Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-qwgp-62r6-68mw | Nagios XI versions prior to 2024R1.1.4 contain a local file inclusion (LFI) vulnerability via its N… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:47Z |
| ghsa-pc79-p3cx-hcjp | Nagios Log Server versions prior to 2024R1.3.1 contain a code injection vulnerability where malform… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-m92p-3ph9-r4g2 | Nagios XI versions prior to 2024R1.1.3 are vulnerable to cross-site scripting (XSS) via the Capacit… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:47Z |
| ghsa-j4xf-q36g-r48v | Nagios XI versions prior to 2024R1.3.2 contain a remote command execution vulnerability in the WinR… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-h24p-c667-33hr | Nagios XI versions prior to 2024R1.2.2 contain a host header injection vulnerability. The applicati… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-gc26-2m4x-94qw | Nagios XI versions prior to 2024R1.2 contain a privilege escalation vulnerability related to NagVis… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:47Z |
| ghsa-g889-qrp9-qwxw | Nagios Fusion versions prior to 2024R2.1 contain a brute-force bypass in the Two-Factor Authenticat… | 2025-10-31T00:30:34Z | 2025-11-07T21:31:19Z |
| ghsa-fv44-8gjm-pj66 | Nagios XI versions prior to 2024R1.4.2 configure some systemd unit files with permission sets that … | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-fmr7-xm73-cwcf | Nagios Log Server versions prior to 2024R2.0.3 contain an execution with unnecessary privileges vul… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-7h56-968g-xcq3 | Nagios XI versions prior to 2024R1.4.2 contain a remote code execution vulnerability in the Busines… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-7c96-f262-gcw8 | Nagios Log Server versions prior to 2024R2.0.3 contain an incorrect authorization vulnerability tha… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-75j9-fg6j-3gvg | Nagios Network Analyzer versions prior to 2024R1 contain a stored cross-site scripting (XSS) vulner… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-7449-5996-fmvf | Nagios XI versions prior to 2024R1.4.2 revealed API keys to users who were not authorized for API a… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:49Z |
| ghsa-6577-56w8-v2rg | Nagios Log Server versions prior to 2024R2.0.2 contain a vulnerability in the AD/LDAP user import f… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-637x-97g8-9p5r | Nagios XI versions prior to 2024R1.2 contain a command injection vulnerability in the Docker Wizard… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:47Z |
| ghsa-5v2w-q8v2-gpf9 | In Nagios Log Server versions prior to 2024R2.0.3, when a user's configured default dashboard is de… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-42h4-7cw5-mjmj | Nagios XI versions prior to 2024R1.1.3 are vulnerable to cross-site scripting (XSS) via the Executi… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:47Z |
| ghsa-3wc8-676p-crj6 | Nagios Log Server versions prior to 2024R2.0.2 contain a vulnerability in the cluster manager compo… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-33w6-pm3h-v82j | Nagios Fusion versions prior to R2.1 contain a vulnerability due to the application not requiring r… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-2j3r-x22c-hqx9 | Nagios Log Server versions prior to 2024R1.0.2 contain a local privilege escalation vulnerability t… | 2025-10-31T00:30:34Z | 2025-11-06T18:32:48Z |
| ghsa-xh9p-x5hc-hgcp | Nagios XI versions prior to 2024R1 contain a missing access control vulnerability via the Web SSH T… | 2025-10-31T00:30:33Z | 2025-11-06T18:32:46Z |
| ghsa-wpjr-jgr7-59xw | Nagios XI versions prior to 2024R1.1.2 may (confirmed in 2024R1.1 and 2024R1.1.1) disclose sensitiv… | 2025-10-31T00:30:33Z | 2025-11-06T18:32:47Z |
