Recent vulnerabilities

ID	Description	Published	Updated
ghsa-82m7-4386-5w76	Missing Authorization vulnerability in Liton Arefin WP Adminify adminify allows Exploiting Incorrec…	2025-12-24T15:30:43Z	2025-12-24T21:30:29Z
ghsa-7pxg-x55c-fqhx	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:42Z	2025-12-24T21:30:29Z
ghsa-7jg2-vv9f-v97j	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T15:30:42Z	2025-12-24T21:30:29Z
ghsa-6r9j-fpr7-g9xg	Cross-Site Request Forgery (CSRF) vulnerability in Constantin Boiangiu Vimeotheque codeflavors-vime…	2025-12-24T15:30:42Z	2025-12-24T21:30:29Z
ghsa-6mmw-6jqx-8w6x	Missing Authorization vulnerability in Liton Arefin WP Adminify adminify allows Exploiting Incorrec…	2025-12-24T15:30:43Z	2025-12-24T21:30:29Z
ghsa-4m75-r4ww-r99j	Missing Authorization vulnerability in Assaf Parag Poll, Survey & Quiz Maker Plugin by Opinion Stag…	2025-12-24T15:30:43Z	2025-12-24T21:30:29Z
ghsa-48px-5fg3-2vf2	Missing Authorization vulnerability in integrationclaspo Popup Builder: Exit-Intent pop-up, Spin th…	2025-12-24T15:30:42Z	2025-12-24T21:30:29Z
ghsa-3x28-fcx7-q34v	Missing Authorization vulnerability in totalsoft TS Poll poll-wp allows Exploiting Incorrectly Conf…	2025-12-24T15:30:42Z	2025-12-24T21:30:29Z
ghsa-3m2g-5mf9-rw3q	Missing Authorization vulnerability in Funnelforms Funnelforms Free funnelforms-free allows Exploit…	2025-12-24T15:30:42Z	2025-12-24T21:30:29Z
ghsa-2xwp-gm9f-mwxv	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T15:30:41Z	2025-12-24T21:30:29Z
ghsa-2wpw-x29g-2vrh	Missing Authorization vulnerability in SALESmanago SALESmanago salesmanago allows Exploiting Incorr…	2025-12-24T15:30:42Z	2025-12-24T21:30:29Z
ghsa-xv82-mgrr-4j2f	Cross-Site Request Forgery (CSRF) vulnerability in Rhys Wynne WP Email Capture wp-email-capture all…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-wjc6-wvx5-m7qh	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-w35q-pgwq-v3gv	Server-Side Request Forgery (SSRF) vulnerability in 6Storage 6Storage Rentals 6storage-rentals allo…	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-vpjm-cvm6-jj7r	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-vj4q-8mxv-c22h	Cross-Site Request Forgery (CSRF) vulnerability in tmtraderunner Trade Runner traderunner allows Cr…	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-vh4j-wc5r-44xh	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-rrq9-36f5-3j9c	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-r7hp-q77m-rh5r	Missing Authorization vulnerability in Essekia Tablesome tablesome allows Exploiting Incorrectly Co…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-pj8w-2x73-5p4m	Cross-Site Request Forgery (CSRF) vulnerability in titopandub Evergreen Post Tweeter evergreen-post…	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-pcv5-fv37-7rhx	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-p7fv-95q4-w653	Missing Authorization vulnerability in Brave Brave brave-popup-builder allows Exploiting Incorrectl…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-p34g-x786-cwgg	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-mv9g-w4mm-wg49	Deserialization of Untrusted Data vulnerability in Icegram Icegram Express Pro email-subscribers-pr…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-m2qp-fr5w-c44v	Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart al…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-j5jw-33rr-98g2	Missing Authorization vulnerability in Spiffy Plugins Spiffy Calendar spiffy-calendar allows Exploi…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-hgfr-qrg4-p84c	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-g32g-pf52-5jf2	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-fjwm-xwvf-3crm	Missing Authorization vulnerability in Jegstudio Gutenverse Form gutenverse-form allows Exploiting …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-f49c-c866-mjcw	Server-Side Request Forgery (SSRF) vulnerability in bdthemes Prime Slider – Addons For Elementor bd…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2023-28619	4.3 (v3.1)	WordPress Resoto theme <= 1.0.8 - Broken Access Contro…	bnayawpguy	Resoto	2025-12-24T12:43:50.413Z	2025-12-24T19:32:45.265Z
cve-2023-32120	5.9 (v3.1)	WordPress Hostel plugin <= 1.1.5.1 - Cross Site Script…	Bob	Hostel	2025-12-24T12:45:48.073Z	2025-12-24T19:32:39.074Z
cve-2023-36525	8.6 (v3.1)	WordPress WPJobBoard plugin <= 5.9.0 - Unauth. Blind S…	WPJobBoard	WPJobBoard	2025-12-24T12:49:35.813Z	2025-12-24T19:32:33.083Z
cve-2023-40679	6.5 (v3.1)	WordPress Master Elementor Addons plugin <= 2.0.5.3 - …	Jewel Theme	Master Addons for Elementor	2025-12-24T12:51:55.976Z	2025-12-24T19:32:27.404Z
cve-2025-67621	N/A	WordPress Eight Day Week Print Workflow plugin <= 1.2.…	10up	Eight Day Week Print Workflow	2025-12-24T13:10:20.740Z	2025-12-24T19:32:21.672Z
cve-2025-67622	N/A	WordPress Evergreen Post Tweeter plugin <= 1.8.9 - Cro…	titopandub	Evergreen Post Tweeter	2025-12-24T13:10:21.161Z	2025-12-24T19:32:16.023Z
cve-2025-67623	N/A	WordPress 6Storage Rentals plugin <= 2.19.9 - Server S…	6Storage	6Storage Rentals	2025-12-24T13:10:22.188Z	2025-12-24T19:32:10.048Z
cve-2025-67625	N/A	WordPress Trade Runner plugin <= 3.14 - Cross Site Req…	tmtraderunner	Trade Runner	2025-12-24T13:10:22.548Z	2025-12-24T19:32:03.934Z
cve-2025-67627	N/A	WordPress Draft Notify plugin <= 1.5 - Cross Site Scri…	TouchOfTech	Draft Notify	2025-12-24T13:10:22.835Z	2025-12-24T19:31:57.185Z
cve-2025-67628	N/A	WordPress Review Disclaimer plugin <= 2.0.3 - Cross Si…	AMP-MODE	Review Disclaimer	2025-12-24T13:10:23.116Z	2025-12-24T19:31:51.235Z
cve-2025-67629	N/A	WordPress Basticom Framework plugin <= 1.5.2 - Cross S…	Basticom	Basticom Framework	2025-12-24T13:10:23.380Z	2025-12-24T19:31:45.343Z
cve-2025-67630	N/A	WordPress WH Tweaks plugin <= 1.0.2 - Cross Site Scrip…	webheadcoder	WH Tweaks	2025-12-24T13:10:23.685Z	2025-12-24T19:31:39.355Z
cve-2025-67631	N/A	WordPress Gift Hunt plugin <= 2.0.2 - Cross Site Scrip…	Ecommerce Platforms	Gift Hunt	2025-12-24T13:10:23.974Z	2025-12-24T19:31:33.338Z
cve-2025-67632	N/A	WordPress Google AdSense for Responsive Design – GARD …	The Plugin Factory	Google AdSense for Responsive Design – GARD	2025-12-24T13:10:24.256Z	2025-12-24T19:31:27.649Z
cve-2025-67633	N/A	WordPress Greenhouse Job Board plugin <= 2.7.3 - Cross…	brownbagmarketing	Greenhouse Job Board	2025-12-24T13:10:24.524Z	2025-12-24T19:31:21.916Z
cve-2025-67909	N/A	WordPress Membership For WooCommerce plugin <= 3.0.3 -…	WP Swings	Membership For WooCommerce	2025-12-24T13:10:24.788Z	2025-12-24T19:31:16.024Z
cve-2025-68038	N/A	WordPress Icegram Express Pro plugin <= 5.9.11 - PHP O…	Icegram	Icegram Express Pro	2025-12-24T13:10:25.043Z	2025-12-24T19:31:09.858Z
cve-2025-68506	N/A	WordPress Docket Cache plugin <= 24.07.03 - Local File…	Nawawi Jamili	Docket Cache	2025-12-24T13:10:26.727Z	2025-12-24T19:31:03.840Z
cve-2025-68565	N/A	WordPress Twitch Player plugin <= 2.1.3 - Broken Acces…	JayBee	Twitch Player	2025-12-24T13:10:35.534Z	2025-12-24T19:30:57.378Z
cve-2025-68566	N/A	WordPress My auctions allegro plugin <= 3.6.32 - Cross…	wphocus	My auctions allegro	2025-12-24T13:10:35.820Z	2025-12-24T19:30:51.874Z
cve-2025-68567	N/A	WordPress My auctions allegro plugin <= 3.6.32 - Cross…	wphocus	My auctions allegro	2025-12-24T13:10:36.094Z	2025-12-24T19:30:46.741Z
cve-2025-68568	N/A	WordPress Popup Builder: Exit-Intent pop-up, Spin the …	integrationclaspo	Popup Builder: Exit-Intent pop-up, Spin the Wheel, Newsletter signup, Email Capture & Lead Generation forms maker	2025-12-24T13:10:36.357Z	2025-12-24T19:30:40.727Z
cve-2025-68569	N/A	WordPress WP Time Slots Booking Form plugin <= 1.2.38 …	codepeople	WP Time Slots Booking Form	2025-12-24T13:10:36.669Z	2025-12-24T19:30:34.949Z
cve-2025-68570	N/A	WordPress Captivate Sync plugin <= 3.2.2 - SQL Injecti…	captivateaudio	Captivate Sync	2025-12-24T13:10:36.970Z	2025-12-24T19:30:29.515Z
cve-2025-68571	N/A	WordPress SALESmanago plugin <= 3.9.0 - Broken Access …	SALESmanago	SALESmanago	2025-12-24T13:10:37.254Z	2025-12-24T19:30:24.422Z
cve-2025-68572	N/A	WordPress BBP Core plugin <= 1.4.1 - Broken Access Con…	Spider Themes	BBP Core	2025-12-24T13:10:37.515Z	2025-12-24T19:30:18.794Z
cve-2025-68573	N/A	WordPress Simple Keyword to Link plugin <= 1.5 - Cross…	Alessandro Piconi	Simple Keyword to Link	2025-12-24T13:10:37.793Z	2025-12-24T19:30:12.847Z
cve-2025-68574	N/A	WordPress WPBakery Visual Composer WHMCS Elements plug…	voidcoders	WPBakery Visual Composer WHMCS Elements	2025-12-24T13:10:38.100Z	2025-12-24T19:30:04.744Z
cve-2025-68575	N/A	WordPress Wappointment plugin <=2.7.2 - Broken Access …	Wappointment team	Wappointment	2025-12-24T13:10:38.366Z	2025-12-24T19:29:56.848Z
cve-2025-68576	N/A	WordPress Virusdie plugin <= 1.1.6 - Sensitive Data Ex…	Virusdie	Virusdie	2025-12-24T13:10:38.690Z	2025-12-24T19:29:50.810Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-68567	N/A	WordPress My auctions allegro plugin <= 3.6.32 - Cross…	wphocus	My auctions allegro	2025-12-24T13:10:36.094Z	2025-12-24T19:30:46.741Z
cve-2025-68566	N/A	WordPress My auctions allegro plugin <= 3.6.32 - Cross…	wphocus	My auctions allegro	2025-12-24T13:10:35.820Z	2025-12-24T19:30:51.874Z
cve-2025-68565	N/A	WordPress Twitch Player plugin <= 2.1.3 - Broken Acces…	JayBee	Twitch Player	2025-12-24T13:10:35.534Z	2025-12-24T19:30:57.378Z
cve-2025-68563	N/A	WordPress Subscribe to Unlock Lite plugin <= 1.3.0 - L…	WP Shuffle	Subscribe to Unlock Lite	2025-12-24T12:31:30.996Z	2025-12-24T19:32:56.561Z
cve-2025-68540	N/A	WordPress Fana theme <= 1.1.35 - Local File Inclusion …	thembay	Fana	2025-12-24T12:31:27.748Z	2025-12-24T19:33:03.430Z
cve-2025-68537	N/A	WordPress Zota theme <= 1.3.14 - Local File Inclusion …	thembay	Zota	2025-12-24T12:31:27.277Z	2025-12-24T19:33:09.770Z
cve-2025-68535	N/A	WordPress Sunshine Photo Cart plugin <= 3.5.7.1 - Brok…	sunshinephotocart	Sunshine Photo Cart	2025-12-24T12:31:27.019Z	2025-12-24T19:33:16.139Z
cve-2025-68533	N/A	WordPress WC Builder plugin <= 1.2.0 - Cross Site Scri…	HasThemes	WC Builder	2025-12-24T12:31:26.717Z	2025-12-24T19:33:21.875Z
cve-2025-68532	N/A	WordPress ModelTheme Addons for WPBakery and Elementor…	modeltheme	ModelTheme Addons for WPBakery and Elementor	2025-12-24T12:31:26.464Z	2025-12-24T19:33:27.734Z
cve-2025-68530	N/A	WordPress Bookory theme <= 2.2.7 - Local File Inclusio…	pavothemes	Bookory	2025-12-24T12:31:26.200Z	2025-12-24T19:33:33.446Z
cve-2025-68529	N/A	WordPress WP Email Capture plugin <= 3.12.5 - Cross Si…	Rhys Wynne	WP Email Capture	2025-12-24T12:31:25.832Z	2025-12-24T19:33:39.814Z
cve-2025-68528	N/A	WordPress Free Shipping Bar: Amount Left for Free Ship…	WPFactory	Free Shipping Bar: Amount Left for Free Shipping for WooCommerce	2025-12-24T12:31:25.572Z	2025-12-24T19:33:45.822Z
cve-2025-68527	N/A	WordPress Academy LMS plugin <= 3.4.0 - Cross Site Scr…	Kodezen LLC	Academy LMS	2025-12-24T12:31:25.030Z	2025-12-24T19:33:51.387Z
cve-2025-68525	N/A	WordPress Category Icon plugin <= 1.0.2 - Cross Site S…	pixelgrade	Category Icon	2025-12-24T12:31:24.777Z	2025-12-24T19:33:57.712Z
cve-2025-68523	N/A	WordPress Spiffy Calendar plugin <= 5.0.7 - Broken Acc…	Spiffy Plugins	Spiffy Calendar	2025-12-24T12:31:24.167Z	2025-12-24T19:34:04.466Z
cve-2025-68522	N/A	WordPress WpStream plugin <= 4.9.5 - Broken Access Con…	wpstream	WpStream	2025-12-24T12:31:23.576Z	2025-12-24T19:34:11.231Z
cve-2025-68521	N/A	WordPress WpStream plugin <= 4.9.5 - Broken Access Con…	wpstream	WpStream	2025-12-24T12:31:23.159Z	2025-12-24T19:34:17.589Z
cve-2025-68519	N/A	WordPress Brands for WooCommerce plugin <= 3.8.6.3 - S…	BeRocket	Brands for WooCommerce	2025-12-24T12:31:22.910Z	2025-12-24T19:34:23.198Z
cve-2025-68517	N/A	WordPress Tablesome plugin <= 1.1.35.1 - Broken Access…	Essekia	Tablesome	2025-12-24T12:31:22.624Z	2025-12-24T19:34:29.179Z
cve-2025-68516	N/A	WordPress Tablesome plugin <= 1.1.35.1 - Sensitive Dat…	Essekia	Tablesome	2025-12-24T12:31:22.368Z	2025-12-24T19:34:35.531Z
cve-2025-68513	N/A	WordPress Bold Timeline Lite plugin <= 1.2.7 - Cross S…	boldthemes	Bold Timeline Lite	2025-12-24T12:31:22.085Z	2025-12-24T19:34:41.584Z
cve-2025-68512	N/A	WordPress Real 3D FlipBook plugin <= 4.11.4 - Cross Si…	creativeinteractivemedia	Real 3D FlipBook	2025-12-24T12:31:21.792Z	2025-12-24T19:34:47.922Z
cve-2025-68511	N/A	WordPress Gutenverse Form plugin <= 2.3.1 - Broken Acc…	Jegstudio	Gutenverse Form	2025-12-24T12:31:21.523Z	2025-12-24T19:34:53.452Z
cve-2025-68509	N/A	WordPress User Submitted Posts plugin <= 20251121 - Op…	Jeff Starr	User Submitted Posts	2025-12-24T12:31:21.266Z	2025-12-24T19:34:59.356Z
cve-2025-68508	N/A	WordPress Brave plugin <= 0.8.3 - Broken Access Contro…	Brave	Brave	2025-12-24T12:31:20.967Z	2025-12-24T19:35:06.869Z
cve-2025-68506	N/A	WordPress Docket Cache plugin <= 24.07.03 - Local File…	Nawawi Jamili	Docket Cache	2025-12-24T13:10:26.727Z	2025-12-24T19:31:03.840Z
cve-2025-68505	N/A	WordPress H5P plugin <= 1.16.1 - Broken Access Control…	icc0rz	H5P	2025-12-24T12:31:20.714Z	2025-12-24T19:35:13.288Z
cve-2025-68500	N/A	WordPress Prime Slider – Addons For Elementor plugin <…	bdthemes	Prime Slider – Addons For Elementor	2025-12-24T12:31:20.426Z	2025-12-24T19:35:20.294Z
cve-2025-68497	N/A	WordPress Astra Widgets plugin <= 1.2.16 - Cross Site …	Brainstorm Force	Astra Widgets	2025-12-24T12:31:19.996Z	2025-12-24T19:35:27.005Z
cve-2025-68496	N/A	WordPress User Feedback plugin <= 1.10.1 - SQL Injecti…	Syed Balkhi	User Feedback	2025-12-24T12:31:19.688Z	2025-12-24T19:35:34.794Z

ID	Description	Published	Updated
fkie_cve-2025-68565	Missing Authorization vulnerability in JayBee Twitch Player ttv-easy-embed-player allows Exploiting…	2025-12-24T13:16:23.340	2025-12-24T20:16:01.817
fkie_cve-2025-68563	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:23.223	2025-12-24T20:16:01.657
fkie_cve-2025-68540	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:23.093	2025-12-24T20:16:01.497
fkie_cve-2025-68537	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:22.970	2025-12-24T20:16:01.340
fkie_cve-2025-68535	Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart al…	2025-12-24T13:16:22.850	2025-12-24T20:16:01.180
fkie_cve-2025-68533	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:22.727	2025-12-24T20:16:01.023
fkie_cve-2025-68532	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:22.603	2025-12-24T20:16:00.863
fkie_cve-2025-68530	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:22.480	2025-12-24T20:16:00.710
fkie_cve-2025-68529	Cross-Site Request Forgery (CSRF) vulnerability in Rhys Wynne WP Email Capture wp-email-capture all…	2025-12-24T13:16:22.357	2025-12-24T20:16:00.557
