Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-m9jp-fv72-2g3f | Missing Authorization vulnerability in Addonify Addonify addonify-quick-view allows Exploiting Inco… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-m682-f862-mm9w | Cross-Site Request Forgery (CSRF) vulnerability in pluginsware Advanced Classifieds & Directory Pro… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-m4r2-2782-33hv | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-jwf4-j6c4-r563 | Cross-Site Request Forgery (CSRF) vulnerability in Tikweb Management Fast User Switching fast-user-… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-j46w-p27m-x396 | Cross-Site Request Forgery (CSRF) vulnerability in wphocus My auctions allegro my-auctions-allegro-… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-gc5r-vcqv-p3f2 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Virusdi… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-ch8g-wmch-h352 | Missing Authorization vulnerability in codepeople WP Time Slots Booking Form wp-time-slots-booking-… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-9f98-g8wg-4pcm | Missing Authorization vulnerability in Virusdie Virusdie virusdie allows Exploiting Incorrectly Con… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-95q9-4qh9-hr86 | Missing Authorization vulnerability in FolioVision FV Simpler SEO fv-all-in-one-seo-pack allows Exp… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-887g-3m9f-p55c | Missing Authorization vulnerability in YITHEMES YITH Slider for page builders yith-slider-for-page-… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-82m7-4386-5w76 | Missing Authorization vulnerability in Liton Arefin WP Adminify adminify allows Exploiting Incorrec… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:29Z |
| ghsa-7pxg-x55c-fqhx | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-7jg2-vv9f-v97j | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-6r9j-fpr7-g9xg | Cross-Site Request Forgery (CSRF) vulnerability in Constantin Boiangiu Vimeotheque codeflavors-vime… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-6mmw-6jqx-8w6x | Missing Authorization vulnerability in Liton Arefin WP Adminify adminify allows Exploiting Incorrec… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:29Z |
| ghsa-4m75-r4ww-r99j | Missing Authorization vulnerability in Assaf Parag Poll, Survey & Quiz Maker Plugin by Opinion Stag… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:29Z |
| ghsa-48px-5fg3-2vf2 | Missing Authorization vulnerability in integrationclaspo Popup Builder: Exit-Intent pop-up, Spin th… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-3x28-fcx7-q34v | Missing Authorization vulnerability in totalsoft TS Poll poll-wp allows Exploiting Incorrectly Conf… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-3m2g-5mf9-rw3q | Missing Authorization vulnerability in Funnelforms Funnelforms Free funnelforms-free allows Exploit… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-2xwp-gm9f-mwxv | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:29Z |
| ghsa-2wpw-x29g-2vrh | Missing Authorization vulnerability in SALESmanago SALESmanago salesmanago allows Exploiting Incorr… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-xv82-mgrr-4j2f | Cross-Site Request Forgery (CSRF) vulnerability in Rhys Wynne WP Email Capture wp-email-capture all… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-wjc6-wvx5-m7qh | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:40Z | 2025-12-24T21:30:28Z |
| ghsa-w35q-pgwq-v3gv | Server-Side Request Forgery (SSRF) vulnerability in 6Storage 6Storage Rentals 6storage-rentals allo… | 2025-12-24T15:30:40Z | 2025-12-24T21:30:28Z |
| ghsa-vpjm-cvm6-jj7r | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:40Z | 2025-12-24T21:30:28Z |
| ghsa-vj4q-8mxv-c22h | Cross-Site Request Forgery (CSRF) vulnerability in tmtraderunner Trade Runner traderunner allows Cr… | 2025-12-24T15:30:40Z | 2025-12-24T21:30:28Z |
| ghsa-vh4j-wc5r-44xh | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-rrq9-36f5-3j9c | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-r7hp-q77m-rh5r | Missing Authorization vulnerability in Essekia Tablesome tablesome allows Exploiting Incorrectly Co… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-pj8w-2x73-5p4m | Cross-Site Request Forgery (CSRF) vulnerability in titopandub Evergreen Post Tweeter evergreen-post… | 2025-12-24T15:30:40Z | 2025-12-24T21:30:28Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-64481 | Open redirect endpoint in Datasette |
simonw |
datasette |
2025-11-07T20:35:39.827Z | 2025-12-26T21:51:26.384Z | |
| cve-2025-68667 | Conduit-derived homeservers are affected by a Confused… |
continuwuity |
continuwuity |
2025-12-23T22:45:25.958Z | 2025-12-26T20:49:02.208Z | |
| cve-2025-14488 | 7.8 (v3.0) | RealDefense SUPERAntiSpyware Exposed Dangerous Functio… |
RealDefense |
SUPERAntiSpyware |
2025-12-23T21:16:51.772Z | 2025-12-26T19:37:25.448Z |
| cve-2025-14497 | 7.8 (v3.0) | RealDefense SUPERAntiSpyware Exposed Dangerous Functio… |
RealDefense |
SUPERAntiSpyware |
2025-12-23T21:16:46.405Z | 2025-12-26T19:37:09.332Z |
| cve-2025-14495 | 7.8 (v3.0) | RealDefense SUPERAntiSpyware Exposed Dangerous Functio… |
RealDefense |
SUPERAntiSpyware |
2025-12-23T21:16:41.860Z | 2025-12-26T19:36:34.741Z |
| cve-2025-14493 | 7.8 (v3.0) | RealDefense SUPERAntiSpyware Exposed Dangerous Functio… |
RealDefense |
SUPERAntiSpyware |
2025-12-23T21:16:37.392Z | 2025-12-26T19:36:15.337Z |
| cve-2025-14496 | 7.8 (v3.0) | RealDefense SUPERAntiSpyware Exposed Dangerous Functio… |
RealDefense |
SUPERAntiSpyware |
2025-12-23T21:16:32.028Z | 2025-12-26T19:35:57.691Z |
| cve-2025-14492 | 7.8 (v3.0) | RealDefense SUPERAntiSpyware Exposed Dangerous Functio… |
RealDefense |
SUPERAntiSpyware |
2025-12-23T21:16:27.430Z | 2025-12-26T19:35:40.193Z |
| cve-2025-14932 | 7.8 (v3.0) | NSF Unidata NetCDF-C Time Unit Stack-based Buffer Over… |
NSF Unidata |
NetCDF-C |
2025-12-23T21:11:17.340Z | 2025-12-26T19:34:14.913Z |
| cve-2025-14933 | 7.8 (v3.0) | NSF Unidata NetCDF-C NC Variable Integer Overflow Remo… |
NSF Unidata |
NetCDF-C |
2025-12-23T21:09:15.230Z | 2025-12-26T19:33:58.950Z |
| cve-2025-14934 | 7.8 (v3.0) | NSF Unidata NetCDF-C Variable Name Stack-based Buffer … |
NSF Unidata |
NetCDF-C |
2025-12-23T21:09:09.693Z | 2025-12-26T19:33:30.294Z |
| cve-2025-15094 | sunkaifei FlyCMS User Login UserController.java userLo… |
sunkaifei |
FlyCMS |
2025-12-26T01:32:06.271Z | 2025-12-26T19:32:41.210Z | |
| cve-2025-15095 | postmanlabs httpbin core.py cross site scripting |
postmanlabs |
httpbin |
2025-12-26T02:02:07.191Z | 2025-12-26T19:32:01.296Z | |
| cve-2025-68941 | 4.9 (v3.1) | Gitea before 1.22.3 mishandles access to a privat… |
Gitea |
Gitea |
2025-12-26T02:31:59.031Z | 2025-12-26T19:31:33.303Z |
| cve-2025-15097 | Alteryx Server status improper authentication |
Alteryx |
Server |
2025-12-26T02:32:05.819Z | 2025-12-26T19:30:52.340Z | |
| cve-2025-68942 | 5.4 (v3.1) | Gitea before 1.22.2 allows XSS because the search… |
Gitea |
Gitea |
2025-12-26T02:50:35.144Z | 2025-12-26T19:30:04.360Z |
| cve-2025-15098 | YunaiV yudao-cloud Business Process Management BpmSync… |
YunaiV |
yudao-cloud |
2025-12-26T03:02:06.492Z | 2025-12-26T19:29:29.970Z | |
| cve-2025-68943 | 5.3 (v3.1) | Gitea before 1.21.8 inadvertently discloses users… |
Gitea |
Gitea |
2025-12-26T03:19:45.242Z | 2025-12-26T19:28:57.206Z |