| ghsa-w8rr-5362-h9xq | Nagios Log Server versions prior to 2.1.14 are vulnerable to cross-site scripting (XSS) via the Sna… | 2025-10-31T00:30:33Z | 2025-11-05T18:31:30Z |
| ghsa-vmqh-gxh7-q26x | Nagios XI versions prior to < 2024R1.0.2 are vulnerable to cross-site scripting (XSS) via the Nagio… | 2025-10-31T00:30:33Z | 2025-11-06T18:32:46Z |
| ghsa-rqrg-cx67-rw63 | Nagios XI versions prior to 2024R1 are vulnerable to cross-site scripting (XSS) via the Graph Explo… | 2025-10-31T00:30:33Z | 2025-11-06T18:32:46Z |
| ghsa-mv3v-fcv4-mcj5 | Nagios Fusion versions prior to 4.2.0 contain a stored cross-site scripting (XSS) vulnerability whe… | 2025-10-31T00:30:33Z | 2025-11-06T18:32:46Z |
| ghsa-mcq5-4xw3-jc29 | Nagios XI versions prior to 2024R1.1.2 contain a missing authorization control when the 'Allow Inse… | 2025-10-31T00:30:33Z | 2025-11-06T18:32:47Z |
| ghsa-gpq7-64xq-65r5 | Nagios Log Server versions prior to 2024R1 contain an incorrect authorization vulnerability. Users … | 2025-10-31T00:30:33Z | 2025-11-06T18:32:47Z |
| ghsa-g2hj-qcr3-8fx6 | Nagios Log Server versions prior to 2024R1 are vulnerable to cross-site scripting (XSS) via the Cre… | 2025-10-31T00:30:33Z | 2025-11-06T18:32:47Z |
| ghsa-f59v-q7cp-mw78 | Nagios XI versions prior to < 2024R1.1.2 are vulnerable to a reflected cross-site scripting (XSS) v… | 2025-10-31T00:30:33Z | 2025-11-06T18:32:47Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-5397 | Jobmonster - Job Board WordPress Theme <= 4.8.1 - Auth… |
Unknown |
Noo JobMonster |
2025-10-31T06:42:54.832Z | 2025-10-31T14:40:20.080Z | |
| cve-2025-11191 | N/A | RealPress < 1.1.0 - Unauthenticated Content Creation/E… |
Unknown |
RealPress |
2025-10-31T06:00:03.402Z | 2025-10-31T14:03:01.749Z |
| cve-2025-54763 | 7.2 (v3.1) 8.6 (v4.0) | FutureNet MA and IP-K series provided by Century … |
Century Systems Co., Ltd. |
FutureNet MA-X series |
2025-10-31T05:55:24.573Z | 2025-10-31T17:15:10.387Z |
| cve-2025-58152 | 5.3 (v3.1) 6.9 (v4.0) | FutureNet MA and IP-K series provided by Century … |
Century Systems Co., Ltd. |
FutureNet MA-X series |
2025-10-31T05:55:02.996Z | 2025-10-31T17:07:56.496Z |
| cve-2025-11806 | Qzzr Shortcode Plugin <= 1.0.1 - Authenticated (Contri… |
qzzr |
Qzzr Shortcode Plugin |
2025-10-31T02:26:04.351Z | 2025-10-31T17:04:00.928Z | |
| cve-2025-11975 | FuseWP – WordPress User Sync to Email List & Marketing… |
fusewp |
FuseWP – WordPress User Sync to Email List & Marketing Automation (Mailchimp, Constant Contact, ActiveCampaign etc.) |
2025-10-31T02:26:03.735Z | 2025-10-31T16:35:36.186Z | |
| cve-2025-6176 | Brotli decompression bomb DoS in scrapy/scrapy |
scrapy |
scrapy/scrapy |
2025-10-31T00:00:21.219Z | 2025-10-31T16:21:32.237Z | |
| cve-2025-63675 | cryptidy through 1.2.4 allows code execution via … |
cryptidy |
cryptidy |
2025-10-31T00:00:00.000Z | 2025-10-31T16:44:37.610Z | |
| cve-2025-63563 | N/A | Summer Pearl Group Vacation Rental Management Pla… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-11-03T20:44:50.827Z |
| cve-2025-63562 | Summer Pearl Group Vacation Rental Management Pla… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T19:59:16.652Z | |
| cve-2025-63561 | Summer Pearl Group Vacation Rental Management Pla… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T20:08:45.140Z | |
| cve-2025-63469 | N/A | Totolink LR350 v9.3.5u.6369_B20220309 was discove… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T19:30:24.977Z |
| cve-2025-63468 | N/A | Totolink LR350 v9.3.5u.6369_B20220309 was discove… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T19:31:45.312Z |
| cve-2025-63467 | N/A | Totolink LR350 v9.3.5u.6369_B20220309 was discove… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-11-03T14:54:03.833Z |
| cve-2025-63466 | N/A | Totolink LR350 v9.3.5u.6369_B20220309 was discove… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-11-03T14:53:56.358Z |
