Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-mr93-x45c-452v | In apusys, there is a possible memory corruption due to use after free. This could lead to local es… | 2025-11-04T09:31:16Z | 2025-11-04T21:31:34Z |
| ghsa-hq6m-98jg-5pq7 | In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This c… | 2025-11-04T09:31:16Z | 2025-11-04T18:31:58Z |
| ghsa-h9gw-8vj6-p53w | In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This c… | 2025-11-04T09:31:16Z | 2025-11-04T15:31:34Z |
| ghsa-ghx5-r834-wpjq | In preloader, there is a possible escalation of privilege due to an insecure default value. This co… | 2025-11-04T09:31:16Z | 2025-11-04T18:31:57Z |
| ghsa-g76h-fppr-42rm | In wlan STA driver, there is a possible out of bounds read due to a race condition. This could lead… | 2025-11-04T09:31:16Z | 2025-11-04T15:31:34Z |
| ghsa-8w39-8w74-7cr2 | In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This c… | 2025-11-04T09:31:16Z | 2025-11-04T21:31:34Z |
| ghsa-8rfm-grwq-grhj | In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This c… | 2025-11-04T09:31:16Z | 2025-11-04T15:31:34Z |
| ghsa-8hj4-v8cq-7cq7 | In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This c… | 2025-11-04T09:31:16Z | 2025-11-04T15:31:34Z |
| ghsa-87vm-96cg-xm6h | In wlan STA driver, there is a possible out of bounds write due to an incorrect bounds check. This … | 2025-11-04T09:31:16Z | 2025-11-04T18:31:57Z |
| ghsa-76gj-cmrv-mpmv | In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This c… | 2025-11-04T09:31:16Z | 2025-11-04T18:31:57Z |
| ghsa-6943-x92f-9fh2 | In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This c… | 2025-11-04T09:31:16Z | 2025-11-04T21:31:34Z |
| ghsa-5p4x-8r2p-h43p | In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This c… | 2025-11-04T09:31:16Z | 2025-11-04T21:31:34Z |
| ghsa-4xwg-fxhm-6r9c | In clkdbg, there is a possible escalation of privilege due to use after free. This could lead to lo… | 2025-11-04T09:31:16Z | 2025-11-05T00:31:32Z |
| ghsa-4whx-2x44-g86g | In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This c… | 2025-11-04T09:31:16Z | 2025-11-04T18:31:58Z |
| ghsa-4qwc-hr6c-mgjj | In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This cou… | 2025-11-04T09:31:16Z | 2025-11-04T15:31:34Z |
| ghsa-3w28-c3v9-22gp | In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This c… | 2025-11-04T09:31:16Z | 2025-11-04T21:31:34Z |
| ghsa-2fh7-g5h4-3598 | In Modem, there is a possible out of bounds write due to a heap buffer overflow. This could lead to… | 2025-11-04T09:31:16Z | 2025-11-04T18:31:57Z |
| ghsa-vh6r-gfvr-6mqr | In ims service, there is a possible out of bounds write due to a missing bounds check. This could l… | 2025-11-04T09:31:15Z | 2025-11-04T18:31:56Z |
| ghsa-3fxq-vfm3-v9wf | In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead… | 2025-11-04T09:31:15Z | 2025-11-04T18:31:56Z |
| ghsa-x5h5-7m64-x9xm | The MapMap plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, … | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ghsa-wqmw-2cq3-rr6p | The WP Carticon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'carticon… | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ghsa-vj5f-vg3r-fvh8 | The Free Quotation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin sett… | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ghsa-rhxj-9r87-4xrm | The Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One plugin for WordPres… | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ghsa-qwj5-jf76-vpjr | The DominoKit plugin for WordPress is vulnerable to unauthorized access due to a missing capability… | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ghsa-mjm5-cr6q-x25r | The Simple User Capabilities plugin for WordPress is vulnerable to unauthorized modification of dat… | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ghsa-m6v3-xvp5-5g2q | The service employed by Everything, running as SYSTEM, communicates with the lower privileged Every… | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ghsa-jxvj-4752-7c25 | The Social Media WPCF7 Stop Words plugin for WordPress is vulnerable to Cross-Site Request Forgery … | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ghsa-jxcx-x35q-5pgm | The Nari Accountant plugin for WordPress is vulnerable to Stored Cross-Site Scripting via account s… | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ghsa-hg85-w9x6-p4fq | The Extensions for Leaflet Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi… | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ghsa-h8rw-xxqw-q838 | The Top Bar Notification plugin for WordPress is vulnerable to Cross-Site Request Forgery in all ve… | 2025-11-04T06:31:12Z | 2025-11-04T06:31:12Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-54863 | 10 (v4.0) 10 (v3.1) | Insufficiently Protected Credentials in Radiometrics VizAir |
Radiometrics |
VizAir |
2025-11-04T16:13:03.327Z | 2025-11-04T16:31:15.814Z |
| cve-2025-61945 | 10 (v4.0) 10 (v3.1) | Missing Authentication for Critical Function in Radiom… |
Radiometrics |
VizAir |
2025-11-04T16:10:49.931Z | 2025-11-05T14:34:04.566Z |
| cve-2025-12184 | MeetingList <= 0.11 - Authenticated (Admin+) Stored Cr… |
rboatright |
MeetingList |
2025-11-04T14:25:04.104Z | 2025-11-04T14:35:54.765Z | |
| cve-2025-12682 | Easy Upload Files During Checkout <= 2.9.8 - Unauthent… |
fahadmahmood |
Easy Upload Files During Checkout |
2025-11-04T13:47:35.380Z | 2025-11-04T14:16:38.630Z | |
| cve-2025-12695 | 5.9 (v3.1) | Insecure configuration in DSPy lead to arbitrary file … |
|
|
2025-11-04T13:24:42.358Z | 2025-11-04T14:19:33.945Z |
| cve-2025-41345 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:18:42.706Z | 2025-11-04T14:35:54.374Z |
| cve-2025-41344 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:18:20.077Z | 2025-11-04T15:04:57.015Z |
| cve-2025-41343 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:18:05.093Z | 2025-11-04T15:07:08.054Z |
| cve-2025-41342 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:17:51.179Z | 2025-11-04T15:17:43.690Z |
| cve-2025-41341 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:17:34.546Z | 2025-11-04T15:25:52.763Z |
| cve-2025-41340 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:17:18.268Z | 2025-11-04T15:33:20.238Z |
| cve-2025-41339 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:16:56.280Z | 2025-11-04T15:56:59.396Z |
| cve-2025-41338 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:16:37.282Z | 2025-11-04T16:34:56.240Z |
| cve-2025-41337 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:16:20.518Z | 2025-11-04T16:59:06.244Z |
| cve-2025-41336 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:16:02.887Z | 2025-11-04T17:05:55.761Z |
| cve-2025-41335 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:15:43.266Z | 2025-11-04T18:27:43.720Z |
| cve-2025-41114 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:10:31.829Z | 2025-11-04T18:32:18.961Z |
| cve-2025-41113 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:10:12.086Z | 2025-11-04T18:51:57.285Z |
| cve-2025-41112 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:09:53.897Z | 2025-11-04T14:18:59.923Z |
| cve-2025-41111 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:08:40.472Z | 2025-11-04T14:19:54.307Z |
| cve-2025-12045 | Orbit Fox Companion <= 3.0.2 - Authenticated (Author+)… |
themeisle |
Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More |
2025-11-04T11:19:27.966Z | 2025-11-04T18:53:30.602Z | |
| cve-2025-12493 | ShopLentor <= 3.2.5 - Unauthenticated Local PHP File I… |
devitemsllc |
ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution (formerly WooLentor) |
2025-11-04T11:19:27.403Z | 2025-11-04T20:13:56.143Z | |
| cve-2025-11690 | 8.5 (v3.1) | IDOR vulnerability in the CFMOTO RIDE API |
CFMOTO |
RIDE |
2025-11-04T10:25:45.416Z | 2025-11-10T18:24:47.168Z |
| cve-2025-20749 | N/A | In charger, there is a possible out of bounds wri… |
MediaTek, Inc. |
MT6789, MT6835, MT6855, MT6878, MT6879, MT6886, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991, MT8169, MT8188, MT8195, MT8196, MT8781, MT8796 |
2025-11-04T06:20:51.979Z | 2025-11-05T04:55:28.632Z |
| cve-2025-20748 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:20:23.128Z | 2025-11-05T04:55:29.380Z |
| cve-2025-20741 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:20:21.366Z | 2025-11-05T04:55:30.330Z |
| cve-2025-20747 | N/A | In gnss service, there is a possible out of bound… |
MediaTek, Inc. |
MT2718, MT2737, MT6835, MT6878, MT6886, MT6897, MT6899, MT6982, MT6985, MT6986, MT6986D, MT6989, MT6990, MT6991, MT8676, MT8678, MT8755, MT8893 |
2025-11-04T06:20:19.607Z | 2025-11-05T04:55:31.133Z |
| cve-2025-20746 | N/A | In gnss service, there is a possible out of bound… |
MediaTek, Inc. |
MT2718, MT2737, MT6835, MT6878, MT6886, MT6897, MT6899, MT6982, MT6985, MT6986, MT6986D, MT6989, MT6990, MT6991, MT8676, MT8678, MT8755, MT8893 |
2025-11-04T06:20:17.860Z | 2025-11-05T04:55:32.792Z |
| cve-2025-20739 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:20:16.025Z | 2025-11-05T04:55:33.598Z |
| cve-2025-20738 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:20:14.296Z | 2025-11-05T04:55:34.374Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-54526 | 7.8 (v3.1) 8.4 (v4.0) | Fuji Electric Monitouch V-SFT-6 Stack-based Buffer Overflow |
Fuji Electric |
Monitouch V-SFT-6 |
2025-11-04T21:37:56.067Z | 2025-11-04T21:46:06.843Z |
| cve-2025-54496 | 7.8 (v3.1) 8.4 (v4.0) | Fuji Electric Monitouch V-SFT-6 Heap-based Buffer Overflow |
Fuji Electric |
Monitouch V-SFT-6 |
2025-11-04T21:36:46.018Z | 2025-11-04T21:46:35.254Z |
| cve-2025-55155 | MantisBT: Authentication bypass for some passwords due… |
mantisbt |
mantisbt |
2025-11-04T20:48:03.428Z | 2025-11-04T21:03:12.088Z | |
| cve-2025-54335 | N/A | An issue was discovered in the GPU driver in Sams… |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-04T21:27:24.521Z |
| cve-2025-52910 | N/A | An issue was discovered in the GPU in Samsung Mob… |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-05T14:56:51.459Z |
| cve-2025-48884 | Galette is vulnerable to XSS through Document Type |
galette |
galette |
2025-11-04T20:44:29.193Z | 2025-11-04T21:03:39.940Z | |
| cve-2025-48076 | Galette is vulnerable to Cross-site Scripting |
galette |
galette |
2025-11-04T20:40:09.121Z | 2025-11-04T21:04:06.991Z | |
| cve-2025-47776 | MantisBT: Authentication bypass for some passwords due… |
mantisbt |
mantisbt |
2025-11-04T20:31:01.759Z | 2025-11-05T18:48:23.378Z | |
| cve-2025-32786 | GLPI Inventory Plugin is Vulnerable to Unauthenticated… |
glpi-project |
glpi-inventory-plugin |
2025-11-04T20:18:43.581Z | 2025-11-05T18:48:29.572Z | |
| cve-2025-27374 | N/A | An issue was discovered in the Secure Boot compon… |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-04T21:28:56.141Z |
| cve-2024-56426 | N/A | An issue was discovered in Samsung Mobile Process… |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-04T21:25:22.139Z |
| cve-2025-61431 | N/A | A reflected cross-site scripted (XSS) vulnerabili… |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-04T21:14:00.631Z |
| cve-2025-54327 | N/A | An issue was discovered in VTS in Samsung Mobile … |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-04T21:23:00.335Z |
| cve-2025-49494 | N/A | An issue was discovered in Samsung Mobile Process… |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-05T20:08:30.860Z |
| cve-2025-33176 | 6.2 (v3.1) | NVIDIA RunAI for all platforms contains a vulnera… |
NVIDIA |
RunAI |
2025-11-04T19:46:41.310Z | 2025-11-04T20:10:14.826Z |
| cve-2025-23358 | 8.2 (v3.1) | NVIDIA NVApp for Windows contains a vulnerability… |
NVIDIA |
NVApp |
2025-11-04T19:47:35.156Z | 2025-11-05T04:55:51.900Z |
| cve-2025-64322 | N/A | Incorrect Permission Assignment for Critical Reso… |
Salesforce |
Agentforce Vibes Extension |
2025-11-04T18:33:19.118Z | 2025-11-11T05:12:06.968Z |
| cve-2025-64321 | N/A | Improper Neutralization of Input Used for LLM Pro… |
Salesforce |
Agentforce Vibes Extension |
2025-11-04T18:30:39.497Z | 2025-11-11T05:09:50.301Z |
| cve-2025-64320 | N/A | Improper Neutralization of Input Used for LLM Pro… |
Salesforce |
Agentforce Vibes Extension |
2025-11-04T18:27:32.096Z | 2025-11-05T14:32:23.386Z |
| cve-2025-64319 | N/A | Incorrect Permission Assignment for Critical Reso… |
Salesforce |
Mulesoft Anypoint Code Builder |
2025-11-04T18:22:51.106Z | 2025-11-11T05:05:19.757Z |
| cve-2025-64318 | N/A | Improper Neutralization of Input Used for LLM Pro… |
Salesforce |
Mulesoft Anypoint Code Builder |
2025-11-04T18:19:33.473Z | 2025-11-11T04:48:57.876Z |
| cve-2025-54334 | N/A | An issue was discovered in the NPU driver in Sams… |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-04T20:38:20.142Z |
| cve-2025-52513 | N/A | An issue was discovered in Samsung Mobile Process… |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-04T20:37:11.807Z |
| cve-2025-52512 | N/A | An issue was discovered in Samsung Mobile Process… |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-04T21:21:10.214Z |
| cve-2025-12108 | 9.3 (v4.0) | Missing Authentication for Critical Function Survision… |
Survision |
License Plate Recognition Camera |
2025-11-04T18:43:54.147Z | 2025-11-05T14:46:47.761Z |
| cve-2025-10875 | N/A | Improper Neutralization of Input Used for LLM Pro… |
Salesforce |
Mulesoft Anypoint Code Builder |
2025-11-04T18:14:28.677Z | 2025-11-05T14:33:29.924Z |
| cve-2025-54333 | N/A | An issue was discovered in NPU in Samsung Mobile … |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-05T20:02:17.865Z |
| cve-2025-54325 | N/A | An issue was discovered in VTS in Samsung Mobile … |
n/a |
n/a |
2025-11-04T00:00:00.000Z | 2025-11-04T20:36:14.961Z |
| cve-2025-61956 | 10 (v4.0) 10 (v3.1) | Missing Authentication for Critical Function in Radiom… |
Radiometrics |
VizAir |
2025-11-04T16:15:05.012Z | 2025-11-04T16:26:27.186Z |
| cve-2025-61945 | 10 (v4.0) 10 (v3.1) | Missing Authentication for Critical Function in Radiom… |
Radiometrics |
VizAir |
2025-11-04T16:10:49.931Z | 2025-11-05T14:34:04.566Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-148937 | Malicious code in umbriel-colors-vulcan-global (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148936 | Malicious code in umbriel-chai-celeste-registry (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148935 | Malicious code in umbra-yaml-castor-axios (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148934 | Malicious code in umbra-sirius-scorpius-module (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148933 | Malicious code in umbra-react-bootstrap-meissa-regulus (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148932 | Malicious code in umbra-phenomic-electron-builder-eslint (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148931 | Malicious code in umbra-package-phoebe-version (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148930 | Malicious code in umbra-optimize-css-assets-webpack-plugin-radiant-publish (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148929 | Malicious code in umbra-octans-soap-jekyll (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148928 | Malicious code in umbra-npm-jovian-local (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148927 | Malicious code in umbra-nodejs-nestjs-node-config (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148926 | Malicious code in umbra-nebula-metalsmith-gatsby (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148925 | Malicious code in umbra-mutation-morgan-async (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148924 | Malicious code in umbra-module-json-link (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148923 | Malicious code in umbra-metalsmith-hermes-perseus (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148922 | Malicious code in umbra-meissa-yaml-radiant (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148921 | Malicious code in umbra-meissa-mongoose-flare (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148920 | Malicious code in umbra-mdx-algol-webdriver-mocha (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148919 | Malicious code in umbra-fomalhaut-cypress-bootstrap (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148918 | Malicious code in umbra-eslint-config-elektra-postgres (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148917 | Malicious code in umbra-enif-node-sass-html-webpack-plugin (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148916 | Malicious code in umbra-cors-electron-oauth (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148915 | Malicious code in umbra-chalk-zenith-koa (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148914 | Malicious code in umbra-browserify-enif-jsonp (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148913 | Malicious code in ultra-update-nightwatch-event (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148912 | Malicious code in ultra-ultra-castor-betelgeuse (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148911 | Malicious code in ultra-terser-capella-tethys (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148910 | Malicious code in ultra-stream-cli-lynx (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148909 | Malicious code in ultra-spica-yakutsk-hexo (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| mal-2025-148908 | Malicious code in ultra-shelljs-aether-jasmine (npm) | 2025-11-12T04:29:11Z | 2025-11-12T04:29:11Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:12525 | Red Hat Security Advisory: kernel-rt security update | 2025-08-04T15:19:38+00:00 | 2025-11-11T08:53:35+00:00 |
| rhsa-2025:12524 | Red Hat Security Advisory: redis security update | 2025-08-04T15:19:36+00:00 | 2025-11-11T16:22:54+00:00 |
| rhsa-2025:12526 | Red Hat Security Advisory: kernel security update | 2025-08-04T15:19:33+00:00 | 2025-11-11T08:53:37+00:00 |
| rhsa-2025:12522 | Red Hat Security Advisory: sqlite security update | 2025-08-04T15:19:33+00:00 | 2025-11-12T02:19:20+00:00 |
| rhsa-2025:12520 | Red Hat Security Advisory: unbound security update | 2025-08-04T15:19:32+00:00 | 2025-11-06T23:41:50+00:00 |
| rhsa-2025:12623 | Red Hat Security Advisory: kernel security update | 2025-08-04T15:19:31+00:00 | 2025-11-06T23:14:36+00:00 |
| rhsa-2025:12511 | Red Hat Security Advisory: Streams for Apache Kafka 3.0.0 release and security update | 2025-08-01T17:42:40+00:00 | 2025-11-11T16:09:05+00:00 |
| rhsa-2025:12478 | Red Hat Security Advisory: redis security update | 2025-08-01T05:56:27+00:00 | 2025-11-11T16:23:02+00:00 |
| rhsa-2025:12499 | Red Hat Security Advisory: pcs security update | 2025-08-01T03:23:42+00:00 | 2025-11-06T22:56:20+00:00 |
| rhsa-2025:12468 | Red Hat Security Advisory: redis security update | 2025-07-31T18:07:06+00:00 | 2025-11-11T16:22:54+00:00 |
| rhsa-2025:12450 | Red Hat Security Advisory: libxml2 security update | 2025-07-31T16:31:31+00:00 | 2025-11-06T23:41:50+00:00 |
| rhsa-2025:12447 | Red Hat Security Advisory: libxml2 security update | 2025-07-31T16:14:50+00:00 | 2025-11-06T23:41:50+00:00 |
| rhsa-2025:12091 | Red Hat Security Advisory: Security release of Control plane Operators: RHOSO 18.0.10 (Feature Release 3) | 2025-07-31T15:53:04+00:00 | 2025-11-11T20:38:58+00:00 |
| rhsa-2025:12416 | Red Hat Security Advisory: unbound security update | 2025-07-31T14:23:30+00:00 | 2025-11-06T23:41:52+00:00 |
| rhsa-2025:12361 | Red Hat Security Advisory: firefox security update | 2025-07-31T11:33:35+00:00 | 2025-11-06T23:41:50+00:00 |
| rhsa-2025:12360 | Red Hat Security Advisory: firefox security update | 2025-07-31T11:32:00+00:00 | 2025-11-06T23:41:49+00:00 |
| rhsa-2025:12359 | Red Hat Security Advisory: Red Hat OpenShift sandboxed containers release | 2025-07-31T10:50:08+00:00 | 2025-11-11T20:38:54+00:00 |
| rhsa-2025:12353 | Red Hat Security Advisory: firefox security update | 2025-07-31T07:52:19+00:00 | 2025-11-06T23:41:49+00:00 |
| rhsa-2025:12349 | Red Hat Security Advisory: sqlite security update | 2025-07-31T06:47:14+00:00 | 2025-11-12T02:19:23+00:00 |
| rhsa-2025:11669 | Red Hat Security Advisory: OpenShift Container Platform 4.14.54 bug fix and security update | 2025-07-31T03:56:26+00:00 | 2025-11-11T16:24:57+00:00 |
| rhsa-2025:11678 | Red Hat Security Advisory: OpenShift Container Platform 4.18.21 packages and security update | 2025-07-30T22:44:53+00:00 | 2025-11-11T20:38:52+00:00 |
| rhsa-2025:11677 | Red Hat Security Advisory: OpenShift Container Platform 4.18.21 bug fix and security update | 2025-07-30T22:11:17+00:00 | 2025-11-10T13:52:40+00:00 |
| rhsa-2025:11679 | Red Hat Security Advisory: OpenShift Container Platform 4.18.21 security and extras update | 2025-07-30T19:44:51+00:00 | 2025-11-06T22:56:18+00:00 |
| rhsa-2025:12311 | Red Hat Security Advisory: kernel-rt security update | 2025-07-30T16:03:08+00:00 | 2025-11-11T20:31:08+00:00 |
| rhsa-2025:11742 | Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.1 release and security update | 2025-07-30T15:55:40+00:00 | 2025-11-06T23:41:42+00:00 |
| rhsa-2025:11741 | Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.1 release and security update | 2025-07-30T15:51:38+00:00 | 2025-11-06T23:41:42+00:00 |
| rhsa-2025:11682 | Red Hat Security Advisory: OpenShift Container Platform 4.16.45 packages and security update | 2025-07-30T13:27:32+00:00 | 2025-11-11T20:38:53+00:00 |
| rhsa-2025:11681 | Red Hat Security Advisory: OpenShift Container Platform 4.16.45 bug fix and security update | 2025-07-30T13:13:16+00:00 | 2025-11-10T13:52:40+00:00 |
| rhsa-2025:12302 | Red Hat Security Advisory: firefox security update | 2025-07-30T11:23:03+00:00 | 2025-11-06T23:41:51+00:00 |
| rhsa-2025:12293 | Red Hat Security Advisory: virt:rhel and virt-devel:rhel security update | 2025-07-30T10:37:12+00:00 | 2025-11-06T23:41:49+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-6199 | Gdk-pixbuf: uninitialized memory disclosure in gdkpixbuf gif lzw decoder | 2025-06-02T00:00:00.000Z | 2025-07-15T00:00:00.000Z |
| msrc_cve-2025-6170 | Libxml2: stack buffer overflow in xmllint interactive shell command handling | 2025-06-02T00:00:00.000Z | 2025-07-29T00:00:00.000Z |
| msrc_cve-2025-6141 | GNU ncurses parse_entry.c postprocess_termcap stack-based overflow | 2025-06-02T00:00:00.000Z | 2025-09-04T03:58:14.000Z |
| msrc_cve-2025-6140 | spdlog pattern_formatter-inl.h scoped_padder resource consumption | 2025-06-02T00:00:00.000Z | 2025-08-06T00:00:00.000Z |
| msrc_cve-2025-6069 | HTMLParser quadratic complexity when processing malformed inputs | 2025-06-02T00:00:00.000Z | 2025-08-07T00:00:00.000Z |
| msrc_cve-2025-6052 | Glib: integer overflow in g_string_maybe_expand() leading to potential buffer overflow in glib gstring | 2025-06-02T00:00:00.000Z | 2025-09-04T00:13:38.000Z |
| msrc_cve-2025-6032 | Podman: podman missing tls verification | 2025-06-02T00:00:00.000Z | 2025-09-03T22:57:29.000Z |
| msrc_cve-2025-6021 | Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2 | 2025-06-02T00:00:00.000Z | 2025-07-29T00:00:00.000Z |
| msrc_cve-2025-6020 | Linux-pam: linux-pam directory traversal | 2025-06-02T00:00:00.000Z | 2025-07-16T00:00:00.000Z |
| msrc_cve-2025-5918 | Libarchive: reading past eof may be triggered for piped file streams | 2025-06-02T00:00:00.000Z | 2025-09-03T23:17:35.000Z |
| msrc_cve-2025-5917 | Libarchive: off by one error in build_ustar_entry_name() at archive_write_set_format_pax.c | 2025-06-02T00:00:00.000Z | 2025-09-03T23:25:48.000Z |
| msrc_cve-2025-5916 | Libarchive: integer overflow while reading warc files at archive_read_support_format_warc.c | 2025-06-02T00:00:00.000Z | 2025-09-03T23:34:22.000Z |
| msrc_cve-2025-5915 | Libarchive: heap buffer over read in copy_from_lzss_window() at archive_read_support_format_rar.c | 2025-06-02T00:00:00.000Z | 2025-09-03T23:53:33.000Z |
| msrc_cve-2025-5914 | Libarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c | 2025-06-02T00:00:00.000Z | 2025-09-03T23:49:02.000Z |
| msrc_cve-2025-5889 | juliangruber brace-expansion index.js expand redos | 2025-06-02T00:00:00.000Z | 2025-09-04T00:10:37.000Z |
| msrc_cve-2025-5791 | Users: `root` appended to group listings | 2025-06-02T00:00:00.000Z | 2025-08-06T00:00:00.000Z |
| msrc_cve-2025-5455 | Possible denial of service when passing malformed data in a URL to qDecodeDataUrl | 2025-06-02T00:00:00.000Z | 2025-08-06T00:00:00.000Z |
| msrc_cve-2025-5318 | Libssh: out-of-bounds read in sftp_handle() | 2025-06-02T00:00:00.000Z | 2025-07-18T00:00:00.000Z |
| msrc_cve-2025-52939 | Potential heap-buffer overflow vulnerability in NotepadNext | 2025-06-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-52555 | CephFS Permission Escalation Vulnerability in Ceph Fuse mounted FS | 2025-06-02T00:00:00.000Z | 2025-09-03T22:54:54.000Z |
| msrc_cve-2025-50200 | RabbitMQ Node can log Basic Auth header from an HTTP request | 2025-06-02T00:00:00.000Z | 2025-09-04T04:09:13.000Z |
| msrc_cve-2025-50182 | urllib3 does not control redirects in browsers and Node.js | 2025-06-02T00:00:00.000Z | 2025-09-04T05:22:54.000Z |
| msrc_cve-2025-50181 | urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation | 2025-06-02T00:00:00.000Z | 2025-08-07T00:00:00.000Z |
| msrc_cve-2025-49796 | Libxml: type confusion leads to denial of service (dos) | 2025-06-02T00:00:00.000Z | 2025-07-29T00:00:00.000Z |
| msrc_cve-2025-49795 | Libxml: null pointer dereference leads to denial of service (dos) | 2025-06-02T00:00:00.000Z | 2025-09-04T03:44:32.000Z |
| msrc_cve-2025-49794 | Libxml: heap use after free (uaf) leads to denial of service (dos) | 2025-06-02T00:00:00.000Z | 2025-07-29T00:00:00.000Z |
| msrc_cve-2025-49180 | Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: integer overflow in x resize, rotate and reflect (randr) extension | 2025-06-02T00:00:00.000Z | 2025-08-06T00:00:00.000Z |
| msrc_cve-2025-49179 | Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: integer overflow in x record extension | 2025-06-02T00:00:00.000Z | 2025-08-06T00:00:00.000Z |
| msrc_cve-2025-49178 | Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: unprocessed client request due to bytes to ignore | 2025-06-02T00:00:00.000Z | 2025-08-06T00:00:00.000Z |
| msrc_cve-2025-49177 | Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: data leak in xfixes extension's xfixessetclientdisconnectmode | 2025-06-02T00:00:00.000Z | 2025-08-07T00:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2019-011486 | Arbitrary File Deletion Vulnerability in Hitachi Command Suite | 2019-11-11T14:10+09:00 | 2019-11-11T14:10+09:00 |
| jvndb-2019-011488 | Information Disclosure Vulnerability in Hitachi Command Suite | 2019-11-11T14:09+09:00 | 2019-12-02T15:46+09:00 |
| jvndb-2019-011487 | DoS Vulnerability in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor | 2019-11-11T14:09+09:00 | 2019-11-11T14:09+09:00 |
| jvndb-2019-000068 | Rakuma App vulnerable to authentication information disclosure | 2019-11-07T14:50+09:00 | 2019-11-07T14:50+09:00 |
| jvndb-2019-011088 | Trend Micro OfficeScan vulnerable to directory traversal | 2019-10-30T10:59+09:00 | 2019-12-02T16:08+09:00 |
| jvndb-2019-000067 | Library Information Management System LIMEDIO vulnerable to open redirect | 2019-10-28T15:37+09:00 | 2019-10-28T15:37+09:00 |
| jvndb-2019-000066 | PowerCMS vulnerable to open redirect | 2019-10-23T16:00+09:00 | 2019-10-23T16:00+09:00 |
| jvndb-2019-010375 | Multiple Vulnerabilities in Hitachi Global Link Manager | 2019-10-18T14:21+09:00 | 2019-10-18T14:21+09:00 |
| jvndb-2019-010374 | Vulnerability in Cosminexus HTTP Server and Hitachi Web Server | 2019-10-18T14:18+09:00 | 2019-10-18T14:18+09:00 |
| jvndb-2019-000065 | NetCommons3 vulnerable to cross-site scripting | 2019-10-15T12:39+09:00 | 2019-10-15T12:39+09:00 |
| jvndb-2019-000064 | Multiple vulnerabilities in WordPress Plugin "wpDataTables Lite" | 2019-10-11T15:08+09:00 | 2019-10-16T12:40+09:00 |
| jvndb-2019-000062 | Multiple OS command injection vulnerabilities in DBA-1510P | 2019-10-07T15:17+09:00 | 2019-10-07T15:17+09:00 |
| jvndb-2019-000063 | Multiple vulnerabilities in EC-CUBE module "REMISE Payment module (2.11, 2.12 and 2.13)" | 2019-10-07T15:09+09:00 | 2019-10-07T15:09+09:00 |
| jvndb-2019-009884 | FON routers may behave as an open resolver | 2019-10-02T10:59+09:00 | 2019-12-27T18:05+09:00 |
| jvndb-2019-000060 | Multiple integer overflow vulnerabilities in LINE(Android) | 2019-09-19T17:59+09:00 | 2019-10-18T15:17+09:00 |
| jvndb-2019-000058 | Multiple buffer overflow vulnerabilities in multiple Ricoh printers and Multifunction Printers (MFPs) | 2019-09-13T14:29+09:00 | 2020-02-25T17:27+09:00 |
| jvndb-2019-000059 | apng-drawable vulnerable to integer overflow | 2019-09-12T13:55+09:00 | 2019-10-18T15:23+09:00 |
| jvndb-2019-000057 | SHIRASAGI vulnerable to open redirect | 2019-09-10T13:56+09:00 | 2019-09-10T13:56+09:00 |
| jvndb-2019-008917 | Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor | 2019-09-09T15:58+09:00 | 2019-09-09T15:58+09:00 |
| jvndb-2019-000056 | Panasonic Video Insight VMS vulnerable to SQL injection | 2019-09-02T13:57+09:00 | 2020-06-26T12:27+09:00 |
| jvndb-2019-000054 | Cybozu Garoon vulnerable to SQL injection | 2019-08-26T13:48+09:00 | 2019-10-08T16:48+09:00 |
| jvndb-2019-000053 | Smart TV Box fails to restrict access permissions | 2019-08-23T15:57+09:00 | 2019-10-08T17:35+09:00 |
| jvndb-2019-000052 | ApeosWare Management Suite and ApeosWare Management Suite 2 contain open redirect vulnerability | 2019-08-15T14:29+09:00 | 2021-04-12T13:30+09:00 |
| jvndb-2019-007404 | WonderCMS vulnerable to directory traversal | 2019-08-09T12:23+09:00 | 2019-10-08T17:23+09:00 |
| jvndb-2019-000051 | EC-CUBE plugin "Amazon Pay Plugin 2.12,2.13" vulnerable to cross-site scripting | 2019-08-07T13:58+09:00 | 2019-08-07T13:58+09:00 |
| jvndb-2019-000050 | Central Dogma vulnerable to cross-site scripting | 2019-07-31T15:29+09:00 | 2019-10-04T16:37+09:00 |
| jvndb-2019-000049 | WordPress Plugin "Category Specific RSS feed Subscription" vulnerable to cross-site request forgery | 2019-07-18T13:56+09:00 | 2019-10-08T16:28+09:00 |
| jvndb-2019-000048 | WordPress Plugin "WordPress Ultra Simple Paypal Shopping Cart" vulnerable to cross-site request forgery | 2019-07-16T16:16+09:00 | 2019-10-08T16:38+09:00 |
| jvndb-2019-000047 | Multiple vulnerabilities in Cybozu Garoon | 2019-07-16T16:08+09:00 | 2019-10-08T17:19+09:00 |
| jvndb-2019-000046 | Intel Dual Band Wireless-AC 8260 vulnerable to denial-of-service (DoS) | 2019-07-10T14:07+09:00 | 2019-07-10T14:07+09:00 |
| ID | Description | Updated |
|---|