Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-rj8f-f8h4-6gwq | The issue was addressed with improved handling of caches. This issue is fixed in iOS 26.1 and iPadO… | 2025-11-04T03:30:28Z | 2025-11-04T18:31:52Z |
| ghsa-rfwj-hvcp-2885 | This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sonoma … | 2025-11-04T03:30:28Z | 2025-11-04T15:31:33Z |
| ghsa-qj67-gr9c-3589 | The issue was addressed with improved memory handling. This issue is fixed in watchOS 26.1, iOS 26.… | 2025-11-04T03:30:28Z | 2025-11-04T18:31:52Z |
| ghsa-pwvc-4r36-xf4c | This issue was addressed with improved validation of symlinks. This issue is fixed in visionOS 26.1… | 2025-11-04T03:30:28Z | 2025-11-05T21:31:00Z |
| ghsa-pq76-cc8r-h3cm | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, visionOS… | 2025-11-04T03:30:28Z | 2025-11-04T15:31:32Z |
| ghsa-p2fp-xccv-vf5p | A buffer overflow was addressed with improved bounds checking. This issue is fixed in Safari 26.1, … | 2025-11-04T03:30:28Z | 2025-11-05T21:30:59Z |
| ghsa-mjxr-6g34-88q5 | A permissions issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.… | 2025-11-04T03:30:28Z | 2025-11-04T18:31:52Z |
| ghsa-m3cw-288r-j9r9 | The issue was addressed with improved memory handling. This issue is fixed in iOS 26.1 and iPadOS 2… | 2025-11-04T03:30:28Z | 2025-11-05T21:31:00Z |
| ghsa-jrv3-f6mq-763r | An out-of-bounds read was addressed with improved input validation. This issue is fixed in visionOS… | 2025-11-04T03:30:28Z | 2025-11-05T21:31:00Z |
| ghsa-jp2w-2c9w-v4jw | The issue was addressed with improved bounds checks. This issue is fixed in iOS 26.1 and iPadOS 26.… | 2025-11-04T03:30:28Z | 2025-11-04T18:31:52Z |
| ghsa-jj3r-g3mj-2cmm | A logging issue was addressed with improved data redaction. This issue is fixed in iOS 26.1 and iPa… | 2025-11-04T03:30:28Z | 2025-11-05T21:30:59Z |
| ghsa-hp39-5pfm-cwwg | A file quarantine bypass was addressed with additional checks. This issue is fixed in macOS Sonoma … | 2025-11-04T03:30:28Z | 2025-11-04T18:31:52Z |
| ghsa-hmxw-42mv-c458 | This issue was addressed through improved state management. This issue is fixed in Safari 26.1, vis… | 2025-11-04T03:30:28Z | 2025-11-04T15:31:33Z |
| ghsa-h3q9-mrw5-m795 | A use-after-free issue was addressed with improved memory management. This issue is fixed in watchO… | 2025-11-04T03:30:28Z | 2025-11-05T21:31:00Z |
| ghsa-gwp3-4wx7-jwwf | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, visionOS… | 2025-11-04T03:30:28Z | 2025-11-05T21:31:00Z |
| ghsa-grg8-q2p5-vr2m | A race condition was addressed with improved state handling. This issue is fixed in macOS Sonoma 14… | 2025-11-04T03:30:28Z | 2025-11-04T15:31:32Z |
| ghsa-gh9m-4g47-fhpv | This issue was addressed with improved checks This issue is fixed in Safari 26.1, visionOS 26.1, wa… | 2025-11-04T03:30:28Z | 2025-11-04T18:31:52Z |
| ghsa-g56v-hwx4-cxqq | A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari… | 2025-11-04T03:30:28Z | 2025-11-04T15:31:33Z |
| ghsa-g2mg-7ch7-9vr3 | An access issue was addressed with additional sandbox restrictions. This issue is fixed in visionOS… | 2025-11-04T03:30:28Z | 2025-11-04T15:31:32Z |
| ghsa-fgch-fhp4-c3fg | A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macO… | 2025-11-04T03:30:28Z | 2025-11-04T18:31:52Z |
| ghsa-f355-f4c3-6hgx | This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14… | 2025-11-04T03:30:28Z | 2025-11-04T15:31:32Z |
| ghsa-c5r8-2x4w-9v34 | This issue was addressed by restricting options offered on a locked device. This issue is fixed in … | 2025-11-04T03:30:28Z | 2025-11-04T15:31:32Z |
| ghsa-9cx4-pc9m-fxvr | A permissions issue was addressed with additional restrictions. This issue is fixed in watchOS 26.1… | 2025-11-04T03:30:28Z | 2025-11-05T21:31:00Z |
| ghsa-8gf8-fqww-vr2c | A logging issue was addressed with improved data redaction. This issue is fixed in iOS 26.1 and iPa… | 2025-11-04T03:30:28Z | 2025-11-04T15:31:32Z |
| ghsa-7xjx-fwh6-g2vq | A privacy issue was addressed by removing sensitive data. This issue is fixed in iOS 26.1 and iPadO… | 2025-11-04T03:30:28Z | 2025-11-05T21:31:00Z |
| ghsa-7mgf-w3jg-xvr7 | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, visionOS… | 2025-11-04T03:30:28Z | 2025-11-05T21:31:00Z |
| ghsa-73f2-rmwh-r8w6 | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, visionOS… | 2025-11-04T03:30:28Z | 2025-11-05T21:30:59Z |
| ghsa-43xx-j7mw-696v | Multiple issues were addressed by disabling array allocation sinking. This issue is fixed in iOS 26… | 2025-11-04T03:30:28Z | 2025-11-04T15:31:32Z |
| ghsa-3x69-vfm2-92j8 | A use-after-free issue was addressed with improved memory management. This issue is fixed in watchO… | 2025-11-04T03:30:28Z | 2025-11-05T21:31:00Z |
| ghsa-3jx8-9w5m-fvm9 | A permissions issue was addressed with additional restrictions. This issue is fixed in watchOS 26.1… | 2025-11-04T03:30:28Z | 2025-11-04T18:31:52Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-11733 | Footnotes Made Easy <= 3.0.7 - Unauthenticated Stored … |
lumiblog |
Footnotes Made Easy |
2025-11-04T04:27:22.165Z | 2025-11-04T15:10:40.025Z | |
| cve-2025-12065 | WP Carticon <= 1.0.0 - Authenticated (Admin+) Stored C… |
carticon |
WP Carticon |
2025-11-04T04:27:21.798Z | 2025-11-04T15:10:58.084Z | |
| cve-2025-12371 | Nari Accountant <= 1.0.12 - Authenticated (Editor+) St… |
shakhi |
Nari Accountant |
2025-11-04T04:27:21.431Z | 2025-11-04T15:15:44.559Z | |
| cve-2025-12389 | Import Export For WooCommerce <= 1.6.2 - Missing Autho… |
sidngr |
Import Export For WooCommerce |
2025-11-04T04:27:21.061Z | 2025-11-04T15:20:23.287Z | |
| cve-2025-11704 | Elegance Menu <= 1.9 - Authenticated (Contributor+) Lo… |
impacttechlab |
Elegance Menu |
2025-11-04T04:27:20.117Z | 2025-11-04T15:51:56.144Z | |
| cve-2025-12402 | LinkedIn Resume <= 2.00 - Cross-Site Request Forgery t… |
bondnono |
LinkedIn Resume |
2025-11-04T04:27:19.651Z | 2025-11-04T15:52:16.797Z | |
| cve-2025-12415 | MapMap <= 1.1 - Cross-Site Request Forgery to Settings… |
sugiartha |
MapMap |
2025-11-04T04:27:19.056Z | 2025-11-04T15:53:00.650Z | |
| cve-2025-12156 | Ai Auto Tool Content Writing Assistant (Gemini Writer,… |
aitool |
Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One |
2025-11-04T04:27:18.698Z | 2025-11-04T16:08:38.677Z | |
| cve-2025-11724 | EM Beer Manager <= 3.2.3 - Authenticated (Subscriber+)… |
erinmorelli |
EM Beer Manager |
2025-11-04T04:27:18.321Z | 2025-11-04T16:32:44.217Z | |
| cve-2025-12456 | Centangle Team Showcase <= 1.0.0 - Cross-Site Request … |
centangle |
Centangle-Team |
2025-11-04T04:27:17.736Z | 2025-11-04T16:43:20.440Z | |
| cve-2025-12400 | LMB^Box Smileys <= 3.2 - Cross-Site Request Forgery to… |
lmbbox |
LMB^Box Smileys |
2025-11-04T04:27:17.374Z | 2025-11-04T16:47:13.869Z | |
| cve-2025-12369 | Extensions for Leaflet Map <= 4.7 - Authenticated (Con… |
hupe13 |
Extensions for Leaflet Map |
2025-11-04T04:27:17.014Z | 2025-11-04T16:47:34.277Z | |
| cve-2025-11890 | Crypto Payment Gateway with Payeer for WooCommerce <= … |
beycanpress |
Crypto Payment Gateway with Payeer for WooCommerce |
2025-11-04T04:27:16.569Z | 2025-11-04T16:47:59.207Z | |
| cve-2025-12157 | Simple User Capabilities <= 1.0 - Missing Authorizatio… |
tanvirahmed1984 |
Simple User Capabilities |
2025-11-04T04:27:16.185Z | 2025-11-04T17:16:00.320Z | |
| cve-2025-12410 | SH Contextual Help <= 3.2.1 - Cross-Site Request Forge… |
samhoamt |
SH Contextual Help |
2025-11-04T04:27:15.805Z | 2025-11-04T21:01:21.541Z | |
| cve-2025-11758 | All in One Time Clock Lite – Tracking Employee Time Ha… |
codebangers |