| cve-2025-63465 | N/A | Totolink LR350 v9.3.5u.6369_B20220309 was discove… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T19:28:37.649Z |
| cve-2025-63464 | N/A | Totolink LR350 v9.3.5u.6369_B20220309 was discove… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T19:29:37.021Z |
| cve-2025-63463 | N/A | Totolink LR350 v9.3.5u.6369_B20220309 was discove… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-11-03T14:53:38.644Z |
| cve-2025-63462 | N/A | Totolink A7000R v9.1.0u.6115_B20201022 was discov… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-11-03T14:53:45.168Z |
| cve-2025-63461 | N/A | Totolink A7000R v9.1.0u.6115_B20201022 was discov… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-11-03T14:53:50.951Z |
| cve-2025-63460 | N/A | Totolink A7000R v9.1.0u.6115_B20201022 was discov… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-11-03T14:53:32.996Z |
| cve-2025-63459 | N/A | Totolink A7000R v9.1.0u.6115_B20201022 was discov… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-11-03T14:53:27.364Z |
| cve-2025-63458 | N/A | Tenda AX-1803 v1.0.0.1 was discovered to contain … |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-11-03T14:53:13.747Z |
| cve-2025-63454 | N/A | Tenda AX-3 v16.03.12.10_CN was discovered to cont… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-11-03T14:53:20.710Z |
| cve-2025-61427 | N/A | A reflected cross-site scripting (XSS) vulnerabil… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T18:12:04.372Z |
| cve-2025-60749 | N/A | DLL Hijacking vulnerability in Trimble SketchUp d… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T15:14:28.333Z |
| cve-2025-57108 | N/A | Kitware VTK (Visualization Toolkit) through 9.5.0… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T19:07:13.950Z |
| cve-2025-57107 | N/A | Kitware VTK (Visualization Toolkit) through 9.5.0… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T18:06:36.870Z |
| cve-2025-57106 | N/A | Kitware VTK (Visualization Toolkit) up to 9.5.0 i… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T18:15:02.749Z |
| cve-2025-29270 | N/A | Incorrect access control in the realtime.cgi endp… |
n/a |
n/a |
2025-10-31T00:00:00.000Z | 2025-10-31T19:20:26.805Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-12501 | N/A | Integer overflow in GameMaker IDE below 2024.14.0… |
Opera Norway AS |
GameMaker IDE |
2025-10-31T14:10:19.919Z | 2025-10-31T14:53:19.356Z |
| cve-2025-64386 | 7.7 (v4.0) | HIJACKING OF THE TOKEN AND GAINING ACCESS |
Circutor |
TCPRS1plus |
2025-10-31T13:42:32.743Z | 2025-11-03T15:51:03.421Z |
| cve-2025-12521 | Analytify Pro <= 7.0.3 - Unauthenticated Information E… |
Analytify |
Analytify Pro |
2025-10-31T13:48:35.882Z | 2025-11-03T14:22:19.957Z | |
| cve-2025-12460 | 5.3 (v4.0) | Stored XSS vulnerability in Afterlogic Aurora webmail |
Afterlogic |
Aurora |
2025-10-31T13:53:58.574Z | 2025-10-31T14:09:59.967Z |
| cve-2025-4952 | 6.8 (v4.0) | Denial-of-service vulnerability in ESET security produ… |
ESET |
ESET NOD32 Antivirus |
2025-10-31T12:28:15.267Z | 2025-10-31T14:18:16.911Z |
| cve-2025-36249 | 3.7 (v3.1) | IBM Jazz for Service Management is vulnerable to "filt… |
IBM |
Jazz for Service Management |
2025-10-31T13:05:32.799Z | 2025-10-31T13:43:40.821Z |
| cve-2025-33003 | 7.8 (v3.1) | IBM InfoSphere Information Server is vulnerable to pri… |
IBM |
InfoSphere Information Server |
2025-10-31T13:04:31.204Z | 2025-11-01T03:55:53.966Z |
| cve-2024-13992 | 5.1 (v4.0) | Nagios XI < 2024R1.1 XSS via Missing Page / 404 |
Nagios |
XI |
2025-10-31T12:35:56.137Z | 2025-10-31T14:12:56.713Z |
| cve-2025-64368 | N/A | WordPress Bard theme <= 1.6 - Cross Site Request Forge… |
Mikado-Themes |
Bard |
2025-10-31T11:42:40.843Z | 2025-11-13T10:33:49.929Z |
| cve-2025-64367 | N/A | WordPress Groundhogg plugin <= 4.2.6 - Cross Site Scri… |
Adrian Tobey |
Groundhogg |
2025-10-31T11:42:40.076Z | 2025-11-13T10:33:49.935Z |
| cve-2025-64366 | N/A | WordPress MasterStudy LMS plugin <= 3.6.27 - SQL Injec… |
Stylemix |
MasterStudy LMS |
2025-10-31T11:42:39.301Z | 2025-11-13T10:33:49.936Z |
| cve-2025-64365 | N/A | WordPress Ohio Extra plugin <= 3.6.0 - Cross Site Scri… |
colabrio |
Ohio Extra |
2025-10-31T11:42:38.588Z | 2025-11-13T10:33:49.895Z |
| cve-2025-64364 | N/A | WordPress Masterstudy theme < 4.8.126 - Local File Inc… |
StylemixThemes |
Masterstudy |
2025-10-31T11:42:37.865Z | 2025-11-13T10:33:49.921Z |
| cve-2025-64363 | N/A | WordPress Kleo theme < 5.5.0 - Local File Inclusion vu… |
SeventhQueen |
Kleo |
2025-10-31T11:42:37.131Z | 2025-11-13T10:33:49.915Z |
| cve-2025-64362 | N/A | WordPress K Elements plugin < 5.5.0 - Cross Site Scrip… |
SeventhQueen |
K Elements |
2025-10-31T11:42:36.419Z | 2025-11-13T10:33:49.915Z |
| cve-2025-64361 | N/A | WordPress Consulting Elementor Widgets plugin <= 1.4.2… |
StylemixThemes |
Consulting Elementor Widgets |
2025-10-31T11:42:33.072Z | 2025-11-13T10:33:49.931Z |
| cve-2025-64360 | N/A | WordPress Consulting Elementor Widgets plugin <= 1.4.2… |
StylemixThemes |
Consulting Elementor Widgets |
2025-10-31T11:42:32.330Z | 2025-11-13T10:33:49.917Z |
| cve-2025-64359 | N/A | WordPress Consulting theme < 6.7.5 - Local File Inclus… |
StylemixThemes |
Consulting |
2025-10-31T11:42:31.602Z | 2025-11-13T10:33:49.693Z |
| cve-2025-64358 | N/A | WordPress Smart Coupons for WooCommerce plugin <= 2.2.… |
WebToffee |
Smart Coupons for WooCommerce |
2025-10-31T11:42:28.439Z | 2025-11-13T10:33:49.682Z |
| cve-2025-64357 | N/A | WordPress Advanced Database Cleaner plugin <= 3.1.6 - … |
Younes JFR. |
Advanced Database Cleaner |
2025-10-31T11:42:27.627Z | 2025-11-13T10:33:49.623Z |
| cve-2025-64356 | N/A | WordPress Insert PHP Code Snippet plugin <= 1.4.3 - Br… |
f1logic |
Insert PHP Code Snippet |
2025-10-31T11:42:26.908Z | 2025-11-13T10:33:49.626Z |
| cve-2025-64354 | N/A | WordPress Gutenberg plugin <= 21.8.2 - Cross Site Scri… |
Matias Ventura |
Gutenberg |
2025-10-31T11:42:26.178Z | 2025-11-13T10:33:49.515Z |
| cve-2025-64353 | N/A | WordPress Polylang plugin <= 3.7.3 - Deserialization o… |
Chouby |
Polylang |
2025-10-31T11:42:25.417Z | 2025-11-13T10:33:49.498Z |
| cve-2025-64352 | N/A | WordPress Essential Addons for Elementor plugin <= 6.2… |
WPDeveloper |
Essential Addons for Elementor |
2025-10-31T11:42:23.045Z | 2025-11-13T10:33:49.526Z |
| cve-2025-64351 | N/A | WordPress Rank Math SEO plugin <= 1.0.252.1 - Sensitiv… |
Rank Math SEO |
Rank Math SEO |
2025-10-31T11:42:22.226Z | 2025-11-13T10:33:49.501Z |
| cve-2025-64350 | N/A | WordPress Rank Math SEO plugin <= 1.0.252.1 - Broken A… |
Rank Math SEO |
Rank Math SEO |
2025-10-31T11:42:17.908Z | 2025-11-13T10:33:49.500Z |
| cve-2025-58149 | N/A | Incorrect removal of permissions on PCI device unplug |
Xen |
Xen |
2025-10-31T11:50:39.536Z | 2025-11-04T21:13:31.524Z |
| cve-2025-58148 | N/A | x86: Incorrect input sanitisation in Viridian hypercalls |
Xen |
Xen |
2025-10-31T11:50:28.407Z | 2025-11-04T21:13:30.190Z |
| cve-2025-58147 | N/A | x86: Incorrect input sanitisation in Viridian hypercalls |
Xen |
Xen |
2025-10-31T11:50:28.282Z | 2025-11-04T21:13:28.853Z |
| cve-2025-40603 | N/A | A potential exposure of sensitive information in … |
SonicWall |
SMA100 |
2025-10-31T11:01:35.618Z | 2025-10-31T18:53:53.156Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-188731 | Malicious code in planckscale-ora-envconfig-antares (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188730 | Malicious code in planckscale-lynx-global-transform (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188729 | Malicious code in planckscale-augmentedreality-relay-planckscale (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188728 | Malicious code in pipe-wavefunction-test-redis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188727 | Malicious code in pipe-virgo-perseus-auth (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188726 | Malicious code in pipe-simple-virtualize-void-stack (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188725 | Malicious code in pipe-resolve-signal-uglify-eta (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188724 | Malicious code in pipe-pino-pretty-toml-meteor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188723 | Malicious code in pipe-parallax-build-kinetic (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188722 | Malicious code in pipe-orogeny-await-kaus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188721 | Malicious code in pipe-oortcloud-void-volcanology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188720 | Malicious code in pipe-grid-byte-old-array (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188719 | Malicious code in pipe-got-filament-xenon (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188718 | Malicious code in pipe-final-tree-emulate-byte (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188717 | Malicious code in pipe-cz-conventional-changelog-meissa-canopus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188716 | Malicious code in pipe-cloud-try-assert-grid (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188715 | Malicious code in pipe-byte-spy-fork-notify (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188714 | Malicious code in pipe-auth0-barnard-tool (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188713 | Malicious code in pipe-astrophysics-astroinformatics-callisto (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188712 | Malicious code in pino-virtualreality-cluster-tool (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188711 | Malicious code in pino-remark-string-nestjs (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188710 | Malicious code in pino-pretty-yildun-express-graphql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188709 | Malicious code in pino-pretty-technosignature-biomimicry-wezen (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188708 | Malicious code in pino-pretty-radiant-less-loader-galaxy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188707 | Malicious code in pino-pretty-prettier-sequelize-figures (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188706 | Malicious code in pino-pretty-phenomic-quasar-meteor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188705 | Malicious code in pino-pretty-kuiperbelt-vulcan-hugo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188704 | Malicious code in pino-pretty-exosphere-cosmology-rate-limiter (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188703 | Malicious code in pino-pretty-electron-palynology-bootes (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188702 | Malicious code in pino-pretty-ariel-ursa-query (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:8336 | Red Hat Security Advisory: varnish:6 security update | 2025-06-02T03:23:55+00:00 | 2025-11-06T23:42:59+00:00 |
| rhsa-2025:8351 | Red Hat Security Advisory: varnish security update | 2025-06-02T03:16:50+00:00 | 2025-11-06T23:42:56+00:00 |
| rhsa-2025:8347 | Red Hat Security Advisory: kpatch-patch-4_18_0-372_118_1, kpatch-patch-4_18_0-372_131_1, kpatch-patch-4_18_0-372_137_1, and kpatch-patch-4_18_0-372_91_1 security update | 2025-06-02T03:16:30+00:00 | 2025-11-07T16:29:13+00:00 |
| rhsa-2025:8349 | Red Hat Security Advisory: varnish security update | 2025-06-02T03:12:20+00:00 | 2025-11-06T23:42:56+00:00 |
| rhsa-2025:8348 | Red Hat Security Advisory: kpatch-patch-4_18_0-305_120_1, kpatch-patch-4_18_0-305_138_1, kpatch-patch-4_18_0-305_145_1, and kpatch-patch-4_18_0-305_150_1 security update | 2025-06-02T03:05:30+00:00 | 2025-11-07T16:29:14+00:00 |
| rhsa-2025:8350 | Red Hat Security Advisory: varnish security update | 2025-06-02T03:04:25+00:00 | 2025-11-06T23:42:56+00:00 |
| rhsa-2025:8345 | Red Hat Security Advisory: kpatch-patch-4_18_0-553, kpatch-patch-4_18_0-553_16_1, kpatch-patch-4_18_0-553_30_1, and kpatch-patch-4_18_0-553_40_1 security update | 2025-06-02T02:36:30+00:00 | 2025-11-07T16:29:13+00:00 |
| rhsa-2025:8346 | Red Hat Security Advisory: kpatch-patch-4_18_0-477_43_1, kpatch-patch-4_18_0-477_67_1, kpatch-patch-4_18_0-477_81_1, and kpatch-patch-4_18_0-477_89_1 security update | 2025-06-02T02:36:05+00:00 | 2025-11-07T16:29:18+00:00 |
| rhsa-2025:8343 | Red Hat Security Advisory: kpatch-patch-5_14_0-284_104_1, kpatch-patch-5_14_0-284_52_1, kpatch-patch-5_14_0-284_79_1, and kpatch-patch-5_14_0-284_92_1 security update | 2025-06-02T02:36:05+00:00 | 2025-11-07T16:29:12+00:00 |
| rhsa-2025:8337 | Red Hat Security Advisory: varnish security update | 2025-06-02T02:18:05+00:00 | 2025-11-06T23:42:54+00:00 |
| rhsa-2025:8340 | Red Hat Security Advisory: varnish:6 security update | 2025-06-02T02:14:50+00:00 | 2025-11-06T23:42:54+00:00 |
| rhsa-2025:8341 | Red Hat Security Advisory: firefox security update | 2025-06-02T02:12:45+00:00 | 2025-11-06T23:42:55+00:00 |
| rhsa-2025:8344 | Red Hat Security Advisory: kpatch-patch-5_14_0-70_112_1, kpatch-patch-5_14_0-70_121_1, kpatch-patch-5_14_0-70_124_1, and kpatch-patch-5_14_0-70_85_1 security update | 2025-06-02T02:11:25+00:00 | 2025-11-07T16:29:12+00:00 |
| rhsa-2025:8342 | Red Hat Security Advisory: kpatch-patch-5_14_0-427_13_1, kpatch-patch-5_14_0-427_31_1, kpatch-patch-5_14_0-427_44_1, and kpatch-patch-5_14_0-427_55_1 security update | 2025-06-02T02:11:25+00:00 | 2025-11-07T16:29:11+00:00 |
| rhsa-2025:8339 | Red Hat Security Advisory: varnish:6 security update | 2025-06-02T01:55:30+00:00 | 2025-11-06T23:42:56+00:00 |
| rhsa-2025:8333 | Red Hat Security Advisory: kernel security update | 2025-06-02T01:35:15+00:00 | 2025-11-11T11:33:58+00:00 |
| rhsa-2025:8325 | Red Hat Security Advisory: thunderbird security update | 2025-05-29T22:57:22+00:00 | 2025-11-06T23:15:37+00:00 |
| rhsa-2025:8324 | Red Hat Security Advisory: thunderbird security update | 2025-05-29T21:30:36+00:00 | 2025-11-06T23:15:37+00:00 |
| rhsa-2025:8326 | Red Hat Security Advisory: thunderbird security update | 2025-05-29T19:32:51+00:00 | 2025-11-06T23:15:39+00:00 |
| rhsa-2025:8323 | Red Hat Security Advisory: pcs security update | 2025-05-29T16:42:11+00:00 | 2025-11-08T07:17:34+00:00 |
| rhsa-2025:8322 | Red Hat Security Advisory: pcs security update | 2025-05-29T16:09:05+00:00 | 2025-11-06T23:42:54+00:00 |
| rhsa-2025:8319 | Red Hat Security Advisory: pcs security update | 2025-05-29T15:50:31+00:00 | 2025-11-06T23:42:54+00:00 |
| rhsa-2025:8314 | Red Hat Security Advisory: zlib security update | 2025-05-29T13:39:51+00:00 | 2025-11-08T04:24:31+00:00 |
| rhsa-2025:8310 | Red Hat Security Advisory: varnish:6 security update | 2025-05-29T12:37:36+00:00 | 2025-11-06T23:42:53+00:00 |
| rhsa-2025:8308 | Red Hat Security Advisory: firefox security update | 2025-05-29T11:31:05+00:00 | 2025-11-06T23:42:53+00:00 |
| rhsa-2025:8298 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.0.2 | 2025-05-29T09:04:27+00:00 | 2025-11-14T00:56:25+00:00 |
| rhsa-2025:8294 | Red Hat Security Advisory: varnish:6 security update | 2025-05-29T08:50:30+00:00 | 2025-11-06T23:42:58+00:00 |
| rhsa-2025:8293 | Red Hat Security Advisory: firefox security update | 2025-05-29T07:17:14+00:00 | 2025-11-06T23:42:53+00:00 |
| rhsa-2025:8292 | Red Hat Security Advisory: mingw-freetype and spice-client-win security update | 2025-05-29T06:42:49+00:00 | 2025-11-06T23:15:37+00:00 |
| rhsa-2025:8288 | Red Hat Security Advisory: pcs security update | 2025-05-29T06:28:46+00:00 | 2025-11-06T23:42:52+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-1744 | Out-of-bounds Write in radare2 | 2025-02-02T00:00:00.000Z | 2025-07-01T00:00:00.000Z |
| msrc_cve-2025-1632 | libarchive bsdunzip.c list null pointer dereference | 2025-02-02T00:00:00.000Z | 2025-04-09T00:00:00.000Z |
| msrc_cve-2025-1390 | pam_cap: Fix potential configuration parsing error | 2025-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2025-1377 | GNU elfutils eu-strip strip.c gelf_getsymshndx denial of service | 2025-02-02T00:00:00.000Z | 2025-04-19T00:00:00.000Z |
| msrc_cve-2025-1376 | GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service | 2025-02-02T00:00:00.000Z | 2025-04-19T00:00:00.000Z |
| msrc_cve-2025-1372 | GNU elfutils eu-readelf readelf.c print_string_section buffer overflow | 2025-02-02T00:00:00.000Z | 2025-04-19T00:00:00.000Z |
| msrc_cve-2025-1371 | GNU elfutils eu-read readelf.c handle_dynamic_symtab null pointer dereference | 2025-02-02T00:00:00.000Z | 2025-09-04T00:37:33.000Z |
| msrc_cve-2025-1365 | GNU elfutils eu-readelf readelf.c process_symtab buffer overflow | 2025-02-02T00:00:00.000Z | 2025-09-04T00:00:27.000Z |
| msrc_cve-2025-1352 | GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption | 2025-02-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-1244 | Emacs: shell injection vulnerability in gnu emacs via custom "man" uri scheme | 2025-02-02T00:00:00.000Z | 2025-02-21T00:00:00.000Z |
| msrc_cve-2025-1215 | vim main.c memory corruption | 2025-02-02T00:00:00.000Z | 2025-08-13T00:00:00.000Z |
| msrc_cve-2025-1182 | GNU Binutils ld elflink.c bfd_elf_reloc_symbol_deleted_p memory corruption | 2025-02-02T00:00:00.000Z | 2025-03-19T00:00:00.000Z |
| msrc_cve-2025-1181 | GNU Binutils ld elflink.c _bfd_elf_gc_mark_rsec memory corruption | 2025-02-02T00:00:00.000Z | 2025-03-12T00:00:00.000Z |
| msrc_cve-2025-1180 | GNU Binutils ld elf-eh-frame.c _bfd_elf_write_section_eh_frame memory corruption | 2025-02-02T00:00:00.000Z | 2025-09-04T00:39:36.000Z |
| msrc_cve-2025-1179 | GNU Binutils ld libbfd.c bfd_putl64 memory corruption | 2025-02-02T00:00:00.000Z | 2025-09-03T23:48:55.000Z |
| msrc_cve-2025-1178 | GNU Binutils ld libbfd.c bfd_putl64 memory corruption | 2025-02-02T00:00:00.000Z | 2025-03-11T00:00:00.000Z |
| msrc_cve-2025-1176 | GNU Binutils ld elflink.c _bfd_elf_gc_mark_rsec heap-based overflow | 2025-02-02T00:00:00.000Z | 2025-03-19T00:00:00.000Z |
| msrc_cve-2025-1152 | GNU Binutils ld xstrdup.c xstrdup memory leak | 2025-02-02T00:00:00.000Z | 2025-09-03T23:21:22.000Z |
| msrc_cve-2025-1151 | GNU Binutils ld xmemdup.c xmemdup memory leak | 2025-02-02T00:00:00.000Z | 2025-09-03T23:00:30.000Z |
| msrc_cve-2025-1150 | GNU Binutils ld libbfd.c bfd_malloc memory leak | 2025-02-02T00:00:00.000Z | 2025-09-04T00:22:55.000Z |
| msrc_cve-2025-1149 | GNU Binutils ld xmalloc.c xstrdup memory leak | 2025-02-02T00:00:00.000Z | 2025-09-03T23:38:29.000Z |
| msrc_cve-2025-1148 | GNU Binutils ld ldelfgen.c link_order_scan memory leak | 2025-02-02T00:00:00.000Z | 2025-09-04T01:47:42.000Z |
| msrc_cve-2025-1147 | GNU Binutils nm nm.c internal_strlen buffer overflow | 2025-02-02T00:00:00.000Z | 2025-09-03T23:53:15.000Z |
| msrc_cve-2025-1118 | Grub2: commands/dump: the dump command is not in lockdown when secure boot is enabled | 2025-02-02T00:00:00.000Z | 2025-09-03T22:53:33.000Z |
| msrc_cve-2025-1094 | PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation | 2025-02-02T00:00:00.000Z | 2025-02-21T00:00:00.000Z |
| msrc_cve-2025-0725 | gzip integer overflow | 2025-02-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2025-0690 | Grub2: read: integer overflow may lead to out-of-bounds write | 2025-02-02T00:00:00.000Z | 2025-09-04T01:55:00.000Z |
| msrc_cve-2025-0677 | Grub2: ufs: integer overflow may lead to heap based out-of-bounds write when handling symlinks | 2025-02-02T00:00:00.000Z | 2025-09-03T23:13:01.000Z |
| msrc_cve-2025-0665 | eventfd double close | 2025-02-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| msrc_cve-2025-0633 | Heap Overflow in iniparser.c | 2025-02-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2015-000200 | Welcart vulnerable to SQL injection | 2015-12-17T15:19+09:00 | 2016-01-07T15:37+09:00 |
| jvndb-2015-000199 | WinRAR may insecurely load executable files | 2015-12-17T15:19+09:00 | 2016-01-07T15:36+09:00 |
| jvndb-2015-000197 | Zend Framework vulnerable to SQL injection | 2015-12-11T13:46+09:00 | 2018-04-11T11:32+09:00 |
| jvndb-2015-000195 | WL-330NUL vulnerable to cross-site scripting | 2015-12-09T14:51+09:00 | 2016-01-13T17:37+09:00 |
| jvndb-2015-000194 | WL-330NUL vulnerable to denial-of-service (DoS) | 2015-12-09T14:47+09:00 | 2016-01-13T17:37+09:00 |
| jvndb-2015-000193 | WL-330NUL vulnerable to remote command execution | 2015-12-09T14:41+09:00 | 2016-01-13T17:37+09:00 |
| jvndb-2015-000192 | WL-330NUL information management vulnerability | 2015-12-09T14:38+09:00 | 2016-01-13T17:37+09:00 |
| jvndb-2015-000196 | Web Analytics Service vulnerable to cross-site scripting | 2015-12-08T14:29+09:00 | 2016-01-07T15:13+09:00 |
| jvndb-2015-000191 | GANMA! App for iOS fails to verify SSL server certificates | 2015-12-07T14:21+09:00 | 2018-03-07T13:50+09:00 |
| jvndb-2015-000190 | EC-CUBE plugin BbAdminViewsControl vulnerable to SQL injection | 2015-12-03T14:26+09:00 | 2016-07-07T14:53+09:00 |
| jvndb-2015-006054 | XML External Entity (XXE) Vulnerability in Hitachi Command Suite | 2015-12-01T15:59+09:00 | 2015-12-22T17:43+09:00 |
| jvndb-2015-000189 | p++BBS vulnerable to cross-site scripting | 2015-11-30T13:44+09:00 | 2016-01-07T16:17+09:00 |
| jvndb-2015-000188 | Frame high-speed chat vulnerable to cross-site scripting | 2015-11-30T13:44+09:00 | 2016-01-07T15:34+09:00 |
| jvndb-2015-000187 | Apache Cordova vulnerable to improper application of whitelist restrictions | 2015-11-27T13:29+09:00 | 2015-11-27T13:29+09:00 |
| jvndb-2015-000186 | ManageEngine Firewall Analyzer fails to restrict access permissions | 2015-11-27T13:29+09:00 | 2018-01-24T12:12+09:00 |
| jvndb-2015-000185 | ManageEngine Firewall Analyzer vulnerable to directory traversal | 2015-11-27T13:28+09:00 | 2018-01-24T12:05+09:00 |
| jvndb-2015-000184 | Void vulnerable to cross-site scripting | 2015-11-20T13:38+09:00 | 2015-11-24T18:02+09:00 |
| jvndb-2015-005909 | ArcSight Management Center and ArcSight Logger vulnerable to cross-site scripting | 2015-11-20T13:31+09:00 | 2015-11-20T13:31+09:00 |
| jvndb-2015-000182 | Kirby vulnerable to arbitrary file creation | 2015-11-17T14:21+09:00 | 2015-11-24T18:03+09:00 |
| jvndb-2015-000181 | Gurunavi App for iOS fails to verify SSL server certificates | 2015-11-17T14:21+09:00 | 2018-03-07T12:17+09:00 |
| jvndb-2015-000179 | applican vulnerable to script injection | 2015-11-17T14:20+09:00 | 2015-11-24T18:03+09:00 |
| jvndb-2015-000178 | applican vulnerable to script injection | 2015-11-17T14:20+09:00 | 2015-11-24T18:03+09:00 |
| jvndb-2015-000180 | pWebManager vulnerable to OS command injection | 2015-11-13T14:25+09:00 | 2015-11-17T16:21+09:00 |
| jvndb-2015-000177 | Apple OS X authentication issue when recovering from sleep mode | 2015-11-13T14:25+09:00 | 2015-11-17T16:15+09:00 |
| jvndb-2015-000176 | SonicWall TotalSecure TZ 100 Series vulnerable to denial-of-service (DoS) | 2015-11-06T12:30+09:00 | 2015-11-09T10:47+09:00 |
| jvndb-2015-000174 | Multiple TYPE-MOON games vulnerable to OS command injection | 2015-11-05T14:11+09:00 | 2015-11-09T10:39+09:00 |
| jvndb-2015-000175 | ISUCON5 qualifier portal web application (eventapp) vulnerable to OS command injection | 2015-11-02T14:10+09:00 | 2015-11-11T15:33+09:00 |
| jvndb-2015-000172 | Multiple routers contain issue in preventing clickjacking attacks | 2015-10-30T15:16+09:00 | 2016-02-12T17:16+09:00 |
| jvndb-2015-000171 | HTML::Scrubber vulnerable to cross-site scripting | 2015-10-30T15:16+09:00 | 2015-10-30T15:16+09:00 |
| jvndb-2015-000170 | Enisys Gw fails to restrict access permissions | 2015-10-29T13:46+09:00 | 2015-11-02T18:05+09:00 |
| ID | Description | Updated |
|---|