Recent vulnerabilities

ID	Description	Published	Updated
ghsa-29m3-gxfx-749g	A security flaw has been discovered in yourmaileyes MOOC up to 1.17. This affects the function subr…	2025-12-28T12:30:23Z	2025-12-28T12:30:24Z
ghsa-w487-9rjq-3p3v	A vulnerability has been found in shanyu SyCms up to a242ef2d194e8bb249dc175e7c49f2c1673ec921. This…	2025-12-28T12:30:23Z	2025-12-28T12:30:23Z
ghsa-v2w5-94qr-4c5g	A vulnerability was determined in ZSPACE Z4Pro+ 1.0.0440024. The affected element is the function z…	2025-12-28T12:30:23Z	2025-12-28T12:30:23Z
ghsa-fvhh-hg59-vfxx	A vulnerability was found in ZSPACE Z4Pro+ 1.0.0440024. Impacted is the function zfilev2_api_SafeSt…	2025-12-28T12:30:23Z	2025-12-28T12:30:23Z
ghsa-6chc-jx4m-r2w2	A vulnerability was identified in ZSPACE Z4Pro+ 1.0.0440024. The impacted element is the function z…	2025-12-28T12:30:23Z	2025-12-28T12:30:23Z
ghsa-xvv8-2hxw-mghp	A weakness has been identified in JeecgBoot up to 3.9.0. Affected by this vulnerability is the func…	2025-12-28T09:30:27Z	2025-12-28T09:30:27Z
ghsa-q2w3-p85r-q6v3	A flaw has been found in ChenJinchuang Lin-CMS-TP5 up to 0.3.3. This vulnerability affects the func…	2025-12-28T09:30:27Z	2025-12-28T09:30:27Z
ghsa-mjm5-xqg6-v939	A security flaw has been discovered in JeecgBoot up to 3.9.0. Affected is the function queryDepartP…	2025-12-28T09:30:27Z	2025-12-28T09:30:27Z
ghsa-m84v-87w9-mgjq	A vulnerability was determined in JeecgBoot up to 3.9.0. This affects an unknown function of the fi…	2025-12-28T09:30:27Z	2025-12-28T09:30:27Z
ghsa-hq3q-62v8-pp48	A vulnerability was detected in ZKTeco BioTime up to 9.0.3/9.0.4/9.5.2. This affects an unknown par…	2025-12-28T09:30:27Z	2025-12-28T09:30:27Z
ghsa-6px8-5r5j-c9f2	A vulnerability was identified in JeecgBoot up to 3.9.0. This impacts the function getParameterMap …	2025-12-28T09:30:27Z	2025-12-28T09:30:27Z
ghsa-2cqx-6pqq-j99h	A security vulnerability has been detected in FantasticLBP Hotels_Server up to 67b44df162fab26df209…	2025-12-28T09:30:27Z	2025-12-28T09:30:27Z
ghsa-jcpx-68wr-v54v	A flaw has been found in JeecgBoot up to 3.9.0. Impacted is the function getDeptRoleList of the fil…	2025-12-28T06:31:32Z	2025-12-28T06:31:32Z
ghsa-gv85-863m-74jv	A vulnerability has been found in JeecgBoot up to 3.9.0. The affected element is the function getDe…	2025-12-28T06:31:32Z	2025-12-28T06:31:32Z
ghsa-35f9-r8q8-pqf5	A vulnerability was found in JeecgBoot up to 3.9.0. The impacted element is the function loadDataru…	2025-12-28T06:31:32Z	2025-12-28T06:31:32Z
ghsa-m8rq-9x47-wwr7	A security vulnerability has been detected in macrozheng mall up to 1.0.3. This vulnerability affec…	2025-12-28T06:31:31Z	2025-12-28T06:31:31Z
ghsa-6wrf-f8cg-6rh5	A vulnerability was detected in JeecgBoot up to 3.9.0. This issue affects the function queryPageLis…	2025-12-28T06:31:31Z	2025-12-28T06:31:31Z
ghsa-wgfq-49px-5cwg	A security flaw has been discovered in OpenCart up to 4.1.0.3. Affected by this issue is some unkno…	2025-12-28T03:30:12Z	2025-12-28T03:30:12Z
ghsa-9786-pc79-p3v7	A weakness has been identified in Dromara Sa-Token up to 1.44.0. This affects the function ObjectIn…	2025-12-28T03:30:12Z	2025-12-28T03:30:12Z
ghsa-w789-3q45-984r	In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can…	2025-12-28T00:30:23Z	2025-12-28T00:30:23Z
ghsa-wf3v-cq62-6r54	myBB Forums 1.8.26 contains a stored cross-site scripting vulnerability in the template management …	2025-12-23T00:30:31Z	2025-12-27T21:30:12Z
ghsa-w2jm-qqhw-c9px	A vulnerability has been found in jackq XCMS up to 3fab5342cc509945a7ce1b8ec39d19f701b89261. Affect…	2025-12-27T21:30:12Z	2025-12-27T21:30:12Z
ghsa-f342-w736-j52r	A flaw has been found in jackq XCMS up to 3fab5342cc509945a7ce1b8ec39d19f701b89261. This impacts an…	2025-12-27T21:30:12Z	2025-12-27T21:30:12Z
ghsa-5639-746g-v626	MyBB 1.8.32 contains a chained vulnerability that allows authenticated administrators to bypass ava…	2025-12-23T00:30:32Z	2025-12-27T21:30:12Z
ghsa-rvwq-p5fc-r88c	A vulnerability was found in 1541492390c yougou-mall up to 0a771fa817c924efe52c8fe0a9a6658eee675f9f…	2025-12-19T21:30:19Z	2025-12-27T21:30:11Z
ghsa-hj3q-q387-m5hr	A vulnerability was detected in PandaXGO PandaX up to fb8ff40f7ce5dfebdf66306c6d85625061faf7e5. Thi…	2025-12-27T18:30:26Z	2025-12-27T18:30:26Z
ghsa-qpxx-2fwx-f5qj	Untrusted search path in auth_query connection handler in PgBouncer before 1.25.0 allows an unauthe…	2025-12-03T21:31:04Z	2025-12-27T18:30:23Z
ghsa-2qm6-vprh-vgfc	Xspeeder SXZOS through 2025-12-26 allows root remote code execution via base64-encoded Python code …	2025-12-27T15:30:16Z	2025-12-27T15:30:17Z
ghsa-72f9-ghc4-fpv2	A weakness has been identified in getmaxun maxun up to 0.0.28. The affected element is the function…	2025-12-27T12:30:12Z	2025-12-27T12:30:12Z
ghsa-9m78-g4jr-6549	A security flaw has been discovered in getmaxun maxun up to 0.0.28. Impacted is an unknown function…	2025-12-27T09:30:27Z	2025-12-27T09:30:27Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-15135		joey-zhou xiaozhi-esp32-server-java Cookie Authenticat…	joey-zhou	xiaozhi-esp32-server-java	2025-12-28T12:02:07.346Z	2025-12-29T17:58:51.665Z
cve-2025-15172		SohuTV CacheCloud RedisConfigTemplateController.java p…	SohuTV	CacheCloud	2025-12-29T04:32:08.554Z	2025-12-29T17:51:46.399Z
cve-2025-15173		SohuTV CacheCloud InstanceController.java advancedAnal…	SohuTV	CacheCloud	2025-12-29T05:02:05.724Z	2025-12-29T17:50:08.853Z
cve-2025-15068	8.5 (v4.0) 7.7 (v3.1)	Account Takeover in Gmission Web FAX	Gmission	Web Fax	2025-12-29T05:05:42.777Z	2025-12-29T17:36:55.788Z
cve-2025-15066	6.9 (v4.0) 6.2 (v3.1)	Arbitrary File Download through Path Traversal in Innorix WP	Innorix	Innorix WP	2025-12-29T00:48:56.222Z	2025-12-29T17:35:49.557Z
cve-2025-15067	8.5 (v4.0) 7.7 (v3.1)	Unrestricted File Upload and RCE in Innorix WP	Innorix	Innorix WP	2025-12-29T00:59:38.660Z	2025-12-29T17:31:32.666Z
cve-2025-15069	8.4 (v4.0) 7.1 (v3.1)	Privilege Escalation in Gmission Web FAX	Gmission	Web Fax	2025-12-29T05:05:58.228Z	2025-12-29T17:22:58.014Z
cve-2025-15136		TRENDnet TEW-800MB Management wizardset do_setWizard_a…	TRENDnet	TEW-800MB	2025-12-28T12:32:06.349Z	2025-12-29T17:20:27.000Z
cve-2025-15137		TRENDnet TEW-800MB NTPSyncWithHost.cgi sub_F934 comma…	TRENDnet	TEW-800MB	2025-12-28T13:02:05.931Z	2025-12-29T17:19:47.335Z
cve-2025-15070	6.8 (v4.0) 5.5 (v3.1)	Data Exposure in Gmission Web FAX	Gmission	Web Fax	2025-12-29T05:06:21.656Z	2025-12-29T17:16:42.132Z
cve-2025-50952	N/A	openjpeg v 2.5.0 was discovered to contain a NULL…	n/a	n/a	2025-08-07T00:00:00.000Z	2025-12-29T17:03:55.808Z
cve-2025-15196		code-projects Assessment Management login.php sql injection	code-projects	Assessment Management	2025-12-29T16:32:06.461Z	2025-12-29T16:53:08.767Z
cve-2025-53627		Meshtastic firmware allows forged DMs with no PKC to s…	meshtastic	firmware	2025-12-29T16:18:29.680Z	2025-12-29T16:52:03.331Z
cve-2025-68932		FreshRSS has weak cryptographic randomness in remember…	FreshRSS	FreshRSS	2025-12-26T23:43:34.693Z	2025-12-29T16:51:53.481Z
cve-2025-68148		FreshRSS globally denies access to feed via proxy modi…	FreshRSS	FreshRSS	2025-12-26T23:46:53.337Z	2025-12-29T16:51:47.993Z
cve-2025-68473		ESF-IDF Has Out-of-Bounds Read in ESP32 Bluetooth SDP …	espressif	esp-idf	2025-12-26T23:54:47.709Z	2025-12-29T16:51:42.074Z
cve-2025-68474		ESF-IDF Has Out-of-Bounds Write in ESP32 Bluetooth AVR…	espressif	esp-idf	2025-12-26T23:57:54.853Z	2025-12-29T16:51:36.305Z
cve-2025-54322		Xspeeder SXZOS through 2025-12-26 allows root rem…	Xspeeder	SXZOS	2025-12-27T00:00:00.000Z	2025-12-29T16:51:30.437Z
cve-2025-68927		Improper Neutralization of HTML Tags in a Web Page in…	abhinavxd	libredesk	2025-12-27T00:04:49.621Z	2025-12-29T16:51:24.522Z
cve-2025-68948		SiYuan: Information Disclosure and Authentication Bypa…	siyuan-note	siyuan	2025-12-27T00:21:31.864Z	2025-12-29T16:51:19.102Z
cve-2025-68868	6.5 (v3.1)	WordPress Wp Text Slider Widget plugin <= 1.0 - Cross …	Codeaffairs	Wp Text Slider Widget	2025-12-29T16:12:32.664Z	2025-12-29T16:51:15.274Z
cve-2025-15110		jackq XCMS Backend ProductImageController.class.php up…	jackq	XCMS	2025-12-27T20:02:09.663Z	2025-12-29T16:51:10.398Z
cve-2025-68972	5.9 (v3.1)	In GnuPG through 2.4.8, if a signed message has \…	GnuPG	GnuPG	2025-12-27T22:52:30.957Z	2025-12-29T16:51:02.621Z
cve-2025-15168		itsourcecode Student Management System statistical.php…	itsourcecode	Student Management System	2025-12-29T02:32:06.034Z	2025-12-29T16:50:56.359Z
cve-2025-69201		Tugtainer has RCE in Agent Command Execution Api	Quenary	tugtainer	2025-12-29T15:51:41.461Z	2025-12-29T16:50:49.919Z
cve-2025-69206		Hemmelig has SSRF Filter bypass in Secret Request func…	HemmeligOrg	Hemmelig.app	2025-12-29T15:55:12.761Z	2025-12-29T16:50:43.152Z
cve-2025-68870	7.5 (v3.1)	WordPress CookieHint WP plugin <= 1.0.0 - Local File I…	reDim GmbH	CookieHint WP	2025-12-29T16:09:05.270Z	2025-12-29T16:50:40.971Z
cve-2025-68897	9.9 (v3.1)	WordPress IF AS Shortcode plugin <= 1.2 - Remote Code …	Mohammad I. Okfie	IF AS Shortcode	2025-12-29T15:55:13.564Z	2025-12-29T16:50:36.615Z
cve-2025-68893	4.9 (v3.1)	WordPress WordPress Image shrinker plugin <= 1.1.0 - S…	HETWORKS	WordPress Image shrinker	2025-12-29T15:56:47.504Z	2025-12-29T16:50:28.337Z
cve-2025-15195		code-projects Assessment Management add-module.php sql…	code-projects	Assessment Management	2025-12-29T16:02:06.204Z	2025-12-29T16:50:21.963Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-32952		io.jmix.localfs:jmix-localfs affected by DoS in the Lo…	jmix-framework	jmix	2025-04-22T17:32:11.966Z	2025-05-27T17:00:25.356Z
cve-2025-14993		Tenda AC18 HTTP Request SetDlnaCfg sprintf stack-based…	Tenda	AC18	2025-12-21T04:32:06.259Z	2025-12-22T14:54:49.131Z
cve-2025-15009		liweiyi ChestnutCMS Filename upload FilenameUtils.getE…	liweiyi	ChestnutCMS	2025-12-22T02:32:05.919Z	2025-12-22T14:35:21.606Z
cve-2025-15005		CouchCMS reCAPTCHA config.example.php hard-coded key	n/a	CouchCMS	2025-12-22T00:32:07.346Z	2025-12-22T15:12:32.269Z
cve-2025-15004		DedeCMS freelist_main.php sql injection	n/a	DedeCMS	2025-12-22T00:02:08.556Z	2025-12-22T15:29:33.173Z
cve-2025-14995		Tenda FH1201 SetIpBind sprintf stack-based overflow	Tenda	FH1201	2025-12-21T08:32:07.268Z	2025-12-22T16:19:07.359Z
cve-2025-43965		In MIFF image processing in ImageMagick before 7.…	ImageMagick	ImageMagick	2025-04-23T00:00:00.000Z	2025-04-26T23:03:02.375Z
cve-2025-14994		Tenda FH1201/FH1206 HTTP Request webtypelibrary strcat…	Tenda	FH1201	2025-12-21T07:32:08.767Z	2025-12-22T16:36:21.363Z
cve-2025-46393		In multispectral MIFF image processing in ImageMa…	ImageMagick	ImageMagick	2025-04-23T00:00:00.000Z	2025-04-23T15:17:20.473Z
cve-2025-46331		OpenFGA Authorization Bypass	openfga	openfga	2025-04-30T18:27:05.921Z	2025-05-01T18:52:23.855Z
cve-2024-56323		OpenFGA Authorization Bypass	openfga	openfga	2025-01-13T21:33:30.556Z	2025-01-14T00:29:58.019Z
cve-2025-66947	N/A	SQL injection vulnerability in krishanmuraiji SMS…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T16:31:09.014Z
cve-2024-55488	N/A	A stored cross-site scripting (XSS) vulnerability…	n/a	n/a	2025-01-22T00:00:00.000Z	2025-02-12T22:28:19.105Z
cve-2025-24964		Remote Code Execution when accessing a malicious websi…	vitest-dev	vitest	2025-02-04T19:36:50.509Z	2025-02-12T20:51:28.286Z
cve-2025-24963		Browser mode serves arbitrary files in vitest	vitest-dev	vitest	2025-02-04T19:36:52.385Z	2025-02-12T20:51:28.011Z
cve-2025-24786		Path traversal opening Sqlite3 database in WhoDB	clidey	whodb	2025-02-06T18:41:19.674Z	2025-02-06T19:22:20.516Z
cve-2025-24787		Parameter injection in DB connection URIs leading to l…	clidey	whodb	2025-02-06T18:41:17.518Z	2025-02-06T19:25:09.541Z
cve-2025-25196		OpenFGA Authorization Bypass	openfga	openfga	2025-02-19T20:18:30.309Z	2025-02-19T20:43:08.660Z
cve-2019-25241	9.8 (v3.1) 7.5 (v3.1)	FaceSentry Access Control System 6.4.8 Remote SSH Root…	iWT Ltd.	FaceSentry Access Control System	2025-12-24T19:27:58.126Z	2025-12-31T13:57:16.676Z
cve-2025-63206	N/A	An authentication bypass issue was discovered in …	n/a	n/a	2025-11-19T00:00:00.000Z	2025-11-20T16:07:18.654Z
cve-2025-63878	N/A	Github Restaurant Website Restoran v1.0 was disco…	n/a	n/a	2025-11-19T00:00:00.000Z	2025-11-19T21:37:00.790Z
cve-2025-56499	N/A	Incorrect access control in mihomo v1.19.11 allow…	n/a	n/a	2025-11-18T00:00:00.000Z	2025-11-19T13:33:49.717Z
cve-2025-35029		Medical Informatics Engineering Enterprise Health stor…	Medical Informatics Engineering	Enterprise Health	2025-11-20T19:34:31.465Z	2025-12-02T14:54:03.350Z
cve-2025-64751		OpenFGA Improper Policy Enforcement	openfga	openfga	2025-11-21T01:24:32.509Z	2025-11-24T18:11:03.949Z
cve-2025-65111		SpiceDB's LookupResources with Multiple Entrypoints ac…	authzed	spicedb	2025-11-21T22:02:52.563Z	2025-11-24T17:50:51.445Z
cve-2016-15048	10 (v4.0)	AMTT HiBOS Command Injection RCE via server_ping.php	Anmei Century (Beijing) Technology Co., Ltd.	Hotel Broadband Operation System (HiBOS)	2025-10-22T14:21:01.096Z	2025-10-22T14:34:46.683Z
cve-2025-53420	N/A	WordPress WPLMS plugin <= 1.9.9.8 - Cross Site Scripti…	VibeThemes	WPLMS	2025-10-22T14:32:32.282Z	2025-11-13T10:33:42.359Z
cve-2025-15065	8.6 (v4.0) 6.3 (v3.1)	Data Exposure in Kings Information & Network KESS Enterprise	Kings Information & Network Co.	KESS Enterprise	2025-12-29T00:09:27.009Z	2025-12-31T04:45:49.039Z
cve-2025-68973	7.8 (v3.1)	In GnuPG before 2.4.9, armor_filter in g10/armor.…	GnuPG	GnuPG	2025-12-28T16:19:11.019Z	2025-12-31T03:34:28.426Z
cve-2025-61413	N/A	A stored cross-site scripting (XSS) vulnerability…	n/a	n/a	2025-10-23T00:00:00.000Z	2025-10-24T15:16:50.351Z

ID	Description	Published	Updated
fkie_cve-2025-15009	A flaw has been found in liweiyi ChestnutCMS up to 1.5.8. This vulnerability affects the function F…	2025-12-22T03:15:47.310	2025-12-31T15:51:08.387
fkie_cve-2025-15005	A security flaw has been discovered in CouchCMS up to 2.4. Affected is an unknown function of the f…	2025-12-22T01:16:06.167	2025-12-31T15:50:50.760
fkie_cve-2025-15004	A vulnerability was identified in DedeCMS up to 5.7.118. This impacts an unknown function of the fi…	2025-12-22T01:16:05.293	2025-12-31T15:50:09.980
fkie_cve-2025-14995	A vulnerability has been found in Tenda FH1201 1.2.0.14(408). Affected is the function sprintf of t…	2025-12-21T09:15:47.907	2025-12-31T15:44:14.950
fkie_cve-2025-43965	In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after SetQuantum…	2025-04-23T15:16:00.733	2025-12-31T15:41:59.560
fkie_cve-2025-14994	A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14(408)/1.2.0.8(8155). This impacts the func…	2025-12-21T08:15:49.767	2025-12-31T15:40:06.247
fkie_cve-2025-46393	In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled (r…	2025-04-23T15:16:01.060	2025-12-31T15:28:43.350
fkie_cve-2025-46331	OpenFGA is a high-performance and flexible authorization/permission engine built for developers and…	2025-04-30T19:15:55.490	2025-12-31T15:06:58.233
fkie_cve-2024-56323	OpenFGA is an authorization/permission engine. IN OpenFGA v1.3.8 to v1.8.2 (Helm chart openfga-0.1.…	2025-01-13T22:15:14.447	2025-12-31T14:58:38.370
fkie_cve-2025-66947	SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-det…	2025-12-26T15:15:47.700	2025-12-31T14:54:38.830
fkie_cve-2024-55488	A stored cross-site scripting (XSS) vulnerability in Umbraco CMS v14.3.1 allows attackers to execut…	2025-01-22T16:15:29.770	2025-12-31T14:51:51.553
fkie_cve-2025-24964	Vitest is a testing framework powered by Vite. Affected versions are subject to arbitrary remote Co…	2025-02-04T20:15:50.483	2025-12-31T14:50:11.840
fkie_cve-2025-24963	Vitest is a testing framework powered by Vite. The `__screenshot-error` handler on the browser mode…	2025-02-04T20:15:50.330	2025-12-31T14:44:35.500
fkie_cve-2025-24786	WhoDB is an open source database management tool. While the application only displays Sqlite3 datab…	2025-02-06T19:15:20.067	2025-12-31T14:31:36.153
fkie_cve-2025-24787	WhoDB is an open source database management tool. In affected versions the application is vulnerabl…	2025-02-06T19:15:20.213	2025-12-31T14:19:58.163
fkie_cve-2025-25196	OpenFGA is a high-performance and flexible authorization/permission engine built for developers and…	2025-02-19T21:15:15.577	2025-12-31T14:18:13.063
fkie_cve-2019-25241	FaceSentry Access Control System 6.4.8 contains a critical authentication vulnerability with hard-c…	2025-12-24T20:15:51.993	2025-12-31T14:15:50.723
fkie_cve-2025-63206	An authentication bypass issue was discovered in Dasan Switch DS2924 web based interface, firmware …	2025-11-19T18:15:48.647	2025-12-31T14:09:23.310
fkie_cve-2025-63878	Github Restaurant Website Restoran v1.0 was discovered to contain a SQL injection vulnerability via…	2025-11-19T16:15:49.140	2025-12-31T14:07:51.923
fkie_cve-2025-56499	Incorrect access control in mihomo v1.19.11 allows authenticated attackers with low-level privilege…	2025-11-18T19:15:49.653	2025-12-31T14:01:17.820
fkie_cve-2025-35029	Medical Informatics Engineering Enterprise Health has a stored cross site scripting vulnerability t…	2025-11-20T20:16:22.187	2025-12-31T13:51:52.017
fkie_cve-2025-64751	OpenFGA is a high-performance and flexible authorization/permission engine built for developers and…	2025-11-21T02:15:43.747	2025-12-31T13:43:35.017
fkie_cve-2025-65111	SpiceDB is an open source database system for creating and managing security-critical application p…	2025-11-21T22:16:33.697	2025-12-31T13:41:21.827
fkie_cve-2016-15048	AMTT Hotel Broadband Operation System (HiBOS) contains an unauthenticated command injection vulnera…	2025-10-22T15:15:30.923	2025-12-31T13:12:22.987
fkie_cve-2025-53420	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-10-22T15:15:49.310	2025-12-31T13:11:12.677
fkie_cve-2025-15065	Exposure of Sensitive Information to an Unauthorized Actor, Missing Encryption of Sensitive Data, F…	2025-12-29T01:15:52.680	2025-12-31T05:15:59.597
fkie_cve-2025-68973	In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where on…	2025-12-28T17:16:01.500	2025-12-31T04:15:53.420
fkie_cve-2025-61413	A stored cross-site scripting (XSS) vulnerability in the /manager/pages component of Piranha CMS v1…	2025-10-23T18:16:23.683	2025-12-31T02:35:31.940
fkie_cve-2025-62236	The Frontier Airlines website has a publicly available endpoint that validates if an email addresse…	2025-10-23T20:15:40.890	2025-12-31T02:34:14.700
fkie_cve-2025-59500	Improper access control in Azure Notification Service allows an authorized attacker to elevate priv…	2025-10-23T22:15:48.327	2025-12-31T02:32:27.200

ID	Description	Package	Published	Updated
pysec-2023-72	UNSUPPORTED WHEN ASSIGNED The Apache Spark UI offers the possibility to enable ACLs…	pyspark	2023-05-02T09:15:00Z	2023-06-05T01:12:58.679776Z
pysec-2023-71	Planet is software that provides satellite data. The secret file stores the user's Planet…	planet	2023-05-12T21:15:00Z	2023-06-05T01:12:57.755283Z
pysec-2022-232	NVFLARE, versions prior to 2.1.2, contains a vulnerability in its utils module, where YAM…	nvflare	2022-07-01T18:15:00Z	2023-06-05T01:12:56.865026Z
pysec-2022-231	NVFLARE, versions prior to 2.1.2, contains a vulnerability in its PKI implementation modu…	nvflare	2022-07-01T18:15:00Z	2023-06-05T01:12:56.789968Z
pysec-2023-70	A directory traversal vulnerability in the /get-artifact API method of the mlflow platfor…	mlflow	2023-05-11T02:15:00Z	2023-06-05T01:12:55.587142Z
pysec-2023-69	Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.3.1.	mlflow	2023-05-17T21:15:00Z	2023-06-05T01:12:55.503398Z
pysec-2023-68	Relative Path Traversal in GitHub repository mlflow/mlflow prior to 2.3.1.	mlflow	2023-04-28T00:15:00Z	2023-06-05T01:12:55.421205Z
pysec-2023-67	Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun…	matrix-synapse	2023-05-26T14:15:00Z	2023-06-05T01:12:54.808327Z
pysec-2023-66	Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun…	matrix-synapse	2023-05-26T14:15:00Z	2023-06-05T01:12:54.698222Z
pysec-2023-65	Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun…	matrix-synapse	2023-05-26T14:15:00Z	2023-06-05T01:12:54.592327Z
pysec-2023-64	mage-ai is an open-source data pipeline tool for transforming and integrating data. Those…	mage-ai	2023-05-09T15:15:00Z	2023-06-05T01:12:54.165512Z
pysec-2023-63	in-toto is a framework to protect supply chain integrity. The in-toto configuration is re…	in-toto	2023-05-10T18:15:00Z	2023-06-05T01:12:53.259453Z
pysec-2023-62	Flask is a lightweight WSGI web application framework. When all of the following conditio…	flask	2023-05-02T18:15:00Z	2023-06-05T01:12:52.229549Z
pysec-2023-61	In Django 3.2 before 3.2.19, 4.x before 4.1.9, and 4.2 before 4.2.1, it was possible to b…	django	2023-05-07T02:15:00Z	2023-06-05T01:12:51.525399Z
pysec-2022-43050	The d8s-pdfs package for Python, as distributed on PyPI, included a potential code-execut…	democritus-urls	2022-10-11T22:15:00Z	2023-06-05T01:12:51.154372Z
pysec-2022-43049	The d8s-utility package for Python, as distributed on PyPI, included a potential code-exe…	democritus-urls	2022-10-11T22:15:00Z	2023-06-05T01:12:51.085049Z
pysec-2022-43048	The d8s-html package for Python, as distributed on PyPI, included a potential code-execut…	democritus-urls	2022-10-11T22:15:00Z	2023-06-05T01:12:50.996077Z
pysec-2022-43047	The d8s-domains package for Python, as distributed on PyPI, included a potential code-exe…	democritus-urls	2022-10-11T22:15:00Z	2023-06-05T01:12:50.928263Z
pysec-2022-43046	The d8s-asns package for Python, as distributed on PyPI, included a potential code-execut…	democritus-html	2022-10-11T22:15:00Z	2023-06-05T01:12:50.827897Z
pysec-2022-43045	The d8s-xml package for Python, as distributed on PyPI, included a potential code-executi…	democritus-html	2022-10-11T22:15:00Z	2023-06-05T01:12:50.748809Z
pysec-2022-43044	The d8s-networking package for Python, as distributed on PyPI, included a potential code-…	democritus-hashes	2022-10-11T22:15:00Z	2023-06-05T01:12:50.653599Z
pysec-2022-43043	The d8s-file-system package for Python, as distributed on PyPI, included a potential code…	democritus-hashes	2022-10-11T22:15:00Z	2023-06-05T01:12:50.575571Z
pysec-2022-43042	The d8s-archives package for Python, as distributed on PyPI, included a potential code-ex…	democritus-file-system	2022-10-11T22:15:00Z	2023-06-05T01:12:50.463544Z
pysec-2022-43041	The d8s-json package for Python, as distributed on PyPI, included a potential code-execut…	democritus-file-system	2022-10-11T22:15:00Z	2023-06-05T01:12:50.395602Z
pysec-2022-43040	The d8s-utility package for Python, as distributed on PyPI, included a potential code-exe…	democritus-file-system	2022-10-11T22:15:00Z	2023-06-05T01:12:50.328726Z
pysec-2022-43039	The d8s-yaml package for Python, as distributed on PyPI, included a potential code-execut…	democritus-file-system	2022-10-11T22:15:00Z	2023-06-05T01:12:50.196757Z
pysec-2022-43038	The d8s-algorithms package for Python, as distributed on PyPI, included a potential code-…	democritus-dicts	2022-10-11T22:15:00Z	2023-06-05T01:12:50.098821Z
pysec-2022-43037	The d8s-lists package for Python, as distributed on PyPI, included a potential code-execu…	democritus-dicts	2022-10-11T22:15:00Z	2023-06-05T01:12:50.022993Z
pysec-2022-43036	The d8s-asns package for Python, as distributed on PyPI, included a potential code-execut…	democritus-csv	2022-10-11T22:15:00Z	2023-06-05T01:12:49.913597Z
pysec-2022-43035	The d8s-urls package for Python, as distributed on PyPI, included a potential code-execut…	democritus-csv	2022-10-11T22:15:00Z	2023-06-05T01:12:49.835906Z

ID	Description	Updated
gsd-2024-33517	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.679527Z
gsd-2024-33108	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.678810Z
gsd-2024-33349	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.678289Z
gsd-2024-33205	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.677776Z
gsd-2024-33030	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.677240Z
gsd-2024-33403	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.676678Z
gsd-2024-33089	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.676129Z
gsd-2024-33480	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.675618Z
gsd-2024-33461	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.675113Z
gsd-2024-33184	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.674560Z
gsd-2024-33193	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.674012Z
gsd-2024-33042	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.673504Z
gsd-2024-33054	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.672967Z
gsd-2024-33472	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.672300Z
gsd-2024-33337	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.671742Z
gsd-2024-33144	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.671183Z
gsd-2024-33469	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.670615Z
gsd-2024-33045	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.670079Z
gsd-2024-33152	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.669552Z
gsd-2024-33326	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.668985Z
gsd-2024-33014	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.668485Z
gsd-2024-33109	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.667980Z
gsd-2024-33087	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.667417Z
gsd-2024-33114	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.666856Z
gsd-2024-33356	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.666212Z
gsd-2024-33490	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.665553Z
gsd-2024-33400	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.665111Z
gsd-2024-33197	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.664646Z
gsd-2024-33233	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.664185Z
gsd-2024-33388	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.663762Z

ID	Description	Published	Updated
mal-2025-191357	Malicious code in @voiceflow/nestjs-common (npm)	2025-11-25T00:16:49Z	2025-12-23T15:41:17Z
mal-2025-191344	Malicious code in @voiceflow/encryption (npm)	2025-11-25T00:16:49Z	2025-12-23T15:41:17Z
mal-2025-191341	Malicious code in @voiceflow/default-prompt-wrappers (npm)	2025-11-25T00:16:49Z	2025-12-23T15:41:17Z
mal-2025-191075	Malicious code in bidirectional-adapter (npm)	2025-11-24T22:44:08Z	2025-12-23T15:41:17Z
mal-2025-191036	Malicious code in @ntnx/t (npm)	2025-11-24T22:56:21Z	2025-12-23T15:41:17Z
mal-2025-190911	Malicious code in @postman/secret-scanner-wasm (npm)	2025-11-24T16:31:47Z	2025-12-23T15:41:17Z
mal-2025-190872	Malicious code in @mparpaillon/page (npm)	2025-11-24T16:31:47Z	2025-12-23T15:41:17Z
mal-2025-190676	Malicious code in @postman/aether-icons (npm)	2025-11-24T12:48:24Z	2025-12-23T15:41:17Z
mal-2025-49395	Malicious code in @deputyapp/copilot2 (npm)	2025-11-09T00:17:09Z	2025-12-23T15:09:26Z
mal-2025-49379	Malicious code in @chatclub/claude-code (npm)	2025-11-07T03:58:49Z	2025-12-23T15:09:26Z
mal-2025-192271	Malicious code in @bhyolken/echotest (npm)	2025-12-03T19:34:54Z	2025-12-23T15:09:26Z
mal-2025-191950	Malicious code in @hand-talk/yotta-icons (npm)	2025-12-03T01:23:28Z	2025-12-23T15:09:26Z
mal-2025-191496	Malicious code in @hand-talk/yotta-core (npm)	2025-12-01T16:00:47Z	2025-12-23T15:09:26Z
mal-2025-191495	Malicious code in @bingads-webui-clientcenter/instrumentation (npm)	2025-12-01T16:00:47Z	2025-12-23T15:09:26Z
mal-2025-191224	Malicious code in @fishingbooker/react-swiper (npm)	2025-11-24T23:42:38Z	2025-12-23T15:09:26Z
mal-2025-191223	Malicious code in @fishingbooker/react-raty (npm)	2025-11-24T23:42:23Z	2025-12-23T15:09:26Z
mal-2025-191222	Malicious code in @fishingbooker/react-pagination (npm)	2025-11-24T23:42:08Z	2025-12-23T15:09:26Z
mal-2025-191221	Malicious code in @fishingbooker/react-loader (npm)	2025-11-24T23:41:53Z	2025-12-23T15:09:26Z
mal-2025-191220	Malicious code in @fishingbooker/browser-sync-plugin (npm)	2025-11-24T23:41:43Z	2025-12-23T15:09:26Z
mal-2025-191211	Malicious code in @dev-blinq/blinqioclient (npm)	2025-11-25T00:16:49Z	2025-12-23T15:09:26Z
mal-2025-190871	Malicious code in @mparpaillon/imagesloaded (npm)	2025-11-24T16:31:47Z	2025-12-23T15:09:26Z
mal-2025-190870	Malicious code in @mparpaillon/connector-parse (npm)	2025-11-24T16:31:47Z	2025-12-23T15:09:26Z
mal-2025-192925	Malicious code in verificator (RubyGems)	2025-12-23T08:41:14Z	2025-12-23T08:41:14Z
mal-2025-192924	Malicious code in u2f_client (RubyGems)	2025-12-23T08:41:13Z	2025-12-23T08:41:13Z
mal-2025-192923	Malicious code in test_gem_978483406ebb19126a2e8c001649a4eb (RubyGems)	2025-12-23T08:41:12Z	2025-12-23T08:41:12Z
mal-2025-192922	Malicious code in stripe-server (RubyGems)	2025-12-23T08:41:12Z	2025-12-23T08:41:12Z
mal-2025-192921	Malicious code in stripe-rubocop (RubyGems)	2025-12-23T08:41:11Z	2025-12-23T08:41:11Z
mal-2025-192920	Malicious code in stripe-backup (RubyGems)	2025-12-23T08:41:10Z	2025-12-23T08:41:10Z
mal-2025-192919	Malicious code in sq-samsa (RubyGems)	2025-12-23T08:41:10Z	2025-12-23T08:41:10Z
mal-2025-192918	Malicious code in sq-mdc (RubyGems)	2025-12-23T08:41:09Z	2025-12-23T08:41:09Z

ID	Description	Published	Updated
wid-sec-w-2025-0700	Red Hat OpenShift: Schwachstelle ermöglicht Offenlegung von Informationen	2025-04-02T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2025-0681	Red Hat Satellite: Mehrere Schwachstellen	2025-04-01T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2025-0574	Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-03-16T23:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2024-3744	Apache Tomcat: Schwachstelle ermöglicht Codeausführung	2024-12-22T23:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2024-3722	Apache Tomcat: Mehrere Schwachstellen	2024-12-17T23:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2024-3436	GNOME: Mehrere Schwachstellen	2024-11-12T23:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2024-1737	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2024-07-30T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2025-1550	Red Hat Enterprise Linux (LZ4): Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-07-14T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1490	Fortinet FortiOS: Schwachstelle ermöglicht Codeausführung	2025-07-08T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1365	IBM QRadar SIEM: Mehrere Schwachstellen	2025-06-19T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1271	Linux Kernel: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen	2025-06-09T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1167	IBM DB2: Mehrere Schwachstellen	2025-05-29T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1132	OpenSSL: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-05-22T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-0938	IBM DB2: Mehrere Schwachstellen ermöglichen Denial of Service	2025-05-05T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-0912	IBM DB2: Schwachstelle ermöglicht Denial of Service	2025-05-01T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-0265	Linux Kernel: Mehrere Schwachstellen	2025-02-04T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-0106	git: Schwachstelle ermöglicht Darstellen falscher Informationen	2025-01-15T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2024-3276	Ruby: Schwachstelle ermöglicht Denial of Service	2024-10-27T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2024-1402	Linux Kernel: Mehrere Schwachstellen	2024-06-18T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2024-1083	Linux Kernel: Mehrere Schwachstellen	2024-05-09T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2024-0964	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-04-24T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2023-2618	http/2 Implementierungen: Schwachstelle ermöglicht Denial of Service	2023-10-10T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2023-1367	Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff	2023-06-05T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2023-0138	Oracle Communications Applications: Mehrere Schwachstellen	2023-01-17T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2022-2400	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2022-12-22T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2022-2132	Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation	2022-11-20T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2022-2038	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2022-11-14T23:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2022-1201	Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen	2022-08-28T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2022-0997	Linux Kernel: Mehrere Schwachstellen ermöglichen Privilegieneskalation	2022-08-09T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2022-0540	Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen	2022-05-11T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2021:1551	Red Hat Security Advisory: OpenShift Container Platform 4.7.11 security and bug fix update	2021-05-19T15:03:37+00:00	2025-11-27T17:37:35+00:00
rhsa-2021:1366	Red Hat Security Advisory: OpenShift Container Platform 4.7.9 packages and security update	2021-05-04T19:34:17+00:00	2025-11-27T17:37:35+00:00
rhsa-2021:0956	Red Hat Security Advisory: OpenShift Container Platform 4.6.23 security update	2021-03-30T16:48:30+00:00	2025-11-27T17:37:35+00:00
rhsa-2021:0706	Red Hat Security Advisory: container-tools:2.0 security update	2021-03-02T19:11:26+00:00	2025-11-27T17:37:34+00:00
rhsa-2021:0799	Red Hat Security Advisory: OpenShift Virtualization 2.6.0 security and bug fix update	2021-03-10T11:41:12+00:00	2025-11-27T17:37:33+00:00
rhsa-2021:0568	Red Hat Security Advisory: OpenShift Container Platform 4.6 file-integrity-operator image security update	2021-02-16T14:45:45+00:00	2025-11-27T17:37:32+00:00
rhsa-2021:0436	Red Hat Security Advisory: OpenShift Container Platform 4.6 compliance-operator security and bug fix update	2021-02-16T13:16:22+00:00	2025-11-27T17:37:32+00:00
rhsa-2021:0172	Red Hat Security Advisory: OpenShift Container Platform 4.6.13 packages and security update	2021-01-25T19:45:30+00:00	2025-11-27T17:37:30+00:00
rhsa-2021:0146	Red Hat Security Advisory: Release of OpenShift Serverless 1.12.0	2021-01-14T16:13:45+00:00	2025-11-27T17:37:29+00:00
rhsa-2021:0145	Red Hat Security Advisory: Red Hat OpenShift Serverless Client kn 1.12.0	2021-01-14T13:40:17+00:00	2025-11-27T17:37:28+00:00
rhsa-2021:0039	Red Hat Security Advisory: OpenShift Container Platform 4.6.12 extras and security update	2021-01-18T17:33:46+00:00	2025-11-27T17:37:26+00:00
rhsa-2021:0038	Red Hat Security Advisory: OpenShift Container Platform 4.6.12 packages and security update	2021-01-18T16:04:44+00:00	2025-11-27T17:37:25+00:00
rhsa-2021:0037	Red Hat Security Advisory: OpenShift Container Platform 4.6.12 bug fix and security update	2021-01-18T17:56:24+00:00	2025-11-27T17:37:23+00:00
rhsa-2020:5634	Red Hat Security Advisory: OpenShift Container Platform 4.7.0 packages security update	2021-02-24T14:45:13+00:00	2025-11-27T17:37:21+00:00
rhsa-2020:5633	Red Hat Security Advisory: OpenShift Container Platform 4.7.0 security, bug fix, and enhancement update	2021-02-24T15:09:19+00:00	2025-11-27T17:37:20+00:00
rhsa-2020:5333	Red Hat Security Advisory: go-toolset-1.14-golang security update	2020-12-03T11:20:55+00:00	2025-11-27T17:37:20+00:00
rhsa-2020:5493	Red Hat Security Advisory: go-toolset:rhel8 security update	2020-12-15T17:12:24+00:00	2025-11-27T17:37:18+00:00
rhba-2021:0482	Red Hat Bug Fix Advisory: Red Hat OpenShift Service Mesh 2.0.2 RPMs	2021-02-11T11:59:56+00:00	2025-11-27T17:37:14+00:00
rhba-2021:0305	Red Hat Bug Fix Advisory: Red Hat OpenShift Container Storage 4.6.2 container bug fix update	2021-02-01T13:17:36+00:00	2025-11-27T17:37:09+00:00
rhsa-2025:20954	Red Hat Security Advisory: sssd security update	2025-11-11T15:28:09+00:00	2025-11-27T17:37:06+00:00
rhsa-2025:21067	Red Hat Security Advisory: sssd security update	2025-11-12T03:39:07+00:00	2025-11-27T17:37:04+00:00
rhsa-2025:19720	Red Hat Security Advisory: libsoup3 security update	2025-11-04T18:03:12+00:00	2025-11-27T17:37:04+00:00
rhsa-2025:21032	Red Hat Security Advisory: libsoup3 security update	2025-11-11T19:55:06+00:00	2025-11-27T17:37:03+00:00
rhsa-2025:19401	Red Hat Security Advisory: libssh security update	2025-11-03T01:40:22+00:00	2025-11-27T17:37:02+00:00
rhsa-2025:19400	Red Hat Security Advisory: libssh security update	2025-11-03T01:22:57+00:00	2025-11-27T17:37:02+00:00
rhsa-2025:19012	Red Hat Security Advisory: libssh security update	2025-10-23T20:00:32+00:00	2025-11-27T17:37:00+00:00
rhsa-2025:19276	Red Hat Security Advisory: libtiff security update	2025-10-29T23:12:01+00:00	2025-11-27T17:36:59+00:00
rhsa-2025:19101	Red Hat Security Advisory: libssh security update	2025-10-27T08:30:35+00:00	2025-11-27T17:36:59+00:00
rhsa-2025:19098	Red Hat Security Advisory: libssh security update	2025-10-27T01:38:38+00:00	2025-11-27T17:36:58+00:00
rhsa-2025:19472	Red Hat Security Advisory: libssh security update	2025-11-03T12:20:18+00:00	2025-11-27T17:36:57+00:00

ID	Description	Published	Updated
msrc_cve-2025-64713	WebAssembly Micro Runtime frame_offset_bottom array bounds overflow in fast Interpreter mode when handling GET_GLOBAL(I32) followed by if opcode	2025-11-02T00:00:00.000Z	2025-12-01T14:38:21.000Z
msrc_cve-2025-64704	WebAssembly Micro Runtime vulnerable to a segmentation fault in v128.store instruction	2025-11-02T00:00:00.000Z	2025-12-01T14:38:13.000Z
msrc_cve-2025-38590	net/mlx5e: Remove skb secpath if xfrm state is not found	2025-08-02T00:00:00.000Z	2025-11-28T01:01:51.000Z
msrc_cve-2025-39763	ACPI: APEI: send SIGBUS to current task if synchronous memory error not recovered	2025-09-02T00:00:00.000Z	2025-11-27T01:03:04.000Z
msrc_cve-2025-39744	rcu: Fix rcu_read_unlock() deadloop due to IRQ work	2025-09-02T00:00:00.000Z	2025-11-27T01:02:33.000Z
msrc_cve-2025-38734	net/smc: fix UAF on smcsk after smc_listen_out()	2025-09-02T00:00:00.000Z	2025-11-27T01:01:58.000Z
msrc_cve-2023-53149	ext4: avoid deadlock in fs reclaim with page writeback	2025-09-02T00:00:00.000Z	2025-11-27T01:01:32.000Z
msrc_cve-2022-50260	drm/msm: Make .remove and .shutdown HW shutdown consistent	2025-09-02T00:00:00.000Z	2025-11-27T01:01:27.000Z
msrc_cve-2022-50256	drm/meson: remove drm bridges at aggregate driver unbind time	2025-09-02T00:00:00.000Z	2025-11-27T01:01:21.000Z
msrc_cve-2025-39797	xfrm: Duplicate SPI Handling	2025-09-02T00:00:00.000Z	2025-11-26T01:01:49.000Z
msrc_cve-2023-53152	drm/amdgpu: fix calltrace warning in amddrm_buddy_fini	2025-09-02T00:00:00.000Z	2025-11-26T01:01:29.000Z
msrc_cve-2025-64660	GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability	2025-11-11T08:00:00.000Z	2025-11-25T08:00:00.000Z
msrc_cve-2025-40188	pwm: berlin: Fix wrong register in suspend/resume	2025-11-02T00:00:00.000Z	2025-11-25T01:41:17.000Z
msrc_cve-2025-62689	NULL pointer dereference vulnerability exists in GNU libmicrohttpd v1.0.2 and earlier. The vulnerability was fixed in commit ff13abc on the master branch of the libmicrohttpd Git repository, after the v1.0.2 tag. A specially crafted packet sent by an attacker could cause a denial-of-service (DoS) condition.	2025-11-02T00:00:00.000Z	2025-11-25T01:40:58.000Z
msrc_cve-2025-40136	crypto: hisilicon/qm - request reserved interrupt for virtual function	2025-11-02T00:00:00.000Z	2025-11-25T01:40:44.000Z
msrc_cve-2025-37806	fs/ntfs3: Keep write operations atomic	2025-05-02T00:00:00.000Z	2025-11-25T01:40:34.000Z
msrc_cve-2022-49858	octeontx2-pf: Fix SQE threshold checking	2025-05-02T00:00:00.000Z	2025-11-25T01:40:29.000Z
msrc_cve-2025-12875	mruby array.c ary_fill_exec out-of-bounds write	2025-11-02T00:00:00.000Z	2025-11-25T01:40:24.000Z
msrc_cve-2022-49810	netfs: Fix missing xas_retry() calls in xarray iteration	2025-05-02T00:00:00.000Z	2025-11-25T01:40:01.000Z
msrc_cve-2025-40210	Revert "NFSD: Remove the cap on number of operations per NFSv4 COMPOUND"	2025-11-02T00:00:00.000Z	2025-11-25T01:39:58.000Z
msrc_cve-2025-38261	riscv: save the SR_SUM status over switches	2025-07-02T00:00:00.000Z	2025-11-25T01:39:50.000Z
msrc_cve-2025-38129	page_pool: Fix use-after-free in page_pool_recycle_in_ring	2025-07-02T00:00:00.000Z	2025-11-25T01:39:45.000Z
msrc_cve-2025-38099	Bluetooth: Disable SCO support if READ_VOICE_SETTING is unsupported/broken	2025-07-02T00:00:00.000Z	2025-11-25T01:39:39.000Z
msrc_cve-2025-38164	f2fs: zone: fix to avoid inconsistence in between SIT and SSA	2025-07-02T00:00:00.000Z	2025-11-25T01:39:34.000Z
msrc_cve-2025-38438	ASoC: SOF: Intel: hda: Use devm_kstrdup() to avoid memleak.	2025-07-02T00:00:00.000Z	2025-11-25T01:38:45.000Z
msrc_cve-2025-37899	ksmbd: fix use-after-free in session logoff	2025-05-02T00:00:00.000Z	2025-11-25T01:38:35.000Z
msrc_cve-2025-8677	Resource exhaustion via malformed DNSKEY handling	2025-10-02T00:00:00.000Z	2025-11-25T01:38:30.000Z
msrc_cve-2025-38507	HID: nintendo: avoid bluetooth suspend/resume stalls	2025-08-02T00:00:00.000Z	2025-11-25T01:38:29.000Z
msrc_cve-2025-40780	Cache poisoning due to weak PRNG	2025-10-02T00:00:00.000Z	2025-11-25T01:38:24.000Z
msrc_cve-2025-38189	drm/v3d: Avoid NULL pointer dereference in `v3d_job_update_stats()`	2025-07-02T00:00:00.000Z	2025-11-25T01:38:24.000Z

ID	Description	Published	Updated
icsa-12-249-02	WAGO IO 758 Default Linux Credentials	2012-06-09T06:00:00.000000Z	2025-06-05T21:55:14.635429Z
icsa-12-243-01	GarrettCom - Use of Hard-Coded Password	2012-06-03T06:00:00.000000Z	2025-06-05T21:55:08.385462Z
icsa-16-336-01a	Siemens SICAM PAS Vulnerabilities	2016-09-04T06:00:00.000000Z	2025-06-05T21:54:43.517387Z
icsa-11-356-01	Siemens Simatic HMI Authentication Vulnerabilities	2011-09-24T06:00:00.000000Z	2025-06-05T21:54:31.029394Z
icsa-12-227-01	Siemens COMOS Database Privilege Escalation Vulnerability	2012-05-18T06:00:00.000000Z	2025-06-05T21:54:24.813649Z
icsa-15-258-03	GE MDS PulseNET Vulnerabilities	2015-06-18T06:00:00.000000Z	2025-06-05T21:54:12.344535Z
icsa-12-262-01	Fultek WinTr Directory Traversal	2012-06-22T06:00:00.000000Z	2025-06-05T21:54:06.142288Z
icsa-16-336-04	Advantech SUSIAccess Server Vulnerabilities	2016-09-04T06:00:00.000000Z	2025-06-05T21:53:15.951469Z
icsa-12-271-01	C3-ilex EOScada Multiple Vulnerabilities	2012-07-01T06:00:00.000000Z	2025-06-05T21:52:50.997308Z
icsa-16-021-01	CAREL PlantVisor Enhanced Authentication Bypass Vulnerability	2016-10-24T06:00:00.000000Z	2025-06-05T21:52:44.779814Z
icsa-12-234-01	GE Intelligent Platforms Proficy Real-Time Information Portal Vulnerabilities	2012-05-25T06:00:00.000000Z	2025-06-05T21:52:26.050859Z
icsa-12-201-01	OSIsoft PI OPC DA Interface Buffer Overflow	2012-04-22T06:00:00.000000Z	2025-06-05T21:50:46.020053Z
icsa-12-171-01	Wonderware SuiteLink Unallocated Unicode String Vulnerability	2012-03-23T06:00:00.000000Z	2025-06-05T21:50:39.771574Z
icsa-12-131-02	GE Intelligent Platforms Proficy HTML Help Vulnerabilities	2012-02-11T07:00:00.000000Z	2025-06-05T21:50:21.057143Z
icsa-11-332-01a	Wonderware InBatch ActiveX Vulnerabilities	2011-08-31T06:00:00.000000Z	2025-06-05T21:50:14.861339Z
icsa-16-336-02a	Moxa NPort Device Vulnerabilities	2016-09-04T06:00:00.000000Z	2025-06-05T21:49:24.949030Z
icsa-12-179-01	Pro-Face Pro-Server EX Vulnerabilities	2012-03-31T06:00:00.000000Z	2025-06-05T21:48:47.262805Z
icsa-12-158-01	Siemens WinCC Multiple Vulnerabilities	2012-03-10T07:00:00.000000Z	2025-06-05T21:48:16.105605Z
icsa-12-081-01	Wonderware System Platform Buffer Overflows	2012-12-23T07:00:00.000000Z	2025-06-05T21:47:07.576830Z
icsa-12-213-01a	Sielco Sistemi Winlog Multiple Vulnerabilities	2012-05-04T06:00:00.000000Z	2025-06-05T21:45:39.994092Z
icsa-11-273-03a	Rockwell RSLogix Overflow Vulnerability	2011-07-03T06:00:00.000000Z	2025-06-05T21:45:33.778304Z
icsa-11-273-02	InduSoft ISSymbol ActiveX Control Buffer Overflow	2011-07-03T06:00:00.000000Z	2025-06-05T21:45:27.545317Z
icsa-11-264-01	AzeoTech DAQFactory Stack Overflow	2011-06-24T06:00:00.000000Z	2025-06-05T21:45:21.339015Z
icsa-11-263-01	Measuresoft ScadaPro Vulnerabilities	2011-06-23T06:00:00.000000Z	2025-06-05T21:44:56.393208Z
icsa-11-244-01	Siemens WinCC Flexible Runtime Heap Overflow	2011-06-04T06:00:00.000000Z	2025-06-05T21:44:50.125517Z
icsa-11-243-03a	GE Intelligent Platforms Proficy Historian Data Archiver Buffer Overflow Vulnerability	2011-06-03T06:00:00.000000Z	2025-06-05T21:44:43.901026Z
icsa-11-243-02	GE Proficy Historian Web Administrator XSS	2011-06-03T06:00:00.000000Z	2025-06-05T21:44:37.673447Z
icsa-11-243-01	GE Intelligent Platforms Proficy Plant Applications Buffer Overflow	2011-06-03T06:00:00.000000Z	2025-06-05T21:44:31.462554Z
icsa-11-216-01	Scadatec Limited Procyon Telnet Buffer Overflow	2011-05-07T06:00:00.000000Z	2025-06-05T21:44:25.242970Z
icsa-11-195-01	Wonderware Information Server	2011-04-16T06:00:00.000000Z	2025-06-05T21:44:19.036950Z

ID	Description	Published	Updated
cisco-sa-wbx-sxss-fupl-64uhbcm5	Cisco Webex Meetings Web UI Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-wbx-sxss-fupl-64uHbcm5	Cisco Webex Meetings Web UI Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-uccx-xss-go9l9xxr	Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-uccx-xss-GO9L9xxr	Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-stealthsmc-rce-sfnbpjcs	Cisco Secure Network Analytics Remote Code Execution Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-stealthsmc-rce-sfNBPjcS	Cisco Secure Network Analytics Remote Code Execution Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-stealth-rce-bdwxfk9c	Cisco Secure Network Analytics Remote Code Execution Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-stealth-rce-BDwXFK9C	Cisco Secure Network Analytics Remote Code Execution Vulnerability	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-sb-rv32x-cmdinject-ckqszpxl	Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Command Injection Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-sb-rv32x-cmdinject-cKQsZpxL	Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Command Injection Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-rv-stored-xss-vqz7gc8w	Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-rv-stored-xss-vqz7gC8W	Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-meraki-lsp-7xysn6pj	Cisco Meraki Local Status Page Configuration Hardening	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-meraki-lsp-7xySn6pj	Cisco Meraki Local Status Page Configuration Hardening	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-ise-injection-2xbog9dg	Cisco Identity Services Engine Command Injection Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-ise-injection-2XbOg9Dg	Cisco Identity Services Engine Command Injection Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-adeos-mlayecvk	Cisco Evolved Programmable Network Manager, Cisco Identity Services Engine, and Cisco Prime Infrastructure Command Injection Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-adeos-MLAyEcvk	Cisco Evolved Programmable Network Manager, Cisco Identity Services Engine, and Cisco Prime Infrastructure Command Injection Vulnerabilities	2023-04-05T16:00:00+00:00	2023-04-05T16:00:00+00:00
cisco-sa-expressway-overwrite-3buqw8lh	Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities	2022-07-06T16:00:00+00:00	2023-04-04T20:50:42+00:00
cisco-sa-expressway-overwrite-3buqW8LH	Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities	2022-07-06T16:00:00+00:00	2023-04-04T20:50:42+00:00
cisco-sa-stealth-rce-2hyb9kfk	Cisco Secure Network Analytics Remote Code Execution Vulnerability	2022-05-18T16:00:00+00:00	2023-04-03T18:50:18+00:00
cisco-sa-stealth-rce-2hYb9KFK	Cisco Secure Network Analytics Remote Code Execution Vulnerability	2022-05-18T16:00:00+00:00	2023-04-03T18:50:18+00:00
cisco-sa-wsa-bypass-bwbfugek	Cisco Secure Web Appliance Content Encoding Filter Bypass Vulnerabilities	2022-10-05T16:00:00+00:00	2023-04-03T13:46:35+00:00
cisco-sa-wsa-bypass-bwBfugek	Cisco Secure Web Appliance Content Encoding Filter Bypass Vulnerabilities	2022-10-05T16:00:00+00:00	2023-04-03T13:46:35+00:00
cisco-sa-ise-access-contol-eeufsucx	Cisco Identity Services Engine Insufficient Access Control Vulnerability	2022-11-02T16:00:00+00:00	2023-03-31T21:21:42+00:00
cisco-sa-ise-access-contol-EeufSUCx	Cisco Identity Services Engine Insufficient Access Control Vulnerability	2022-11-02T16:00:00+00:00	2023-03-31T21:21:42+00:00
cisco-sa-ise-xss-twlnpy3m	Cisco Identity Services Engine Cross-Site Scripting Vulnerability	2022-10-19T16:00:00+00:00	2023-03-31T21:09:40+00:00
cisco-sa-ise-xss-twLnpy3M	Cisco Identity Services Engine Cross-Site Scripting Vulnerability	2022-10-19T16:00:00+00:00	2023-03-31T21:09:40+00:00
cisco-sa-ise-7q4tnyux	Cisco Identity Services Engine Vulnerabilities	2022-11-16T16:00:00+00:00	2023-03-31T20:41:42+00:00
cisco-sa-ise-7Q4TNYUx	Cisco Identity Services Engine Vulnerabilities	2022-11-16T16:00:00+00:00	2023-03-31T20:41:42+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201006-1160	Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in WebKit…	2024-11-29T20:43:48.459000Z
var-200102-0040	Mac OS Runtime for Java (MRJ) 2.2.3 allows remote attackers to use malicious applets to r…	2024-11-29T20:43:47.355000Z
var-201912-0596	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T20:43:43.729000Z
var-201103-0287	The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and ea…	2024-11-29T20:43:42.960000Z
var-200510-0403	Integer overflow in Apple QuickTime Player before 7.1 allows remote attackers to execute …	2024-11-29T20:43:23.462000Z
var-201702-0198	An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari be…	2024-11-29T20:43:23.383000Z
var-201110-0385	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK…	2024-11-29T20:43:23.307000Z
var-201601-0016	Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before …	2024-11-29T20:42:43.647000Z
var-201411-0436	The curl_easy_duphandle function in libcurl 7.17.1 through 7.38.0, when running with the …	2024-11-29T20:42:43.019000Z
var-202110-1513	This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS…	2024-11-29T20:42:37.616000Z
var-201712-0264	An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari be…	2024-11-29T20:42:37.112000Z
var-201710-1405	An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo…	2024-11-29T20:42:36.622000Z
var-201607-0235	Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52…	2024-11-29T20:42:04.937000Z
var-201302-0302	Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on …	2024-11-29T20:41:34.177000Z
var-202003-1776	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali…	2024-11-29T20:40:59.278000Z
var-201804-1210	An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS b…	2024-11-29T20:40:58.379000Z
var-201204-0092	Google Chrome before 18.0.1025.151 allows remote attackers to bypass the Same Origin Poli…	2024-11-29T20:40:58.194000Z
var-201912-0621	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T20:40:27.806000Z
var-201611-0348	named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-…	2024-11-29T20:40:26.753000Z
var-201912-1863	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T20:40:22.258000Z
var-201408-0082	Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.…	2024-11-29T20:40:21.590000Z
var-201904-1397	An input validation issue was addressed with improved input validation. This issue affect…	2024-11-29T20:40:20.749000Z
var-200504-0292	Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote …	2024-11-29T20:40:19.172000Z
var-201108-0130	The gif_read_lzw function in filter/image-gif.c in CUPS 1.4.8 and earlier does not proper…	2024-11-29T20:40:16.614000Z
var-200809-0008	Finder in Apple Mac OS X 10.5 through 10.5.4 does not properly update permission data in …	2024-11-29T20:39:45.978000Z
var-201710-0207	Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GT…	2024-11-29T20:39:40.685000Z
var-201912-0624	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T20:39:40.601000Z
var-201707-1188	An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari …	2024-11-29T20:39:40.364000Z
var-201203-0193	Google Chrome before 17.0.963.65 does not properly perform casts of unspecified variables…	2024-11-29T20:39:39.177000Z
var-201710-1408	An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo…	2024-11-29T20:39:39.007000Z

ID	Description	Published	Updated
jvndb-2021-000023	UNIVERGE Aspire series PBX vulnerable to denial-of-service (DoS)	2021-03-22T14:57+09:00	2021-03-22T14:57+09:00
jvndb-2021-000025	WordPress plugin "Paid Memberships Pro" vulnerable to SQL injection	2021-03-17T16:24+09:00	2021-03-17T16:24+09:00
jvndb-2021-000021	M-System DL8 contains multiple vulnerabilities	2021-03-12T15:59+09:00	2021-03-12T15:59+09:00
jvndb-2021-000020	Installer of MagicConnect Client program may insecurely load Dynamic Link Libraries	2021-03-11T14:53+09:00	2021-03-11T14:53+09:00
jvndb-2021-000019	Multiple cross-site scripting vulnerabilities in GROWI	2021-03-10T16:11+09:00	2021-03-10T16:11+09:00
jvndb-2021-001122	Trend Micro Security (Consumer) vulnerable to code injection	2021-03-08T17:26+09:00	2021-03-08T17:26+09:00
jvndb-2021-000015	FileZen vulnerable to OS command injection	2021-02-16T15:07+09:00	2021-03-05T17:31+09:00
jvndb-2021-000016	Multiple vulnerabilities in SolarView Compact	2021-02-19T16:44+09:00	2021-02-25T15:31+09:00
jvndb-2021-000017	Multiple cross-site scripting vulnerabilities in Movable Type	2021-02-24T15:20+09:00	2021-02-24T15:20+09:00
jvndb-2021-001026	Multiple Vulnerabilities in JP1/Automatic Operation	2021-02-16T17:23+09:00	2021-02-16T17:23+09:00
jvndb-2021-000014	Calsos CSDJ fails to restrict access permissions	2021-02-15T15:52+09:00	2021-02-15T15:52+09:00
jvndb-2021-000013	Wekan vulnerable to cross-site scripting	2021-02-10T14:01+09:00	2021-02-10T14:01+09:00
jvndb-2021-001022	Cross-site Scripting Vulnerability in Hitachi Application Server Help	2021-02-09T15:08+09:00	2021-02-09T15:08+09:00
jvndb-2021-001021	Improper access control vulnerability in JP1/IT Desktop Management 2 - Manager and JP1/NETM/Asset Information Manager	2021-02-09T15:08+09:00	2021-02-09T15:08+09:00
jvndb-2021-000012	WordPress Plugin "Name Directory" vulnerable to cross-site request forgery	2021-02-05T16:24+09:00	2021-02-05T16:24+09:00
jvndb-2021-001017	Trend Micro HouseCall for Home Networks (Windows Edition) may insecurely load Dynamic Link Libraries	2021-02-04T15:42+09:00	2021-02-04T15:42+09:00
jvndb-2021-000011	Panasonic Video Insight VMS vulnerable to arbitrary code execution	2021-02-04T15:39+09:00	2021-02-04T15:39+09:00
jvndb-2021-000006	Multiple vulnerabilities in Aterm WF800HP, Aterm WG2600HP, and Aterm WG2600HP2	2021-01-22T17:55+09:00	2021-02-03T12:05+09:00
jvndb-2021-001014	Vulnerability in JP1/VERITAS	2021-02-01T16:49+09:00	2021-02-01T16:49+09:00
jvndb-2021-000009	Android App "ELECOM File Manager" vulnerable to directory traversal	2021-01-27T17:38+09:00	2021-01-27T17:38+09:00
jvndb-2021-000008	Multiple vulnerabilities in multiple ELECOM products	2021-01-26T16:33+09:00	2021-01-26T16:33+09:00
jvndb-2021-000010	Multiple vulnerabilities in multiple LOGITEC products	2021-01-26T16:26+09:00	2021-01-26T16:26+09:00
jvndb-2021-001010	TP-Link TL-WR841N V13 (JP) vulnerable to OS command injection	2021-01-25T16:21+09:00	2021-01-25T16:21+09:00
jvndb-2021-000005	GROWI vulnerable to cross-site scripting	2021-01-19T14:05+09:00	2021-01-19T14:05+09:00
jvndb-2021-000004	Multiple vulnerabilities in acmailer	2021-01-14T16:22+09:00	2021-01-14T16:22+09:00
jvndb-2021-000003	The installer of SKYSEA Client View may insecurely load Dynamic Link Libraries	2021-01-12T15:53+09:00	2021-01-12T15:53+09:00
jvndb-2021-000002	Multiple NEC Products vulnerable to authentication bypass	2021-01-04T17:24+09:00	2021-01-08T12:22+09:00
jvndb-2021-000001	Multiple vulnerabilities in UNIVERGE SV9500/SV8500 series	2021-01-04T14:37+09:00	2021-01-04T14:37+09:00
jvndb-2020-009965	Cleartext Transmission of Sensitive Information Vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer	2020-12-21T17:48+09:00	2020-12-21T17:48+09:00
jvndb-2020-009964	Improper certificate validation vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer	2020-12-21T17:48+09:00	2020-12-21T17:48+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated