-02-21T07:36:07+00:00
rhsa-2025:9639	Red Hat Security Advisory: weldr-client security update	2025-06-25T13:37:57+00:00	2026-02-21T07:36:07+00:00
rhsa-2025:9638	Red Hat Security Advisory: weldr-client security update	2025-06-25T13:57:01+00:00	2026-02-21T07:36:06+00:00
rhsa-2025:9637	Red Hat Security Advisory: weldr-client security update	2025-06-25T13:49:23+00:00	2026-02-21T07:36:05+00:00
rhsa-2025:9634	Red Hat Security Advisory: osbuild-composer security update	2025-06-25T12:20:31+00:00	2026-02-21T07:36:03+00:00
rhsa-2025:9623	Red Hat Security Advisory: osbuild-composer security update	2025-06-25T10:18:36+00:00	2026-02-21T07:36:02+00:00

ID	Description	Published	Updated
icsa-15-244-01	Siemens RUGGEDCOM ROS IP Forwarding Vulnerability	2015-06-04T06:00:00.000000Z	2025-06-06T16:10:32.525653Z
icsa-15-246-03	Moxa Industrial Managed Switch Vulnerabilities	2015-06-06T06:00:00.000000Z	2025-06-06T16:10:26.107916Z
icsa-15-246-02	Schneider Electric Modicon PLC Vulnerabilities	2015-06-06T06:00:00.000000Z	2025-06-06T16:10:13.250913Z
icsa-15-239-01	Moxa SoftCMS Buffer Overflow Vulnerabilities	2015-05-30T06:00:00.000000Z	2025-06-06T16:10:00.281281Z
icsa-15-253-01	Yokogawa Multiple Products Buffer Overflow Vulnerabilities	2015-06-13T06:00:00.000000Z	2025-06-06T16:09:40.885670Z
icsa-15-239-03	Innominate mGuard VPN Vulnerability	2015-05-30T06:00:00.000000Z	2025-06-06T16:09:34.476889Z
icsa-15-181-02a	SMA Solar Technology AG Sunny WebBox Hard-Coded Account Vulnerability	2015-04-02T06:00:00.000000Z	2025-06-06T16:09:27.695836Z
icsa-15-161-01	Hospira Plum A+ and Symbiq Infusion Systems Vulnerabilities	2015-03-13T06:00:00.000000Z	2025-06-06T16:08:42.194031Z
icsa-15-239-02	Siemens SIMATIC S7-1200 CSRF Vulnerability	2015-05-30T06:00:00.000000Z	2025-06-06T16:08:35.760091Z
icsa-15-251-01a	Advantech WebAccess Buffer Overflow Vulnerability	2015-06-11T06:00:00.000000Z	2025-06-06T16:08:29.333916Z
icsa-15-237-01	Endress+Hauser HART Device DTM Vulnerability	2015-05-28T06:00:00.000000Z	2025-06-06T16:08:22.636411Z
icsa-15-041-01	Advantech EKI-1200 Buffer Overflow	2015-11-13T07:00:00.000000Z	2025-06-06T16:08:16.200699Z
icsa-15-125-01b	Hospira LifeCare PCA Infusion System Vulnerabilities	2015-02-05T07:00:00.000000Z	2025-06-06T16:07:30.609417Z
icsa-15-246-01	Cogent DataHub Code Injection Vulnerability	2015-06-06T06:00:00.000000Z	2025-06-06T16:07:24.191912Z
icsa-13-169-02	Siemens WinCC 7.2 Multiple Vulnerabilities	2013-03-21T06:00:00.000000Z	2025-06-06T16:07:03.931759Z
icsa-13-169-03	Siemens COMOS Permissions, Privileges, and Access Controls	2013-03-21T06:00:00.000000Z	2025-06-06T16:06:57.517659Z
icsa-13-169-01	Siemens Scalance X200 IRT Multiple Vulnerabilities	2013-03-21T06:00:00.000000Z	2025-06-06T16:06:44.607249Z
icsa-13-184-01	Alstom Grid S1 Agile Improper Authorization	2013-04-05T06:00:00.000000Z	2025-06-06T16:06:38.167917Z
icsa-13-170-01	GE Proficy HMI/SCADA CIMPLICITY WebView Improper Input Validation	2013-03-22T06:00:00.000000Z	2025-06-06T16:06:31.741308Z
icsa-13-161-01	IOServer DNP3 Improper Input Validation	2013-03-13T06:00:00.000000Z	2025-06-06T16:06:25.315778Z
icsa-13-189-01	QNX Multiple Vulnerabilities	2013-04-10T06:00:00.000000Z	2025-06-06T16:06:12.410332Z
icsa-13-067-01	InduSoft Advantech Studio Directory Traversal	2013-12-10T07:00:00.000000Z	2025-06-06T16:06:05.937479Z
icsa-13-091-01	Wind River VxWorks SSH and Web Server and General Electric D20MX	2013-01-03T07:00:00.000000Z	2025-06-06T16:05:33.422392Z
icsa-13-100-01	Schneider Electric MiCOM S1 Studio Improper Authorization Vulnerability	2013-01-12T07:00:00.000000Z	2025-06-06T16:05:26.967911Z
icsa-13-095-01	Cogent Real-Time Systems Vulnerabilities	2013-01-07T07:00:00.000000Z	2025-06-06T16:05:01.099460Z
icsa-13-079-02	Siemens WinCC 7.0 SP3 Multiple Vulnerabilities	2013-12-22T07:00:00.000000Z	2025-06-06T16:04:22.166710Z
icsa-13-106-01	MatrikonOPC Multiple Product Vulnerabilities	2013-01-18T07:00:00.000000Z	2025-06-06T16:04:09.184522Z
icsa-13-079-01	Schweitzer Engineering Laboratories AcSELerator Improper Authorization Vulnerability	2013-12-22T07:00:00.000000Z	2025-06-06T16:04:02.714778Z
icsa-13-043-01	Schneider Electric Accutech Manager Heap Overflow	2013-11-16T07:00:00.000000Z	2025-06-06T16:03:56.204172Z
icsa-13-018-01	Schneider Electric IGSS Buffer Overflow	2013-10-22T06:00:00.000000Z	2025-06-06T16:03:49.784364Z

ID	Description	Published	Updated
cisco-sa-iox-priv-escalate-Xg8zkyPk	Cisco IOS XE Software IOx Application Hosting Environment Privilege Escalation Vulnerability	2023-03-22T16:00:00+00:00	2023-05-08T15:01:45+00:00
cisco-sa-spa-unauth-upgrade-uqhytww	Cisco SPA112 2-Port Phone Adapters Remote Command Execution Vulnerability	2023-05-03T16:00:00+00:00	2023-05-03T16:00:00+00:00
cisco-sa-spa-unauth-upgrade-UqhyTWW	Cisco SPA112 2-Port Phone Adapters Remote Command Execution Vulnerability	2023-05-03T16:00:00+00:00	2023-05-03T16:00:00+00:00
cisco-sa-ipp-oobwrite-8cmf5r7u	Cisco IP Phone 7800 and 8800 Series Cisco Discovery Protocol Stack Overflow Vulnerability	2022-12-08T16:00:00+00:00	2023-04-27T21:07:18+00:00
cisco-sa-ipp-oobwrite-8cMF5r7U	Cisco IP Phone 7800 and 8800 Series Cisco Discovery Protocol Stack Overflow Vulnerability	2022-12-08T16:00:00+00:00	2023-04-27T21:07:18+00:00
cisco-sa-pcd-xss-jdxpjm7	Cisco Prime Collaboration Deployment Cross-Site Scripting Vulnerability	2023-04-26T16:00:00+00:00	2023-04-26T16:00:00+00:00
cisco-sa-pcd-xss-jDXpjm7	Cisco Prime Collaboration Deployment Cross-Site Scripting Vulnerability	2023-04-26T16:00:00+00:00	2023-04-26T16:00:00+00:00
cisco-sa-cisco-pdng-dos-kmzwey2q	Cisco Packet Data Network Gateway IPsec ICMP Denial of Service Vulnerability	2023-04-05T16:00:00+00:00	2023-04-19T20:31:01+00:00
cisco-sa-cisco-pdng-dos-KmzwEy2Q	Cisco Packet Data Network Gateway IPsec ICMP Denial of Service Vulnerability	2023-04-05T16:00:00+00:00	2023-04-19T20:31:01+00:00
cisco-sa-staros-ssh-privesc-bmwejc3h	Cisco StarOS Software Key-Based SSH Authentication Privilege Escalation Vulnerability	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-staros-ssh-privesc-BmWeJC3h	Cisco StarOS Software Key-Based SSH Authentication Privilege Escalation Vulnerability	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-sdwan-vmanage-wfnqmyhn	Cisco SD-WAN vManage Software Arbitrary File Deletion Vulnerability	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-sdwan-vmanage-wfnqmYhN	Cisco SD-WAN vManage Software Arbitrary File Deletion Vulnerability	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-roomos-file-write-rhkwegkf	Cisco TelePresence Collaboration Endpoint and RoomOS Arbitrary File Write Vulnerabilities	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-roomos-file-write-rHKwegKf	Cisco TelePresence Collaboration Endpoint and RoomOS Arbitrary File Write Vulnerabilities	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-ind-caelfk6v	Cisco Industrial Network Director Vulnerabilities	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-ind-CAeLFk6V	Cisco Industrial Network Director Vulnerabilities	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-cml-auth-bypass-4fucceg5	Cisco Modeling Labs External Authentication Bypass Vulnerability	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-cml-auth-bypass-4fUCCeG5	Cisco Modeling Labs External Authentication Bypass Vulnerability	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-bw-tcp-dos-kedjcxls	Cisco BroadWorks Network Server TCP Denial of Service Vulnerability	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-bw-tcp-dos-KEdJCxLs	Cisco BroadWorks Network Server TCP Denial of Service Vulnerability	2023-04-19T16:00:00+00:00	2023-04-19T16:00:00+00:00
cisco-sa-cisco-pi-epnm-xss-mzshh2j	Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability	2023-03-01T16:00:00+00:00	2023-04-06T15:31:34+00:00
cisco-sa-cisco-pi-epnm-xss-mZShH2J	Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability	2023-03-01T16:00:00+00:00	2023-04-06T15:31:34+00:00
cisco-sa-sb-rv01x_rv32x_rce-nzagwwdd	Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Remote Command Execution Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T20:30:30+00:00
cisco-sa-sb-rv01x_rv32x_rce-nzAGWWDD	Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Remote Command Execution Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T20:30:30+00:00
cisco-sa-wbx-sxss-fupl-64uhbcm5	Cisco Webex Meetings Web UI Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-wbx-sxss-fupl-64uHbcm5	Cisco Webex Meetings Web UI Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-uccx-xss-go9l9xxr	Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-uccx-xss-GO9L9xxr	Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-stealthsmc-rce-sfnbpjcs	Cisco Secure Network Analytics Remote Code Execution Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2020-18780	A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows attackers to cause a denial of service via crafted nasm command.	2023-08-01T00:00:00.000Z	2026-02-18T15:19:29.000Z
msrc_cve-2023-25577	Werkzeug may allow high resource usage when parsing multipart form data with many fields	2023-02-01T00:00:00.000Z	2026-02-18T15:19:14.000Z
msrc_cve-2019-9741	An issue was discovered in net/http in Go 1.11.5. CRLF injection is possible if the attacker controls a url parameter as demonstrated by the second argument to http.NewRequest with \r\n followed by an HTTP header or a Redis command.	2019-03-02T00:00:00.000Z	2026-02-18T15:18:46.000Z
msrc_cve-2023-45230	Buffer Overflow in EDK II Network Package	2024-01-01T08:00:00.000Z	2026-02-18T15:18:30.000Z
msrc_cve-2024-45491	An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).	2024-08-02T00:00:00.000Z	2026-02-18T15:18:26.000Z
msrc_cve-2024-2605	An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.	2024-03-02T08:00:00.000Z	2026-02-18T15:18:11.000Z
msrc_cve-2024-0753	In specific HSTS configurations an attacker could have bypassed HSTS on a subdomain. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.	2024-01-01T08:00:00.000Z	2026-02-18T15:18:06.000Z
msrc_cve-2024-45492	An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX).	2024-08-02T00:00:00.000Z	2026-02-18T15:18:02.000Z
msrc_cve-2021-3115	Go before 1.14.14 and 1.15.x before 1.15.7 on Windows is vulnerable to Command Injection and remote code execution when using the "go get" command to fetch modules that make use of cgo (for example cgo can execute a gcc program from an untrusted download).	2021-01-02T00:00:00.000Z	2026-02-18T15:17:42.000Z
msrc_cve-2024-45490	An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.	2024-08-02T00:00:00.000Z	2026-02-18T15:17:40.000Z
msrc_cve-2024-43788	DOM Clobbering Gadget found in Webpack's AutoPublicPathRuntimeModule that leads to Cross-site Scripting (XSS)	2024-08-02T00:00:00.000Z	2026-02-18T15:17:18.000Z
msrc_cve-2022-31104	Miscompilation of `i8x16.swizzle` and `select` with v128 inputs in Wasmtime	2022-06-02T00:00:00.000Z	2026-02-18T15:17:15.000Z
msrc_cve-2024-21165	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 8.0.37 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).	2024-07-01T07:00:00.000Z	2026-02-18T15:17:12.000Z
msrc_cve-2024-38538	net: bridge: xmit: make sure we have at least eth header len bytes	2024-06-02T07:00:00.000Z	2026-02-18T15:16:57.000Z
msrc_cve-2023-28319	A use after free vulnerability exists in curl <v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails libcurl would free the memory for the fingerprint before it returns an error message containing the (now freed) hash. This flaw risks inserting sensitive heap-based data into the error message that might be shown to users or otherwise get leaked and revealed.	2023-05-01T00:00:00.000Z	2026-02-18T15:16:57.000Z
msrc_cve-2024-43806	`rustix::fs::Dir` iterator with the `linux_raw` backend can cause memory explosion	2024-08-02T00:00:00.000Z	2026-02-18T15:16:51.000Z
msrc_cve-2022-32221	When doing HTTP(S) transfers libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send even when the `CURLOPT_POSTFIELDS` option has been set if the same handle previously was used to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent `POST` request. The problem exists in the logic for a reused handle when it is changed from a PUT to a POST.	2022-12-02T00:00:00.000Z	2026-02-18T15:16:43.000Z
msrc_cve-2023-31670	An issue in wasm2c 1.0.32, wasm2wat 1.0.32, wasm-decompile 1.0.32, and wasm-validate 1.0.32 allows attackers to cause a Denial of Service (DoS) via running a crafted binary.	2023-05-01T00:00:00.000Z	2026-02-18T15:16:28.000Z
msrc_cve-2019-20334	In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 (and stdscan in asm/stdscan.c). This is similar to CVE-2019-6290 and CVE-2019-6291.	2020-01-02T00:00:00.000Z	2026-02-18T15:16:22.000Z
msrc_cve-2024-43889	padata: Fix possible divide-by-0 panic in padata_mt_helper()	2024-08-02T00:00:00.000Z	2026-02-18T15:16:18.000Z
msrc_cve-2023-47627	Request smuggling in aiohttp	2023-11-01T07:00:00.000Z	2026-02-18T15:16:14.000Z
msrc_cve-2024-44934	net: bridge: mcast: wait for previous gc cycles when removing port	2024-08-02T00:00:00.000Z	2026-02-18T15:16:12.000Z
msrc_cve-2024-43908	drm/amdgpu: Fix the null pointer dereference to ras_manager	2024-08-02T00:00:00.000Z	2026-02-18T15:16:04.000Z
msrc_cve-2024-42114	wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values	2024-07-01T07:00:00.000Z	2026-02-18T15:15:57.000Z
msrc_cve-2023-5731	Memory safety bugs present in Firefox 118. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 119.	2023-10-01T00:00:00.000Z	2026-02-18T15:15:54.000Z
msrc_cve-2024-44942	f2fs: fix to do sanity check on F2FS_INLINE_DATA flag in inode during GC	2024-08-02T00:00:00.000Z	2026-02-18T15:15:51.000Z
msrc_cve-2024-43909	drm/amdgpu/pm: Fix the null pointer dereference for smu7	2024-08-02T00:00:00.000Z	2026-02-18T15:15:43.000Z
msrc_cve-2024-44935	sctp: Fix null-ptr-deref in reuseport_add_sock().	2024-08-02T00:00:00.000Z	2026-02-18T15:15:37.000Z
msrc_cve-2024-0745	The WebAudio `OscillatorNode` object was susceptible to a stack buffer overflow. This could have led to a potentially exploitable crash. This vulnerability affects Firefox < 122.	2024-01-01T08:00:00.000Z	2026-02-18T15:15:37.000Z
msrc_cve-2023-32570	VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that can lead to an application crash, related to dav1d_decode_frame_exit.	2023-05-01T00:00:00.000Z	2026-02-18T15:15:32.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated
opensuse-su-2025:15357-1	java-17-openjdk-17.0.16.0-1.1 on GA media	2025-07-18T00:00:00Z	2025-07-18T00:00:00Z
opensuse-su-2025:15356-1	java-11-openjdk-11.0.28.0-1.1 on GA media	2025-07-18T00:00:00Z	2025-07-18T00:00:00Z
opensuse-su-2025:15355-1	cosign-2.5.3-1.1 on GA media	2025-07-18T00:00:00Z	2025-07-18T00:00:00Z
opensuse-su-2025:15354-1	bind-9.20.11-1.1 on GA media	2025-07-18T00:00:00Z	2025-07-18T00:00:00Z
opensuse-su-2025:15353-1	rustup-1.28.2~0-1.1 on GA media	2025-07-17T00:00:00Z	2025-07-17T00:00:00Z
opensuse-su-2025:15352-1	kubelogin-0.2.10-1.1 on GA media	2025-07-17T00:00:00Z	2025-07-17T00:00:00Z
opensuse-su-2025:15351-1	fractal-12.beta+14-1.1 on GA media	2025-07-17T00:00:00Z	2025-07-17T00:00:00Z
opensuse-su-2025:15350-1	chromedriver-138.0.7204.157-1.1 on GA media	2025-07-17T00:00:00Z	2025-07-17T00:00:00Z
opensuse-su-2025:15349-1	ImageMagick-7.1.2.0-1.1 on GA media	2025-07-17T00:00:00Z	2025-07-17T00:00:00Z
opensuse-su-2025:15348-1	FastCGI-2.4.6-1.1 on GA media	2025-07-17T00:00:00Z	2025-07-17T00:00:00Z
opensuse-su-2025:15347-1	apache-commons-lang3-3.18.0-1.1 on GA media	2025-07-16T00:00:00Z	2025-07-16T00:00:00Z
opensuse-su-2025:15346-1	keylime-ima-policy-0.2.7+117-1.1 on GA media	2025-07-15T00:00:00Z	2025-07-15T00:00:00Z
opensuse-su-2025:15345-1	libQt6Concurrent6-6.9.1-2.1 on GA media	2025-07-15T00:00:00Z	2025-07-15T00:00:00Z
opensuse-su-2025:15344-1	mailman3-3.3.10-2.1 on GA media	2025-07-15T00:00:00Z	2025-07-15T00:00:00Z
opensuse-su-2025:15343-1	ggml-devel-5889-1.1 on GA media	2025-07-15T00:00:00Z	2025-07-15T00:00:00Z
opensuse-su-2025:15342-1	xen-4.20.1_02-1.1 on GA media	2025-07-11T00:00:00Z	2025-07-11T00:00:00Z
opensuse-su-2025:15341-1	trivy-0.64.1-1.1 on GA media	2025-07-11T00:00:00Z	2025-07-11T00:00:00Z
opensuse-su-2025:15340-1	php8-8.4.10-1.1 on GA media	2025-07-11T00:00:00Z	2025-07-11T00:00:00Z
opensuse-su-2025:15339-1	liboqs-devel-0.14.0-1.1 on GA media	2025-07-11T00:00:00Z	2025-07-11T00:00:00Z
opensuse-su-2025:15338-1	k9s-0.50.7-2.1 on GA media	2025-07-11T00:00:00Z	2025-07-11T00:00:00Z
opensuse-su-2025:15337-1	git-2.50.1-1.1 on GA media	2025-07-11T00:00:00Z	2025-07-11T00:00:00Z
opensuse-su-2025:15336-1	cmctl-2.3.0-1.1 on GA media	2025-07-11T00:00:00Z	2025-07-11T00:00:00Z
opensuse-su-2025:15335-1	afterburn-5.8.2-3.1 on GA media	2025-07-11T00:00:00Z	2025-07-11T00:00:00Z
opensuse-su-2025:15334-1	libraptor-devel-2.0.16-5.1 on GA media	2025-07-09T00:00:00Z	2025-07-09T00:00:00Z
opensuse-su-2025:15333-1	libmruby3_4_0-3.4.0-1.1 on GA media	2025-07-09T00:00:00Z	2025-07-09T00:00:00Z
opensuse-su-2025:15332-1	avif-tools-1.3.0-3.1 on GA media	2025-07-09T00:00:00Z	2025-07-09T00:00:00Z
opensuse-su-2025:15331-1	helm-3.18.4-1.1 on GA media	2025-07-09T00:00:00Z	2025-07-09T00:00:00Z
opensuse-su-2025:15330-1	go1.25-1.25rc2-1.1 on GA media	2025-07-09T00:00:00Z	2025-07-09T00:00:00Z
opensuse-su-2025:15329-1	go1.24-1.24.5-1.1 on GA media	2025-07-09T00:00:00Z	2025-07-09T00:00:00Z
opensuse-su-2025:15328-1	go1.23-1.23.11-1.1 on GA media	2025-07-09T00:00:00Z	2025-07-09T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
osv-2023-1203	Global-buffer-overflow in dissect_zcl_read_attr_struct	2023-11-23T13:02:42.762508Z	2023-11-23T13:02:42.762762Z
osv-2023-1184	Global-buffer-overflow in dissect_zcl_read_attr_struct	2023-11-20T13:00:42.304213Z	2023-11-20T13:00:42.304481Z
osv-2023-1180	Heap-buffer-overflow in ih264d_sev	2023-11-19T13:01:31.125934Z	2023-11-19T13:01:31.126224Z
osv-2023-1179	Index-out-of-bounds in iaace_calc_sfb_dist	2023-11-18T13:02:51.211821Z	2023-11-18T13:02:51.213081Z
osv-2023-1177	Heap-buffer-overflow in Gfx::ICC::TextDescriptionTagData::from_bytes	2023-11-18T13:01:39.155430Z	2023-11-18T13:01:39.155768Z
osv-2023-1174	Stack-buffer-overflow in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<ch	2023-11-17T13:00:58.541560Z	2023-11-17T13:00:58.541823Z
osv-2023-1173	Heap-buffer-overflow in fill_lines	2023-11-17T13:00:49.902117Z	2023-11-17T13:00:49.902383Z
osv-2023-1172	Heap-buffer-overflow in pcpp::TLVRecordReader<pcpp::TcpOption>::getTLVRecord	2023-11-16T13:03:00.976378Z	2023-11-16T13:03:00.976647Z
osv-2023-1171	Heap-buffer-overflow in pcpp::SomeIpSdLayer::SomeIpSdLayer	2023-11-16T13:02:56.384461Z	2023-11-16T13:02:56.384702Z
osv-2023-1169	Heap-buffer-overflow in epassNUMBER_pkcs15_generate_key	2023-11-16T13:02:37.833543Z	2023-11-16T13:02:37.833956Z
osv-2023-1163	Invalid-free in sc_file_clear_acl_entries	2023-11-15T13:00:41.204460Z	2023-11-15T13:00:41.204717Z
osv-2023-1160	Heap-buffer-overflow in IEC104Stats::processPacket	2023-11-14T13:03:05.864884Z	2023-11-14T13:03:05.865182Z
osv-2023-1154	Heap-buffer-overflow in pcpp::SomeIpSdEntry::SomeIpSdEntry	2023-11-13T13:03:20.948897Z	2023-11-13T13:03:20.949199Z
osv-2023-1153	Heap-buffer-overflow in pcpp::SSLClientHelloMessage::getCipherSuite	2023-11-13T13:03:01.636510Z	2023-11-13T13:03:01.636801Z
osv-2023-1152	Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr	2023-11-13T13:02:00.256484Z	2023-11-13T13:02:00.256878Z
osv-2023-1149	Heap-buffer-overflow in bit_read_fixed	2023-11-13T13:01:37.087461Z	2023-11-13T13:01:37.087873Z
osv-2023-1146	Negative-size-param in pcpp::RawPacket::insertData	2023-11-13T13:00:39.716145Z	2023-11-13T13:00:39.716577Z
osv-2023-1145	Heap-buffer-overflow in pcpp::GREv1Layer::computeCalculateFields	2023-11-13T13:00:35.546722Z	2023-11-13T13:00:35.547021Z
osv-2023-1136	Security exception in org.apache.poi.hssf.record.crypto.Biff8DecryptingStream.isNeverEncryptedRecord	2023-11-11T13:00:42.865311Z	2023-11-11T13:00:42.865622Z
osv-2023-1122	Stack-buffer-overflow in dxf_header_read	2023-11-07T13:01:32.550733Z	2023-11-10T14:16:56.272618Z
osv-2023-1126	Heap-buffer-overflow in iasecc_parse_acls	2023-11-08T13:03:19.402769Z	2023-11-08T13:03:19.403118Z
osv-2023-1124	UNKNOWN READ in cmsIT8GetDataRowColDbl	2023-11-08T13:00:59.655386Z	2023-11-08T13:00:59.655691Z
osv-2023-1119	Segv on unknown address in FunctionCompiler::compileReturn	2023-11-06T13:02:57.494372Z	2023-11-06T13:02:57.494689Z
osv-2023-1117	Heap-buffer-overflow in cmsMLUsetWide	2023-11-05T13:02:43.507558Z	2023-11-05T13:02:43.507897Z
osv-2023-1115	Use-of-uninitialized-value in fp_uninit	2023-11-05T13:01:21.842426Z	2023-11-05T13:01:21.842714Z
osv-2023-1075	Segv on unknown address in cleanup_live_vars	2023-10-27T13:01:43.631205Z	2023-11-04T18:09:50.793423Z
osv-2023-1110	Stack-buffer-overflow in dynapi_set_helper	2023-11-04T13:01:06.700754Z	2023-11-04T13:01:06.701003Z
osv-2023-507	Heap-buffer-overflow in IEC104Stats::processPacket	2023-06-24T14:00:16.342283Z	2023-11-03T14:22:10.838616Z
osv-2023-1104	Heap-buffer-overflow in bit_read_RC	2023-11-03T13:00:39.940872Z	2023-11-03T13:00:39.941107Z
osv-2023-1103	Heap-buffer-overflow in OpenType::be_u32	2023-11-03T13:00:16.931853Z	2023-11-03T13:00:16.932069Z

ID	Description	Published	Updated
rustsec-2021-0060	`aes-soft` has been merged into the `aes` crate	2021-04-29T12:00:00Z	2021-05-04T01:28:43Z
rustsec-2021-0059	`aesni` has been merged into the `aes` crate	2021-04-29T12:00:00Z	2021-05-04T01:28:43Z
rustsec-2021-0062	project abandoned; migrate to the `aes-siv` crate	2021-02-28T12:00:00Z	2021-05-03T19:05:09Z
rustsec-2020-0147	rulinalg is unmaintained, use nalgebra instead	2020-02-11T12:00:00Z	2021-03-04T13:58:02Z
rustsec-2021-0034	office is unmaintained, use calamine instead	2021-02-04T12:00:00Z	2021-03-03T18:06:07Z
rustsec-2021-0025	crate has been renamed to `qjsonrpc`	2021-02-15T12:00:00Z	2021-02-15T16:43:30Z
rustsec-2021-0024	crate has been renamed to `sn_api`	2021-02-15T12:00:00Z	2021-02-15T16:43:30Z
rustsec-2020-0144	lzw is unmaintained	2020-02-10T12:00:00Z	2021-02-10T18:27:15Z
rustsec-2020-0109	stderr is unmaintained; use eprintln instead	2020-12-22T12:00:00Z	2021-01-20T19:29:04Z
rustsec-2021-0002	interfaces2 is unmaintained, use interfaces instead	2021-01-04T12:00:00Z	2021-01-06T16:07:19Z
rustsec-2020-0086	crate has been renamed to `sn_client`	2020-12-07T12:00:00Z	2020-12-07T17:22:02Z
rustsec-2020-0085	crate has been renamed to `sn_node`	2020-12-07T12:00:00Z	2020-12-07T17:22:02Z
rustsec-2020-0084	crate has been superseded by `sn_client`	2020-12-07T12:00:00Z	2020-12-07T17:22:02Z
rustsec-2020-0083	crate has been superseded by `sn_client`	2020-12-07T12:00:00Z	2020-12-07T17:22:02Z
rustsec-2020-0076	crate has been renamed to `sn_routing`	2020-11-02T12:00:00Z	2020-12-02T17:59:27Z
rustsec-2020-0067	crate has been renamed to `qp2p`	2020-11-02T12:00:00Z	2020-11-02T14:50:19Z
rustsec-2020-0066	crate has been renamed to `sn_bindgen`	2020-11-02T12:00:00Z	2020-11-02T14:48:54Z
rustsec-2020-0065	crate has been renamed to `sn_fake_clock`	2020-11-02T12:00:00Z	2020-11-02T14:46:33Z
rustsec-2020-0064	crate has been renamed to `sn_ffi_utils`	2020-11-02T12:00:00Z	2020-11-02T14:45:15Z
rustsec-2020-0063	crate has been renamed to `safe-nd`	2020-11-02T12:00:00Z	2020-11-02T14:43:36Z
rustsec-2020-0058	crate has been renamed to `cipher`	2020-10-15T12:00:00Z	2020-10-25T19:14:03Z
rustsec-2020-0057	crate has been renamed to `cipher`	2020-10-15T12:00:00Z	2020-10-25T19:05:32Z
rustsec-2020-0056	stdweb is unmaintained	2020-05-04T12:00:00Z	2020-10-25T18:57:46Z
rustsec-2020-0051	Obsolete versions of the `rustsec` crate do not support the new V3 advisory format	2020-10-01T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2020-0020	`stb_truetype` crate has been deprecated; use `ttf-parser` instead	2020-04-18T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2020-0018	crate has been renamed to `block-cipher`	2020-05-26T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2020-0016	`net2` crate has been deprecated; use `socket2` instead	2020-05-01T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2020-0010	tiberius is unmaintained	2020-02-28T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2020-0003	rust_sodium is unmaintained; switch to a modern alternative	2020-01-20T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2019-0032	crust repo has been archived; use libp2p instead	2019-11-21T12:00:00Z	2020-10-02T01:29:11Z

ID	Description	Published	Updated
bit-gitlab-2025-10871	Missing Authorization in GitLab	2025-10-01T15:11:02.199Z	2025-10-01T15:14:38.852Z
bit-gitlab-2025-10868	Business Logic Errors in GitLab	2025-10-01T15:11:00.230Z	2025-10-01T15:14:38.852Z
bit-gitlab-2025-10867	Allocation of Resources Without Limits or Throttling in GitLab	2025-10-01T15:10:58.294Z	2025-10-01T15:14:38.852Z
bit-gitlab-2025-10858	Allocation of Resources Without Limits or Throttling in GitLab	2025-10-01T15:10:56.334Z	2025-10-01T15:14:38.852Z
bit-elk-2025-25012	Kibana Open Redirect	2025-06-30T14:39:25.656Z	2025-10-01T15:14:38.852Z
bit-elk-2024-43707	Kibana exposure of sensitive information to an unauthorized actor	2025-01-27T07:10:02.513Z	2025-10-01T15:14:38.852Z
bit-mongodb-2025-6707	Race condition in privilege cache invalidation cycle	2025-09-16T08:47:32.697Z	2025-09-27T09:09:19.773Z
bit-valkey-2025-46686		2025-09-25T08:53:41.270Z	2025-09-25T09:09:38.625Z
bit-mongodb-2025-3085	MongoDB Server running on Linux may allow unexpected connections where intermediate certificates are revoked	2025-09-25T08:47:27.812Z	2025-09-25T09:09:38.625Z
bit-mongodb-2025-3084	MongoDB Server may crash due to improper validation of explain command	2025-09-25T08:47:26.320Z	2025-09-25T09:09:38.625Z
bit-mlflow-2025-52967		2025-09-25T08:47:37.376Z	2025-09-25T09:09:38.625Z
bit-keydb-2025-46686		2025-09-25T08:44:35.725Z	2025-09-25T09:09:38.625Z
bit-golang-2025-47910	CrossOriginProtection insecure bypass patterns not limited to exact matches in net/http	2025-09-24T08:48:08.127Z	2025-09-25T09:09:38.625Z
bit-mongodb-2025-3083	Malformed MongoDB wire protocol messages may cause mongos to crash	2025-09-23T08:46:32.630Z	2025-09-23T09:10:44.834Z
bit-mongodb-2025-3082	User may override a view's collation and gain unauthorized access to underlying data	2025-09-23T08:46:30.283Z	2025-09-23T09:10:44.834Z
bit-mongodb-2025-10059	MongoDB Server router will crash when incorrect lsid is set on a sharded query	2025-09-23T08:46:23.470Z	2025-09-23T09:10:44.834Z
bit-mongodb-2024-8654	MongoDB Server may access non-initialized region of memory leading to unexpected behaviour	2025-09-23T08:46:18.972Z	2025-09-23T09:10:44.834Z
bit-mongodb-2024-3372	MongoDB Server may have unexpected application behaviour due to invalid BSON	2025-09-23T08:46:07.044Z	2025-09-23T09:10:44.834Z
bit-mongodb-2025-10060	MongoDB may be susceptible to Invariant Failure in Transactions due Upsert Operation	2025-09-19T09:58:16.816Z	2025-09-19T10:21:21.758Z
bit-envoy-2025-54588	Envoy: Race condition in Dynamic Forward Proxy leads to use-after-free and segmentation faults	2025-09-04T08:40:05.078Z	2025-09-17T15:49:32.815Z
bit-temporal-2023-3485	Insecure Default Authorization in Temporal Server	2025-09-16T11:52:55.067Z	2025-09-16T12:10:06.830Z
bit-prestashop-2024-36626		2025-09-16T08:51:49.628Z	2025-09-16T09:10:21.105Z
bit-mongodb-2025-6710	Pre-authentication Denial of Service Stack Overflow Vulnerability in JSON Parsing via Excessive Recursion in MongoDB	2025-09-16T08:47:35.944Z	2025-09-16T09:10:21.105Z
bit-mongodb-2025-6709	Pre-Authentication Denial of Service Vulnerability in MongoDB Server's OIDC Authentication	2025-09-16T08:47:34.334Z	2025-09-16T09:10:21.105Z
bit-mongodb-2025-6706	Running certain aggregation operations with the SBE engine may lead to unexpected behavior on MongoDB Server	2025-09-16T08:47:30.842Z	2025-09-16T09:10:21.105Z
bit-gitlab-2025-7337	Allocation of Resources Without Limits or Throttling in GitLab	2025-09-16T09:08:52.685Z	2025-09-16T09:10:21.105Z
bit-gitlab-2025-6769	Exposure of Sensitive System Information to an Unauthorized Control Sphere in GitLab	2025-09-16T09:08:47.176Z	2025-09-16T09:10:21.105Z
bit-gitlab-2025-2256	Improper Validation of Specified Quantity in Input in GitLab	2025-09-16T09:07:42.625Z	2025-09-16T09:10:21.105Z
bit-gitlab-2025-1250	Allocation of Resources Without Limits or Throttling in GitLab	2025-09-16T09:07:13.477Z	2025-09-16T09:10:21.105Z
bit-gitlab-2025-10094	Improper Validation of Specified Quantity in Input in GitLab	2025-09-16T09:07:02.268Z	2025-09-16T09:10:21.105Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201804-1182	An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be…	2024-07-23T20:25:18.221000Z
var-202207-0588	The llhttp parser <v14.20.1, <v16.17.1 and <v18.9.1 in the http module in Node.js does no…	2024-07-23T20:25:16.794000Z
var-200809-0184	Race condition in Login Window in Apple Mac OS X 10.5 through 10.5.4, when a blank-passwo…	2024-07-23T20:25:15.218000Z
var-201210-0269	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T20:25:11.811000Z
var-201404-0374	Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 an…	2024-07-23T20:25:08.563000Z
var-201704-1034	Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.…	2024-07-23T20:25:07.884000Z
var-201912-1848	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T20:24:44.163000Z
var-201210-0280	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T20:24:43.164000Z
var-201912-0589	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T20:24:42.912000Z
var-200611-0487	com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8, and possibly other versions,…	2024-07-23T20:24:10.857000Z
var-202006-1807	Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)]…	2024-07-23T20:23:24.085000Z
var-201306-0242	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T20:22:47.590000Z
var-202101-0220	A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded qu…	2024-07-23T20:21:44.763000Z
var-202105-1451	An issue was discovered in Linux: KVM through Improper handling of VM_IO\|VM_PFNMAP vmas i…	2024-07-23T20:21:39.668000Z
var-201504-0479	The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle …	2024-07-23T20:21:39.248000Z
var-200904-0817	Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS …	2024-07-23T20:21:39.155000Z
var-200810-0394	Unspecified vulnerability in Script Editor in Mac OS X 10.4.11 and 10.5.5 allows local us…	2024-07-23T20:21:38.100000Z
var-202105-1469	A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol(…	2024-07-23T20:21:37.217000Z
var-202006-1640	A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 a…	2024-07-23T20:21:37.869000Z
var-201203-0171	Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google…	2024-07-23T20:21:34.716000Z
var-200609-1013	Stack-based buffer overflow in the Apple Type Services (ATS) server in Mac OS 10.4.8 and …	2024-07-23T20:21:33.528000Z
var-201410-1418	The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeter…	2024-07-23T20:21:29.859000Z
var-201010-0168	Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache…	2024-07-23T20:20:56.693000Z
var-201707-1197	An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari …	2024-07-23T20:20:19.517000Z
var-200810-0643	Integer overflow in the netsnmp_create_subtree_cache function in agent/snmp_agent.c in ne…	2024-07-23T20:20:17.446000Z
var-201808-1002	Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo…	2024-07-23T20:20:15.857000Z
var-201506-0210	The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 befo…	2024-07-23T20:20:15.383000Z
var-202006-0241	Incomplete cleanup from specific special register read operations in some Intel(R) Proces…	2024-07-23T20:20:14.740000Z
var-201110-0392	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK…	2024-07-23T20:20:14.628000Z
var-201306-0226	mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 wri…	2024-07-23T20:20:13.633000Z

ID	Description	Published	Updated
jvndb-2021-000078	The installers of multiple Sony products may insecurely load Dynamic Link Libraries	2021-08-24T14:30+09:00	2021-08-24T14:30+09:00
jvndb-2021-002282	Multiple vulnerabilities in Navigate CMS	2021-08-20T14:25+09:00	2021-08-20T14:25+09:00
jvndb-2021-002279	Incorrect permission assignment vulnerability in multiple Trend Micro Endpoint security products for enterprises	2021-08-19T15:01+09:00	2021-08-19T15:01+09:00
jvndb-2021-000077	Huawei EchoLife HG8045Q vulnerable to OS command injection	2021-08-17T14:24+09:00	2021-08-17T14:24+09:00
jvndb-2021-002273	Multiple vulnerabilities in D-Link router DSL-2750U	2021-08-17T14:09+09:00	2021-08-17T14:09+09:00
jvndb-2021-000076	Plone vulnerable to open redirect	2021-08-12T14:05+09:00	2021-08-12T14:05+09:00
jvndb-2021-000075	WordPress Plugin "Quiz And Survey Master" vulnerable to cross-site scripting	2021-08-10T14:40+09:00	2021-08-10T14:40+09:00
jvndb-2021-002077	Multiple vulnerabilities in multiple Trend Micro Endpoint security products for enterprises	2021-08-04T11:15+09:00	2021-08-04T11:15+09:00
jvndb-2020-000071	Cybozu Garoon vulnerable to improper input validation	2020-11-05T11:43+09:00	2021-08-02T11:08+09:00
jvndb-2020-000087	Management software for NEC Storage disk array system vulnerable to improper server certificate verification	2020-12-18T17:00+09:00	2021-07-21T16:21+09:00
jvndb-2021-000072	Minecraft Java Edition vulnerable to directory traversal	2021-07-21T15:12+09:00	2021-07-21T15:12+09:00
jvndb-2021-002005	Trend Micro InterScan Web Security Virtual Appliance (IWSVA) vulnerable to cross-site scripting	2021-07-19T16:53+09:00	2021-07-19T16:53+09:00
jvndb-2021-000069	Optical BB unit E-WMTA2.3 vulnerable to cross-site request forgery	2021-07-14T17:13+09:00	2021-07-14T17:13+09:00
jvndb-2021-001977	Multiple vulnerabilities in Elecom routers	2021-07-07T14:03+09:00	2021-07-12T16:04+09:00
jvndb-2021-000067	voidtools "Everything" vulnerable to HTTP header injection	2021-07-09T14:40+09:00	2021-07-09T14:40+09:00
jvndb-2021-000065	WordPress Plugin "WordPress Meta Data Filter & Taxonomies Filter" vulnerable to cross-site request forgery	2021-07-08T14:29+09:00	2021-07-08T14:29+09:00
jvndb-2021-000066	WordPress Plugin "Software License Manager" vulnerable to cross-site request forgery	2021-07-08T13:45+09:00	2021-07-08T13:45+09:00
jvndb-2021-000064	GU App for Android fails to restrict access permissions	2021-07-07T13:16+09:00	2021-07-07T13:16+09:00
jvndb-2021-001968	Multiple vulnerabilities in Trend Micro Password Manager	2021-07-06T16:08+09:00	2021-07-06T16:08+09:00
jvndb-2021-000063	WordPress Plugin "WordPress Email Template Designer - WP HTML Mail" vulnerable to cross-site request forgery	2021-07-06T14:50+09:00	2021-07-06T14:50+09:00
jvndb-2021-000062	WordPress Plugin "WPCS - WordPress Currency Switcher" vulnerable to cross-site request forgery	2021-07-06T14:11+09:00	2021-07-06T14:11+09:00
jvndb-2021-000061	A-Stage SCT-40CM01SR and AT-40CM01SR vulnerable to authentication bypass	2021-07-05T14:28+09:00	2021-07-05T14:28+09:00
jvndb-2021-000059	EC-CUBE fails to restrict access permissions	2021-07-01T15:49+09:00	2021-07-01T15:49+09:00
jvndb-2007-002102	boastMachine vulnerable to cross-site scripting	2021-06-30T14:32+09:00	2021-06-30T14:32+09:00
jvndb-2021-000058	IkaIka RSS Reader vulnerable to cross-site scripting	2021-06-30T14:21+09:00	2021-06-30T14:21+09:00
jvndb-2021-000056	WordPress Plugin "WordPress Popular Posts" vulnerable to cross-site scripting	2021-06-30T11:36+09:00	2021-06-30T11:36+09:00
jvndb-2021-000057	Multiple cross-site scripting vulnerabilities in EC-CUBE	2021-06-23T15:15+09:00	2021-06-23T15:15+09:00
jvndb-2021-000055	WordPress plugin "Fudousan plugin" series vulnerable to cross-site scripting	2021-06-22T15:06+09:00	2021-06-22T15:06+09:00
jvndb-2021-000054	Inkdrop vulnerable to OS command injection	2021-06-22T15:06+09:00	2021-06-22T15:06+09:00
jvndb-2021-000053	Hitachi Virtual File Platform vulnerable to OS command injection	2021-06-18T15:45+09:00	2021-06-18T15:45+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:20978-1	Security update for kernel-livepatch-MICRO-6-0_Update_9	2025-11-05T16:33:38Z	2025-11-05T16:33:38Z
suse-su-2025:20957-1	Security update for kernel-livepatch-MICRO-6-0_Update_9	2025-11-05T16:33:38Z	2025-11-05T16:33:38Z
suse-su-2025:20988-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_9	2025-11-05T16:32:15Z	2025-11-05T16:32:15Z
suse-su-2025:20952-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_9	2025-11-05T16:32:15Z	2025-11-05T16:32:15Z
suse-su-2025:20987-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_8	2025-11-05T16:26:09Z	2025-11-05T16:26:09Z
suse-su-2025:20951-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_8	2025-11-05T16:26:09Z	2025-11-05T16:26:09Z
suse-su-2025:20977-1	Security update for kernel-livepatch-MICRO-6-0_Update_2	2025-11-05T16:18:40Z	2025-11-05T16:18:40Z
suse-su-2025:20950-1	Security update for kernel-livepatch-MICRO-6-0_Update_2	2025-11-05T16:18:40Z	2025-11-05T16:18:40Z
suse-su-2025:20986-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_11	2025-11-05T16:16:55Z	2025-11-05T16:16:55Z
suse-su-2025:20949-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_11	2025-11-05T16:16:55Z	2025-11-05T16:16:55Z
suse-su-2025:20976-1	Security update for kernel-livepatch-MICRO-6-0_Update_12	2025-11-05T16:15:32Z	2025-11-05T16:15:32Z
suse-su-2025:20975-1	Security update for kernel-livepatch-MICRO-6-0_Update_7	2025-11-05T16:15:32Z	2025-11-05T16:15:32Z
suse-su-2025:20948-1	Security update for kernel-livepatch-MICRO-6-0_Update_12	2025-11-05T16:15:32Z	2025-11-05T16:15:32Z
suse-su-2025:20947-1	Security update for kernel-livepatch-MICRO-6-0_Update_7	2025-11-05T16:15:32Z	2025-11-05T16:15:32Z
suse-su-2025:20974-1	Security update for kernel-livepatch-MICRO-6-0_Update_6	2025-11-05T16:13:22Z	2025-11-05T16:13:22Z
suse-su-2025:20944-1	Security update for kernel-livepatch-MICRO-6-0_Update_6	2025-11-05T16:13:22Z	2025-11-05T16:13:22Z
suse-su-2025:20973-1	Security update for kernel-livepatch-MICRO-6-0_Update_4	2025-11-05T16:13:01Z	2025-11-05T16:13:01Z
suse-su-2025:20946-1	Security update for kernel-livepatch-MICRO-6-0_Update_3	2025-11-05T16:13:01Z	2025-11-05T16:13:01Z
suse-su-2025:20945-1	Security update for kernel-livepatch-MICRO-6-0_Update_4	2025-11-05T16:13:01Z	2025-11-05T16:13:01Z
suse-su-2025:20972-1	Security update for kernel-livepatch-MICRO-6-0_Update_10	2025-11-05T16:12:05Z	2025-11-05T16:12:05Z
suse-su-2025:20941-1	Security update for kernel-livepatch-MICRO-6-0_Update_10	2025-11-05T16:12:05Z	2025-11-05T16:12:05Z
suse-su-2025:20985-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_7	2025-11-05T16:11:42Z	2025-11-05T16:11:42Z
suse-su-2025:20984-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_6	2025-11-05T16:11:42Z	2025-11-05T16:11:42Z
suse-su-2025:20943-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_7	2025-11-05T16:11:42Z	2025-11-05T16:11:42Z
suse-su-2025:20942-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_6	2025-11-05T16:11:42Z	2025-11-05T16:11:42Z
suse-su-2025:20983-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_5	2025-11-05T16:09:50Z	2025-11-05T16:09:50Z
suse-su-2025:20940-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_5	2025-11-05T16:09:50Z	2025-11-05T16:09:50Z
suse-su-2025:20982-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_4	2025-11-05T16:03:00Z	2025-11-05T16:03:00Z
suse-su-2025:20939-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_4	2025-11-05T16:03:00Z	2025-11-05T16:03:00Z
suse-su-2025:3957-1	Security update for tiff	2025-11-05T15:45:20Z	2025-11-05T15:45:20Z

ID	Description	Published	Updated
cnvd-2026-02914	Ivanti EPMM操作系统命令注入漏洞（CNVD-2026-02914）	2025-10-17	2026-01-12
cnvd-2026-02913	Ivanti EPMM操作系统命令注入漏洞	2025-10-17	2026-01-12
cnvd-2026-02912	Ivanti Endpoint Manager路径遍历漏洞	2025-12-15	2026-01-12
cnvd-2026-02911	Ivanti Endpoint Manager数据伪造问题漏洞	2025-12-15	2026-01-12
cnvd-2026-02910	Ivanti Endpoint Manager跨站脚本漏洞	2025-12-15	2026-01-12
cnvd-2026-02909	Ivanti Endpoint Manager代码执行漏洞	2025-12-15	2026-01-12
cnvd-2026-02902	Tenda W18E代码执行漏洞	2025-06-11	2026-01-12
cnvd-2026-02877	Online Music Site AlbumByCategory.php文件SQL注入漏洞	2026-01-06	2026-01-12
cnvd-2026-02876	Online Music Site SQL注入漏洞	2026-01-06	2026-01-12
cnvd-2026-03262	Tenda WH450命令注入漏洞	2026-01-09	2026-01-09
cnvd-2026-03182	Growatt cloud portal绕过授权漏洞（CNVD-2026-03182）	2025-04-25	2026-01-09
cnvd-2026-03181	Growatt cloud portal绕过授权漏洞（CNVD-2026-03181）	2025-04-25	2026-01-09
cnvd-2026-03180	Growatt cloud portal绕过授权漏洞	2025-04-25	2026-01-09
cnvd-2026-03179	Growatt cloud service授权检查不当漏洞	2025-07-25	2026-01-09
cnvd-2026-03178	Growatt ShineLan-X跨站脚本漏洞（CNVD-2026-0317861）	2025-12-25	2026-01-09
cnvd-2026-03177	Growatt ShineLan-X跨站脚本漏洞	2025-12-25	2026-01-09
cnvd-2026-03176	Growatt ShineLan-X身份验证绕过漏洞（CNVD-2026-0317664）	2025-12-25	2026-01-09
cnvd-2026-03175	Growatt ShineLan-X身份验证绕过漏洞	2025-12-25	2026-01-09
cnvd-2026-03174	Growatt ShineLan-X硬编码漏洞（CNVD-2026-0317468）	2025-12-25	2026-01-09
cnvd-2026-03173	Growatt ShineLan-X硬编码漏洞	2025-12-25	2026-01-09
cnvd-2026-03172	Foxit PDF Editor Cloud跨站脚本漏洞（CNVD-2026-0317271）	2025-12-25	2026-01-09
cnvd-2026-03171	Foxit PDF Editor Cloud跨站脚本漏洞（CNVD-2026-0317172）	2025-12-25	2026-01-09
cnvd-2026-03170	Foxit PDF Editor Cloud跨站脚本漏洞（CNVD-2026-0317073）	2025-12-25	2026-01-09
cnvd-2026-03169	Foxit PDF Editor Cloud跨站脚本漏洞（CNVD-2026-0316975）	2025-12-25	2026-01-09
cnvd-2026-03168	Foxit PDF Editor Cloud跨站脚本漏洞（CNVD-2026-0316876）	2025-12-25	2026-01-09
cnvd-2026-03167	Foxit PDF Editor Cloud跨站脚本漏洞（CNVD-2026-0316777）	2025-12-25	2026-01-09
cnvd-2026-03166	Foxit PDF Editor Cloud跨站脚本漏洞	2025-12-25	2026-01-09
cnvd-2026-03090	Tenda WH450 goform/PPTPServer文件缓冲区溢出漏洞	2026-01-09	2026-01-09
cnvd-2026-03089	Tenda WH450 goform/PPTPDClient文件缓冲区溢出漏洞	2026-01-09	2026-01-09
cnvd-2026-03088	Tenda WH450 goform/PPTPClient文件缓冲区溢出漏洞	2026-01-09	2026-01-09

ID	Description	Published	Updated
certfr-2025-avi-0896	Multiples vulnérabilités dans les produits IBM	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0895	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0894	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0893	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0892	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0891	Vulnérabilité dans MongoDB Connector for BI pour Windows	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0890	Multiples vulnérabilités dans les produits Moxa	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0889	Vulnérabilité dans Squid	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0896	Multiples vulnérabilités dans les produits IBM	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0895	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0894	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0893	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0892	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0891	Vulnérabilité dans MongoDB Connector for BI pour Windows	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0890	Multiples vulnérabilités dans les produits Moxa	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
CERTFR-2025-AVI-0889	Vulnérabilité dans Squid	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0887	Vulnérabilité dans Synacor Zimbra Collaboration	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0886	Multiples vulnérabilités dans les produits F5	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0885	Multiples vulnérabilités dans Samba	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0884	Multiples vulnérabilités dans les produits Cisco	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0883	Multiples vulnérabilités dans les produits Spring	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0801	Multiples vulnérabilités dans les produits Mattermost	2025-09-17T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0887	Vulnérabilité dans Synacor Zimbra Collaboration	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0886	Multiples vulnérabilités dans les produits F5	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0885	Multiples vulnérabilités dans Samba	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0884	Multiples vulnérabilités dans les produits Cisco	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0883	Multiples vulnérabilités dans les produits Spring	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
CERTFR-2025-AVI-0801	Multiples vulnérabilités dans les produits Mattermost	2025-09-17T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0882	Multiples vulnérabilités dans les produits Microsoft	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0881	Multiples vulnérabilités dans Microsoft Azure	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated