Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-2218 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
D-Link DCS-933L alphapd setSystemAdmin command injection |
D-Link |
DCS-933L |
2026-02-09T06:02:09.726Z | 2026-02-23T09:57:39.765Z |
| CVE-2026-2217 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
itsourcecode Event Management System manage_user.php s… |
itsourcecode |
Event Management System |
2026-02-09T05:32:07.190Z | 2026-02-23T09:57:24.618Z |
| CVE-2025-15572 |
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
|
wasm3 NewCodePage memory leak |
n/a |
wasm3 |
2026-02-10T15:32:08.031Z | 2026-02-23T09:57:11.150Z |
| CVE-2026-2216 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
rachelos WeRSS we-mp-rss tools.py download_export_file… |
rachelos |
WeRSS we-mp-rss |
2026-02-09T05:02:06.373Z | 2026-02-23T09:56:58.204Z |
| CVE-2026-2215 |
6.3 (4.0)
3.7 (3.1)
3.7 (3.0)
|
rachelos WeRSS we-mp-rss JWT auth.py default key |
rachelos |
WeRSS we-mp-rss |
2026-02-09T04:32:06.678Z | 2026-02-23T09:56:44.351Z |
| CVE-2025-15571 |
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
|
ckolivas lrzip stream.c ucompthread null pointer dereference |
ckolivas |
lrzip |
2026-02-10T14:32:08.345Z | 2026-02-23T09:56:32.516Z |
| CVE-2026-2214 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
code-projects for Plugin AdminAddAlbum.php cross site … |
code-projects |
for Plugin |
2026-02-09T04:02:06.833Z | 2026-02-23T09:56:18.577Z |
| CVE-2026-2213 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
code-projects Online Music Site AdminAddAlbum.php unre… |
code-projects |
Online Music Site |
2026-02-09T03:32:07.034Z | 2026-02-23T09:56:05.555Z |
| CVE-2026-2212 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Online Music Site AdminEditCategory.php … |
code-projects |
Online Music Site |
2026-02-09T03:02:06.733Z | 2026-02-23T09:55:52.755Z |
| CVE-2026-2211 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Online Music Site AdminDeleteCategory.ph… |
code-projects |
Online Music Site |
2026-02-09T02:32:07.654Z | 2026-02-23T09:55:40.507Z |
| CVE-2025-15570 |
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
|
ckolivas lrzip stream.c lzma_decompress_buf use after free |
ckolivas |
lrzip |
2026-02-10T13:02:06.564Z | 2026-02-23T09:55:28.696Z |
| CVE-2026-2210 |
8.6 (4.0)
7.2 (3.1)
7.2 (3.0)
|
D-Link DIR-823X set_filtering sub_4211C8 os command in… |
D-Link |
DIR-823X |
2026-02-09T02:02:14.577Z | 2026-02-23T09:55:14.499Z |
| CVE-2025-15569 |
7.3 (4.0)
7 (3.1)
7 (3.0)
|
Artifex MuPDF win_main.c get_system_dpi uncontrolled s… |
Artifex |
MuPDF |
2026-02-10T10:02:09.074Z | 2026-02-23T09:54:58.415Z |
| CVE-2026-2209 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
WeKan Custom Translation translationBody.js setCreateT… |
n/a |
WeKan |
2026-02-08T01:14:34.308Z | 2026-02-23T09:54:44.601Z |
| CVE-2026-2208 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
WeKan Rules rules.js RulesBleed authorization |
n/a |
WeKan |
2026-02-08T01:09:41.645Z | 2026-02-23T09:54:32.411Z |
| CVE-2026-2207 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
WeKan Activity Publication activities.js LinkedBoardAc… |
n/a |
WeKan |
2026-02-08T01:09:38.774Z | 2026-02-23T09:54:19.684Z |
| CVE-2026-2206 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
WeKan Administrative Repair fixDuplicateLists.js FixDu… |
n/a |
WeKan |
2026-02-08T01:09:36.037Z | 2026-02-23T09:54:07.822Z |
| CVE-2026-2205 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
WeKan Meteor Publication cards.js CardPubSubBleed info… |
n/a |
WeKan |
2026-02-08T01:09:32.732Z | 2026-02-23T09:53:55.977Z |
| CVE-2026-2203 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda AC8 Embedded Httpd Service fast_setting_wifi_set… |
Tenda |
AC8 |
2026-02-09T02:02:10.131Z | 2026-02-23T09:53:42.927Z |
| CVE-2026-2202 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda AC8 httpd WifiGuestSet fromSetWifiGusetBasic buf… |
Tenda |
AC8 |
2026-02-09T01:32:09.560Z | 2026-02-23T09:53:28.713Z |
| CVE-2026-2201 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
ZeroWdd studentmanager LeaveController.java addLeave c… |
ZeroWdd |
studentmanager |
2026-02-09T01:02:09.962Z | 2026-02-23T09:53:11.632Z |
| CVE-2026-2200 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
heyewei JFinalCMS API Endpoint save cross site scripting |
heyewei |
JFinalCMS |
2026-02-09T01:02:05.911Z | 2026-02-23T09:52:53.144Z |
| CVE-2026-2199 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Online Reviewer System user-delete.php s… |
code-projects |
Online Reviewer System |
2026-02-09T00:32:09.731Z | 2026-02-23T09:52:42.110Z |
| CVE-2026-2198 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Online Reviewer System loaddata.php sql … |
code-projects |
Online Reviewer System |
2026-02-09T00:32:07.683Z | 2026-02-23T09:52:29.327Z |
| CVE-2026-2197 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Online Reviewer System exam-delete.php s… |
code-projects |
Online Reviewer System |
2026-02-09T00:02:09.497Z | 2026-02-23T09:52:15.433Z |
| CVE-2026-2196 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Online Reviewer System exam-update.php s… |
code-projects |
Online Reviewer System |
2026-02-09T00:02:07.368Z | 2026-02-23T09:52:03.178Z |
| CVE-2026-2195 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Online Reviewer System questions-view.ph… |
code-projects |
Online Reviewer System |
2026-02-08T23:32:10.858Z | 2026-02-23T09:51:50.404Z |
| CVE-2026-2194 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
D-Link DI-7100G C1 start_proxy_client_email command in… |
D-Link |
DI-7100G C1 |
2026-02-08T23:32:08.759Z | 2026-02-23T09:51:36.490Z |
| CVE-2026-2193 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
D-Link DI-7100G C1 set_jhttpd_info command injection |
D-Link |
DI-7100G C1 |
2026-02-08T23:02:11.243Z | 2026-02-23T09:51:21.510Z |
| CVE-2026-2192 |
8.6 (4.0)
7.2 (3.1)
7.2 (3.0)
|
Tenda AC9 formGetRebootTimer stack-based overflow |
Tenda |
AC9 |
2026-02-08T23:02:07.463Z | 2026-02-23T09:51:06.600Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2019-25461 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi Platinum E-Ticaret v5 SQL Injection via ajax… |
Web-ofisi |
Ticaret |
2026-02-22T14:12:15.148Z | 2026-02-23T21:40:17.722Z |
| CVE-2019-25460 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi Platinum E-Ticaret v5 SQL Injection via q Pa… |
Web-ofisi |
Ticaret |
2026-02-22T14:12:14.220Z | 2026-02-23T21:40:41.608Z |
| CVE-2019-25459 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi Emlak V2 SQL Injection via emlak-ara.html |
Web-ofisi |
Emlak |
2026-02-22T14:12:13.169Z | 2026-02-23T21:41:11.665Z |
| CVE-2019-25458 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi Firma Rehberi v1 SQL Injection via firmalar.html |
Web-ofisi |
Firma Rehberi |
2026-02-22T14:12:12.162Z | 2026-02-23T21:41:41.098Z |
| CVE-2019-25457 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi Firma v13 SQL Injection via oz Parameter |
Web-ofisi |
Firma |
2026-02-22T14:12:11.280Z | 2026-02-22T14:12:11.280Z |
| CVE-2019-25456 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi Emlak v2 SQL Injection via ara Parameter |
Web-ofisi |
Emlak |
2026-02-22T14:12:10.439Z | 2026-02-22T14:12:10.439Z |
| CVE-2019-25455 |
8.8 (4.0)
8.2 (3.1)
|
Web Ofisi E-Ticaret v3 SQL Injection via ara.html |
Web-ofisi |
Ticaret |
2026-02-22T14:12:09.573Z | 2026-02-22T14:12:09.573Z |
| CVE-2019-25452 |
8.8 (4.0)
8.2 (3.1)
|
Dolibarr ERP/CRM 10.0.1 SQL Injection via elemid |
Dolibarr |
Dolibarr ERP/CRM |
2026-02-22T13:18:25.664Z | 2026-02-22T13:18:25.664Z |
| CVE-2019-25450 |
7.1 (4.0)
7.1 (3.1)
|
Dolibarr ERP/CRM 10.0.1 SQL Injection via card.php |
Dolibarr |
Dolibarr ERP/CRM |
2026-02-22T13:18:24.715Z | 2026-02-22T13:18:24.715Z |
| CVE-2019-25446 |
8.8 (4.0)
8.2 (3.1)
|
DIGIT CENTRIS ERP Every version SQL Injection via datu… |
Digit-Rs |
DIGIT CENTRIS |
2026-02-22T13:18:23.861Z | 2026-02-22T13:18:23.861Z |
| CVE-2019-25443 |
8.8 (4.0)
8.2 (3.1)
|
Inventory Webapp SQL Injection via add-item.php |
edlangley |
inventory-webapp |
2026-02-22T13:18:23.010Z | 2026-02-22T13:18:23.010Z |
| CVE-2019-25442 |
8.8 (4.0)
8.2 (3.1)
|
Web Wiz Forums 12.01 SQL Injection via PF Parameter |
Webwiz |
Web Wiz Forums |
2026-02-22T13:18:22.035Z | 2026-02-22T13:18:22.035Z |
| CVE-2019-25440 |
8.8 (4.0)
8.2 (3.1)
|
WebIncorp ERP Every version SQL Injection via product_… |
Webincorp |
WebIncorp ERP |
2026-02-22T13:34:37.038Z | 2026-02-23T19:05:54.854Z |
| CVE-2019-25439 |
8.8 (4.0)
8.2 (3.1)
|
NoviSmart CMS SQL Injection via Referer HTTP Header |
Novismart |
NoviSmart CMS |
2026-02-22T13:34:36.159Z | 2026-02-23T19:06:44.570Z |
| CVE-2019-25433 |
8.8 (4.0)
8.2 (3.1)
|
XOOPS CMS 2.5.9 SQL Injection via gerar_pdf.php |
Xoops |
XOOPS CMS |
2026-02-22T13:34:35.308Z | 2026-02-23T19:07:26.710Z |
| CVE-2019-25391 |
8.8 (4.0)
8.2 (3.1)
|
Ashop Shopping Cart Software Lastest Latest SQL Inject… |
Ashopsoftware |
Ashop Shopping Cart Software |
2026-02-22T13:43:50.775Z | 2026-02-22T13:43:50.775Z |
| CVE-2019-25366 |
8.8 (4.0)
8.2 (3.1)
|
microASP Portal+ CMS SQL Injection via pagina.phtml |
Microasp |
microASP (Portal+) CMS |
2026-02-22T13:43:49.812Z | 2026-02-23T19:05:07.701Z |
| CVE-2026-26324 |
7.5 (3.1)
|
OpenClaw has a SSRF guard bypass via full-form IPv4-ma… |
openclaw |
openclaw |
2026-02-19T22:49:24.293Z | 2026-02-20T15:40:05.566Z |
| CVE-2021-36343 |
7.5 (3.1)
|
Dell BIOS contains an improper input validation v… |
Dell |
CPG BIOS |
2022-01-24T20:10:19.520Z | 2024-09-16T16:44:04.277Z |
| CVE-2021-36342 |
7.5 (3.1)
|
Dell BIOS contains an improper input validation v… |
Dell |
CPG BIOS |
2022-01-24T20:10:18.115Z | 2024-09-16T18:34:09.570Z |
| CVE-2026-26003 |
6.9 (4.0)
|
FastGPT Plugin forwarding request is not authenticated… |
labring |
FastGPT |
2026-02-10T17:52:38.919Z | 2026-02-10T19:06:11.563Z |
| CVE-2026-25993 |
9.3 (4.0)
|
EverShop has a Second-Order SQL Injection in URL Rewri… |
evershopcommerce |
evershop |
2026-02-10T17:43:38.998Z | 2026-02-10T19:29:56.966Z |
| CVE-2022-2290 |
6.4 (3.0)
|
Cross-site Scripting (XSS) - Reflected in zadam/trilium |
zadam |
zadam/trilium |
2022-07-03T06:05:13 | 2024-08-03T00:32:09.599Z |
| CVE-2025-13453 |
7 (4.0)
6.8 (3.1)
|
A potential vulnerability was reported in some Th… |
Lenovo |
ThinkPlus FU100 |
2026-01-14T22:18:13.439Z | 2026-01-15T13:36:22.092Z |
| CVE-2026-25992 |
7.5 (3.1)
|
SiYuan has a File Read Interface Case Bypass Vulnerability |
siyuan-note |
siyuan |
2026-02-10T17:47:36.041Z | 2026-02-10T19:17:41.722Z |
| CVE-2026-25947 |
8.8 (3.1)
|
Worklenz Boolean-Based Blind SQL Injection via Imprope… |
Worklenz |
worklenz |
2026-02-10T17:32:56.224Z | 2026-02-10T19:26:19.859Z |
| CVE-2025-13454 |
5.7 (4.0)
4.7 (3.1)
|
A potential vulnerability was reported in ThinkPl… |
Lenovo |
ThinkPlus FU100 |
2026-01-14T22:18:18.306Z | 2026-01-15T13:37:01.823Z |
| CVE-2026-25889 |
5.4 (3.1)
|
File Browser has an Authentication Bypass in User Pass… |
filebrowser |
filebrowser |
2026-02-09T21:18:13.054Z | 2026-02-10T15:57:57.441Z |
| CVE-2026-21484 |
5.3 (3.1)
|
AnythingLLM Vulnerable to Username Enumeration w/ Pass… |
Mintplex-Labs |
anything-llm |
2026-01-03T01:21:39.386Z | 2026-01-05T20:36:58.168Z |
| CVE-2025-70152 |
9.8 (3.1)
|
code-projects Community Project Scholars Tracking… |
n/a |
n/a |
2026-02-18T00:00:00.000Z | 2026-02-18T18:06:19.419Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2019-25433 | XOOPS CMS 2.5.9 contains an SQL injection vulnerability that allows unauthenticated attackers to ma… | 2026-02-22T14:16:00.673 | 2026-02-23T18:13:53.397 |
| fkie_cve-2019-25391 | Ashop Shopping Cart Software contains a time-based blind SQL injection vulnerability that allows at… | 2026-02-22T14:16:00.480 | 2026-02-23T18:13:53.397 |
| fkie_cve-2019-25366 | microASP Portal+ CMS contains an SQL injection vulnerability that allows unauthenticated attackers … | 2026-02-22T14:15:59.433 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-26324 | OpenClaw is a personal AI assistant. Prior to version 2026.2.14, OpenClaw's SSRF protection could b… | 2026-02-19T23:16:25.653 | 2026-02-23T18:13:45.107 |
| fkie_cve-2021-36343 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user… | 2022-01-24T20:15:08.050 | 2026-02-23T18:09:29.913 |
| fkie_cve-2021-36342 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user… | 2022-01-24T20:15:07.987 | 2026-02-23T18:09:00.677 |
| fkie_cve-2026-26003 | FastGPT is an AI Agent building platform. From 4.14.0 to 4.14.5, attackers can directly access the … | 2026-02-10T18:16:39.107 | 2026-02-23T18:06:14.713 |
| fkie_cve-2026-25993 | EverShop is a TypeScript-first eCommerce platform. During category update and deletion event handli… | 2026-02-10T18:16:38.957 | 2026-02-23T18:03:12.130 |
| fkie_cve-2022-2290 | Cross-site Scripting (XSS) - Reflected in GitHub repository zadam/trilium prior to 0.52.4, 0.53.1-beta. | 2022-07-03T06:15:07.123 | 2026-02-23T18:00:15.210 |
| fkie_cve-2025-13453 | A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with ph… | 2026-01-14T23:15:55.483 | 2026-02-23T18:00:07.973 |
| fkie_cve-2026-25992 | SiYuan is a personal knowledge management system. Prior to 3.5.5, the /api/file/getFile endpoint us… | 2026-02-10T18:16:38.807 | 2026-02-23T17:58:09.347 |
| fkie_cve-2026-25947 | Worklenz is a project management tool. Prior to 2.1.7, there are multiple SQL injection vulnerabili… | 2026-02-10T18:16:38.423 | 2026-02-23T17:57:18.470 |
| fkie_cve-2025-13454 | A potential vulnerability was reported in ThinkPlus configuration software that could allow a local… | 2026-01-14T23:15:55.647 | 2026-02-23T17:57:10.713 |
| fkie_cve-2026-25889 | File Browser provides a file managing interface within a specified directory and it can be used to … | 2026-02-09T22:16:03.723 | 2026-02-23T17:55:17.183 |
| fkie_cve-2026-21484 | AnythingLLM is an application that turns pieces of content into context that any LLM can use as ref… | 2026-01-03T02:15:41.553 | 2026-02-23T17:54:38.833 |
| fkie_cve-2025-70152 | code-projects Community Project Scholars Tracking System 1.0 is vulnerable to SQL Injection in the … | 2026-02-18T18:24:21.530 | 2026-02-23T17:54:31.543 |
| fkie_cve-2025-70151 | code-projects Scholars Tracking System 1.0 allows an authenticated attacker to achieve remote code … | 2026-02-18T18:24:20.757 | 2026-02-23T17:53:20.030 |
| fkie_cve-2025-13455 | A vulnerability was reported in ThinkPlus configuration software that could allow a local authentic… | 2026-01-14T23:15:55.803 | 2026-02-23T17:53:20.473 |
| fkie_cve-2026-25791 | Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to 1.7.0, th… | 2026-02-09T21:15:49.650 | 2026-02-23T17:42:31.743 |
| fkie_cve-2026-25757 | Spree is an open source e-commerce solution built with Ruby on Rails. Prior to versions 5.0.8, 5.1.… | 2026-02-06T23:15:54.527 | 2026-02-23T17:40:58.347 |
| fkie_cve-2026-25059 | OpenList Frontend is a UI component for OpenList. Prior to 4.1.10, the application contains path tr… | 2026-02-02T23:16:08.753 | 2026-02-23T17:35:20.183 |
| fkie_cve-2026-25060 | OpenList Frontend is a UI component for OpenList. Prior to 4.1.10, certificate verification is disa… | 2026-02-02T23:16:08.913 | 2026-02-23T17:35:00.207 |
| fkie_cve-2025-65017 | Decidim is a participatory democracy framework. In versions from 0.30.0 to before 0.30.4 and from 0… | 2026-02-03T15:16:12.403 | 2026-02-23T17:32:33.507 |
| fkie_cve-2026-23829 | Mailpit is an email testing tool and API for developers. Prior to version 1.28.3, Mailpit's SMTP se… | 2026-01-19T00:15:48.707 | 2026-02-23T17:29:31.440 |
| fkie_cve-2026-21518 | Improper neutralization of special elements used in a command ('command injection') in GitHub Copil… | 2026-02-10T18:16:34.263 | 2026-02-23T17:23:27.390 |
| fkie_cve-2025-15549 | FluentCMS 2026 contains a stored cross-site scripting vulnerability that allows authenticated admin… | 2026-01-29T20:16:07.010 | 2026-02-23T17:23:19.860 |
| fkie_cve-2023-51763 | csv_builder.rb in ActiveAdmin (aka Active Admin) before 3.2.0 allows CSV injection. | 2023-12-24T04:15:07.633 | 2026-02-23T17:23:19.677 |
| fkie_cve-2025-69806 | p2r3 bareiron commit: 8e4d4020d contains an Out-of-bounds Read, which allows unauthenticated remote… | 2026-02-12T18:16:08.657 | 2026-02-23T17:21:48.243 |
| fkie_cve-2025-69807 | p2r3 Bareiron commit: 8e4d4020d is vulnerable to Buffer Overflow, which allows unauthenticated remo… | 2026-02-12T18:16:08.763 | 2026-02-23T17:20:35.473 |
| fkie_cve-2020-0998 | <p>An elevation of privilege vulnerability exists when the Windows Graphics Component improperly ha… | 2020-09-11T17:15:15.213 | 2026-02-23T17:19:10.927 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-m425-8325-xcgg |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-jwf5-w959-739v |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-jh5v-5566-88p4 |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-h3vc-4h48-9gjq |
4.3 (3.1)
|
Missing Authorization vulnerability in tstephenson WP-CORS wp-cors allows Exploiting Incorrectly Co… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-h337-mc5p-h2rq |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-h2h9-5q4p-862f |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-gvqh-m2gv-282f |
3.8 (3.1)
|
Missing Authorization vulnerability in creativeinteractivemedia Real 3D FlipBook real3d-flipbook-li… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-fjcf-7xrj-q2cq |
4.3 (3.1)
|
Missing Authorization vulnerability in uixthemes Sober sober allows Exploiting Incorrectly Configur… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-c923-66mh-cwqh |
4.3 (3.1)
|
Missing Authorization vulnerability in crgeary JAMstack Deployments wp-jamstack-deployments allows … | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-9qc3-jghc-hw87 |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-8v8r-fxc3-2hjf |
5.3 (3.1)
|
Missing Authorization vulnerability in WPDeveloper NotificationX notificationx allows Exploiting In… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-8q47-qffj-3rjx |
5.4 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in ThimPress RealPress realpress allows Cross Site … | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-855r-j6w5-8868 |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-6f86-pp6p-mrph |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-6ccf-h672-3wqh |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-54pq-hwv5-65gf |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-4vq4-242h-q9qr |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-4hv2-9h3g-44xc |
4.3 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in themastercut Revision Manager TMC revision-manag… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-4c3j-77qx-q688 |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-2mwh-gp93-cff3 |
4.3 (3.1)
|
Missing Authorization vulnerability in flycart UpsellWP checkout-upsell-and-order-bumps allows Expl… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-2h8x-f6wg-4f5c |
5.3 (3.1)
|
Missing Authorization vulnerability in PluginRx Broken Link Notifier broken-link-notifier allows Ex… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-xwm4-xpf9-mh28 |
4.3 (3.1)
|
Missing Authorization vulnerability in echoplugins Knowledge Base for Documentation, FAQs with AI A… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:45Z |
| ghsa-wf47-fvx4-6g8w |
6.5 (3.1)
|
Missing Authorization vulnerability in codepeople Calculated Fields Form calculated-fields-form all… | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ghsa-vjqp-jjh4-4pp5 |
5.4 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in wpcoachify Coachify coachify allows Cross Site R… | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ghsa-vjf2-j9mf-px53 |
7.6 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ghsa-v7h8-7wpg-c8vx |
4.3 (3.1)
|
Missing Authorization vulnerability in CryoutCreations Serious Slider cryout-serious-slider allows … | 2026-02-19T18:31:53Z | 2026-02-19T21:30:45Z |
| ghsa-v45v-r9m7-cwxg |
6.5 (3.1)
|
Missing Authorization vulnerability in Kodezen LLC Academy LMS academy allows Exploiting Incorrectl… | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ghsa-qmpj-cvwj-r2m8 |
4.3 (3.1)
|
Missing Authorization vulnerability in sparklewpthemes Fitness FSE fitness-fse allows Exploiting In… | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ghsa-hr4r-2pv8-q3j3 |
5.3 (3.1)
|
Missing Authorization vulnerability in raratheme Spa and Salon spa-and-salon allows Exploiting Inco… | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ghsa-fq4w-55p7-p77c |
4.7 (3.1)
|
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in KaizenCoders Update URLs ̵… | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2022-236 |
|
The Apache Spark UI offers the possibility to enable ACLs via the configuration option sp… | pyspark | 2022-07-18T07:15:00Z | 2022-07-25T14:38:46.692270Z |
| pysec-2022-235 |
|
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles uploa… | octobot | 2022-07-16T17:15:00Z | 2022-07-21T08:44:55.990435Z |
| pysec-2022-226 |
|
The package whoogle-search before 0.7.2 are vulnerable to Cross-site Scripting (XSS) via … | whoogle-search | 2022-07-12T15:15:00Z | 2022-07-14T05:11:54.875994Z |
| pysec-2022-222 |
|
The Security Team noticed that the termination condition of the for loop in the readExter… | systemds | 2022-06-27T18:15:00Z | 2022-07-14T05:11:54.728743Z |
| pysec-2022-224 |
|
Synapse is an open source home server implementation for the Matrix chat network. In vers… | matrix-synapse | 2022-06-28T17:15:00Z | 2022-07-14T05:11:53.027228Z |
| pysec-2022-225 |
|
The ganga-devs/ganga repository before 8.5.10 on GitHub allows absolute path traversal be… | ganga | 2022-07-11T01:15:00Z | 2022-07-14T05:11:52.325698Z |
| pysec-2022-223 |
|
mat2 (aka metadata anonymisation toolkit) before 0.13.0 allows ../ directory traversal du… | mat2 | 2022-07-08T18:15:00Z | 2022-07-14T05:11:52.948988Z |
| pysec-2021-871 |
|
An issue was discovered in the Dask distributed package before 2021.10.0 for Python. Sing… | distributed | 2021-10-26T11:15:00Z | 2022-07-14T05:11:51.739830Z |
| pysec-2022-221 |
|
The Catly-Translate package in PyPI v0.0.3 to v0.0.5 was discovered to contain a code exe… | catly-translate | 2022-06-24T21:15:00Z | 2022-07-06T20:32:04.087337Z |
| pysec-2022-43168 |
9.8 (3.1)
|
The Sixfab-Tool in PyPI v0.0.2 to v0.0.3 was discovered to contain a code execution backd… | sixfab-tool | 2022-06-24T21:15:00Z | 2022-07-06T19:30:00Z |
| pysec-2022-220 |
|
** Reserved ** The pyesasky for python, as distributed on PyPI, included a code-execution… | pyesasky | 2022-06-24T21:15:00Z | 2022-07-06T18:41:16.470294Z |
| pysec-2022-217 |
|
The cryptoasset-data-downloader package in PyPI v1.0.0 to v1.0.1 was discovered to contai… | cryptoasset-data-downloader | 2022-06-24T21:15:00Z | 2022-07-05T22:30:15.999007Z |
| pysec-2022-219 |
|
The RootInteractive package in PyPI v0.0.5 to v0.0.19b0 was discovered to contain a code … | rootinteractive | 2022-06-24T21:15:00Z | 2022-07-05T20:48:00Z |
| pysec-2022-218 |
|
The django-navbar-client package of v0.9.50 to v1.0.1 was discovered to contain a code ex… | django-navbar-client | 2022-06-24T21:15:00Z | 2022-07-05T20:48:00Z |
| pysec-2022-215 |
|
The ML-Scanner package in PyPI v0.1.0 to v0.1.5 was discovered to contain a code executio… | ml-scanner | 2022-06-24T21:15:00Z | 2022-07-05T20:33:43.190558Z |
| pysec-2022-214 |
|
The Beginner package in PyPI v0.0.2 to v0.0.4 was discovered to contain a code execution … | beginner | 2022-06-24T21:15:00Z | 2022-07-05T20:33:42.390810Z |
| pysec-2022-216 |
|
The Perdido package in PyPI v0.0.1 to v0.0.2 was discovered to contain a code execution b… | perdido | 2022-06-24T21:15:00Z | 2022-07-05T19:16:00Z |
| pysec-2022-213 |
|
An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and… | django | 2022-07-04T16:15:00Z | 2022-07-04T18:45:03.823587Z |
| pysec-2022-211 |
|
Jupyter Server provides the backend (i.e. the core services, APIs, and REST endpoints) fo… | jupyter-server | 2022-06-14T21:15:00Z | 2022-06-24T18:46:20.115761Z |
| pysec-2022-210 |
|
An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM … | salt | 2022-06-23T17:15:00Z | 2022-06-23T18:47:26.936484Z |
| pysec-2022-209 |
|
Command Injection in GitHub repository nuitka/nuitka prior to 0.9. | nuitka | 2022-06-12T14:15:00Z | 2022-06-23T11:27:14.332916Z |
| pysec-2021-56 |
|
In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the … | salt | 2021-04-23T06:15:00Z | 2022-06-21T15:53:31.288525Z |
| pysec-2021-346 |
|
An issue was discovered in SaltStack Salt before 3003.3. The salt minion installer will a… | salt | 2021-09-08T15:15:00Z | 2022-06-21T15:53:31.228842Z |
| pysec-2021-318 |
|
An issue was discovered in SaltStack Salt before 3003.3. A user who has control of the so… | salt | 2021-09-08T15:15:00Z | 2022-06-21T15:53:31.158376Z |
| pysec-2022-208 |
|
django-s3file is a lightweight file upload input for Django and Amazon S3 . In versions p… | django-s3file | 2022-06-09T04:15:00Z | 2022-06-17T16:54:24.425121Z |
| pysec-2022-207 |
|
An issue was discovered in Couchbase Sync Gateway 3.x before 3.0.2. Admin credentials are… | couchbase | 2022-06-10T12:15:00Z | 2022-06-17T16:54:24.107616Z |
| pysec-2022-206 |
|
OAuthenticator is an OAuth token library for the JupyerHub login handler. CILogonOAuthent… | oauthenticator | 2022-06-09T13:15:00Z | 2022-06-16T05:33:11.901142Z |
| pysec-2022-205 |
|
Waitress is a Web Server Gateway Interface server for Python 2 and 3. Waitress versions 2… | waitress | 2022-05-31T23:15:00Z | 2022-06-14T20:37:51.457649Z |
| pysec-2022-204 |
|
The package cookiecutter before 2.1.1 are vulnerable to Command Injection via hg argument… | cookiecutter | 2022-06-08T08:15:00Z | 2022-06-08T10:35:31.256727Z |
| pysec-2022-203 |
|
** DISPUTED ** Improper parsing of HTTP requests in Pallets Werkzeug v2.1.0 and below all… | werkzeug | 2022-05-25T01:15:00Z | 2022-06-07T22:30:02.873111Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-4064 | A vulnerability was found in Tenda AC8 16.03.34.09. It has been declared as critical. Thi… | 2024-04-24T05:02:07.857775Z |
| gsd-2024-4063 | A vulnerability was found in EZVIZ CS-C6-21WFR-8 5.2.7 Build 170628. It has been classifi… | 2024-04-24T05:02:07.881809Z |
| gsd-2024-4062 | A vulnerability was found in Hualai Xiaofang iSC5 3.2.2_112 and classified as problematic… | 2024-04-24T05:02:07.860215Z |
| gsd-2024-4061 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.889826Z |
| gsd-2024-4060 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.859677Z |
| gsd-2024-4059 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.864696Z |
| gsd-2024-4058 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.885494Z |
| gsd-2024-4057 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.865946Z |
| gsd-2024-4056 | Denial of service condition in M-Files Server in versions before 24.4.13592.4 and after … | 2024-04-24T05:02:07.863098Z |
| gsd-2024-4055 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.869036Z |
| gsd-2024-4054 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.864021Z |
| gsd-2024-4053 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.881476Z |
| gsd-2024-4052 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.866890Z |
| gsd-2024-4051 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.885698Z |
| gsd-2024-4050 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.861206Z |
| gsd-2024-4049 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.887459Z |
| gsd-2024-4048 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.869478Z |
| gsd-2024-4047 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:07.870133Z |
| gsd-2024-4046 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.163882Z |
| gsd-2024-4045 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.169036Z |
| gsd-2024-4044 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.164572Z |
| gsd-2024-4043 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.167708Z |
| gsd-2024-4042 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.166333Z |
| gsd-2024-4041 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.169230Z |
| gsd-2024-4040 | VFS Sandbox Escape in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms … | 2024-04-23T05:02:11.165045Z |
| gsd-2024-4039 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.172839Z |
| gsd-2024-4038 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.167515Z |
| gsd-2024-4037 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.166853Z |
| gsd-2024-4036 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.178211Z |
| gsd-2024-4035 | The Photo Gallery – GT3 Image Gallery & Gutenberg Block Gallery plugin for WordPress is v… | 2024-04-23T05:02:11.164766Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-400 | Malicious code in victim-package-b (npm) | 2026-01-21T03:54:46Z | 2026-01-23T01:39:04Z |
| mal-2026-399 | Malicious code in torbaileys (npm) | 2026-01-21T04:11:24Z | 2026-01-23T01:39:04Z |
| mal-2026-398 | Malicious code in tor-libsignal (npm) | 2026-01-21T04:11:24Z | 2026-01-23T01:39:04Z |
| mal-2026-371 | Malicious code in theme-neutral (npm) | 2026-01-20T06:19:57Z | 2026-01-23T01:39:04Z |
| mal-2026-367 | Malicious code in uq-global-ec-uikit (npm) | 2026-01-20T04:16:09Z | 2026-01-23T01:39:04Z |
| mal-2026-366 | Malicious code in testing-package-bose (npm) | 2026-01-20T04:05:57Z | 2026-01-23T01:39:04Z |
| mal-2026-365 | Malicious code in telia-eventapi-client (npm) | 2026-01-20T04:16:08Z | 2026-01-23T01:39:04Z |
| mal-2026-349 | Malicious code in tutor_table (npm) | 2026-01-19T06:07:51Z | 2026-01-23T01:39:04Z |
| mal-2026-334 | Malicious code in viem-js (npm) | 2026-01-19T00:43:31Z | 2026-01-23T01:39:04Z |
| mal-2026-333 | Malicious code in tronweb-tool (npm) | 2026-01-19T00:34:59Z | 2026-01-23T01:39:04Z |
| mal-2026-332 | Malicious code in tailwin (npm) | 2026-01-19T00:43:31Z | 2026-01-23T01:39:04Z |
| mal-2026-324 | Malicious code in typedoc-plugin-fuel-variants (npm) | 2026-01-17T22:15:00Z | 2026-01-23T01:39:04Z |
| MAL-2026-466 | Malicious code in uuu8lgd (npm) | 2026-01-22T17:51:00Z | 2026-01-23T01:39:04Z |
| MAL-2026-459 | Malicious code in un112 (npm) | 2026-01-22T09:55:45Z | 2026-01-23T01:39:04Z |
| MAL-2026-439 | Malicious code in tv-admin-commons (npm) | 2026-01-21T07:40:29Z | 2026-01-23T01:39:04Z |
| MAL-2026-438 | Malicious code in ts-tweetnacl-utils (npm) | 2026-01-21T07:37:23Z | 2026-01-23T01:39:04Z |
| MAL-2026-432 | Malicious code in universal-provider (npm) | 2026-01-21T04:34:17Z | 2026-01-23T01:39:04Z |
| MAL-2026-431 | Malicious code in testpkg-yilider690 (npm) | 2026-01-21T04:44:58Z | 2026-01-23T01:39:04Z |
| MAL-2026-430 | Malicious code in storage-types (npm) | 2026-01-21T04:48:23Z | 2026-01-23T01:39:04Z |
| MAL-2026-401 | Malicious code in victim-package-c (npm) | 2026-01-21T03:54:46Z | 2026-01-23T01:39:04Z |
| MAL-2026-400 | Malicious code in victim-package-b (npm) | 2026-01-21T03:54:46Z | 2026-01-23T01:39:04Z |
| MAL-2026-399 | Malicious code in torbaileys (npm) | 2026-01-21T04:11:24Z | 2026-01-23T01:39:04Z |
| MAL-2026-398 | Malicious code in tor-libsignal (npm) | 2026-01-21T04:11:24Z | 2026-01-23T01:39:04Z |
| MAL-2026-371 | Malicious code in theme-neutral (npm) | 2026-01-20T06:19:57Z | 2026-01-23T01:39:04Z |
| MAL-2026-367 | Malicious code in uq-global-ec-uikit (npm) | 2026-01-20T04:16:09Z | 2026-01-23T01:39:04Z |
| MAL-2026-366 | Malicious code in testing-package-bose (npm) | 2026-01-20T04:05:57Z | 2026-01-23T01:39:04Z |
| MAL-2026-365 | Malicious code in telia-eventapi-client (npm) | 2026-01-20T04:16:08Z | 2026-01-23T01:39:04Z |
| MAL-2026-349 | Malicious code in tutor_table (npm) | 2026-01-19T06:07:51Z | 2026-01-23T01:39:04Z |
| MAL-2026-334 | Malicious code in viem-js (npm) | 2026-01-19T00:43:31Z | 2026-01-23T01:39:04Z |
| MAL-2026-333 | Malicious code in tronweb-tool (npm) | 2026-01-19T00:34:59Z | 2026-01-23T01:39:04Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-1323 | Red Hat Satellite: Schwachstelle ermöglicht Denial of Service | 2025-06-12T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-1319 | VMware Tanzu Spring Framework: Schwachstelle ermöglicht Manipulation von Dateien | 2025-06-12T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-1276 | Microsoft Office Produkte: Mehrere Schwachstellen | 2025-06-10T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-1133 | Grafana: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-22T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-1096 | Grafana: Schwachstelle ermöglicht Cross-Site Scripting | 2025-05-18T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-0867 | Grafana: Mehrere Schwachstellen | 2025-04-22T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-0625 | Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Denial of Service | 2025-03-24T23:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-0602 | VMware Tanzu Spring Security: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2025-03-19T23:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-0232 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-01-30T23:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-0226 | Red Hat Enterprise Linux (Advanced Cluster Management): Mehrere Schwachstellen | 2025-01-30T23:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-0217 | Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-01-29T23:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2024-3444 | Grafana: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-11-12T23:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2024-3238 | Grafana: Schwachstelle ermöglicht Codeausführung | 2024-10-17T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2024-2124 | Linux Kernel: Mehrere Schwachstellen | 2024-09-11T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2024-1788 | Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-08-07T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2024-0813 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2024-04-08T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2024-0699 | Linux-Kernel: Mehrere Schwachstellen ermöglichen Denial of Service und unspezifische Angriffe | 2024-03-24T23:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2023-0923 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-04-11T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2023-0684 | Linux Kernel: Mehrere Schwachstellen | 2023-03-19T23:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2022-1207 | Linux Kernel: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2022-08-29T22:00:00.000+00:00 | 2025-06-17T22:00:00.000+00:00 |
| wid-sec-w-2025-1337 | IBM Tivoli Netcool/OMNIbus: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-06-16T22:00:00.000+00:00 | 2025-06-16T22:00:00.000+00:00 |
| wid-sec-w-2025-1336 | Liferay Liferay DXP: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-06-16T22:00:00.000+00:00 | 2025-06-16T22:00:00.000+00:00 |
| wid-sec-w-2025-1332 | D-LINK Router: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-06-16T22:00:00.000+00:00 | 2025-06-16T22:00:00.000+00:00 |
| wid-sec-w-2025-1331 | BeyondTrust Remote Support: Schwachstelle ermöglicht Codeausführung | 2025-06-16T22:00:00.000+00:00 | 2025-06-16T22:00:00.000+00:00 |
| wid-sec-w-2025-1330 | IBM App Connect Enterprise: Schwachstelle ermöglicht Manipulation der Konfiguration | 2025-06-16T22:00:00.000+00:00 | 2025-06-16T22:00:00.000+00:00 |
| wid-sec-w-2025-1326 | M-Files Server: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-06-15T22:00:00.000+00:00 | 2025-06-16T22:00:00.000+00:00 |
| wid-sec-w-2025-1160 | Mozilla Firefox und Thunderbird: Mehrere Schwachstellen | 2025-05-27T22:00:00.000+00:00 | 2025-06-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0672 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2025-03-31T22:00:00.000+00:00 | 2025-06-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0471 | Python: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-03-02T23:00:00.000+00:00 | 2025-06-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0416 | Wireshark: Schwachstelle ermöglicht Denial of Service | 2025-02-19T23:00:00.000+00:00 | 2025-06-16T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2021:5128 | Red Hat Security Advisory: Openshift Logging security and bug update (5.1.5) | 2021-12-14T18:09:12+00:00 | 2026-02-24T07:11:58+00:00 |
| rhsa-2021:5127 | Red Hat Security Advisory: Openshift Logging security and bug update (5.2.4) | 2021-12-14T18:38:45+00:00 | 2026-02-24T07:11:57+00:00 |
| rhsa-2021:5126 | Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus GA security update | 2021-12-14T16:19:04+00:00 | 2026-02-24T07:11:57+00:00 |
| rhsa-2021:5108 | Red Hat Security Advisory: OpenShift Container Platform 4.8.z security update | 2021-12-14T15:09:31+00:00 | 2026-02-24T07:11:57+00:00 |
| rhsa-2021:5107 | Red Hat Security Advisory: OpenShift Container Platform 4.7.40 security update | 2021-12-16T15:00:19+00:00 | 2026-02-24T07:11:55+00:00 |
| rhsa-2021:5106 | Red Hat Security Advisory: OpenShift Container Platform 4.6.z security update | 2021-12-16T06:12:27+00:00 | 2026-02-24T07:11:55+00:00 |
| rhsa-2021:5094 | Red Hat Security Advisory: OpenShift Container Platform 3.11.z security update | 2021-12-14T05:50:14+00:00 | 2026-02-24T07:11:55+00:00 |
| rhsa-2021:5093 | Red Hat Security Advisory: Red Hat build of Eclipse Vert.x 4.1.5 SP1 security update | 2021-12-14T16:00:56+00:00 | 2026-02-24T07:11:54+00:00 |
| rhea-2024:1870 | Red Hat Enhancement Advisory: Advisory for publishing Helm 3.13.2 GA release | 2024-04-18T00:11:23+00:00 | 2026-02-24T07:11:53+00:00 |
| rhea-2024:1366 | Red Hat Enhancement Advisory: Red Hat Developer Hub 1.1 release | 2024-03-18T18:49:30+00:00 | 2026-02-24T07:11:53+00:00 |
| rhea-2023:7327 | Red Hat Enhancement Advisory: Red Hat 3scale API Management 2.13.7 Release - Container Images | 2023-11-16T12:15:55+00:00 | 2026-02-24T07:11:52+00:00 |
| rhea-2023:7235 | Red Hat Enhancement Advisory: ACS 4.3 enhancement update | 2023-11-15T09:45:23+00:00 | 2026-02-24T07:11:50+00:00 |
| rhba-2024:0599 | Red Hat Bug Fix Advisory: Migration Toolkit for Applications bug fix and enhancement update | 2024-01-30T13:46:48+00:00 | 2026-02-24T07:11:50+00:00 |
| rhba-2023:7648 | Red Hat Bug Fix Advisory: MTV 2.5.3 Images | 2023-12-05T06:56:16+00:00 | 2026-02-24T07:11:49+00:00 |
| rhba-2023:6928 | Red Hat Bug Fix Advisory: go-toolset:rhel8 bug fix and enhancement update | 2023-11-14T16:04:55+00:00 | 2026-02-24T07:11:48+00:00 |
| rhba-2023:6863 | Red Hat Bug Fix Advisory: LVMS 4.14.z Bug Fix and Enhancement update | 2023-11-09T18:33:40+00:00 | 2026-02-24T07:11:47+00:00 |
| rhba-2023:6364 | Red Hat Bug Fix Advisory: golang and delve bug fix and enhancement update | 2023-11-07T08:50:26+00:00 | 2026-02-24T07:11:47+00:00 |
| rhba-2023:6254 | Red Hat Bug Fix Advisory: OpenShift Container Platform Assisted Installer version 2.26.1 release | 2023-11-02T00:10:43+00:00 | 2026-02-24T07:11:44+00:00 |
| rhba-2023:6109 | Red Hat Bug Fix Advisory: MTV 2.4.3 Images | 2023-10-25T12:32:35+00:00 | 2026-02-24T07:11:44+00:00 |
| rhba-2023:6078 | Red Hat Bug Fix Advisory: MTV 2.5.2 Images | 2023-10-24T12:12:11+00:00 | 2026-02-24T07:11:44+00:00 |
| rhba-2023:5806 | Red Hat Bug Fix Advisory: Red Hat Ansible Automation Platform 2.4 Container Release Update | 2023-10-17T19:03:49+00:00 | 2026-02-24T07:11:41+00:00 |
| rhsa-2024:3138 | Red Hat Security Advisory: kernel security, bug fix, and enhancement update | 2024-05-22T10:03:03+00:00 | 2026-02-24T06:56:29+00:00 |
| rhsa-2024:9315 | Red Hat Security Advisory: kernel security update | 2024-11-12T09:11:05+00:00 | 2026-02-24T06:55:20+00:00 |
| rhsa-2024:2394 | Red Hat Security Advisory: kernel security, bug fix, and enhancement update | 2024-04-30T09:57:03+00:00 | 2026-02-24T06:55:15+00:00 |
| rhsa-2026:3124 | Red Hat Security Advisory: kernel security update | 2026-02-24T00:53:29+00:00 | 2026-02-24T06:55:09+00:00 |
| rhsa-2026:2212 | Red Hat Security Advisory: kernel security update | 2026-02-09T02:40:06+00:00 | 2026-02-24T06:54:58+00:00 |
| rhsa-2026:2766 | Red Hat Security Advisory: kernel security update | 2026-02-17T01:03:19+00:00 | 2026-02-24T06:54:57+00:00 |
| rhsa-2026:2759 | Red Hat Security Advisory: kernel security update | 2026-02-16T17:51:18+00:00 | 2026-02-24T06:54:56+00:00 |
| rhsa-2026:2282 | Red Hat Security Advisory: kernel security update | 2026-02-09T09:51:59+00:00 | 2026-02-24T06:54:54+00:00 |
| rhsa-2026:1662 | Red Hat Security Advisory: kernel security update | 2026-02-02T04:06:07+00:00 | 2026-02-24T06:54:49+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-24-347-08 | Siemens COMOS | 2024-12-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-347-04 | Siemens Parasolid | 2024-12-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-347-03 | Siemens RUGGEDCOM ROX II | 2024-12-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-347-01 | Siemens CPCI85 Central Processing/Communication | 2024-12-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-338-05 | Fuji Electric Monitouch V-SFT (Update A) | 2024-12-03T07:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-319-11 | Siemens SIMATIC CP | 2024-11-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-319-10 | Siemens TeleControl Server | 2024-11-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-319-07 | Siemens Engineering Platforms | 2024-11-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-319-06 | Siemens SCALANCE M-800 Family | 2024-11-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-319-03 | Siemens OZW672 and OZW772 Web Server | 2024-11-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-319-02 | Siemens SIPORT | 2024-11-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-319-01 | Siemens RUGGEDCOM CROSSBOW | 2024-11-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-303-01 | Siemens InterMesh Subscriber Devices | 2024-10-23T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-289-01 | Siemens Siveillance Video Camera | 2024-10-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-284-13 | Siemens Tecnomatix Plant Simulation | 2024-10-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-284-08 | Siemens HiMed Cockpit | 2024-10-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-284-07 | Siemens JT2Go | 2024-10-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-284-06 | Siemens SINEC Security Monitor | 2024-10-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-284-05 | Siemens Questa and ModelSim | 2024-10-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-284-03 | Siemens Teamcenter Visualization and JT2Go | 2024-10-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-284-02 | Siemens Simcenter Nastran | 2024-10-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-13 | Siemens SCALANCE W700 | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-12 | Siemens Tecnomatix Plant Simulation | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-09 | Siemens SIMATIC, SIPLUS, and TIM | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-08 | Siemens Industrial Products | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-07 | Siemens SIMATIC RFID Readers | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-02 | Siemens SINUMERIK ONE, SINUMERIK 840D and SINUMERIK 828D | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-193-07 | Siemens SIMATIC and SIMIT | 2024-07-09T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-165-13 | Siemens SINEC Traffic Analyzer | 2024-06-11T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-23-348-11 | Siemens SINUMERIK | 2023-12-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-expressway-csrf-sqpssfy6 | Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-expressway-csrf-sqpsSfY6 | Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-ctt-ivv-4a66dsfj | Cisco Touch 10 Devices Insufficient Identity Verification Vulnerability | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-ctt-dav-hsvehhet | Cisco Touch 10 Devices Downgrade Vulnerability | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-cssm-priv-esc-sejz69dv | Cisco Smart Software Manager On-Prem Privilege Escalation Vulnerability | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-cssm-priv-esc-SEjz69dv | Cisco Smart Software Manager On-Prem Privilege Escalation Vulnerability | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-bw-thinrcpt-xss-gsj4cecu | Cisco BroadWorks Hosted Thin Receptionist Cross-Site Scripting Vulnerability | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-bw-thinrcpt-xss-gSj4CecU | Cisco BroadWorks Hosted Thin Receptionist Cross-Site Scripting Vulnerability | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-ata19x-multivuln-gezyvvs | Cisco ATA 190 Series Analog Telephone Adapter Software Vulnerabilities | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-ata19x-multivuln-GEZYVvs | Cisco ATA 190 Series Analog Telephone Adapter Software Vulnerabilities | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-NFVIS-ISV-BQrvEv2h | Cisco Enterprise NFV Infrastructure Software Improper Signature Verification Vulnerability | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-CTT-IVV-4A66Dsfj | Cisco Touch 10 Devices Insufficient Identity Verification Vulnerability | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-CTT-DAV-HSvEHHEt | Cisco Touch 10 Devices Downgrade Vulnerability | 2022-10-05T16:00:00+00:00 | 2022-10-05T16:00:00+00:00 |
| cisco-sa-apvlan-tdttb4fy | Cisco Access Points VLAN Bypass from Native VLAN Vulnerability | 2022-09-27T16:00:00+00:00 | 2022-10-04T13:22:46+00:00 |
| cisco-sa-apvlan-TDTtb4FY | Cisco Access Points VLAN Bypass from Native VLAN Vulnerability | 2022-09-27T16:00:00+00:00 | 2022-10-04T13:22:46+00:00 |
| cisco-sa-wsa-prv-esc-8pdru8t8 | Cisco Secure Web Appliance Privilege Escalation Vulnerability | 2022-08-17T16:00:00+00:00 | 2022-10-03T18:13:53+00:00 |
| cisco-sa-wsa-prv-esc-8PdRU8t8 | Cisco Secure Web Appliance Privilege Escalation Vulnerability | 2022-08-17T16:00:00+00:00 | 2022-10-03T18:13:53+00:00 |
| cisco-sa-sd-wan-priv-e6e8tedf | Cisco SD-WAN Software Privilege Escalation Vulnerabilities | 2022-09-28T16:00:00+00:00 | 2022-09-29T21:59:32+00:00 |
| cisco-sa-sd-wan-priv-E6e8tEdF | Cisco SD-WAN Software Privilege Escalation Vulnerabilities | 2022-09-28T16:00:00+00:00 | 2022-09-29T21:59:32+00:00 |
| cisco-sa-duo-macos-bypass-ukznpxe6 | Cisco Duo for macOS Authentication Bypass Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-29T21:21:01+00:00 |
| cisco-sa-duo-macOS-bypass-uKZNpXE6 | Cisco Duo for macOS Authentication Bypass Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-29T21:21:01+00:00 |
| cisco-sa-wlc-udp-dos-xdyewhnz | Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst 9100 Series Access Points UDP Processing Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-wlc-udp-dos-XDyEwhNz | Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst 9100 Series Access Points UDP Processing Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-wlc-dos-mkgrrscb | Cisco Wireless LAN Controller AireOS Software FIPS Mode Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-wlc-dos-mKGRrsCB | Cisco Wireless LAN Controller AireOS Software FIPS Mode Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-wlc-dhcp-dos-76pcjpxk | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family DHCP Processing Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-wlc-dhcp-dos-76pCjPxK | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family DHCP Processing Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-webui-cmdinj-gje47emn | Cisco IOS XE Software Web UI Command Injection Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-webui-cmdinj-Gje47EMn | Cisco IOS XE Software Web UI Command Injection Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ssh-excpt-dos-fzobqtnk | Cisco IOS and IOS XE Software SSH Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-41723 | Denial of service via crafted HTTP/2 stream in net/http and golang.org/x/net | 2023-02-01T00:00:00.000Z | 2026-02-18T14:57:45.000Z |
| msrc_cve-2025-39825 | smb: client: fix race with concurrent opens in rename(2) | 2025-09-02T00:00:00.000Z | 2026-02-18T14:57:42.000Z |
| msrc_cve-2024-43856 | dma: fix call order in dmam_free_coherent | 2024-08-02T00:00:00.000Z | 2026-02-18T14:57:42.000Z |
| msrc_cve-2023-45231 | Out-of-Bounds Read in EDK II Network Package | 2024-01-01T08:00:00.000Z | 2026-02-18T14:57:37.000Z |
| msrc_cve-2024-47735 | RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled | 2024-10-01T07:00:00.000Z | 2026-02-18T14:57:35.000Z |
| msrc_cve-2023-27119 | WebAssembly v1.0.29 was discovered to contain a segmentation fault via the component wabt::Decompiler::WrapChild. | 2023-03-10T00:00:00.000Z | 2026-02-18T14:57:35.000Z |
| msrc_cve-2024-26645 | tracing: Ensure visibility when inserting an element into tracing_map | 2024-03-02T08:00:00.000Z | 2026-02-18T14:57:28.000Z |
| msrc_cve-2015-8126 | Multiple buffer overflows in libpng allow remote attackers to cause a denial of service | 2015-11-02T00:00:00.000Z | 2026-02-18T14:57:19.000Z |
| msrc_cve-2024-41006 | netrom: Fix a memory leak in nr_heartbeat_expiry() | 2024-07-01T07:00:00.000Z | 2026-02-18T14:56:56.000Z |
| msrc_cve-2025-39819 | fs/smb: Fix inconsistent refcnt update | 2025-09-02T00:00:00.000Z | 2026-02-18T14:56:52.000Z |
| msrc_cve-2024-47720 | drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func | 2024-10-01T07:00:00.000Z | 2026-02-18T14:56:51.000Z |
| msrc_cve-2015-3416 | The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service (integer overflow and stack-based buffer overflow) or possibly have unspecified other impact via large integers in a crafted printf function call in a SELECT statement. | 2015-04-02T00:00:00.000Z | 2026-02-18T14:56:51.000Z |
| msrc_cve-2022-49484 | mt76: mt7915: fix possible NULL pointer dereference in mt7915_mac_fill_rx_vector | 2025-02-02T00:00:00.000Z | 2026-02-18T14:56:50.000Z |
| msrc_cve-2025-38034 | btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref | 2025-06-02T00:00:00.000Z | 2026-02-18T14:56:48.000Z |
| msrc_cve-2024-53096 | mm: resolve faulty mmap_region() error path behaviour | 2024-11-02T00:00:00.000Z | 2026-02-18T14:56:47.000Z |
| msrc_cve-2024-29943 | An attacker was able to perform an out-of-bounds read or write on a JavaScript object by fooling range-based bounds check elimination. This vulnerability affects Firefox < 124.0.1. | 2024-03-02T08:00:00.000Z | 2026-02-18T14:56:30.000Z |
| msrc_cve-2024-41002 | crypto: hisilicon/sec - Fix memory leak for sec resource release | 2024-07-01T07:00:00.000Z | 2026-02-18T14:56:28.000Z |
| msrc_cve-2023-5764 | Ansible: template injection | 2023-12-01T08:00:00.000Z | 2026-02-18T14:56:25.000Z |
| msrc_cve-2025-38074 | vhost-scsi: protect vq->log_used with vq->mutex | 2025-06-02T00:00:00.000Z | 2026-02-18T14:56:21.000Z |
| msrc_cve-2024-26726 | btrfs: don't drop extent_map for free space inode on write error | 2024-04-02T07:00:00.000Z | 2026-02-18T14:56:12.000Z |
| msrc_cve-2016-5386 | The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect a CGI application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an "httpoxy" issue. | 2016-07-02T00:00:00.000Z | 2026-02-18T14:56:09.000Z |
| msrc_cve-2024-9287 | Virtual environment (venv) activation scripts don't quote paths | 2024-10-01T07:00:00.000Z | 2026-02-18T14:56:08.000Z |
| msrc_cve-2024-25740 | A memory leak flaw was found in the UBI driver in drivers/mtd/ubi/attach.c in the Linux kernel through 6.7.4 for UBI_IOCATT, because kobj->name is not released. | 2024-02-02T08:00:00.000Z | 2026-02-18T14:55:59.000Z |
| msrc_cve-2024-40952 | ocfs2: fix NULL pointer dereference in ocfs2_journal_dirty() | 2024-07-01T07:00:00.000Z | 2026-02-18T14:55:57.000Z |
| msrc_cve-2022-49476 | mt76: mt7921: fix kernel crash at mt7921_pci_remove | 2025-02-02T00:00:00.000Z | 2026-02-18T14:55:49.000Z |
| msrc_cve-2025-38059 | btrfs: avoid NULL pointer dereference if no valid csum tree | 2025-06-02T00:00:00.000Z | 2026-02-18T14:55:44.000Z |
| msrc_cve-2024-41053 | scsi: ufs: core: Fix ufshcd_abort_one racing issue | 2024-07-01T07:00:00.000Z | 2026-02-18T14:55:29.000Z |
| msrc_cve-2024-25739 | create_empty_lvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero bytes and crash because of a missing check for ubi->leb_size. | 2024-02-02T08:00:00.000Z | 2026-02-18T14:55:25.000Z |
| msrc_cve-2023-52621 | bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers | 2024-03-02T08:00:00.000Z | 2026-02-18T14:55:22.000Z |
| msrc_cve-2023-45232 | Infinite loop in EDK II Network Package | 2024-01-01T08:00:00.000Z | 2026-02-18T14:55:21.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2025:15093-1 | ucode-intel-20250512-1.1 on GA media | 2025-05-15T00:00:00Z | 2025-05-15T00:00:00Z |
| opensuse-su-2025:15092-1 | pnpm-10.11.0-1.1 on GA media | 2025-05-15T00:00:00Z | 2025-05-15T00:00:00Z |
| opensuse-su-2025:15091-1 | openssh-10.0p2-2.1 on GA media | 2025-05-15T00:00:00Z | 2025-05-15T00:00:00Z |
| opensuse-su-2025:15090-1 | libvmtools-devel-12.5.2-1.1 on GA media | 2025-05-15T00:00:00Z | 2025-05-15T00:00:00Z |
| opensuse-su-2025:15089-1 | iputils-20240905-3.1 on GA media | 2025-05-15T00:00:00Z | 2025-05-15T00:00:00Z |
| opensuse-su-2025:15088-1 | nbdkit-1.42.3-1.1 on GA media | 2025-05-14T00:00:00Z | 2025-05-14T00:00:00Z |
| opensuse-su-2025:15087-1 | python311-Django-5.2.1-1.1 on GA media | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| opensuse-su-2025:15086-1 | kernel-devel-6.14.6-1.1 on GA media | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| opensuse-su-2025:15085-1 | grub2-2.12-50.1 on GA media | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| opensuse-su-2025:15084-1 | cpp-httplib-devel-0.20.1-1.1 on GA media | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| opensuse-su-2025:0153-1 | Security update for git-lfs | 2025-05-12T16:01:51Z | 2025-05-12T16:01:51Z |
| opensuse-su-2025:0152-1 | Security update for kanidm | 2025-05-12T16:01:48Z | 2025-05-12T16:01:48Z |
| opensuse-su-2025:15083-1 | rke2-1.32-1.32.4+rke2r1-1.1 on GA media | 2025-05-12T00:00:00Z | 2025-05-12T00:00:00Z |
| opensuse-su-2025:15082-1 | python311-Django4-4.2.21-1.1 on GA media | 2025-05-12T00:00:00Z | 2025-05-12T00:00:00Z |
| opensuse-su-2025:15081-1 | libxmp-devel-4.6.3-1.1 on GA media | 2025-05-12T00:00:00Z | 2025-05-12T00:00:00Z |
| opensuse-su-2025:15080-1 | java-21-openj9-21.0.7.0-1.1 on GA media | 2025-05-12T00:00:00Z | 2025-05-12T00:00:00Z |
| opensuse-su-2025:15079-1 | java-1_8_0-openj9-1.8.0.452-1.1 on GA media | 2025-05-12T00:00:00Z | 2025-05-12T00:00:00Z |
| opensuse-su-2025:15078-1 | java-17-openj9-17.0.15.0-1.1 on GA media | 2025-05-12T00:00:00Z | 2025-05-12T00:00:00Z |
| opensuse-su-2025:15077-1 | java-11-openj9-11.0.27.0-1.1 on GA media | 2025-05-12T00:00:00Z | 2025-05-12T00:00:00Z |
| opensuse-su-2025:15076-1 | dirmngr-2.5.6-1.1 on GA media | 2025-05-12T00:00:00Z | 2025-05-12T00:00:00Z |
| opensuse-su-2025:15075-1 | golang-github-prometheus-node_exporter-1.9.1-3.1 on GA media | 2025-05-12T00:00:00Z | 2025-05-12T00:00:00Z |
| opensuse-su-2025:0148-1 | Security update for chromium | 2025-05-09T08:46:23Z | 2025-05-09T08:46:23Z |
| opensuse-su-2025:0147-1 | Security update for mozjs102 | 2025-05-09T08:01:38Z | 2025-05-09T08:01:38Z |
| opensuse-su-2025:15074-1 | libmosquitto1-2.0.21-2.1 on GA media | 2025-05-09T00:00:00Z | 2025-05-09T00:00:00Z |
| opensuse-su-2025:15073-1 | chromedriver-136.0.7103.92-1.1 on GA media | 2025-05-09T00:00:00Z | 2025-05-09T00:00:00Z |
| opensuse-su-2025:15072-1 | bird3-3.1.0-1.1 on GA media | 2025-05-09T00:00:00Z | 2025-05-09T00:00:00Z |
| opensuse-su-2025:15071-1 | afterburn-5.7.0.git103.bae893c-1.1 on GA media | 2025-05-09T00:00:00Z | 2025-05-09T00:00:00Z |
| opensuse-su-2025:15070-1 | libevtlog-4_8-0-4.8.2-1.1 on GA media | 2025-05-08T00:00:00Z | 2025-05-08T00:00:00Z |
| opensuse-su-2025:15069-1 | sslh-2.2.3-1.1 on GA media | 2025-05-08T00:00:00Z | 2025-05-08T00:00:00Z |
| opensuse-su-2025:15068-1 | sequoia-octopus-librnp-1.11.0-2.1 on GA media | 2025-05-08T00:00:00Z | 2025-05-08T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2023-423 | Heap-buffer-overflow in NetworkInterface::dissectPacket | 2023-05-23T14:00:31.211803Z | 2023-05-23T14:00:31.212007Z |
| osv-2023-422 | Heap-use-after-free in wmem_memdup | 2023-05-22T14:01:21.886121Z | 2023-05-22T14:01:21.886307Z |
| osv-2023-421 | Global-buffer-overflow in hf_adjustment | 2023-05-22T14:01:06.910126Z | 2023-05-22T14:01:06.910307Z |
| osv-2023-420 | Heap-use-after-free in fragment_addresses_equal | 2023-05-22T14:00:41.156918Z | 2023-05-22T14:00:41.157099Z |
| osv-2023-418 | Heap-buffer-overflow in bfd_getl32 | 2023-05-21T14:02:30.263252Z | 2023-05-21T14:02:30.263496Z |
| osv-2023-409 | Heap-use-after-free in zval_call_destructor | 2023-05-19T14:02:26.026882Z | 2023-05-19T14:02:26.027150Z |
| osv-2023-408 | Security exception in org.apache.lucene.util.ArrayUtil.growExact | 2023-05-19T14:02:24.308895Z | 2023-05-19T14:02:24.309176Z |
| osv-2023-407 | Stack-buffer-overflow in DwaCompressor_readChannelRules | 2023-05-19T14:02:24.198097Z | 2023-05-19T14:02:24.198372Z |
| osv-2023-404 | Invalid-free in Assimp::FBX::Scope::Scope | 2023-05-19T14:00:12.710256Z | 2023-05-19T14:00:12.710610Z |
| osv-2023-402 | Heap-use-after-free in Assimp::FBXExporter::WriteObjects | 2023-05-18T14:01:38.415215Z | 2023-05-18T14:01:38.415480Z |
| osv-2023-80 | Heap-buffer-overflow in set_data | 2023-02-18T13:01:03.496830Z | 2023-05-15T14:22:01.756573Z |
| osv-2023-399 | Heap-use-after-free in get_got_entry | 2023-05-15T14:01:19.849514Z | 2023-05-15T14:01:19.849790Z |
| osv-2023-135 | Heap-buffer-overflow in json_cquote | 2023-03-02T13:02:23.467197Z | 2023-05-14T14:19:53.101913Z |
| osv-2023-358 | Heap-double-free in wolfCrypt_custom_free | 2023-05-01T14:01:17.580134Z | 2023-05-14T14:16:55.769240Z |
| osv-2023-314 | Heap-buffer-overflow in dwg_encode | 2023-04-14T14:02:37.021991Z | 2023-05-14T14:15:16.434655Z |
| osv-2023-396 | Security exception in org.springframework.expression.spel.ast.OpPlus.getValueInternal | 2023-05-14T14:02:12.108286Z | 2023-05-14T14:02:12.108548Z |
| osv-2023-391 | UNKNOWN READ in wmem_tree_lookup32_array_le | 2023-05-12T14:02:08.527602Z | 2023-05-12T14:02:08.527885Z |
| osv-2023-388 | Heap-buffer-overflow | 2023-05-11T14:00:53.702804Z | 2023-05-11T14:00:53.703051Z |
| osv-2023-385 | Bad-cast to Assimp::BaseImporter from invalid vptr | 2023-05-09T14:00:46.630999Z | 2023-05-09T14:00:46.631303Z |
| osv-2023-384 | Heap-use-after-free in mrb_str_hash_m | 2023-05-09T14:00:31.526197Z | 2023-05-09T14:00:31.526487Z |
| osv-2023-380 | UNKNOWN WRITE in bool OT::Layout::Common::Coverage::serialize<hb_map_iter_t<hb_map_iter_t<hb_filt | 2023-05-07T14:02:23.816056Z | 2023-05-07T14:02:23.816302Z |
| osv-2023-379 | Heap-buffer-overflow in void sort_r_simple<> | 2023-05-07T14:02:21.124794Z | 2023-05-07T14:02:21.125050Z |
| osv-2023-377 | UNKNOWN WRITE in bool OT::Layout::Common::CoverageFormat2_4<OT::Layout::MediumTypes>::serialize<h | 2023-05-07T14:00:31.978521Z | 2023-05-07T14:00:31.978773Z |
| osv-2023-376 | UNKNOWN WRITE in OT::Layout::GPOS_impl::CursivePosFormat1::subset | 2023-05-07T14:00:21.523030Z | 2023-05-07T14:00:21.523307Z |
| osv-2023-372 | UNKNOWN WRITE in hb_ot_layout_substitute_start | 2023-05-06T14:02:02.806574Z | 2023-05-06T14:02:02.806822Z |
| osv-2021-594 | Global-buffer-overflow in read_coding_unit | 2021-04-03T00:00:33.651641Z | 2023-05-05T14:02:59.779815Z |
| osv-2023-364 | Heap-double-free in HashMgr::~HashMgr | 2023-05-03T14:00:43.946257Z | 2023-05-04T14:11:43.526808Z |
| osv-2023-104 | Heap-buffer-overflow in H5FS__sect_link | 2023-02-24T13:02:14.199033Z | 2023-05-03T14:30:28.198633Z |
| osv-2023-353 | Stack-buffer-overflow in pdfi_read_cff_dict | 2023-04-29T14:02:16.888498Z | 2023-05-03T14:21:57.175421Z |
| osv-2023-361 | Heap-buffer-overflow in tok_get_normal_mode | 2023-05-02T14:00:14.863724Z | 2023-05-02T14:00:14.864013Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-gitlab-2024-8402 | Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab | 2025-03-15T07:16:54.710Z | 2025-08-08T06:26:52.450Z |
| bit-gitlab-2024-11129 | Generation of Error Message Containing Sensitive Information in GitLab | 2025-04-12T08:02:16.568Z | 2025-08-08T06:26:52.450Z |
| bit-vault-2024-2048 | Vault Cert Auth Method Did Not Correctly Validate Non-CA Certificates | 2024-05-01T07:38:21.819Z | 2025-08-07T09:23:45.368Z |
| bit-moodle-2025-26533 | SQL injection risk in course search module list filter | 2025-08-07T08:59:23.153Z | 2025-08-07T09:23:45.368Z |
| bit-moodle-2025-26532 | Teachers can evade trusttext config when restoring glossary entries | 2025-08-07T08:59:21.801Z | 2025-08-07T09:23:45.368Z |
| bit-moodle-2025-26531 | IDOR in badges allows disabling of arbitrary badges | 2025-08-07T08:59:20.231Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2025-1540 | Incorrect Authorization in GitLab | 2025-03-10T08:14:55.268Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2025-1212 | Exposure of Sensitive System Information to an Unauthorized Control Sphere in GitLab | 2025-02-17T19:10:24.523Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2025-1198 | Insufficient Session Expiration in GitLab | 2025-02-17T19:10:33.316Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2025-1042 | Files or Directories Accessible to External Parties in GitLab | 2025-02-17T19:10:49.113Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2025-0376 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | 2025-02-17T19:11:05.326Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2024-9870 | Unintended Proxy or Intermediary ('Confused Deputy') in GitLab | 2025-02-17T19:11:40.337Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2024-8266 | Execution with Unnecessary Privileges in GitLab | 2025-02-17T19:14:44.926Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2024-7102 | Execution with Unnecessary Privileges in GitLab | 2025-02-17T19:16:40.313Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2024-5528 | Incomplete Comparison with Missing Factors in GitLab | 2025-02-07T07:17:30.379Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2024-3303 | Improper Neutralization of Input Used for LLM Prompting in GitLab | 2025-02-17T19:23:31.736Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2024-1539 | Missing Authorization in GitLab | 2025-02-07T07:24:47.498Z | 2025-08-07T09:23:45.368Z |
| bit-gitlab-2024-12380 | Generation of Error Message Containing Sensitive Information in GitLab | 2025-03-15T07:42:28.195Z | 2025-08-07T09:23:45.368Z |
| bit-moodle-2024-43438 | Moodle: idor in feedback non-respondents report allows messaging arbitrary site users | 2025-08-06T05:50:00.167Z | 2025-08-06T06:08:07.957Z |
| bit-moodle-2024-43436 | Moodle: site administration sql injection via xmldb editor | 2025-08-06T05:49:57.125Z | 2025-08-06T06:08:07.957Z |
| bit-moodle-2024-43426 | Moodle: arbitrary file read risk through pdftex | 2025-08-06T05:49:42.427Z | 2025-08-06T06:08:07.957Z |
| bit-mlflow-2025-1473 | CSRF in mlflow/mlflow | 2025-08-06T05:45:52.838Z | 2025-08-06T06:08:07.957Z |
| bit-mlflow-2024-8859 | Path Traversal in mlflow/mlflow | 2025-08-06T05:45:49.791Z | 2025-08-06T06:08:07.957Z |
| bit-gitlab-2025-0314 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | 2025-01-28T07:10:14.614Z | 2025-08-06T06:08:07.957Z |
| bit-gitlab-2024-13041 | Incorrect User Management in GitLab | 2025-01-10T19:24:39.902Z | 2025-08-06T06:08:07.957Z |
| bit-gitlab-2024-1211 | Cross-Site Request Forgery (CSRF) in GitLab | 2025-02-01T07:26:58.828Z | 2025-08-06T06:08:07.957Z |
| bit-gitlab-2024-11931 | Insufficient Granularity of Access Control in GitLab | 2025-01-28T07:25:07.907Z | 2025-08-06T06:08:07.957Z |
| bit-gitlab-2023-6386 | Allocation of Resources Without Limits or Throttling in GitLab | 2025-02-07T07:28:12.605Z | 2025-08-06T06:08:07.957Z |
| bit-gitlab-2023-6195 | Server-Side Request Forgery (SSRF) in GitLab | 2025-02-01T07:29:24.815Z | 2025-08-06T06:08:07.957Z |
| bit-vault-2025-6037 | Vault Certificate Auth Method Did Not Validate Common Name For Non-CA Certificates | 2025-08-05T08:53:05.016Z | 2025-08-05T09:07:53.274Z |
| ID | Description | Updated |
|---|---|---|
| var-200510-0403 | Integer overflow in Apple QuickTime Player before 7.1 allows remote attackers to execute … | 2024-07-23T19:53:25.750000Z |
| var-201905-0709 | Microarchitectural Store Buffer Data Sampling (MSBDS): Store buffers on some microprocess… | 2024-07-23T19:53:24.913000Z |
| var-201302-0301 | Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on … | 2024-07-23T19:53:24.502000Z |
| var-201210-0300 | ISC BIND 9.x before 9.7.6-P4, 9.8.x before 9.8.3-P4, 9.9.x before 9.9.1-P4, and 9.4-ESV a… | 2024-07-23T19:53:24.742000Z |
| var-201501-0338 | The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1… | 2024-07-23T19:53:23.981000Z |
| var-201310-0356 | Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, J… | 2024-07-23T19:53:23.134000Z |
| var-202202-0081 | In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. Expa… | 2024-07-23T19:53:22.024000Z |
| var-201306-0139 | Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earl… | 2024-07-23T19:53:21.027000Z |
| var-201605-0494 | Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.… | 2024-07-23T19:51:11.128000Z |
| var-200608-0035 | Unspecified vulnerability in ImageIO in Apple Mac OS X 10.4.7 allows user-assisted attack… | 2024-07-23T19:51:11.554000Z |
| var-201506-0117 | ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows … | 2024-07-23T19:51:09.324000Z |
| var-201006-1241 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 throug… | 2024-07-23T19:51:09.764000Z |
| var-202002-1479 | A denial of service issue was addressed with improved memory handling. This issue is fixe… | 2024-07-23T19:50:58.130000Z |
| var-202205-1314 | A memory corruption issue was addressed with improved state management. This issue is fix… | 2024-07-23T19:50:57.599000Z |
| var-201912-0126 | A validation issue was addressed with improved input sanitization. This issue is fixed in… | 2024-07-23T19:50:56.137000Z |
| var-202105-0904 | A flaw was found in the Linux kernel in versions before 5.12. The value of internal.ndata… | 2024-07-23T19:50:13.905000Z |
| var-201206-0057 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … | 2024-07-23T19:50:12.882000Z |
| var-201912-0124 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T19:49:30.083000Z |
| var-201908-0421 | Some HTTP/2 implementations are vulnerable to window size manipulation and stream priorit… | 2024-07-23T19:49:30.261000Z |
| var-200912-0769 | ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause … | 2024-07-23T19:49:27.301000Z |
| var-200608-0043 | The Download Validation in Mail in Mac OS X 10.4 does not properly recognize attachment f… | 2024-07-23T19:48:51.891000Z |
| var-200810-0137 | Integer overflow in the WriteProlog function in texttops in CUPS before 1.3.9 allows remo… | 2024-07-23T19:48:47.990000Z |
| var-201707-1241 | In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]A… | 2024-07-23T19:48:16.667000Z |
| var-201702-0869 | An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari … | 2024-07-23T19:48:15.077000Z |
| var-201006-0052 | Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in Ruby in Apple Mac … | 2024-07-23T19:48:10.624000Z |
| var-201904-1405 | A consistency issue existed in the handling of application snapshots. The issue was addre… | 2024-07-23T19:47:38.995000Z |
| var-202101-0221 | A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded qu… | 2024-07-23T19:47:29.143000Z |
| var-201912-0603 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T19:47:28.350000Z |
| var-201006-1162 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4… | 2024-07-23T19:47:26.805000Z |
| var-201711-0472 | An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be… | 2024-07-23T19:47:23.684000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2019-000040 | Multiple vulnerabilities in VAIO Update | 2019-06-21T14:22+09:00 | 2019-10-01T11:12+09:00 |
| jvndb-2019-000028 | WordPress plugin "WP Open Graph" vulnerable to cross-site request forgery | 2019-05-23T14:10+09:00 | 2019-10-01T11:11+09:00 |
| jvndb-2019-000034 | Multiple vulnerabilities in WordPress Plugin "Attendance Manager" | 2019-06-10T15:31+09:00 | 2019-10-01T10:56+09:00 |
| jvndb-2019-000030 | Multiple vulnerabilities in WordPress Plugin "Zoho SalesIQ" | 2019-05-31T13:51+09:00 | 2019-10-01T10:54+09:00 |
| jvndb-2019-000031 | Multiple vulnerabilities in Joruri Mail | 2019-06-07T15:03+09:00 | 2019-10-01T10:50+09:00 |
| jvndb-2019-000033 | Multiple vulnerabilities in GROWI | 2019-06-07T15:18+09:00 | 2019-10-01T10:46+09:00 |
| jvndb-2019-000041 | WordPress Plugin "HTML5 Maps" vulnerable to cross-site request forgery | 2019-06-24T14:22+09:00 | 2019-10-01T10:24+09:00 |
| jvndb-2019-000042 | WordPress Plugin "Custom CSS Pro" vulnerable to cross-site request forgery | 2019-06-24T14:27+09:00 | 2019-10-01T10:22+09:00 |
| jvndb-2019-000037 | A map plugin for Mincraft server "Dynmap" fails to restrict access permissions | 2019-06-13T13:57+09:00 | 2019-10-01T10:18+09:00 |
| jvndb-2019-000009 | Installer of Adobe Creative Cloud Desktop Application may insecurely load Dynamic Link Libraries | 2019-02-18T15:16+09:00 | 2019-10-01T10:15+09:00 |
| jvndb-2019-000025 | Installer of Electronic reception and examination of application for radio licenses Online may insecurely load Dynamic Link Libraries | 2019-05-10T14:49+09:00 | 2019-10-01T10:11+09:00 |
| jvndb-2019-000026 | Electronic reception and examination of application for radio licenses Offline may insecurely load Dynamic Link Libraries | 2019-05-10T14:55+09:00 | 2019-10-01T10:08+09:00 |
| jvndb-2019-000027 | Apache Camel vulnerable to XML external entity injection (XXE) | 2019-05-22T14:37+09:00 | 2019-09-30T18:14+09:00 |
| jvndb-2019-000022 | GNU Wget vulnerable to buffer overflow | 2019-04-03T14:58+09:00 | 2019-09-30T18:08+09:00 |
| jvndb-2019-000020 | PowerAct Pro Master Agent for Windows fails to restrict acess permissions | 2019-03-27T14:41+09:00 | 2019-09-27T10:38+09:00 |
| jvndb-2018-000123 | Panasonic applications register unquoted service paths | 2018-11-29T14:45+09:00 | 2019-09-27T10:31+09:00 |
| jvndb-2019-000012 | Multiple vulnerabilities in Nablarch | 2019-02-27T17:14+09:00 | 2019-09-27T10:15+09:00 |
| jvndb-2019-000011 | WordPress plugin "FormCraft" vulnerable to cross-site request forgery | 2019-02-26T14:46+09:00 | 2019-09-27T10:12+09:00 |
| jvndb-2019-000013 | Windows 7 may insecurely load Dynamic Link Libraries | 2019-02-28T15:52+09:00 | 2019-09-27T10:09+09:00 |
| jvndb-2019-000015 | iChain Insurance Wallet App for iOS vulnerable to directory traversal | 2019-03-12T14:28+09:00 | 2019-09-27T10:04+09:00 |
| jvndb-2019-000016 | WordPress plugin "Smart Forms" vulnerable to cross-site request forgery | 2019-02-28T15:57+09:00 | 2019-09-27T09:59+09:00 |
| jvndb-2018-000128 | Multiple vulnerabilities in multiple SEIKO EPSON printers and scanners | 2018-12-06T16:19+09:00 | 2019-09-27T09:55+09:00 |
| jvndb-2019-000017 | Dradis Community Edition and Dradis Professional Edition vulnerable to cross-site scripting | 2019-03-05T14:18+09:00 | 2019-09-27T09:54+09:00 |
| jvndb-2018-000107 | OpenAM (Open Source Edition) vulnerable to session management | 2018-10-12T14:44+09:00 | 2019-09-26T18:10+09:00 |
| jvndb-2019-000004 | UNLHA32.DLL, UNARJ32.DLL, LHMelting and LMLzh32.DLL may insecurely load Dynamic Link Libraries | 2019-01-31T15:46+09:00 | 2019-09-26T18:08+09:00 |
| jvndb-2019-000006 | POWER EGG vulnerability where EL expression may be executed | 2019-02-05T14:09+09:00 | 2019-09-26T18:05+09:00 |
| jvndb-2019-000018 | "an" App for iOS vulnerable to directory traversal | 2019-03-19T15:51+09:00 | 2019-09-26T17:56+09:00 |
| jvndb-2019-000019 | KinagaCMS vulnerable to cross-site scripting | 2019-03-15T17:03+09:00 | 2019-09-26T17:10+09:00 |
| jvndb-2019-000057 | SHIRASAGI vulnerable to open redirect | 2019-09-10T13:56+09:00 | 2019-09-10T13:56+09:00 |
| jvndb-2019-008917 | Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor | 2019-09-09T15:58+09:00 | 2019-09-09T15:58+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:20861-1 | Security update for the Linux Kernel | 2025-10-15T15:17:40Z | 2025-10-15T15:17:40Z |
| suse-su-2025:20864-1 | Security update for kernel-livepatch-MICRO-6-0_Update_12 | 2025-10-15T15:02:36Z | 2025-10-15T15:02:36Z |
| suse-su-2025:20850-1 | Security update for kernel-livepatch-MICRO-6-0_Update_12 | 2025-10-15T15:02:36Z | 2025-10-15T15:02:36Z |
| suse-su-2025:03607-1 | Security update for squid | 2025-10-15T13:38:36Z | 2025-10-15T13:38:36Z |
| suse-su-2025:03606-1 | Security update for squid | 2025-10-15T13:38:21Z | 2025-10-15T13:38:21Z |
| suse-su-2025:03604-1 | Security update for samba | 2025-10-15T13:37:54Z | 2025-10-15T13:37:54Z |
| suse-su-2025:03603-1 | Security update for samba | 2025-10-15T13:37:44Z | 2025-10-15T13:37:44Z |
| suse-su-2025:03602-1 | Security update for the Linux Kernel | 2025-10-15T12:57:25Z | 2025-10-15T12:57:25Z |
| suse-su-2025:03601-1 | Security update for the Linux Kernel | 2025-10-15T12:57:01Z | 2025-10-15T12:57:01Z |
| suse-su-2025:03600-1 | Security update for the Linux Kernel | 2025-10-15T12:54:53Z | 2025-10-15T12:54:53Z |
| suse-su-2025:03599-1 | Security update for qt6-base | 2025-10-15T12:17:03Z | 2025-10-15T12:17:03Z |
| suse-su-2025:20921-1 | Recommended update of flake-pilot | 2025-10-15T12:00:25Z | 2025-10-15T12:00:25Z |
| suse-su-2025:03595-1 | Security update for libxslt | 2025-10-14T21:07:48Z | 2025-10-14T21:07:48Z |
| suse-su-2025:20847-1 | Security update for libssh | 2025-10-14T15:20:28Z | 2025-10-14T15:20:28Z |
| suse-su-2025:20846-1 | Security update for chrony | 2025-10-14T15:17:45Z | 2025-10-14T15:17:45Z |
| suse-su-2025:20858-1 | Security update for rust-keylime | 2025-10-14T13:18:43Z | 2025-10-14T13:18:43Z |
| suse-su-2025:20857-1 | Security update for vim | 2025-10-14T13:18:43Z | 2025-10-14T13:18:43Z |
| suse-su-2025:20856-1 | Security update for python-urllib3 | 2025-10-14T13:15:37Z | 2025-10-14T13:15:37Z |
| suse-su-2025:03019-2 | Security update for postgresql14 | 2025-10-13T14:33:39Z | 2025-10-13T14:33:39Z |
| suse-su-2025:03590-1 | Security update for bluez | 2025-10-13T12:59:07Z | 2025-10-13T12:59:07Z |
| suse-su-2025:03589-1 | Security update for haproxy | 2025-10-13T07:04:38Z | 2025-10-13T07:04:38Z |
| suse-su-2025:03578-1 | Security update for the Linux Kernel (Live Patch 39 for SLE 15 SP4) | 2025-10-13T07:04:11Z | 2025-10-13T07:04:11Z |
| suse-su-2025:03587-1 | Security update for haproxy | 2025-10-13T07:03:55Z | 2025-10-13T07:03:55Z |
| suse-su-2025:03586-1 | Security update for openssl-3-livepatches | 2025-10-13T07:02:35Z | 2025-10-13T07:02:35Z |
| suse-su-2025:03585-1 | Security update for open-vm-tools | 2025-10-13T06:59:45Z | 2025-10-13T06:59:45Z |
| suse-su-2025:03584-1 | Security update for podman | 2025-10-13T06:59:33Z | 2025-10-13T06:59:33Z |
| suse-su-2025:03583-1 | Security update for the Linux Kernel (Live Patch 58 for SLE 15 SP3) | 2025-10-13T06:04:04Z | 2025-10-13T06:04:04Z |
| suse-su-2025:03580-1 | Security update for the Linux Kernel (Live Patch 49 for SLE 15 SP3) | 2025-10-13T03:33:38Z | 2025-10-13T03:33:38Z |
| suse-su-2025:03577-1 | Security update for the Linux Kernel (Live Patch 64 for SLE 12 SP5) | 2025-10-12T17:03:58Z | 2025-10-12T17:03:58Z |
| suse-su-2025:03576-1 | Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP7) | 2025-10-12T15:33:31Z | 2025-10-12T15:33:31Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-00031 | Google Android权限提升漏洞(CNVD-2026-00031) | 2025-09-04 | 2026-01-04 |
| cnvd-2026-00030 | Microsoft Office Visio代码执行漏洞(CNVD-2026-00030) | 2025-10-17 | 2026-01-04 |
| cnvd-2026-00029 | WordPress插件Publitio信息泄露漏洞 | 2025-10-31 | 2026-01-04 |
| cnvd-2026-00028 | Microsoft Office代码执行漏洞(CNVD-2026-00028) | 2025-11-14 | 2026-01-04 |
| cnvd-2026-00027 | Microsoft Office代码执行漏洞(CNVD-2026-00027) | 2025-11-14 | 2026-01-04 |
| cnvd-2026-00026 | Microsoft Excel信息泄漏漏洞(CNVD-2026-00026) | 2025-11-14 | 2026-01-04 |
| cnvd-2026-00025 | Linksys E1200堆栈缓冲区溢出漏洞(CNVD-2026-00025) | 2025-11-18 | 2026-01-04 |
| cnvd-2026-00024 | Linksys E1200堆栈缓冲区溢出漏洞(CNVD-2026-00024) | 2025-11-18 | 2026-01-04 |
| cnvd-2026-00023 | Apache Kvrocks权限提升漏洞 | 2025-12-03 | 2026-01-04 |
| cnvd-2026-00022 | Apache bRPC拒绝服务漏洞(CNVD-2026-00022) | 2025-12-03 | 2026-01-04 |
| cnvd-2026-00021 | Siemens SIMATIC CN 4100命令注入漏洞 | 2025-12-15 | 2026-01-04 |
| cnvd-2026-00020 | Siemens RUGGEDCOM ROX II注入漏洞(CNVD-2026-00020) | 2025-12-15 | 2026-01-04 |
| cnvd-2026-00019 | Siemens RUGGEDCOM ROX II注入漏洞(CNVD-2026-00019) | 2025-12-15 | 2026-01-04 |
| cnvd-2026-00018 | Siemens RUGGEDCOM ROX II注入漏洞(CNVD-2026-00018) | 2025-12-15 | 2026-01-04 |
| cnvd-2026-00017 | Siemens RUGGEDCOM ROX II注入漏洞 | 2025-12-15 | 2026-01-04 |
| cnvd-2026-00016 | Siemens RUGGEDCOM ROX II命令注入漏洞(CNVD-2026-00016) | 2025-12-15 | 2026-01-04 |
| cnvd-2026-00015 | Siemens RUGGEDCOM ROX II命令注入漏洞 | 2025-12-15 | 2026-01-04 |
| cnvd-2026-00014 | Siemens Gridscale X Prepay信息泄露漏洞 | 2025-12-15 | 2026-01-04 |
| cnvd-2026-00013 | Siemens Gridscale X Prepay安全绕过漏洞 | 2025-12-15 | 2026-01-04 |
| cnvd-2026-00012 | Microsoft Azure Cosmos DB欺骗漏洞 | 2025-12-25 | 2026-01-04 |
| cnvd-2026-00011 | Microsoft Azure Cognitive Service for Language权限提升漏洞 | 2025-12-25 | 2026-01-04 |
| cnvd-2026-00010 | Microsoft Edge (Chromium-based)欺骗漏洞(CNVD-2026-00010) | 2025-12-25 | 2026-01-04 |
| cnvd-2026-00009 | WordPress插件MasterStudy LMS Pro信息泄露漏洞 | 2025-12-25 | 2026-01-04 |
| cnvd-2026-00008 | WordPress插件Follow My Blog Post息泄露漏洞 | 2025-12-25 | 2026-01-04 |
| cnvd-2026-00007 | Apache StreamPark安全绕过漏洞 | 2025-12-25 | 2026-01-04 |
| cnvd-2026-00006 | Apache Fineract信息泄露漏洞(CNVD-2026-00006) | 2025-12-25 | 2026-01-04 |
| cnvd-2026-00005 | Apache Fineract信息泄露漏洞 | 2025-12-25 | 2026-01-04 |
| cnvd-2026-00004 | Apache Fineract安全绕过漏洞 | 2025-12-25 | 2026-01-04 |
| cnvd-2026-00003 | Apache Airflow信息泄露漏洞(CNVD-2026-00003) | 2025-12-25 | 2026-01-04 |
| cnvd-2026-00002 | WordPress插件myCred信息泄露漏洞 | 2025-12-25 | 2026-01-04 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0763 | Vulnérabilité dans Spring Cloud Gateway | 2025-09-09T00:00:00.000000 | 2025-09-09T00:00:00.000000 |
| CERTFR-2025-AVI-0767 | Vulnérabilité dans les produits Adobe | 2025-09-09T00:00:00.000000 | 2025-09-09T00:00:00.000000 |
| CERTFR-2025-AVI-0765 | Multiples vulnérabilités dans les produits Siemens | 2025-09-09T00:00:00.000000 | 2025-09-09T00:00:00.000000 |
| CERTFR-2025-AVI-0764 | Multiples vulnérabilités dans les produits SAP | 2025-09-09T00:00:00.000000 | 2025-09-09T00:00:00.000000 |
| CERTFR-2025-AVI-0763 | Vulnérabilité dans Spring Cloud Gateway | 2025-09-09T00:00:00.000000 | 2025-09-09T00:00:00.000000 |
| certfr-2025-avi-0762 | Vulnérabilité dans SPIP | 2025-09-08T00:00:00.000000 | 2025-09-08T00:00:00.000000 |
| certfr-2025-avi-0761 | Multiples vulnérabilités dans Microsoft Edge | 2025-09-08T00:00:00.000000 | 2025-09-08T00:00:00.000000 |
| CERTFR-2025-AVI-0762 | Vulnérabilité dans SPIP | 2025-09-08T00:00:00.000000 | 2025-09-08T00:00:00.000000 |
| CERTFR-2025-AVI-0761 | Multiples vulnérabilités dans Microsoft Edge | 2025-09-08T00:00:00.000000 | 2025-09-08T00:00:00.000000 |
| certfr-2025-avi-0760 | Multiples vulnérabilités dans les produits IBM | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| certfr-2025-avi-0759 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| certfr-2025-avi-0758 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| certfr-2025-avi-0757 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| certfr-2025-avi-0756 | Multiples vulnérabilités dans les produits VMware | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| certfr-2025-avi-0755 | Vulnérabilité dans les produits Synology | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| CERTFR-2025-AVI-0760 | Multiples vulnérabilités dans les produits IBM | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| CERTFR-2025-AVI-0759 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| CERTFR-2025-AVI-0758 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| CERTFR-2025-AVI-0757 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| CERTFR-2025-AVI-0756 | Multiples vulnérabilités dans les produits VMware | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| CERTFR-2025-AVI-0755 | Vulnérabilité dans les produits Synology | 2025-09-05T00:00:00.000000 | 2025-09-05T00:00:00.000000 |
| certfr-2025-avi-0754 | Multiples vulnérabilités dans les produits VMware | 2025-09-04T00:00:00.000000 | 2025-09-04T00:00:00.000000 |
| certfr-2025-avi-0753 | Vulnérabilité dans Shibboleth Service Provider | 2025-09-04T00:00:00.000000 | 2025-09-04T00:00:00.000000 |
| certfr-2025-avi-0752 | Multiples vulnérabilités dans Google Pixel | 2025-09-04T00:00:00.000000 | 2025-09-04T00:00:00.000000 |
| CERTFR-2025-AVI-0754 | Multiples vulnérabilités dans les produits VMware | 2025-09-04T00:00:00.000000 | 2025-09-04T00:00:00.000000 |
| CERTFR-2025-AVI-0753 | Vulnérabilité dans Shibboleth Service Provider | 2025-09-04T00:00:00.000000 | 2025-09-04T00:00:00.000000 |
| CERTFR-2025-AVI-0752 | Multiples vulnérabilités dans Google Pixel | 2025-09-04T00:00:00.000000 | 2025-09-04T00:00:00.000000 |
| certfr-2025-avi-0751 | Multiples vulnérabilités dans les produits VMware | 2025-09-03T00:00:00.000000 | 2025-09-03T00:00:00.000000 |
| certfr-2025-avi-0750 | Multiples vulnérabilités dans Google Android | 2025-09-03T00:00:00.000000 | 2025-09-03T00:00:00.000000 |
| certfr-2025-avi-0749 | Multiples vulnérabilités dans Google Chrome | 2025-09-03T00:00:00.000000 | 2025-09-03T00:00:00.000000 |