| cve-2025-68944 | 5 (v3.1) | Gitea before 1.22.2 sometimes mishandles the prop… |
Gitea |
Gitea |
2025-12-26T03:37:28.693Z | 2025-12-26T19:28:23.900Z |
| cve-2025-52601 | 6.3 (v4.0) | Hardcoding sensitive information |
Hanwha Vision Co., Ltd. |
Device Manager |
2025-12-26T04:29:25.830Z | 2025-12-26T19:27:44.838Z |
| cve-2025-13158 | 9.3 (v4.0) | apidoc-core - prototype pollution in api_group.js, api… |
apiDoc |
apidoc-core |
2025-12-26T16:00:27.208Z | 2025-12-26T19:26:12.935Z |
| cve-2025-68946 | 5.4 (v3.1) | In Gitea before 1.20.1, a forbidden URL scheme su… |
Gitea |
Gitea |
2025-12-26T04:14:03.775Z | 2025-12-26T18:59:45.647Z |
| cve-2025-68945 | 5.8 (v3.1) | In Gitea before 1.21.2, an anonymous user can vis… |
Gitea |
Gitea |
2025-12-26T03:58:46.724Z | 2025-12-26T18:59:29.985Z |
| cve-2025-68940 | 3.1 (v3.1) | In Gitea before 1.22.5, branch deletion permissio… |
Gitea |
Gitea |
2025-12-26T02:14:52.076Z | 2025-12-26T18:57:56.965Z |
| cve-2025-68939 | 8.2 (v3.1) | Gitea before 1.23.0 allows attackers to add attac… |
Gitea |
Gitea |
2025-12-26T02:03:59.691Z | 2025-12-26T18:57:27.065Z |
| cve-2025-68938 | 4.3 (v3.1) | Gitea before 1.25.2 mishandles authorization for … |
Gitea |
Gitea |
2025-12-26T01:19:10.609Z | 2025-12-26T18:53:35.494Z |
| cve-2024-44065 | N/A | Time-based blind SQL Injection vulnerability in C… |
n/a |
n/a |
2025-12-26T00:00:00.000Z | 2025-12-26T18:35:58.415Z |
| cve-2025-24148 | N/A | This issue was addressed with improved handling o… |
Apple |
macOS |
2025-03-31T22:22:20.776Z | 2025-12-26T16:48:50.913Z |
| cve-2025-43296 | N/A | A logic issue was addressed with improved validat… |
Apple |
macOS |
2025-10-09T20:50:48.673Z | 2025-12-26T16:44:12.881Z |
| cve-2025-43348 | N/A | A logic issue was addressed with improved validat… |
Apple |
macOS |
2025-11-04T01:17:30.602Z | 2025-12-26T16:42:24.746Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-15183 | code-projects Refugee Food Management System viewtaken… |
code-projects |
Refugee Food Management System |
2025-12-29T10:02:07.718Z | 2025-12-29T13:52:13.840Z | |
| cve-2025-15182 | code-projects Refugee Food Management System served.ph… |
code-projects |
Refugee Food Management System |
2025-12-29T09:32:11.171Z | 2025-12-29T16:41:01.231Z | |
| cve-2025-15181 | code-projects Refugee Food Management System pagenateR… |
code-projects |
Refugee Food Management System |
2025-12-29T09:02:05.761Z | 2025-12-29T16:41:40.624Z | |
| cve-2025-15193 | D-Link DWR-M920 formParentControl sub_423848 buffer overflow |
D-Link |
DWR-M920 |
2025-12-29T15:02:08.698Z | 2025-12-29T16:10:51.648Z | |
| cve-2025-15192 | D-Link DWR-M920 formLtefotaUpgradeQuectel sub_415328 c… |
D-Link |
DWR-M920 |
2025-12-29T14:32:08.392Z | 2025-12-29T16:11:38.000Z | |
| cve-2025-15191 | D-Link DWR-M920 formLtefotaUpgradeFibocom sub_4155B4 c… |
D-Link |
DWR-M920 |
2025-12-29T14:02:07.207Z | 2025-12-29T14:26:08.160Z | |
| cve-2025-15190 | D-Link DWR-M920 formFilter sub_42261C stack-based overflow |
D-Link |
DWR-M920 |
2025-12-29T13:32:08.616Z | 2025-12-29T14:26:52.164Z | |
| cve-2025-15189 | D-Link DWR-M920 formDefRoute sub_464794 buffer overflow |
D-Link |
DWR-M920 |
2025-12-29T13:02:11.742Z | 2025-12-29T13:15:00.973Z | |
| cve-2025-36154 | 6.2 (v3.1) | IBM Concert Software Cleartext Storage in a File or on Disk. |
IBM |
Concert |
2025-12-24T19:01:48.161Z | 2025-12-24T20:02:34.098Z |
| cve-2025-15143 | EyouCMS Backend Template Management FilemanagerLogic.p… |
n/a |
EyouCMS |
2025-12-28T16:02:08.347Z | 2025-12-29T16:24:22.854Z | |
| cve-2020-36902 | 9.3 (v4.0) | UBICOD Medivision Digital Signage 1.5.1 Authorization … |
UBICOD Co., Ltd. | MEDIVISION INC. |
UBICOD Medivision Digital Signage |
2025-12-10T21:05:41.753Z | 2025-12-11T18:52:29.859Z |
| cve-2025-67809 | N/A | An issue was discovered in Zimbra Collaboration (… |
n/a |
n/a |
2025-12-15T00:00:00.000Z | 2025-12-15T20:17:26.355Z |
| cve-2020-36901 | 8.6 (v4.0) | UBICOD Medivision Digital Signage 1.5.1 Cross-Site Req… |
UBICOD Co., Ltd. | MEDIVISION INC. |
UBICOD Medivision Digital Signage |
2025-12-10T21:05:21.945Z | 2025-12-11T18:52:35.866Z |
| cve-2025-55703 | An error-based SQL injection vulnerability exists… |
n/a |
n/a |
2025-12-15T00:00:00.000Z | 2025-12-15T20:08:08.419Z | |
| cve-2019-25243 | 8.7 (v4.0) 8.8 (v3.1) | FaceSentry 6.4.8 Authenticated Remote Command Injectio… |
iWT Ltd. |
FaceSentry Access Control System |
2025-12-24T19:27:58.965Z | 2025-12-24T20:23:05.664Z |
| cve-2025-66587 | N/A | {'providerMetadata': {'orgId': '7d14cffa-0d7d-4270-9dc0-52cabd5a23a6', 'shortName': 'icscert', 'dateUpdated': '2025-12-30T19:53:41.641Z'}, 'rejectedReasons': [{'lang': 'en', 'supportingMedia': [{'base64': False, 'type': 'text/html', 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.'}], 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.'}], 'x_generator': {'engine': 'Vulnogram 0.1.0-dev'}} | N/A | N/A | 2025-12-11T20:53:08.409Z | 2025-12-30T19:53:41.641Z |
| cve-2025-66584 | N/A | {'providerMetadata': {'orgId': '7d14cffa-0d7d-4270-9dc0-52cabd5a23a6', 'shortName': 'icscert', 'dateUpdated': '2025-12-30T19:53:19.816Z'}, 'rejectedReasons': [{'lang': 'en', 'supportingMedia': [{'base64': False, 'type': 'text/html', 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.'}], 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.'}], 'x_generator': {'engine': 'Vulnogram 0.1.0-dev'}} | N/A | N/A | 2025-12-11T20:58:53.846Z | 2025-12-30T19:53:19.816Z |
| cve-2019-25242 | 5.1 (v4.0) 4.3 (v3.1) | FaceSentry Access Control System 6.4.8 Cross-Site Requ… |
iWT Ltd. |
FaceSentry Access Control System |
2025-12-24T19:27:58.523Z | 2025-12-24T20:23:12.300Z |
| cve-2025-14860 | N/A | Use-after-free in the Disability Access APIs component |
Mozilla |
Firefox |
2025-12-18T14:21:13.483Z | 2025-12-19T20:35:53.096Z |
| cve-2025-14861 | N/A | Memory safety bugs fixed in Firefox 146.0.1 |
Mozilla |
Firefox |
2025-12-18T14:21:14.680Z | 2025-12-20T04:56:38.874Z |
| cve-2025-63757 | N/A | Integer overflow vulnerability in the yuv2ya16_X_… |
n/a |
n/a |
2025-12-18T00:00:00.000Z | 2025-12-18T19:31:22.092Z |
| cve-2025-63386 | N/A | A Cross-Origin Resource Sharing (CORS) misconfigu… |
n/a |
n/a |
2025-12-18T00:00:00.000Z | 2025-12-19T21:24:32.281Z |
| cve-2025-63388 | N/A | A Cross-Origin Resource Sharing (CORS) misconfigu… |
n/a |
n/a |
2025-12-18T00:00:00.000Z | 2025-12-19T21:29:11.310Z |
| cve-2025-63389 | N/A | A critical authentication bypass vulnerability ex… |
n/a |
n/a |
2025-12-18T00:00:00.000Z | 2025-12-19T18:02:03.129Z |
| cve-2025-63390 | N/A | An authentication bypass vulnerability exists in … |
n/a |
n/a |
2025-12-18T00:00:00.000Z | 2025-12-19T21:27:10.654Z |
| cve-2025-63391 | N/A | An authentication bypass vulnerability exists in … |
n/a |
n/a |
2025-12-18T00:00:00.000Z | 2025-12-18T17:51:07.483Z |
| cve-2025-68469 | ImageMagick vulnerable to heap-buffer-overflow |
ImageMagick |
ImageMagick |
2025-12-18T15:36:28.304Z | 2025-12-18T15:52:40.496Z | |
| cve-2025-56157 | N/A | Default credentials in Dify thru 1.5.1. PostgreSQ… |
n/a |
n/a |
2025-12-18T00:00:00.000Z | 2025-12-19T18:01:55.823Z |
| cve-2025-59949 | FreshRSS has Logout CSRF that Leads to DoS via <track src> |
FreshRSS |
FreshRSS |
2025-12-18T18:31:54.524Z | 2025-12-18T19:19:35.478Z | |
| cve-2024-58313 | 8.6 (v4.0) | xbtitFM 4.1.18 Insecure File Upload in file_hosting Feature |
xbtitfm |
xbtitFM |
2025-12-11T21:43:12.094Z | 2025-12-16T16:31:05.510Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2023-53871 | Soosyze 2.0.0 contains a file upload vulnerability that allows attackers to upload arbitrary HTML f… | 2025-12-15T21:15:49.543 | 2025-12-30T18:46:34.580 |
| fkie_cve-2025-65830 | Due to a lack of certificate validation, all traffic from the mobile application can be intercepted… | 2025-12-10T21:16:08.793 | 2025-12-30T18:46:13.740 |
| fkie_cve-2023-53895 | PimpMyLog 1.7.14 contains an improper access control vulnerability that allows remote attackers to … | 2025-12-16T17:16:01.740 | 2025-12-30T18:45:51.587 |
| fkie_cve-2023-53899 | PodcastGenerator 3.2.9 contains a blind server-side request forgery vulnerability that allows attac… | 2025-12-16T17:16:02.213 | 2025-12-30T18:42:03.197 |
| fkie_cve-2023-53901 | WBCE CMS 1.6.1 contains a cross-site scripting vulnerability that allows attackers to inject malici… | 2025-12-16T17:16:02.377 | 2025-12-30T18:41:08.140 |
| fkie_cve-2025-65831 | The application uses an insecure hashing algorithm (MD5) to hash passwords. If an attacker obtained… | 2025-12-10T21:16:08.913 | 2025-12-30T18:40:54.373 |
| fkie_cve-2025-14958 | A security flaw has been discovered in floooh sokol up to 33e2271c431bf21de001e972f72da17a984da932.… | 2025-12-19T18:15:48.373 | 2025-12-30T18:33:16.760 |
| fkie_cve-2025-67460 | Protection Mechanism Failure of Software Downgrade in Zoom Rooms for Windows before 6.6.0 may allow… | 2025-12-10T21:16:09.633 | 2025-12-30T18:32:22.377 |
| fkie_cve-2025-14957 | A vulnerability was identified in WebAssembly Binaryen up to 125. This affects the function IRBuild… | 2025-12-19T17:15:51.657 | 2025-12-30T18:32:03.233 |
| fkie_cve-2025-14956 | A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the fun… | 2025-12-19T17:15:51.470 | 2025-12-30T18:31:52.237 |
| fkie_cve-2025-14909 | A weakness has been identified in JeecgBoot up to 3.9.0. The impacted element is the function SysUs… | 2025-12-19T02:16:04.703 | 2025-12-30T18:31:31.340 |
| fkie_cve-2025-14908 | A security flaw has been discovered in JeecgBoot up to 3.9.0. The affected element is an unknown fu… | 2025-12-19T01:16:06.037 | 2025-12-30T18:31:20.447 |
| fkie_cve-2025-14856 | A security vulnerability has been detected in y_project RuoYi up to 4.8.1. The affected element is … | 2025-12-18T02:15:46.143 | 2025-12-30T18:27:26.420 |
| fkie_cve-2025-14837 | A vulnerability has been found in ZZCMS 2025. Affected by this issue is the function stripfxg of th… | 2025-12-18T00:16:22.450 | 2025-12-30T18:27:09.393 |
| fkie_cve-2025-14836 | A flaw has been found in ZZCMS 2025. Affected by this vulnerability is an unknown functionality of … | 2025-12-17T23:15:56.610 | 2025-12-30T18:26:55.603 |
| fkie_cve-2025-67461 | External control of file name or path in Zoom Rooms for macOS before version 6.6.0 may allow an aut… | 2025-12-10T21:16:09.797 | 2025-12-30T18:23:47.270 |
| fkie_cve-2025-14991 | A weakness has been identified in Campcodes Complete Online Beauty Parlor Management System 1.0. Th… | 2025-12-21T04:16:04.897 | 2025-12-30T18:16:53.633 |
| fkie_cve-2025-14990 | A security flaw has been discovered in Campcodes Complete Online Beauty Parlor Management System 1.… | 2025-12-21T04:16:04.660 | 2025-12-30T18:16:41.027 |
| fkie_cve-2025-14989 | A vulnerability was identified in Campcodes Complete Online Beauty Parlor Management System 1.0. Th… | 2025-12-21T00:15:51.387 | 2025-12-30T18:16:22.850 |
| fkie_cve-2025-14964 | A vulnerability has been found in TOTOLINK T10 4.1.8cu.5083_B20200521. This affects the function sp… | 2025-12-19T19:15:50.213 | 2025-12-30T18:16:07.343 |
| fkie_cve-2025-65410 | A stack overflow in the src/main.c component of GNU Unrtf v0.21.10 allows attackers to cause a Deni… | 2025-12-23T17:15:48.333 | 2025-12-30T18:15:47.120 |
| fkie_cve-2025-65354 | Improper input handling in /Grocery/search_products_itname.php inPuneethReddyHC event-management 1.… | 2025-12-23T20:15:46.843 | 2025-12-30T18:15:46.880 |
| fkie_cve-2025-56401 | ZIRA Group WBRM 7.0 is vulnerable to SQL Injection in referenceLookupsByTableNameAndColumnName. | 2025-11-24T16:15:49.473 | 2025-12-30T18:15:27.747 |
| fkie_cve-2025-14962 | A flaw has been found in code-projects Simple Stock System 1.0. The impacted element is an unknown … | 2025-12-19T19:15:50.017 | 2025-12-30T18:14:54.157 |
| fkie_cve-2025-14961 | A vulnerability was detected in code-projects Simple Blood Donor Management System 1.0. The affecte… | 2025-12-19T19:15:49.820 | 2025-12-30T18:14:40.710 |
| fkie_cve-2025-63952 | A Cross-Site Request Forgery (CSRF) in the /mwapi?method=add-user component of Magewell Pro Convert… | 2025-11-24T17:16:08.517 | 2025-12-30T18:13:43.463 |
| fkie_cve-2025-63953 | A Cross-Site Request Forgery (CSRF) in the /usapi?method=add-user component of Magewell Pro Convert… | 2025-11-24T17:16:08.760 | 2025-12-30T17:58:54.510 |
| fkie_cve-2025-14960 | A security vulnerability has been detected in code-projects Simple Blood Donor Management System 1.… | 2025-12-19T18:15:48.760 | 2025-12-30T17:55:51.423 |
| fkie_cve-2025-63958 | MILLENSYS Vision Tools Workspace 6.5.0.2585 exposes a sensitive configuration endpoint (/MILLENSYS/… | 2025-11-24T17:16:09.040 | 2025-12-30T17:53:54.407 |
| fkie_cve-2025-56400 | Cross-Site Request Forgery (CSRF) vulnerability in the OAuth implementation of the Tuya SDK 6.5.0 f… | 2025-11-24T20:15:49.560 | 2025-12-30T17:51:20.047 |
| ID | Description | Package | Published | Updated |
|---|---|---|---|---|
| pysec-2022-201 | Cross-site Scripting (XSS) - Generic in GitHub repository octoprint/octoprint prior to 1.8.0. | octoprint | 2022-05-18T14:15:00Z | 2022-05-25T22:34:11.424461Z |
| pysec-2022-200 | Cross-site Scripting (XSS) - DOM in GitHub repository octoprint/octoprint prior to 1.8.0. | octoprint | 2022-05-18T14:15:00Z | 2022-05-25T22:34:11.363909Z |
| pysec-2022-199 | The ctx hosted project on PyPI was taken over via user account compromise and replaced wi… | ctx | 2022-05-24T17:55:00.000000Z | 2022-05-24T17:55:00.000000Z |
| pysec-2022-157 | Tensorflow is an Open Source Machine Learning Framework. The `simplifyBroadcast` function… | tensorflow-gpu | 2022-02-04T23:15:00Z | 2022-05-23T17:22:17.622844Z |
| pysec-2022-156 | Tensorflow is an Open Source Machine Learning Framework. TensorFlow's type inference can … | tensorflow-gpu | 2022-02-04T23:15:00Z | 2022-05-23T17:22:17.496974Z |
| pysec-2022-154 | Tensorflow is an Open Source Machine Learning Framework. A `GraphDef` from a TensorFlow `… | tensorflow-gpu | 2022-02-04T23:15:00Z | 2022-05-23T17:22:17.175044Z |
| pysec-2022-99 | Tensorflow is an Open Source Machine Learning Framework. A `GraphDef` from a TensorFlow `… | tensorflow-cpu | 2022-02-04T23:15:00Z | 2022-05-23T17:22:06.927466Z |
| pysec-2022-102 | Tensorflow is an Open Source Machine Learning Framework. The `simplifyBroadcast` function… | tensorflow-cpu | 2022-02-04T23:15:00Z | 2022-05-23T17:21:57.130120Z |
| pysec-2022-101 | Tensorflow is an Open Source Machine Learning Framework. TensorFlow's type inference can … | tensorflow-cpu | 2022-02-04T23:15:00Z | 2022-05-23T17:21:57.046527Z |
| pysec-2022-198 | Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. In affected… | vyper | 2022-04-13T22:15:00Z | 2022-05-17T23:28:35.566517Z |
| pysec-2022-197 | Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. Versions of… | vyper | 2022-04-13T19:15:00Z | 2022-05-17T23:28:35.533012Z |
| pysec-2022-196 | Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. In version … | vyper | 2022-04-04T18:15:00Z | 2022-05-17T23:28:35.497395Z |
| pysec-2022-195 | Twisted is an event-based framework for internet applications, supporting Python 3.6+. Pr… | twisted | 2022-04-04T18:15:00Z | 2022-05-17T23:28:35.399117Z |
| pysec-2022-194 | PyPDF2 is an open source python PDF library capable of splitting, merging, cropping, and … | pypdf2 | 2022-04-18T19:15:00Z | 2022-05-17T23:28:27.580433Z |
| pysec-2022-193 | flask-session-captcha is a package which allows users to extend Flask by adding an image … | flask-session-captcha | 2022-04-25T22:15:00Z | 2022-05-17T23:28:25.264091Z |
| pysec-2022-191 | A SQL injection issue was discovered in QuerySet.explain() in Django 2.2 before 2.2.28, 3… | django | 2022-04-12T05:15:00Z | 2022-05-17T23:28:24.874544Z |
| pysec-2022-190 | An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.… | django | 2022-04-12T05:15:00Z | 2022-05-17T23:28:24.739985Z |
| pysec-2022-192 | django-mfa3 is a library that implements multi factor authentication for the django web f… | django-mfa3 | 2022-04-15T19:15:00Z | 2022-05-17T23:28:24.608119Z |
| pysec-2022-189 | A Python format string issue leading to information disclosure and potentially remote cod… | consoleme | 2022-04-01T23:15:00Z | 2022-05-17T23:28:24.480886Z |
| pysec-2022-188 | Apache Superset before 1.4.2 is vulnerable to SQL injection in chart data requests. Users… | apache-superset | 2022-04-13T19:15:00Z | 2022-05-17T23:28:23.962872Z |
| pysec-2022-187 | TkVideoplayer is a simple library to play video files in tkinter. Uncontrolled memory con… | tkvideoplayer | 2022-05-06T00:15:00Z | 2022-05-17T21:41:01.217686Z |
| pysec-2022-186 | Apache Spark supports end-to-end encryption of RPC connections via "spark.authenticate" a… | pyspark | 2022-03-10T09:15:00Z | 2022-05-17T21:40:53.336457Z |
| pysec-2022-184 | Keylime does not enforce that the agent registrar data is the same when the tenant uses i… | keylime | 2022-05-06T17:15:00Z | 2022-05-17T21:40:52.506546Z |
| pysec-2022-183 | Encode OSS httpx <=1.0.0.beta0 is affected by improper input validation in `httpx.URL`, `… | httpx | 2022-04-28T14:15:00Z | 2022-05-17T21:40:52.405453Z |
| pysec-2022-182 | ADMesh through 0.98.4 has a heap-based buffer over-read in stl_update_connects_remove_1 (… | admesh | 2022-05-08T06:15:00Z | 2022-05-17T21:40:50.660206Z |
| pysec-2022-185 | marcador package in PyPI 0.1 through 0.13 included a code-execution backdoor. | marcador | 2022-05-08T20:15:00Z | 2022-05-17T18:33:00Z |
| pysec-2022-166 | In Paramiko before 2.10.1, a race condition (between creation and chmod) in the write_pri… | paramiko | 2022-03-17T22:15:00Z | 2022-05-17T03:06:38.700744Z |
| pysec-2022-43150 | Apache Doris, prior to 1.0.0, used a hardcoded key and IV to initialize the cipher used f… | pydoris | 2022-04-26T16:15:00+00:00 | 2022-05-06T13:40:00+00:00 |
| pysec-2022-181 | Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0. | pytorch-lightning | 2022-03-05T22:15:00Z | 2022-04-11T00:47:32.240193Z |
| pysec-2022-180 | The Jupyter notebook is a web-based notebook environment for interactive computing. Prior… | notebook | 2022-03-31T23:15:00Z | 2022-04-11T00:47:31.258157Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-4038 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.167515Z |
| gsd-2024-4025 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.167296Z |
| gsd-2024-4037 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.166853Z |
| gsd-2024-4042 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.166333Z |
| gsd-2024-4027 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.166136Z |
| gsd-2024-4033 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.165686Z |
| gsd-2024-4040 | VFS Sandbox Escape in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms … | 2024-04-23T05:02:11.165045Z |
| gsd-2024-4035 | The Photo Gallery – GT3 Image Gallery & Gutenberg Block Gallery plugin for WordPress is v… | 2024-04-23T05:02:11.164766Z |
| gsd-2024-4044 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.164572Z |
| gsd-2024-4046 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.163882Z |
| gsd-2024-4030 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:11.163669Z |
| gsd-2024-32974 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.653321Z |
| gsd-2024-32973 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.647901Z |
| gsd-2024-32962 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.647305Z |
| gsd-2024-32956 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-23T05:02:10.640031Z |
| gsd-2024-32981 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.638018Z |
| gsd-2024-32988 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.629009Z |
| gsd-2024-32985 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.620074Z |
| gsd-2024-32999 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.598524Z |
| gsd-2024-32976 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.595813Z |
| gsd-2024-32982 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.568862Z |
| gsd-2024-32992 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.561713Z |
| gsd-2024-32964 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.555950Z |
| gsd-2024-32951 | Missing Authorization vulnerability in BloomPixel Max Addons Pro for Bricks.This issue af… | 2024-04-23T05:02:10.555465Z |
| gsd-2024-32979 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.532544Z |
| gsd-2024-32991 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.530627Z |
| gsd-2024-32998 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.529613Z |
| gsd-2024-32955 | Server-Side Request Forgery (SSRF) vulnerability in Foliovision FV Flowplayer Video Playe… | 2024-04-23T05:02:10.522020Z |
| gsd-2024-32983 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-23T05:02:10.521511Z |
| gsd-2024-32958 | Cross-Site Request Forgery (CSRF) vulnerability in Giorgos Sarigiannidis Slash Admin allo… | 2024-04-23T05:02:10.517911Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192588 | Malicious code in elf-stats-fuzzy-wreath-278 (npm) | 2025-12-16T06:42:31Z | 2025-12-22T21:38:10Z |
| mal-2025-192587 | Malicious code in elf-stats-aurora-cocoa-911 (npm) | 2025-12-16T06:42:31Z | 2025-12-22T21:38:10Z |
| mal-2025-192586 | Malicious code in dubbo-js-private-workspace (npm) | 2025-12-16T07:05:12Z | 2025-12-22T21:38:10Z |
| mal-2025-192558 | Malicious code in eslint-config-zoo (npm) | 2025-12-12T06:34:06Z | 2025-12-22T21:38:10Z |
| mal-2025-192556 | Malicious code in cms_comp_static (npm) | 2025-12-12T06:34:06Z | 2025-12-22T21:38:10Z |
| mal-2025-192548 | Malicious code in efruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:10Z |
| mal-2025-192547 | Malicious code in dfruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:10Z |
| mal-2025-192546 | Malicious code in cfruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:10Z |
| mal-2025-192682 | Malicious code in @nosinovacao/nosid-mfe-common (npm) | 2025-12-20T20:35:30Z | 2025-12-22T21:38:09Z |
| mal-2025-192665 | Malicious code in baidu-tester (npm) | 2025-12-19T16:08:18Z | 2025-12-22T21:38:09Z |
| mal-2025-192664 | Malicious code in asdfgh33 (npm) | 2025-12-19T16:17:02Z | 2025-12-22T21:38:09Z |
| mal-2025-192663 | Malicious code in ahmed_salem_o (npm) | 2025-12-19T16:15:38Z | 2025-12-22T21:38:09Z |
| mal-2025-192662 | Malicious code in adeliana-xnetgpt (npm) | 2025-12-19T16:20:59Z | 2025-12-22T21:38:09Z |
| mal-2025-192661 | Malicious code in adel-xnetgpt (npm) | 2025-12-19T16:20:59Z | 2025-12-22T21:38:09Z |
| mal-2025-192660 | Malicious code in @sodexo-connect/sap-cdc-client (npm) | 2025-12-19T16:20:43Z | 2025-12-22T21:38:09Z |
| mal-2025-192621 | Malicious code in azaza (npm) | 2025-12-19T08:40:34Z | 2025-12-22T21:38:09Z |
| mal-2025-192620 | Malicious code in android_teminator_x (npm) | 2025-12-19T08:25:42Z | 2025-12-22T21:38:09Z |
| mal-2025-192619 | Malicious code in adk-github (npm) | 2025-12-19T08:38:03Z | 2025-12-22T21:38:09Z |
| mal-2025-192618 | Malicious code in adk-cli (npm) | 2025-12-19T08:38:03Z | 2025-12-22T21:38:09Z |
| mal-2025-192617 | Malicious code in @xyuxu/i18never (npm) | 2025-12-19T08:34:43Z | 2025-12-22T21:38:09Z |
| mal-2025-192616 | Malicious code in @pluxee-design-system/core (npm) | 2025-12-19T08:24:02Z | 2025-12-22T21:38:09Z |
| mal-2025-192598 | Malicious code in bigmathlib (npm) | 2025-12-16T07:25:20Z | 2025-12-22T21:38:09Z |
| mal-2025-192585 | Malicious code in betterjsloggin (npm) | 2025-12-16T06:25:18Z | 2025-12-22T21:38:09Z |
| mal-2025-192570 | Malicious code in @mohamed1687/iut-encrypt (npm) | 2025-12-15T04:50:36Z | 2025-12-22T21:38:09Z |
| mal-2025-192545 | Malicious code in bfruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:09Z |
| mal-2025-192544 | Malicious code in afruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:09Z |
| mal-0000-kam193-9d85a36c2c00ecd5 | Malicious code in smtrlib (PyPI) | 2025-12-22T17:15:11Z | 2025-12-22T17:15:11Z |
| mal-2025-192689 | Malicious code in unizip (PyPI) | 2025-12-22T14:02:40Z | 2025-12-22T14:02:40Z |
| mal-2025-192683 | Malicious code in ai-cypher (PyPI) | 2025-12-21T01:10:53Z | 2025-12-21T19:36:49Z |
| mal-2025-192685 | Malicious code in hooktest-fin (PyPI) | 2025-12-21T14:09:21Z | 2025-12-21T14:09:21Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-1432 | GNU Emacs: Schwachstelle ermöglicht Codeausführung | 2024-06-23T22:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-1412 | Ghostscript: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode | 2024-06-19T22:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-1396 | Python: Mehrere Schwachstellen ermöglichen Manipulation von Dateien und Umgehung von Sicherheitsmaßnahmen | 2024-06-17T22:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-1071 | Golang Go: Mehrere Schwachstellen | 2024-05-07T22:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0980 | Ghostscript: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-04-28T22:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0880 | less: Schwachstelle ermöglicht Codeausführung | 2024-04-14T22:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0847 | Node.js: Schwachstelle ermöglicht Codeausführung | 2024-04-10T22:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0726 | cURL: Mehrere Schwachstellen | 2024-03-26T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0708 | GNU Emacs: Mehrere Schwachstellen | 2024-03-25T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0686 | GnuTLS: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen und DoS | 2024-03-20T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0591 | expat: Schwachstelle ermöglicht Denial of Service | 2024-03-10T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0404 | QT: Schwachstelle ermöglicht Denial of Service | 2024-02-15T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0291 | vim: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2024-02-04T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0131 | GnuTLS: Mehrere Schwachstellen | 2024-01-16T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2023-2978 | GnuTLS: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-11-20T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2023-0668 | dnsmasq: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-03-15T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2022-0246 | expat: Mehrere Schwachstellen | 2022-01-17T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2022-0235 | Red Hat Advanced Cluster Management: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2022-03-03T23:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2025-0041 | IBM App Connect Enterprise: Schwachstelle ermöglicht Denial of Service | 2025-01-09T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2025-0039 | Nagios Enterprises Nagios XI: Schwachstelle ermöglicht Cross-Site Scripting | 2025-01-09T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2025-0002 | OpenJPEG: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-01-01T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-3763 | Paessler PRTG: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-12-30T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-3745 | Linux Kernel - BlueZ: Mehrere Schwachstellen | 2020-10-14T22:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-3686 | Drupal: Mehrere Schwachstellen ermöglichen | 2024-12-11T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-3685 | Mozilla Thunderbird: Schwachstelle ermöglicht Path-Traversal Angriff | 2024-12-11T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-3522 | Red Hat OpenStack Platform: Mehrere Schwachstellen | 2024-11-20T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-3494 | Mattermost: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-11-18T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-3488 | Red Hat OpenShift Container Platform: Mehrere Schwachstellen | 2024-11-18T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-3410 | Xen: Mehrere Schwachstellen | 2024-11-11T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-3329 | Mattermost: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2024-11-04T23:00:00.000+00:00 | 2025-01-09T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2021:1168 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.2.2 security and bug fix update | 2021-04-13T04:30:02+00:00 | 2025-11-27T11:41:03+00:00 |
| rhsa-2021:1129 | Red Hat Security Advisory: Red Hat 3scale API Management 2.10.0 security update and release | 2021-04-08T10:18:08+00:00 | 2025-11-27T11:41:02+00:00 |
| rhsa-2021:0980 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.1.5 security and bug fix update | 2021-03-24T15:39:52+00:00 | 2025-11-27T11:41:02+00:00 |
| rhsa-2021:0516 | Red Hat Security Advisory: Release of OpenShift Serverless 1.13.0 security update | 2021-02-18T00:02:32+00:00 | 2025-11-27T11:41:00+00:00 |
| rhsa-2020:5635 | Red Hat Security Advisory: OpenShift Container Platform 4.7.0 extras and security update | 2021-02-24T15:00:25+00:00 | 2025-11-27T11:40:59+00:00 |
| rhsa-2020:5149 | Red Hat Security Advisory: Release of OpenShift Serverless 1.11.0 | 2020-11-18T15:05:44+00:00 | 2025-11-27T11:40:59+00:00 |
| rhsa-2020:5606 | Red Hat Security Advisory: Red Hat OpenShift Container Storage 4.6 bug fix and enhancement update | 2020-12-17T05:43:57+00:00 | 2025-11-27T11:40:58+00:00 |
| rhsa-2020:5605 | Red Hat Security Advisory: Red Hat OpenShift Container Storage 4.6.0 security, bug fix, enhancement update | 2020-12-17T19:42:16+00:00 | 2025-11-27T11:40:57+00:00 |
| rhsa-2020:5198 | Red Hat Security Advisory: Red Hat OpenShift Jaeger security update | 2020-11-24T09:02:25+00:00 | 2025-11-27T11:40:57+00:00 |
| rhsa-2020:5056 | Red Hat Security Advisory: podman security and bug fix update | 2020-11-10T13:54:40+00:00 | 2025-11-27T11:40:56+00:00 |
| rhsa-2020:5055 | Red Hat Security Advisory: buildah security update | 2020-11-10T13:55:01+00:00 | 2025-11-27T11:40:55+00:00 |
| rhsa-2020:5054 | Red Hat Security Advisory: skopeo security update | 2020-11-10T13:54:32+00:00 | 2025-11-27T11:40:55+00:00 |
| rhsa-2020:4694 | Red Hat Security Advisory: container-tools:rhel8 security, bug fix, and enhancement update | 2020-11-04T01:34:32+00:00 | 2025-11-27T11:40:55+00:00 |
| rhsa-2020:4298 | Red Hat Security Advisory: OpenShift Container Platform 4.6.1 image security update | 2020-10-27T16:22:20+00:00 | 2025-11-27T11:40:54+00:00 |
| rhsa-2020:4297 | Red Hat Security Advisory: OpenShift Container Platform 4.6.1 package security update | 2020-10-27T14:53:57+00:00 | 2025-11-27T11:40:53+00:00 |
| rhsa-2020:4264 | Red Hat Security Advisory: OpenShift Container Platform 4.3.40 security and bug fix update | 2020-10-20T21:55:07+00:00 | 2025-11-27T11:40:53+00:00 |
| rhsa-2020:3727 | Red Hat Security Advisory: OpenShift Container Platform 3.11.286 security update | 2020-09-16T07:55:58+00:00 | 2025-11-27T11:40:53+00:00 |
| rhsa-2020:4214 | Red Hat Security Advisory: go-toolset-1.13-golang security and bug fix update | 2020-10-08T10:52:13+00:00 | 2025-11-27T11:40:52+00:00 |
| rhsa-2020:3809 | Red Hat Security Advisory: OpenShift Container Platform 4.3.38 container image security update | 2020-09-23T14:14:39+00:00 | 2025-11-27T11:40:52+00:00 |
| rhsa-2020:3783 | Red Hat Security Advisory: OpenShift Container Platform 4.4.23 cluster-network-operator-container security update | 2020-09-22T07:15:37+00:00 | 2025-11-27T11:40:51+00:00 |
| rhsa-2020:3780 | Red Hat Security Advisory: OpenShift Container Platform 4.5.11 ose-cluster-svcat-apiserver-operator-container security update | 2020-09-21T19:50:11+00:00 | 2025-11-27T11:40:51+00:00 |
| rhsa-2020:3665 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2020-09-08T10:05:46+00:00 | 2025-11-27T11:40:50+00:00 |
| rhsa-2020:3578 | Red Hat Security Advisory: OpenShift Container Platform 4.5.8 security update | 2020-09-08T10:09:31+00:00 | 2025-11-27T11:40:49+00:00 |
| rhsa-2020:3414 | Red Hat Security Advisory: OpenShift Container Platform 4.5.5 security update | 2020-08-12T04:48:41+00:00 | 2025-11-27T11:40:49+00:00 |
| rhsa-2020:3372 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3scale-istio-adapter-rhel8-container security update | 2020-08-06T20:21:37+00:00 | 2025-11-27T11:40:48+00:00 |
| rhsa-2020:3370 | Red Hat Security Advisory: Red Hat OpenShift Jaeger 1.17.6 container images security update | 2020-08-06T20:16:01+00:00 | 2025-11-27T11:40:47+00:00 |
| rhsa-2020:3369 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh security update | 2020-08-06T20:19:17+00:00 | 2025-11-27T11:40:47+00:00 |
| rhsa-2020:3087 | Red Hat Security Advisory: Red Hat OpenShift Jaeger 1.17.5 container images security update | 2020-07-22T07:33:26+00:00 | 2025-11-27T11:40:47+00:00 |
| rhsa-2020:3078 | Red Hat Security Advisory: OpenShift Container Platform 4.4.14 ose-cluster-machine-approver-container security update | 2020-07-28T12:48:46+00:00 | 2025-11-27T11:40:46+00:00 |
| rhsa-2020:2878 | Red Hat Security Advisory: OpenShift Container Platform 4.4.12 ose-cloud-credential-operator-container security update | 2020-07-14T01:20:39+00:00 | 2025-11-27T11:40:45+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-21734 | misc: fastrpc: Fix copy buffer page size | 2025-02-02T00:00:00.000Z | 2025-10-30T01:01:46.000Z |
| msrc_cve-2023-52981 | drm/i915: Fix request ref counting during error capture & debugfs dump | 2025-03-02T00:00:00.000Z | 2025-10-30T01:01:26.000Z |
| msrc_cve-2024-58094 | jfs: add check read-only before truncation in jfs_truncate_nolock() | 2025-04-02T00:00:00.000Z | 2025-10-30T01:01:20.000Z |
| msrc_cve-2025-40071 | tty: n_gsm: Don't block input queue by waiting MSC | 2025-10-02T00:00:00.000Z | 2025-10-29T01:05:06.000Z |
| msrc_cve-2025-40079 | riscv, bpf: Sign extend struct ops return values properly | 2025-10-02T00:00:00.000Z | 2025-10-29T01:05:01.000Z |
| msrc_cve-2025-40068 | fs: ntfs3: Fix integer overflow in run_unpack() | 2025-10-02T00:00:00.000Z | 2025-10-29T01:04:55.000Z |
| msrc_cve-2025-40027 | net/9p: fix double req put in p9_fd_cancelled | 2025-10-02T00:00:00.000Z | 2025-10-29T01:04:34.000Z |
| msrc_cve-2025-11840 | GNU Binutils ldmisc.c vfinfo out-of-bounds | 2025-10-02T00:00:00.000Z | 2025-10-29T01:04:28.000Z |
| msrc_cve-2025-40049 | Squashfs: fix uninit-value in squashfs_get_parent | 2025-10-02T00:00:00.000Z | 2025-10-29T01:04:20.000Z |
| msrc_cve-2025-40081 | perf: arm_spe: Prevent overflow in PERF_IDX2OFF() | 2025-10-02T00:00:00.000Z | 2025-10-29T01:04:15.000Z |
| msrc_cve-2025-40048 | uio_hv_generic: Let userspace take care of interrupt mask | 2025-10-02T00:00:00.000Z | 2025-10-29T01:04:10.000Z |
| msrc_cve-2025-40036 | misc: fastrpc: fix possible map leak in fastrpc_put_args | 2025-10-02T00:00:00.000Z | 2025-10-29T01:04:04.000Z |
| msrc_cve-2025-40039 | ksmbd: Fix race condition in RPC handle list access | 2025-10-02T00:00:00.000Z | 2025-10-29T01:03:59.000Z |
| msrc_cve-2025-40043 | net: nfc: nci: Add parameter validation for packet data | 2025-10-02T00:00:00.000Z | 2025-10-29T01:03:54.000Z |
| msrc_cve-2025-40033 | remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() | 2025-10-02T00:00:00.000Z | 2025-10-29T01:03:37.000Z |
| msrc_cve-2025-40077 | f2fs: fix to avoid overflow while left shift operation | 2025-10-02T00:00:00.000Z | 2025-10-29T01:03:32.000Z |
| msrc_cve-2025-40032 | PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release | 2025-10-02T00:00:00.000Z | 2025-10-29T01:03:26.000Z |
| msrc_cve-2025-40080 | nbd: restrict sockets to TCP and UDP | 2025-10-02T00:00:00.000Z | 2025-10-29T01:03:21.000Z |
| msrc_cve-2025-40060 | coresight: trbe: Return NULL pointer for allocation failures | 2025-10-02T00:00:00.000Z | 2025-10-29T01:03:16.000Z |
| msrc_cve-2025-40026 | KVM: x86: Don't (re)check L1 intercepts when completing userspace I/O | 2025-10-02T00:00:00.000Z | 2025-10-29T01:03:10.000Z |
| msrc_cve-2025-40056 | vhost: vringh: Fix copy_to_iter return value check | 2025-10-02T00:00:00.000Z | 2025-10-29T01:02:59.000Z |
| msrc_cve-2025-40051 | vhost: vringh: Modify the return value check | 2025-10-02T00:00:00.000Z | 2025-10-29T01:02:54.000Z |
| msrc_cve-2025-40055 | ocfs2: fix double free in user_cluster_connect() | 2025-10-02T00:00:00.000Z | 2025-10-29T01:02:49.000Z |
| msrc_cve-2025-40025 | f2fs: fix to do sanity check on node footer for non inode dnode | 2025-10-02T00:00:00.000Z | 2025-10-29T01:02:43.000Z |
| msrc_cve-2025-40053 | net: dlink: handle copy_thresh allocation failure | 2025-10-02T00:00:00.000Z | 2025-10-29T01:02:38.000Z |
| msrc_cve-2025-40035 | Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leak | 2025-10-02T00:00:00.000Z | 2025-10-29T01:02:33.000Z |
| msrc_cve-2025-40030 | pinctrl: check the return value of pinmux_ops::get_function_name() | 2025-10-02T00:00:00.000Z | 2025-10-29T01:02:27.000Z |
| msrc_cve-2025-40052 | smb: client: fix crypto buffers in non-linear memory | 2025-10-02T00:00:00.000Z | 2025-10-29T01:02:22.000Z |
| msrc_cve-2025-40044 | fs: udf: fix OOB read in lengthAllocDescs handling | 2025-10-02T00:00:00.000Z | 2025-10-29T01:02:16.000Z |
| msrc_cve-2025-40078 | bpf: Explicitly check accesses to bpf_sock_addr | 2025-10-02T00:00:00.000Z | 2025-10-29T01:02:11.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-22-013-05 | Siemens COMOS Web (Update A) | 2022-01-11T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-013-04 | Siemens SIPROTEC 5 Devices | 2022-01-11T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-013-03 | Siemens Energy PLUSCONTROL | 2022-01-11T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-013-02 | Siemens SICAM A8000 | 2022-01-11T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-20 | Siemens JTTK and JT Utilities | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-19 | Siemens SiPass Integrated | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-18 | Siemens Teamcenter Active Workspace | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-17 | Siemens JT Utilities and JT Open Toolkit | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-15 | Siemens Simcenter STAR-CCM+ Viewer | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-14 | Siemens Siveillance Identity | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-12 | Siemens SIMATIC ITC | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-11 | Siemens SIMATIC eaSie PCS 7 Skill Package | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-10 | Siemens JT2Go and Teamcenter Visualization | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-09 | Siemens SINUMERIK Edge | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-08 | Siemens JTTK and JT Utilities | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-07 | Siemens POWER METER SICAM Q100 | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-350-06 | Siemens Capital VSTAR | 2021-12-14T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-315-13 | Siemens Siveillance Video DLNA Server | 2021-11-09T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-315-12 | Siemens NX JT Translator | 2021-11-09T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-315-11 | Siemens SIMATIC RTLS Locating Manager | 2021-11-09T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-315-10 | Siemens SENTRON powermanager | 2021-11-09T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-315-08 | Siemens NX OBJ Translator | 2021-11-09T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-315-07 | Siemens Nucleus RTOS-based APOGEE and TALON Products (Update C) | 2021-11-09T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-315-05 | Siemens Mendix Studio Pro | 2021-11-09T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-315-04 | Siemens Mendix | 2021-11-09T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-313-03 | Siemens Nucleus RTOS TCP/IP Stack | 2021-11-09T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-287-09 | Siemens SIMATIC Process Historian | 2021-10-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-287-08 | Siemens RUGGEDCOM ROX Devices | 2021-10-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-287-06 | Siemens Solid Edge | 2021-09-28T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-21-287-05 | Siemens SINEC NMS | 2021-10-12T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-wlc-dhcp-dos-76pcjpxk | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family DHCP Processing Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-wlc-dhcp-dos-76pCjPxK | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family DHCP Processing Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-webui-cmdinj-gje47emn | Cisco IOS XE Software Web UI Command Injection Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-webui-cmdinj-Gje47EMn | Cisco IOS XE Software Web UI Command Injection Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ssh-excpt-dos-fzobqtnk | Cisco IOS and IOS XE Software SSH Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ssh-excpt-dos-FzOBQTnk | Cisco IOS and IOS XE Software SSH Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-sdwan-avc-nddsgb8 | Cisco Software-Defined Application Visibility and Control on Cisco vManage Authentication Bypass Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-sdwan-avc-NddSGB8 | Cisco Software-Defined Application Visibility and Control on Cisco vManage Authentication Bypass Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-sdavc-za5fpxx2 | Cisco Software-Defined Application Visibility and Control on Cisco vManage Static Username and Password Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-sdavc-ZA5fpXX2 | Cisco Software-Defined Application Visibility and Control on Cisco vManage Static Username and Password Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-iosxe-mpls-dos-ab4oul3 | Cisco IOS XE Software for Catalyst Switches MPLS Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-iosxe-mpls-dos-Ab4OUL3 | Cisco IOS XE Software for Catalyst Switches MPLS Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-iosxe-cip-dos-9rtbklt9 | Cisco IOS and IOS XE Software Common Industrial Protocol Request Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-iosxe-cip-dos-9rTbKLt9 | Cisco IOS and IOS XE Software Common Industrial Protocol Request Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-iosxe-6vpe-dos-tjbtf5zv | Cisco IOS XE Software IPv6 VPN over MPLS Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-iosxe-6vpe-dos-tJBtf5Zv | Cisco IOS XE Software IPv6 VPN over MPLS Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ios-xe-cat-verify-d4neqa6q | Cisco IOS XE Software for Catalyst 9200 Series Switches Arbitrary Code Execution Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ios-xe-cat-verify-D4NEQA6q | Cisco IOS XE Software for Catalyst 9200 Series Switches Arbitrary Code Execution Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ewc-priv-esc-nderyltk | Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst Access Points Privilege Escalation Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ewc-priv-esc-nderYLtK | Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst Access Points Privilege Escalation Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-cwlc-snmpidv-rnyyqzuz | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Information Disclosure Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-cwlc-snmpidv-rnyyQzUZ | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Information Disclosure Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-c9800-mob-dos-342yac6j | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Mobility Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-c9800-mob-dos-342YAc6J | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Mobility Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-arb-file-delete-vb2rvcqv | Cisco SD-WAN Arbitrary File Deletion Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-arb-file-delete-VB2rVcQv | Cisco SD-WAN Arbitrary File Deletion Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ap-assoc-dos-egvqton8 | Cisco Catalyst 9100 Series Access Points Association Request Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ap-assoc-dos-EgVqtON8 | Cisco Catalyst 9100 Series Access Points Association Request Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-alg-dos-ku9z8kfx | Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-alg-dos-KU9Z8kFX | Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| ID | Description | Updated |
|---|---|---|
| var-201605-0467 | Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4… | 2024-11-29T19:57:36.967000Z |
| var-201003-1114 | The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9,… | 2024-11-29T19:57:36.248000Z |
| var-200511-0015 | Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) imple… | 2024-11-29T19:57:33.189000Z |
| var-201310-0356 | Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, J… | 2024-11-29T19:57:27.957000Z |
| var-201912-0457 | A validation issue was addressed with improved logic. This issue is fixed in iOS 12.2, tv… | 2024-11-29T19:57:27.878000Z |
| var-202110-1622 | A memory corruption issue was addressed with improved memory handling. This issue is fixe… | 2024-11-29T19:57:26.337000Z |
| var-201203-0191 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers … | 2024-11-29T19:57:22.087000Z |
| var-201108-0145 | Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before … | 2024-11-29T19:57:21.485000Z |
| var-201912-0626 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-11-29T19:56:49.196000Z |
| var-202109-1789 | When curl >= 7.20.0 and <= 7.78.0 connects to an IMAP or POP3 server to retrieve data usi… | 2024-11-29T19:56:48.802000Z |
| var-201110-0395 | Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK… | 2024-11-29T19:56:46.543000Z |
| var-201006-1241 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 throug… | 2024-11-29T19:56:33.399000Z |
| var-201504-0247 | The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combin… | 2024-11-29T19:56:33.122000Z |
| var-200810-0139 | Buffer overflow in ColorSync in Mac OS X 10.4.11 and 10.5.5 allows remote attackers to ca… | 2024-11-29T19:56:30.248000Z |
| var-201501-0737 | Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and o… | 2024-11-29T19:55:55.498000Z |
| var-201806-1482 | An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari be… | 2024-11-29T19:55:55.302000Z |
| var-201904-1401 | A cross-site scripting issue existed in Safari. This issue was addressed with improved UR… | 2024-11-29T19:55:55.156000Z |
| var-202002-1191 | An out-of-bounds read was addressed with improved input validation. This issue is fixed i… | 2024-11-29T19:55:54.604000Z |
| var-202003-1787 | FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali… | 2024-11-29T19:55:47.421000Z |
| var-201904-1344 | Multiple memory corruption issues were addressed with improved input validation. This iss… | 2024-11-29T19:55:47.351000Z |
| var-201912-0544 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-11-29T19:55:46.722000Z |
| var-201507-0348 | The X509_verify_cert function in crypto/x509/x509_vfy.c in OpenSSL 1.0.1n, 1.0.1o, 1.0.2b… | 2024-11-29T19:55:31.990000Z |
| var-202201-0567 | A use after free issue was addressed with improved memory management. This issue is fixed… | 2024-11-29T19:55:31.220000Z |
| var-201904-1414 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-11-29T19:55:03.788000Z |
| var-200809-0188 | Integer overflow in Apple QuickTime before 7.5.5 on Windows allows remote attackers to ex… | 2024-11-29T19:55:03.062000Z |
| var-201710-0928 | When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month fi… | 2024-11-29T19:54:59.876000Z |
| var-202202-0163 | In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_m… | 2024-11-29T19:54:59.723000Z |
| var-200502-0025 | The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and ot… | 2024-11-29T19:54:40.792000Z |
| var-200504-0293 | Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allo… | 2024-11-29T19:54:38.738000Z |
| var-202205-1304 | A use after free issue was addressed with improved memory management. This issue is fixed… | 2024-11-29T19:54:38.505000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2018-000091 | NoMachine App for Android vulnerable to environment variables alteration | 2018-08-17T13:49+09:00 | 2019-07-25T17:17+09:00 |
| jvndb-2018-000078 | WordPress plugin "FV Flowplayer Video Player" vulnerable to cross-site scripting | 2018-07-17T12:27+09:00 | 2019-07-25T17:12+09:00 |
| jvndb-2018-000081 | Multiple vulnerabilities in ORCA(Online Receipt Computer Advantage) | 2018-07-18T15:35+09:00 | 2019-07-25T16:59+09:00 |
| jvndb-2018-000073 | Installer of ChatWork Desktop App for Windows may insecurely load Dynamic Link Libraries | 2018-07-23T14:28+09:00 | 2019-07-25T16:50+09:00 |
| jvndb-2018-000079 | Explzh vulnerable to directory traversal | 2018-07-13T14:47+09:00 | 2019-07-25T16:26+09:00 |
| jvndb-2018-000087 | The installer of Digital Paper App may insecurely load Dynamic Link Libraries | 2018-08-21T15:59+09:00 | 2019-07-25T16:17+09:00 |
| jvndb-2018-000096 | QNAP Photo Station vulnerable to cross-site scripting | 2018-08-31T15:48+09:00 | 2019-07-25T16:09+09:00 |
| jvndb-2018-000089 | Multiple vulnerabilities in multiple I-O DATA network camera products | 2018-08-07T14:33+09:00 | 2019-07-25T16:00+09:00 |
| jvndb-2018-000074 | DLL planting vulnerability in multiple Yayoi 17 Series products | 2018-07-20T15:41+09:00 | 2019-07-25T15:04+09:00 |
| jvndb-2018-000082 | WL-330NUL vulnerable to cross-site request forgery | 2018-07-20T15:41+09:00 | 2019-07-25T14:38+09:00 |
| jvndb-2018-000090 | Multiple directory traversal vulnerabilities in AttacheCase | 2018-08-06T14:10+09:00 | 2019-07-25T14:32+09:00 |
| jvndb-2018-000094 | Movable Type vulnerable to cross-site scripting | 2018-08-30T17:34+09:00 | 2019-07-25T14:25+09:00 |
| jvndb-2016-008607 | Vulnerability in Cosminexus HTTP Server and Hitachi Web Server | 2017-06-30T15:55+09:00 | 2019-07-25T14:14+09:00 |
| jvndb-2018-006236 | Information Disclosure Vulnerability in Hitachi Command Suite | 2018-08-14T10:04+09:00 | 2019-07-24T17:02+09:00 |
| jvndb-2018-000067 | Mailman vulnerable to cross-site scripting | 2018-06-28T12:30+09:00 | 2019-07-24T15:21+09:00 |
| jvndb-2018-000068 | Multiple vulnerabilities in Calsos CSDX and CSDJ series products | 2018-07-02T15:22+09:00 | 2019-07-24T14:31+09:00 |
| jvndb-2018-000106 | User-friendly SVN vulnerable to cross-site scripting | 2018-10-09T16:27+09:00 | 2019-07-11T18:00+09:00 |
| jvndb-2018-000102 | Multiple vulnerabilities in Denbun | 2018-10-04T16:11+09:00 | 2019-07-11T16:02+09:00 |
| jvndb-2019-000046 | Intel Dual Band Wireless-AC 8260 vulnerable to denial-of-service (DoS) | 2019-07-10T14:07+09:00 | 2019-07-10T14:07+09:00 |
| jvndb-2018-000066 | MemoCGI vulnerable to directory traversal | 2018-06-27T14:44+09:00 | 2019-07-05T17:58+09:00 |
| jvndb-2018-000069 | Cybozu Garoon vulnerable to SQL injection | 2018-07-02T15:22+09:00 | 2019-07-05T17:55+09:00 |
| jvndb-2018-000070 | Installer of Glary Utilities may insecurely load Dynamic Link Libraries | 2018-07-03T13:42+09:00 | 2019-07-05T17:52+09:00 |
| jvndb-2018-000072 | The installers of multiple Logicool software programs may insecurely load Dynamic Link Libraries | 2018-07-06T14:36+09:00 | 2019-07-05T17:38+09:00 |
| jvndb-2018-000071 | DHC Online Shop App for Android fails to verify SSL server certificates | 2018-07-06T14:36+09:00 | 2019-07-05T17:35+09:00 |
| jvndb-2018-000085 | Multiple cross-site scripting vulnerabilities in GROWI | 2018-08-03T15:04+09:00 | 2019-07-05T17:13+09:00 |
| jvndb-2018-000051 | The installer of Visual C++ Redistributable may insecurely load Dynamic Link Libraries | 2018-05-17T14:57+09:00 | 2019-07-05T16:41+09:00 |
| jvndb-2018-000049 | Multiple Microsoft Windows applications and installers may insecurely load Dynamic Link Libraries | 2018-05-17T15:18+09:00 | 2019-07-05T16:40+09:00 |
| jvndb-2019-000045 | Multiple vulnerabilities in Access analysis CGI An-Analyzer | 2019-07-05T15:28+09:00 | 2019-07-05T15:28+09:00 |
| jvndb-2018-000056 | Susie plug-in "axpdfium" may insecurely load Dynamic Link Libraries | 2018-05-24T15:15+09:00 | 2019-07-02T14:53+09:00 |
| jvndb-2018-000058 | WordPress plugin "Email Subscribers & Newsletters" vulnerable to cross-site scripting | 2018-05-28T14:11+09:00 | 2019-07-02T14:50+09:00 |
| ID | Description | Updated |
|---|