All in One Time Clock Lite – Tracking Employee Time Has Never Been Easier |
2025-11-04T04:27:15.403Z | 2025-11-04T21:00:48.168Z | |
| cve-2025-12413 | Social Media WPCF7 Stop Words <= 1.1.3 - Cross-Site Re… |
socialmedialtd |
WPCF7 Stop words |
2025-11-04T04:27:14.981Z | 2025-11-04T21:00:10.133Z | |
| cve-2025-12350 | DominoKit <= 1.1.0 - Missing Authorization to Unauthen… |
domiinodev |
DominoKit |
2025-11-04T04:27:14.553Z | 2025-11-04T20:59:31.623Z | |
| cve-2025-12393 | Free Quotation <= 3.1.6 - Authenticated (Admin+) Store… |
kris_iv |
Free Quotation |
2025-11-04T04:27:14.125Z | 2025-11-04T20:58:53.990Z | |
| cve-2025-12416 | Pagerank Tools <= 1.1.5 - Cross-Site Request Forgery t… |
mahype |
Pagerank tools |
2025-11-04T04:27:13.744Z | 2025-11-04T20:56:39.593Z | |
| cve-2025-10896 | Multiple Plugins <= Multiple Versions - Missing Author… |
litonice13 |
Master Blocks – Ultimate Gutenberg Blocks for Marketers |
2025-11-04T04:27:13.331Z | 2025-11-04T20:55:54.279Z | |
| cve-2025-12412 | Top Bar Notification <= 1.12 - Cross-Site Request Forg… |
josereyev |
Top Bar Notification |
2025-11-04T04:27:12.930Z | 2025-11-04T20:53:26.807Z | |
| cve-2025-12188 | Posts Navigation Links for Sections and Headings - Fre… |
wpmasterscom |
Posts Navigation Links for Sections and Headings – Free by WP Masters |
2025-11-04T04:27:12.323Z | 2025-11-04T20:52:13.667Z | |
| cve-2025-12683 | 5.8 (v4.0) | NULL DACL assigned to Named Pipe communicating with SY… |
Voidtools |
Everything |
2025-11-04T04:23:02.884Z | 2025-11-04T20:50:21.977Z |
| cve-2025-12069 | WP Global Screen Options <= 0.2 - Cross-Site Request F… |
stiand |
WP Global Screen Options |
2025-11-04T03:26:47.094Z | 2025-11-04T18:48:00.111Z | |
| cve-2025-11008 | CE21 Suite <= 2.3.1 - Unauthenticated Sensitive Inform… |
ce21com |
CE21 Suite |
2025-11-04T03:26:46.726Z | 2025-11-04T18:48:23.226Z | |
| cve-2025-12401 | Label Plugins <= 0.5 - Cross-Site Request Forgery to S… |
theode |
Label Plugins |
2025-11-04T03:26:46.350Z | 2025-11-04T18:48:46.590Z | |
| cve-2025-11007 | CE21 Suite 2.2.1 - 2.3.1 - Missing Authorization to Un… |
ce21com |
CE21 Suite |
2025-11-04T03:26:45.901Z | 2025-11-04T18:49:41.405Z | |
| cve-2025-12070 | ViaAds <= 2.1.1 - Cross-Site Request Forgery to API Ke… |
viaads |
ViaAds |
2025-11-04T03:26:45.215Z | 2025-11-04T18:50:13.151Z | |
| cve-2025-47370 | 6.5 (v3.1) | Reachable Assertion in BT Controller |
Qualcomm, Inc. |
Snapdragon |
2025-11-04T03:19:26.256Z | 2025-11-04T19:00:52.629Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-41338 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:16:37.282Z | 2025-11-04T16:34:56.240Z |
| cve-2025-41337 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:16:20.518Z | 2025-11-04T16:59:06.244Z |
| cve-2025-41336 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:16:02.887Z | 2025-11-04T17:05:55.761Z |
| cve-2025-41335 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:15:43.266Z | 2025-11-04T18:27:43.720Z |
| cve-2025-12695 | 5.9 (v3.1) | Insecure configuration in DSPy lead to arbitrary file … |
|
|
2025-11-04T13:24:42.358Z | 2025-11-04T14:19:33.945Z |
| cve-2025-12682 | Easy Upload Files During Checkout <= 2.9.8 - Unauthent… |
fahadmahmood |
Easy Upload Files During Checkout |
2025-11-04T13:47:35.380Z | 2025-11-04T14:16:38.630Z | |
| cve-2025-41114 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:10:31.829Z | 2025-11-04T18:32:18.961Z |
| cve-2025-41113 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:10:12.086Z | 2025-11-04T18:51:57.285Z |
| cve-2025-41112 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:09:53.897Z | 2025-11-04T14:18:59.923Z |
| cve-2025-41111 | 8.7 (v4.0) | Missing Authorization vulnerability in CanalDenuncia.app |
CanalDenuncia |
CanalDenuncia.app |
2025-11-04T13:08:40.472Z | 2025-11-04T14:19:54.307Z |
| cve-2025-12493 | ShopLentor <= 3.2.5 - Unauthenticated Local PHP File I… |
devitemsllc |
ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution (formerly WooLentor) |
2025-11-04T11:19:27.403Z | 2025-11-04T20:13:56.143Z | |
| cve-2025-12045 | Orbit Fox Companion <= 3.0.2 - Authenticated (Author+)… |
themeisle |
Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More |
2025-11-04T11:19:27.966Z | 2025-11-04T18:53:30.602Z | |
| cve-2025-11690 | 8.5 (v3.1) | IDOR vulnerability in the CFMOTO RIDE API |
CFMOTO |
RIDE |
2025-11-04T10:25:45.416Z | 2025-11-10T18:24:47.168Z |
| cve-2025-20749 | N/A | In charger, there is a possible out of bounds wri… |
MediaTek, Inc. |
MT6789, MT6835, MT6855, MT6878, MT6879, MT6886, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991, MT8169, MT8188, MT8195, MT8196, MT8781, MT8796 |
2025-11-04T06:20:51.979Z | 2025-11-05T04:55:28.632Z |
| cve-2025-20748 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:20:23.128Z | 2025-11-05T04:55:29.380Z |
| cve-2025-20747 | N/A | In gnss service, there is a possible out of bound… |
MediaTek, Inc. |
MT2718, MT2737, MT6835, MT6878, MT6886, MT6897, MT6899, MT6982, MT6985, MT6986, MT6986D, MT6989, MT6990, MT6991, MT8676, MT8678, MT8755, MT8893 |
2025-11-04T06:20:19.607Z | 2025-11-05T04:55:31.133Z |
| cve-2025-20746 | N/A | In gnss service, there is a possible out of bound… |
MediaTek, Inc. |
MT2718, MT2737, MT6835, MT6878, MT6886, MT6897, MT6899, MT6982, MT6985, MT6986, MT6986D, MT6989, MT6990, MT6991, MT8676, MT8678, MT8755, MT8893 |
2025-11-04T06:20:17.860Z | 2025-11-05T04:55:32.792Z |
| cve-2025-20745 | N/A | In apusys, there is a possible memory corruption … |
MediaTek, Inc. |
MT2718, MT6989, MT6991, MT8370, MT8390, MT8395, MT8676, MT8678, MT87920 |
2025-11-04T06:20:03.095Z | 2025-11-05T04:55:47.647Z |
| cve-2025-20744 | N/A | In pda, there is a possible escalation of privile… |
MediaTek, Inc. |
MT6899, MT6991, MT8793 |
2025-11-04T06:19:59.710Z | 2025-11-05T04:55:45.818Z |
| cve-2025-20743 | N/A | In clkdbg, there is a possible escalation of priv… |
MediaTek, Inc. |
MT2718, MT6761, MT6765, MT6768, MT6781, MT6853, MT6877, MT6886, MT6893, MT6897, MT6899, MT6983, MT6989, MT6991, MT8113, MT8163, MT8168, MT8169, MT8183, MT8186, MT8188, MT8195, MT8196, MT8321, MT8365, MT8385, MT8390, MT8391, MT8512, MT8516, MT8519, MT8676, MT8678, MT8695, MT8696, MT8698, MT8755, MT8766, MT8768, MT8771, MT8775, MT8781, MT8786, MT8788E, MT8791T, MT8792, MT8793, MT8796, MT8797, MT8798, MT8873, MT8883, MT8893 |
2025-11-04T06:19:57.990Z | 2025-11-05T04:55:44.828Z |
| cve-2025-20742 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7603, MT7615, MT7622, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:19:56.287Z | 2025-11-05T04:55:43.910Z |
| cve-2025-20741 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:20:21.366Z | 2025-11-05T04:55:30.330Z |
| cve-2025-20740 | N/A | In wlan STA driver, there is a possible out of bo… |
MediaTek, Inc. |
MT7902, MT7920, MT7921, MT7922, MT7925, MT7927 |
2025-11-04T06:19:54.584Z | 2025-11-04T15:04:25.506Z |
| cve-2025-20739 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:20:16.025Z | 2025-11-05T04:55:33.598Z |
| cve-2025-20738 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:20:14.296Z | 2025-11-05T04:55:34.374Z |
| cve-2025-20737 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:19:52.883Z | 2025-11-05T04:55:42.993Z |
| cve-2025-20736 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:20:12.530Z | 2025-11-05T04:55:35.164Z |
| cve-2025-20735 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:19:50.999Z | 2025-11-05T04:55:42.073Z |
| cve-2025-20734 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:20:10.764Z | 2025-11-05T04:55:51.084Z |
| cve-2025-20733 | N/A | In wlan AP driver, there is a possible out of bou… |
MediaTek, Inc. |
MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 |
2025-11-04T06:19:49.117Z | 2025-11-05T04:55:41.224Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-184089 | Malicious code in mlokok-lfki-hakubi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184088 | Malicious code in mlokok-lfki-ahbi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184087 | Malicious code in mlokok-lfki-afuhiugabanagi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184086 | Malicious code in mlokok-lfki-afuhiugababanagi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184085 | Malicious code in mlokok-lfki-afuhigbanagi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184084 | Malicious code in mlokok-lfki-afhigbanagi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184083 | Malicious code in mlokok-lfki-afhgbgi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184082 | Malicious code in mlokok-lfki-afhgbagi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184081 | Malicious code in mlokok-lfki-afhgbaagi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184080 | Malicious code in mlokok-lfki-afhbi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184079 | Malicious code in mlok-ofe-a (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184078 | Malicious code in mitouko-onti-laok (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184077 | Malicious code in mitouko-ontcmi-laok (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184076 | Malicious code in mitouko-ontcami-lamokoinabia (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184075 | Malicious code in mitouko-ontcami-lamokinia (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184074 | Malicious code in mitouko-ontcami-lamokinbia (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184073 | Malicious code in mitouko-ontcami-lamokiia (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184072 | Malicious code in mitouko-ontcami-lamoka (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184071 | Malicious code in mitouko-ontcami-lamok (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184070 | Malicious code in mitouko-oni-laok (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184069 | Malicious code in mitouko-on-lakok (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184068 | Malicious code in mitouko-on-lakoikk (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184067 | Malicious code in mitouko-on-lakoikaunoak (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184066 | Malicious code in mitouko-on-lakoikaunoaak (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184065 | Malicious code in mitouko-on-lakoikaunak (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184064 | Malicious code in mitouko-on-lakoikauk (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184063 | Malicious code in mitouko-on-lakoikauak (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184062 | Malicious code in mitouko-on-lakoikak (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184061 | Malicious code in mitouko-on-lakoik (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-184060 | Malicious code in mitook-oni-oldis (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:10271 | Red Hat Security Advisory: OpenShift Container Platform 4.12.78 packages and security update | 2025-07-10T01:56:40+00:00 | 2025-11-11T20:38:44+00:00 |
| rhsa-2025:10270 | Red Hat Security Advisory: OpenShift Container Platform 4.12.78 bug fix and security update | 2025-07-10T01:34:18+00:00 | 2025-10-21T04:17:34+00:00 |
| rhsa-2025:10738 | Red Hat Security Advisory: Kiali 2.4.7 for Red Hat OpenShift Service Mesh 3.0 | 2025-07-09T15:20:25+00:00 | 2025-11-10T12:10:46+00:00 |
| rhsa-2025:10735 | Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.1 release | 2025-07-09T14:31:36+00:00 | 2025-11-11T16:22:43+00:00 |
| rhsa-2025:10707 | Red Hat Security Advisory: sudo security update | 2025-07-09T13:08:53+00:00 | 2025-11-06T23:14:16+00:00 |
| rhsa-2025:10701 | Red Hat Security Advisory: kernel security update | 2025-07-09T12:22:33+00:00 | 2025-11-11T11:27:09+00:00 |
| rhsa-2025:10699 | Red Hat Security Advisory: libxml2 security update | 2025-07-09T12:18:48+00:00 | 2025-11-07T18:40:11+00:00 |
| rhsa-2025:10698 | Red Hat Security Advisory: libxml2 security update | 2025-07-09T12:04:08+00:00 | 2025-11-07T18:40:10+00:00 |
| rhsa-2025:10295 | Red Hat Security Advisory: OpenShift Container Platform 4.17.35 packages and security update | 2025-07-09T04:18:32+00:00 | 2025-11-11T20:38:45+00:00 |
| rhsa-2025:10294 | Red Hat Security Advisory: OpenShift Container Platform 4.17.35 bug fix and security update | 2025-07-09T04:04:14+00:00 | 2025-11-11T20:38:44+00:00 |
| rhsa-2025:10673 | Red Hat Security Advisory: kernel security update | 2025-07-09T00:58:51+00:00 | 2025-11-11T11:27:10+00:00 |
| rhsa-2025:10672 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2025-07-09T00:58:21+00:00 | 2025-11-07T16:34:30+00:00 |
| rhsa-2025:10676 | Red Hat Security Advisory: golang security update | 2025-07-09T00:58:06+00:00 | 2025-11-11T16:24:36+00:00 |
| rhsa-2025:10677 | Red Hat Security Advisory: golang security update | 2025-07-09T00:55:31+00:00 | 2025-11-11T16:24:37+00:00 |
| rhsa-2025:10671 | Red Hat Security Advisory: kernel security update | 2025-07-09T00:50:20+00:00 | 2025-11-11T11:27:09+00:00 |
| rhsa-2025:10669 | Red Hat Security Advisory: kernel security update | 2025-07-09T00:36:21+00:00 | 2025-11-11T11:27:07+00:00 |
| rhsa-2025:10675 | Red Hat Security Advisory: kernel-rt security update | 2025-07-09T00:29:11+00:00 | 2025-11-11T11:27:09+00:00 |
| rhsa-2025:10670 | Red Hat Security Advisory: kernel-rt security update | 2025-07-09T00:24:26+00:00 | 2025-11-11T11:27:07+00:00 |
| rhsa-2025:10291 | Red Hat Security Advisory: OpenShift Container Platform 4.19.3 packages and security update | 2025-07-08T23:17:01+00:00 | 2025-11-11T20:38:44+00:00 |
| rhsa-2025:10630 | Red Hat Security Advisory: libxml2 security update | 2025-07-08T21:17:21+00:00 | 2025-11-07T18:40:07+00:00 |
| rhsa-2025:10668 | Red Hat Security Advisory: podman security update | 2025-07-08T20:24:01+00:00 | 2025-11-10T13:52:37+00:00 |
| rhsa-2025:10646 | Red Hat Security Advisory: socat security update | 2025-07-08T15:10:00+00:00 | 2025-11-11T12:54:41+00:00 |
| rhsa-2025:10618 | Red Hat Security Advisory: jq security update | 2025-07-08T12:44:44+00:00 | 2025-11-11T09:29:49+00:00 |
| rhsa-2025:10620 | Red Hat Security Advisory: jq security update | 2025-07-08T12:44:14+00:00 | 2025-11-11T09:29:51+00:00 |
| rhsa-2025:10622 | Red Hat Security Advisory: jq security update | 2025-07-08T12:35:49+00:00 | 2025-11-11T09:29:52+00:00 |
| rhsa-2025:10621 | Red Hat Security Advisory: jq security update | 2025-07-08T12:34:30+00:00 | 2025-11-11T09:29:52+00:00 |
| rhsa-2025:10619 | Red Hat Security Advisory: jq security update | 2025-07-08T12:33:34+00:00 | 2025-11-11T09:29:49+00:00 |
| rhsa-2025:10615 | Red Hat Security Advisory: jq security update | 2025-07-08T12:32:49+00:00 | 2025-11-11T09:29:47+00:00 |
| rhsa-2025:10616 | Red Hat Security Advisory: jq security update | 2025-07-08T12:30:14+00:00 | 2025-11-11T09:29:49+00:00 |
| rhsa-2025:10613 | Red Hat Security Advisory: jq security update | 2025-07-08T12:30:13+00:00 | 2025-11-11T09:29:47+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-37844 | cifs: avoid NULL pointer dereference in dbg call | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37842 | spi: fsl-qspi: use devm function instead of driver remove | 2025-05-02T00:00:00.000Z | 2025-09-04T05:46:32.000Z |
| msrc_cve-2025-37841 | pm: cpupower: bench: Prevent NULL dereference on malloc failure | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37840 | mtd: rawnand: brcmnand: fix PM resume warning | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37839 | jbd2: remove wrong sb->s_sequence check | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37836 | PCI: Fix reference leak in pci_register_host_bridge() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37834 | mm/vmscan: don't try to reclaim hwpoison folio | 2025-05-02T00:00:00.000Z | 2025-09-03T22:45:25.000Z |
| msrc_cve-2025-37833 | net/niu: Niu requires MSIX ENTRY_DATA fields touch before entry reads | 2025-05-02T00:00:00.000Z | 2025-09-04T02:27:01.000Z |
| msrc_cve-2025-37831 | cpufreq: apple-soc: Fix null-ptr-deref in apple_soc_cpufreq_get_rate() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37830 | cpufreq: scmi: Fix null-ptr-deref in scmi_cpufreq_get_rate() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37829 | cpufreq: scpi: Fix null-ptr-deref in scpi_cpufreq_get_rate() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37828 | scsi: ufs: mcq: Add NULL check in ufshcd_mcq_abort() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37826 | scsi: ufs: core: Add NULL check in ufshcd_mcq_compl_pending_transfer() | 2025-05-02T00:00:00.000Z | 2025-09-03T23:25:07.000Z |
| msrc_cve-2025-37824 | tipc: fix NULL pointer dereference in tipc_mon_reinit_self() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37823 | net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37822 | riscv: uprobes: Add missing fence.i after building the XOL buffer | 2025-05-02T00:00:00.000Z | 2025-09-04T01:43:52.000Z |
| msrc_cve-2025-37819 | irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37818 | LoongArch: Return NULL from huge_pte_offset() for invalid PMD | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37817 | mcb: fix a double free bug in chameleon_parse_gdd() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37812 | usb: cdns3: Fix deadlock when using NCM gadget | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37810 | usb: dwc3: gadget: check that event count does not exceed event buffer length | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37808 | crypto: null - Use spin lock instead of mutex | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37807 | bpf: Fix kmemleak warning for percpu hashmap | 2025-05-02T00:00:00.000Z | 2025-09-04T01:13:30.000Z |
| msrc_cve-2025-37806 | fs/ntfs3: Keep write operations atomic | 2025-05-02T00:00:00.000Z | 2025-09-04T00:57:46.000Z |
| msrc_cve-2025-37805 | sound/virtio: Fix cancel_sync warnings on uninitialized work_structs | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37803 | udmabuf: fix a buf size overflow issue during udmabuf creation | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37802 | ksmbd: fix WARNING "do not call blocking ops when !TASK_RUNNING" | 2025-05-02T00:00:00.000Z | 2025-09-03T22:03:53.000Z |
| msrc_cve-2025-37801 | spi: spi-imx: Add check for spi_imx_setupxfer() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37800 | driver core: fix potential NULL pointer dereference in dev_uevent() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-37798 | codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog() | 2025-05-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2017-010584 | AssetView and AssetView PLATINUM contain multiple vulnerabilities | 2018-01-12T15:32+09:00 | 2018-01-12T15:32+09:00 |
| jvndb-2017-010236 | Cross-site Scripting Vulnerability in Fujitsu NetCOBOL | 2018-01-12T15:07+09:00 | 2018-01-12T15:07+09:00 |
| jvndb-2017-004687 | Cross-site Scripting Vulnerability in Fujitsu Interstage List Works | 2018-01-12T14:58+09:00 | 2018-01-12T14:58+09:00 |
| jvndb-2018-000001 | Lhaplus vulnerable to improper verification when expanding ZIP64 archives | 2018-01-11T14:18+09:00 | 2018-04-04T12:33+09:00 |
| jvndb-2017-000252 | MQTT.js issue in handling PUBLISH packets | 2017-12-25T14:00+09:00 | 2018-04-04T14:02+09:00 |
| jvndb-2017-000251 | The installer of Content Manager Assistant for PlayStation may insecurely load Dynamic Link Libraries | 2017-12-22T15:50+09:00 | 2018-04-04T14:04+09:00 |
| jvndb-2017-000250 | The installer of Music Center for PC may insecurely load Dynamic Link Libraries | 2017-12-22T15:50+09:00 | 2018-04-04T13:53+09:00 |
| jvndb-2017-000248 | OneThird CMS vulnerable to directory traversal | 2017-12-19T13:48+09:00 | 2018-04-04T13:58+09:00 |
| jvndb-2017-000249 | Multiple vulnerabilities in H2O | 2017-12-18T15:17+09:00 | 2018-04-04T13:49+09:00 |
| jvndb-2017-010280 | Fluentd vulenrable to escape sequence injection | 2017-12-11T14:13+09:00 | 2017-12-11T14:13+09:00 |
| jvndb-2017-000247 | Qt for Android environment variables alteration | 2017-12-11T13:40+09:00 | 2018-03-14T13:44+09:00 |
| jvndb-2017-000246 | Qt for Android vulnerable to OS command injection | 2017-12-11T13:40+09:00 | 2018-03-14T13:48+09:00 |
| jvndb-2017-010275 | Cross-site Scripting Vulnerability in JP1/Service Support and JP1/Integrated Management - Service Support | 2017-12-11T11:46+09:00 | 2017-12-20T11:09+09:00 |
| jvndb-2017-000245 | The installer of The Public Certification Service for Individuals "The JPKI user's software" may insecurely load Dynamic Link Libraries | 2017-12-06T14:42+09:00 | 2018-03-14T14:07+09:00 |
| jvndb-2017-000244 | Multiple vulnerabilities in multiple Buffalo broadband routers | 2017-12-01T16:17+09:00 | 2018-03-14T14:15+09:00 |
| jvndb-2017-010043 | Cross-site Scripting Vulnerability in JP1/Operations Analytics | 2017-12-01T14:59+09:00 | 2017-12-20T11:09+09:00 |
| jvndb-2017-000243 | Movable Type plugin A-Member and A-Reserve vulnerable to SQL injection | 2017-11-30T15:50+09:00 | 2018-03-14T14:20+09:00 |
| jvndb-2017-000241 | Multiple vulnerabilities in Wireless mobile storage "Digizo ShAirDisk" PTW-WMS1 | 2017-11-30T15:45+09:00 | 2018-03-14T14:13+09:00 |
| jvndb-2017-000242 | StreamRelay.net.exe and sDNSProxy.exe vulnerable to denial-of-service (DoS) | 2017-11-29T14:54+09:00 | 2018-03-14T14:26+09:00 |
| jvndb-2017-009884 | QND Advance/Standard vulnerable to directory traversal | 2017-11-28T11:26+09:00 | 2018-03-14T14:17+09:00 |
| jvndb-2017-000240 | PWR-Q200 vulnerable to DNS cache poisoning attacks | 2017-11-22T13:51+09:00 | 2018-03-14T14:19+09:00 |
| jvndb-2017-000239 | The installer of Media Go and Music Center for PC may insecurely load Dynamic Link Libraries | 2017-11-21T15:40+09:00 | 2018-03-14T14:25+09:00 |
| jvndb-2017-000238 | Robotic appliance COCOROBO vulnerable to session management | 2017-11-16T14:03+09:00 | 2018-03-14T14:09+09:00 |
| jvndb-2017-000237 | Multiple vulnerabilities in BOOK WALKER for Windows/Mac | 2017-11-14T15:19+09:00 | 2018-03-07T13:36+09:00 |
| jvndb-2017-000236 | WordPress plugin "TablePress" vulnerable to improper restriction of XML external entity (XXE) references | 2017-11-14T13:26+09:00 | 2018-03-07T13:36+09:00 |
| jvndb-2017-000235 | CS-Cart Japanese Edition vulnerable to cross-site scripting | 2017-11-13T15:30+09:00 | 2018-03-07T13:36+09:00 |
| jvndb-2017-000234 | Installer of HYPER SBI may insecurely load Dynamic Link Libraries | 2017-11-09T12:29+09:00 | 2018-03-07T14:01+09:00 |
| jvndb-2017-000233 | I-O DATA LAN DISK Connect vulnerable to denial-of-service (DoS) | 2017-11-06T13:48+09:00 | 2018-03-07T14:01+09:00 |
| jvndb-2017-000232 | Wi-Fi STATION L-02F vulnerable to buffer overflow | 2017-11-06T13:48+09:00 | 2018-03-07T14:00+09:00 |
| jvndb-2017-000213 | Installer of "Flets Easy Setup Tool" may insecurely load Dynamic Link Libraries | 2017-11-02T13:57+09:00 | 2018-03-14T13:48+09:00 |
| ID | Description | Updated |
|---|