fkie_cve-2025-68528	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:22.233	2025-12-24T20:16:00.400
fkie_cve-2025-68527	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:22.117	2025-12-24T20:16:00.247
fkie_cve-2025-68525	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:21.997	2025-12-24T20:16:00.087
fkie_cve-2025-68523	Missing Authorization vulnerability in Spiffy Plugins Spiffy Calendar spiffy-calendar allows Exploi…	2025-12-24T13:16:21.877	2025-12-24T20:15:59.933
fkie_cve-2025-68522	Missing Authorization vulnerability in wpstream WpStream wpstream allows Exploiting Incorrectly Con…	2025-12-24T13:16:21.763	2025-12-24T20:15:59.777
fkie_cve-2025-68521	Missing Authorization vulnerability in wpstream WpStream wpstream allows Exploiting Incorrectly Con…	2025-12-24T13:16:21.637	2025-12-24T20:15:59.627
fkie_cve-2025-68519	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-24T13:16:21.517	2025-12-24T20:15:59.470
fkie_cve-2025-68517	Missing Authorization vulnerability in Essekia Tablesome tablesome allows Exploiting Incorrectly Co…	2025-12-24T13:16:21.393	2025-12-24T20:15:59.327
fkie_cve-2025-68516	Insertion of Sensitive Information Into Sent Data vulnerability in Essekia Tablesome tablesome allo…	2025-12-24T13:16:21.270	2025-12-24T20:15:59.170
fkie_cve-2025-68513	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:21.143	2025-12-24T20:15:59.017
fkie_cve-2025-68512	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:21.020	2025-12-24T20:15:58.860
fkie_cve-2025-68511	Missing Authorization vulnerability in Jegstudio Gutenverse Form gutenverse-form allows Exploiting …	2025-12-24T13:16:20.900	2025-12-24T20:15:58.713
fkie_cve-2025-68509	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Jeff Starr User Submitted Post…	2025-12-24T13:16:20.777	2025-12-24T20:15:58.557
fkie_cve-2025-68508	Missing Authorization vulnerability in Brave Brave brave-popup-builder allows Exploiting Incorrectl…	2025-12-24T13:16:20.650	2025-12-24T20:15:58.393
fkie_cve-2025-68506	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:20.527	2025-12-24T20:15:58.247
fkie_cve-2025-68505	Missing Authorization vulnerability in icc0rz H5P h5p allows Exploiting Incorrectly Configured Acce…	2025-12-24T13:16:20.400	2025-12-24T20:15:58.093
fkie_cve-2025-68500	Server-Side Request Forgery (SSRF) vulnerability in bdthemes Prime Slider – Addons For Elementor bd…	2025-12-24T13:16:20.283	2025-12-24T20:15:57.940
fkie_cve-2025-68497	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:20.160	2025-12-24T20:15:57.790
fkie_cve-2025-68496	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-24T13:16:20.043	2025-12-24T20:15:57.637
fkie_cve-2025-68494	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Leap13 …	2025-12-24T13:16:19.927	2025-12-24T20:15:57.487
fkie_cve-2025-68038	Deserialization of Untrusted Data vulnerability in Icegram Icegram Express Pro email-subscribers-pr…	2025-12-24T13:16:19.807	2025-12-24T20:15:57.323

ID	Description	Package	Published	Updated
pysec-2024-227	Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execu…	transformers	2024-11-22T22:15:06+00:00	2025-02-10T23:22:41.399021+00:00
pysec-2024-226	Pymatgen (Python Materials Genomics) is an open-source Python library for materials analy…	pymatgen	2024-02-21T17:15:09+00:00	2025-02-06T00:34:28.734730+00:00
pysec-2024-225	cryptography is a package designed to expose cryptographic primitives and recipes to Pyth…	cryptography	2024-02-21T17:15:09+00:00	2025-02-06T00:34:24.427679+00:00
pysec-2024-224	Excessive directory permissions in MLflow leads to local privilege escalation when using …	mlflow	2024-11-25T14:15:06+00:00	2025-02-03T16:23:40.409646+00:00
pysec-2024-27	CrateDB 5.5.1 is contains an authentication bypass vulnerability in the Admin UI componen…	crate	2024-01-30T01:15:00Z	2025-01-30T22:47:57.847403Z
pysec-2019-242	Capstone 3.0.4 has an out-of-bounds vulnerability (SEGV caused by a read memory access) i…	capstone	2019-05-15T14:29:00Z	2025-01-28T17:34:08.578134Z
pysec-2025-2	uniapi version 1.0.7 introduces code that would execute on import of the module and downl…	uniapi		2025-01-24T19:56:53+00:00
pysec-2024-223	Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds …	onnx	2024-02-23T18:15:50+00:00	2025-01-22T16:23:22.060512+00:00
pysec-2024-222	Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Trav…	onnx	2024-02-23T18:15:50+00:00	2025-01-22T16:23:21.994731+00:00
pysec-2024-221	aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd i…	aiosmtpd	2024-03-12T21:15:58+00:00	2025-01-22T16:23:18.042465+00:00
pysec-2024-220	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:03+00:00	2025-01-19T22:22:23.972580+00:00
pysec-2024-219	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:03+00:00	2025-01-19T22:22:23.897787+00:00
pysec-2024-218	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:03+00:00	2025-01-19T22:22:23.803143+00:00
pysec-2024-217	Gradio is an open-source Python package designed for quick prototyping. This is a **data …	gradio	2024-10-10T23:15:02+00:00	2025-01-19T22:22:23.723816+00:00
pysec-2024-216	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:02+00:00	2025-01-19T22:22:23.549944+00:00
pysec-2024-215	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:11+00:00	2025-01-19T22:22:23.471780+00:00
pysec-2024-214	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:10+00:00	2025-01-19T22:22:23.399444+00:00
pysec-2024-213	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:10+00:00	2025-01-19T22:22:23.310301+00:00
pysec-2024-212	Apache Airflow versions before 2.10.1 have a vulnerability that allows DAG authors to add…	apache-airflow	2024-09-07T08:15:11+00:00	2025-01-19T22:22:22.289672+00:00
pysec-2024-211	Waitress is a Web Server Gateway Interface server for Python 2 and 3. When a remote clien…	waitress	2024-10-29T15:15:12+00:00	2025-01-19T19:19:01.852094+00:00
pysec-2024-210	Waitress is a Web Server Gateway Interface server for Python 2 and 3. A remote client may…	waitress	2024-10-29T15:15:11+00:00	2025-01-19T19:19:01.811922+00:00
pysec-2024-209	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:09+00:00	2025-01-19T19:19:01.689044+00:00
pysec-2024-208	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:08+00:00	2025-01-19T19:19:01.647736+00:00
pysec-2024-207	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:08+00:00	2025-01-19T19:19:01.605918+00:00
pysec-2024-206	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:08+00:00	2025-01-19T19:19:01.566553+00:00
pysec-2024-205	Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. When using …	vyper	2024-02-26T20:19:05+00:00	2025-01-19T19:19:01.519824+00:00
pysec-2024-204	TorchGeo Remote Code Execution Vulnerability	torchgeo	2024-11-12T18:15:45+00:00	2025-01-19T19:19:01.299352+00:00
pysec-2024-203	DuckDB is a SQL database management system. In versions 1.0.0 and prior, content in files…	duckdb	2024-07-24T18:15:05+00:00	2025-01-19T19:18:58.299130+00:00
pysec-2024-202	OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versio…	octoprint	2024-11-05T19:15:07+00:00	2025-01-19T16:22:59.212853+00:00
pysec-2024-201	OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versio…	octoprint	2024-11-05T19:15:05+00:00	2025-01-19T16:22:59.154645+00:00

ID	Description	Updated
gsd-2024-33766	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.508057Z
gsd-2024-33779	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.507854Z
gsd-2024-33792	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.507383Z
gsd-2024-33704	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.504657Z
gsd-2024-33758	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.500910Z
gsd-2024-33710	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.499457Z
gsd-2024-33707	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.497095Z
gsd-2024-33781	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.495881Z
gsd-2024-33679	Cross-Site Request Forgery (CSRF) vulnerability in FameThemes FameTheme Demo Importer.Thi…	2024-04-27T05:02:18.492186Z
gsd-2024-33777	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.489805Z
gsd-2024-33743	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.488662Z
gsd-2024-33791	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.488352Z
gsd-2024-33747	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.485640Z
gsd-2024-33774	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.484899Z
gsd-2024-33734	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.482444Z
gsd-2024-33740	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.479260Z
gsd-2024-33801	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.476298Z
gsd-2024-33682	Cross-Site Request Forgery (CSRF) vulnerability in Cookie Information A/S WP GDPR Complia…	2024-04-27T05:02:18.470225Z
gsd-2024-33709	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.469333Z
gsd-2024-33745	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.468253Z
gsd-2024-33690	Cross-Site Request Forgery (CSRF) vulnerability in Jegstudio Financio.This issue affects …	2024-04-27T05:02:18.467205Z
gsd-2024-33808	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.458232Z
gsd-2024-33767	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.454953Z
gsd-2024-33805	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.453392Z
gsd-2024-33711	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.452695Z
gsd-2024-33790	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.450431Z
gsd-2024-33759	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.447890Z
gsd-2024-33680	Cross-Site Request Forgery (CSRF) vulnerability in MainWP MainWP Child Reports.This issue…	2024-04-27T05:02:18.444951Z
gsd-2024-33715	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.440563Z
gsd-2024-33748	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.439408Z

ID	Description	Published	Updated
mal-2025-191421	Malicious code in selenium-session (npm)	2025-11-25T00:16:49Z	2025-12-24T10:09:30Z
mal-2025-191403	Malicious code in prompt-eng-server (npm)	2025-11-25T00:16:49Z	2025-12-24T10:09:30Z
mal-2025-855	Malicious code in mongodb-chatbot-verified-answers (npm)	2025-02-03T16:56:51Z	2025-12-24T10:09:29Z
mal-2025-49428	Malicious code in otetotvot (npm)	2025-11-09T00:17:09Z	2025-12-24T10:09:29Z
mal-2025-49427	Malicious code in otetoparserlparser (npm)	2025-11-09T00:17:09Z	2025-12-24T10:09:29Z
mal-2025-49263	Malicious code in pixelblm (npm)	2025-10-30T23:58:26Z	2025-12-24T10:09:29Z
mal-2025-47947	Malicious code in orvlla (npm)	2025-10-07T02:39:41Z	2025-12-24T10:09:29Z
mal-2025-47929	Malicious code in mcp-server-fixthis (npm)	2025-10-07T00:24:42Z	2025-12-24T10:09:29Z
mal-2025-47857	Malicious code in pc-analytics-promotion-creation-core (npm)	2025-09-26T04:46:33Z	2025-12-24T10:09:29Z
mal-2025-47593	Malicious code in package-x (npm)	2025-09-23T18:30:20Z	2025-12-24T10:09:29Z
mal-2025-3412	Malicious code in pdf-to-office (npm)	2025-04-23T15:57:31Z	2025-12-24T10:09:29Z
mal-2025-192400	Malicious code in node-calculator-0d96 (npm)	2025-12-10T01:43:14Z	2025-12-24T10:09:29Z
mal-2025-191580	Malicious code in pixel-bloom (npm)	2025-12-01T13:20:52Z	2025-12-24T10:09:29Z
mal-2025-191542	Malicious code in nodenetbanxsdk (npm)	2025-12-02T04:30:47Z	2025-12-24T10:09:29Z
mal-2025-191135	Malicious code in normal-store (npm)	2025-11-24T22:24:53Z	2025-12-24T10:09:29Z
mal-2025-190630	Malicious code in parse-session (npm)	2025-11-24T05:16:12Z	2025-12-24T10:09:29Z
mal-2025-190548	Malicious code in node-calculator-yktt (npm)	2025-11-17T17:14:41Z	2025-12-24T10:09:29Z
mal-2025-190539	Malicious code in node-calculator-b57e (npm)	2025-11-17T17:14:41Z	2025-12-24T10:09:29Z
mal-2025-190538	Malicious code in node-calculator-b549 (npm)	2025-11-17T17:14:41Z	2025-12-24T10:09:29Z
mal-2025-190537	Malicious code in node-calculator-9c62 (npm)	2025-11-17T17:14:41Z	2025-12-24T10:09:29Z
mal-2025-190536	Malicious code in node-calculator-9b93 (npm)	2025-11-17T17:14:41Z	2025-12-24T10:09:29Z
mal-2025-190532	Malicious code in node-calculator-68f8 (npm)	2025-11-17T17:14:41Z	2025-12-24T10:09:29Z
mal-2025-190531	Malicious code in node-calculator-522f (npm)	2025-11-17T17:14:41Z	2025-12-24T10:09:29Z
mal-2025-5504	Malicious code in keythereum-utils (npm)	2025-07-01T06:27:23Z	2025-12-24T10:09:28Z
mal-2025-55018	Malicious code in graphhub (npm)	2025-11-10T05:49:05Z	2025-12-24T10:09:28Z
mal-2025-49419	Malicious code in libxmljs2superbank (npm)	2025-11-09T00:17:09Z	2025-12-24T10:09:28Z
mal-2025-49340	Malicious code in loaders-fbo.gov (npm)	2025-11-03T18:59:00Z	2025-12-24T10:09:28Z
mal-2025-48554	Malicious code in js-repack (npm)	2025-10-22T06:53:48Z	2025-12-24T10:09:28Z
mal-2025-47927	Malicious code in graphflux (npm)	2025-10-07T00:28:13Z	2025-12-24T10:09:28Z
mal-2025-191969	Malicious code in kkkaremn (npm)	2025-12-03T00:55:45Z	2025-12-24T10:09:28Z

ID	Description	Published	Updated
wid-sec-w-2025-2595	Linux Kernel: Mehrere Schwachstellen	2025-11-12T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2566	Mozilla Firefox und Firefox ESR: Mehrere Schwachstellen	2025-11-11T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2518	Red Hat Enterprise Linux (runc): Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2025-11-09T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2485	cURL (wcurl): Schwachstelle ermöglicht Manipulation von Dateien	2025-11-03T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2468	CPython: Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2404	AMD “Zen 5” Prozessoren: Schwachstelle gefährdet Vertraulichkeit und Integrität	2025-10-23T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2392	Internet Systems Consortium BIND: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2325	xpdf: Schwachstelle ermöglicht Denial of Service	2025-10-16T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2301	Red Hat Enterprise Linux: Mehrere Schwachstellen	2025-10-14T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2187	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-01T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2051	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-14T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1988	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-07T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1965	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2025-09-03T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1948	libxml2 (exsltDynMapFunction): Schwachstelle ermöglicht Denial of Service	2025-09-02T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1933	Linux Kernel: Eine Schwachstelle ermöglicht einen Denial of Service	2025-08-31T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1914	Linux Kernel: Schwachstelle ermöglicht Codeausführung	2025-08-26T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1869	Linux Kernel: Mehrere Schwachstellen	2025-08-19T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1862	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2025-08-18T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1858	Linux Kernel: Mehrere Schwachstellen	2025-08-17T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1830	http/2 Implementierungen: Schwachstelle ermöglicht Denial of Service	2025-08-13T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2718	Google Chrome/Microsoft Edge: Mehrere Schwachstellen	2025-12-02T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2580	Google Chrome/Microsoft Edge: Schwachstelle ermöglicht nicht näher beschriebene Auswirkungen	2025-11-11T23:00:00.000+00:00	2025-12-14T23:00:00.000+00:00
wid-sec-w-2025-2676	GeoServer: Mehrere Schwachstellen	2025-11-25T23:00:00.000+00:00	2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2789	Adobe Experience Manager: Mehrere Schwachstellen	2025-12-09T23:00:00.000+00:00	2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-1375	WinRAR: Schwachstelle ermöglicht Codeausführung	2025-06-23T22:00:00.000+00:00	2025-12-09T23:00:00.000+00:00
wid-sec-w-2025-2746	IBM InfoSphere Information Server: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-04T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2711	Android Patchday Dezember 2025: Mehrere Schwachstellen	2025-12-01T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2450	Linux Kernel: Mehrere Schwachstellen	2025-10-29T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2431	Linux Kernel: Mehrere Schwachstellen	2025-10-28T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2510	AnyDesk: Mehrere Schwachstellen	2025-11-06T23:00:00.000+00:00	2025-12-07T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-627195	SSA-627195: Zip Path Traversal Vulnerability in Mendix Studio Pro's Module Installation Process	2025-06-12T00:00:00Z	2025-07-08T00:00:00Z
ssa-626991	SSA-626991: Denial of Service Vulnerability in SIMATIC CN 4100 before V4.0	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-593272	SSA-593272: SegmentSmack in Interniche IP-Stack based Industrial Devices	2020-04-14T00:00:00Z	2025-07-08T00:00:00Z
ssa-573669	SSA-573669: Multiple Vulnerabilities in TIA Administrator Before V3.0.6	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-446545	SSA-446545: Impact of RegreSSHion (CVE-2024-6387) in Siemens Industrial Products	2024-09-10T00:00:00Z	2025-07-08T00:00:00Z
ssa-364175	SSA-364175: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices Before V11.1.4-h1	2024-07-09T00:00:00Z	2025-07-08T00:00:00Z
ssa-327438	SSA-327438: Multiple Vulnerabilities in SCALANCE LPE9403	2025-05-13T00:00:00Z	2025-07-08T00:00:00Z
ssa-091753	SSA-091753: Multiple Vulnerabilities in Solid Edge Before SE2025 Update 5	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-078892	SSA-078892: Multiple Vulnerabilities in SINEC NMS Before V4.0	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-928984	SSA-928984: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC)	2024-12-16T00:00:00Z	2025-06-10T00:00:00Z
ssa-874353	SSA-874353: Entity Enumeration Vulnerability in Mendix Runtime	2025-04-08T00:00:00Z	2025-06-10T00:00:00Z
ssa-858251	SSA-858251: Authentication Bypass Vulnerabilities in OPC UA	2025-03-11T00:00:00Z	2025-06-10T00:00:00Z
ssa-693776	SSA-693776: Multiple Vulnerabilities in Industrial Communication Devices based on SINEC OS before V3.2	2025-06-10T00:00:00Z	2025-06-10T00:00:00Z
ssa-656895	SSA-656895: Open Redirect Vulnerability in Teamcenter	2025-02-11T00:00:00Z	2025-06-10T00:00:00Z
ssa-633269	SSA-633269: Incorrect Authorization Check Vulnerability in Industrial Communication Devices based on SINEC OS before V3.1	2025-06-10T00:00:00Z	2025-06-10T00:00:00Z
ssa-041082	SSA-041082: Out of Bounds Read Vulnerability in SiPass Integrated Before V2.95.3.18	2025-05-23T00:00:00Z	2025-05-23T00:00:00Z
ssa-552330	SSA-552330: System Configuration Password Reset in Siveillance Video V2024 R1	2025-05-14T00:00:00Z	2025-05-14T00:00:00Z
ssa-935500	SSA-935500: Denial of Service Vulnerability in FTP Server of Nucleus RTOS based APOGEE, TALON and Desigo PXC/PXM Products	2022-10-11T00:00:00Z	2025-05-13T00:00:00Z
ssa-901508	SSA-901508: Multiple Vulnerabilities in INTRALOG WMS Before V5	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-828116	SSA-828116: Denial of Service Vulnerability in BACnet ATEC Devices	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-819629	SSA-819629: Weak Authentication Vulnerability in Industrial Edge Device Kit	2025-04-08T00:00:00Z	2025-05-13T00:00:00Z
ssa-718393	SSA-718393: Partial Denial of Service Vulnerability in APOGEE PXC and TALON TC Series (BACnet) Devices	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-668154	SSA-668154: Denial of Service Vulnerability in MS/TP Point Pickup Module	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-542540	SSA-542540: Out of Bounds Read Vulnerability in Teamcenter Visualization	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-523418	SSA-523418: Information Disclosure Vulnerability in Desigo CC	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-455250	SSA-455250: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices Before V11.1.2-h3	2024-04-09T00:00:00Z	2025-05-13T00:00:00Z
ssa-339086	SSA-339086: Insufficient Session Expiration Vulnerability in SIMATIC PCS neo	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-222768	SSA-222768: Multiple Vulnerabilities in SIRIUS 3SK2 Safety Relays and 3RK3 Modular Safety Systems	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-162255	SSA-162255: Multiple Vulnerabilities in Polarion Before V2410	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-103653	SSA-103653: Denial-of-Service Vulnerability in Automation License Manager	2024-09-10T00:00:00Z	2025-05-13T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:3184	Red Hat Security Advisory: podman security update	2025-03-25T20:36:10+00:00	2025-11-29T06:53:44+00:00
rhsa-2025:3266	Red Hat Security Advisory: container-tools:rhel8 security update	2025-03-26T14:25:08+00:00	2025-11-29T06:53:43+00:00
rhsa-2025:3210	Red Hat Security Advisory: container-tools:rhel8 security update	2025-03-26T02:19:46+00:00	2025-11-29T06:53:41+00:00
rhsa-2025:3186	Red Hat Security Advisory: podman security update	2025-03-25T20:42:41+00:00	2025-11-29T06:53:41+00:00
rhsa-2025:3185	Red Hat Security Advisory: gvisor-tap-vsock security update	2025-03-25T20:37:10+00:00	2025-11-29T06:53:39+00:00
rhsa-2025:3175	Red Hat Security Advisory: container-tools:rhel8 security update	2025-03-25T18:12:58+00:00	2025-11-29T06:53:39+00:00
rhsa-2025:3172	Red Hat Security Advisory: VolSync 0.12.1 security fixes and enhancements for RHEL 9	2025-03-25T19:58:29+00:00	2025-11-29T06:53:38+00:00
rhsa-2025:3165	Red Hat Security Advisory: podman security update	2025-03-25T14:24:49+00:00	2025-11-29T06:53:37+00:00
rhsa-2025:3132	Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.6	2025-03-26T17:34:00+00:00	2025-11-29T06:53:37+00:00
rhsa-2025:3131	Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.1.4	2025-03-26T17:39:24+00:00	2025-11-29T06:53:37+00:00
rhsa-2025:3069	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.3 security update	2025-03-20T08:37:59+00:00	2025-11-29T06:53:35+00:00
rhsa-2025:3053	Red Hat Security Advisory: Gatekeeper v3.15.4	2025-03-20T04:55:47+00:00	2025-11-29T06:53:33+00:00
rhsa-2025:3068	Red Hat Security Advisory: OpenShift Container Platform 4.18.6 packages and security update	2025-03-25T07:18:49+00:00	2025-11-29T06:53:32+00:00
rhsa-2025:3066	Red Hat Security Advisory: OpenShift Container Platform 4.18.6 bug fix and security update	2025-03-25T06:59:06+00:00	2025-11-29T06:53:31+00:00
rhsa-2025:3061	Red Hat Security Advisory: OpenShift Container Platform 4.17.22 packages and security update	2025-03-27T01:12:40+00:00	2025-11-29T06:53:31+00:00
rhsa-2025:3052	Red Hat Security Advisory: Gatekeeper v3.18.0	2025-03-20T04:53:19+00:00	2025-11-29T06:53:30+00:00
rhsa-2025:3051	Red Hat Security Advisory: Gatekeeper v3.17.2	2025-03-20T04:38:00+00:00	2025-11-29T06:53:29+00:00
rhsa-2025:2933	Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.18.0	2025-03-17T12:53:03+00:00	2025-11-29T06:53:29+00:00
rhsa-2025:2903	Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.18.0	2025-03-17T09:37:38+00:00	2025-11-29T06:53:29+00:00
rhsa-2025:2652	Red Hat Security Advisory: RHODF-4.18-RHEL-9 enhancement, bug fix and security update	2025-03-11T09:16:21+00:00	2025-11-29T06:53:28+00:00
rhsa-2025:2588	Red Hat Security Advisory: RHOAI 2.18.0 - Red Hat OpenShift AI	2025-03-10T23:41:31+00:00	2025-11-29T06:53:27+00:00
rhsa-2025:2526	Red Hat Security Advisory: ACS 4.5 enhancement update	2025-03-10T15:51:20+00:00	2025-11-29T06:53:27+00:00
rhsa-2025:22287	Red Hat Security Advisory: Red Hat Quay 3.9	2025-11-27T14:54:51+00:00	2025-11-29T06:53:27+00:00
rhsa-2025:22182	Red Hat Security Advisory: Red Hat Quay 3.10.16	2025-11-26T14:52:57+00:00	2025-11-29T06:53:26+00:00
rhsa-2025:22014	Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.15.2	2025-11-25T05:10:51+00:00	2025-11-29T06:53:25+00:00
rhsa-2025:21704	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.20 security, enhancement & bug fix update	2025-11-18T15:13:35+00:00	2025-11-29T06:53:24+00:00
rhsa-2025:19594	Red Hat Security Advisory: osbuild-composer security update	2025-11-04T08:51:51+00:00	2025-11-29T06:53:24+00:00
rhsa-2025:19566	Red Hat Security Advisory: osbuild-composer security update	2025-11-04T04:48:55+00:00	2025-11-29T06:53:23+00:00
rhsa-2025:19306	Red Hat Security Advisory: OpenShift Container Platform 4.15.59 bug fix and security update	2025-11-06T11:55:24+00:00	2025-11-29T06:53:23+00:00
rhsa-2025:1849	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-25T15:47:48+00:00	2025-11-29T06:53:22+00:00

ID	Description	Published	Updated
msrc_cve-2025-37932	sch_htb: make htb_qlen_notify() idempotent	2025-05-02T00:00:00.000Z	2025-12-23T01:36:40.000Z
msrc_cve-2025-37931	btrfs: adjust subpage bit start based on sectorsize	2025-05-02T00:00:00.000Z	2025-12-23T01:36:34.000Z
msrc_cve-2025-66382	In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.	2025-11-02T00:00:00.000Z	2025-12-23T01:36:29.000Z
msrc_cve-2025-2296	Un-verified kernel bypass Secure Boot mechanism in direct boot mode	2025-12-02T00:00:00.000Z	2025-12-23T01:35:11.000Z
msrc_cve-2025-7424	Libxslt: type confusion in xmlnode.psvi between stylesheet and source nodes	2025-07-02T00:00:00.000Z	2025-12-22T14:35:05.000Z
msrc_cve-2025-55753	Apache HTTP Server: mod_md (ACME), unintended retry intervals	2025-12-02T00:00:00.000Z	2025-12-20T14:35:58.000Z
msrc_cve-2025-58098	Apache HTTP Server: Server Side Includes adds query string to #exec cmd=...	2025-12-02T00:00:00.000Z	2025-12-20T14:35:52.000Z
msrc_cve-2025-66200	Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo	2025-12-02T00:00:00.000Z	2025-12-20T14:35:45.000Z
msrc_cve-2025-65082	Apache HTTP Server: CGI environment variable override	2025-12-02T00:00:00.000Z	2025-12-20T14:35:39.000Z
msrc_cve-2025-14512	Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow	2025-12-02T00:00:00.000Z	2025-12-20T01:40:40.000Z
msrc_cve-2025-14087	Glib: glib: buffer underflow in gvariant parser leads to heap corruption	2025-12-02T00:00:00.000Z	2025-12-20T01:40:29.000Z
msrc_cve-2025-7068	HDF5 H5FL.c H5FL__malloc memory leak	2025-07-02T00:00:00.000Z	2025-12-20T01:38:05.000Z
msrc_cve-2025-7067	HDF5 H5FScache.c H5FS__sinfo_serialize_node_cb heap-based overflow	2025-07-02T00:00:00.000Z	2025-12-20T01:37:56.000Z
msrc_cve-2025-6857	HDF5 H5Gnode.c H5G__node_cmp3 stack-based overflow	2025-06-02T00:00:00.000Z	2025-12-20T01:37:44.000Z
msrc_cve-2025-6750	HDF5 H5Omtime.c H5O__mtime_new_encode heap-based overflow	2025-06-02T00:00:00.000Z	2025-12-20T01:37:35.000Z
msrc_cve-2025-6816	HDF5 H5Ofsinfo.c H5O__fsinfo_encode heap-based overflow	2025-06-02T00:00:00.000Z	2025-12-20T01:37:26.000Z
msrc_cve-2025-6818	HDF5 H5Ochunk.c H5O__chunk_protect heap-based overflow	2025-06-02T00:00:00.000Z	2025-12-20T01:37:18.000Z
msrc_cve-2025-6858	HDF5 H5Centry.c H5C__flush_single_entry null pointer dereference	2025-06-02T00:00:00.000Z	2025-12-20T01:37:09.000Z
msrc_cve-2025-6269	HDF5 H5Cimage.c H5C__reconstruct_cache_entry heap-based overflow	2025-06-02T00:00:00.000Z	2025-12-20T01:37:00.000Z
msrc_cve-2025-44905	hdf5 v1.14.6 was discovered to contain a heap buffer overflow via the H5Z__filter_scaleoffset function.	2025-05-02T00:00:00.000Z	2025-12-20T01:36:49.000Z
msrc_cve-2025-2914	HDF5 H5FScache.c H5FS__sinfo_Srialize_Sct_cb heap-based overflow	2025-03-02T00:00:00.000Z	2025-12-20T01:36:41.000Z
msrc_cve-2025-2924	HDF5 H5HLcache.c H5HL__fl_deserialize heap-based overflow	2025-03-02T00:00:00.000Z	2025-12-20T01:36:32.000Z
msrc_cve-2025-2926	HDF5 H5Ocache.c H5O__cache_chk_serialize null pointer dereference	2025-03-02T00:00:00.000Z	2025-12-20T01:36:23.000Z
msrc_cve-2025-2925	HDF5 H5MM.c H5MM_realloc double free	2025-03-02T00:00:00.000Z	2025-12-20T01:36:15.000Z
msrc_cve-2025-2310	HDF5 Metadata Attribute Decoder H5MM_strndup heap-based overflow	2025-03-02T00:00:00.000Z	2025-12-20T01:36:06.000Z
msrc_cve-2025-2153	HDF5 h5 File H5SM.c H5SM_delete heap-based overflow	2025-03-02T00:00:00.000Z	2025-12-20T01:35:57.000Z
msrc_cve-2025-44904	hdf5 v1.14.6 was discovered to contain a heap buffer overflow via the H5VM_memcpyvv function.	2025-05-02T00:00:00.000Z	2025-12-20T01:03:15.000Z
msrc_cve-2025-38377	rose: fix dangling neighbour pointers in rose_rt_device_down()	2025-07-02T00:00:00.000Z	2025-12-20T01:03:09.000Z
msrc_cve-2025-38275	phy: qcom-qmp-usb: Fix an NULL vs IS_ERR() bug	2025-07-02T00:00:00.000Z	2025-12-20T01:03:04.000Z
msrc_cve-2025-38263	bcache: fix NULL pointer in cache_set_flush()	2025-07-02T00:00:00.000Z	2025-12-20T01:02:59.000Z

ID	Description	Published	Updated
icsa-25-296-01	AutomationDirect Productivity Suite	2025-10-23T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-294-02	Rockwell Automation Compact GuardLogix 5370	2025-10-21T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-294-01	Rockwell Automation 1783-NATR	2025-10-21T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-289-02	Rockwell Automation FactoryTalk Linx	2025-10-16T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-280-01	Delta Electronics DIAScreen	2025-10-07T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-037-02	Schneider Electric EcoStruxure (Update C)	2025-02-06T07:00:00.000000Z	2025-10-23T06:00:00.000000Z
va-25-296-01	Frontier Airlines website publicly available email address validation	2025-10-23T00:00:00Z	2025-10-23T00:00:00Z
va-25-297-01	IBM DOORS Next Generation multiple vulnerabilities	2025-10-22T18:45:47Z	2025-10-22T18:45:47Z
icsma-25-294-01	Oxford Nanopore Technologies MinKNOW	2025-10-21T06:00:00.000000Z	2025-10-21T06:00:00.000000Z
icsa-25-294-06	Raisecomm RAX701-GC Series	2025-10-21T06:00:00.000000Z	2025-10-21T06:00:00.000000Z
icsa-25-294-05	CloudEdge Online Cameras and App	2025-10-21T06:00:00.000000Z	2025-10-21T06:00:00.000000Z
icsa-24-354-07	Schneider Electric Modicon Controllers (Update A)	2024-12-19T07:00:00.000000Z	2025-10-21T06:00:00.000000Z
va-25-289-01	OPEXUS FOIAXpress unauthenticated administrator password reset	2025-10-16T16:43:55Z	2025-10-16T16:43:55Z
icsa-25-289-04	Rockwell Automation ArmorStart AOP	2025-10-16T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-25-289-03	Rockwell Automation FactoryTalk ViewPoint	2025-10-16T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-25-289-01	Rockwell Automation FactoryTalk View Machine Edition and PanelView Plus 7	2025-10-16T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-24-121-01	Delta Electronics CNCSoft-G2 DOPSoft (Update A)	2024-04-30T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-25-301-01	Schneider Electric EcoStruxure	2025-10-14T07:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-25-259-01	Schneider Electric Altivar products ATVdPAC module ILC992 InterLink Converter (Update A)	2025-09-09T04:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-25-140-08	Schneider Electric Modicon Controllers (Update B)	2025-05-13T04:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-24-352-04	Schneider Electric Modicon	2024-12-10T05:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-25-287-01	Rockwell Automation 1715 EtherNet/IP Comms Module	2025-10-14T06:00:00.000000Z	2025-10-14T06:00:00.000000Z
icsa-25-294-04	Siemens RUGGEDCOM ROS Devices	2025-07-08T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-294-03	Siemens SIMATIC S7-1200 CPU V1/V2 Devices	2011-06-10T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-10	Siemens HyperLynx and Industrial Edge App Publisher	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-09	Siemens TeleControl Server Basic	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-08	Siemens SINEC NMS	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-07	Siemens SIMATIC ET 200SP Communication Processors	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-06	Siemens SiPass	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-05	Siemens Solid Edge	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-contcent-insuffacces-ardovhn8	Cisco Unified Contact Center Enterprise Cloud Connect Insufficient Access Control Vulnerability	2025-05-21T16:00:00+00:00	2025-05-21T16:00:00+00:00
cisco-sa-sdwanarbfile-2zkhkzwj	Cisco Catalyst SD-WAN Manager Arbitrary File Creation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-14T20:04:53+00:00
cisco-sa-sdwan-fileoverwrite-uc9txwh	Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite Vulnerability	2025-05-07T16:00:00+00:00	2025-05-08T15:55:57+00:00
cisco-sa-wlc-wncd-p6gvt6hl	Cisco IOS XE Software for WLC Wireless IPv6 Clients Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-webui-multi-arnhm4v6	Cisco IOS XE Software Web-Based Management Interface Vulnerabilities	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-webui-cmdinj-gvn3oknc	Cisco IOS XE Software Web-Based Management Interface Command Injection Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-vmanage-xss-xhn8m5jt	Cisco Catalyst SD-WAN Manager Stored Cross-Site Scripting Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-vmanage-html-inj-gxvtk6zj	Cisco Catalyst SD-WAN Manager Reflected HTML Injection Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-twamp-kv4fhugn	Cisco IOS, IOS XE, and IOS XR Software TWAMP Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-snmpv3-qkeyvzsy	Cisco IOS and IOS XE Software SNMPv3 Configuration Restriction Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-sisf-dos-zgwt4ddy	Multiple Cisco Products Switch Integrated Security Features DHCPv6 Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-sdwan-priviesc-wck7bmmt	Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-netconf-nacm-bypass-tgzv9pmq	Cisco IOS XE Software Model-Driven Programmability Authorization Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-multiprod-ikev2-dos-gpctuqv2	Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, IOS Software, and IOS XE Software IKEv2 Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ipsgacl-pg6qfzk	Cisco IOS Software on Cisco Catalyst 1000 and 2960L Switches Access Control List Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iox-dos-95fqnf7b	Cisco IOx Application Hosting Environment Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iosxe-privesc-su7scvdp	Cisco IOS XE Software Privilege Escalation Vulnerabilities	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iosxe-ikev1-dos-xhk3hzfc	Cisco IOS XE Software Internet Key Exchange Version 1 Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iosxe-dhcpsn-dos-xbn8mtks	Cisco IOS XE Software DHCP Snooping Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ios-http-privesc-wcrd5e3	Cisco IOS Software Industrial Ethernet Switch Device Manager Privilege Escalation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ewlc-user-del-hqxmpudj	Cisco IOS XE Wireless Controller Software Unauthorized User Deletion Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ewlc-cdp-dos-fpeks9k	Cisco IOS XE Wireless Controller Software Cisco Discovery Protocol Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-catc-insec-acc-mtt8eheb	Cisco Catalyst Center Insufficient Access Control Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-catalyst-tls-pqnd5kej	Cisco Catalyst SD-WAN Manager Certificate Validation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-c2960-3560-sboot-ztqadrhq	Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches Secure Boot Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-bootstrap-kfgxygdh	Cisco IOS XE Software Bootstrap Arbitrary File Write Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-asr903-rsp3-arp-dos-wmfzdvjz	Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers ARP Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-webex-app-client-rce-ufymmylc	Cisco Webex App Client-Side Remote Code Execution Vulnerability	2025-04-16T16:00:00+00:00	2025-04-16T16:00:00+00:00
cisco-sa-sna-prvesc-4bqmk33z	Cisco Secure Network Analytics Privilege Escalation Vulnerability	2025-04-16T16:00:00+00:00	2025-04-16T16:00:00+00:00
cisco-sa-nd-unenum-2xffh472	Cisco Nexus Dashboard LDAP Username Enumeration Vulnerability	2025-04-16T16:00:00+00:00	2025-04-16T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201605-0465	The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple …	2024-11-29T22:34:09.220000Z
var-200905-0505	Array index error in the insertItemBefore method in WebKit, as used in Apple Safari befor…	2024-11-29T22:34:08.776000Z
var-200705-0688	The ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module i…	2024-11-29T22:34:07.786000Z
var-201902-0242	In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishand…	2024-11-29T22:34:07.699000Z
var-200102-0030	The Web interface to Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attack…	2024-11-29T22:34:04.077000Z
var-201503-0388	Use-after-free vulnerability in the _zend_shared_memdup function in zend_shared_alloc.c i…	2024-11-29T22:33:57.803000Z
var-201912-1862	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T22:33:50.207000Z
var-201310-0353	Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, a…	2024-11-29T22:33:48.342000Z
var-201801-0036	jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-doma…	2024-11-29T22:33:43.707000Z
var-201112-0047	The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64…	2024-11-29T22:33:43.392000Z
var-202109-1805	Malformed requests may cause the server to dereference a NULL pointer. This issue affects…	2024-11-29T22:33:38.638000Z
var-201111-0129	Use-after-free vulnerability in Google Chrome before 15.0.874.120 allows user-assisted re…	2024-11-29T22:33:38.569000Z
var-200611-0488	Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows r…	2024-11-29T22:32:37.602000Z
var-202001-1866	xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certai…	2024-11-29T22:32:28.603000Z
var-201205-0297	The Linux kernel before 3.3.1, when KVM is used, allows guest OS users to cause a denial …	2024-11-29T22:32:27.665000Z
var-200701-0517	Untrusted search path vulnerability in writeconfig in Apple Mac OS X 10.4.8 allows local …	2024-11-29T22:32:27.264000Z
var-201503-0206	Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP …	2024-11-29T22:32:24.843000Z
var-201211-0370	Buffer overflow in Adobe Flash Player before 10.3.183.43 and 11.x before 11.5.502.110 on …	2024-11-29T22:32:24.606000Z
var-201912-0574	An out-of-bounds read was addressed with improved input validation. plural Apple The prod…	2024-11-29T22:32:23.693000Z
var-202301-0598	Unproper laxist permissions on the temporary files used by MIME4J TempFileStorageProvider…	2024-11-29T22:31:14.574000Z
var-200905-0155	Multiple memory leaks in Ipsec-tools before 0.7.2 allow remote attackers to cause a denia…	2024-11-29T22:31:14.300000Z
var-200705-0670	The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and 1.2.x before 1.2.1…	2024-11-29T22:31:11.850000Z
var-202108-2221	curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. T…	2024-11-29T22:31:04.937000Z
var-202203-0145	A buffer overflow issue was addressed with improved memory handling. This issue is fixed …	2024-11-29T22:30:34.594000Z
var-201609-0592	The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remot…	2024-11-29T22:30:34.148000Z
var-201304-0373	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T22:30:33.711000Z
var-202206-1106	Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an…	2024-11-29T22:30:33.233000Z
var-202009-1442	A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker …	2024-11-29T22:30:24.749000Z
var-200707-0675	The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5…	2024-11-29T22:30:21.788000Z
var-202010-1245	A logic issue was addressed with improved state management. This issue is fixed in iOS 13…	2024-11-29T22:30:21.601000Z

ID	Description	Published	Updated
jvndb-2025-000038	UpdateNavi vulnerable to improper restriction of communication channel to intended endpoints	2025-06-12T15:56+09:00	2025-06-12T15:56+09:00
jvndb-2025-000037	Multiple surveillance cameras provided by i-PRO Co., Ltd. vulnerable to cross-site request forgery	2025-06-06T13:56+09:00	2025-06-06T13:56+09:00
jvndb-2025-000036	TimeWorks vulnerable to path traversal	2025-06-03T15:35+09:00	2025-06-03T15:35+09:00
jvndb-2025-000035	Improper file access permission settings in PC Time Tracer	2025-06-03T14:40+09:00	2025-06-03T14:40+09:00
jvndb-2025-000034	Multiple vulnerabilities in wivia 5	2025-05-30T15:57+09:00	2025-05-30T15:57+09:00
jvndb-2025-001238	Multiple out-of-bounds write vulnerabilities in Canon Office/Small Office Multifunction Printers and Laser Printers	2025-01-29T13:41+09:00	2025-05-27T16:06+09:00
jvndb-2025-000032	Mailform Pro CGI generating error messages containing sensitive information	2025-05-26T14:22+09:00	2025-05-26T14:22+09:00
jvndb-2025-000033	Improper pattern file validation in i-FILTER optional feature 'Anti-Virus & Sandbox'	2025-05-23T15:36+09:00	2025-05-23T15:36+09:00
jvndb-2025-005467	Passback vulnerabilities in Canon Production Printers, Office/Small Office Multifunction Printers, and Laser Printers	2025-05-22T15:03+09:00	2025-05-22T15:03+09:00
jvndb-2024-000117	Stack-based buffer overflow vulnerability in multiple laser printers and MFPs which implement Ricoh Web Image Monitor	2024-10-31T16:44+09:00	2025-05-19T17:59+09:00
jvndb-2025-005107	Multiple vulnerabilities in V-SFT	2025-05-16T14:32+09:00	2025-05-16T14:32+09:00
jvndb-2025-005057	Multiple vulnerabilities in I-O DATA network attached hard disk 'HDL-T Series'	2025-05-15T18:27+09:00	2025-05-15T18:27+09:00
jvndb-2025-005050	Multiple vulnerabilities in a-blog cms	2025-05-15T18:11+09:00	2025-05-15T18:11+09:00
jvndb-2025-000031	Pgpool-II vulnerable to authentication bypass by primary weakness	2025-05-15T16:14+09:00	2025-05-15T16:14+09:00
jvndb-2025-004863	Panasonic IR Control Hub vulnerable to Unauthorised firmware loading	2025-05-14T11:30+09:00	2025-05-14T11:30+09:00
jvndb-2025-004671	Multiple vulnerabilities in GL-MT2500 and GL-MT2500A	2025-05-12T17:52+09:00	2025-05-12T17:52+09:00
jvndb-2025-001016	OMRON NJ/NX series vulnerable to path traversal	2025-02-06T18:27+09:00	2025-05-08T17:44+09:00
jvndb-2025-004079	Improper access permission settings in multiple SEIKO EPSON printer drivers for Windows OS	2025-04-30T11:46+09:00	2025-04-30T11:46+09:00
jvndb-2025-004076	Security Update for Trend Micro Trend Vision One (April 2025)	2025-04-30T10:38+09:00	2025-04-30T10:38+09:00
jvndb-2025-000029	Multiple vulnerabilities in Quick Agent	2025-04-25T13:49+09:00	2025-04-25T13:49+09:00
jvndb-2025-000028	i-PRO Configuration Tool vulnerable to use of hard-coded cryptographic key	2025-04-24T13:50+09:00	2025-04-24T13:50+09:00
jvndb-2025-000027	Active! mail vulnerable to stack-based buffer overflow	2025-04-18T16:50+09:00	2025-04-18T16:50+09:00
jvndb-2016-000129	Android OS issue where it is affected by the CRIME attack	2016-07-25T11:15+09:00	2025-04-18T16:36+09:00
jvndb-2025-003213	TP-Link Deco BE65 Pro vulnerable to OS command injection	2025-04-11T13:52+09:00	2025-04-11T13:52+09:00
jvndb-2025-000026	Multiple vulnerabilities in BizRobo!	2025-04-10T15:36+09:00	2025-04-10T15:36+09:00
jvndb-2025-003091	Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (April 2025)	2025-04-09T14:55+09:00	2025-04-09T14:55+09:00
jvndb-2025-002990	Multiple vulnerabilities in Inaba Denki Sangyo Wi-Fi AP UNIT 'AC-WPS-11ac series'	2025-04-07T17:44+09:00	2025-04-07T17:44+09:00
jvndb-2025-002714	Improper symbolic link file handling in FutureNet NXR series, VXR series and WXR series routers	2025-03-31T16:59+09:00	2025-04-03T15:19+09:00
jvndb-2025-000025	WinRAR vulnerable to the symbolic link based "Mark of the Web" check bypass	2025-04-03T12:29+09:00	2025-04-03T12:29+09:00
jvndb-2025-000022	Multiple vulnerabilities in JTEKT ELECTRONICS CORPORATION's products	2025-04-02T15:12+09:00	2025-04-02T15:12+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated